Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 04-09-2019 Uruchomiony przez Domek (administrator) DESKTOP-V23S55R (05-09-2019 12:46:03) Uruchomiony z C:\Users\Domek\Downloads Załadowane profile: Domek (Dostępne profile: defaultuser0 & Domek) Platform: Windows 10 Home Wersja 1803 17134.885 (X64) Język: Polski (Polska) Domyślna przeglądarka: IE Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10_50.ELFIN\MSSQL\Binn\sqlservr.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (PALIT MICROSYSTEMS LTD. TAIWAN BRANCH (BELIZE) -> Palit Microsystems Ltd.) C:\Program Files (x86)\Thunder Master\THPanel.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe (WinZip Computing LLC -> WinZip Computing, S.L.) C:\Program Files\WinZip\FAHWindow64.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.243\WsAppService.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18384352 2017-07-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-07-25] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-05-10] (Corel Corporation -> Corel Corporation) HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [130624 2019-05-10] (Corel Corporation -> WinZip Computing) HKLM\...\Run: [WinZip FAH] => C:\Program Files\WinZip\FAHConsole.exe [436416 2019-05-10] (WinZip Computing LLC -> WinZip Computing, S.L.) HKLM-x32\...\Run: [AutoRegisterCerts] => C:\Program Files (x86)\Certum\proCertum CardManager\cryptoCertumScanner.exe [161224 2016-10-18] (Asseco Data Systems S.A. -> Certum) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-292459351-3630904960-2125800452-1001\...\Run: [uTorrent] => C:\Users\Domek\AppData\Roaming\uTorrent\uTorrent.exe [1821424 2019-08-26] (BitTorrent Inc -> BitTorrent Inc.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-28] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\75.1.1528.101\Installer\chrmstp.exe [2019-07-24] (AVAST Software s.r.o. -> AVAST Software) Startup: C:\Users\Domek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Powiadomienia monitorowania tuszu - HP Deskjet 2050 J510 series Class Driver.lnk [2019-09-05] ShortcutAndArgument: Powiadomienia monitorowania tuszu - HP Deskjet 2050 J510 series Class Driver.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 2050 J510 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN0C83P1PP05D1;CONNECTION=USB;MONITOR=1; FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {09002E0C-F526-4C87-B533-01442DECF1A5} - System32\Tasks\Opera scheduled Autoupdate 1555587406 => C:\Users\Domek\AppData\Local\Programs\Opera\launcher.exe Task: {09602B59-C168-4536-AB7A-A1516C9EEA6F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-24] (Microsoft Corporation -> Microsoft Corporation) Task: {0F722A39-8966-4095-95F1-2F09D14742D9} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1808504 2019-07-18] (AVAST Software s.r.o. -> AVAST Software) Task: {11AE446B-42AA-4887-BF36-283228A71F6D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [117296 2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Task: {1519366B-4943-43DD-A7DA-380CC6959B97} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1428624 2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Task: {2090398F-74AC-4105-86B7-CFB32221BA34} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {23ACE164-627B-474A-93A5-9A9964CC9266} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1428624 2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Task: {24420A5D-BC14-4F6C-9DEC-0FC594AB7F6B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [117296 2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Task: {34F37036-B856-40A9-B305-74354EC75339} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_pepper.exe [1452600 2019-04-10] (Adobe Inc. -> Adobe) Task: {3FDB7EAB-DE1A-4EE1-BDA1-4E5B14A08CC3} - System32\Tasks\ThunderMaster => C:\Program Files (x86)\Thunder Master\THPanel.exe [2053984 2017-10-31] (PALIT