==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-07-31] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3126296 2020-08-11] (Opera Software AS -> Opera Software) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd) HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\...\MountPoints2: {1259552e-09db-11e5-a5a7-6c626d44eaae} - I:\INSTALL_ADB_RNDIS.exe HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-03-21] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Windows x64\Print Processors\hpzppWN7: C:\Windows\System32\spool\prtprocs\x64\hpzppWN7.dll [101376 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\Bullzip PDF Print Monitor: C:\Program Files\Common Files\Bullzip\PDF Printer\Ports\BULLZIP\bzpdf.dll [218624 2013-07-30] (Bullzip) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\PCL hpz3lw71: C:\Windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [110264 2013-04-09] (pdfforge GmbH -> pdfforge GmbH) HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.125\Installer\chrmstp.exe [2020-08-14] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -> C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe [2007-08-23] (Hewlett-Packard Company -> Hewlett-Packard Company) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] -> HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-06-29] (Adobe Inc. -> Adobe Systems, Inc.) HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation -> Microsoft Corp.) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0F829404-F5B2-450D-957A-0756AD5C34C4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-22] (Google Inc -> Google Inc.) Task: {16A0078C-D34A-4088-8222-C44669FA50A1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-11-24] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {1C4A1047-EB95-45B7-9AFA-392C9ED1B915} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {4382ACA3-45B0-479F-A572-79C442750D02} - System32\Tasks\CleanMem Mini Monitor => C:\Users\user\Desktop\CleanMem.2.4.3.Portable\mini_monitor.exe [1417216 2013-09-28] (PcWinTech.com) [Brak podpisu cyfrowego] Task: {63ECBB53-1291-4C91-83B1-FBFD9A368DFF} - System32\Tasks\Opera scheduled assistant Autoupdate 1582738523 => C:\Program Files\Opera\launcher.exe [1509400 2020-07-27] (Opera Software AS -> Opera Software) Task: {6C0D92DE-3B33-4CD5-836B-BDB6FE16CA75} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_153_pepper.exe [1456128 2018-11-24] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {7C11900B-3A6B-46B2-B6F7-56E46EA9EF62} - System32\Tasks\{BDB8E18C-8A48-4856-B754-801A435D2EC4} => C:\Users\user\Desktop\PES2015ScreenResolution.exe Task: {8697033A-E393-43ED-988B-17039702221F} - System32\Tasks\Opera scheduled Autoupdate 1493915677 => C:\Program Files\Opera\launcher.exe [1509400 2020-07-27] (Opera Software AS -> Opera Software) Task: {8D62B892-AD49-4E0A-9F19-7A77B83DE274} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1336400 2020-07-08] (Adobe Inc. -> Adobe Inc.) Task: {95257B6A-E199-4505-A0A6-AAD58FFB17B1} - System32\Tasks\{8D534665-47AC-4BD4-8FDA-9CF0AB7685F8} => D:\Pro Evolution Soccer 2016\PES2016.exe Task: {A6692766-9DD4-476F-88AD-B10367DA1B56} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3810408 2020-07-31] (Avast Software s.r.o. -> AVAST Software) Task: {C0810EC5-5DE6-4011-B504-2C38EF47FE94} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd) Task: {C769E834-CCAD-48B2-98FE-3173006560D4} - System32\Tasks\DivXUpdate => C:\Program Files (x86)\Common Files\DivX Shared\DivX Update\DivXUpdate.exe [68568 2017-03-07] (DivX, LLC -> DivX, LLC) Task: {C8B467A9-46FD-4EAB-AD03-31681DCFC5DE} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe Task: {CC6349F7-4304-4C98-9911-E03FE6A42627} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {CDBC7F9C-3521-4F8A-AE7B-23B745C977BA} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software) Task: {CE5A8578-373B-4BC9-9BCF-89BF34A6D7B8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-22] (Google Inc -> Google Inc.) Task: {D9499529-1053-46F4-A537-14F6571CFE36} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-10] (Piriform Ltd -> Piriform Ltd) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Clean System Memory.job => C:\WINDOWS\syswow64\CleanMem.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-28] (Microsoft Corporation -> Microsoft Corp.) Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-28] (Microsoft Corporation -> Microsoft Corp.