postaram sie sprobowac w trybie awaryjnym i przesle tak szybko jak bdzie to mozliwe. Dodano po 10 : Okej wykonałem skan ale nie do konca wiem jak załaczyc tutaj te pliki ze skanu. Dodano po 5 : okej znalazłem opcje dodawania załacznika oto one wysyłam oby dwa ponieważ nie wiem ktora nas w tym momencie interesują
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 23.08.2018
Uruchomiony przez Adrian (administrator) ADRIAN-KOMPUTER (07-09-2018 17:22:58)
Uruchomiony z C:\Users\Adrian\Desktop\mama nie dotykaj XD
Załadowane profile: Adrian (Dostępne profile: Adrian)
Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska)
Internet Explorer Wersja 8 (Domyślna przeglądarka: FF)
Tryb startu: Safe Mode (with Networking)
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
==================== Rejestr (filtrowane) ===========================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [RTHDVCPL] = & gt; C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8483032 2017-07-11] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2017-07-11] (Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] = & gt; C:\Program Files\AVG\Antivirus\AvLaunch.exe [291056 2018-09-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia & lt; ==== UWAGA
HKU\S-1-5-21-892076407-1777857418-4059534773-1000\...\Run: [Steam] = & gt; C:\Program Files (x86)\Steam\steam.exe [3207968 2018-08-29] (Valve Corporation)
HKU\S-1-5-21-892076407-1777857418-4059534773-1000\...\Run: [Discord] = & gt; C:\Users\Adrian\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKU\S-1-5-21-892076407-1777857418-4059534773-1000\...\Run: [DAEMON Tools Lite Automount] = & gt; C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd)
HKU\S-1-5-21-892076407-1777857418-4059534773-1000\...\Run: [EvolveClient] = & gt; C:\Program Files\Echobit\Evolve\EvolveClient.exe [3334528 2018-09-03] (Echobit LLC)
HKU\S-1-5-21-892076407-1777857418-4059534773-1000\...\Run: [CCleaner Smart Cleaning] = & gt; C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-08-24] (Piriform Ltd)
HKU\S-1-5-21-892076407-1777857418-4059534773-1000\...\MountPoints2: {38342a2d-8bdf-11e7-a66d-08606ec7c9b1} - K:\HiSuiteDownLoader.exe
HKU\S-1-5-21-892076407-1777857418-4059534773-1000\...\MountPoints2: {4cce5a42-6653-11e7-8722-80ce0106180f} - J:\HiSuiteDownLoader.exe
HKU\S-1-5-21-892076407-1777857418-4059534773-1000\...\MountPoints2: {8acfabc1-a774-11e7-a00a-08606ec7c9b1} - L:\Setup\rsrc\Autorun.exe
GroupPolicy: Ograniczenia ? & lt; ==== UWAGA
GroupPolicy\User: Ograniczenia ? & lt; ==== UWAGA
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{258FC2AB-FC63-4220-9908-57520FF63008}: [DhcpNameServer] 192.168.1.20
Tcpip\..\Interfaces\{6DDA7D5F-B032-4BF0-890B-2A809C883CCD}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-892076407-1777857418-4059534773-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp
BHO-x32: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-09-06] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-09-06] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: iplcb74l.default-1536328963767
FF ProfilePath: C:\Users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\iplcb74l.default-1536328963767 [2018-09-07]
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll [2018-09-06] ()
FF Plugin-x32: @adobe.com/FlashPlayer - & gt; C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll [2018-09-06] ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - & gt; C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - & gt; C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-09-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-09-06] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision - & gt; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-02-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - & gt; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-02-23] (NVIDIA Corporation)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [bhjhnafpiilpffhglajcaepjbnbjemci] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dijfnbhlogmffhgpelodglnnkncadnbi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hcadgijmedbfgciegjomfpjcdchlhnif] - hxxps://clients2.google.com/service/update2/crx
==================== Usługi (filtrowane) ====================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [323512 2018-09-06] (AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [8043904 2018-09-06] (AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7211968 2018-08-01] ()
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd)
S2 DTSAudioService; C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe [210024 2017-07-11] (DTS)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [526888 2018-03-27] (EasyAntiCheat Ltd)
S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2018-09-03] (Echobit LLC)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [7770888 2017-05-10] (INCA Internet Co., Ltd.)
