Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 01-11-2019 Uruchomiony przez MICHAL (administrator) GA-H61M-S1 (ACTION ACT SIERRA ALFA3) (01-11-2019 18:25:20) Uruchomiony z C:\Users\MICHAL\Desktop Załadowane profile: MICHAL (Dostępne profile: MICHAL) Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: FF) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Users\MICHAL\AppData\Roaming\Python\zm.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Biometric and Context Agent -> Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe (Intel(R) Corporation) [Brak podpisu cyfrowego] C:\Program Files\Intel\iCLS Client\HeciServer.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe (Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\MICHAL\AppData\Local\Microsoft\BingSvc\BingSvc.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Python Software Foundation -> Python Software Foundation) C:\Users\MICHAL\AppData\Roaming\Python\pythonw.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-370479639-3369542867-3407148108-1000\...\Run: [BingSvc] => C:\Users\MICHAL\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (Microsoft Corporation -> © 2015 Microsoft Corporation) HKU\S-1-5-21-370479639-3369542867-3407148108-1000\...\Run: [Python] => C:\Users\MICHAL\AppData\Roaming\Python\pythonw.exe [96408 2017-12-16] (Python Software Foundation -> Python Software Foundation) <==== UWAGA HKU\S-1-5-21-370479639-3369542867-3407148108-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) HKU\S-1-5-21-370479639-3369542867-3407148108-1000\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2416504 2019-10-03] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-370479639-3369542867-3407148108-1000\...\MountPoints2: Z - Z:\setup.exe HKU\S-1-5-21-370479639-3369542867-3407148108-1000\...\MountPoints2: {4acf00dc-5f19-11e6-98a4-902b340dd267} - Z:\setup.exe HKU\S-1-5-21-370479639-3369542867-3407148108-1000\...\MountPoints2: {c7d41968-7d16-11e7-a2ca-902b340dd267} - I:\UI.exe HKU\S-1-5-21-370479639-3369542867-3407148108-1000\...\MountPoints2: {cb013b63-e0b6-11e6-87a5-902b340dd267} - M:\RunGame.exe HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2016-08-08] (McAfee, Inc. -> McAfee, Inc.) Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {126C391A-B18A-4C7A-9E49-F7977E6D91D1} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_270_Plugin.exe [1457720 2019-10-10] (Adobe Inc. -> Adobe) Task: {33EF12F9-2A35-4F33-BB03-BB04AC4F4E48} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {365D2E77-6A7B-40B5-A804-15B4D347BE58} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3D36C176-AEC5-4921-91D7-45FF00C3FE60} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1723392 2019-08-27] () [Brak podpisu cyfrowego] Task: {3EC36712-B1D8-4CC5-8A66-C4B5B7227052} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {48C8EFEA-55EB-4DAC-BE67-5F9D085D1D24} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A58269B9-3FF8-4818-932E-0029DC0DF6D5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {AC1F0EB9-CCB4-40E3-8BDD-80C4E4AC1184} - System32\Tasks\{BF15D691-0DE4-4D92-B87B-E7BF833D6375} => C:\Windows\system32\pcalua.exe -a "F:\Gry\The Crew (Russian)\Support\InsHelper.exe" -c CallUplayProtocol Uninstall 507 Task: {AED90FA0-0E08-4524-A4AA-F2DD59628D9D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B566FD2F-8965-4C46-88BB-36BF6596C13D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BBBF62FE-27B0-4875-96EC-BFBD7D455946} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-10] (Adobe Inc. -> Adobe) Task: {C201A43B-6E53-47F8-8288-B1521EF3B782} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C3AD6CAD-672A-4EDC-825C-E4B3A90E8DFF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd) Task: {C41255D3-C2CD-4288-840D-4BAEAA71A28C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {C5B1500D-88A7-44A7-92B3-B6F32B2CA02D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C614FA0A-0CBD-47B2-B19A-6FC9349894FB} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CA4C2A00-DC01-4C55-A051-453C9759FA8A} - \MICHAL -> Brak pliku <==== UWAGA Task: {E986D52D-F50B-4FCE-83E0-E8647C6D1914} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1551136 2016-01-14] (ASUSTeK Computer Inc. -> ) [Brak podpisu cyfrowego] Task: {EA2B4AE4-6351-478B-8E0D-1A9DFC5583DD} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software) Task: {EA40D533-D3A9-4E70-AC3A-BDCF971A8AAF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F2087E6F-130B-4148-A521-1583883A9056} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 10.250.250.12 10.250.250.14 Tcpip\..