Dostałem laptopa od brata z prośbą, żeby go nieco "wyczyścić". Jego syn na wszystko się zgadza co mu wyskoczy na ekranie i trochę go zaśmiecił. Co nieco pousuwałem i proszę bardziej doświadczonych o sprawdzenie załączonych logów. Co jeszcze można bezpiecznie usunąć/odinstalować? Może to mu pomoże odzyskać nieco wigoru.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 28-08-2021
Uruchomiony przez Tomek (administrator) TOMEKTOM (TOSHIBA SATELLITE C660) (29-08-2021 17:30:21)
Uruchomiony z C:\Users\Tomek\Desktop\frst
Załadowane profile: Tomek & Gość
Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska)
Domyślna przeglądarka nie została wykryta!
Tryb startu: Normal
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(Avast Software s.r.o. - & gt; AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. - & gt; AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. - & gt; AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. - & gt; AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe & lt; 5 & gt;
(Avast Software s.r.o. - & gt; AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(AVB Disc Soft, SIA - & gt; Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA - & gt; Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Check Point Software Technologies Ltd. - & gt; ) C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe
(Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe
(Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe
(Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe
(Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(Google LLC - & gt; Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe & lt; 16 & gt;
(Intel Corporation - Mobile Wireless Group - & gt; Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel Corporation - Software and Firmware Products - & gt; Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Luminati Networks Ltd - & gt; Bright Data Ltd.) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\lumsdk\net_updater64.exe
(McAfee, Inc. - & gt; McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(McAfee, Inc. - & gt; McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(McAfee, Inc. - & gt; McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation - & gt; Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation - & gt; Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\dllhost.exe & lt; 2 & gt;
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe & lt; 2 & gt;
(Realtek Semiconductor Corp. - & gt; Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(TeamViewer Germany GmbH - & gt; TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Rejestr (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [RtHDVCpl] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572512 2021-03-03] (Realtek Semiconductor Corp. - & gt; Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2021-03-03] (Realtek Semiconductor Corp. - & gt; Realtek Semiconductor)
HKLM\...\Run: [TPwrMain] = & gt; C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [566696 2011-03-02] (TOSHIBA CORPORATION - & gt; TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] = & gt; C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA CORPORATION - & gt; TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] = & gt; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [710040 2010-12-08] (TOSHIBA CORPORATION - & gt; TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] = & gt; C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [38304 2010-12-14] (TOSHIBA CORPORATION - & gt; TOSHIBA Corporation)
HKLM\...\Run: [TosNC] = & gt; C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [597928 2011-03-03] (TOSHIBA CORPORATION - & gt; TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] = & gt; C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [973176 2010-12-15] (TOSHIBA CORPORATION - & gt; TOSHIBA Corporation)
HKLM\...\Run: [AvastUI.exe] = & gt; C:\Program Files\Avast Software\Avast\AvLaunch.exe [124184 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
HKLM\...\Run: [BTMTrayAgent] = & gt; C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [11406608 2011-12-19] (Intel Corporation - Mobile Wireless Group - & gt; Intel Corporation)
HKLM\...\Run: [RtHDVBg_Dolby] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3618080 2021-03-03] (Realtek Semiconductor Corp. - & gt; Realtek Semiconductor)
HKLM-x32\...\Run: [SVPWUTIL] = & gt; C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [532480 2010-11-09] (TOSHIBA) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [HWSetup] = & gt; C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936 2010-03-04] (TOSHIBA Electronics, Inc.) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [KeNotify] = & gt; C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34160 2010-08-16] (Compal Electronics, Inc. - & gt; TOSHIBA CORPORATION)
HKLM-x32\...\Run: [ZoneAlarm] = & gt; C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [326152 2021-05-20] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [ZaAntiRansomware] = & gt; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe [4231392 2021-04-19] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.)
