Wrzucaj teksty, notatki, kody i linki

Kopiuj, wklej i podziel się bez ograniczeń

Treść schowka:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-05-2020 01
Ran by Rafal (administrator) on RAFAL-PC (Micro-Star International Co., Ltd. CR70 2M/CX70 2OC/CX70 2OD) (16-05-2020 21:36:32)
Running from C:\Users\Rafal\Downloads
Loaded Profiles: Rafal & UpdatusUser
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Angielski (Stany Zjednoczone)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
() [File not signed] C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(CyberLink -> ) C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\DatacardService\HWDeviceService64.exe
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\MobileBrServ\mbbService.exe
(Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
(Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\Realtek\Realtek Bluetooth\RtkBleServ.exe
(Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(Valve -> Valve Corporation) E:\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13538376 2013-05-21] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [253440 2013-04-23] (Realtek Semiconductor Corporation) [File not signed]
HKLM\...\Run: [IAStorIcon] => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2875728 2013-03-04] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [277664 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [62620472 2020-03-18] (Discord Inc. -> Discord Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\Run: [DAEMON Tools Lite] => E:\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\Run: [Steam] => E:\Steam\steam.exe [3372832 2020-05-15] (Valve -> Valve Corporation)
HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\Run: [Discord] => C:\Users\Rafal\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\MountPoints2: {1dfcf80b-7e2c-11ea-a3a5-54271e251c25} - H:\Lenovo_Suite.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-12-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.138\Installer\chrmstp.exe [2020-05-06] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4053.113\Installer\chrmstp.exe [2020-05-13] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [170688 2016-10-22] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [148016 2016-10-22] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Windows Updater.lnk [2014-12-20]
ShortcutTarget: Windows Updater.lnk -> C:\Program Files (x86)\Windows Updater\Win_Updater.exe (Microsoft Corporation) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0510C028-F05B-4820-950E-8300434037B1} - System32\Tasks\{FF071DC6-D034-4177-ACA1-113CC46BA027} => C:\Windows\system32\pcalua.exe -a D:\OFFICE\SETUP.EXE -d D:\OFFICE
Task: {110B4CD9-2B54-4566-8BE6-6EA04426F994} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3894664 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
Task: {20BAC60D-2E14-491C-B104-EC1F9E7E6E85} - System32\Tasks\e-pity2019a_kwiecien => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2248984 2020-02-29] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.)
Task: {21D09DBC-27D7-4B5D-BE3B-7EB8E6806504} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
Task: {28C0B7A0-8742-4A0E-B819-5A59710F2DC2} - System32\Tasks\{E8A2A072-A991-47FA-9E86-46647E0ADAAB} => C:\Windows\system32\pcalua.exe -a C:\Users\Rafal\Downloads\setup.exe -d C:\Users\Rafal\Downloads
Task: {42447A7A-9D5E-4795-B800-BB95E80E302C} - System32\Tasks\{FE5DC747-7FC3-4FB8-B95F-A60BF79D35BF} => C:\Program Files (x86)\Origin\Origin.exe [3137816 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
Task: {5221994D-064A-45A2-9773-7DED4E477F1E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {52A098EB-D6B8-473C-B976-5EE967E8CA57} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {612D5783-26ED-4E73-996D-281A772BEED8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {7735312B-A0C6-4A39-89C9-70CCC48F6DAD} - System32\Tasks\e-pity2019_styczen => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2248984 2020-02-29] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.)
