Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 27-01-2021 Uruchomiony przez piotr (administrator) DESKTOP-MV7GE4N (ASUSTeK COMPUTER INC. X555LJ) (27-01-2021 15:49:34) Uruchomiony z C:\Users\piotr\Downloads Załadowane profile: piotr Platform: Windows 10 Home Wersja 2004 19041.746 (X64) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3> (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe (bookingDesktopApp.) [Brak podpisu cyfrowego] C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe (Discord Inc. -> Discord Inc.) C:\Users\piotr\AppData\Local\Discord\app-0.0.309\Discord.exe <6> (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2> (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe (Globalhop Ltd -> Gomberto Muraca) C:\Users\piotr\AppData\Roaming\Gomberto Muraca\Decacopy clipboard manager\decacopy.exe <2> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe (Intel Corporation -> ) C:\Windows\System32\igfxTray.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\piotr\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2012.21.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe <3> (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\WargamingErrorMonitor.exe (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117352 2020-12-17] (Avast Software s.r.o. -> AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKU\S-1-5-21-542624117-3524293160-185879821-1001\...\Run: [Discord] => C:\Users\piotr\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-542624117-3524293160-185879821-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3411232 2020-12-21] (Valve -> Valve Corporation) HKU\S-1-5-21-542624117-3524293160-185879821-1001\...\Run: [decacopy] => C:\Users\piotr\AppData\Roaming\Gomberto Muraca\Decacopy clipboard manager\decacopy.exe [84828184 2019-09-25] (Globalhop Ltd -> Gomberto Muraca) HKU\S-1-5-21-542624117-3524293160-185879821-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32883768 2021-01-27] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-542624117-3524293160-185879821-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2478848 2021-01-20] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-542624117-3524293160-185879821-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3144744 2021-01-27] (Electronic Arts, Inc. -> Electronic Arts) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-22] (Google LLC -> Google LLC) BootExecute: autocheck autochk /k:C* HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {142F0328-B056-4EB2-8D6E-E3CCD79A6DDE} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877368 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {155B5B6F-55C0-4205-9C7E-A743E5DC59DC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23062920 2021-01-19] (Microsoft Corporation -> Microsoft Corporation) Task: {26107B2C-DE53-4FCE-AC45-52088D8E8CBB} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16174352 2015-11-09] (Realtek Semiconductor Corp -> Realtek Semiconductor) Task: {399B5AF5-5686-42DA-9526-7BFDA3DC62E4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {40C64209-DE3C-4956-89E8-76A1D55886E1} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877368 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {41DAAF5E-3090-45C0-8F99-E1D798A6D657} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143720 2021-01-25] (Microsoft Corporation -> Microsoft Corporation) Task: {444A0ACB-4A00-4DA9-B9A7-98E5D5A31B22} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143720 2021-01-25] (Microsoft Corporation -> Microsoft Corporation) Task: {4AE8EDA5-63D6-47A7-9451-D981CAA42408} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849720 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {50E22899-CECC-426C-9691-5E70116EA677} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1741416 2020-09-18] (Avast Software s.r.o. -> Avast Software) Task: {5DEF0729-6BAC-436A-8FF1-8DE3B1D5F6A9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-10] (Google LLC -> Google LLC) Task: {655BEC1C-9FA6-4AB0-85FA-39534FE0C2EA} - System32\Tasks\bookingDesktopAppUpdateTaskMachineCore => C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-02-19] (bookingDesktopApp.) [Brak podpisu cyfrowego] Task: {78E73676-10F7-42C7-A3A5-6697EE511684} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877368 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {79DB9C54-55A0-43F7-9387-AB644255BF41} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877368 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7ADC40B8-D04D-40D9-A1A1-AFEFD5056391} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23062920 2021-01-19] (Microsoft Corporation -> Microsoft Corporation) Task: {815A8818-DA20-4923-A2CB-7075D1056831} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-10] (Google LLC -> Google LLC) Task: {99A65496-2497-44AF-A77A-50109A938AAB} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {A5CE920A-9687-4773-B8AE-0E5C30383F57} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4621920 2020-12-17] (Avast Software s.r.o. -> AVAST Software) Task: {AC967CB0-FE4D-4F59-AB31-C8841AC5A2E7} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411856 2015-11-09] (Realtek Semiconductor Corp -> Realtek Semiconductor) Task: {AFEC1188-5262-4ECD-9ADD-F0BF8E3DF89D} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18416 2015-12-14] (ASUSTeK Computer Inc. -> AsusTek) Task: {B5E922B8-E67B-41C2-9FBA-9A750F32F4B6} - System32\Tasks\bookingDesktopAppUpdateTaskMachineUA => C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-02-19] (bookingDesktopApp.) [Brak podpisu cyfrowego] Task: {BE2A9B41-9C7A-41C4-A688-7DD347386532} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C6A477FF-5D12-49B9-B348-BCB208B59CCE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849720 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DFB6996D-8EF2-4FC5-A12E-B734D2E3E4C5} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [591160 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EC8E88D9-3F22-4F42-A1FA-17B443748F53} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3729208 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{032432f1-c6b9-4c75-b2c4-01b089542a08}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{7f38d6f5-81b1-4dee-a9f8-cde70239d2a6}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\piotr\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-27] FireFox: ======== FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2021-01-22] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-16] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @bookingdesktopapp.com/bookingDesktopApp Update;version=3 -> C:\Program Files (x86)\bookingDesktopApp\Update\1.3.99.0\npbookingDesktopAppUpdate3.dll [2020-02-19] (bookingDesktopApp.) [Brak podpisu cyfrowego] FF Plugin-x32: @bookingdesktopapp.com/bookingDesktopApp Update;version=9 -> C:\Program Files (x86)\bookingDesktopApp\Update\1.3.99.0\npbookingDesktopAppUpdate3.dll [2020-02-19] (bookingDesktopApp.) [Brak podpisu cyfrowego] FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-09-16] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) Chrome: ======= CHR Profile: C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default [2021-01-27] CHR Notifications: Default -> hxxps://aternos.org; hxxps://born2be.pl; hxxps://key-drop.com; hxxps://key-drop.pl; hxxps://olika-com-pl-02.salesmanagopush.com; hxxps://steamcommunity.com; hxxps://usersdrive.com; hxxps://www.minecraft-france.fr CHR DefaultSearchURL: Default -> hxxps://pl.search.yahoo.com/search?fr=mcafee_uninternational&type=E210PL91105G0&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR Extension: (Prezentacje) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-10] CHR Extension: (Dokumenty) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-10] CHR Extension: (Dysk Google) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21] CHR Extension: (YouTube) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-02-10] CHR Extension: (Arkusze) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-02-10] CHR Extension: (McAfee® WebAdvisor) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-12-26] CHR Extension: (Dokumenty Google offline) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-16] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-10] CHR Extension: (Gmail) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22] CHR Extension: (Chrome Media Router) - C:\Users\piotr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-21] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8477080 