HKLM\...\Policies\Explorer: [TaskbarNoNotification] 1
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia & lt; ==== UWAGA
HKU\S-1-5-21-2802135352-509470064-2293162948-1000\...\Run: [CCleaner Smart Cleaning] = & gt; C:\Program Files\CCleaner\CCleaner64.exe [35144320 2021-08-16] (Piriform Software Ltd - & gt; Piriform Software Ltd)
HKU\S-1-5-21-2802135352-509470064-2293162948-1000\...\Run: [BingSvc] = & gt; C:\Users\Tomek\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (Microsoft Corporation - & gt; © 2015 Microsoft Corporation)
HKU\S-1-5-21-2802135352-509470064-2293162948-1000\...\Policies\Explorer: [TaskbarNoNotification] 1
HKU\S-1-5-21-2802135352-509470064-2293162948-1000\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-2802135352-509470064-2293162948-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-2802135352-509470064-2293162948-501\...\Run: [TOPI.EXE] = & gt; C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA CORPORATION - & gt; TOSHIBA)
HKU\S-1-5-21-2802135352-509470064-2293162948-501\...\Run: [BitComet] = & gt; " C:\Program Files\BitComet\BitComet.exe " /tray
HKU\S-1-5-21-2802135352-509470064-2293162948-501\...\Run: [GG] = & gt; C:\Users\Tomek\AppData\Local\GG\Application\gghub.exe [4078144 2018-11-13] (GG Network S.A. - & gt; GG Network S.A.)
HKU\S-1-5-21-2802135352-509470064-2293162948-501\...\Run: [Chromium] = & gt; " c:\users\tomek\appdata\local\chromium\application\chrome.exe " --auto-launch-at-startup --profile-directory=Default --restore-last-session
HKU\S-1-5-21-2802135352-509470064-2293162948-501\...\Run: [GoogleChromeAutoLaunch_35A25480F3454DBA1E533130DD4C1B15] = & gt; " C:\Users\Tomek\AppData\Local\chromium\Application\chrome.exe " --no-startup-window /prefetch:5
HKU\S-1-5-21-2802135352-509470064-2293162948-501\...\Run: [Skype for Desktop] = & gt; C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [114017640 2021-08-10] (Skype Software Sarl - & gt; Skype Technologies S.A.)
HKU\S-1-5-21-2802135352-509470064-2293162948-501\...\Policies\Explorer: [TaskbarNoNotification] 1
HKU\S-1-5-21-2802135352-509470064-2293162948-501\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-18\...\Run: [TOPI.EXE] = & gt; C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA CORPORATION - & gt; TOSHIBA)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE - & gt;
HKLM\...\Print\Monitors\Toshiba Bluetooth Monitor: C:\Windows\system32\tbtmon.dll [208208 2009-06-18] (TOSHIBA CORPORATION - & gt; TOSHIBA CORPORATION.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; C:\Program Files (x86)\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-29] (Google LLC - & gt; Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; " C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.84\Installer\chrmstp.exe " --configure-user-settings --verbose-logging --system-level --multi-install --chrome
HKLM\Software\...\Authentication\Credential Providers: [{AC95EC36-10E5-4e80-9A47-3A413963594C}] - & gt; C:\Windows\system32\tosWirelessLANIndicatorCP.dll [2011-02-17] (TOSHIBA CORPORATION - & gt; TOSHIBA CORPORATION)
HKLM\Software\...\Authentication\Credential Providers: [{B65F237C-AAFF-4df7-8872-91B65663E41F}] - & gt; C:\Program Files\Toshiba\SmartFaceV\SmartFaceVCP.dll [2011-01-17] (TOSHIBA Corporation) [Brak podpisu cyfrowego]
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] - & gt; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2011-03-28] (Microsoft Corporation - & gt; Microsoft Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk [2018-03-20]
