Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 16-10-2022 Uruchomiony przez Nevvra (administrator) DESKTOP-56HG4GA (20-10-2022 15:06:05) Uruchomiony z C:\Users\Nevvra\Downloads Załadowane profile: Nevvra Platform: Microsoft Windows 10 Home Wersja 21H1 19043.2130 (X64) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5> (C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Discord Inc. -> Discord Inc.) C:\Users\Nevvra\AppData\Local\Discord\app-1.0.9006\Discord.exe <6> (explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe (explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe (explorer.exe ->) (Skutta, Kristjan -> ) F:\steam\steamapps\common\wallpaper_engine\wallpaper32.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) F:\steam\steam.exe (F:\steam\steam.exe ->) (Valve Corp. -> Valve Corporation) F:\steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <14> (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (services.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe (services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (HP) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_171a8092a51ff342\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2> (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.9161.0_x64__8wekyb3d8bbwe\GameBar.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.822.9161.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.117.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Realtek Semiconductor Corp) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj\RtkUWP.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [746440 2018-06-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-09-26] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [212192 2022-09-29] (Avast Software s.r.o. -> AVAST Software) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942744 2018-12-17] (Logitech -> Logitech, Inc.) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard) HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [330040 2014-02-12] (Hewlett-Packard Company -> Hewlett-Packard Company) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409944 2018-06-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\Nevvra\AppData\Local\Microsoft\Teams\Update.exe [2492168 2022-02-27] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default (Brak pliku) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-3486654246-4286063741-1112579772-1001\...\Run: [Steam] => F:\steam\steam.exe [4234088 2022-10-19] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3486654246-4286063741-1112579772-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-3486654246-4286063741-1112579772-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3486654246-4286063741-1112579772-1001\...\Run: [WallpaperEngine] => F:\steam\steamapps\common\wallpaper_engine\wallpaper32.exe [3050592 2022-10-08] (Skutta, Kristjan -> ) HKU\S-1-5-21-3486654246-4286063741-1112579772-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [7222736 2022-09-28] (Adobe Inc. -> Adobe Systems Incorporated) HKU\S-1-5-21-3486654246-4286063741-1112579772-1001\...\Run: [MicrosoftEdgeAutoLaunch_253E18D20CEC1A140E8079444FACBEB3] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3852200 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3486654246-4286063741-1112579772-1001\...\Run: [com.blitz.app] => C:\Users\Nevvra\AppData\Local\Programs\Blitz\Blitz.exe --autostart (Brak pliku) HKU\S-1-5-21-3486654246-4286063741-1112579772-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [482168 2022-08-07] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-3486654246-4286063741-1112579772-1001\...\MountPoints2: {4ee3d6eb-d7ff-11eb-b879-7085c2578385} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-3486654246-4286063741-1112579772-1001\...\Winlogon: [Shell] explorer.exe,Explorer.exe <==== UWAGA HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe [2022-10-18] (Google LLC -> Google LLC) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {00B91E86-F7C1-4EE1-BB11-33B0B36B0D10} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "c61b0dcb-6620-43da-b90f-f0e3de32c6f4" --version "6.04.10044" --silent Task: {013FABFB-3127-4FF4-ABB5-AD83E3E7A375} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8502776 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {0A36AF4C-E838-49AE-A70B-4D73349E49AF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {0FB64E27-0109-4EAF-AA4D-9EBD7805B30A} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476184 