MICROSYSTEMS LTD. TAIWAN BRANCH (BELIZE) -> Palit Microsystems Ltd.) Task: {4EFD455F-9FD7-4EE8-AD3D-BAE2BE8BE524} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-24] (Microsoft Corporation -> Microsoft Corporation) Task: {50CAAA04-411D-4D9F-8443-F91B7959CDE6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-08-19] (AVAST Software s.r.o. -> AVAST Software) Task: {5812BD3A-629E-48C9-B92A-049D6D864D55} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation) Task: {583E4113-5ECA-48E5-868E-5F207816A51B} - System32\Tasks\Opera scheduled assistant Autoupdate 1555587409 => C:\Users\Domek\AppData\Local\Programs\Opera\launcher.exe Task: {5D4508EC-FDD5-4097-8469-9A106F72D271} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantWakeupRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [0 0000-00-00] (Microsoft Corporation) (Odmowa dostępu) Task: {687B004A-FAD1-48AA-94B3-4A6B56E8DFC0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems) Task: {714BDDFB-4A18-406D-AEA8-588F2495E35D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {779135AE-8EBA-4E1E-B07F-2590D658A69A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3942792 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) Task: {8247E18D-9834-46EF-9717-4DDDD5D834F1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [0 0000-00-00] (Microsoft Corporation) (Odmowa dostępu) Task: {8E08F987-3CBF-48BC-B3CD-CA06A9853FF5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-01-20] (Google Inc -> Google Inc.) Task: {938FAF41-53F7-4FED-A473-80213A589725} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A45AC727-E4F5-4439-8DBF-767D6A475D82} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1808504 2019-07-18] (AVAST Software s.r.o. -> AVAST Software) Task: {AD621B31-D574-4820-B825-0AB1D8AB4911} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-05-10] (Corel Corporation -> Corel Corporation) Task: {AE7D6E83-34E1-4640-82FF-09DE3997DA11} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BB48DF79-3C11-4494-BF99-453999C3EFEE} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-03-14] (AVAST Software s.r.o. -> AVAST Software) Task: {C7D45A78-53AB-42A4-83FF-053795D9E02A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CFE13453-D163-4E44-913C-6DCDA8761483} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D2C89455-2742-4D7F-98D4-C8F11B277C68} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-01-20] (Google Inc -> Google Inc.) Task: {D9AF57D9-89CF-4B4E-A73F-A6BAB5E95051} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-03-14] (AVAST Software s.r.o. -> AVAST Software) Task: {DEBE9FE5-866B-4375-A885-291DA6CE8EB6} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-05-10] (Corel Corporation -> Corel Corporation) Task: {E2654B54-D0D3-4770-9E5C-86BDCB8FFF29} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E6734FA1-A6BE-4EF4-8442-2BAF9615FD90} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-05-10] (Corel Corporation -> Corel Corporation) Task: {E9156722-3A71-42E8-96B5-CA7134D53D0C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {ED28B43C-5622-4009-AE22-6A7C7C84C2A9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FEEDCC58-7FB8-4F09-9E2D-3CE8137DF28A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe [0 0000-00-00] (Microsoft Corporation) (Odmowa dostępu) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{68f11ffe-629b-4f7e-b490-5166150fbafd}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-292459351-3630904960-2125800452-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.web-pl.com/ BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-29] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-06-11] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-06-11] (Oracle America, Inc. -> Oracle Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Edge: ====== DownloadDir: C:\Users\Domek\Downloads FireFox: ======== FF DefaultProfile: 