Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14.01.2019 01 Uruchomiony przez pc (administrator) PC-KOMPUTER (16-01-2019 05:41:25) Uruchomiony z D:\Pobrane Załadowane profile: pc (Dostępne profile: pc) Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe (SoftPerfect) C:\Program Files\NetWorx\networx.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Gaijin Entertainment) C:\Users\pc\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe (AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe (Wargaming.net) D:\Program Files\GRY\worldoftanks\WargamingGameUpdater.exe (Crossgate Consulting Limited) C:\Users\pc\AppData\Roaming\ProductAuthenticationService\pas.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe () C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe (cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe (Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (AVAST Software) C:\Program Files\Alwil Software\Avast5\aswidsagent.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (IObit) D:\Program Files\odinstalowywacz\IObit Uninstaller\UninstallMonitor.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2404296 2014-08-09] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-09] (Realtek Semiconductor) HKLM\...\Run: [XFast LAN] => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [2009952 2013-05-31] (cFos Software GmbH) HKLM\...\Run: [NetWorx] => C:\Program Files\NetWorx\networx.exe [7160512 2015-10-07] (SoftPerfect) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [261512 2019-01-04] (AVAST Software) HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2012-01-03] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [843712 2012-01-02] (Adobe Systems Incorporated) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [261512 2019-01-04] (AVAST Software) HKLM\...\Policies\Explorer: [NoCDBurning] 1 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\Run: [ASRock A-Tuning] => [X] HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd) HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\Run: [OpenCL] => C:\Users\pc\AppData\Roaming\OpenCL\nircmd.exe [44032 2013-08-11] (NirSoft) HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd) HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\Run: [Gaijin.Net Agent] => C:\Users\pc\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2125384 2018-09-25] (Gaijin Entertainment) HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\Run: [World of Tanks] => D:\Program Files\GRY\worldoftanks\WargamingGameUpdater.exe [3139936 2018-06-25] (Wargaming.net) HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\Run: [SteamServerBrowser] => C:\Users\pc\AppData\Roaming\SteamServerBrowser\SteamServerBrowser.exe [238784 2018-06-06] () HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\Run: [ProductAuthenticationService] => C:\Users\pc\AppData\Roaming\ProductAuthenticationService\pas.exe [529352 2018-10-11] (Crossgate Consulting Limited) HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\MountPoints2: {0f1a7b1a-4808-11e5-bcd5-d050993ba8d3} - G:\AutoRun.exe HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\MountPoints2: {10346c0c-4fa1-11e8-9374-d050993ba8d3} - G:\HiSuiteDownLoader.exe HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\MountPoints2: {10346c24-4fa1-11e8-9374-d050993ba8d3} - G:\HiSuiteDownLoader.exe HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\MountPoints2: {311f3177-f64d-11e4-81a0-d050993ba8d3} - G:\AutoRun.exe HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\MountPoints2: {4b97171f-7336-11e6-807b-d050993ba8d3} - H:\AutoRun.exe HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\MountPoints2: {b3db8a49-b46a-11e4-a068-806e6f6e6963} - E:\ASRSetup.exe HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\MountPoints2: {b8d471fe-01e1-11e8-9659-d050993ba8d3} - G:\HiSuiteDownLoader.exe HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\MountPoints2: {b8d47202-01e1-11e8-9659-d050993ba8d3} - G:\HiSuiteDownLoader.exe HKU\S-1-5-21-1953993515-4057563298-4148489601-1000\...\MountPoints2: {fdc2d3d1-1db7-11e6-ae47-d050993ba8d3} - G:\Startme.exe HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) HKLM\...\Drivers32-x32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) HKLM\...\Drivers32-x32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [180224 2015-11-05] () HKLM\...\Drivers32-x32: [vidc.GRGV] => C:\Windows\SysWOW64\grgvvid.dll [344576 2015-11-05] (Gregion) HKLM\...\Drivers32-x32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-05] (On2.com) HKLM\...\Drivers32-x32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-05] (On2.com) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\...\Authentication\Credential Providers: [{3AFAB1A7-F3DB-4DED-B51B-25E34D21D798}] -> C:\Windows\system32\USBKeyCredentialProvider.dll [2013-07-25] () HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corp.