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {1539D449-326B-45F3-BB1F-AA704FB41E51} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation) Task: {1BC98EB3-0B67-446C-BD04-2C1516DF547F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {23B6D9F0-E492-4C51-8D8B-876F04DB3AF1} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143232 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {2854A658-ABBE-4BCF-9F46-C03E0C20769C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform) Task: {39864076-7B49-4A0A-8545-65D6AA8C495A} - System32\Tasks\Firefox Default Browser Agent B9691D3DE6530B91 => C:\Users\Nevvra\AppData\Roaming\awbeffa [65440 2022-05-19] (Microsoft Corporation -> Microsoft Corporation) <==== UWAGA Task: {3C825B7D-006D-4A85-BD99-784E8BDCC508} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {3D4EA059-9BF4-43A2-906F-EA3EE29317BE} - System32\Tasks\CCleanerSkipUAC - Nevvra => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd) Task: {43A49F64-3F46-4EDC-A61E-6F730938F41E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {48D38FC9-E582-4757-8A7F-8348271284E9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-07] (Microsoft Corporation -> Microsoft Corporation) Task: {4AE4AA48-6DD1-46A0-9C1E-1BA8ED023F14} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {514D3DFF-83D7-4394-BB91-5A7E457CFE05} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4946144 2022-09-29] (Avast Software s.r.o. -> AVAST Software) Task: {539159D5-13D1-4DCC-98DA-4F31EC5A1C76} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {541FD67F-346B-42B1-8D88-C8767CAA25AB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {55433371-2FE3-4A42-880E-92CABBC2D04D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143232 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {65C22B6E-B041-4FAB-8302-7562EF789681} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {7894F654-8806-4CF0-87E0-997F7B18E75D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {82DE3A5E-B282-4100-9E80-3A3754FC9FF6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165176 2022-10-07] (Microsoft Corporation -> Microsoft Corporation) Task: {88234BD1-86EC-49DC-AC8D-405BAA3098BE} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software) Task: {89D43042-442B-4E72-9679-EC93939B0F53} - System32\Tasks\GoogleUpdateTaskMachineCore{ABE0F13D-6D07-4858-88E2-E3F1CBC0F5C7} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-18] (Google LLC -> Google LLC) Task: {92700FE5-A8DA-4C23-8C16-05E20932C534} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {A2687E22-C92E-458D-991A-9E2EF5B55867} - System32\Tasks\GoogleUpdateTaskMachineUA{240BFD70-3CB0-4271-9148-BBE3A6080FC5} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-18] (Google LLC -> Google LLC) Task: {A432137E-45F4-4ACC-835E-DC48827AE7D5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8502776 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) Task: {C518A88F-54B4-4744-B490-50C7F9C08147} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [89840 2014-10-19] (Hewlett-Packard Company -> Hewlett Packard) Task: {E6FDC42C-67E1-49A8-83F7-F60D2D8C96F6} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [65448 2022-10-14] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{4dfaee43-0d2b-48d8-8a09-b4dcda72bc0c}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge HomeButtonPage: HKU\S-1-5-21-3486654246-4286063741-1112579772-1001 -> hxxp://www.global-pl.com/ Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Profile 1 Edge Profile: C:\Users\Nevvra\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2022-10-08] Edge Profile: C:\Users\Nevvra\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2022-10-20] Edge Notifications: Profile 1 -> hxxps://calendar.google.com Edge Extension: (Adblock Plus - darmowy adblocker) - C:\Users\Nevvra\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2022-08-29] FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-10-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-09-28] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-06-22] (Adobe Systems Incorporated -> Adobe Systems) FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-11-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-11-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-10-14] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-06-22] (Adobe Systems Incorporated -> Adobe Systems) Chrome: ======= CHR Profile: C:\Users\Nevvra\AppData\Local\Google\Chrome\User Data\Default [2022-10-18] CHR Extension: (Safe Torrent Scanner) - C:\Users\Nevvra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-10-18] CHR