Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14-03-2021 Uruchomiony przez pati_ (administrator) LAPTOP-N93U0AA1 (HP HP Laptop 15-bs0xx) (16-03-2021 20:03:55) Uruchomiony z C:\Users\pati_\Downloads Załadowane profile: pati_ Platform: Windows 10 Home Wersja 2004 19041.867 (X64) Język: Angielski (Zjednoczone Królestwo) -> Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <3> (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-04-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [164608 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [705784 2016-06-20] (HP Inc. -> HP Inc.) HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe [267056 2021-01-14] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-4111564225-2441505280-3832451587-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\pati_\AppData\Local\Microsoft\Teams\Update.exe [2453720 2021-02-28] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-4111564225-2441505280-3832451587-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32726088 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd) HKLM\...\Print\Monitors\HP E111 Status Monitor: C:\WINDOWS\system32\hpinkstsE111LM.dll [393352 2017-04-14] (Hewlett Packard -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.82\Installer\chrmstp.exe [2021-03-16] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {06A92D83-7BDE-40CA-9975-003873CD83D4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {078BA0EA-95B4-4964-8EAE-4A256E8E73DF} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-25] (Dropbox, Inc -> Dropbox, Inc.) Task: {11852B88-263F-48EB-B0B9-85C76EB2AC80} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe Task: {194465AB-D030-4BDE-8FDC-12D6E2FD41FB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-25] (Google Inc -> Google Inc.) Task: {1B504122-15C8-4EBF-A621-4B126B65E7C5} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1822976 2021-02-23] (AVG Technologies USA, LLC -> AVG Technologies) Task: {1C97D8A4-CA89-4C0C-89DA-998BCE402300} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe Task: {22939E8D-A322-45A5-92BF-1797BBCC1FDF} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4730624 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) Task: {25385B2A-BA04-4759-AFCE-F83D497120D0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-05] (Piriform Software Ltd -> Piriform) Task: {26105DC0-0458-4D4E-9B19-D465AC8A8E05} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23079792 2021-03-05] (Microsoft Corporation -> Microsoft Corporation) Task: {32DB4CDA-495B-4A93-A612-B72DC5EFC7AE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-25] (Google Inc -> Google Inc.) Task: {46F43A41-51EC-4EA1-92D9-21D59C9463E3} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe Task: {505FE802-BAF3-4501-81AD-37E065A51299} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4004296 2021-03-08] (Microsoft Corporation -> Microsoft Corporation) Task: {59A71414-E4C9-48F7-A332-D6E98DC8F4D9} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23079792 2021-03-05] (Microsoft Corporation -> Microsoft Corporation) Task: {5AD26F19-BD06-418D-AB76-9027DC61EB19} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis Restart => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {5AE5C737-CE85-4BCE-A6EE-F1D94A11A333} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-25] (Dropbox, Inc -> Dropbox, Inc.) Task: {69B4E303-B160-4B25-B7D2-EFF3575F5845} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4004296 2021-03-08] (Microsoft Corporation -> Microsoft Corporation) Task: {786E7D96-F4E4-40BA-8EDE-F2FFEC3A715D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114048 2021-03-14] (Microsoft Corporation -> Microsoft Corporation) Task: {86976863-5A5A-41A6-83FC-A053B494AAA6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114048 2021-03-14] (Microsoft Corporation -> Microsoft Corporation) Task: {94A0BDAB-8708-486F-8B17-693624108D83} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe Task: {96758652-60FE-4597-AB57-9EEB688A1712} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [147832 2020-02-24] (HP Inc. -> HP Inc.) Task: {98651CD4-09C8-4766-8BCE-A4D3AA03F559} - System32\Tasks\Opera scheduled Autoupdate 1514205436 => C:\Users\pati_\AppData\Local\Programs\Opera\launcher.exe Task: {A82A5F48-66C2-4887-811C-EF6BF9F89974} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27168840 2021-03-05] (Piriform Software Ltd -> Piriform Software Ltd) Task: {A83843B9-B12D-4A2F-BD5F-A5DA505C2053} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.) Task: {A83A9EAC-EFBC-42BA-A40B-2B27C59345FD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Task: {B02EDA02-F81F-4B5A-B9D6-226D2E474446} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1791712 