\Interfaces\{058C96D0-560E-4B7B-8B10-29AF663EC791}: [DhcpNameServer] 10.250.250.12 10.250.250.14 Internet Explorer: ================== HKU\S-1-5-21-370479639-3369542867-3407148108-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-08-09] (Intel(R) Security True Key -> Intel Security) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-11-06] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-06] (Oracle America, Inc. -> Oracle Corporation) Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-08-09] (Intel(R) Security True Key -> Intel Security) FireFox: ======== FF DefaultProfile: 5ymo1z2r.default-1530473713053 FF ProfilePath: C:\Users\MICHAL\AppData\Roaming\Mozilla\Firefox\Profiles\5ymo1z2r.default-1530473713053 [2019-11-01] FF DownloadDir: J: FF Homepage: Mozilla\Firefox\Profiles\5ymo1z2r.default-1530473713053 -> hxxps://www.google.com/ FF Extension: (Avast Online Security) - C:\Users\MICHAL\AppData\Roaming\Mozilla\Firefox\Profiles\5ymo1z2r.default-1530473713053\Extensions\wrc@avast.com.xpi [2019-10-04] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json] FF Extension: (Video DownloadHelper) - C:\Users\MICHAL\AppData\Roaming\Mozilla\Firefox\Profiles\5ymo1z2r.default-1530473713053\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-07-08] FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\MICHAL\AppData\Roaming\Mozilla\Firefox\Profiles\5ymo1z2r.default-1530473713053\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-10-22] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_270.dll [2019-10-10] (Adobe Inc. -> ) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Brak pliku] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_270.dll [2019-10-10] (Adobe Inc. -> ) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-11-06] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-06] (Oracle America, Inc. -> Oracle Corporation) Chrome: ======= CHR Profile: C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default [2019-10-31] CHR Extension: (Prezentacje Google) - C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-08-03] CHR Extension: (Dokumenty Google) - C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-08-04] CHR Extension: (Dysk Google) - C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-04] CHR Extension: (YouTube) - C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-04] CHR Extension: (Daxab Ultimate) - C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default\Extensions\enakmcmeealkdoeindgoeogldodhdeda [2018-06-20] CHR Extension: (Arkusze Google) - C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-08-03] CHR Extension: (Dokumenty Google offline) - C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-04] CHR Extension: (Video Ad Blocker Plus) - C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default\Extensions\hegneaniplmfjcmohoclabblbahcbjoe [2016-08-03] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-03] CHR Extension: (Gmail) - C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-04] CHR Extension: (Chrome Media Router) - C:\Users\MICHAL\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-28] CHR HKU\S-1-5-21-370479639-3369542867-3407148108-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hegneaniplmfjcmohoclabblbahcbjoe] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fcoadmpfijfcmokecmkgolhbaeclfage] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [hegneaniplmfjcmohoclabblbahcbjoe] - hxxp://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [382424 2018-01-05] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6085360 