Dzien dobry Proszę o sprawdzenie logów, nie wiem, czy dorzucić także logi z OTL
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 12-08-2020
Uruchomiony przez Rzemka (administrator) RZEMKA-KOMPUTER (12-08-2020 16:37:49)
Uruchomiony z H:\Bezpieczenstwo logi
Załadowane profile: Rzemka
Platform: Windows 7 Ultimate Service Pack 1 (X64) Język: Polski (Polska)
Internet Explorer Wersja 8 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
() [Brak podpisu cyfrowego] C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Advanced Micro Devices, Inc. - & gt; Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. - & gt; Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. - & gt; Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. - & gt; AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. - & gt; AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software s.r.o. - & gt; AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.5.245.0\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. - & gt; AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.5.245.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. - & gt; AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. - & gt; AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. - & gt; AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe & lt; 2 & gt;
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Windows Hardware Compatibility Publisher - & gt; Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Mozilla Corporation - & gt; Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe & lt; 7 & gt;
(Oracle America, Inc. - & gt; Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd - & gt; Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Valve - & gt; Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve - & gt; Valve Corporation) G:\Steam\Steam\bin\cef\cef.win7\steamwebhelper.exe & lt; 7 & gt;
(Valve - & gt; Valve Corporation) G:\Steam\Steam\steam.exe
(VIA Technologies Inc. - & gt; VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(VIA Technologies Inc. - & gt; VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
==================== Rejestr (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [MouseDriver] = & gt; C:\Windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher - & gt; Pixart Imaging Inc)
HKLM\...\Run: [AvastUI.exe] = & gt; C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
HKLM-x32\...\Run: [HDAudDeck] = & gt; C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [3037296 2013-09-17] (VIA Technologies Inc. - & gt; VIA)
HKLM-x32\...\Run: [] = & gt; [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. - & gt; Oracle Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia & lt; ==== UWAGA
HKU\S-1-5-21-3498764208-1902919936-144730902-1000\...\Run: [CCleaner Smart Cleaning] = & gt; C:\Program Files\CCleaner\CCleaner64.exe [29072568 2020-05-22] (Piriform Software Ltd - & gt; Piriform Software Ltd)
HKU\S-1-5-21-3498764208-1902919936-144730902-1000\...\Run: [GoogleChromeAutoLaunch_AFF58D7D11B17AEC2A422F6EDD9A2F2E] = & gt; " C:\Program Files (x86)\Google\Chrome\Application\chrome.exe " --no-startup-window /prefetch:5
HKU\S-1-5-21-3498764208-1902919936-144730902-1000\...\Run: [Steam] = & gt; G:\Steam\Steam\steam.exe [3377440 2020-07-31] (Valve - & gt; Valve Corporation)
HKU\S-1-5-21-3498764208-1902919936-144730902-1000\...\Run: [Opera Browser Assistant] = & gt; C:\Users\Rzemka\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3126296 2020-08-11] (Opera Software AS - & gt; Opera Software)
HKU\S-1-5-21-3498764208-1902919936-144730902-1000\...\MountPoints2: {093c35d5-4bcd-11e9-a190-485b39b9aff2} - J:\setup.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.125\Installer\chrmstp.exe [2020-08-11] (Google LLC - & gt; Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] - & gt; C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\84.1.11.104\Installer\chrmstp.exe [2020-07-29] (Brave Software, Inc.) [Brak podpisu cyfrowego]
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] - & gt; C:\Program Files (x86)\AVAST Software\Browser\Application\84.0.5270.106\Installer\chrmstp.exe [2020-08-06] (Avast Software s.r.o. - & gt; AVAST Software)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia & lt; ==== UWAGA
CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia & lt; ==== UWAGA
==================== Zaplanowane zadania (filtrowane) ============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {0DAE6253-8B7D-4AEA-B0F8-0207365A5F8E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB = & gt; C:\Program Files\Mozilla Firefox\default-browser-agent.exe [123600 2020-07-30] (Mozilla Corporation - & gt; Mozilla Foundation)
Task: {244F849C-158B-4B16-8FC9-2680D00F23BD} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) = & gt; C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1956664 2020-07-28] (Avast Software s.r.o. - & gt; AVAST Software)
Task: {2BB5B5C2-3362-4F34-851A-240288BBAFAE} - System32\Tasks\StartCN = & gt; C:\Program Files\AMD\CNext\CNext\cncmd.exe [58760 2019-03-26] (Advanced Micro Devices, Inc. - & gt; Advanced Micro Devices, Inc.)