45kkexzv.default FF ProfilePath: C:\Users\Domek\AppData\Roaming\Mozilla\Firefox\Profiles\45kkexzv.default [2019-09-05] FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-06-11] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-06-11] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-07] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-01-11] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-01-11] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR DefaultSearchURL: Default -> hxxps://defaultsearch.co/?q={searchTerms} CHR DefaultSearchKeyword: Default -> Adaware Secure CHR Profile: C:\Users\Domek\AppData\Local\Google\Chrome\User Data\Default [2019-09-05] CHR Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-09-05] CHR Extension: (Avast Online Security) - C:\Users\Domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-09-05] CHR Extension: (Ace Script) - C:\Users\Domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-09-05] CHR Extension: (Adaware Secure) - C:\Users\Domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj [2019-09-05] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-09-05] CHR Extension: (Chrome Media Router) - C:\Users\Domek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-05] CHR Profile: C:\Users\Domek\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-09-05] CHR Profile: C:\Users\Domek\AppData\Local\Google\Chrome\User Data\System Profile [2019-09-05] CHR HKU\S-1-5-21-292459351-3630904960-2125800452-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5975136 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-03-14] (AVAST Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [405072 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-03-14] (AVAST Software s.r.o. -> AVAST Software) S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\75.1.1528.101\elevation_service.exe [978720 2019-07-18] (AVAST Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11568224 2019-08-24] (Microsoft Corporation -> Microsoft Corporation) R2 MSSQL$ELFIN; C:\Program Files\Microsoft SQL Server\MSSQL10_50.ELFIN\MSSQL\Binn\sqlservr.exe [62218696 2012-06-29] (Microsoft Corporation -> Microsoft Corporation) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation) S4 SQLAgent$ELFIN; C:\Program Files\Microsoft SQL Server\MSSQL10_50.ELFIN\MSSQL\Binn\SQLAGENT.EXE [441288 2012-06-29] (Microsoft Corporation -> Microsoft Corporation) R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-08-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [780328 2019-08-16] (DEVGURU Co., Ltd. -> DEVGURU Co., LTD.) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-02-23] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-02-23] (Microsoft Corporation -> Microsoft Corporation) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.243\WsAppService.exe [495392 2019-06-13] (Wondershare Technology Co.,Ltd -> Wondershare) R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-07-09] (Wondershare Technology Co.,Ltd -> Wondershare) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 ACSSCR; C:\WINDOWS\system32\DRIVERS\a38usb.sys [77832 2016-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Card Systems Ltd.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [209552 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [263008 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [205848 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [61472 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-03-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [282768 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169408 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112312 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87944 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1030784 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [478096 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [387176 