Task: {81BC9161-5AA9-4421-A12F-67656BE64929} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
Task: {8B50D191-4354-4AE6-BF9D-398A36AED083} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-26] (AVAST Software s.r.o. -> AVAST Software)
Task: {B89AD92A-5E2C-463C-BD61-D48C540D81BF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {CC13CCCC-7F11-4FEB-B70B-7D0756F47D5D} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-26] (AVAST Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.55.1
Tcpip\..\Interfaces\{0BB45136-EB35-4031-AC8F-38BC4BEEC8AA}: [NameServer] 193.41.112.14 193.41.112.18
Tcpip\..\Interfaces\{0BC8CA51-D28F-4757-A5DC-3220937AB807}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{0D6C964A-665F-4E01-ADF9-6B5BBCEA6784}: [DhcpNameServer] 192.168.55.1
Tcpip\..\Interfaces\{2AE1FEB4-C346-4D53-BD75-70B3D8C16E6F}: [NameServer] 193.41.112.14 193.41.112.18
Tcpip\..\Interfaces\{4DFCEAF1-D653-48F0-91FF-39FD8AD4D5E5}: [NameServer] 193.41.112.14 193.41.112.18
Tcpip\..\Interfaces\{62DD25DE-078E-4E77-B168-B0018272E603}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp120150423
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp120150423
HKU\S-1-5-21-1193567628-3741132159-961158197-1000\Software\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp120150423
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-17] (Oracle America, Inc. -> Oracle Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-04-21] [UpdateUrl:hxxps://www.siteadvisor.com/waffinstall/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (Electronic Arts -> EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (Electronic Arts -> EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-02-15] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-02-15] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1193567628-3741132159-961158197-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-09-12] (Ubisoft Entertainment Sweden AB -> )

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default [2020-05-16]
CHR Notifications: Default -> hxxp://csgobestpot.com; hxxp://poczta.onet.pl; hxxps://csgo500.com; hxxps://csgobestpot.com; hxxps://dogry.pl; hxxps://forum.dobreprogramy.pl; hxxps://key-drop.pl; hxxps://uuoc.sinnotbilela.info; hxxps://www.facebook.com
CHR Extension: (Prezentacje) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (Dokumenty) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Dysk Google) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google Search) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Arkusze) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (LoungeDestroyer) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2018-09-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-21]
CHR Extension: (Hola Free VPN, unblock any site!) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2020-05-14]
CHR Extension: (Avast Online Security) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-02-29]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-09]
CHR Extension: (e-pity - dodatek) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2020-02-29]
CHR Extension: (Gmail) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-16]
CHR Profile: C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-04-16]
CHR Extension: (Prezentacje) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-16]
CHR Extension: (Dokumenty) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-16]
CHR Extension: (Dysk Google) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-04-16]
CHR Extension: (YouTube) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-16]
CHR Extension: (Adobe Acrobat) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-04-16]
CHR Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-04-16]
CHR Extension: (Arkusze) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-16]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-04-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-16]
CHR Extension: (Avast Online Security) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-04-16]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-16]
CHR Extension: (e-pity - dodatek) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2020-04-16]
CHR Extension: (Gmail) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-04-16]
CHR Extension: (Chrome Media Router) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-16]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6046624 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-26] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [413472 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-26] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4053.113\elevation_service.exe [954600 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [35328 2013-04-02] (Realtek Semiconductor Corporation) [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2017-12-06] (BattlEye Innovations e.K. -> )