Extension: (Adobe Acrobat: edycja plików PDF, konwertowanie, narzędzia podpisywania) - C:\Users\Nevvra\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-10-18] CHR Extension: (Avast SafePrice | Porównania, okazje, kupony) - C:\Users\Nevvra\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-10-18] CHR Extension: (Dokumenty Google offline) - C:\Users\Nevvra\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-18] CHR Extension: (Avast Online Security & Privacy) - C:\Users\Nevvra\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-10-18] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Nevvra\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-10-18] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2018-06-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3863256 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3701464 2022-07-27] (Adobe Inc. -> Adobe Systems, Incorporated) S3 AntiCheatExpert Service; C:\Program Files\AntiCheatExpert\SGuard\x64\SGuardSvc64.exe [2703960 2022-09-04] (PUBG CORPORATION -> ) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8513552 2022-10-05] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [592608 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [592096 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-01] (Avast Software s.r.o. -> AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-05-04] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12477344 2022-10-07] (Microsoft Corporation -> Microsoft Corporation) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4960120 2022-08-07] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2022-10-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 FACEITService; E:\faceit\FACEIT AC\FACEITService.exe [20639120 2021-02-17] (FACE IT LIMITED -> ) R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-24] (HP) [Brak podpisu cyfrowego] R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-05-12] (HP Inc. -> HP Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8838880 2022-10-13] (Malwarebytes Inc. -> Malwarebytes) S3 npggsvc; C:\WINDOWS\system32\GameMon.des [7649008 2018-03-21] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5936680 2022-10-04] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [10099288 2022-09-04] (PUBG CORPORATION -> KRAFTON, Inc) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_171a8092a51ff342\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_171a8092a51ff342\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem S3 Rockstar Service; "F:\rockstars\Launcher\RockstarService.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 ACE-BASE; C:\WINDOWS\system32\drivers\ACE-BASE.sys [2231936 2022-09-04] (PUBG CORPORATION -> ANTICHEATEXPERT.COM) S3 ACE-GAME; C:\WINDOWS\system32\drivers\ACE-GAME.sys [952960 2022-09-04] (PUBG CORPORATION -> ANTICHEATEXPERT.COM) S3 AsrDrv101; C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [22280 2018-02-27] (ASROCK Incorporation -> ASRock Incorporation) S3 AsrDrv102; C:\WINDOWS\SysWOW64\Drivers\AsrDrv102.sys [22248 2018-11-19] (ASROCK Incorporation -> ASRock Incorporation) [Brak podpisu cyfrowego] R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [42296 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [238128 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390096 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [258496 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [105920 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [48488 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276496 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [558536 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [114488 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [90000 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [862960 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671712 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221976 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327904 2022-09-29] (Avast Software s.r.o. -> AVAST Software) R3 CMUSBDAC; C:\WINDOWS\system32\DRIVERS\CMUSBDAC.sys [3819744 2018-07-24] (WDKTestCert cm359,131641702659254692 -> C-MEDIA) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-06-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [63696 2022-08-07] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EspoDriver; C:\WINDOWS\system32\drivers\EspoDriver.sys [5765640 2019-02-02] (Esportal AB -> ) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [193488 2022-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [75216 