2019-09-03] (AVAST Software s.r.o. -> AVAST Software) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [135520 2019-08-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5db32447b43ce666\nvlddmkm.sys [20461984 2019-01-12] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-06-13] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation) S4 RsFx0153; C:\WINDOWS\System32\DRIVERS\RsFx0153.sys [321992 2012-06-29] (Microsoft Corporation -> Microsoft Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166752 2019-08-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-02-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [333792 2019-02-23] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-02-23] (Microsoft Windows -> Microsoft Corporation) S3 WsResetDevice; C:\Windows\SysWOW64\DRIVERS\WsResetDevice.sys [33544 2016-03-18] (Shenzhen Wondershare Information Technology Co., Ltd. -> WonderShare Software) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-09-05 12:46 - 2019-09-05 12:46 - 000031833 _____ C:\Users\Domek\Downloads\FRST.txt 2019-09-05 12:11 - 2019-09-05 12:14 - 000006542 _____ C:\Users\Domek\Downloads\Fixlog.txt 2019-09-05 12:07 - 2019-09-05 12:07 - 000000002 _____ C:\Users\Domek\Downloads\dtboplgveqrovphi.txt 2019-09-05 12:05 - 2019-09-05 12:05 - 000000002 _____ C:\Users\Domek\Downloads\mwwqexwmrodjmduak.txt 2019-09-05 10:38 - 2019-09-05 10:38 - 000050277 _____ C:\Users\Domek\Desktop\Shortcut.txt 2019-09-05 10:35 - 2019-09-05 10:38 - 000044252 _____ C:\Users\Domek\Desktop\Addition.txt 2019-09-05 10:34 - 2019-09-05 10:38 - 000057855 _____ C:\Users\Domek\Desktop\FRST.txt 2019-09-05 10:32 - 2019-09-05 12:46 - 000000000 ____D C:\FRST 2019-09-05 10:31 - 2019-09-05 10:31 - 001615360 _____ (Farbar) C:\Users\Domek\Downloads\FRST64 (1).exe 2019-09-05 10:30 - 2019-09-05 10:30 - 001615360 _____ (Farbar) C:\Users\Domek\Downloads\FRST64.exe 2019-09-04 16:54 - 2019-09-05 10:46 - 000000000 ____D C:\Users\Domek\Desktop\Periodisation 2019-09-04 14:03 - 2019-09-04 14:03 - 017845201 _____ C:\Users\Domek\Downloads\ANATOMIA człowieka - REPETYTORIUM DO KOLOROWANIA DLA STUDENTÓW - Kurt H. Albertine.pdf 2019-09-03 19:40 - 2019-09-03 19:40 - 000928166 _____ C:\Users\Domek\Downloads\motorykanarzadowmowy.pdf 2019-09-03 17:58 - 2019-09-03 21:01 - 2307348318 _____ C:\Users\Domek\Downloads\Chuck Wolf - REAL Strategies for Hip Impingement.zip 2019-09-03 11:29 - 2019-09-03 11:28 - 000363912 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2019-09-03 11:29 - 2019-09-03 11:28 - 000236024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2019-09-03 11:29 - 2019-09-03 11:28 - 000169408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2019-08-31 15:30 - 2019-08-31 15:30 - 000000000 ____D C:\Users\Domek\Downloads\Video 2019-08-31 15:30 - 2019-08-31 15:30 - 000000000 ____D C:\Users\Domek\Downloads\Compressed 2019-08-31 15:29 - 2019-08-31 15:30 - 008014808 _____ (Tonec Inc.) C:\Users\Domek\Downloads\idman635build3.exe 2019-08-31 00:37 - 2019-07-19 22:57 - 001097460 _____ C:\Users\Domek\Desktop\Jak mniej myslec - Christel Petitcollin.pdf 2019-08-31 00:19 - 2019-08-31 00:19 - 000126514 _____ C:\Users\Domek\Downloads\O14_Faktura_indywidualna_000-024-2504-7437_19_08_F008_U1908161042857077216.pdf 2019-08-29 14:00 - 2019-08-29 14:00 - 000002513 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2019-08-29 14:00 - 2019-08-29 14:00 - 000002501 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2019-08-29 14:00 - 2019-08-29 14:00 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2019-08-29 14:00 - 2019-08-29 14:00 - 000002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk 2019-08-29 14:00 - 2019-08-29 14:00 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2019-08-29 14:00 - 2019-08-29 14:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narzędzia pakietu Microsoft Office 2019-08-28 12:24 - 