Task: {2D12BFE6-986D-4921-A628-652837CF9D09} - System32\Tasks\Adobe Flash Player NPAPI Notifier = & gt; C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_Plugin.exe [1456696 2019-04-09] (Adobe Inc. - & gt; Adobe)
Task: {2EC28447-776B-4BEB-97D1-BF7335725523} - System32\Tasks\Opera scheduled assistant Autoupdate 1591986346 = & gt; C:\Users\Rzemka\AppData\Local\Programs\Opera\launcher.exe [1509400 2020-07-27] (Opera Software AS - & gt; Opera Software)
Task: {35D5EBB5-10FB-49F8-A956-7C90970EFFC6} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA = & gt; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157376 2020-06-02] (Brave Software, Inc. - & gt; BraveSoftware Inc.)
Task: {480B7977-A07E-410D-8FCF-9FB7EB032E76} - System32\Tasks\Opera scheduled Autoupdate 1553130052 = & gt; C:\Users\Rzemka\AppData\Local\Programs\Opera\launcher.exe [1509400 2020-07-27] (Opera Software AS - & gt; Opera Software)
Task: {4BC33FEC-C06A-4947-8DD9-F8AB07E205D6} - System32\Tasks\AvastUpdateTaskMachineUA = & gt; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-07-22] (AVAST Software s.r.o. - & gt; AVAST Software)
Task: {4D070F5D-025D-4AD7-A100-8BC3294B5FC0} - System32\Tasks\GoogleUpdateTaskMachineUA = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-21] (Google Inc - & gt; Google Inc.)
Task: {584CB539-201B-444C-9429-3FF9CBC40682} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore = & gt; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157376 2020-06-02] (Brave Software, Inc. - & gt; BraveSoftware Inc.)
Task: {7A747C00-9E38-459E-A60F-3E0455DAFC10} - System32\Tasks\Opera scheduled Autoupdate 1591986344 = & gt; C:\Users\Rzemka\AppData\Local\Programs\Opera\launcher.exe [1509400 2020-07-27] (Opera Software AS - & gt; Opera Software)
Task: {92F4DF42-88A8-4097-A0DD-FF2D17096A97} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3498764208-1902919936-144730902-1000 = & gt; C:\Users\Rzemka\AppData\Local\MEGAsync\MEGAupdater.exe [615160 2020-05-29] (Mega Limited - & gt; Mega Limited)
Task: {99B31F46-7FD4-461A-AD8C-E998AFF544FC} - System32\Tasks\CCleanerSkipUAC = & gt; C:\Program Files\CCleaner\CCleaner.exe [24690360 2020-05-22] (Piriform Software Ltd - & gt; Piriform Software Ltd)
Task: {B12A4B34-7785-4A58-98C2-EBD125F7521B} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary = & gt; rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary & lt; ==== UWAGA
Task: {B48EAB38-08D5-4187-8AA6-463861E70805} - System32\Tasks\AMDLinkUpdate = & gt; C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego]
Task: {B8B1D10E-DCAF-44D2-B594-2ACC04038954} - System32\Tasks\Opera scheduled assistant Autoupdate 1553130053 = & gt; C:\Users\Rzemka\AppData\Local\Programs\Opera\launcher.exe [1509400 2020-07-27] (Opera Software AS - & gt; Opera Software)
Task: {BEAAB11F-0C45-4253-BE21-64CBA606BFAC} - System32\Tasks\GoogleUpdateTaskMachineCore = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-21] (Google Inc - & gt; Google Inc.)