2022-10-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-10-13] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181992 2022-10-20] (Malwarebytes Inc. -> Malwarebytes) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) S3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\WINDOWS\xhunter1.sys [1445920 2022-10-08] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-10-20 15:06 - 2022-10-20 15:06 - 000033645 _____ C:\Users\Nevvra\Downloads\FRST.txt 2022-10-20 15:05 - 2022-10-20 15:05 - 000000000 ____D C:\Users\Nevvra\Downloads\FRST-OlderVersion 2022-10-20 15:04 - 2022-10-20 15:06 - 000000000 ____D C:\FRST 2022-10-20 15:04 - 2022-10-20 15:05 - 002373632 _____ (Farbar) C:\Users\Nevvra\Downloads\FRST64.exe 2022-10-18 20:02 - 2022-10-18 20:02 - 000002329 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-10-18 19:58 - 2022-10-18 19:58 - 000000000 ____D C:\Program Files\Google 2022-10-18 19:57 - 2022-10-19 19:18 - 000003574 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{240BFD70-3CB0-4271-9148-BBE3A6080FC5} 2022-10-18 19:57 - 2022-10-19 19:18 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{ABE0F13D-6D07-4858-88E2-E3F1CBC0F5C7} 2022-10-18 19:18 - 2022-10-18 19:18 - 001427176 _____ (Google LLC) C:\Users\Nevvra\Downloads\ChromeSetup.exe 2022-10-18 10:48 - 2022-10-18 10:48 - 000000000 ____D C:\WINDOWS\%LOCALAPPDATA% 2022-10-14 18:15 - 2022-10-20 13:10 - 000181992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2022-10-14 18:15 - 2022-10-14 18:15 - 000193488 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2022-10-14 18:15 - 2022-10-14 18:15 - 000075216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2022-10-14 11:57 - 2022-10-14 11:57 - 000000000 ____D C:\Users\Nevvra\OneDrive\Dokumenty\Vlastní šablony Office 2022-10-14 11:54 - 2022-10-14 11:54 - 000002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2022-10-14 11:54 - 2022-10-14 11:54 - 000002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2022-10-14 11:54 - 2022-10-14 11:54 - 000002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2022-10-14 11:54 - 2022-10-14 11:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2022-10-14 11:54 - 2022-10-14 11:54 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2022-10-14 11:02 - 2022-10-14 11:02 - 000000000 ____D C:\Program Files\Microsoft Office 15 2022-10-14 11:00 - 2022-10-14 11:00 - 000529870 _____ C:\Users\Nevvra\Downloads\free office.rar 2022-10-13 19:30 - 2022-10-13 19:26 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2022-10-13 19:19 - 2022-10-13 19:19 - 000025576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys 2022-10-13 17:21 - 2022-10-13 17:21 - 000000000 ____D C:\Users\Nevvra\AppData\Local\NARUTO 2022-10-13 10:48 - 2022-10-13 10:48 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2022-10-13 10:48 - 2022-10-13 10:48 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2022-10-13 10:48 - 2022-10-13 10:48 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2022-10-13 10:47 - 2022-10-13 10:47 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe 2022-10-13 10:47 - 2022-10-13 10:47 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2022-10-13 10:46 - 2022-10-13 10:46 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2022-10-13 10:46 - 2022-10-13 10:46 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2022-10-13 10:18 - 2022-10-13 10:18 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk 2022-10-13 10:10 - 2022-10-13 10:10 - 000000000 ___HD C:\$WinREAgent 2022-10-07 19:01 - 2022-10-19 19:18 - 000002736 _____ C:\WINDOWS\system32\Tasks\Firefox Default Browser Agent B9691D3DE6530B91 2022-10-07 19:00 - 2022-10-07 19:00 - 000000000 ____D C:\Users\Public\Docs 2022-10-07 19:00 - 2022-10-07 19:00 - 000000000 ____D C:\Users\Nevvra\AppData\Local\Yandex 2022-10-07 18:59 - 2022-10-07 19:26 - 000000000 ____D C:\Users\Nevvra\AppData\Roaming\WorldSystemEco 2022-10-05 12:26 - 2022-10-05 16:47 - 000000000 ____D C:\Users\Nevvra\OneDrive\Dokumenty\Overwatch 2022-10-05 12:26 - 2022-10-05 12:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch 2022-10-05 12:03 - 2022-10-16 19:34 - 000000000 ____D C:\Users\Nevvra\AppData\Local\Battle.net 2022-10-05 12:03 - 2022-10-05 12:26 - 000000000 ____D C:\Users\Nevvra\AppData\Roaming\Battle.net 2022-10-05 12:03 - 2022-10-05 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net 2022-09-29 15:03 - 2022-09-29 15:03 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2022-09-29 15:03 - 2022-09-29 15:03 - 000221976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2022-09-20 