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 109.196.95.195 8.8.8.8 Tcpip\..\Interfaces\{6474CFC4-3D3D-45C6-A00F-52B1B338E4EC}: [DhcpNameServer] 109.196.95.195 8.8.8.8 Tcpip\..\Interfaces\{A03BA9AB-386F-492E-992C-5D45682FD173}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{A0B647E4-616C-4860-8AD8-C64D709E8888}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{C4E64B3F-98A8-4501-BC80-A26EA6D70BD3}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{C84D396E-D9DB-41DA-89F1-AFB030E639D1}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{FED151ED-78C5-4077-8A59-A8D3A30D27B9}: [DhcpNameServer] 109.196.95.195 8.8.8.8 Internet Explorer: ================== HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> D:\Program Files\odinstalowywacz\IObit Uninstaller\UninstallExplorer.dll [2017-05-22] (IObit) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation) BHO: ExplorerWatcher Class -> {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB} -> C:\Program Files (x86)\Clover\TabHelper64.dll [2014-01-23] (EJIE Technology) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03] (Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-12-13] (Oracle Corporation) BHO-x32: Pomocnik logowania za pomocą konta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office16\URLREDIR.DLL [2015-07-31] (Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-12-13] (Oracle Corporation) Handler: mso-minsb-roaming.16 - Brak wartości CLSID Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) Handler: osf-roaming.16 - Brak wartości CLSID Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: g89xynoi.default FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\g89xynoi.default [2019-01-16] FF Homepage: Mozilla\Firefox\Profiles\g89xynoi.default -> hxxps://www.google.pl/ FF Extension: (Avast SafePrice) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\g89xynoi.default\Extensions\sp@avast.com.xpi [2018-05-26] FF Extension: (Avast Online Security) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\g89xynoi.default\Extensions\wrc@avast.com.xpi [2018-07-17] FF Extension: (Password Exporter) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\g89xynoi.default\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2017-07-04] [Przestarzałe] FF Extension: (Video DownloadHelper) - C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\g89xynoi.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-10-22] [Przestarzałe] FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox => nie znaleziono FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-12-13] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-12-13] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2012-01-03] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1953993515-4057563298-4148489601-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\pc\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-12-17] (Unity Technologies ApS) FF Plugin HKU\S-1-5-21-1953993515-4057563298-4148489601-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\pc\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-07-11] (Zoom Video Communications, Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default [2019-01-16] CHR Extension: (Prezentacje) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-06] CHR Extension: (Dokumenty) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-06] CHR Extension: (Dysk Google) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17] CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-02-06] CHR Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-12-19] CHR Extension: (Arkusze) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-06] CHR Extension: (Dokumenty Google offline) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-16] CHR Extension: (Avast Online Security) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-25] CHR Extension: (Okręty) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjgmfhnanfbghmpcbdfgpigcgdbaggfm [2018-02-06] CHR Extension: (Earth in Space) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiihlpikmpijdopbaegjibndhpgjmjfe [2018-02-06] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03] CHR Extension: (Gmail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-02-06] CHR Extension: (Chrome Media Router) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-14] CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 2 [2019-01-13] CHR Extension: (Dokumenty) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-28] CHR Extension: (Dysk Google) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-03-28] CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-28] CHR Extension: (Avast SafePrice) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-03-28] CHR