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [47104 2013-04-25] () [File not signed]
S2 Hkhlp; C:\Program Files (x86)\Common Files\Apps\Hkhlp.dll [280576 2016-09-27] () [File not signed]
R2 Huawei E3272; C:\ProgramData\MobileBrServ\mbbservice.exe [240720 2013-12-03] (Huawei Technologies Co., Ltd. -> )
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2013-10-28] (Huawei Technologies Co., Ltd. -> )
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel® Trusted Connect Service -> Intel(R) Corporation)
S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [678480 2013-12-19] (Huawei Technologies Co., Ltd. -> )
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-02-15] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [916712 2020-04-21] (McAfee, LLC -> McAfee, LLC)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [52152 2017-06-06] (Softland SRL -> Microsoft)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2466608 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3344176 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-01-09] (Even Balance, Inc. -> )
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe [272024 2007-05-14] (CyberLink -> )
R2 RtkBleServ; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\RtkBleServ.exe [42496 2013-04-25] (Realtek Semiconductor Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37864 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205576 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [271120 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206608 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [64272 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [279360 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42976 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175400 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110560 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84056 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848672 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [458584 2020-03-14] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235184 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316256 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-07-24] (Disc Soft Ltd -> Disc Soft Ltd)
S3 ew_hwusbdev; C:\Windows\System32\DRIVERS\ew_hwusbdev.sys [109568 2013-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_usbenumfilter; C:\Windows\System32\DRIVERS\ew_usbenumfilter.sys [14976 2013-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 huawei_enumerator; C:\Windows\System32\DRIVERS\ew_jubusenum.sys [91648 2013-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\Windows\System32\DRIVERS\ew_cdcacm.sys [121728 2013-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_wwanecm; C:\Windows\System32\DRIVERS\ew_wwanecm.sys [376448 2013-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-03-22] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [535624 2013-03-28] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R3 RTWlanE; C:\Windows\System32\DRIVERS\rtwlane.sys [1514568 2013-05-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation )

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-16 21:36 - 2020-05-16 21:37 - 000029781 _____ C:\Users\Rafal\Downloads\FRST.txt
2020-05-16 21:35 - 2020-05-16 21:35 - 002286080 _____ (Farbar) C:\Users\Rafal\Downloads\FRST64.exe
2020-05-16 21:14 - 2020-05-16 21:14 - 000000000 ___HD C:\$AV_ASW
2020-05-16 09:25 - 2020-05-16 09:25 - 000122427 _____ C:\Users\Rafal\Downloads\normy.pptx
2020-05-16 09:22 - 2020-05-16 06:04 - 003352980 _____ C:\Users\Rafal\Desktop\Ćwicz_2_Cerambycidae_klucz do oznaczania.pdf
2020-05-16 08:04 - 2020-05-16 09:52 - 019494682 _____ C:\Users\Rafal\Downloads\General.zip
2020-05-15 15:30 - 2020-05-15 15:39 - 483335056 _____ (NVIDIA Corporation) C:\Users\Rafal\Downloads\445.87-desktop-win8-win7-64bit-international-whql.exe
2020-05-15 13:16 - 2020-05-16 21:37 - 000000000 ____D C:\FRST
2020-05-15 12:32 - 2020-05-15 12:42 - 425640724 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e07.exe
2020-05-15 12:32 - 2020-05-15 12:41 - 431038276 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e08.exe
2020-05-15 12:32 - 2020-05-15 12:41 - 427011476 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e05.exe
2020-05-15 12:32 - 2020-05-15 12:41 - 426365796 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e02.exe