15:41 - 2022-10-20 14:24 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2022-09-20 15:40 - 2022-10-20 14:24 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-10-20 15:02 - 2018-02-27 19:33 - 000000000 ____D C:\Program Files (x86)\Google 2022-10-20 14:49 - 2018-05-16 19:01 - 000000000 ____D C:\Users\Nevvra\AppData\Local\D3DSCache 2022-10-20 14:47 - 2018-07-08 15:13 - 000000000 ____D C:\Users\Nevvra\AppData\Roaming\discord 2022-10-20 14:24 - 2020-12-27 12:17 - 000000000 ____D C:\Program Files\CCleaner 2022-10-20 14:22 - 2021-03-25 12:24 - 000000000 ____D C:\WINDOWS\Minidump 2022-10-20 14:16 - 2020-01-09 20:46 - 000000000 ____D C:\ProgramData\Origin 2022-10-20 14:12 - 2019-11-01 11:15 - 000000000 ____D C:\Users\Nevvra\AppData\Local\Discord 2022-10-20 14:03 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-10-20 13:46 - 2021-03-24 12:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2022-10-20 13:12 - 2019-10-10 20:06 - 000000000 ___RD C:\Users\Nevvra\Creative Cloud Files 2022-10-20 13:12 - 2018-07-18 14:40 - 000000000 ____D C:\Users\Nevvra\AppData\Local\AVAST Software 2022-10-20 13:12 - 2018-03-04 19:03 - 000000000 ____D C:\Users\Nevvra\AppData\Local\Adobe 2022-10-20 13:12 - 2018-03-01 15:07 - 000000000 ____D C:\ProgramData\NVIDIA 2022-10-20 13:10 - 2021-03-24 12:39 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2022-10-20 13:10 - 2021-03-24 12:32 - 000008192 ___SH C:\DumpStack.log.tmp 2022-10-20 13:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2022-10-19 19:18 - 2021-12-12 11:23 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2022-10-19 19:18 - 2021-08-20 14:28 - 000002256 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Nevvra 2022-10-19 19:18 - 2021-03-24 12:39 - 000003494 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-10-19 19:18 - 2021-03-24 12:39 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-10-19 19:18 - 2021-03-24 12:39 - 000003270 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-10-19 19:18 - 2021-03-24 12:39 - 000003220 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification 2022-10-19 19:18 - 2021-03-24 12:39 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-10-19 19:18 - 2021-03-24 12:39 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2022-10-19 19:18 - 2021-03-24 12:39 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-10-19 19:18 - 2021-03-24 12:39 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-10-19 19:18 - 2021-03-24 12:39 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-10-19 19:18 - 2021-03-24 12:39 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-10-19 19:18 - 2021-03-24 12:39 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-10-19 19:18 - 2021-03-24 12:39 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-10-19 19:18 - 2021-03-24 12:39 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-10-19 19:18 - 2021-03-24 12:39 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0 2022-10-19 19:18 - 2021-03-24 12:39 - 000002532 _____ C:\WINDOWS\system32\Tasks\HPLJCustParticipation 2022-10-19 19:18 - 2021-03-24 12:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2022-10-19 18:29 - 2020-02-25 20:16 - 000000000 ____D C:\ProgramData\Riot Games 2022-10-19 15:44 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-10-19 15:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2022-10-19 15:44 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2022-10-18 20:02 - 2018-02-27 19:32 - 000000000 ____D C:\Users\Nevvra\AppData\Local\Google 2022-10-18 15:03 - 2021-03-24 12:39 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2022-10-18 10:54 - 2020-06-15 09:43 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2022-10-17 19:11 - 2021-03-24 12:33 - 000000000 ____D C:\Users\Nevvra 2022-10-17 12:01 - 2018-02-27 13:55 - 000000000 ____D C:\Users\Nevvra\AppData\Local\Packages 2022-10-16 12:34 - 2018-05-13 22:29 - 000000000 ____D C:\Users\Nevvra\AppData\Local\PlaceholderTileLogoFolder 2022-10-14 23:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2022-10-14 21:56 - 2021-02-01 14:29 - 000000000 ____D C:\Users\Nevvra\AppData\LocalLow\Unity 2022-10-14 18:15 - 2018-02-27 18:39 - 000000000 ____D C:\ProgramData\AVAST Software 2022-10-14 18:14 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2022-10-14 12:00 - 2018-03-23 21:41 - 000000000 ____D C:\Program Files\Microsoft Office 2022-10-14 11:54 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared 2022-10-13 20:27 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2022-10-13 19:31 - 2020-12-10 09:57 