Extension: (Arkusze) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-28] CHR Extension: (Dokumenty Google offline) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-03-28] CHR Extension: (Avast Online Security) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-03-28] CHR Extension: (Gmail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-03-28] CHR Extension: (Chrome Media Router) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-28] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 ASRockIOMon; C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe [454656 2013-07-25] () [Brak podpisu cyfrowego] R3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [7834368 2019-01-04] (AVAST Software) R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [357816 2019-01-04] (AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7356680 2018-11-02] () R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [652640 2013-05-31] (cFos Software GmbH) R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2018-05-22] (EasyAntiCheat Ltd) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Brak podpisu cyfrowego] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation) S2 IObitUnSvr; D:\Program Files\odinstalowywacz\IObit Uninstaller\IUService.exe [206112 2017-06-14] (IObit) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation) R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [35616 2015-02-27] (Microsoft) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1721800 2014-08-09] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18974152 2014-08-09] (NVIDIA Corporation) S3 PrintNotify; C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll [2988544 2016-06-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [33872 2012-05-17] (AnvSoft Inc.) S3 AsrDrv101; C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [22280 2015-02-14] (ASRock Incorporation) R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [40200 2013-08-02] (ASRock Inc.) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37304 2019-01-04] (AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [203488 2019-01-04] (AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [223056 2019-01-14] (AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [196264 2019-01-04] (AVAST Software) R0 aswblog; C:\Windows\System32\drivers\aswblog.sys [320888 2019-01-04] (AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [58160 2019-01-04] (AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [239808 2019-01-04] (AVAST Software) S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46584 2019-01-04] (AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42488 2019-01-04] (AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [166472 2019-01-04] (AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111992 2019-01-04] (AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [88144 2019-01-04] (AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1034056 2019-01-04] (AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [474648 2019-01-04] (AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [218056 2019-01-04] (AVAST Software) S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2015-05-08] (The OpenVPN Project) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [380144 2019-01-04] (AVAST Software) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2015-03-02] (DT Soft Ltd) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation) R3 IUFileFilter; D:\Program Files\odinstalowywacz\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [21928 2017-06-06] (IObit.com) R3 IURegProcessFilter; D:\Program Files\odinstalowywacz\IObit Uninstaller\drivers\win7_amd64\IURegProcessFilter.sys [27048 2017-06-13] (IObit.com) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation) R1 networx; C:\Windows\System32\drivers\networx.sys [65512 2015-10-02] (Windows (R) Win 7 DDK provider) R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [21448 2014-08-09] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation) R2 RealWoW60; C:\Windows\System32\DRIVERS\RealWoW60.sys [39640 2014-03-06] (Windows (R) Codename Longhorn DDK provider) R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [29320 2015-10-01] (AVSOFT Corp.) S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64_prewin8.sys [23200 2016-01-14] (Western Digital Technologies) R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-12-09] (BigNox Corporation) S2 SADP_NPF; \??\D:\Program Files\monitorngel\bin\sadp_npf64.sys [X] S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X] S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X] S3 WinRing0_1_2_0; \??\D:\Program Files\Game Booster 3\Driver\WinRing0x64.