2021-02-23] (Avast Software s.r.o. -> Avast Software) Task: {B7D23FCD-A5C1-4959-90E9-6F0C05C16561} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [616232 2016-11-28] (Dropbox, Inc -> DropboxOEM) Task: {C00F357E-3123-4D78-86B4-35D565330C4A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe Task: {E0913144-53D2-4F1A-95B8-DA1154884CC1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.) Task: {FA6E4663-CBAF-4F58-8CCC-D0B012B0F493} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1133488 2021-03-14] (Microsoft Corporation -> Microsoft Corporation) Task: {FD4B6608-3BFA-4E65-8F77-6C6F72A925A9} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs] (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{4fe31f74-9f16-4226-ace9-09d741857f27}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{ce7bf9b2-914a-48d3-8191-1521803e6034}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{d88a4f49-c998-4b67-ad59-b254b7029a55}: [DhcpNameServer] 172.20.10.1 Edge: ======= Edge Profile: C:\Users\pati_\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-16] FireFox: ======== FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-08] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [Brak pliku] Chrome: ======= CHR Profile: C:\Users\pati_\AppData\Local\Google\Chrome\User Data\Default [2021-03-16] CHR HomePage: Default -> hxxp://www.google.com CHR StartupUrls: Default -> "hxxp://www.global-pl.com/" CHR Extension: (AVG SafePrice | Porównania, promocje, kupony) - C:\Users\pati_\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2021-03-16] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\pati_\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-16] CHR Extension: (Chrome Media Router) - C:\Users\pati_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-03-16] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-03-08] (Apple Inc. -> Apple Inc.) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [622184 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [353024 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8091704 2021-03-07] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109464 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8988552 2021-03-05] (Microsoft Corporation -> Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-25] (Dropbox, Inc -> Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-12-25] (Dropbox, Inc -> Dropbox, Inc.) S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [361848 2019-12-06] (HP Inc. -> HP Inc.) S2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [631800 2016-06-20] (HP Inc. -> HP Inc.) S2 MSSQL$INSERTGT; C:\Program Files\Microsoft SQL Server\MSSQL12.INSERTGT\MSSQL\Binn\sqlservr.exe [372416 2016-06-18] (Microsoft Corporation -> Microsoft Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2495280 2020-03-16] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3445552 2020-03-16] (Electronic Arts, Inc. -> Electronic Arts) S2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2020-12-01] (Razer USA Ltd. -> Razer Inc) S2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533376 2020-12-09] (Razer USA Ltd. -> Razer Inc.) S2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [291304 2021-01-14] (Razer USA Ltd. -> Razer Inc.) S4 SQLAgent$INSERTGT; C:\Program Files\Microsoft SQL Server\MSSQL12.INSERTGT\MSSQL\Binn\SQLAGENT.EXE [613056 2016-06-18] (Microsoft Corporation -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\NisSrv.exe [2483616 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.4-0\MsMpEng.exe [128376 2021-03-16] (Microsoft Windows Publisher -> Microsoft Corporation) S2 McAfee WebAdvisor; "C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [35792 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [208176 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [357400 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [249368 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [98840 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16832 2020-12-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [41424 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [175368 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [521472 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [107920 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [83496 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [850248 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [465800 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [215464 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [327104 2021-02-25] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) R1 RsFx0320; C:\WINDOWS\System32\DRIVERS\RsFx0320.sys [250048 2016-06-18] (Microsoft Corporation -> Microsoft Corporation) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2017-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-03-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [420072 2021-03-16] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-16] (Microsoft Windows -> Microsoft Corporation) R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-03-16 20:03 - 2021-03-16 20:07 - 000020424 _____ C:\Users\pati_\Downloads\FRST.txt 2021-03-16 20:02 - 2021-03-16 20:05 - 000000000 ____D C:\FRST 2021-03-16 19:44 - 2021-03-16 19:50 - 000000000 ____D C:\Program Files\CCleaner 2021-03-16 19:44 - 2021-03-16 19:44 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2021-03-16 19:44 - 2021-03-16 19:44 - 000002888 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2021-03-16 19:44 - 2021-03-16 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2021-03-16 19:26 - 2021-03-16 19:27 - 008463216 _____ (Malwarebytes) C:\Users\pati_\Downloads\adwcleaner_8.1 (1).exe 2021-03-16 19:25 - 2021-03-16 19:26 - 030972600 _____ (Piriform Software Ltd) C:\Users\pati_\Downloads\ccsetup577.exe 2021-03-16 19:21 - 2021-03-16 19:31 - 000018268 _____ C:\Users\pati_\Downloads\Fixlog.txt 2021-03-16 16:57 - 2021-03-16 16:57 - 000000000 ___HD C:\$AV_AVG 2021-03-16 16:55 - 2021-03-16 16:55 - 002300928 _____ (Farbar) C:\Users\pati_\Downloads\FRST64.exe 2021-03-16 16:50 - 2021-03-16 16:51 - 008463216 _____ (Malwarebytes) C:\Users\pati_\Downloads\adwcleaner_8.1.exe 2021-03-16 16:33 - 2021-03-16 16:39 - 000000322 _____ C:\WINDOWS\wininit.ini 2021-03-15 16:55 - 2021-03-15 16:55 - 026692296 _____ C:\Users\pati_\Downloads\Prezentacja 7.pptx 2021-03-11 16:31 - 2021-03-11 16:31 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-03-11 16:31 - 2021-03-11 16:31 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-03-11 16:31 - 2021-03-11 16:31 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-03-11 16:31 - 2021-03-11 16:31 - 000011359 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-03-11 16:30 - 2021-03-11 16:30 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-03-11 16:30 - 2021-03-11 16:30 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll 2021-03-11 16:29 - 2021-03-11 16:29 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-03-11 16:29 - 2021-03-11 16:29 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-03-11 16:29 - 2021-03-11 16:29 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll 2021-03-11 16:29 - 2021-03-11 16:29 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-03-11 16:29 - 2021-03-11 16:29 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys 2021-03-05 09:57 - 2021-03-05 09:57 - 005406529 _____ C:\Users\pati_\Downloads\nr 1 03-07.pdf 2021-03-02 12:32 - 2021-03-02 12:32 - 000226459 _____ C:\Users\pati_\Downloads\pit.pdf 2021-03-02 12:31 - 2021-03-02 12:31 - 000001585 _____ C:\Users\pati_\Downloads\pit.xml 2021-03-02 12:08 - 2021-03-02 12:09 - 000650755 _____ C:\Users\pati_\Downloads\LEKTURY - opracowania-20190416T132541Z-001-16-4 (1).zip 2021-03-02 12:07 - 2021-03-02 12:07 - 000650755 _____ C:\Users\pati_\Downloads\LEKTURY - opracowania-20190416T132541Z-001-16-4.zip 2021-02-25 12:25 - 2021-02-25 12:25 - 000340224 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe 2021-02-25 12:25 - 2021-02-25 12:25 - 000215464 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys 2021-02-19 10:22 - 2021-02-19 10:22 - 000053189 _____ C:\Users\pati_\Downloads\raport_danych_osobowych_PATRYCJAJASINSKA012530.pdf ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-03-16 19:58 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-03-16 19:51 - 2020-09-22 14:38 - 000000000 ___DC C:\WINDOWS\Panther 2021-03-16 19:51 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-03-16 19:51 - 2019-03-09 20:30 - 000000000 ____D C:\Users\pati_\AppData\Local\CrashDumps 2021-03-16 19:34 - 2017-12-25 11:30 - 000000000 __SHD C:\Users\pati_\IntelGraphicsProfiles 2021-03-16 19:33 - 2020-10-22 14:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-03-16 19:33 - 2020-10-22 13:34 - 000008192 ___SH C:\DumpStack.log.tmp 2021-03-16 19:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-03-16 19:32 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-03-16 19:32 - 2019-06-20 14:58 - 000000000 ____D C:\ProgramData\AVG 2021-03-16 19:31 - 2018-01-30 09:27 - 000000000 ____D C:\Users\pati_\AppData\LocalLow\Temp 2021-03-16 19:29 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-03-16 19:29 - 2018-04-30 22:29 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-03-16 19:22 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-03-16 19:14 - 2020-10-22 13:35 