Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 05-11-2022 Uruchomiony przez TOSHIBA (administrator) TOSHIBA-TOSHIBA (TOSHIBA TECRA M11) (05-11-2022 18:09:14) Uruchomiony z C:\Users\TOSHIBA\Downloads Załadowane profile: TOSHIBA Platform: Microsoft Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Domyślna przeglądarka: "C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe" --single-argument %1 Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (AVG Netherlands B.V. -> ) C:\Program Files (x86)\AVG Web TuneUp\vprot.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe <4> (AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler.exe (AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\AVGBrowserCrashHandler64.exe (C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe (C:\Program Files\Apoint2K\Apoint.exe ->) (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe (C:\Program Files\Apoint2K\Apoint.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\hidfind.exe (explorer.exe ->) (AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe <13> (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <35> (explorer.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe (explorer.exe ->) (Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe (explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (explorer.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (explorer.exe ->) (TOSHIBA CORPORATION -> ) C:\Program Files\Toshiba\Power Saver\TPwrMain.exe (explorer.exe ->) (TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\Toshiba\FlashCards\TCrdMain.exe (Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Podatnik S.A. -> Podatnik S.A.) C:\Program Files (x86)\Podatnik.info\PIT pro 2019\Widget.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (AVG Netherlands B.V. -> ) C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe (services.exe ->) (AVG Netherlands B.V. -> AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe (services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe (services.exe ->) (Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe (services.exe ->) (Podatnik S.A. -> Podatnik S.A.) C:\Program Files (x86)\Podatnik.info\PIT pro 2019\pproupd.exe (services.exe ->) (TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16404224 2015-08-27] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [313344 2009-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Alps Electric Co., Ltd.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2978544 2013-05-22] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [595840 2012-03-02] (TOSHIBA CORPORATION -> ) HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [989056 2012-03-16] (TOSHIBA CORPORATION -> TOSHIBA Corporation) HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [249080 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [TOSDCR] => C:\Program Files (x86)\TOSHIBA\PasswordUtility\TOSDCR.exe [169296 2007-08-28] (TOSHIBA CORPORATION -> ) HKLM-x32\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw (Brak pliku) HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2195968 2018-05-16] (AVG Netherlands B.V. -> ) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech, Inc. -> Logitech Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Brak pliku) HKLM-x32\...\Run: [WidgetPodatnikInfo] => C:\Program Files (x86)\Podatnik.info\PIT pro 2019\Widget.exe [267160 2021-04-02] (Podatnik S.A. -> Podatnik S.A.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-3313114838-1540037315-1458050775-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd -> Disc Soft Ltd) HKU\S-1-5-21-3313114838-1540037315-1458050775-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize (Brak pliku) HKU\S-1-5-21-3313114838-1540037315-1458050775-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-3313114838-1540037315-1458050775-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91701608 2020-07-07] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-3313114838-1540037315-1458050775-1000\...\Run: [com.squirrel.Teams.Teams] => C:\Users\TOSHIBA\AppData\Local\Microsoft\Teams\Update.exe [2443008 2020-06-16] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3313114838-1540037315-1458050775-1000\...\Run: [AVGBrowserAutoLaunch_FD2C9BE30FD39EF5A4BC6593AF322BB5] => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [3015072 2022-10-27] (AVG Technologies USA, LLC -> AVG Technologies) HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\106.0.19037.120\Installer\chrmstp.exe [2022-11-04] (AVG Technologies USA, LLC -> AVG Technologies) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\107.0.5304.88\Installer\chrmstp.exe [2022-11-03] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> "C:\Program Files (x86)\AVG\Browser\Application\86.1.6937.200\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0DCD843C-24C6-4860-B8E1-ABC665D46510} - System32\Tasks\CCleanerSkipUAC - TOSHIBA => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {48BBA344-F9D0-4790-9856-6D9CB9C56D63} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-14] (Google