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-01-16 05:39 - 2019-01-16 05:41 - 000000000 ____D C:\FRST 2019-01-15 21:25 - 2019-01-15 21:25 - 000918046 _____ C:\Users\pc\Desktop\ST1000DX001-1CM162-SSHD-Z1DDA35R-TEST_mht.html 2019-01-15 21:25 - 2019-01-15 21:25 - 000000000 ____D C:\Users\pc\Desktop\ST1000DX001-1CM162-SSHD-Z1DDA35R-TEST_mht_pliki 2019-01-15 05:51 - 2019-01-15 05:51 - 000401376 _____ C:\Users\pc\Desktop\dzisiaj.pcapng 2019-01-15 05:46 - 2019-01-15 05:46 - 000001786 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk 2019-01-15 05:46 - 2019-01-15 05:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap 2019-01-15 05:46 - 2019-01-15 05:46 - 000000000 ____D C:\Program Files (x86)\WinPcap 2019-01-15 05:45 - 2019-01-15 05:46 - 000000000 ____D C:\Program Files\Wireshark 2019-01-15 05:32 - 2019-01-15 05:51 - 000000000 ____D C:\Users\pc\AppData\Roaming\Wireshark 2019-01-14 17:21 - 2019-01-14 17:21 - 000223056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2019-01-14 08:52 - 2019-01-14 08:53 - 000681440 _____ C:\Windows\system32\FNTCACHE.DAT 2019-01-14 06:01 - 2019-01-14 06:01 - 000135304 _____ C:\Users\pc\AppData\Local\GDIPFONTCACHEV1.DAT 2019-01-13 18:40 - 2019-01-13 18:40 - 000000630 _____ C:\Users\pc\Desktop\KASIA.lnk 2019-01-13 14:25 - 2019-01-13 14:25 - 000000000 ____D C:\Program Files\DIFX 2019-01-04 14:31 - 2019-01-04 14:30 - 000361352 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2019-01-04 14:31 - 2019-01-04 14:30 - 000320888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswblog.sys 2019-01-04 14:31 - 2019-01-04 14:30 - 000196264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2019-01-04 14:31 - 2019-01-04 14:30 - 000058160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2019-01-04 14:31 - 2019-01-04 14:30 - 000037304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2018-12-24 16:46 - 2018-12-24 16:46 - 000000000 ____D C:\Users\pc\AppData\Local\DeskShare Data 2018-12-24 16:45 - 2018-12-24 16:45 - 000000000 ____D C:\Users\pc\AppData\Local\Spoon 2018-12-24 16:45 - 2018-12-24 16:45 - 000000000 ____D C:\ProgramData\DeskShare 2018-12-23 15:17 - 2019-01-13 12:07 - 000003546 _____ C:\Windows\System32\Tasks\HP AR Program Upload - 3a92c6e8a24e4325bf290f97c3cd712f40c1d0ee119f4e719b2fc8d181463877 ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-01-16 05:36 - 2017-11-12 13:12 - 000000000 ____D C:\Users\pc\AppData\Local\AVAST Software 2019-01-16 05:35 - 2017-02-03 12:40 - 005812736 ___SH C:\Users\pc\Desktop\Thumbs.db 2019-01-16 05:35 - 2015-02-16 10:31 - 000000000 ____D C:\ProgramData\NVIDIA 2019-01-16 05:35 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-01-15 20:34 - 2017-02-07 15:00 - 000004170 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2019-01-15 16:42 - 2011-04-12 14:21 - 000740008 _____ C:\Windows\system32\perfh015.dat 2019-01-15 16:42 - 2011-04-12 14:21 - 000155616 _____ C:\Windows\system32\perfc015.dat 2019-01-15 16:42 - 2009-07-14 06:13 - 001669510 _____ C:\Windows\system32\PerfStringBackup.INI 2019-01-15 16:42 - 2009-07-14 05:45 - 000022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-01-15 16:42 - 2009-07-14 05:45 - 000022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-01-15 16:42 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2019-01-15 05:28 - 2015-04-11 14:19 - 000000000 ____D C:\ProgramData\Package Cache 2019-01-14 20:40 - 2018-06-30 08:21 - 000000000 ____D C:\Users\pc\Desktop\Justynka 2019-01-14 17:32 - 2018-05-11 18:17 - 001090478 _____ C:\Users\pc\Desktop\PALIWO.xlsx 2019-01-14 06:07 - 2018-12-09 11:29 - 000000299 _____ C:\Users\pc\d4ac4633ebd6440fa397b84f1bc94a3c.7z 2019-01-14 06:07 - 2018-12-09 11:18 - 000000000 ____D C:\Users\pc\AppData\Local\Nox 2019-01-14 06:07 - 2015-02-14 18:02 - 000000000 ____D C:\Users\pc 2019-01-14 06:02 - 2018-12-09 11:19 - 000000000 ____D C:\Users\pc\.android 2019-01-14 06:02 - 2018-12-09 11:18 - 000000000 ____D C:\Users\pc\vmlogs 2019-01-14 06:02 - 2018-12-09 11:18 - 000000000 ____D C:\Users\pc\.BigNox 2019-01-14 06:00 - 2015-03-02 11:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo 2019-01-14 05:54 - 2017-08-18 13:16 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crossout 2019-01-14 05:54 - 2016-10-08 22:51 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker 2019-01-14 05:54 - 2015-07-26 15:58 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Digital Image Recovery 2019-01-14 05:54 - 2015-02-17 19:25 - 000000000 ____D C:\Users\pc\Desktop\Pulpiteł 2019-01-14 05:54 - 2015-02-17 18:37 - 000000000 ____D C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks 2019-01-14 05:54 - 2015-02-14 11:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kloudian 2019-01-14 05:53 - 2016-06-07 14:47 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Temp 2019-01-14 05:53 - 2015-03-02 11:12 - 000000000 ____D C:\Users\pc\AppData\Local\ashampoo 2019-01-14 05:51 - 2015-03-02 11:12 - 000000000 ____D C:\ProgramData\Ashampoo 