Task: {CBB54533-2CE5-4E9C-ACDE-0A3B6478F212} - System32\Tasks\AvastUpdateTaskMachineCore = & gt; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-07-22] (AVAST Software s.r.o. - & gt; AVAST Software)
Task: {D159E727-B4B4-4F47-A61A-81FC24BB5430} - System32\Tasks\Microsoft\Windows\WDI\SrvHost = & gt; rundll32.exe winscomrssrv.dll,SrvMainHost & lt; ==== UWAGA
Task: {D34EF1C7-4531-496C-AC87-175B62A93FE9} - System32\Tasks\Adobe Flash Player Updater = & gt; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-09] (Adobe Inc. - & gt; Adobe)
Task: {E6A3A7E0-3D3D-4F16-B5C5-4E1C9AA1C6D8} - System32\Tasks\Avast Software\Overseer = & gt; C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-05-30] (Avast Software s.r.o. - & gt; Avast Software)
Task: {E71AA5AB-727B-4610-8BAA-FB25CECC70A9} - System32\Tasks\StartDVR = & gt; C:\Program Files\AMD\CNext\CNext\dvrcmd.exe
Task: {E8678895-5C33-4371-9AD4-ADFF351A979D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) = & gt; C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1956664 2020-07-28] (Avast Software s.r.o. - & gt; AVAST Software)
Task: {FB372E70-2939-4E2D-ADFD-419218A28B1F} - System32\Tasks\ModifyLinkUpdate = & gt; C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego]
Task: {FB9D4678-02B6-4B61-AE92-C9000CE2A5BD} - System32\Tasks\Avast Emergency Update = & gt; C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3810408 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
Task: {FE76D89A-073E-4C20-B27B-0B54761A8D22} - System32\Tasks\CCleaner Update = & gt; C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-22] (Piriform Software Ltd - & gt; Piriform Software Ltd)
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL = & gt; Brak pliku
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL = & gt; Brak pliku
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL = & gt; Brak pliku
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL = & gt; Brak pliku
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{17CD48F6-BC5D-45DC-89AD-BD976AEAC845}: [DhcpNameServer] 192.168.8.1
Internet Explorer:
==================
HKU\S-1-5-21-3498764208-1902919936-144730902-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.gazeta.pl/0,0.html?p=190
HKU\S-1-5-21-3498764208-1902919936-144730902-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files\Java\jre-10.0.2\bin\ssv.dll = & gt; Brak pliku
BHO: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files\Java\jre-10.0.2\bin\jp2ssv.dll [2019-02-26] (Oracle America, Inc. - & gt; Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-12-10] (Microsoft Windows - & gt; Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-12-10] (Microsoft Windows - & gt; Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-12-10] (Microsoft Windows - & gt; Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-12-10] (Microsoft Windows - & gt; Microsoft Corporation)
FireFox:
========
FF DefaultProfile: ey5ri9su.default
FF ProfilePath: C:\Users\Rzemka\AppData\Roaming\Mozilla\Firefox\Profiles\ey5ri9su.default [2020-08-12]
FF DownloadDir: G:\Pobieranie z Internetu
FF Homepage: Mozilla\Firefox\Profiles\ey5ri9su.default - & gt; hxxps://duckduckgo.com/
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Rzemka\AppData\Roaming\Mozilla\Firefox\Profiles\ey5ri9su.default\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2020-08-10]
FF Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Rzemka\AppData\Roaming\Mozilla\Firefox\Profiles\ey5ri9su.default\Extensions\sp@avast.com.xpi [2020-07-04]
FF Extension: (Avast Online Security) - C:\Users\Rzemka\AppData\Roaming\Mozilla\Firefox\Profiles\ey5ri9su.default\Extensions\wrc@avast.com.xpi [2020-06-17]
FF Extension: (Music Search) - C:\Users\Rzemka\AppData\Roaming\Mozilla\Firefox\Profiles\ey5ri9su.default\Extensions\{43d20840-2895-4866-9d79-4f6f2ea537f7}.xpi [2019-07-10] [UpdateUrl:hxxps://addons.gettheresult.net/msff/updates.json]
FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\Rzemka\AppData\Roaming\Mozilla\Firefox\Profiles\ey5ri9su.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-08-07]
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_171.dll [2019-04-09] (Adobe Inc. - & gt; )
FF Plugin: @java.com/DTPlugin,version=13.0.2 - & gt; C:\Program Files\Java\jre-10.0.2\bin\dtplugin\npDeployJava1.dll [2019-02-26] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=13.0.2.0 - & gt; C:\Program Files\Java\jre-10.0.2\bin\plugin2\npjp2.dll [2019-02-26] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - & gt; disabled [Brak pliku]
FF Plugin-x32: @adobe.com/FlashPlayer - & gt; C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_171.dll [2019-04-09] (Adobe Inc. - & gt; )
FF Plugin-x32: @microsoft.com/GENUINE - & gt; disabled [Brak pliku]
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 - & gt; C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-06-02] (Brave Software, Inc. - & gt; BraveSoftware Inc.)
FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 - & gt; C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2020-06-02] (Brave Software, Inc. - & gt; BraveSoftware Inc.)
