Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 02-12-2019 Uruchomiony przez KKK (administrator) MÓJKOMPUTER (Gigabyte Technology Co., Ltd. GA-770T-D3L) (04-12-2019 12:53:12) Uruchomiony z C:\Users\KKK\Downloads Załadowane profile: KKK & UpdatusUser (Dostępne profile: KKK & UpdatusUser) Platform: Windows 7 Ultimate Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (DeviceVM Inc. -> DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM Inc. -> DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co.) C:\Program Files (x86)\EXPERTool\TBPANEL.exe (Giga-Byte Technology -> ) C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\taskmgr.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11101800 2010-07-28] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [BCU] => C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [375000 2009-10-15] (DeviceVM Inc. -> DeviceVM, Inc.) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-3906235096-238085844-2236722319-1000\...\Run: [GAINWARD] => C:\Program Files (x86)\EXPERTool\TBPanel.exe [2273608 2011-08-02] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co.) HKU\S-1-5-21-3906235096-238085844-2236722319-1001\...\Run: [GAINWARD] => C:\Program Files (x86)\EXPERTool\TBPanel.exe [2273608 2011-08-02] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co.) HKU\S-1-5-21-3906235096-238085844-2236722319-1001\...\MountPoints2: {e6f1acfd-cb32-11e9-933a-806e6f6e6963} - F:\Run.exe HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\chrmstp.exe [2019-12-04] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2019-08-31] ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe () [Brak podpisu cyfrowego] FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1DDDAD5B-0B36-4F34-94FF-A40182668E6E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) Task: {25338AE1-A6E0-4849-935B-83C1237906F3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-31] (Google Inc -> Google LLC) Task: {54C410E1-B37E-4149-9933-88138F84B0CA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-31] (Google Inc -> Google LLC) Task: {B720BD86-6C34-462B-92B7-A1F4FEE377F1} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) Task: {BB8D9CB2-CAE8-49E6-9B87-8E0D7DF0C19D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0 Tcpip\..\Interfaces\{96396142-718C-42C0-A7AC-0C392709A5DC}: [DhcpNameServer] 192.168.0.1 0.0.0.0 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.gmx.com/start?src=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=pl&p_tsrc=dpduiuxvo0kxaikmoikm96&p_w=y2w35 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.gmx.com/start?src=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=pl&p_tsrc=dpduiuxvo0kxaikmoikm96&p_w=y2w35 HKU\S-1-5-21-3906235096-238085844-2236722319-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.web-pl.com/ HKU\S-1-5-21-3906235096-238085844-2236722319-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp HKU\S-1-5-21-3906235096-238085844-2236722319-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp URLSearchHook: HKU\S-1-5-21-3906235096-238085844-2236722319-1000 - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch64.dll (DeviceVM Inc. -> DeviceVM, Inc.) URLSearchHook: HKU\S-1-5-21-3906235096-238085844-2236722319-1000 - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM Inc. -> DeviceVM, Inc.) URLSearchHook: HKU\S-1-5-21-3906235096-238085844-2236722319-1001 - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch64.dll (DeviceVM Inc. -> DeviceVM, Inc.) URLSearchHook: HKU\S-1-5-21-3906235096-238085844-2236722319-1001 - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM Inc. -> DeviceVM, Inc.) SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=pl&p_tsrc=dpduiuxvo0kxaikmoikm96&p_w=y2w35&q={searchTerms} SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=pl&p_tsrc=dpduiuxvo0kxaikmoikm96&p_w=y2w35&q={searchTerms} SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=pl&p_tsrc=dpduiuxvo0kxaikmoikm96&p_w=y2w35&q={searchTerms} SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=pl&p_tsrc=dpduiuxvo0kxaikmoikm96&p_w=y2w35&q={searchTerms} SearchScopes: HKU\S-1-5-21-3906235096-238085844-2236722319-1000 -> DefaultScope {22B1715F-FD64-41DE-AC67-27233CD4DB06} URL = hxxp://www.web-pl.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3906235096-238085844-2236722319-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=pl&p_tsrc=dpduiuxvo0kxaikmoikm96&p_w=y2w35&q={searchTerms} SearchScopes: HKU\S-1-5-21-3906235096-238085844-2236722319-1000 -> {22B1715F-FD64-41DE-AC67-27233CD4DB06} URL = hxxp://www.web-pl.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3906235096-238085844-2236722319-1000 -> {4578CA09-65B3-4872-A869-FDB52BA50D29} URL = hxxp://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD SearchScopes: HKU\S-1-5-21-3906235096-238085844-2236722319-1000 -> {8761917A-309A-4c43-B712-37A183700B86} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=1975384696&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=pl&q={searchTerms} StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2011-08-03] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2011-08-03] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-12-03] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-12-03] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR HomePage: Default -> hxxp://www.web-pl.com/ CHR StartupUrls: Default -> "hxxp://www.web-pl.com/" CHR DefaultSearchURL: Default -> hxxp://www.web-pl.com/search?q={searchTerms} CHR DefaultSearchKeyword: Default -> Szukaj CHR Profile: C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default [2019-12-03] CHR DownloadDir: C:\Users\KKK\Desktop CHR Extension: (Slides) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-31] CHR Extension: (Docs) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-31] CHR Extension: (Google Drive) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-08-31] CHR Extension: (YouTube) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-31] CHR Extension: (Brak nazwy) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-12-03] CHR Extension: (Brak