Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 22-09-2021 02 Uruchomiony przez Krysia (administrator) ADAM-KOMPUTER (ASUSTeK Computer Inc. K70IO) (28-09-2021 12:37:41) Uruchomiony z C:\Users\Krysia\Downloads Załadowane profile: Krysia Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Domyślna przeglądarka: IE Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe () [Brak podpisu cyfrowego] C:\Program Files\ATKGFNEX\GFNEXSrv.exe (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\AsLdrSrv.exe (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe (ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe (ASUSTeK Computer Inc. -> ATK) C:\Program Files\P4G\BatteryLife.exe (ASUSTek Computer Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe (ASUSTeK) [Brak podpisu cyfrowego] C:\Windows\SysWOW64\ACEngSvr.exe (ATK) [Brak podpisu cyfrowego] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4> (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe (AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1188.1\AVGBrowserCrashHandler.exe (AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1188.1\AVGBrowserCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <9> (Huawei Technologies Co., Ltd. -> ) C:\ProgramData\DatacardService\HWDeviceService64.exe (Huawei Technologies Co., Ltd. -> ) C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe (Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2> (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (SOFTPERFECT PTY. LTD. -> SoftPerfect) C:\Program Files\NetWorx\networx.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [NetWorx] => C:\Program Files\NetWorx\networx.exe [7939912 2016-02-29] (SOFTPERFECT PTY. LTD. -> SoftPerfect) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [171832 2021-09-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-1150648413-3391347023-1303782150-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [36776 2016-01-18] (Glarysoft LTD -> Glarysoft Ltd) HKU\S-1-5-21-1150648413-3391347023-1303782150-1001\...\Run: [AVGBrowserAutoLaunch_1435F95D84D457C1A9B22A4C2E65C294] => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2302504 2021-09-14] (AVG Technologies USA, LLC -> AVG Technologies) HKU\S-1-5-21-1150648413-3391347023-1303782150-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-1150648413-3391347023-1303782150-1001\...\MountPoints2: {1ff548eb-45c5-11e4-956c-90e6ba4c8bee} - G:\AutoRun.exe HKU\S-1-5-21-1150648413-3391347023-1303782150-1001\...\MountPoints2: {5ab47982-19a6-11e4-9523-90e6ba4c8bee} - F:\AutoRun.exe HKU\S-1-5-21-1150648413-3391347023-1303782150-1001\...\MountPoints2: {65d0a5ab-1751-11e4-97f0-90e6ba4c8bee} - F:\AutoRun.exe HKU\S-1-5-21-1150648413-3391347023-1303782150-1001\...\MountPoints2: {c3ca26f4-5c4d-11e4-9b1a-90e6ba4c8bee} - F:\AutoRun.exe HKLM\...\Windows x64\Print Processors\Canon MP240 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9H.DLL [27648 2008-03-31] (CANON INC.) [Brak podpisu cyfrowego] HKLM\...\Windows x64\Print Processors\Canon MP250 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9W.DLL [28672 2010-04-24] (CANON INC.) [Brak podpisu cyfrowego] HKLM\...\Windows x64\Print Processors\hpfpp101: C:\Windows\System32\spool\prtprocs\x64\hpfpp101.dll [254464 2009-10-21] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Windows x64\Print Processors\hpzppw72: C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll [257024 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\Canon BJ Language Monitor MP240 series: C:\Windows\system32\CNMLM9H.DLL [279040 2008-03-31] (CANON INC.) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\Canon BJ Language Monitor MP250 series: C:\Windows\system32\CNMLM9W.DLL [336896 2010-04-24] (CANON INC.) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\hpf3l101.dll: C:\Windows\system32\hpf3l101.dll [138752 2009-10-21] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company) HKLM\...\Print\Monitors\PCL hpz3lw72: C:\Windows\system32\hpz3lw72.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\93.0.11965.84\Installer\chrmstp.exe [2021-09-28] (AVG Technologies USA, LLC -> AVG Technologies) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.61\Installer\chrmstp.exe [2021-09-24] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache HKLM\Software\...