Chrome:
=======
CHR Profile: C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default [2020-08-12]
CHR Extension: (Prezentacje) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-21]
CHR Extension: (Dokumenty) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-21]
CHR Extension: (Dysk Google) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-21]
CHR Extension: (YouTube) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-21]
CHR Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-07-04]
CHR Extension: (Arkusze) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-05]
CHR Extension: (Avast Online Security) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-28]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-06-28]
CHR Extension: (Baidu Screenshot Translation) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\obhlofkljphbenhcjnimfcdlknkdilcm [2020-06-28]
CHR Extension: (Gmail) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-16]
CHR Extension: (Chrome Media Router) - C:\Users\Rzemka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-16]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Usługi (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-04-09] (Adobe Inc. - & gt; Adobe)
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [190464 2019-03-26] () [Brak podpisu cyfrowego]
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7776160 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-07-22] (AVAST Software s.r.o. - & gt; AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [353696 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-07-22] (AVAST Software s.r.o. - & gt; AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\84.0.5270.106\elevation_service.exe [1072376 2020-07-28] (Avast Software s.r.o. - & gt; AVAST Software)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157376 2020-06-02] (Brave Software, Inc. - & gt; BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [157376 2020-06-02] (Brave Software, Inc. - & gt; BraveSoftware Inc.)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2013-09-17] (VIA Technologies Inc. - & gt; VIA Technologies, Inc.)
===================== Sterowniki (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [223624 2019-03-27] (Advanced Micro Devices, Inc. - & gt; )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205888 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235592 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [195656 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60488 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42776 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175200 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [515544 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-05-30] (AVAST Software s.r.o. - & gt; AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [466752 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217336 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [323784 2020-08-11] (Avast Software s.r.o. - & gt; AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2019-03-21] (DT Soft Ltd - & gt; DT Soft Ltd)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] (Microsoft Windows Hardware Compatibility Publisher - & gt; )
R1 networx; C:\Windows\System32\drivers\networx.sys [96488 2020-03-13] (SoftPerfect Pty. Ltd. - & gt; Windows (R) Win 7 DDK provider)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [50392 2015-08-13] (Razer Inc. - & gt; Razer Inc)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [10848 2000-01-21] () [Brak podpisu cyfrowego]
S3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [6144 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher - & gt; )
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [2157680 2013-09-17] (VIA Technologies Inc. - & gt; VIA Technologies, Inc.)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc (utworzone) ===================
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2020-08-11 16:39 - 2020-08-11 16:39 - 000091300 _____ C:\Users\Rzemka\Desktop\CVdopracy.pl - Twoje CV.pdf
2020-08-11 15:10 - 2020-08-11 15:10 - 000000000 ____D C:\Users\Rzemka\Documents\Infinity Engine - Enhanced Edition
2020-08-11 13:45 - 2020-08-11 13:45 - 000335968 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-08-11 13:45 - 2020-08-11 13:45 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-08-11 13:45 - 2020-08-11 13:45 - 000175200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-08-05 13:48 - 2020-08-05 13:48 - 000000208 _____ C:\Users\Rzemka\Desktop\Quake Live.url
2020-08-05 13:42 - 2020-08-05 13:42 - 000000609 _____ C:\Users\Public\Desktop\Steam.lnk
2020-08-05 13:42 - 2020-08-05 13:42 - 000000609 _____ C:\ProgramData\Desktop\Steam.lnk
2020-08-05 13:42 - 2020-08-05 13:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-07-30 22:39 - 2020-07-30 22:39 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2020-07-30 21:08 - 2020-07-31 09:17 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-07-16 23:07 - 2020-07-16 23:07 - 000000000 ____D C:\Users\Rzemka\AppData\Local\The Big Score Version 2
==================== Jeden miesiąc (zmodyfikowane) ==================
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2020-08-12 16:38 - 2019-05-15 13:40 - 000000000 ____D C:\FRST