S2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764896 2018-05-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764896 2018-05-20] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2212672 2018-08-26] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3083080 2018-08-26] (Electronic Arts)
S2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2017-11-26] ()
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2017-11-26] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S2 NVDisplay.ContainerLocalSystem; " C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe " -s NVDisplay.ContainerLocalSystem -f " C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log " -l 3 -d " C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem " -r -p 30000
S2 NvTelemetryContainer; " C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe " -s NvTelemetryContainer -f " C:\ProgramData\NVIDIA\NvTelemetryContainer.log " -l 3 -d " C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins " -r
===================== Sterowniki (filtrowane) ======================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [192104 2018-09-06] (AVG Technologies CZ, s.r.o.)
S1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdrivera.sys [222288 2018-09-06] (AVG Technologies CZ, s.r.o.)
S0 avgbidsh; C:\Windows\System32\drivers\avgbidsha.sys [194224 2018-09-06] (AVG Technologies CZ, s.r.o.)
S0 avgblog; C:\Windows\System32\drivers\avgbloga.sys [339048 2018-09-06] (AVG Technologies CZ, s.r.o.)
S0 avgbuniv; C:\Windows\System32\drivers\avgbuniva.sys [51952 2018-09-06] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\System32\drivers\avgHwid.sys [39352 2018-09-06] (AVG Technologies CZ, s.r.o.)
S2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [155664 2018-09-06] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [104256 2018-09-06] (AVG Technologies CZ, s.r.o.)
S0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [78864 2018-09-06] (AVG Technologies CZ, s.r.o.)
S1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1020112 2018-09-06] (AVG Technologies CZ, s.r.o.)
S1 avgSP; C:\Windows\System32\drivers\avgSP.sys [459624 2018-09-06] (AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\Windows\System32\drivers\avgStm.sys [208216 2018-09-06] (AVG Technologies CZ, s.r.o.)
S0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [373944 2018-09-06] (AVG Technologies CZ, s.r.o.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-10-02] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-10-02] (Disc Soft Ltd)
R3 EvolveVirtualAdapter; C:\Windows\System32\DRIVERS\evolve.sys [21656 2018-09-02] (Echobit, LLC)
S3 hamachi; C:\Windows\System32\DRIVERS\Hamdrv.sys [45680 2018-05-30] (LogMeIn Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31200 2018-05-20] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [67432 2018-03-15] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [68112 2018-04-28] (NVIDIA Corporation)
U1 avgbdisk; Brak ImagePath
S3 lmimirr; system32\DRIVERS\lmimirr.sys [X]
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc - utworzone pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2018-09-07 17:22 - 2018-09-07 17:22 - 000000000 ____D C:\FRST
2018-09-07 17:21 - 2018-09-07 17:22 - 000071376 _____ C:\Windows\ntbtlog.txt
2018-09-07 17:08 - 2018-09-07 17:22 - 000000000 ____D C:\Users\Adrian\Desktop\mama nie dotykaj XD
2018-09-07 16:26 - 2018-09-07 16:26 - 000000000 ____D C:\_OTL
2018-09-07 15:36 - 2018-09-07 15:36 - 000007603 _____ C:\Users\Adrian\AppData\Local\Resmon.ResmonCfg
2018-09-06 18:03 - 2018-09-06 18:03 - 000001833 _____ C:\Users\Public\Desktop\AVG AntiVirus FREE.lnk
2018-09-06 18:03 - 2018-09-06 18:03 - 000000000 ____D C:\Users\Adrian\AppData\Roaming\AVG
2018-09-06 18:03 - 2018-09-06 18:03 - 000000000 ____D C:\Users\Adrian\AppData\Local\Avg
2018-09-06 18:03 - 2018-09-06 18:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2018-09-06 18:02 - 2018-09-07 00:46 - 000003904 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update
2018-09-06 18:02 - 2018-09-06 18:02 - 000000000 ____D C:\Windows\System32\Tasks\AVG