2019-08-28 12:25 - 000000000 ____D C:\Users\Domek\Documents\Pliki programu Outlook 2019-08-28 12:23 - 2019-08-27 10:53 - 000067710 _____ C:\Users\Domek\Desktop\Kontakty1.vcf 2019-08-27 17:05 - 2019-08-27 17:06 - 004654780 _____ C:\Users\Domek\Downloads\Madrerererereeeee.rar 2019-08-27 12:28 - 2019-08-27 12:36 - 000000000 ____D C:\Users\Domek\Desktop\Samsung 2019-08-27 00:50 - 2019-08-27 00:50 - 000189768 _____ (Elfin Sp. z o.o.) C:\Users\Domek\Downloads\Paka.dll 2019-08-26 23:42 - 2019-08-26 23:42 - 000000000 ____D C:\Users\Domek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome 2019-08-26 23:26 - 2019-08-26 23:26 - 000000000 ____D C:\Users\Domek\Downloads\Nowy folder (3) 2019-08-26 23:23 - 2019-08-26 23:23 - 000000000 ____D C:\Users\Domek\Desktop\Nowy folder (3) 2019-08-26 22:30 - 2019-08-26 22:30 - 001053464 _____ (Samuel Rodberg ) C:\Users\Domek\Downloads\minimal_adb_fastboot_v1.4.3_setup.exe 2019-08-26 22:29 - 2019-08-26 22:29 - 002011769 _____ C:\Users\Domek\Downloads\droidAtScreen-1.1.jar 2019-08-26 22:15 - 2019-08-26 22:15 - 000000000 ____D C:\Users\Domek\AppData\Local\WonderShare 2019-08-26 22:15 - 2017-09-27 17:29 - 000000232 _____ C:\WINDOWS\SysWOW64\dllhost.exe.config 2019-08-26 22:13 - 2019-08-27 00:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2019-08-26 22:13 - 2019-08-26 22:15 - 000000000 ____D C:\Users\Domek\AppData\Roaming\Wondershare 2019-08-26 22:12 - 2019-08-27 00:00 - 000000000 ____D C:\ProgramData\Wondershare 2019-08-26 22:12 - 2019-08-27 00:00 - 000000000 ____D C:\Program Files (x86)\Wondershare 2019-08-26 22:12 - 2019-08-26 22:13 - 000000000 ____D C:\Users\Public\Documents\Wondershare 2019-08-26 22:11 - 2019-08-26 22:11 - 000980720 _____ C:\Users\Domek\Downloads\drfone_setup_full4008.exe 2019-08-26 22:10 - 2019-08-26 22:10 - 002341824 _____ ( ) C:\Users\Domek\Downloads\pobierz_Dr.fone_9.9.10_V9.9.10_2066497828.exe 2019-08-26 21:51 - 2019-08-26 21:51 - 000002196 _____ C:\Users\Public\Desktop\Smart Switch.lnk 2019-08-26 21:51 - 2019-08-26 21:51 - 000000000 ____D C:\Users\Public\Documents\NativeFus_Log 2019-08-26 21:51 - 2019-08-26 21:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2019-08-26 21:50 - 2019-08-16 10:13 - 000135520 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus.sys 2019-08-26 21:50 - 2019-08-16 10:12 - 000166752 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys 2019-08-26 21:49 - 2019-08-26 21:51 - 000000000 ____D C:\Users\Domek\AppData\Roaming\Samsung 2019-08-26 21:49 - 2019-08-26 21:49 - 000000000 ____D C:\ProgramData\Samsung 2019-08-26 21:48 - 2019-08-26 21:50 - 000000000 ____D C:\Program Files (x86)\Samsung 2019-08-26 21:48 - 2019-08-12 14:19 - 000144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\WINDOWS\SysWOW64\secman.dll 2019-08-26 21:45 - 2019-08-26 21:45 - 040449696 _____ (Samsung Electronics) C:\Users\Domek\Downloads\SmartSwitchPC_setup.exe 2019-08-26 21:01 - 2019-08-26 21:01 - 000000000 ____D C:\Users\Domek\AppData\Roaming\AdbDriverInstaller 2019-08-26 21:00 - 2019-08-26 21:00 - 000000000 ____D C:\Users\Domek\Jihosoft Android Phone Recovery 2019-08-26 20:59 - 2019-08-26 20:59 - 031998744 _____ (JIHOSOFT INC. ) C:\Users\Domek\Downloads\JIHO_iReparo_AR_Trial8.exe 2019-08-26 20:55 - 2019-08-26 20:55 - 000000000 ____D C:\Users\Domek\AppData\Local\FonePaw 2019-08-26 20:54 - 2019-08-26 20:55 - 042729272 _____ (FonePaw ) C:\Users\Domek\Downloads\fonepaw-android-data-recovery.exe 2019-08-26 20:24 - 2019-08-26 23:59 - 000000000 ____D C:\Program Files (x86)\Samsung Data Recovery 2019-08-26 20:23 - 2019-08-26 20:24 - 031002888 _____ C:\Users\Domek\Downloads\tenorshare-samsung-data-recovery-trial.exe 2019-08-26 20:09 - 2019-08-26 20:10 - 022139496 _____ (CHENGDU YIWO Tech Development Co., Ltd. ) C:\Users\Domek\Downloads\emsa_free.exe 2019-08-26 20:01 - 2019-08-26 20:02 - 041414008 _____ (Aiseesoft Studio ) C:\Users\Domek\Downloads\android_data_recovery_windows.exe 