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-03-16 17:14 - 2017-12-25 13:07 - 000002314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-03-16 17:13 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-03-16 17:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-03-16 16:35 - 2019-05-11 08:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VCDS 2021-03-16 16:35 - 2019-05-11 08:52 - 000000000 ____D C:\Ross-Tech 2021-03-16 16:30 - 2020-03-29 18:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JoWooD 2021-03-16 16:28 - 2018-01-30 17:34 - 000000000 ____D C:\Users\pati_\AppData\Local\Packages 2021-03-16 16:27 - 2020-10-22 14:14 - 000004266 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update 2021-03-16 16:25 - 2017-05-18 03:03 - 000000000 ____D C:\Program Files\HP 2021-03-16 16:20 - 2021-02-02 10:13 - 000000000 ____D C:\Users\pati_\AppData\LocalLow\uTorrent 2021-03-16 16:14 - 2020-03-29 18:10 - 000000000 ____D C:\Users\pati_\AppData\Local\BitTorrentHelper 2021-03-15 17:07 - 2020-10-22 16:53 - 000003244 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6a872d3dd83dc 2021-03-15 17:07 - 2020-10-22 14:14 - 000003496 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-03-15 17:07 - 2020-10-22 14:14 - 000003438 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-03-15 17:07 - 2020-10-22 14:14 - 000003272 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-03-15 17:07 - 2020-10-22 14:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2021-03-14 14:46 - 2017-05-18 03:09 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-03-14 14:21 - 2020-10-22 14:55 - 000787166 _____ C:\WINDOWS\system32\perfh015.dat 2021-03-14 14:21 - 2020-10-22 14:55 - 000153010 _____ C:\WINDOWS\system32\perfc015.dat 2021-03-14 14:21 - 2020-10-22 14:00 - 002008462 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-03-11 23:40 - 2020-10-22 13:34 - 000537632 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-03-11 23:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-03-11 16:42 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-03-11 15:51 - 2017-12-26 13:43 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-03-11 15:46 - 2017-12-26 13:43 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-03-07 16:22 - 2020-08-28 20:04 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-02-28 21:34 - 2018-07-24 21:54 - 000000000 ____D C:\Users\pati_\AppData\Local\PlaceholderTileLogoFolder 2021-02-28 14:08 - 2020-04-06 11:17 - 000002375 _____ C:\Users\pati_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk 2021-02-25 12:26 - 2020-10-18 18:57 - 000175368 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys 2021-02-25 12:26 - 2019-06-20 14:59 - 000465800 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys 2021-02-25 12:25 - 2020-06-16 21:25 - 000521472 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys 2021-02-25 12:25 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-02-25 12:25 - 2019-06-20 14:59 - 000850248 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys 2021-02-25 12:25 - 2019-06-20 14:59 - 000357400 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys 2021-02-25 12:25 - 2019-06-20 14:59 - 000327104 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys 2021-02-25 12:25 - 2019-06-20 14:59 - 000249368 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys 2021-02-25 12:25 - 2019-06-20 14:59 - 000208176 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys 2021-02-25 12:25 - 2019-06-20 14:59 - 000107920 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys 2021-02-25 12:25 - 2019-06-20 14:59 - 000098840 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys 2021-02-25 12:25 - 2019-06-20 14:59 - 000083496 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys 2021-02-25 12:25 - 2019-06-20 14:59 - 000041424 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys 2021-02-25 12:25 - 2019-06-20 14:59 - 000035792 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys 2021-02-23 10:19 - 2020-10-01 13:17 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-02-19 08:54 - 2020-03-29 18:09 - 000001872 _____ C:\Users\pati_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk 2021-02-18 08:33 - 2020-10-22 13:42 - 000000000 ____D C:\Users\pati_ ==================== Pliki w katalogu głównym wybranych folderów ======== 2018-05-20 12:02 - 2019-06-17 21:46 - 000000319 _____ () C:\Users\pati_\AppData\Roaming\WB.CFG 2019-02-24 14:25 - 2019-02-24 14:25 - 000000000 _____ () C:\Users\pati_\AppData\Local\BIT6EF6.tmp 2019-05-17 17:13 - 2019-05-17 17:13 - 000000000 _____ () C:\Users\pati_\AppData\Local\{8E5398EE-7AB9-48AB-BC13-5EC0327B8A7D} ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================