ShortcutTarget: Bluetooth Manager.lnk - & gt; C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION - & gt; TOSHIBA CORPORATION.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2011-08-26]
ShortcutTarget: TRDCReminder.lnk - & gt; C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA CORPORATION - & gt; TOSHIBA Europe)
Startup: C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2014-06-05]
ShortcutTarget: TRDCReminder.lnk - & gt; C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA CORPORATION - & gt; TOSHIBA Europe)
Policies: C:\ProgramData\NTUSER.pol: Ograniczenia & lt; ==== UWAGA
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia & lt; ==== UWAGA
HKLM\SOFTWARE\Policies\Google: Ograniczenia & lt; ==== UWAGA
HKLM\SOFTWARE\Policies\Microsoft\Edge: Ograniczenia & lt; ==== UWAGA
==================== Zaplanowane zadania (filtrowane) ============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {08FFE326-3064-415C-B68D-1F8E74BF421B} - System32\Tasks\CCleanerSkipUAC - Tomek = & gt; C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd - & gt; Piriform Software Ltd)
Task: {0960E6FE-F445-48F7-AAE0-C85742896791} - System32\Tasks\Avast Emergency Update = & gt; C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4917528 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
Task: {2373A5CC-AA7B-4F10-BBED-4AB076F6799B} - System32\Tasks\Driver Booster SkipUAC (Tomek) = & gt; D:\Program Files (x86)\IObit\Driver Booster\8.3.0\DriverBooster.exe
Task: {2FE10B21-A40A-4236-8204-538862C44F72} - System32\Tasks\CCleaner Update = & gt; C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-08-16] (Piriform Software Ltd - & gt; Piriform)
Task: {5219312B-63F5-4DE9-9A4A-F8F78FF3A633} - System32\Tasks\CCleanerSkipUAC = & gt; C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd - & gt; Piriform Software Ltd)
Task: {581EC3FF-95F9-4469-995F-F5A059EF5084} - System32\Tasks\Avast Software\Overseer = & gt; C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-05-03] (Avast Software s.r.o. - & gt; Avast Software)
Task: {9A8505C7-B9C3-4488-9503-A85D9DDBC6A9} - System32\Tasks\Driver Booster Update = & gt; D:\Program Files (x86)\IObit\Driver Booster\8.3.0\AutoUpdate.exe
Task: {C52AE8D7-7176-4509-8008-22F4C6E825B3} - System32\Tasks\GoogleUpdateTaskMachineUA1d6a55133b3323a = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc - & gt; Google Inc.)
Task: {F136DC94-C665-4BB8-8538-BB4099A20242} - System32\Tasks\GoogleUpdateTaskMachineCore1d6a551338dcf5e = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc - & gt; Google Inc.)
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2802135352-509470064-2293162948-1000Core.job = & gt; C:\Users\Tomek\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2802135352-509470064-2293162948-1000UA.job = & gt; C:\Users\Tomek\AppData\Local\Facebook\Update\FacebookUpdate.exe
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Winsock: Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation - & gt; Microsoft Corp.)
Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2011-03-28] (Microsoft Corporation - & gt; Microsoft Corp.)
Winsock: Catalog5-x64 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-28] (Microsoft Corporation - & gt; Microsoft Corp.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392 2011-03-28] (Microsoft Corporation - & gt; Microsoft Corp.)
Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A0EDEC7E-D2B4-4447-A677-1315A8F9F5E2}: [DhcpNameServer] 192.168.0.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia & lt; ==== UWAGA
FireFox:
========
FF DefaultProfile: gqjluc4o.default
FF ProfilePath: C:\Users\Tomek\AppData\Roaming\Mozilla\Firefox\Profiles\gqjluc4o.default [2021-08-29]
FF user.js: detected! = & gt; C:\Users\Tomek\AppData\Roaming\Mozilla\Firefox\Profiles\gqjluc4o.default\user.js [2021-08-07]
FF Homepage: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; hxxps://www.google.pl/
FF Notifications: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; hxxps://www.androidlista.pl; hxxps://fotka.com; hxxps://www.dobreprogramy.pl; hxxps://www.wp.pl; hxxps://www.facebook.com; hxxps://application-77my.com; hxxps://www.onlinevideoconverter.com
FF HomepageOverride: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; Enabled: _pbMembers_@www.holidayphotoedit.com
FF NewTabOverride: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; Enabled: _pbMembers_@www.holidayphotoedit.com
FF NewTabOverride: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; Enabled: uBlock0@raymondhill.net
FF NewTabOverride: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; Disabled: jid1-MnnxcxisBPnSXQ@jetpack
FF NewTabOverride: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; Enabled: _j5Members_@ext.ask.com
FF NewTabOverride: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; Enabled: wolnelektury-pl@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; Enabled: pwn-pl@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; Enabled: allegro-pl@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\gqjluc4o.default - & gt; Enabled: google@search.mozilla.org
FF Extension: (Privacy Badger) - C:\Users\Tomek\AppData\Roaming\Mozilla\Firefox\Profiles\gqjluc4o.default\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-08-29]
FF Extension: (AdBlocker for YouTube™) - C:\Users\Tomek\AppData\Roaming\Mozilla\Firefox\Profiles\gqjluc4o.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2021-06-03]
FF Extension: (uBlock Origin) - C:\Users\Tomek\AppData\Roaming\Mozilla\Firefox\Profiles\gqjluc4o.default\Extensions\uBlock0@raymondhill.net.xpi [2021-08-15]
FF Extension: (Stylish - Custom themes for any website) - C:\Users\Tomek\AppData\Roaming\Mozilla\Firefox\Profiles\gqjluc4o.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2018-10-22]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK = & gt; nie znaleziono
FF Plugin: @microsoft.com/GENUINE - & gt; disabled [Brak pliku]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - & gt; c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - & gt; disabled [Brak pliku]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - & gt; c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - & gt; C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - & gt; C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin HKU\S-1-5-21-2802135352-509470064-2293162948-1000: @Skype Limited.com/Facebook Video Calling Plugin - & gt; C:\Users\Tomek\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Software Sarl - & gt; Skype Limited)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default [2021-08-29]
CHR DownloadDir: D:\Donwloads
CHR HomePage: Default - & gt; hxxp://google.pl/
CHR StartupUrls: Default - & gt; " hxxp://www.google.pl/ "
CHR Extension: (uBlock Origin) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-08-29]
CHR Extension: (Adblock dla Youtube™) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2021-08-29]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-24]
CHR Extension: (ZoneAlarm Web Secure) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nofdpbenickbjghcdhapegiimmdinblo [2021-08-29]
CHR Extension: (Chrome Media Router) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-15]
CHR HKU\S-1-5-21-2802135352-509470064-2293162948-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [nofdpbenickbjghcdhapegiimmdinblo]
Brave:
=======
BRA Profile: C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-08-29]
BRA Notifications: Default - & gt; hxxps://get.bestpdfsearch.com; hxxps://www.facebook.com
BRA HomePage: Default - & gt; msn.com
BRA DefaultSearchURL: Default - & gt; hxxps://www.bing.com/search?FORM=__PARAM__DF & PC=__PARAM__ & q={searchTerms}
BRA DefaultSuggestURL: Default - & gt; hxxps://www.bing.com/osjson.aspx?FORM=__PARAM__DF & PC=__PARAM__ & query={searchTerms}
BRA Extension: (Google Translate) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-07-18]
BRA Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-12-21]
BRA Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2019-11-16]
BRA Extension: (Avast Online Security) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-02-20]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-08-01]
BRA Extension: (Brave User Model Installer) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\aijecnhpjljblhnogamehknbmljlbfgn [2021-05-02]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-08-01]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2020-04-05]
BRA Extension: (Brave Ads Resources) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\fojhemdeemkcacelmecilmibcjallejo [2021-08-01]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2021-08-01]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-07-18]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Tomek\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-08-01]
==================== Usługi (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8303184 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [630040 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [377624 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-06-03] (Avast Software s.r.o. - & gt; AVAST Software)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft - & gt; Alcohol Soft Development Team)
R2 CPEFR; C:\Program Files (x86)\CheckPoint\Endpoint Security\EFR\EFRService.exe [3274432 2021-04-10] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.)