Inc -> Google Inc.) Task: {5B6DBB1A-CEA0-4D5C-A5F6-0550F4BD1111} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies) Task: {6060859A-775F-491F-AECB-6BF87521B75E} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies) Task: {68CD9B17-5AFB-4DC4-B30D-85C15268C517} - System32\Tasks\Opera scheduled Autoupdate 1526721874 => C:\Program Files\Opera\launcher.exe [1493592 2019-05-16] (Opera Software AS -> Opera Software) Task: {75A02080-A5FC-4FCA-A645-2EC050B24F34} - System32\Tasks\e-pity2019_styczen => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe notify 1 02.03.2021 (Brak pliku) Task: {7D75872B-1C40-440D-BA94-739705DC2D14} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform) Task: {7EBC9209-03EF-45C2-B75B-372D66C84382} - System32\Tasks\{EC96FA5A-8DDD-465F-832A-85A72FCED93A} => c:\program files\opera\launcher.exe [1493592 2019-05-16] (Opera Software AS -> Opera Software) Task: {7F974929-88C1-4A49-A226-A7CF07EB6039} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [3015072 2022-10-27] (AVG Technologies USA, LLC -> AVG Technologies) Task: {8587180D-EB57-42DB-90EF-735E105DDDF2} - System32\Tasks\{CCF6A31C-869B-428C-8326-BD2C72BB5412} => C:\Program Files\Opera\launcher.exe [1493592 2019-05-16] (Opera Software AS -> Opera Software) Task: {BBF61EF2-181E-471F-8820-B73BC8302F62} - System32\Tasks\e-pity2019a_kwiecien => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe notify 2 30.04.2021 (Brak pliku) Task: {CA86B1AF-8F8D-4851-BD8B-550481F4921F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.) Task: {D83AD2E3-792F-4908-9ABC-8B5AE478EC22} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-14] (Google Inc -> Google Inc.) Task: {E14DAF57-23D1-47EB-BD61-B98E2E435DAB} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [3015072 2022-10-27] (AVG Technologies USA, LLC -> AVG Technologies) Task: {EF1638B4-6DDE-4111-A7FE-6F2AFCECE1ED} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [4973816 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) Task: {F156A298-8164-4BAA-BFB2-BCBE260817C1} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2287472 2022-05-29] (AVG Technologies USA, LLC -> AVG Technologies) Task: {F8D60A79-C32E-4C45-B584-95CDF5CBC47F} - System32\Tasks\{03B3C953-178A-46A1-AF13-D190B27DF2BC} => C:\Program Files\Opera\launcher.exe [1493592 2019-05-16] (Opera Software AS -> Opera Software) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2 Tcpip\..\Interfaces\{49E131A3-7198-4005-ACC5-3D37F813951B}: [DhcpNameServer] 192.168.0.1 192.168.0.2 FireFox: ======== FF DefaultProfile: wajrdsqp.default FF ProfilePath: C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\wajrdsqp.default [2022-11-05] FF Homepage: Mozilla\Firefox\Profiles\wajrdsqp.default -> google.pl FF NewTab: Mozilla\Firefox\Profiles\wajrdsqp.default -> hxxps://pl.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10000__180420__yaff FF Extension: (AVG Web TuneUp) - C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\wajrdsqp.default\Extensions\avg@toolbar.xpi [2018-05-16] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avg/wtu/update.json] FF Extension: (Web Security) - C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\wajrdsqp.default\Extensions\contact@web-security.com.xpi [2018-04-20] FF Extension: (AVG SafePrice) - C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\wajrdsqp.default\Extensions\sp@avg.com.xpi [2016-11-15] [UpdateUrl:hxxps://cmp.avg.com/ff/updates.json] FF Extension: (Adblock Plus) - C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\wajrdsqp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-05-19] FF SearchPlugin: C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\wajrdsqp.default\searchplugins\avg-secure-search.xml [2022-11-05] FF SearchPlugin: C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\wajrdsqp.default\searchplugins\yahoo-lavasoft-ff59.xml [2018-04-20] FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.8\\npsitesafety.dll [Brak pliku] FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-05-26] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-05-26] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies) FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1066.0\npAvgBrowserUpdate3.dll [2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Profile 1 CHR Profile: C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default [2022-11-03] CHR HomePage: Default -> hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=DE0220689D46A9BF&affID=119357&tsp=4974 CHR StartupUrls: Default -> "hxxp://www.aljazeera.net/portal","hxxp://www.google.com" CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms} CHR DefaultSearchKeyword: Default -> duckduckgo.com CHR Session Restore: Default -> [funkcja włączona] CHR Profile: C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Profile 1 [2022-11-05] CHR Notifications: Profile 1 -> hxxps://aviva.push-ad.com; hxxps://businessinsider.com.pl; hxxps://dziennikbaltycki.pl; hxxps://film.wp.pl; hxxps://gazetakrakowska.pl; hxxps://geekweek.interia.pl; hxxps://glogow.naszemiasto.pl; hxxps://gloswielkopolski.pl; hxxps://gwiazdy.wp.pl; hxxps://inpost.pl; hxxps://inzynieria.com; hxxps://kobieta.interia.pl; hxxps://muzyka.interia.pl; hxxps://noizz.pl; hxxps://opinie.wp.pl; hxxps://poczta.onet.pl; hxxps://podroze.onet.pl; hxxps://pogoda.interia.pl; hxxps://publiszer.pl; hxxps://sport.interia.pl; hxxps://swiatseriali.interia.pl; hxxps://teleshow.wp.pl; hxxps://warszawawpigulce.pl; hxxps://wawalove.wp.pl; hxxps://web.skype.com; hxxps://wiadomosci.radiozet.pl; hxxps://www.castorama.pl; hxxps://www.chess.com; hxxps://www.ebilet.pl; hxxps://www.epaka.pl; hxxps://www.facebook.com; hxxps://www.interia.pl; hxxps://www.jakimkurierem.pl; hxxps://www.komputerswiat.pl; hxxps://www.leroymerlin.pl; hxxps://www.mediaexpert.pl; hxxps://www.medonet.pl; hxxps://www.mjakmama24.pl; hxxps://www.newsweek.pl; hxxps://www.pomponik.pl; hxxps://www.tomtom.com; hxxps://www.youtube.com; hxxps://wydarzenia.interia.pl; hxxps://zielona.interia.pl CHR Extension: (Dark Theme for Google Chrome) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\annfbnbieaamhaimclajlajpijgkdblo [2022-03-14] CHR Extension: (Click&Clean) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2021-05-19] CHR Extension: (AVG SafePrice | Porównania, okazje, kupony) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2022-08-24] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (e-pity - dodatek) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2021-04-22] CHR Profile: C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\System Profile [2022-11-03] CHR HKU\S-1-5-21-3313114838-1540037315-1458050775-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] CHR HKU\S-1-5-21-3313114838-1540037315-1458050775-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] Opera: ======= OPR Profile: C:\Users\TOSHIBA\AppData\Roaming\Opera Software\Opera Stable [2022-11-03] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.pl/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.) S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies) R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [628984 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AVG Tools; C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe [628984 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [8575536 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [201984 2020-10-26] (AVG Technologies USA, LLC -> AVG Technologies) S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\106.0.19037.120\elevation_service.exe [2047056 2022-10-27] (AVG Technologies USA, LLC -> AVG Technologies) R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [109480 2021-05-24] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 pproupd; C:\Program Files (x86)\Podatnik.info\PIT pro 2019\pproupd.exe [62208 2021-12-20] (Podatnik S.A. -> Podatnik S.A.) R2 vToolbarUpdater40.3.8; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe [1371136 2018-05-16] (AVG Netherlands B.V. -> AVG Secure Search) S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2015-06-23] (Microsoft Windows -> Microsoft Corporation) R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [811520 2018-05-16] (AVG Netherlands B.V. -> ) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [42416 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [238288 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [390168 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [306200 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [106520 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [48648 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [276632 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [564416 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 avgNetNd6; C:\Windows\System32\DRIVERS\avgNetNd6.sys [29944 2020-06-19] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [114632 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [90120 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [863104 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [672440 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [222120 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [328040 2022-11-01] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2018-04-20] (Disc Soft Ltd -> Disc Soft Ltd) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2016-08-30] (Martin Malik - REALiX -> REALiX(tm)) R3 IFXTPM; C:\Windows\System32\DRIVERS\IFXTPM.SYS [58880 2008-07-31] (Microsoft Windows Hardware Compatibility Publisher -> Infineon Technologies AG) R3 rimspci; C:\Windows\System32\DRIVERS\rimspe64.sys [73728 2012-07-20] (Microsoft Windows Hardware Compatibility Publisher -> REDC) R2 risdsnpe; C:\Windows\System32\DRIVERS\risdsne64.sys [78848 2010-09-08] (Microsoft Windows Hardware Compatibility Publisher -> REDC) R3 rixdpcie; C:\Windows\System32\DRIVERS\rixdpe64.sys [54784 2012-07-31] (Microsoft Windows Hardware Compatibility Publisher -> REDC) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-11-05 18:09 - 2022-11-05 18:10 - 000024285 _____ C:\Users\TOSHIBA\Downloads\FRST.txt 2022-11-05 18:06 - 2022-11-05 18:10 - 000000000 ____D C:\FRST 2022-11-05 18:00 - 2022-11-05 18:01 - 002374656 _____ (Farbar) C:\Users\TOSHIBA\Downloads\FRST64.exe 2022-11-01 11:35 - 2022-11-01 11:35 - 000270584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2022-11-01 11:35 - 2022-11-01 11:35 - 000222120 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys 2022-10-23 17:57 - 2022-10-23 17:57 - 000723261 _____ C:\Users\TOSHIBA\Downloads\Dokumenty_owu_karta_produktu (1).zip ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-11-05 18:07 - 2009-07-14 05:45 - 000021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2022-11-05 18:07 - 2009-07-14 05:45 - 000021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2022-11-05 17:27 - 2021-12-18 10:25 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update 2022-11-05 17:27 - 2021-12-02 14:32 - 000002826 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - TOSHIBA 2022-11-05 17:27 - 2020-02-23 08:25 - 000003994 _____ C:\Windows\system32\Tasks\e-pity2019a_kwiecien 2022-11-05 17:27 - 2020-02-23 08:25 - 000003994 _____ C:\Windows\system32\Tasks\e-pity2019_styczen 2022-11-05 17:27 - 2019-09-21 13:44 - 000002954 _____ C:\Windows\system32\Tasks\{03B3C953-178A-46A1-AF13-D190B27DF2BC} 2022-11-05 17:27 - 2019-09-21 13:43 - 000002954 _____ C:\Windows\system32\Tasks\{CCF6A31C-869B-428C-8326-BD2C72BB5412} 2022-11-05 17:27 - 2018-12-14 20:25 - 000003106 _____ C:\Windows\system32\Tasks\{EC96FA5A-8DDD-465F-832A-85A72FCED93A} 2022-11-05 17:27 - 2018-09-10 14:22 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software 2022-11-05 17:27 - 2018-05-19 10:24 - 000003890 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1526721874 2022-11-05 17:27 - 2017-04-01 17:36 - 000004174 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update 2022-11-05 17:27 - 2016-03-16 16:55 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2022-11-05 17:27 - 2016-03-14 15:58 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2022-11-05 17:27 - 2016-03-14 15:58 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2022-11-05 16:22 - 2016-03-14 15:58 - 000000000 ____D C:\Program Files (x86)\Google 2022-11-05 16:02 - 2018-03-27 19:20 - 000000000 ____D C:\Program Files\Opera 2022-11-05 10:10 - 2019-04-21 14:23 - 000000000 ____D C:\Program Files\CCleaner 2022-11-05 09:54 - 2016-04-11 09:35 - 000000000 ____D C:\ProgramData\Avg 2022-11-05 09:53 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-11-04 16:40 - 2016-04-08 18:09 - 000000000 ____D C:\Users\TOSHIBA\Documents\finanse domowe 2022-11-04 13:08 - 2018-08-31 09:32 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk 2022-11-04 13:08 - 2018-08-31 09:32 - 000002229 _____ C:\Users\Public\Desktop\AVG Secure Browser.lnk 2022-11-04 13:07 - 2019-04-25 21:25 - 000003706 _____ C:\Windows\system32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) 2022-11-03 16:26 - 2016-03-14 15:59 - 000002190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2022-11-01 11:35 - 2020-10-14 07:26 - 000276632 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2022-11-01 11:35 - 2020-06-19 11:52 - 000564416 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgNetHub.sys 2022-11-01 11:35 - 2019-01-19 18:44 - 000390168 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriver.sys 2022-11-01 11:35 - 2019-01-04 18:43 - 000306200 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsh.sys 2022-11-01 11:35 - 2019-01-04 18:43 - 000106520 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniv.sys 2022-11-01 11:35 - 2019-01-04 18:43 - 000042416 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArDisk.sys 2022-11-01 11:35 - 2018-10-20 17:09 - 000048648 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgKbd.sys 2022-11-01 11:35 - 2018-03-17 09:21 - 000238288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys 2022-11-01 11:35 - 2017-04-01 17:36 - 000863104 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2022-11-01 11:35 - 2017-04-01 17:36 - 000672440 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2022-11-01 11:35 - 2017-04-01 17:36 - 000328040 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2022-11-01 11:35 - 2017-04-01 17:36 - 000114632 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2022-11-01 11:35 - 2017-04-01 17:36 - 000090120 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2022-10-31 09:55 - 2011-04-12 14:21 - 000739932 _____ C:\Windows\system32\perfh015.dat 2022-10-31 09:55 - 2011-04-12 14:21 - 000155474 _____ C:\Windows\system32\perfc015.dat 2022-10-31 09:55 - 2009-07-14 06:13 - 001668226 _____ C:\Windows\system32\PerfStringBackup.INI 2022-10-31 09:55 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf ==================== Pliki w katalogu głównym wybranych folderów ======== 2016-04-08 11:39 - 2016-04-08 11:39 - 000000017 _____ () C:\Users\TOSHIBA\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2022-07-29 17:47 ==================== Koniec FRST.txt ========================