2020-05-15 12:32 - 2020-05-15 12:41 - 423835044 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e06.exe
2020-05-15 12:32 - 2020-05-15 12:41 - 423179028 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e04.exe
2020-05-15 12:32 - 2020-05-15 12:40 - 426831332 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e03.exe
2020-05-13 14:15 - 2020-05-13 14:19 - 000000000 ____D C:\Users\Rafal\Desktop\cfg cs go 2020
2020-05-12 20:27 - 2020-05-12 20:27 - 000358391 _____ C:\Users\Rafal\Downloads\Krzysztofik_Hubert-.pdf
2020-05-09 18:42 - 2020-05-09 18:42 - 000492188 _____ C:\Users\Rafal\Downloads\Ćwiczenia ORSiZGRiZ_SN_Jan Bodziarczyk.pdf
2020-04-30 16:40 - 2020-04-30 16:40 - 001123731 _____ C:\Users\Rafal\Downloads\wykład 3 NM.pdf
2020-04-28 16:54 - 2020-04-28 16:54 - 003308394 _____ C:\Users\Rafal\Downloads\wykład 2 NM.pdf
2020-04-25 12:05 - 2020-04-25 12:05 - 000376927 _____ C:\Users\Rafal\Downloads\wykład 1 NM (2).pdf
2020-04-25 08:39 - 2020-04-25 08:39 - 000376927 _____ C:\Users\Rafal\Downloads\wykład 1 NM (1).pdf
2020-04-21 18:01 - 2020-04-21 18:01 - 000176353 _____ C:\Users\Rafal\Downloads\Sprawozdanie-Hubert Krzysztofik-Gr B2-skonwertowany.pdf
2020-04-21 16:47 - 2020-04-21 17:14 - 000028048 ____H C:\Users\Rafal\Desktop\~WRL2826.tmp
2020-04-20 12:45 - 2020-04-20 12:45 - 016569356 _____ C:\Users\Rafal\Downloads\Ochrona rzadkich siedlisk 2020 w2.pdf
2020-04-20 12:40 - 2020-04-20 12:40 - 015921368 _____ C:\Users\Rafal\Downloads\Ochrona rzadkich siedlisk 2020 w1 (1).pdf
2020-04-20 12:37 - 2020-04-20 12:37 - 000376927 _____ C:\Users\Rafal\Downloads\wykład 1 NM.pdf
2020-04-18 09:16 - 2020-04-18 09:16 - 001498930 _____ C:\Users\Rafal\Downloads\Ćwiczenie_zielarka_Prezentacja.pptx

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-16 21:32 - 2020-03-18 18:34 - 000000000 ____D C:\Users\Rafal\AppData\Roaming\discord
2020-05-16 21:30 - 2014-07-12 14:33 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-16 21:29 - 2014-07-12 14:35 - 000000000 ____D C:\ProgramData\Realtek
2020-05-16 21:29 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-16 21:18 - 2009-07-14 06:45 - 000017152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-05-16 21:18 - 2009-07-14 06:45 - 000017152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-05-15 13:16 - 2016-12-23 13:30 - 000000000 ____D C:\Users\Rafal\AppData\Roaming\uTorrent
2020-05-15 13:13 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2020-05-15 12:37 - 2016-10-11 11:10 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2020-05-15 12:28 - 2020-03-18 18:34 - 000000000 ____D C:\Program Files (x86)\bookingDesktopApp
2020-05-14 22:29 - 2020-02-29 13:24 - 000003972 _____ C:\Windows\system32\Tasks\e-pity2019a_kwiecien
2020-05-14 22:29 - 2020-02-29 13:24 - 000003972 _____ C:\Windows\system32\Tasks\e-pity2019_styczen
2020-05-14 22:29 - 2017-09-23 15:43 - 000002946 _____ C:\Windows\system32\Tasks\{FE5DC747-7FC3-4FB8-B95F-A60BF79D35BF}
2020-05-14 22:29 - 2015-12-04 20:18 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-05-14 22:29 - 2015-06-25 19:52 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-05-14 22:29 - 2014-12-13 17:55 - 000003058 _____ C:\Windows\system32\Tasks\{FF071DC6-D034-4177-ACA1-113CC46BA027}
2020-05-14 22:29 - 2014-09-22 22:25 - 000003118 _____ C:\Windows\system32\Tasks\{E8A2A072-A991-47FA-9E86-46647E0ADAAB}
2020-05-14 22:29 - 2014-07-16 00:57 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-05-14 22:29 - 2014-07-16 00:57 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-05-13 13:57 - 2019-04-11 22:13 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-05-13 13:57 - 2019-04-11 22:13 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-05-13 13:57 - 2018-03-26 23:11 - 000002429 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-05-13 13:57 - 2018-03-26 23:11 - 000002386 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-05-13 13:57 - 2018-03-26 23:11 - 000002386 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-05-12 20:21 - 2018-09-24 13:07 - 000002059 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-05-12 19:59 - 2016-11-04 18:13 - 000000000 ____D C:\Users\Rafal\AppData\Local\CrashDumps
2020-05-06 18:28 - 2020-04-10 14:21 - 000000204 _____ C:\Users\Rafal\Desktop\ruletki daily.txt
2020-05-06 13:55 - 2014-07-20 12:29 - 000002224 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-06 13:55 - 2014-07-20 12:29 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-06 13:55 - 2014-07-20 12:29 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-04-26 13:34 - 2017-08-17 12:28 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-04-17 16:51 - 2014-07-12 15:19 - 000741694 _____ C:\Windows\system32\perfh015.dat