R2 CpSbaCipolla; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. - & gt; )
R2 CpSbaUpdater; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33984 2021-04-19] (Check Point Software Technologies Ltd. - & gt; )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-11-30] (AVB Disc Soft, SIA - & gt; Disc Soft Ltd)
S2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [1809920 2010-08-04] (Realsil Microelectronics Inc.) [Brak podpisu cyfrowego]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Brak podpisu cyfrowego]
R2 luminati_net_updater_win_alcohol_soft; c:\Program Files (x86)\Alcohol Soft\Alcohol 120\lumsdk\net_updater64.exe [7978328 2021-08-29] (Luminati Networks Ltd - & gt; Bright Data Ltd.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [241016 2012-12-26] (McAfee, Inc. - & gt; McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [218320 2012-12-26] (McAfee, Inc. - & gt; McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182312 2012-12-26] (McAfee, Inc. - & gt; McAfee, Inc.)
R2 RemediationService; C:\Program Files (x86)\CheckPoint\Endpoint Security\Remediation\RemediationService.exe [18624 2021-03-29] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.)
S2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Brak podpisu cyfrowego]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13261608 2021-05-28] (TeamViewer Germany GmbH - & gt; TeamViewer Germany GmbH)
R2 TESvc; C:\Program Files (x86)\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe [137920 2021-04-09] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.)
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [4575688 2021-05-20] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows - & gt; Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096 2011-03-28] (Microsoft Corporation - & gt; Microsoft Corp.)
S2 ZA NET ICM Service; C:\Program Files (x86)\CheckPoint\ICM\ICM-Service-NET.exe [42208 2020-03-13] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.)
S2 ZAARUpdateService; C:\Program Files (x86)\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe [51936 2021-04-19] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.)
S3 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [129216 2021-05-20] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies, Ltd.)
===================== Sterowniki (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2011-03-01] (Microsoft Windows - & gt; Microsoft Corporation)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35712 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [221584 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [367632 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250384 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99344 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41344 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [184120 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [538464 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2021-05-03] (AVAST Software s.r.o. - & gt; AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [107840 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82904 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851704 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [553496 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215384 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2016-12-05] (AVAST Software a.s. - & gt; The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [328560 2021-08-29] (Avast Software s.r.o. - & gt; AVAST Software)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [69672 2012-12-26] (McAfee, Inc. - & gt; McAfee, Inc.)
R2 cpbak; C:\Windows\System32\DRIVERS\cpbak.sys [83248 2020-09-03] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies)
R1 CPEPMon; C:\Windows\System32\DRIVERS\CPEPMon.sys [153040 2021-04-06] (Microsoft Windows Hardware Compatibility Publisher - & gt; Check Point Software Technologies)
S3 cpuz145; C:\Windows\temp\cpuz145\cpuz145_x64.sys [49968 2021-08-29] (CPUID - & gt; CPUID)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [42256 2019-11-30] (AVB Disc Soft, SIA - & gt; Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [59360 2019-11-30] (AVB Disc Soft, SIA - & gt; Disc Soft Ltd)
R1 epnetflt; C:\Windows\system32\drivers\epnetflt.sys [135984 2020-12-06] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies)
R1 epregflt; C:\Windows\system32\drivers\epregflt.sys [133416 2020-12-02] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies)
R3 int0800; C:\Windows\System32\DRIVERS\flashud.sys [51712 2009-03-06] (Microsoft Windows Hardware Compatibility Publisher - & gt; Intel Corporation)
R2 ISWKL; C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [56184 2021-01-28] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [178840 2012-12-26] (McAfee, Inc. - & gt; McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [309400 2012-12-26] (McAfee, Inc. - & gt; McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [515528 2012-12-26] (McAfee, Inc. - & gt; McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [771096 2012-12-26] (McAfee, Inc. - & gt; McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [339776 2012-12-26] (McAfee, Inc. - & gt; McAfee, Inc.)
S3 nmwcdnsux64; C:\Windows\System32\drivers\nmwcdnsux64.sys [171008 2011-08-17] (Microsoft Windows Hardware Compatibility Publisher - & gt; Nokia)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [393880 2018-02-14] (Disc Soft Ltd - & gt; Duplex Secure Ltd.)