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [621728 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [351848 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-12-17] (Avast Software s.r.o. -> AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8808480 2020-10-27] (BattlEye Innovations e.K. -> ) S2 bookingdesktopapp; C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-02-19] (bookingDesktopApp.) [Brak podpisu cyfrowego] S3 bookingdesktopappm; C:\Program Files (x86)\bookingDesktopApp\Update\bookingDesktopAppUpdate.exe [102400 2020-02-19] (bookingDesktopApp.) [Brak podpisu cyfrowego] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960384 2021-01-19] (Microsoft Corporation -> Microsoft Corporation) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [958216 2021-01-22] (McAfee, LLC -> McAfee, LLC) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2533952 2021-01-27] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3479624 2021-01-27] (Electronic Arts, Inc. -> Electronic Arts) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2020-02-10] (Even Balance, Inc. -> ) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1631360 2020-12-02] (Rockstar Games, Inc. -> Rockstar Games) S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [694016 2020-07-09] (Oracle Corporation -> Oracle Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-10] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36792 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208672 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332880 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97360 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2020-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software) R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42424 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176384 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522480 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108928 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84496 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851256 2020-12-17] (Avast Software s.r.o. -> AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [468888 2021-01-08] (Avast Software s.r.o. -> AVAST Software) R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214808 2021-01-07] (Avast Software s.r.o. -> AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [324904 2021-01-07] (Avast Software s.r.o. -> AVAST Software) R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [98296 2015-12-14] (ASUSTeK Computer Inc. -> ASUS Corporation) S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3284336 2021-01-10] (BattlEye Innovations e.K. -> ) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32680 2019-08-07] (ASUSTek Computer Inc. -> ASUS) R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [237376 2020-07-10] (Oracle Corporation -> Oracle Corporation) R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [248248 2020-07-10] (Oracle Corporation -> Oracle Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-02-10] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-10] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-01-27 15:49 - 2021-01-27 15:51 - 000024655 _____ C:\Users\piotr\Downloads\FRST.txt 2021-01-27 13:23 - 2021-01-27 13:23 - 000001065 _____ C:\Users\piotr\Downloads\zad_na_filozofie.txt 2021-01-25 15:57 - 2021-01-25 15:57 - 000000000 ____D C:\Users\piotr\AppData\Local\FalloutNV 2021-01-24 18:38 - 2021-01-24 18:38 - 000000000 ____D C:\Users\piotr\AppData\Local\Skyrim 2021-01-24 18:10 - 2021-01-24 18:10 - 000000221 _____ C:\Users\piotr\Desktop\The Elder Scrolls V Skyrim.url 2021-01-24 18:02 - 2021-01-24 18:02 - 000000000 ____D C:\Users\piotr\AppData\Roaming\Fallout 2021-01-23 19:51 - 2021-01-23 19:51 - 000000000 ____D C:\WINDOWS\pss 2021-01-23 19:37 - 2021-01-23 19:37 - 000000000 ____D C:\byle co 2021-01-23 18:48 - 2021-01-27 15:49 - 000000000 ____D C:\Users\piotr\Downloads\FRST-OlderVersion 2021-01-23 18:46 - 2021-01-27 15:50 - 000000000 ____D C:\FRST 2021-01-23 18:45 - 2021-01-27 15:49 - 002297856 _____ (Farbar) C:\Users\piotr\Downloads\FRST64.exe 2021-01-23 18:29 - 2021-01-23 18:30 - 000000000 ____D