2019-08-26 19:51 - 2019-08-26 19:51 - 000000000 ____D C:\Users\Domek\AppData\Local\Aiseesoft Studio 2019-08-26 19:50 - 2019-08-26 19:50 - 041969552 _____ (Aiseesoft Studio ) C:\Users\Domek\Downloads\android-recovery.exe 2019-08-26 19:43 - 2019-08-26 19:43 - 000000000 ____D C:\WINDOWS\LastGood 2019-08-26 19:40 - 2019-08-26 19:40 - 000000000 ____D C:\Users\Domek\.android 2019-08-26 19:39 - 2019-08-26 23:59 - 000000000 ____D C:\Program Files (x86)\Tenorshare UltData for Android 2019-08-26 19:38 - 2019-08-26 19:38 - 031502512 _____ (Tenorshare, Inc. ) C:\Users\Domek\Downloads\tenorshare-ultdata-for-android-5-2-7-1.exe 2019-08-26 19:38 - 2019-08-26 19:38 - 002490152 _____ (Nofu ) C:\Users\Domek\Downloads\tenorshare-ultdata-for-android-5-2-7-1-ks_0004900563.exe 2019-08-26 17:50 - 2019-08-26 17:50 - 000000000 ____D C:\Users\Domek\Downloads\Face Yoga Method - Take five years Off your face in months 2019-08-25 21:09 - 2019-08-25 21:24 - 190209555 _____ C:\Users\Domek\Desktop\Complete Shoulder & Hip Blueprint- Hip Video 5 (good copy 41.20m).mp4 2019-08-25 11:55 - 2019-08-25 11:55 - 000000000 ___HD C:\$WINDOWS.~BT 2019-08-24 16:28 - 2019-08-24 17:52 - 1048576000 _____ C:\Users\Domek\Downloads\Unbeatable Mind Academy.part04.rar 2019-08-23 20:57 - 2019-08-23 22:20 - 1048576000 _____ C:\Users\Domek\Downloads\Unbeatable Mind Academy.part03.rar 2019-08-23 13:18 - 2019-08-23 14:41 - 1048576000 _____ C:\Users\Domek\Downloads\Unbeatable Mind Academy.part02.rar 2019-08-23 11:05 - 2019-08-23 12:29 - 1048576000 _____ C:\Users\Domek\Downloads\Unbeatable Mind Academy.part01.rar 2019-08-22 13:12 - 2019-08-23 13:28 - 000000000 ____D C:\Users\Domek\Desktop\Shouder&Hip_Blueprint 2019-08-21 21:50 - 2019-08-21 22:53 - 801405503 _____ C:\Users\Domek\Downloads\Close Your Mouth - Buteyko Method for Perfect Health - Patrick McKeown.rar 2019-08-20 19:14 - 2019-08-20 19:14 - 029117072 _____ C:\Users\Domek\Downloads\Weightlifting Movement Assessment & Optimization - Mobility & Stability for the Snatch and Clean & Jerk (2017).pdf 2019-08-19 21:46 - 2019-08-19 21:46 - 000007003 _____ C:\Users\Domek\Downloads\JPK_VAT_metadane_19-08-2019 (1).xml 2019-08-19 21:45 - 2019-08-19 21:45 - 000001609 _____ C:\Users\Domek\Downloads\JPK_VAT_metadane_19-08-2019.xml 2019-08-19 18:20 - 2019-08-19 18:20 - 000524288 _____ C:\Users\Domek\Downloads\dokument_FV_1696_2019.pdf 2019-08-19 12:59 - 2019-08-19 12:59 - 058564422 _____ C:\Users\Domek\Downloads\nadwcbridgettemrpete_mobile.mp4 2019-08-19 00:46 - 2019-08-19 00:46 - 000285845 _____ C:\Users\Domek\Desktop\skan2.pdf 2019-08-19 00:45 - 2019-08-19 00:45 - 000199288 _____ C:\Users\Domek\Desktop\skan1.pdf 2019-08-17 14:49 - 2019-08-17 14:51 - 026864070 _____ C:\Users\Domek\Desktop\Biolayne Workout Builder.rar 2019-08-16 20:18 - 2019-08-16 20:18 - 000151562 _____ C:\Users\Domek\Desktop\plus7.pdf 2019-08-16 20:18 - 2019-08-16 20:18 - 000151520 _____ C:\Users\Domek\Desktop\plus8.pdf 2019-08-16 11:44 - 2019-08-16 11:44 - 000049677 _____ C:\Users\Domek\Downloads\7681712069_16_7_2019(11_44)_wydruk.pdf 2019-08-14 17:09 - 2019-08-14 17:09 - 000000000 ____D C:\Users\Domek\AppData\Local\Daedalic Entertainment GmbH 2019-08-14 17:07 - 2019-08-14 17:07 - 000000000 ____D C:\Users\Domek\AppData\LocalLow\Daedalic Entertainment GmbH 2019-08-14 17:07 - 2019-08-14 17:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shadow Tactics - Blades of the Shogun [GOG.com] 2019-08-14 16:57 - 2019-08-14 16:57 - 000000000 ____D C:\ProgramData\GOG.com 2019-08-14 16:44 - 2019-08-14 16:44 - 000000000 ____D C:\GOG Games 2019-08-14 16:39 - 2019-08-15 02:18 - 000000000 ____D C:\Gra 2019-08-14 15:18 - 2019-08-26 22:39 - 000000000 ____D C:\Users\Domek\Desktop\Nowy folder 2019-08-14 10:34 - 2019-08-14 10:40 - 114635256 _____ C:\Users\Domek\Downloads\Module 4 – Advanced Breathing Protocols for Restoration - Brian MacKenzie - CPPS