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-07-29] (Disc Soft Ltd -> Disc Soft Ltd) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Brak podpisu cyfrowego] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Trusted Connect Service -> Intel(R) Corporation) R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3036312 2016-07-28] (Intel(R) Biometric and Context Agent -> Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [920616 2016-08-08] (McAfee, Inc. -> McAfee, Inc.) R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-08-08] (McAfee, Inc. -> McAfee, Inc.) S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-08-08] (McAfee, Inc. -> McAfee, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-04-15] (Microsoft Windows -> Microsoft Corporation) S3 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe [X] R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-04-14] (ASUSTeK Computer Inc. -> ) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [171520 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-10-03] (AVAST Software s.r.o. -> AVAST Software) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-08-10] (Disc Soft Ltd -> Disc Soft Ltd) S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-08-10] (Disc Soft Ltd -> Disc Soft Ltd) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [69840 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [75600 2019-07-18] (NVIDIA Corporation -> NVIDIA Corporation) R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> ) R0 WofAdk; C:\Windows\System32\drivers\wofadk.sys [221904 2016-04-10] (Microsoft Corporation -> Microsoft Corporation) [Brak podpisu cyfrowego] S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-11-01 18:25 - 2019-11-01 18:25 - 000023218 _____ C:\Users\MICHAL\Desktop\FRST.txt 2019-10-31 17:14 - 2019-11-01 18:24 - 001619456 _____ (Farbar) C:\Users\MICHAL\Desktop\FRST64(1).exe 2019-10-31 16:28 - 2019-10-31 16:28 - 000000000 ____D C:\ProgramData\GridinSoft 2019-10-25 18:30 - 2019-11-01 16:32 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2019-10-21 18:07 - 2019-10-21 18:07 - 000000000 ____D C:\ProgramData\Navigator 2019-10-20 20:53 - 2019-10-20 20:53 - 000000000 ____D C:\Users\MICHAL\AppData\Roaming\Navigator 2019-10-03 17:59 - 2019-10-03 17:59 - 000355720 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2019-10-03 17:59 - 2019-10-03 17:59 - 000236024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2019-10-03 17:59 - 2019-10-03 17:59 - 000171520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-11-01 18:25 - 2018-06-11 07:55 - 000000000 ____D C:\FRST 2019-11-01 17:32 - 2009-07-14 05:45 - 000023648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-11-01 17:32 - 2009-07-14 05:45 - 000023648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-11-01 17:26 - 2019-09-25 17:09 - 000003286 _____ C:\Windows\system32\Tasks\klcp_update 2019-11-01 17:26 - 2019-09-19 20:57 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-11-01 17:26 - 2019-09-19 20:57 - 000003940 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-11-01 17:26 - 2019-09-19 20:57 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-11-01 17:26 - 2019-09-19 20:57 - 000003790 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-11-01 17:26 - 2019-09-19 20:57 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-11-01 17:26 - 2019-09-19 20:57 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-11-01 17:26 - 2019-09-19 20:57 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-11-01 17:26 - 2019-09-19 20:57 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-11-01 17:26 - 2019-09-19 20:57 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-11-01 17:26 - 2019-09-19 20:57 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-11-01 17:26 - 2019-02-16 12:31 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update 2019-11-01 17:26 - 2019-02-16 12:31 - 000002814 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC 2019-11-01 17:26 - 2018-03-13 22:15 - 000004568 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier 2019-11-01 17:26 - 2017-08-21 16:22 - 000004424 