2020-04-17 16:51 - 2014-07-12 15:19 - 000156734 _____ C:\Windows\system32\perfc015.dat
2020-04-17 16:51 - 2009-07-14 07:13 - 001673940 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-17 16:51 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf

==================== Files in the root of some directories ========

2014-07-12 14:36 - 2020-05-16 21:32 - 000036500 _____ () C:\Users\Rafal\AppData\Local\BTServer.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-05-07 19:49
==================== End of FRST.txt ========================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-05-2020 01
Ran by Rafal (administrator) on RAFAL-PC (Micro-Star International Co., Ltd. CR70 2M/CX70 2OC/CX70 2OD) (16-05-2020 21:36:32)
Running from C:\Users\Rafal\Downloads
Loaded Profiles: Rafal & UpdatusUser
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Angielski (Stany Zjednoczone)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
() [File not signed] C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(CyberLink -> ) C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\DatacardService\HWDeviceService64.exe
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\MobileBrServ\mbbService.exe
(Huawei Technologies Co., Ltd. -> Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
(Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Realtek Semiconductor Corporation) [File not signed] C:\Program Files (x86)\Realtek\Realtek Bluetooth\RtkBleServ.exe
(Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe
(Valve -> Valve Corporation) E:\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13538376 2013-05-21] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [253440 2013-04-23] (Realtek Semiconductor Corporation) [File not signed]
HKLM\...\Run: [IAStorIcon] => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2875728 2013-03-04] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [277664 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [62620472 2020-03-18] (Discord Inc. -> Discord Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\Run: [DAEMON Tools Lite] => E:\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\Run: [Steam] => E:\Steam\steam.exe [3372832 2020-05-15] (Valve -> Valve Corporation)
HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\Run: [Discord] => C:\Users\Rafal\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1193567628-3741132159-961158197-1000\...\MountPoints2: {1dfcf80b-7e2c-11ea-a3a5-54271e251c25} - H:\Lenovo_Suite.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-12-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.138\Installer\chrmstp.exe [2020-05-06] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4053.113\Installer\chrmstp.exe [2020-05-13] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [170688 2016-10-22] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [148016 2016-10-22] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Windows Updater.lnk [2014-12-20]
ShortcutTarget: Windows Updater.lnk -> C:\Program Files (x86)\Windows Updater\Win_Updater.exe (Microsoft Corporation) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0510C028-F05B-4820-950E-8300434037B1} - System32\Tasks\{FF071DC6-D034-4177-ACA1-113CC46BA027} => C:\Windows\system32\pcalua.exe -a D:\OFFICE\SETUP.EXE -d D:\OFFICE
Task: {110B4CD9-2B54-4566-8BE6-6EA04426F994} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3894664 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
Task: {20BAC60D-2E14-491C-B104-EC1F9E7E6E85} - System32\Tasks\e-pity2019a_kwiecien => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2248984 2020-02-29] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.)
Task: {21D09DBC-27D7-4B5D-BE3B-7EB8E6806504} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
Task: {28C0B7A0-8742-4A0E-B819-5A59710F2DC2} - System32\Tasks\{E8A2A072-A991-47FA-9E86-46647E0ADAAB} => C:\Windows\system32\pcalua.exe -a C:\Users\Rafal\Downloads\setup.exe -d C:\Users\Rafal\Downloads
Task: {42447A7A-9D5E-4795-B800-BB95E80E302C} - System32\Tasks\{FE5DC747-7FC3-4FB8-B95F-A60BF79D35BF} => C:\Program Files (x86)\Origin\Origin.exe [3137816 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
Task: {5221994D-064A-45A2-9773-7DED4E477F1E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {52A098EB-D6B8-473C-B976-5EE967E8CA57} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {612D5783-26ED-4E73-996D-281A772BEED8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {7735312B-A0C6-4A39-89C9-70CCC48F6DAD} - System32\Tasks\e-pity2019_styczen => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [2248984 2020-02-29] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.)