Academy.TS 2019-08-13 13:15 - 2019-08-13 13:15 - 000061654 _____ C:\Users\Domek\Downloads\pko_trans_details_20190813_131521.pdf 2019-08-13 13:15 - 2019-08-13 13:15 - 000059830 _____ C:\Users\Domek\Downloads\pko_trans_details_20190813_131526.pdf 2019-08-13 11:46 - 2019-08-13 11:48 - 250895382 _____ C:\Users\Domek\Downloads\3788.rar 2019-08-12 15:20 - 2019-08-12 15:20 - 006259318 _____ C:\Users\Domek\Downloads\Yuri Marmerstein.zip 2019-08-12 15:06 - 2019-08-12 15:06 - 001038092 _____ C:\Users\Domek\Downloads\Level-4-four 1.pdf 2019-08-07 15:13 - 2019-08-07 15:19 - 060946044 _____ C:\Users\Domek\Downloads\BBM - Knee Rehab Template.rar 2019-08-06 17:31 - 2019-08-06 17:31 - 000100713 _____ C:\Users\Domek\Downloads\Crystal Reports - 7mFVConnector_RKv19S_DUPLIKAT.pdf ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-09-05 12:42 - 2018-05-01 19:53 - 000000000 ____D C:\Users\Domek\AppData\Roaming\.ACEStream 2019-09-05 12:42 - 2018-05-01 19:52 - 000000000 ____D C:\Users\Domek\AppData\Roaming\ACEStream 2019-09-05 12:37 - 2018-01-20 15:48 - 000000000 ____D C:\ProgramData\NVIDIA 2019-09-05 12:35 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-09-05 12:34 - 2018-05-13 23:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-09-05 12:34 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2019-09-05 12:33 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps 2019-09-05 12:33 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-09-05 12:33 - 2018-02-23 17:29 - 000000000 ____D C:\Users\Domek\AppData\Local\Packages 2019-09-05 12:33 - 2018-02-22 20:05 - 000000000 ____D C:\Users\Domek\AppData\Local\CrashDumps 2019-09-05 12:30 - 2018-05-13 20:47 - 000000000 ___DC C:\WINDOWS\Panther 2019-09-05 12:14 - 2018-05-16 10:23 - 000000000 ____D C:\Users\Domek\AppData\LocalLow\Temp 2019-09-05 12:07 - 2019-07-23 22:35 - 000002948 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-09-05 12:07 - 2019-07-23 22:35 - 000002948 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-09-05 12:07 - 2019-07-23 22:35 - 000002948 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-09-05 12:07 - 2019-07-23 22:35 - 000002948 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-09-05 12:07 - 2019-05-31 13:06 - 000002696 _____ C:\WINDOWS\System32\Tasks\WinZip Update Notifier 2 2019-09-05 12:07 - 2019-05-31 13:06 - 000002694 _____ C:\WINDOWS\System32\Tasks\WinZip Update Notifier 3 2019-09-05 12:07 - 2019-05-31 13:06 - 000002694 _____ C:\WINDOWS\System32\Tasks\WinZip Update Notifier 1 2019-09-05 12:07 - 2019-04-18 13:36 - 000003856 _____ C:\WINDOWS\System32\Tasks\Opera scheduled assistant Autoupdate 1555587409 2019-09-05 12:07 - 2019-04-18 13:36 - 000003644 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1555587406 2019-09-05 12:07 - 2019-04-10 17:56 - 000003820 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier 2019-09-05 12:07 - 2018-12-10 22:37 - 000003152 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-09-05 12:07 - 2018-12-10 22:37 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-09-05 12:07 - 2018-12-10 22:36 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-09-05 12:07 - 2018-12-10 22:36 - 000003196 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-09-05 12:07 - 2018-12-10 22:36 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-09-05 12:07 - 2018-12-10 22:36 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-09-05 12:07 - 2018-05-13 23:33 - 000003496 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2019-09-05 12:07 - 2018-05-13 23:33 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2019-09-05 12:07 - 2018-05-13 23:33 - 000003272 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2019-09-05 12:07 - 2018-05-13 23:33 - 000002858 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-292459351-3630904960-2125800452-1001 2019-09-05 12:07 - 2018-05-13 23:33 - 000002414 _____ C:\WINDOWS\System32\Tasks\ThunderMaster 