C:\Users\piotr\Downloads\CrystalDiskInfo8_10_0 (1) 2021-01-23 18:26 - 2021-01-23 18:27 - 006711837 _____ C:\Users\piotr\Downloads\CrystalDiskInfo8_10_0 (1).zip 2021-01-22 16:43 - 2021-01-22 16:41 - 000192168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-64.dll 2021-01-22 16:38 - 2021-01-22 16:38 - 000000000 ____D C:\Users\piotr\AppData\LocalLow\Oracle 2021-01-22 12:41 - 2021-01-22 12:50 - 3166840832 _____ C:\Users\piotr\Downloads\7601.17514.101119-1850_x64fre_server_eval_en-us-GRMSXEVAL_EN_DVD (1).iso 2021-01-20 11:56 - 2021-01-20 13:02 - 000000000 ____D C:\Users\piotr\AppData\Local\babl-0.1 2021-01-20 11:56 - 2021-01-20 11:56 - 000000000 ____D C:\Users\piotr\AppData\Roaming\GIMP 2021-01-20 11:56 - 2021-01-20 11:56 - 000000000 ____D C:\Users\piotr\AppData\Local\GIMP 2021-01-20 11:56 - 2021-01-20 11:56 - 000000000 ____D C:\Users\piotr\AppData\Local\gegl-0.4 2021-01-20 11:56 - 2021-01-20 11:56 - 000000000 ____D C:\Users\piotr\.cache 2021-01-20 11:52 - 2021-01-20 11:52 - 000000946 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.22.lnk 2021-01-20 11:47 - 2021-01-20 11:49 - 000000000 ____D C:\Program Files\GIMP 2 2021-01-20 11:42 - 2021-01-20 11:42 - 241147480 _____ (The GIMP Team ) C:\Users\piotr\Desktop\gimp-2.10.22-setup.exe 2021-01-20 11:38 - 2021-01-20 11:42 - 241147480 _____ (The GIMP Team ) C:\Users\piotr\Downloads\gimp-2.10.22-setup.exe 2021-01-19 08:56 - 2021-01-19 08:56 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr 2021-01-19 08:56 - 2021-01-19 08:56 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx 2021-01-19 08:56 - 2021-01-19 08:56 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr 2021-01-19 08:56 - 2021-01-19 08:56 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl 2021-01-19 08:56 - 2021-01-19 08:56 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax 2021-01-19 08:56 - 2021-01-19 08:56 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax 2021-01-19 08:56 - 2021-01-19 08:56 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll 2021-01-19 08:56 - 2021-01-19 08:56 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2021-01-19 08:56 - 2021-01-19 08:56 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl 2021-01-19 08:56 - 2021-01-19 08:56 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll 2021-01-19 08:55 - 2021-01-19 08:55 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx 2021-01-19 08:55 - 2021-01-19 08:55 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl 2021-01-19 08:55 - 2021-01-19 08:55 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax 2021-01-19 08:55 - 2021-01-19 08:55 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax 2021-01-19 08:55 - 2021-01-19 08:55 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2021-01-19 08:55 - 2021-01-19 08:55 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl 2021-01-19 08:55 - 2021-01-19 08:55 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll 2021-01-19 08:54 - 2021-01-19 08:54 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll 2021-01-19 08:54 - 2021-01-19 08:54 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl 2021-01-19 08:54 - 2021-01-19 08:54 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl 2021-01-19 08:54 - 2021-01-19 08:54 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-01-19 08:53 - 2021-01-19 08:53 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-01-19 08:53 - 2021-01-19 08:53 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2021-01-19 08:53 - 2021-01-19 08:53 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2021-01-19 08:53 - 2021-01-19 08:53 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll 2021-01-19 08:53 - 2021-01-19 08:53 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll 2021-01-19 08:53 - 2021-01-19 08:53 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl 2021-01-19 08:52 - 2021-01-19 08:52 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll 2021-01-19 08:52 - 2021-01-19 08:52 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl 2021-01-19 08:52 - 2021-01-19 08:52 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl 2021-01-19 08:52 - 2021-01-19 08:52 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll 2021-01-19 08:52 - 2021-01-19 08:52 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe 2021-01-19 08:51 - 2021-01-19 08:51 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2021-01-19 08:51 - 2021-01-19 08:51 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll 2021-01-19 08:51 - 2021-01-19 08:51 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll 2021-01-19 08:50 - 2021-01-19 08:50 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2021-01-19 08:50 - 2021-01-19 08:50 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll 2021-01-19 08:50 - 2021-01-19 08:50 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl 2021-01-19 08:50 - 2021-01-19 08:50 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe 2021-01-19 08:50 - 2021-01-19 08:50 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2021-01-18 16:59 - 2021-01-18 16:59 - 086866600 _____ (Rockstar Games.) C:\Users\piotr\Downloads\Rockstar-Games-Launcher (2).exe 2021-01-18 16:58 - 2021-01-18 16:59 - 086866600 _____ (Rockstar Games.) C:\Users\piotr\Downloads\Rockstar-Games-Launcher (1).exe 2021-01-18 16:28 - 2021-01-18 16:28 - 044568576 _____ C:\Users\piotr\Downloads\EpicInstaller-10.19.2 (3).msi 2021-01-18 16:19 - 2021-01-18 16:20 - 044568576 _____ C:\Users\piotr\Downloads\EpicInstaller-10.19.2 (1).msi 2021-01-18 16:08 - 2021-01-18 16:08 - 044568576 _____ C:\Users\piotr\Downloads\EpicInstaller-10.19.2.msi 2021-01-18 11:56 - 2021-01-18 11:56 - 000002968 _____ C:\Users\piotr\Downloads\message (3).txt 2021-01-09 18:20 - 2021-01-09 18:20 - 000000000 ____D C:\Users\piotr\AppData\LocalLow\Polyslash 2021-01-09 18:05 - 2021-01-09 18:05 - 000000222 _____ C:\Users\piotr\Desktop\We. The Revolution.url 2021-01-07 18:49 - 2021-01-07 18:49 - 000000000 ____D C:\Users\piotr\AppData\Roaming\R2G_Common_WIP1 2021-01-07 18:34 - 2021-01-07 18:34 - 000000222 _____ C:\Users\piotr\Desktop\Book of Demons.url 2021-01-07 14:33 - 2021-01-07 14:33 - 000000445 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-01-27 15:47 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-01-27 15:34 - 2020-11-25 07:22 - 000003244 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6be82c69f64b6 2021-01-27 15:34 - 2020-11-19 15:53 - 000003496 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-01-27 15:34 - 2020-11-19 15:53 - 000003438 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-01-27 15:34 - 2020-11-19 15:53 - 000003272 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-01-27 15:34 - 2020-11-19 15:53 - 000003214 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-01-27 15:34 - 2020-11-19 15:53 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-542624117-3524293160-185879821-1001 2021-01-27 15:34 - 2020-02-18 15:32 - 000000000 ____D C:\Program Files (x86)\Steam 2021-01-27 15:24 - 2020-11-19 15:29 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-01-27 15:15 - 2020-02-10 15:56 - 000000000 ____D C:\Users\piotr\AppData\Roaming\Discord 2021-01-27 14:57 - 2020-02-18 15:37 - 000000000 ____D C:\Users\piotr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2021-01-27 14:56 - 2020-02-10 15:06 - 000000000 ____D C:\Users\piotr\AppData\Roaming\.minecraft 2021-01-27 14:16 - 2020-11-19 15:53 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software 2021-01-27 13:22 - 2020-08-12 15:25 - 000000000 ____D C:\ProgramData\Origin 2021-01-27 13:11 - 2020-08-12 15:35 - 000000000 ____D C:\Users\piotr\AppData\Local\Origin 2021-01-27 13:11 - 2020-02-10 13:07 - 000000000 ___RD C:\Users\piotr\OneDrive 2021-01-27 13:10 - 2020-02-10 13:15 - 000000000 ____D C:\ProgramData\NVIDIA 2021-01-27 13:09 - 2020-02-10 14:19 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2021-01-27 13:09 - 2020-02-10 14:19 - 000000000 __SHD C:\Users\piotr\IntelGraphicsProfiles 2021-01-27 07:33 - 2020-08-12 15:25 - 000000000 ____D C:\Program Files (x86)\Origin 2021-01-26 12:17 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-01-26 12:17 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-01-26 09:09 - 2020-11-19 15:53 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update 2021-01-25 16:01 - 2020-02-10 13:26 - 000000000 ____D C:\Users\piotr\AppData\Local\D3DSCache 2021-01-25 15:57 - 2020-02-19 18:21 - 000000000 ____D C:\Users\piotr\Documents\My Games 2021-01-25 07:35 - 2020-04-07 09:37 - 000000000 ____D C:\Program Files\Microsoft Office 2021-01-24 17:30 - 2020-06-15 14:20 - 000002431 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-01-24 17:10 - 2020-02-10 14:36 - 000000000 ____D C:\ProgramData\AVAST Software 2021-01-23 20:32 - 2020-11-19 15:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-01-23 20:32 - 2020-11-19 15:29 - 000008192 ___SH C:\DumpStack.log.tmp 2021-01-23 20:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-01-23 20:31 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-01-23 19:39 - 2020-11-19 15:52 - 000001908 _____ C:\WINDOWS\diagwrn.xml 2021-01-23 19:39 - 2020-11-19 15:52 - 000001908 _____ C:\WINDOWS\diagerr.xml 2021-01-23 19:03 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-01-23 18:29 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-01-22 17:18 - 2020-11-19 15:49 - 001767980 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-01-22 17:18 - 2019-12-07 16:08 - 000786872 _____ C:\WINDOWS\system32\perfh015.dat 2021-01-22 17:18 - 2019-12-07 16:08 - 000152716 _____ C:\WINDOWS\system32\perfc015.dat 2021-01-22 17:11 - 2020-11-19 15:29 - 000631848 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-01-22 17:07 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2021-01-22 17:07 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2021-01-22 17:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2021-01-22 17:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2021-01-22 17:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2021-01-22 17:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-01-22 17:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2021-01-22 17:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2021-01-22 17:06 - 2019-12-07 16:11 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2021-01-22 17:06 - 2019-12-07 16:11 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-01-22 17:06 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-01-22 16:44 - 2020-09-14 10:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2021-01-22 16:41 - 2020-09-14 16:42 - 000192168 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll 2021-01-22 16:40 - 2020-09-14 12:25 - 000000000 ____D C:\Program Files\Java 2021-01-22 16:40 - 2020-09-14 10:35 - 000165032 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2021-01-22 16:39 - 2020-02-10 14:35 - 000000000 ____D C:\Program Files (x86)\Java 2021-01-22 08:05 - 2020-02-10 14:32 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-01-22 08:01 - 2020-08-29 13:08 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-01-20 11:56 - 2020-11-19 09:49 - 000000000 ____D C:\Users\piotr 2021-01-19 08:50 - 2020-11-19 15:34 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2021-01-19 08:20 - 2020-02-10 14:15 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-01-19 08:13 - 2020-02-10 14:15 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-01-18 17:53 - 2020-08-12 15:35 - 000000000 ____D C:\Users\piotr\AppData\Roaming\Origin 2021-01-18 17:19 - 2020-08-12 15:44 - 000000000 ____D C:\Program Files (x86)\Origin Games 2021-01-16 18:06 - 2020-02-10 13:07 - 000000000 ____D C:\Users\piotr\AppData\Local\PlaceholderTileLogoFolder 2021-01-13 11:28 - 2020-09-16 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2021-01-08 13:58 - 2020-02-10 14:40 - 000468888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2021-01-07 18:49 - 2020-05-30 17:42 - 000000000 ____D C:\Users\piotr\AppData\Roaming\Return2Games_WIP21 2021-01-07 18:23 - 2020-02-19 11:46 - 000000000 ____D C:\Users\piotr\BrawlhallaReplays 2021-01-07 17:48 - 2020-12-26 13:10 - 000000000 ____D C:\Users\piotr\AppData\Local\BY-COMBO 2021-01-07 17:32 - 2020-12-17 11:31 - 000214808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2021-01-07 14:37 - 2020-02-10 14:40 - 000324904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys ==================== Pliki w katalogu głównym wybranych folderów ======== 2020-03-20 13:31 - 2020-06-11 11:57 - 000000036 _____ () C:\Users\piotr\AppData\Roaming\WB.CFG 2020-08-09 15:32 - 2020-08-11 16:25 - 000007605 _____ () C:\Users\piotr\AppData\Local\Resmon.ResmonCfg 2020-02-23 17:32 - 2020-02-23 17:32 - 000000000 _____ () C:\Users\piotr\AppData\Local\{E7861AF7-D25E-401B-9504-F6ECB298D104} ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================