Task: {81BC9161-5AA9-4421-A12F-67656BE64929} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1853360 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
Task: {8B50D191-4354-4AE6-BF9D-398A36AED083} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-26] (AVAST Software s.r.o. -> AVAST Software)
Task: {B89AD92A-5E2C-463C-BD61-D48C540D81BF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {CC13CCCC-7F11-4FEB-B70B-7D0756F47D5D} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-26] (AVAST Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.55.1
Tcpip\..\Interfaces\{0BB45136-EB35-4031-AC8F-38BC4BEEC8AA}: [NameServer] 193.41.112.14 193.41.112.18
Tcpip\..\Interfaces\{0BC8CA51-D28F-4757-A5DC-3220937AB807}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{0D6C964A-665F-4E01-ADF9-6B5BBCEA6784}: [DhcpNameServer] 192.168.55.1
Tcpip\..\Interfaces\{2AE1FEB4-C346-4D53-BD75-70B3D8C16E6F}: [NameServer] 193.41.112.14 193.41.112.18
Tcpip\..\Interfaces\{4DFCEAF1-D653-48F0-91FF-39FD8AD4D5E5}: [NameServer] 193.41.112.14 193.41.112.18
Tcpip\..\Interfaces\{62DD25DE-078E-4E77-B168-B0018272E603}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp120150423
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp120150423
HKU\S-1-5-21-1193567628-3741132159-961158197-1000\Software\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp120150423
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-17] (Oracle America, Inc. -> Oracle Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-04-21] [UpdateUrl:hxxps://www.siteadvisor.com/waffinstall/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (Electronic Arts -> EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (Electronic Arts -> EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-02-15] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-02-15] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1193567628-3741132159-961158197-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-09-12] (Ubisoft Entertainment Sweden AB -> )

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default [2020-05-16]
CHR Notifications: Default -> hxxp://csgobestpot.com; hxxp://poczta.onet.pl; hxxps://csgo500.com; hxxps://csgobestpot.com; hxxps://dogry.pl; hxxps://forum.dobreprogramy.pl; hxxps://key-drop.pl; hxxps://uuoc.sinnotbilela.info; hxxps://www.facebook.com
CHR Extension: (Prezentacje) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (Dokumenty) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Dysk Google) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google Search) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Arkusze) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (LoungeDestroyer) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2018-09-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-21]
CHR Extension: (Hola Free VPN, unblock any site!) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2020-05-14]
CHR Extension: (Avast Online Security) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-02-29]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-09]
CHR Extension: (e-pity - dodatek) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2020-02-29]
CHR Extension: (Gmail) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-16]
CHR Profile: C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-04-16]
CHR Extension: (Prezentacje) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-16]
CHR Extension: (Dokumenty) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-16]
CHR Extension: (Dysk Google) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-04-16]
CHR Extension: (YouTube) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-16]
CHR Extension: (Adobe Acrobat) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-04-16]
CHR Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-04-16]
CHR Extension: (Arkusze) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-16]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-04-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-16]
CHR Extension: (Avast Online Security) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-04-16]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-16]
CHR Extension: (e-pity - dodatek) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2020-04-16]
CHR Extension: (Gmail) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-04-16]
CHR Extension: (Chrome Media Router) - C:\Users\Rafal\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-16]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6046624 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-26] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [413472 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-03-26] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\81.0.4053.113\elevation_service.exe [954600 2020-04-19] (Avast Software s.r.o. -> AVAST Software)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [35328 2013-04-02] (Realtek Semiconductor Corporation) [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2017-12-06] (BattlEye Innovations e.K. -> )