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{E568B232-37A2-41DE-B9F2-21B9005EF5A1}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=pl-pl SearchScopes: HKU\S-1-5-21-3099186090-2590542960-4084621217-1000 -> DefaultScope 2E6FD9385AC449F496D188A74893907C URL = hxxp://www.bing.com/search?FORM=SK2MDF&PC=SK2M&q={searchTerms}&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-3099186090-2590542960-4084621217-1000 -> 2E6FD9385AC449F496D188A74893907C URL = hxxp://www.bing.com/search?FORM=SK2MDF&PC=SK2M&q={searchTerms}&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-3099186090-2590542960-4084621217-1000 -> {63058B72-F7D9-4221-B76F-6D3057BA29F6} URL = hxxp://isearch.avg.com/search?cid={C06B6C8C-45D1-4182-8F66-8AF44DF20AC8}&mid=758d8e50f50747d08cc8bd2b2ba0035d-33d4866a9e818fd66b528f04a17b59c23d6bbcc9&lang=pl&ds=ac011&pr=sa&d=2012-06-30 23:47:47&v=11.1.0.12&sap=dsp&q={searchTerms} BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-07-27] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-27] (Oracle America, Inc. -> Oracle Corporation) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - Brak pliku Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Brak pliku StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\g8hqiun1.default [2020-08-12] FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt FF Extension: (PDF Architect Converter For Firefox) - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013-09-17] [Przestarzałe] [Brak podpisu cyfrowego] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_130.dll [2017-09-13] (Adobe Systems Incorporated -> ) FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-13] (Adobe Systems Incorporated -> ) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1220162.dll [2015-08-31] (Adobe Systems, Inc.) [Brak podpisu cyfrowego] FF Plugin-x32: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Player\npDivxPlayerPlugin.dll [Brak pliku] FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2017-03-16] (DivX, LLC -> DivX, LLC) FF Plugin-x32: @esn/esnlaunch,version=2.1.4 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll [Brak pliku] FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [Brak pliku] FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-01-18] (NVIDIA CORPORATION -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-01-18] (NVIDIA CORPORATION -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Brak pliku] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-06-29] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2020-08-13] CHR Notifications: Default -> hxxps://jbzdy.pl; hxxps://miuipolska.pl; hxxps://pvpc.eu CHR HomePage: Default -> hxxp://pl.msn.com/?pc=UP97&ocid=UP97DHP CHR StartupUrls: Default -> "hxxp://pl.msn.com/?pc=UP97&ocid=UP97DHP" CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2019-06-03] CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-22] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-04-02] CHR Extension: (Google Search) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-22] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-15] CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-01] CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-02] CHR HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\user\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx CHR HKU\S-1-5-21-3099186090-2590542960-4084621217-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] Opera: ======= OPR Notifications: hxxps://www.spidersweb.pl OPR Extension: (Turn Off the Lights) - C:\Users\user\AppData\Roaming\Opera Software\Opera Stable\Extensions\ccbdoklfbpcifppcfahmmpmbkfdjjccm [2019-11-25] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-11-24] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7776160 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [353696 2020-07-31] (Avast Software s.r.o. -> AVAST Software) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [775296 2018-03-31] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego] S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-08-12] (Malwarebytes Inc -> Malwarebytes) S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG -> Nero AG) R2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [278336 2011-09-19] (NVIDIA Corporation -> NVIDIA) S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-20] (Electronic Arts, Inc. -> Electronic Arts) S3 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH -> pdfforge GmbH) S3 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH -> pdfforge GmbH) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096 2011-03-28] (Microsoft Corporation -> Microsoft Corp.) U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X] S2 luminati_net_updater_win_hola_org; C:/Program Files/Hola/app/net_updater64.exe --updater win_hola.org [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [33872 2012-05-17] (AnvSoft Co., Ltd. -> AnvSoft Inc.) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205888 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235592 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [195656 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60488 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42776 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175200 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [515544 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-14] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [466752 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217336 2020-07-31] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [323784 2020-08-12] (Avast Software s.r.o. -> AVAST Software) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [279616 2012-05-09] (DT Soft Ltd -> DT Soft Ltd) R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [57344 2009-06-10] (Microsoft Windows -> Atheros Communications, Inc.) S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-08-12] (Malwarebytes Inc -> Malwarebytes) R3 nvoclk64; C:\Windows\System32\DRIVERS\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corporation -> NVIDIA Corp.) R0 RzFilter; C:\Windows\System32\drivers\RzFilter.sys [74432 2013-11-21] (Razer Inc. -> Razer, Inc.) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-05-02] (Duplex Secure Ltd -> Duplex Secure Ltd.) R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1349232 2010-10-01] (VIA Technologies Inc. -> VIA Technologies, Inc.) U3 a6smp2wy; C:\Windows\System32\Drivers\a6smp2wy.sys [0 0000-00-00] (Advanced Micro Devices) <==== UWAGA (zerobajtowy plik/folder) U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-08-14 12:11 - 2020-08-14 12:13 - 000022023 _____ C:\Users\user\Desktop\FRST.txt 2020-08-14 12:08 - 2020-08-14 12:08 - 002296320 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe 2020-08-12 11:56 - 2020-08-13 19:57 - 000000000 ____D C:\Users\user\AppData\LocalLow\IGDump 2020-08-12 11:55 - 2020-08-12 11:55 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2020-08-12 11:55 - 2020-08-12 11:55 - 000001920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2020-08-12 11:55 - 2020-08-12 11:55 - 000001908 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-08-12 11:55 - 2020-08-12 11:55 - 000001908 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2020-08-12 11:54 - 2020-08-12 11:54 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2020-08-12 11:52 - 2020-08-12 11:52 - 002040904 _____ (Malwarebytes) C:\Users\user\Desktop\MBSetup.exe 2020-08-12 11:38 - 2020-08-12 11:42 - 437214647 _____ C:\Users\user\Downloads\Królowa XXX - Lovelace (2013) Lektor PL.rmvb 2020-07-31 12:48 - 2020-07-31 12:48 - 000061564 _____ C:\Users\user\Downloads\document_20200731124845.pdf 2020-07-31 12:41 - 2020-07-31 12:40 - 000335968 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2020-07-31 12:41 - 2020-07-31 12:40 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2020-07-31 12:41 - 2020-07-31 12:40 - 000175200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2020-07-31 08:05 - 2020-07-31 08:32 - 608378880 _____ C:\Users\user\Desktop\Sensacje XX wieku - Tajemniczy doktor Sorge.mts 2020-07-30 08:32 - 2020-07-30 08:55 - 455442432 _____ C:\Users\user\Desktop\Sensacje XX wieku - Rajd na St. Nazaire cz. 2 (1994).mts 2020-07-30 08:00 - 2020-07-30 08:28 - 697319424 _____ C:\Users\user\Desktop\Sensacje XX wieku - Rajd na St. Nazaire cz.1 (1994).mts 2020-07-21 08:20 - 2020-07-21 09:08 - 988004352 _____ C:\Users\user\Desktop\Sensacje XX wieku - Tajemnica bunkra Hitlera.mts 2020-07-18 11:18 - 2020-07-18 11:45 - 577683456 _____ C:\Users\user\Desktop\TVP_Historia-07182020-1318.mts ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-08-14 12:13 - 2019-01-19 19:33 - 000000000 ____D C:\FRST 2020-08-14 12:02 - 2019-02-03 00:15 - 000000000 ____D C:\Users\user\Desktop\dokumenty 2020-08-14 11:52 - 2012-03-27 12:22 - 000000000 ____D C:\ProgramData\AVAST Software 2020-08-14 11:50 - 2016-07-20 01:54 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2020-08-14 11:44 - 2015-12-22 00:36 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-08-14 11:44 - 2015-12-22 00:36 - 000002189 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-08-14 11:44 - 