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater 2019-11-01 17:26 - 2017-08-10 13:37 - 000003168 _____ C:\Windows\system32\Tasks\{BF15D691-0DE4-4D92-B87B-E7BF833D6375} 2019-11-01 17:26 - 2016-08-03 20:13 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software 2019-11-01 15:41 - 2016-11-18 16:52 - 000000000 ____D C:\Users\MICHAL\AppData\LocalLow\Mozilla 2019-11-01 15:40 - 2016-08-03 19:26 - 000000000 ____D C:\ProgramData\NVIDIA 2019-11-01 15:37 - 2011-04-12 13:17 - 000739716 _____ C:\Windows\system32\perfh015.dat 2019-11-01 15:37 - 2011-04-12 13:17 - 000155290 _____ C:\Windows\system32\perfc015.dat 2019-11-01 15:37 - 2009-07-14 06:13 - 001668226 _____ C:\Windows\system32\PerfStringBackup.INI 2019-11-01 15:37 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2019-11-01 15:34 - 2018-03-25 17:12 - 000000000 ____D C:\Users\MICHAL\AppData\Local\AVAST Software 2019-11-01 15:30 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-10-31 22:32 - 2017-01-01 17:45 - 000000000 ____D C:\Users\MICHAL\Documents\Euro Truck Simulator 2 2019-10-31 16:22 - 2017-03-19 18:14 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2019-10-30 23:10 - 2019-10-01 21:11 - 000000000 ____D C:\Users\MICHAL\AppData\Roaming\vlc 2019-10-30 23:04 - 2019-09-25 17:13 - 000000000 ____D C:\Users\MICHAL\AppData\Roaming\MPC-HC 2019-10-29 17:29 - 2019-02-16 12:31 - 000000830 _____ C:\Users\Public\Desktop\CCleaner.lnk 2019-10-29 17:29 - 2019-02-16 12:31 - 000000830 _____ C:\ProgramData\Desktop\CCleaner.lnk 2019-10-29 17:29 - 2016-09-09 18:54 - 000000000 ____D C:\Program Files (x86)\Steam 2019-10-29 17:29 - 2016-08-16 20:26 - 000000000 ____D C:\Users\MICHAL\AppData\Local\CrashDumps 2019-10-28 20:47 - 2016-08-03 18:42 - 000000000 ____D C:\Users\MICHAL 2019-10-28 20:32 - 2016-08-28 14:40 - 000000000 ____D C:\ProgramData\ZZ 2019-10-27 21:07 - 2016-08-03 22:50 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2019-10-26 13:52 - 2016-08-03 18:35 - 000294536 _____ C:\Windows\system32\FNTCACHE.DAT 2019-10-25 21:21 - 2017-01-14 21:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pet Soccer 2019-10-25 21:15 - 2019-09-20 19:47 - 000000000 ____D C:\Program Files (x86)\ASUS 2019-10-25 21:15 - 2016-08-03 19:12 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2019-10-25 19:24 - 2019-07-10 19:41 - 000000000 ____D C:\Users\MICHAL\Documents\FIFA 19 2019-10-25 19:24 - 2016-10-27 20:48 - 000000000 ____D C:\Users\MICHAL\Documents\My Games 2019-10-21 20:40 - 2016-09-10 15:25 - 000000000 ____D C:\Users\MICHAL\AppData\Local\ElevatedDiagnostics 2019-10-10 17:13 - 2016-08-03 22:51 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe 2019-10-10 17:13 - 2016-08-03 22:51 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2019-10-10 17:13 - 2016-08-03 22:51 - 000000000 ____D C:\Windows\system32\Macromed 2019-10-03 17:59 - 2019-04-09 17:59 - 000274456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2019-10-03 17:59 - 2019-04-09 17:59 - 000209552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2019-10-03 17:59 - 2019-04-09 17:59 - 000065120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2019-10-03 17:59 - 2019-04-09 17:59 - 000037616 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2019-10-03 17:59 - 2019-04-09 17:58 - 000042736 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2019-10-03 17:59 - 2017-12-21 21:59 - 000276952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys 2019-10-03 17:59 - 2017-11-20 21:17 - 000204824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2019-10-03 17:59 - 2016-08-03 20:13 - 000848432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2019-10-03 17:59 - 2016-08-03 20:13 - 000460448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2019-10-03 17:59 - 2016-08-03 20:13 - 000316528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2019-10-03 17:59 - 2016-08-03 20:13 - 000110320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2019-10-03 17:59 - 2016-08-03 20:13 - 000083792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2019-10-30 18:59 ==================== Koniec FRST.txt ========================