S3 TosRfSnd; C:\Windows\System32\drivers\tosrfsnd.sys [63488 2010-04-26] (TOSHIBA Corporation) [Brak podpisu cyfrowego]
R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [461240 2021-05-20] (Check Point Software Technologies Ltd. - & gt; Check Point Software Technologies Ltd.)
S3 x3521071; C:\Windows\SysWOW64\drivers\x3521071.sys [43472 2016-07-18] (Shenzhen Deruilin Technology Co.,Ltd. - & gt; Your Corporation) [Brak podpisu cyfrowego]
S3 x6521071; C:\Windows\System32\drivers\x6521071.sys [65232 2016-07-18] (Shenzhen Deruilin Technology Co.,Ltd. - & gt; Your Corporation) [Brak podpisu cyfrowego]
U3 auaba0pu; C:\Windows\System32\Drivers\auaba0pu.sys [0 0000-00-00] (Intel Corporation) & lt; ==== UWAGA (Plik w użyciu)
S3 catchme; \??\C:\1234aa\catchme.sys [X]
U3 iswSvc; Brak ImagePath
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc (utworzone) (filtrowane) =========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2021-08-29 17:26 - 2021-08-29 17:30 - 000000000 ____D C:\Users\Tomek\Desktop\frst
2021-08-29 17:24 - 2021-08-29 17:24 - 000000000 ___HD C:\$AV_ASW
2021-08-29 17:24 - 2021-08-29 17:24 - 000000000 ____D C:\Users\Tomek\Desktop\FRST-OlderVersion
2021-08-29 17:23 - 2021-08-29 17:32 - 000000000 ____D C:\FRST
2021-08-29 17:06 - 2021-08-29 17:06 - 000000000 ____D C:\Windows\LastGood
2021-08-29 17:06 - 2020-12-27 12:14 - 000053624 _____ (TOSHIBA Corporation) C:\Windows\system32\Drivers\tosrfec.sys
2021-08-29 16:14 - 2021-08-29 16:14 - 000000000 _____ C:\Windows\system32\Drivers\etc\lmhosts
2021-08-29 16:13 - 2021-08-29 16:13 - 000441240 _____ C:\Windows\system32\Drivers\vsconfig.xml
2021-08-29 16:13 - 2021-08-29 16:13 - 000000762 _____ C:\Users\Public\Desktop\ZoneAlarm Security.lnk
2021-08-29 16:13 - 2021-08-29 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Check Point
2021-08-29 16:12 - 2021-08-29 16:39 - 000000000 ____D C:\Program Files (x86)\CheckPoint
2021-08-29 16:11 - 2021-08-29 16:39 - 000000000 ____D C:\ProgramData\CheckPoint
2021-08-29 15:25 - 2021-08-29 15:25 - 000000000 ____D C:\Program Files (x86)\TOH Class Filter
2021-08-29 14:39 - 2021-08-29 14:39 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2021-08-29 14:38 - 2021-08-29 14:38 - 000000000 ____D C:\Windows\system32\DAX3
2021-08-29 14:38 - 2021-08-29 14:38 - 000000000 ____D C:\Windows\system32\DAX2
2021-08-29 14:38 - 2021-08-29 14:38 - 000000000 ____D C:\ProgramData\Audyssey Labs
2021-08-29 14:09 - 2021-08-29 14:09 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2021-08-29 14:08 - 2021-08-29 14:08 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2021-08-29 12:51 - 2021-08-29 12:51 - 000000000 ____D C:\ProgramData\TOSHIBA Tempro
2021-08-29 12:51 - 2021-08-29 12:51 - 000000000 ____D C:\ProgramData\IsolatedStorage
2021-08-29 12:18 - 2021-08-29 12:18 - 000000000 ____D C:\Windows\Tasks\ImCleanDisabled
2021-08-29 12:06 - 2021-08-29 12:06 - 000000000 ____D C:\Users\Tomek\AppData\LocalLow\uTorrent
2021-08-29 12:00 - 2021-08-29 11:59 - 000340248 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-08-29 12:00 - 2021-08-29 11:59 - 000215384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-08-29 11:55 - 2021-08-29 11:55 - 000000000 ____D C:\Users\Tomek\AppData\Local\mbam
2021-08-29 11:53 - 2021-08-29 11:53 - 000002808 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Tomek
2021-08-29 11:48 - 2021-08-29 16:48 - 000007615 _____ C:\Users\Tomek\AppData\Local\Resmon.ResmonCfg
2021-08-15 13:01 - 2021-08-15 13:01 - 000000000 ____D C:\Windows\CheckSur
2021-08-07 11:37 - 2021-08-07 11:37 - 103268352 _____ C:\Windows\system32\config\software.iobit