2015-12-22 00:36 - 000002189 _____ C:\ProgramData\Desktop\Google Chrome.lnk 2020-08-14 11:43 - 2009-07-14 06:45 - 000010416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2020-08-14 11:43 - 2009-07-14 06:45 - 000010416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2020-08-14 11:36 - 2018-10-19 21:32 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2020-08-14 11:34 - 2012-03-26 16:31 - 000000000 ____D C:\ProgramData\NVIDIA 2020-08-14 11:34 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2020-08-13 20:06 - 2009-07-14 19:55 - 000750048 _____ C:\Windows\system32\perfh015.dat 2020-08-13 20:06 - 2009-07-14 19:55 - 000161526 _____ C:\Windows\system32\perfc015.dat 2020-08-13 20:06 - 2009-07-14 07:13 - 001699354 _____ C:\Windows\system32\PerfStringBackup.INI 2020-08-13 20:05 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2020-08-12 12:21 - 2016-06-07 14:14 - 000000000 ____D C:\Users\user\AppData\Roaming\MPC-HC 2020-08-12 12:21 - 2012-05-06 01:11 - 000000000 ____D C:\Users\user\AppData\Roaming\PhotoScape 2020-08-12 11:53 - 2018-08-23 20:58 - 000000000 ____D C:\Program Files\Malwarebytes 2020-08-12 11:25 - 2020-06-23 19:16 - 000004036 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1582738523 2020-08-12 11:23 - 2013-03-07 11:26 - 000323784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2020-07-31 18:26 - 2017-05-04 18:34 - 000000000 ____D C:\Program Files\Opera 2020-07-31 12:40 - 2020-04-14 21:33 - 000515544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys 2020-07-31 12:40 - 2019-01-14 16:52 - 000235592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2020-07-31 12:40 - 2019-01-06 20:50 - 000195656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2020-07-31 12:40 - 2019-01-06 20:50 - 000060488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2020-07-31 12:40 - 2019-01-06 20:50 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2020-07-31 12:40 - 2018-10-19 21:31 - 000042776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2020-07-31 12:40 - 2017-11-09 23:05 - 000205888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2020-07-31 12:40 - 2013-03-07 11:26 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2020-07-31 12:40 - 2012-03-27 12:23 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2020-07-31 12:40 - 2012-03-27 12:23 - 000466752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2020-07-31 12:40 - 2012-03-27 12:23 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2020-07-31 12:30 - 2017-05-04 18:34 - 000003886 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1493915677 2020-07-21 19:55 - 2012-05-06 01:15 - 000032768 ____H C:\Users\user\Desktop\photothumb.db 2020-07-16 14:49 - 2016-07-20 01:54 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2020-07-16 14:41 - 2020-01-14 11:23 - 000000000 ____D C:\Users\user\Desktop\HBPVR ==================== Pliki w katalogu głównym wybranych folderów ======== 2012-05-08 13:38 - 2012-05-08 13:38 - 010522967 _____ (CTYDEHT ) C:\Users\user\DAEMON Tools Pro 4.41.0315.0262 RePack by CTYDEHT.exe 2012-03-31 10:31 - 2012-03-31 10:31 - 001528184 _____ (Microsoft Corporation) C:\Users\user\GenuineCheck.exe 2012-04-09 18:46 - 2012-04-09 18:46 - 002050600 _____ () C:\Users\user\Hellgate_Global_Downloader.exe 2012-03-29 16:59 - 2012-03-29 16:59 - 002459488 _____ () C:\Users\user\mp3tagv250setup_www.INSTALKI.pl.exe 2002-08-08 06:11 - 2002-08-08 06:11 - 000319488 ____R () C:\Users\user\AppData\Roaming\MafiaSetup.exe 2013-12-12 18:49 - 2013-12-17 15:10 - 000071680 _____ () C:\Users\user\AppData\Roaming\RZR_0020b12e4dc6b1bddac8e2a8225b.db 2013-07-27 16:09 - 2013-10-24 17:09 - 000000108 _____ () C:\Users\user\AppData\Roaming\WB.CFG 2013-06-17 16:09 - 2013-10-24 17:09 - 000000006 _____ () C:\Users\user\AppData\Roaming\WBPU-TTL.DAT 2012-04-04 21:53 - 2012-04-04 21:53 - 000000092 _____ () C:\Users\user\AppData\Local\fusioncache.dat 2012-10-24 21:17 - 2012-10-24 21:17 - 000004096 ____H () C:\Users\user\AppData\Local\keyfile3.drm 2013-09-30 17:09 - 2013-10-04 17:09 - 000361117 _____ () C:\Users\user\AppData\Local\newhb2.crx 2015-11-11 02:33 - 2015-11-11 02:33 - 000000818 _____ () C:\Users\user\AppData\Local\recently-used.xbel 2019-04-07 22:34 - 2019-04-07 22:34 - 000007602 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg 2019-06-03 21:41 - 2019-06-03 21:41 - 000000000 _____ () C:\Users\user\AppData\Local\{F4A0AD06-7DBF-4D73-A2A0-3786E25BDFA9} ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2020-05-05 19:54 ==================== Koniec FRST.txt ========================