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2022-10-13 19:31 - 2020-10-14 11:09 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2022-10-13 19:31 - 2020-08-10 09:10 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-10-13 19:30 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2022-10-13 19:26 - 2019-09-22 21:54 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2022-10-13 19:26 - 2019-06-27 14:36 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-10-13 19:26 - 2019-06-27 14:36 - 000000000 ____D C:\Program Files\Malwarebytes 2022-10-13 17:20 - 2021-10-26 11:45 - 000000000 ____D C:\Users\Nevvra\AppData\Roaming\EasyAntiCheat 2022-10-13 11:00 - 2021-03-24 12:40 - 001769796 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2022-10-13 11:00 - 2019-12-07 17:08 - 000784218 _____ C:\WINDOWS\system32\perfh015.dat 2022-10-13 11:00 - 2019-12-07 17:08 - 000152114 _____ C:\WINDOWS\system32\perfc015.dat 2022-10-13 10:54 - 2021-03-24 12:32 - 000539112 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2022-10-13 10:52 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2022-10-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2022-10-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2022-10-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2022-10-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2022-10-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2022-10-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning 2022-10-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2022-10-13 10:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2022-10-13 10:51 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2022-10-13 10:51 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2022-10-13 10:46 - 2021-03-24 12:34 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2022-10-13 10:07 - 2018-02-27 14:32 - 000000000 ____D C:\WINDOWS\system32\MRT 2022-10-13 10:04 - 2018-02-27 14:32 - 147398024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2022-10-08 09:58 - 2020-12-14 18:15 - 000000000 ____D C:\Program Files\Common Files\PUBG 2022-10-08 09:55 - 2020-06-22 19:21 - 001445920 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys 2022-10-05 12:12 - 2019-01-20 17:21 - 000000000 ____D C:\Users\Nevvra\AppData\Local\Blizzard Entertainment 2022-09-29 15:03 - 2020-10-17 19:56 - 000276496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2022-09-29 15:03 - 2020-04-19 20:58 - 000558536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys 2022-09-29 15:03 - 2019-04-01 11:54 - 000671712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2022-09-29 15:03 - 2019-04-01 11:54 - 000327904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2022-09-29 15:03 - 2019-04-01 11:54 - 000258496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys 2022-09-29 15:03 - 2019-04-01 11:54 - 000114488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2022-09-29 15:03 - 2019-04-01 11:54 - 000105920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys 2022-09-29 15:03 - 2019-04-01 11:54 - 000090000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2022-09-29 15:03 - 2019-04-01 11:54 - 000048488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2022-09-29 15:02 - 2019-04-01 11:54 - 000862960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2022-09-29 15:02 - 2019-04-01 11:54 - 000390096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys 2022-09-29 15:02 - 2019-04-01 11:54 - 000238128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys 2022-09-29 15:02 - 2019-04-01 11:54 - 000042296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys ==================== Pliki w katalogu głównym wybranych folderów ======== 2022-05-19 19:54 - 2022-05-19 19:54 - 000065440 ___SH (Microsoft Corporation) C:\Users\Nevvra\AppData\Roaming\awbeffa 2022-05-19 19:54 - 2022-05-19 19:54 - 000248887 ___SH () C:\Users\Nevvra\AppData\Roaming\sjgjbud 2019-10-10 20:03 - 2022-10-14 10:58 - 000000615 _____ () C:\Users\Nevvra\AppData\Local\oobelibMkey.log 2020-03-05 21:17 - 2020-03-05 21:17 - 000000860 _____ () C:\Users\Nevvra\AppData\Local\recently-used.xbel 2021-01-11 16:39 - 2021-01-11 16:39 - 000007605 _____ () C:\Users\Nevvra\AppData\Local\Resmon.ResmonCfg ==================== FCheck ================================ (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) FCheck: C:\WINDOWS\system32\SECOPatcher.dll [2018-11-12] [simlink -> C:\Users\Nevvra\Desktop\KMS-VL-ALL-7.2RC2\64-bit\SECOPatcher.dll] [] <==== UWAGA ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================