2021-08-07 11:37 - 2021-08-07 11:37 - 000860160 _____ C:\Windows\system32\config\default.iobit
2021-08-07 11:37 - 2021-08-07 11:37 - 000172032 _____ C:\Windows\system32\config\sam.iobit
2021-08-07 11:37 - 2021-08-07 11:37 - 000028672 _____ C:\Windows\system32\config\security.iobit
2021-08-07 11:34 - 2021-08-29 14:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2021-08-01 21:36 - 2021-08-01 21:35 - 021846223 _____ C:\Users\Tomek\Desktop\videoplayback (4).mp4
2021-08-01 21:35 - 2021-08-01 21:35 - 021846223 _____ C:\Users\Tomek\Downloads\videoplayback (4).mp4
2021-08-01 21:32 - 2021-08-01 21:32 - 029215653 _____ C:\Users\Tomek\Desktop\videoplayback (3).mp4
2021-08-01 21:31 - 2021-08-01 21:32 - 029215653 _____ C:\Users\Tomek\Downloads\videoplayback (3).mp4
2021-08-01 21:17 - 2021-08-01 21:14 - 029371533 _____ C:\Users\Tomek\Desktop\videoplayback (2).mp4
2021-08-01 21:13 - 2021-08-01 21:14 - 029371533 _____ C:\Users\Tomek\Downloads\videoplayback (2).mp4
==================== Jeden miesiąc (zmodyfikowane) ==================
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2021-08-29 23:11 - 2014-04-21 20:11 - 000000000 ____D C:\Users\Gość
2021-08-29 23:10 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\security
2021-08-29 23:10 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2021-08-29 17:18 - 2009-07-14 06:45 - 000025120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-08-29 17:18 - 2009-07-14 06:45 - 000025120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-08-29 17:08 - 2020-12-27 12:27 - 000000000 ____D C:\Users\Tomek\AppData\Local\CrashDumps
2021-08-29 17:08 - 2020-12-26 20:12 - 000000000 ____D C:\Program Files\CCleaner
2021-08-29 17:08 - 2011-08-26 12:34 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-29 17:05 - 2020-12-26 17:07 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-08-29 17:05 - 2015-07-23 18:52 - 000000000 ____D C:\ProgramData\AVAST Software
2021-08-29 17:04 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-08-29 16:42 - 2021-07-19 21:51 - 000000000 ____D C:\Windows\system32\MRT
2021-08-29 16:35 - 2018-03-24 19:45 - 000000000 ____D C:\Users\Tomek\AppData\Local\AVAST Software
2021-08-29 16:28 - 2017-02-06 18:33 - 000000000 ____D C:\Windows\pss
2021-08-29 16:27 - 2016-07-24 21:01 - 000000000 ____D C:\ProgramData\Package Cache
2021-08-29 16:23 - 2021-07-19 21:50 - 133215968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-08-29 16:13 - 2011-08-26 11:59 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TOSHIBA
2021-08-29 16:13 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2021-08-29 14:38 - 2012-02-15 11:57 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2021-08-29 14:16 - 2016-06-24 20:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-08-29 14:10 - 2011-02-14 11:01 - 000692882 _____ C:\Windows\system32\perfh015.dat
2021-08-29 14:10 - 2011-02-14 11:01 - 000143754 _____ C:\Windows\system32\perfc015.dat
2021-08-29 14:10 - 2009-07-14 07:13 - 001651246 _____ C:\Windows\system32\PerfStringBackup.INI
2021-08-29 14:04 - 2019-11-16 20:56 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2021-08-29 14:00 - 2016-11-20 16:26 - 000000000 ____D C:\Users\Tomek\AppData\LocalLow\Mozilla
2021-08-29 13:52 - 2019-12-16 19:28 - 000002237 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-08-29 13:52 - 2019-12-16 19:28 - 000002196 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-08-29 13:31 - 2013-02-26 14:28 - 000000000 ____D C:\Users\Tomek
2021-08-29 13:04 - 2021-04-20 18:56 - 000000000 ____D C:\Program Files (x86)\IObit
2021-08-29 12:18 - 2020-12-27 12:05 - 000000000 ____D C:\Users\Tomek\AppData\LocalLow\IObit