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [47104 2013-04-25] () [File not signed]
S2 Hkhlp; C:\Program Files (x86)\Common Files\Apps\Hkhlp.dll [280576 2016-09-27] () [File not signed]
R2 Huawei E3272; C:\ProgramData\MobileBrServ\mbbservice.exe [240720 2013-12-03] (Huawei Technologies Co., Ltd. -> )
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2013-10-28] (Huawei Technologies Co., Ltd. -> )
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel® Trusted Connect Service -> Intel(R) Corporation)
S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [678480 2013-12-19] (Huawei Technologies Co., Ltd. -> )
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-02-15] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [916712 2020-04-21] (McAfee, LLC -> McAfee, LLC)
R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [52152 2017-06-06] (Softland SRL -> Microsoft)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2466608 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3344176 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-01-09] (Even Balance, Inc. -> )
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe [272024 2007-05-14] (CyberLink -> )
R2 RtkBleServ; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\RtkBleServ.exe [42496 2013-04-25] (Realtek Semiconductor Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37864 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205576 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [271120 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [206608 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [64272 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [279360 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42976 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175400 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110560 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84056 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848672 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [458584 2020-03-14] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235184 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316256 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-07-24] (Disc Soft Ltd -> Disc Soft Ltd)
S3 ew_hwusbdev; C:\Windows\System32\DRIVERS\ew_hwusbdev.sys [109568 2013-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_usbenumfilter; C:\Windows\System32\DRIVERS\ew_usbenumfilter.sys [14976 2013-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 huawei_enumerator; C:\Windows\System32\DRIVERS\ew_jubusenum.sys [91648 2013-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\Windows\System32\DRIVERS\ew_cdcacm.sys [121728 2013-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_wwanecm; C:\Windows\System32\DRIVERS\ew_wwanecm.sys [376448 2013-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-03-22] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [535624 2013-03-28] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
R3 RTWlanE; C:\Windows\System32\DRIVERS\rtwlane.sys [1514568 2013-05-02] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation )

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-16 21:36 - 2020-05-16 21:37 - 000029781 _____ C:\Users\Rafal\Downloads\FRST.txt
2020-05-16 21:35 - 2020-05-16 21:35 - 002286080 _____ (Farbar) C:\Users\Rafal\Downloads\FRST64.exe
2020-05-16 21:14 - 2020-05-16 21:14 - 000000000 ___HD C:\$AV_ASW
2020-05-16 09:25 - 2020-05-16 09:25 - 000122427 _____ C:\Users\Rafal\Downloads\normy.pptx
2020-05-16 09:22 - 2020-05-16 06:04 - 003352980 _____ C:\Users\Rafal\Desktop\Ćwicz_2_Cerambycidae_klucz do oznaczania.pdf
2020-05-16 08:04 - 2020-05-16 09:52 - 019494682 _____ C:\Users\Rafal\Downloads\General.zip
2020-05-15 15:30 - 2020-05-15 15:39 - 483335056 _____ (NVIDIA Corporation) C:\Users\Rafal\Downloads\445.87-desktop-win8-win7-64bit-international-whql.exe
2020-05-15 13:16 - 2020-05-16 21:37 - 000000000 ____D C:\FRST
2020-05-15 12:32 - 2020-05-15 12:42 - 425640724 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e07.exe
2020-05-15 12:32 - 2020-05-15 12:41 - 431038276 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e08.exe
2020-05-15 12:32 - 2020-05-15 12:41 - 427011476 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e05.exe
2020-05-15 12:32 - 2020-05-15 12:41 - 426365796 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e02.exe
2020-05-15 12:32 - 2020-05-15 12:41 - 423835044 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e06.exe
2020-05-15 12:32 - 2020-05-15 12:41 - 423179028 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e04.exe
2020-05-15 12:32 - 2020-05-15 12:40 - 426831332 _____ C:\Users\Rafal\Desktop\Ex Na Plaży s02e03.exe
2020-05-13 14:15 - 2020-05-13 14:19 - 000000000 ____D C:\Users\Rafal\Desktop\cfg cs go 2020
2020-05-12 20:27 - 2020-05-12 20:27 - 000358391 _____ C:\Users\Rafal\Downloads\Krzysztofik_Hubert-.pdf