2020-08-12 16:30 - 2019-02-19 23:50 - 000000000 ____D C:\Users\Rzemka\AppData\LocalLow\Mozilla
2020-08-12 16:27 - 2020-06-12 20:25 - 000004340 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1591986346
2020-08-12 16:27 - 2020-06-12 20:25 - 000004146 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1591986344
2020-08-12 16:27 - 2020-06-02 19:35 - 000003486 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA
2020-08-12 16:27 - 2020-06-02 19:35 - 000003358 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore
2020-08-12 16:27 - 2019-05-22 13:54 - 000003158 _____ C:\Windows\system32\Tasks\StartCN
2020-08-12 16:27 - 2019-05-22 13:54 - 000003128 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2020-08-12 16:27 - 2019-05-22 13:54 - 000003118 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2020-08-12 16:27 - 2019-05-22 13:54 - 000003072 _____ C:\Windows\system32\Tasks\StartDVR
2020-08-12 16:27 - 2019-05-15 20:57 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-08-12 16:27 - 2019-05-15 20:57 - 000002824 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-08-12 16:27 - 2019-03-21 02:52 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-08-12 16:27 - 2019-03-21 02:52 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-08-12 16:27 - 2019-02-20 00:45 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-08-12 10:44 - 2009-07-14 06:45 - 000010416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-08-12 10:44 - 2009-07-14 06:45 - 000010416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-08-12 10:41 - 2019-02-20 00:43 - 000000000 ____D C:\ProgramData\AVAST Software
2020-08-12 10:35 - 2009-07-14 19:55 - 000740098 _____ C:\Windows\system32\perfh015.dat
2020-08-12 10:35 - 2009-07-14 19:55 - 000155672 _____ C:\Windows\system32\perfc015.dat
2020-08-12 10:35 - 2009-07-14 07:13 - 001669190 _____ C:\Windows\system32\PerfStringBackup.INI
2020-08-12 10:35 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-08-12 10:31 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-08-12 01:43 - 2019-02-20 00:05 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2020-08-11 23:32 - 2019-03-21 02:53 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-08-11 23:32 - 2019-03-21 02:53 - 000002189 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-08-11 23:32 - 2019-03-21 02:53 - 000002189 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-08-11 14:46 - 2019-02-20 00:44 - 000323784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-08-11 13:46 - 2019-02-20 00:44 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-08-11 13:45 - 2020-05-30 13:27 - 000515544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-08-11 13:45 - 2019-02-20 00:44 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-08-11 13:45 - 2019-02-20 00:44 - 000466752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-08-11 13:45 - 2019-02-20 00:44 - 000235592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-08-11 13:45 - 2019-02-20 00:44 - 000205888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-08-11 13:45 - 2019-02-20 00:44 - 000195656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-08-11 13:45 - 2019-02-20 00:44 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-08-11 13:45 - 2019-02-20 00:44 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-08-11 13:45 - 2019-02-20 00:44 - 000060488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-08-11 13:45 - 2019-02-20 00:44 - 000042776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-08-11 13:45 - 2019-02-20 00:44 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-08-08 11:17 - 2019-02-20 00:45 - 000000000 ____D C:\Users\Rzemka\AppData\Local\AVAST Software
2020-08-07 18:50 - 2019-02-21 22:24 - 000000000 ____D C:\Users\Rzemka\AppData\Roaming\audacity
2020-08-06 18:15 - 2019-07-22 18:07 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-08-06 18:15 - 2019-07-22 18:07 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-08-06 18:15 - 2019-07-22 18:07 - 000002392 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-08-06 18:15 - 2019-07-22 18:07 - 000002392 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-07-31 09:17 - 2019-02-19 23:50 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-07-30 14:10 - 2020-06-15 00:36 - 000000000 ____D C:\Users\Rzemka\Documents\Icewind Dale - Enhanced Edition
2020-07-29 09:15 - 2020-06-02 19:36 - 000002347 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2020-07-29 09:15 - 2020-06-02 19:36 - 000002306 _____ C:\Users\Public\Desktop\Brave.lnk
2020-07-29 09:15 - 2020-06-02 19:36 - 000002306 _____ C:\ProgramData\Desktop\Brave.lnk
2020-07-28 08:56 - 2020-06-13 12:56 - 000000000 ____D C:\Users\Rzemka\Downloads\opera autoupdate
2020-07-27 14:24 - 2019-04-01 22:35 - 000000000 ____D C:\Users\Rzemka\AppData\Local\User Data
2020-07-18 17:00 - 2019-04-08 22:23 - 000000000 ____D C:\Users\Rzemka\.gimp-2.8
2020-07-18 11:21 - 2009-07-14 07:08 - 000032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
==================== Pliki w katalogu głównym wybranych folderów ========
2020-02-23 04:30 - 2020-02-23 04:30 - 000017182 _____ () C:\Users\Rzemka\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
LastRegBack: 2020-08-05 00:28
==================== Koniec FRST.txt ========================