2019-09-05 12:06 - 2019-03-14 23:47 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software 2019-09-05 12:04 - 2018-05-13 23:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-09-05 10:10 - 2019-03-14 23:47 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update 2019-09-03 11:35 - 2019-03-14 23:46 - 000478096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2019-09-03 11:29 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-09-03 11:28 - 2019-03-14 23:46 - 000387176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2019-09-03 11:28 - 2019-03-14 23:46 - 000282768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys 2019-09-03 11:28 - 2019-03-14 23:46 - 000112312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2019-09-03 11:28 - 2019-03-14 23:46 - 000087944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2019-09-03 11:28 - 2019-03-14 23:46 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2019-09-03 11:27 - 2019-03-14 23:46 - 001030784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2019-09-03 11:27 - 2019-03-14 23:46 - 000263008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2019-09-03 11:27 - 2019-03-14 23:46 - 000209552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2019-09-03 11:27 - 2019-03-14 23:46 - 000205848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2019-09-03 11:27 - 2019-03-14 23:46 - 000061472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2019-09-03 11:27 - 2019-03-14 23:46 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys 2019-08-31 15:31 - 2018-03-23 16:43 - 000000000 ____D C:\Users\Domek\AppData\Local\PlaceholderTileLogoFolder 2019-08-30 21:00 - 2018-02-09 21:43 - 000000000 ____D C:\Program Files\rempl 2019-08-29 13:59 - 2018-11-09 15:40 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2019-08-29 01:54 - 2018-05-13 23:19 - 000000000 ____D C:\Users\Domek 2019-08-28 19:33 - 2019-08-03 18:18 - 000212992 _____ C:\WINDOWS\system32\ClickToRun_Pipeline16 2019-08-28 12:52 - 2018-01-20 15:56 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-08-28 12:52 - 2018-01-20 15:56 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-08-28 12:16 - 2018-05-13 23:14 - 000278504 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-08-27 14:20 - 2019-04-18 13:35 - 000000000 ____D C:\Users\Domek\AppData\Roaming\uTorrent 2019-08-27 14:17 - 2019-04-18 13:45 - 000000000 ____D C:\Users\Domek\AppData\Local\BitTorrentHelper 2019-08-26 22:19 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF 2019-08-26 21:48 - 2018-01-20 15:58 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2019-08-26 19:40 - 2018-02-22 17:29 - 000000000 ____D C:\Program Files\DIFX 2019-08-25 00:15 - 2018-03-07 14:37 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-08-17 19:45 - 2019-03-11 15:19 - 000000000 ____D C:\Users\Domek\Desktop\NSCA 2019-08-15 11:16 - 2018-02-09 23:20 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-08-15 11:13 - 2018-02-09 23:19 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-08-14 17:07 - 2018-01-20 15:47 - 000000000 ____D C:\ProgramData\Package Cache 2019-08-14 10:22 - 2018-06-15 15:59 - 000000000 ____D C:\Users\Domek\Desktop\Mieszkanie 2019-08-12 12:22 - 2018-05-13 23:25 - 001766926 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-08-12 12:22 - 2018-04-12 17:51 - 000783372 _____ C:\WINDOWS\system32\perfh015.dat 2019-08-12 12:22 - 2018-04-12 17:51 - 000152032 _____ C:\WINDOWS\system32\perfc015.dat 2019-08-11 11:48 - 2019-06-17 17:12 - 000002407 _____ C:\Users\Domek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-08-11 11:48 - 2018-01-20 15:37 - 000000000 ___RD C:\Users\Domek\OneDrive ==================== FLock ================ 2018-02-09 23:21 C:\WINDOWS\UpdateAssistant ==================== SigCheck =============================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ============================