2020-05-09 18:42 - 2020-05-09 18:42 - 000492188 _____ C:\Users\Rafal\Downloads\Ćwiczenia ORSiZGRiZ_SN_Jan Bodziarczyk.pdf
2020-04-30 16:40 - 2020-04-30 16:40 - 001123731 _____ C:\Users\Rafal\Downloads\wykład 3 NM.pdf
2020-04-28 16:54 - 2020-04-28 16:54 - 003308394 _____ C:\Users\Rafal\Downloads\wykład 2 NM.pdf
2020-04-25 12:05 - 2020-04-25 12:05 - 000376927 _____ C:\Users\Rafal\Downloads\wykład 1 NM (2).pdf
2020-04-25 08:39 - 2020-04-25 08:39 - 000376927 _____ C:\Users\Rafal\Downloads\wykład 1 NM (1).pdf
2020-04-21 18:01 - 2020-04-21 18:01 - 000176353 _____ C:\Users\Rafal\Downloads\Sprawozdanie-Hubert Krzysztofik-Gr B2-skonwertowany.pdf
2020-04-21 16:47 - 2020-04-21 17:14 - 000028048 ____H C:\Users\Rafal\Desktop\~WRL2826.tmp
2020-04-20 12:45 - 2020-04-20 12:45 - 016569356 _____ C:\Users\Rafal\Downloads\Ochrona rzadkich siedlisk 2020 w2.pdf
2020-04-20 12:40 - 2020-04-20 12:40 - 015921368 _____ C:\Users\Rafal\Downloads\Ochrona rzadkich siedlisk 2020 w1 (1).pdf
2020-04-20 12:37 - 2020-04-20 12:37 - 000376927 _____ C:\Users\Rafal\Downloads\wykład 1 NM.pdf
2020-04-18 09:16 - 2020-04-18 09:16 - 001498930 _____ C:\Users\Rafal\Downloads\Ćwiczenie_zielarka_Prezentacja.pptx

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-16 21:32 - 2020-03-18 18:34 - 000000000 ____D C:\Users\Rafal\AppData\Roaming\discord
2020-05-16 21:30 - 2014-07-12 14:33 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-16 21:29 - 2014-07-12 14:35 - 000000000 ____D C:\ProgramData\Realtek
2020-05-16 21:29 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-16 21:18 - 2009-07-14 06:45 - 000017152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-05-16 21:18 - 2009-07-14 06:45 - 000017152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-05-15 13:16 - 2016-12-23 13:30 - 000000000 ____D C:\Users\Rafal\AppData\Roaming\uTorrent
2020-05-15 13:13 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2020-05-15 12:37 - 2016-10-11 11:10 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2020-05-15 12:28 - 2020-03-18 18:34 - 000000000 ____D C:\Program Files (x86)\bookingDesktopApp
2020-05-14 22:29 - 2020-02-29 13:24 - 000003972 _____ C:\Windows\system32\Tasks\e-pity2019a_kwiecien
2020-05-14 22:29 - 2020-02-29 13:24 - 000003972 _____ C:\Windows\system32\Tasks\e-pity2019_styczen
2020-05-14 22:29 - 2017-09-23 15:43 - 000002946 _____ C:\Windows\system32\Tasks\{FE5DC747-7FC3-4FB8-B95F-A60BF79D35BF}
2020-05-14 22:29 - 2015-12-04 20:18 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-05-14 22:29 - 2015-06-25 19:52 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-05-14 22:29 - 2014-12-13 17:55 - 000003058 _____ C:\Windows\system32\Tasks\{FF071DC6-D034-4177-ACA1-113CC46BA027}
2020-05-14 22:29 - 2014-09-22 22:25 - 000003118 _____ C:\Windows\system32\Tasks\{E8A2A072-A991-47FA-9E86-46647E0ADAAB}
2020-05-14 22:29 - 2014-07-16 00:57 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-05-14 22:29 - 2014-07-16 00:57 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-05-13 13:57 - 2019-04-11 22:13 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2020-05-13 13:57 - 2019-04-11 22:13 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2020-05-13 13:57 - 2018-03-26 23:11 - 000002429 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2020-05-13 13:57 - 2018-03-26 23:11 - 000002386 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2020-05-13 13:57 - 2018-03-26 23:11 - 000002386 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2020-05-12 20:21 - 2018-09-24 13:07 - 000002059 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-05-12 19:59 - 2016-11-04 18:13 - 000000000 ____D C:\Users\Rafal\AppData\Local\CrashDumps
2020-05-06 18:28 - 2020-04-10 14:21 - 000000204 _____ C:\Users\Rafal\Desktop\ruletki daily.txt
2020-05-06 13:55 - 2014-07-20 12:29 - 000002224 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-06 13:55 - 2014-07-20 12:29 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-05-06 13:55 - 2014-07-20 12:29 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-04-26 13:34 - 2017-08-17 12:28 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-04-17 16:51 - 2014-07-12 15:19 - 000741694 _____ C:\Windows\system32\perfh015.dat
2020-04-17 16:51 - 2014-07-12 15:19 - 000156734 _____ C:\Windows\system32\perfc015.dat
2020-04-17 16:51 - 2009-07-14 07:13 - 001673940 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-17 16:51 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf

==================== Files in the root of some directories ========

2014-07-12 14:36 - 2020-05-16 21:32 - 000036500 _____ () C:\Users\Rafal\AppData\Local\BTServer.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-05-07 19:49
==================== End of FRST.txt ========================


Strona korzysta z plików cookies w celu realizacji usług zgodnie z Polityką Plików Cookies. Możesz określić warunki przechowywania lub dostępu do plików cookies w Twojej przeglądarce.

close-button