2019-01-13 20:13 - 2015-02-17 20:55 - 000000000 ____D C:\Users\pc\AppData\Local\ElevatedDiagnostics 2019-01-13 20:13 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF 2019-01-13 16:22 - 2016-08-11 11:49 - 000007629 _____ C:\Users\pc\AppData\Local\resmon.resmoncfg 2019-01-13 12:19 - 2015-03-10 21:00 - 000000000 ____D C:\AdwCleaner 2019-01-13 12:07 - 2018-09-01 11:15 - 000003102 _____ C:\Windows\System32\Tasks\{811D7642-2456-4CE6-8351-DD2DCADBF9C4} 2019-01-13 12:07 - 2018-02-06 15:20 - 000003482 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2019-01-13 12:07 - 2018-02-06 15:20 - 000003354 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2019-01-13 12:07 - 2018-02-04 13:20 - 000004574 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2019-01-13 12:07 - 2018-02-04 13:20 - 000004424 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2019-01-13 12:07 - 2018-01-01 17:25 - 000003118 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe 2019-01-13 12:07 - 2018-01-01 17:25 - 000003092 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe 2019-01-13 12:07 - 2018-01-01 17:25 - 000003090 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe 2019-01-13 12:07 - 2017-12-30 11:34 - 000002910 _____ C:\Windows\System32\Tasks\{9BB359F3-4A0B-4416-B6E5-9E6583EAD89B} 2019-01-13 12:07 - 2017-10-30 19:03 - 000003546 _____ C:\Windows\System32\Tasks\HP AR Program Upload - 5a500943e6904b91b6ec5442eb33c540d4760372b2ed4cb681ae28730d22f29f 2019-01-13 12:07 - 2016-11-20 14:59 - 000002790 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2019-01-13 12:07 - 2015-12-03 14:11 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software 2019-01-13 11:19 - 2015-02-16 10:21 - 000000000 ____D C:\temp 2019-01-13 11:19 - 2015-02-14 18:06 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2019-01-13 10:49 - 2016-11-30 11:22 - 000000000 ____D C:\Users\pc\AppData\LocalLow\Mozilla 2019-01-13 10:47 - 2015-02-23 10:28 - 000000000 ____D C:\Users\pc\AppData\Roaming\TS3Client 2019-01-12 14:07 - 2017-09-04 21:20 - 000000000 ____D C:\ProgramData\ProductData 2019-01-09 17:38 - 2018-02-04 13:20 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2019-01-09 17:38 - 2018-02-04 13:20 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2019-01-09 17:38 - 2015-07-03 09:06 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2019-01-09 17:38 - 2015-07-03 09:06 - 000000000 ____D C:\Windows\system32\Macromed 2019-01-04 14:30 - 2017-12-27 20:16 - 000239808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys 2019-01-04 14:30 - 2017-11-12 13:05 - 000203488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2019-01-04 14:30 - 2016-07-11 18:45 - 000042488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2019-01-04 14:30 - 2015-05-08 09:24 - 000218056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2019-01-04 14:30 - 2015-05-08 09:24 - 000046584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2019-01-04 14:30 - 2015-05-08 09:22 - 000111992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2019-01-04 14:30 - 2015-05-08 09:21 - 001034056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2019-01-04 14:30 - 2015-05-08 09:21 - 000380144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2019-01-04 14:30 - 2015-05-08 09:21 - 000088144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2019-01-04 14:30 - 2015-05-08 09:16 - 000474648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2019-01-04 14:30 - 2015-05-08 09:16 - 000166472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2018-12-31 09:06 - 2018-08-03 15:35 - 000063385 _____ C:\Users\pc\Desktop\Resources.xlsx 2018-12-27 17:30 - 2015-02-23 10:28 - 000000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client 2018-12-27 16:35 - 2018-05-15 18:30 - 000807778 _____ C:\Users\pc\Desktop\Justynka PALIWO.xlsx 2018-12-21 15:27 - 2009-07-14 06:08 - 000032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2018-12-17 14:25 - 2016-05-01 22:41 - 000000000 ____D C:\ProgramData\IObit ==================== Pliki w katalogu głównym wybranych folderów ======= 2015-10-20 13:12 - 2015-10-20 13:12 - 000000216 _____ () C:\Users\pc\AppData\Roaming\3d1da0ca.dat 2015-11-25 13:54 - 2015-11-25 13:54 - 000005120 _____ () C:\Users\pc\AppData\Roaming\GiftBag.db 2015-05-12 17:47 - 2015-05-12 17:47 - 000613255 _____ (CMI Limited) C:\Users\pc\AppData\Local\nsy501.tmp 2016-08-11 11:49 - 2019-01-13 16:22 - 000007629 _____ () C:\Users\pc\AppData\Local\resmon.resmoncfg 2018-12-10 17:18 - 2018-12-10 17:20 - 000000068 _____ () C:\Users\pc\AppData\Local\update_progress.txt 2015-07-01 16:55 - 2015-07-01 16:55 - 000000000 _____ () C:\Users\pc\AppData\Local\{3A112ABC-F9BB-45DD-B4ED-CD1409211158} ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2019-01-14 19:24 ==================== Koniec FRST.txt ============================