nazwy) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-12-03] CHR Extension: (Sheets) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-31] CHR Extension: (Google Docs Offline) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-08-31] CHR Extension: (Avast Online Security) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-09-02] CHR Extension: (Brak nazwy) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-03] CHR Extension: (Gmail) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-31] CHR Extension: (Brak nazwy) - C:\Users\KKK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-03] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> ) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6085360 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] (Giga-Byte Technology -> ) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Brak podpisu cyfrowego] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-01-05] (Microsoft Windows -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AODDriver; C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21544 2010-04-27] (Giga-Byte Technology -> ) R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [171520 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-12-03] (AVAST Software s.r.o. -> AVAST Software) R3 athur; C:\Windows\System32\DRIVERS\athurx.sys [1930240 2011-04-20] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.) R3 gdrv; C:\Windows\gdrv.sys [25640 2019-12-04] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider) S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2019-12-04] (GIGA-BYTE TECHNOLOGY CO., LTD -> ) S3 TBPanel; Brak ImagePath S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-12-04 12:53 - 2019-12-04 12:54 - 000017194 _____ C:\Users\KKK\Downloads\FRST.txt 2019-12-04 12:36 - 2019-12-04 12:53 - 000000000 ____D C:\FRST 2019-12-04 12:35 - 2019-12-04 12:35 - 002263040 _____ (Farbar) C:\Users\KKK\Downloads\FRST64.exe 2019-12-03 20:08 - 2019-12-03 20:07 - 000355720 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2019-12-03 20:08 - 2019-12-03 20:07 - 000236024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2019-12-03 20:08 - 2019-12-03 20:07 - 000171520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2019-11-26 20:27 - 2019-11-26 20:27 - 000066887 _____ C:\Users\KKK\Desktop\20934251_Informacja_o_e-fakturze_zerowej_20191017.pdf 2019-11-26 20:21 - 2019-11-26 20:21 - 000070056 _____ C:\Users\KKK\Desktop\FAKTURA-F_30572490_11_19-KONTO_73239496.pdf 2019-11-11 20:09 - 2019-11-11 20:09 - 000000000 ____D C:\Users\KKK\AppData\Local\Microsoft Games ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-12-04 12:39 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-12-04 12:39 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-12-04 12:38 - 2011-04-12 14:21 - 000687590 _____ C:\Windows\system32\perfh015.dat 2019-12-04 12:38 - 2011-04-12 14:21 - 000131176 _____ C:\Windows\system32\perfc015.dat 2019-12-04 12:38 - 2009-07-14 06:13 - 001523412 _____ C:\Windows\system32\PerfStringBackup.INI 2019-12-04 12:38 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2019-12-04 12:32 - 2019-08-31 20:50 - 000025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys 2019-12-04 12:32 - 2019-08-31 20:27 - 000000000 ____D C:\ProgramData\NVIDIA 2019-12-04 12:32 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-12-04 10:21 - 2019-08-31 21:01 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update 2019-12-04 10:09 - 2019-08-31 21:16 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-12-04 09:58 - 2019-08-31 20:50 - 000030528 _____ C:\Windows\GVTDrv64.sys 2019-12-04 09:58 - 2019-08-31 20:50 - 000000004 _____ C:\Windows\SysWOW64\GVTunner.ref 2019-12-03 20:08 - 2019-08-31 21:01 - 000848432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2019-12-03 20:08 - 2019-08-31 21:01 - 000460448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2019-12-03 20:07 - 2019-08-31 21:01 - 000316528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2019-12-03 20:07 - 2019-08-31 21:01 - 000276952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys 2019-12-03 20:07 - 2019-08-31 21:01 - 000274456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys 2019-12-03 20:07 - 2019-08-31 21:01 - 000209552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys 2019-12-03 20:07 - 2019-08-31 21:01 - 000204824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2019-12-03 20:07 - 2019-08-31 21:01 - 000110320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2019-12-03 20:07 - 2019-08-31 21:01 - 000083792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2019-12-03 20:07 - 2019-08-31 21:01 - 000065120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys 2019-12-03 20:07 - 2019-08-31 21:01 - 000042736 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2019-12-03 20:07 - 2019-08-31 21:01 - 000037616 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys 2019-12-03 20:03 - 2019-08-31 21:50 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2019-12-03 20:02 - 2019-08-31 21:49 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-12-03 19:37 - 2019-08-31 21:01 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software 2019-12-03 19:37 - 2019-08-31 20:00 - 000000000 ____D C:\Users\KKK\AppData\Roaming\TP-LINK 2019-12-03 19:36 - 2019-09-02 11:22 - 000000000 ____D C:\Program Files\CCleaner 2019-12-03 19:36 - 2019-08-31 21:01 - 000000000 ____D C:\Program Files\Common Files\AVAST Software 2019-12-03 19:36 - 2019-08-31 20:24 - 000000000 ____D C:\NVIDIA 2019-12-03 19:36 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF 2019-12-03 19:36 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration 2019-12-03 19:34 - 2019-08-31 21:14 - 000000000 ____D C:\Program Files (x86)\Google 2019-12-03 18:53 - 2019-08-31 21:14 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2019-12-03 18:53 - 2019-08-31 21:14 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2019-12-03 18:53 - 2019-08-31 20:28 - 000000000 ____D C:\Users\UpdatusUser 2019-12-03 18:50 - 2019-08-30 15:44 - 000000000 ____D C:\Users\KKK ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================