\Authentication\Credential Providers: [{06FE45A8-6D92-44ba-A0F1-9A9BCDC8F5A7}] -> C:\Program Files (x86)\ASUS\SmartLogon\system\FaceCredentialProvider64.dll [2009-05-01] (ASUS) [Brak podpisu cyfrowego] HKLM\Software\...\Authentication\Credential Providers: [{2AD920F6-D745-4d8b-9526-619171C2CC4D}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [Brak podpisu cyfrowego] HKLM\Software\...\Authentication\Credential Providers: [{455BD3EC-20A5-44c3-8D77-396909825B5E}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [Brak podpisu cyfrowego] HKLM\Software\...\Authentication\Credential Provider Filters: [{120495C2-9E38-48a2-A08B-C302F7487628}] -> C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\AdsmCredentialProvider.dll [2009-04-02] (ASUSTek Computer Inc.) [Brak podpisu cyfrowego] HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0003D699-3384-4CC7-9B27-EA9F49CE9877} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1815352 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies) Task: {04A89775-C314-490E-813F-23ADDE65979D} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Command(1): %windir%\system32\rundll32.exe -> aepdu.dll,AePduRunUpdate Task: {04A89775-C314-490E-813F-23ADDE65979D} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Command(2): %windir%\system32\rundll32.exe -> invagent.dll,RunUpdate Task: {0ACADD7A-8E80-4F9D-87D9-924F3382571A} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [118184 2016-01-18] (Glarysoft LTD -> Glarysoft Ltd) Task: {0E6E38F8-E327-48E9-8360-568B4D7E7ED9} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201656 2021-09-28] (AVG Technologies USA, LLC -> AVG Technologies) Task: {1691D692-B80F-45D3-89F0-87DF7F65D51B} - System32\Tasks\{653AFEF5-0890-4680-9B00-09B259C54E31} => C:\Windows\system32\pcalua.exe -a D:\Adam\Programy\NetMeter_v0860.exe -d D:\Adam\Programy Task: {24E844DD-2017-4948-914A-3325E62000C5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.) Task: {27D05D6B-872E-429E-B957-52BBCAF956AF} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [684544 2009-07-23] (ATK) [Brak podpisu cyfrowego] Task: {361EC178-5462-40DB-914E-7E0B56C90001} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2302504 2021-09-14] (AVG Technologies USA, LLC -> AVG Technologies) Task: {36C9E984-6B10-4A70-B7A5-AF5924FC1B47} - System32\Tasks\ASUSControlDeck => C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [17976 2009-07-23] (ASUSTeK Computer Inc. -> ) Task: {3AC3EFE7-CBD0-40CD-B346-305EE11F80C6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_pepper.exe [1453624 2020-02-26] (Adobe Inc. -> Adobe) Task: {4292E734-B866-472D-B099-B215B63E8FC4} - System32\Tasks\{81DD9F9B-CD52-4B14-AF53-D5FB878679AC} => D:\Adam\Sterowniki\Canon\ewpx-win-1_2_1-ea23.exe Task: {4297A1B2-9568-46E9-9DA7-E88F7E63D05B} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Command(1): %windir%\system32\rundll32.exe -> aepdu.dll,AePduRunUpdate -nolegacy Task: {4297A1B2-9568-46E9-9DA7-E88F7E63D05B} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Command(2): %windir%\system32\rundll32.exe -> appraiser.dll,DoScheduledTelemetryRun Task: {51596A0D-6592-4F97-852E-6CB1A5CEAA56} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [267832 2009-07-29] (ASUSTeK Computer Inc. -> ATK) Task: {6A620ECE-14EF-480C-9FEE-5C7A6B2C1C0B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_Plugin.exe [1458232 2020-02-26] (Adobe Inc. -> Adobe) Task: {877E1290-806C-4017-84B8-7E779D8CF25B} - System32\Tasks\{5C104336-0DAA-4166-A9AA-4E6A388C405F} => C:\Windows\system32\pcalua.exe -a D:\Adam\Programy\avira_antivir_personal_en.exe -d D:\Adam\Programy Task: {8CC22F46-8586-4144-BC4D-0B004F78B28E} - System32\Tasks\JetBoost_AutoUpdate => C:\Program Files (x86)\BlueSprig\JetBoost\AutoUpdate.exe Task: {8F9ADB96-92FE-4670-BA4B-7D336649B185} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4966200 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) Task: {9E45A213-6F44-4F2A-8A5F-B71393BB4808} - System32\Tasks\CCleanerSkipUAC => C:\Program Files (x86)\CCleaner\CCleaner.exe [4810520 2014-09-25] (Piriform Ltd -> Piriform Ltd) Task: {A0A4056F-E989-481B-ACB9-C6F109C0FB4B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1160408 2016-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {ADBB3761-ED83-4792-8AB6-C05B1F1A0AAC} - System32\Tasks\{616E6631-DA26-4684-8727-D1CCA58E98BB} => C:\Windows\system32\pcalua.exe -a D:\Adam\Programy\cwk241classic_setup.exe -d D:\Adam\Programy Task: {BA600C18-4E8A-4F36-961B-7D8A7710577B} - System32\Tasks\WC3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1593344 2009-07-24] () [Brak podpisu cyfrowego] Task: {CD4C6BE3-2A90-4C9E-8B3C-DE517D9A543D} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768 2007-11-30] (ASUSTeK Computer Inc. -> ) Task: {CF6138C3-CCCE-44BF-91E5-D5560BBBFC62} - System32\Tasks\{0D83A6E6-25B5-4DCD-97F3-291FE874C6C3} => D:\Adam\Sterowniki\Canon\ewpx-win-1_2_1-ea23.exe Task: {D5B17105-B639-4645-8F15-0848678D91AD} - System32\Tasks\{3C6E8C32-1F53-401A-965B-30100CE931A0} => C:\Windows\system32\pcalua.exe -a E:\SetupAssistant.exe -d E:\ Task: {D8E929D0-4370-4DB8-BBFA-3BB1940A858F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.) Task: {DA774F81-BD93-4426-B786-8B87A5DB50EE} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201656 2021-09-28] (AVG Technologies USA, LLC -> AVG Technologies) Task: {DE1A0C20-B307-4C97-943A-9A9F55689018} - System32\Tasks\{54175BB8-6093-41E7-B63D-55A0E6137A79} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Damian Pasternak\CWK\CWK.exe" -c /uninstall Task: {E31B992F-69E0-483C-A978-105ADACDF5C4} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [2302504 2021-09-14] (AVG Technologies USA, LLC -> AVG Technologies) Task: {EAE74B66-DFAB-4CA3-83A2-C1275A783BAE} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305720 2009-05-19] (ASUSTeK Computer Inc. -> ASUS) Task: {EDF1B179-C774-4FBF-BBCA-294C90A2B1A2} - System32\Tasks\{0A7A824C-9DD4-4930-8D4B-77ED7CD39E11} => C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{144F5614-72DF-4635-B369-7ADB36DC0685}: [NameServer] 212.2.127.254 212.2.96.52 Tcpip\..\Interfaces\{1BD8737A-4030-4C7A-B00F-BC1D58CE717F}: [NameServer] 212.2.127.254 212.2.96.52 Tcpip\..\Interfaces\{5BFEEE19-F199-4893-875B-9228291941B2}: [NameServer] 212.2.127.254 212.2.96.52 Tcpip\..\Interfaces\{A433373C-D62E-45EE-81C6-17ABEE1ABEEF}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{CE45A067-9AF7-474C-BAB9-3C0815815B44}: [NameServer] 212.2.127.254 212.2.96.52 Tcpip\..\Interfaces\{D09C4C2A-E835-434E-BA13-38C1D690AFE5}: [DhcpNameServer] 192.168.1.1 192.168.1.1 FireFox: ======== FF DefaultProfile: 12lb1nx5.default FF ProfilePath: C:\Users\Krysia\AppData\Roaming\Mozilla\Firefox\Profiles\12lb1nx5.default [2021-08-29] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_330.dll [2020-02-26] (Adobe Inc. -> ) FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-04] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_330.dll [2020-02-26] (Adobe Inc. -> ) FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-02-03] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-02-03] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc. -> McAfee, Inc.) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2008-11-13] (Microsoft Corporation -> Microsoft Corp.) FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2008-12-04] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-08-29] (NVIDIA CORPORATION -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-08-29] (NVIDIA CORPORATION -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1188.1\npAvgBrowserUpdate3.dll [2021-09-28] (AVG Technologies USA, LLC -> AVG Technologies) FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1188.1\npAvgBrowserUpdate3.dll [2021-09-28] (AVG Technologies USA, LLC -> AVG Technologies) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Krysia\AppData\Local\Google\Chrome\User Data\Default [2021-09-28] CHR HomePage: Default -> hxxps://search.yahoo.com/?fr=vmn&type=auslog_ya_hp CHR RestoreOnStartup: Default -> "hxxps://search.yahoo.com/?fr=vmn&type=auslog_ya_hp" CHR StartupUrls: Default -> "hxxp://www.duckduckgo.com/" CHR Extension: (DuckDuckGo) - C:\Users\Krysia\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-09-05] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Krysia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] Opera: ======= OPR Profile: C:\Users\Krysia\AppData\Roaming\Opera Software\Opera Stable [2021-03-25] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} StartMenuInternet: (HKLM) Opera - C:\Program Files (x86)\Opera\Opera.exe hxxp://www.istartsurf.com/?type=sc&ts=1408138895&from=smt&uid=3219913727_67194_14338EF1 Vivaldi: ======= VIV Profile: C:\Users\Krysia\AppData\Local\Vivaldi\User Data\Default [2020-11-27] VIV Extension: (Avira Browser Safety) - C:\Users\Krysia\AppData\Local\Vivaldi\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2020-02-26] VIV Extension: (Chrome Media Router) - C:\Users\Krysia\AppData\Local\Vivaldi\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-26] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640 2016-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) R3 ADSMService; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [225280 2008-03-31] (ASUSTek Computer Inc.) [Brak podpisu cyfrowego] R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] () [Brak podpisu cyfrowego] S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201656 2021-09-28] (AVG Technologies USA, LLC -> AVG Technologies) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [630584 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [378168 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8360560 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201656 2021-09-28] (AVG Technologies USA, LLC -> AVG Technologies) S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\93.0.11965.84\elevation_service.exe [1436320 2021-09-14] (AVG Technologies USA, LLC -> AVG Technologies) R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 FastBootAgent; C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe [306232 2009-07-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2013-10-28] (Huawei Technologies Co., Ltd. -> ) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-09-27] (Malwarebytes Inc -> Malwarebytes) S4 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc. -> McAfee, Inc.) S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [Brak podpisu cyfrowego] S2 PLAY ONLINE. RunOuc; C:\Program Files (x86)\PLAY ONLINE\UpdateDog\ouc.exe [651856 2013-10-26] (Huawei Technologies Co., Ltd. -> ) S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [Brak podpisu cyfrowego] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) S2 HPSLPSVC; C:\Users\Krysia\AppData\Local\Temp\7zS0F66\hpslpsvc64.dll [X] <==== UWAGA ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [40448 2009-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Alcor Micro, Corp.) R2 ASMMAP64; C:\Program Files\ATKGFNEX\ASMMAP64.sys [14904 2007-07-24] (ASUSTeK Computer Inc. -> ) R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [1542656 2009-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.) R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [35848 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [221728 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [369232 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [250480 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [99440 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [41504 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [184792 2021-09-28] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [538632 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 avgNetNd6; C:\Windows\System32\DRIVERS\avgNetNd6.sys [29944 2021-09-27] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [108000 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [83064 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [851864 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [557288 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [215536 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [328712 2021-09-27] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-09-01] (Glarysoft Ltd -> Glarysoft Ltd) R3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [112128 2009-06-12] (Microsoft Windows Hardware Compatibility Publisher -> ELAN Microelectronic Corp.) S3 ew_hwusbdev; C:\Windows\System32\DRIVERS\ew_hwusbdev.sys [109568 