2021-08-29 12:18 - 2020-12-27 12:04 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\IObit
2021-08-29 12:18 - 2020-12-27 12:04 - 000000000 ____D C:\ProgramData\IObit
2021-08-29 12:17 - 2021-04-04 20:50 - 000000000 ____D C:\ProgramData\ProductData
2021-08-29 12:10 - 2016-08-03 18:33 - 000000000 ____D C:\ProgramData\Napisy24
2021-08-29 12:07 - 2019-10-31 21:15 - 000000000 ____D C:\Users\Tomek\AppData\Local\BitTorrentHelper
2021-08-29 12:06 - 2021-05-03 11:07 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-08-29 11:59 - 2021-05-03 11:07 - 000851704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000553496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000538464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000367632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000328560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000250384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000221584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000184120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000107840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000099344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000082904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000041344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-08-29 11:59 - 2021-05-03 11:07 - 000035712 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-08-29 11:54 - 2019-11-30 22:37 - 000000000 ____D C:\Program Files (x86)\bookingDesktopApp
2021-08-29 11:53 - 2021-06-03 16:23 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-08-29 11:43 - 2020-10-30 19:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-08-15 10:16 - 2021-05-02 18:55 - 000000000 ___SD C:\Users\Tomek\AppData\LocalLow\Temp
2021-08-07 11:45 - 2015-02-21 20:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
2021-08-07 11:45 - 2013-06-17 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hyperballoid Deluxe
2021-08-07 11:33 - 2020-10-18 15:18 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d6a55133b3323a
2021-08-07 11:33 - 2020-10-18 15:18 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d6a551338dcf5e
2021-08-01 21:20 - 2021-04-04 20:51 - 000003086 _____ C:\Windows\system32\Tasks\Driver Booster Update
2021-08-01 21:20 - 2021-04-04 20:51 - 000002842 _____ C:\Windows\system32\Tasks\Driver Booster SkipUAC (Tomek)
2021-08-01 21:20 - 2020-12-26 20:12 - 000002808 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-08-01 21:20 - 2015-12-03 19:32 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
==================== Pliki w katalogu głównym wybranych folderów ========
2020-10-04 16:30 - 2020-10-04 16:50 - 000000012 _____ () C:\Users\Tomek\AppData\Roaming\905004065398806f4391abab9db02ee3
2019-12-15 20:04 - 2019-12-15 20:05 - 000000192 _____ () C:\Users\Tomek\AppData\Roaming\default.rss
2018-10-18 19:33 - 2019-02-15 22:06 - 000000155 _____ () C:\Users\Tomek\AppData\Roaming\WB.CFG
2015-07-26 17:43 - 2016-06-26 17:37 - 000003584 _____ () C:\Users\Tomek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-09-27 15:04 - 2020-09-27 15:04 - 000002419 _____ () C:\Users\Tomek\AppData\Local\recently-used.xbel
2021-08-29 11:48 - 2021-08-29 16:48 - 000007615 _____ () C:\Users\Tomek\AppData\Local\Resmon.ResmonCfg
==================== FLock ==============================
2014-07-17 20:54 C:\ProgramData\.bnmtfilter
==================== SigCheck ============================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
LastRegBack: 2020-08-26 14:18
==================== Koniec FRST.txt ========================