2013-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 ew_usbenumfilter; C:\Windows\System32\DRIVERS\ew_usbenumfilter.sys [14976 2012-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2015-09-09] (Glarysoft Ltd -> Glarysoft Ltd) R3 huawei_enumerator; C:\Windows\System32\DRIVERS\ew_jubusenum.sys [91648 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 hwusb_cdcacm; C:\Windows\System32\DRIVERS\ew_cdcacm.sys [121728 2013-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) S3 hwusb_wwanecm; C:\Windows\System32\DRIVERS\ew_wwanecm.sys [376704 2013-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] (ASUSTeK Computer Inc. -> ) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220752 2021-09-27] (Malwarebytes Inc -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-09-27] (Malwarebytes Inc -> Malwarebytes) R1 networx; C:\Windows\System32\drivers\networx.sys [72120 2016-02-15] (SOFTPERFECT PTY. LTD. -> NetFilterSDK.com) R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1799680 2009-05-20] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 StarOpen; Brak ImagePath S3 vncmirror; C:\Windows\System32\DRIVERS\vncmirror.sys [4608 2014-06-03] (Microsoft Windows Hardware Compatibility Publisher -> RealVNC Ltd.) U3 tmlwf; Brak ImagePath U3 tmwfp; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-09-28 12:37 - 2021-09-28 12:40 - 000028391 _____ C:\Users\Krysia\Downloads\FRST.txt 2021-09-28 12:37 - 2021-09-28 12:37 - 000000000 ____D C:\Users\Krysia\Downloads\FRST-OlderVersion 2021-09-28 12:36 - 2021-09-28 12:37 - 002304512 _____ (Farbar) C:\Users\Krysia\Downloads\FRST64.exe 2021-09-28 12:33 - 2021-09-28 12:33 - 000003706 _____ C:\Windows\system32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) 2021-09-28 12:33 - 2021-09-28 12:33 - 000003124 _____ C:\Windows\system32\Tasks\AVG Secure Browser Heartbeat Task (Logon) 2021-09-28 12:33 - 2021-09-28 12:33 - 000002350 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk 2021-09-28 12:33 - 2021-09-28 12:33 - 000002307 _____ C:\Users\Public\Desktop\AVG Secure Browser.lnk 2021-09-28 12:31 - 2021-09-28 12:31 - 000003484 _____ C:\Windows\system32\Tasks\AVGUpdateTaskMachineUA 2021-09-28 12:23 - 2021-09-28 12:23 - 000003356 _____ C:\Windows\system32\Tasks\AVGUpdateTaskMachineCore 2021-09-28 12:23 - 2021-09-28 12:23 - 000000000 ____D C:\Program Files (x86)\AVG 2021-09-28 12:16 - 2021-09-28 12:16 - 000001916 _____ C:\Users\Public\Desktop\AVG AntiVirus FREE.lnk 2021-09-28 12:16 - 2021-09-28 12:16 - 000000000 ____D C:\Windows\system32\Tasks\AVG 2021-09-28 12:16 - 2021-09-28 12:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2021-09-28 12:14 - 2021-09-27 21:47 - 000340792 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2021-09-27 23:50 - 2021-09-28 12:08 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited 2021-09-27 23:49 - 2021-09-28 12:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft 2021-09-27 23:49 - 2021-09-27 23:49 - 000000000 ____D C:\sh5ldr 2021-09-27 23:48 - 2021-09-27 23:48 - 000000000 ____D C:\Program Files\EnigmaSoft 2021-09-27 22:39 - 2021-09-27 22:39 - 000000000 ____D C:\ProgramData\Panda Security 2021-09-27 21:47 - 2021-09-28 12:15 - 000184792 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2021-09-27 21:47 - 2021-09-28 12:15 - 000003904 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update 2021-09-27 21:47 - 2021-09-28 12:08 - 000000000 ____D C:\Program Files\Common Files\AVG 2021-09-27 21:47 - 2021-09-27 21:48 - 000184792 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\asw56abd76235efa994.tmp 2021-09-27 21:47 - 2021-09-27 21:47 - 000851864 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000557288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000538632 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgNetHub.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000369232 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriver.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000328712 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000250480 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsh.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000221728 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000215536 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000108000 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000099440 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniv.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000083064 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000041504 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgKbd.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000035848 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArDisk.sys 2021-09-27 21:47 - 2021-09-27 21:47 - 000029944 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgNetNd6.sys 2021-09-27 21:45 - 2021-09-28 12:08 - 000000000 ____D C:\Program Files\AVG 2021-09-27 21:44 - 2021-09-27 21:44 - 000224072 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Krysia\Downloads\avg_antivirus_free_setup.exe 2021-09-27 21:04 - 2021-09-28 11:46 - 000000000 ____D C:\Users\Krysia\AppData\Local\CrashDumps 2021-09-27 21:04 - 2021-09-27 21:04 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2021-09-27 21:04 - 2021-09-27 21:04 - 000001962 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-09-27 21:04 - 2021-09-27 21:04 - 000001950 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-09-27 21:03 - 2021-09-27 21:03 - 000199128 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2021-09-27 20:56 - 2021-09-27 20:56 - 002101944 _____ (Malwarebytes) C:\Users\Krysia\Downloads\MBSetup.exe 2021-09-22 17:01 - 2021-09-22 17:01 - 000091678 _____ C:\Users\Krysia\Downloads\ebilet 2.pdf 2021-09-22 17:00 - 2021-09-22 17:00 - 000091674 _____ C:\Users\Krysia\Downloads\ebilet 1.pdf ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-09-28 12:38 - 2015-04-16 12:54 - 000000000 ____D C:\FRST 2021-09-28 12:34 - 2014-05-30 01:28 - 000000000 ____D C:\Users\Krysia\AppData\Local\AVG 2021-09-28 12:31 - 2010-04-03 00:00 - 000000000 ____D C:\Program Files (x86)\Google 2021-09-28 12:20 - 2009-07-14 06:45 - 000019056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2021-09-28 12:20 - 2009-07-14 06:45 - 000019056 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2021-09-28 12:19 - 2014-05-30 01:28 - 000000000 ____D C:\Users\Krysia\AppData\Roaming\AVG 2021-09-28 12:18 - 2014-05-30 01:26 - 000000000 ____D C:\ProgramData\AVG 2021-09-28 12:16 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2021-09-28 12:11 - 2009-09-26 06:10 - 000002227 _____ C:\Windows\system32\ServiceFilter.ini 2021-09-28 12:10 - 2009-12-01 17:38 - 000000000 ____D C:\Users\Krysia 2021-09-28 12:10 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-09-28 12:09 - 2018-11-15 02:37 - 000000000 ____D C:\Users\UpdatusUser 2021-09-28 12:09 - 2009-09-26 06:07 - 000000000 ____D C:\Windows\SysWOW64\Fast Boot 2021-09-28 12:09 - 2009-09-26 06:04 - 000000000 ____D C:\ProgramData\P4G 2021-09-28 12:08 - 2013-11-12 11:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetClean 2021-09-28 12:07 - 2014-04-03 15:22 - 000000000 ____D C:\Windows\Minidump 2021-09-28 12:07 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration 2021-09-27 21:41 - 2013-11-12 11:48 - 000000000 ____D C:\Users\Krysia\AppData\Roaming\BlueSprig 2021-09-27 21:04 - 2020-05-13 15:04 - 000220752 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2021-09-27 21:03 - 2013-11-05 13:42 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-09-26 22:06 - 2011-03-26 22:36 - 000045056 _____ C:\Windows\system32\acovcnt.exe 2021-09-24 10:49 - 2010-12-01 21:04 - 000002192 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-09-24 10:49 - 2010-12-01 21:04 - 000002151 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-09-22 19:22 - 2013-12-14 18:00 - 000389632 ___SH C:\Users\Krysia\Downloads\Thumbs.db ==================== Pliki w katalogu głównym wybranych folderów ======== 2017-01-12 17:44 - 2017-01-13 11:06 - 000000559 _____ () C:\Users\Krysia\AppData\Roaming\burnaware.ini 2015-10-16 14:36 - 2017-03-19 21:23 - 000006656 _____ () C:\Users\Krysia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2009-12-11 11:11 - 2020-05-13 12:41 - 000007624 _____ () C:\Users\Krysia\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2021-09-21 11:37 ==================== Koniec FRST.txt ========================