2018-09-06 18:01 - 2018-09-06 18:02 - 000459624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2018-09-06 18:01 - 2018-09-06 18:02 - 000208216 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2018-09-06 18:01 - 2018-09-06 18:02 - 000078864 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2018-09-06 18:01 - 2018-09-06 18:01 - 001020112 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2018-09-06 18:01 - 2018-09-06 18:01 - 000380656 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2018-09-06 18:01 - 2018-09-06 18:01 - 000373944 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2018-09-06 18:01 - 2018-09-06 18:01 - 000339048 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys
2018-09-06 18:01 - 2018-09-06 18:01 - 000222288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys
2018-09-06 18:01 - 2018-09-06 18:01 - 000194224 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys
2018-09-06 18:01 - 2018-09-06 18:01 - 000192104 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys
2018-09-06 18:01 - 2018-09-06 18:01 - 000155664 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2018-09-06 18:01 - 2018-09-06 18:01 - 000104256 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
2018-09-06 18:01 - 2018-09-06 18:01 - 000051952 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys
2018-09-06 18:01 - 2018-09-06 18:01 - 000039352 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys
2018-09-06 18:01 - 2018-09-06 18:01 - 000000000 ____D C:\Program Files\Common Files\AVG
2018-09-06 18:00 - 2018-09-06 18:37 - 000000000 ____D C:\ProgramData\AVG
2018-09-06 18:00 - 2018-09-06 18:00 - 007504768 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Adrian\Downloads\avg_antivirus_free_setup.exe
2018-09-06 18:00 - 2018-09-06 18:00 - 000000000 ____D C:\Program Files\AVG
2018-09-06 17:33 - 2018-09-07 00:46 - 000004578 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-09-06 17:33 - 2018-09-07 00:46 - 000004424 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-09-06 15:34 - 2018-09-07 00:46 - 000003176 _____ C:\Windows\System32\Tasks\{345899A1-8E49-4AF5-853C-0B47F47144D1}
2018-09-06 15:32 - 2018-09-06 15:32 - 000000003 _____ C:\Windows\SysWOW64\HRUPPROG.EXIT
2018-09-06 15:31 - 2018-09-06 15:32 - 000000003 _____ C:\Windows\SysWOW64\HRUPPROG.TXT
2018-09-06 15:25 - 2018-09-07 00:46 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-09-06 15:25 - 2018-09-07 00:46 - 000002806 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-09-06 15:25 - 2018-09-06 15:25 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-09-06 15:25 - 2018-09-06 15:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2018-09-06 15:25 - 2018-09-06 15:25 - 000000000 ____D C:\Program Files\CCleaner
2018-09-06 15:24 - 2018-09-06 15:24 - 016798624 _____ (Piriform Ltd) C:\Users\Adrian\Downloads\ccsetup546.exe
2018-09-05 20:36 - 2018-09-07 16:36 - 000000000 ____D C:\Windows\{EB47D3E9-14CE-4BE0-B16B-C061571F46C7}
2018-09-05 18:51 - 2018-09-05 18:51 - 000001016 _____ C:\Users\Public\Desktop\Dont Starve Together.lnk
2018-09-05 18:42 - 2018-09-07 00:46 - 000003742 _____ C:\Windows\System32\Tasks\{6984B1FD-73A0-71D6-F18D-7D832844D21F}
2018-09-05 18:39 - 2018-09-05 18:39 - 000000294 _____ C:\Users\Adrian\Downloads\dont-starve-together-v280490_PZR3A3.torrent
2018-09-05 18:36 - 2018-09-07 00:46 - 000003742 _____ C:\Windows\System32\Tasks\{08750C92-B40D-3DBA-02E1-FD72FEEBB27E}
2018-09-05 18:36 - 2018-09-07 00:46 - 000003646 _____ C:\Windows\System32\Tasks\{7D23C666-F89B-85E8-7820-DB12D9E700F0}
2018-09-05 18:36 - 2018-09-07 00:46 - 000003438 _____ C:\Windows\System32\Tasks\{FF5E041C-44F8-9F32-F602-D6FED3E833D6}
2018-09-05 18:36 - 2018-09-05 18:36 - 000000002 _____ C:\Users\Adrian\AppData\Local\imw.ini
2018-09-03 18:57 - 2018-09-03 18:57 - 000000000 ____D C:\Users\Adrian\AppData\Local\FLT
2018-09-03 18:56 - 2018-09-03 18:56 - 000000000 ____D C:\Users\Adrian\Desktop\DST OLD
2018-09-03 18:51 - 2018-09-03 18:51 - 000002019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolve.lnk
2018-09-03 18:51 - 2018-09-03 18:51 - 000002007 _____ C:\Users\Public\Desktop\Evolve.lnk
2018-09-03 18:49 - 2018-09-03 18:49 - 000038639 _____ C:\Users\Adrian\Downloads\[kickass.so]don.t.starve.together.v115992.viper666.torrent
2018-09-02 21:03 - 2018-09-02 21:03 - 000021656 _____ (Echobit, LLC) C:\Windows\system32\Drivers\evolve.sys
2018-09-02 21:00 - 2018-09-02 21:00 - 000000000 ____D C:\Program Files\Echobit
2018-09-02 20:59 - 2018-09-02 20:59 - 003258328 _____ (Echobit LLC) C:\Users\Adrian\Downloads\EvolveSetup.exe
2018-09-02 20:59 - 2018-09-02 20:59 - 000000000 ____D C:\Users\Adrian\AppData\Local\Echobit
2018-09-02 20:59 - 2018-09-02 20:59 - 000000000 ____D C:\ProgramData\Echobit
2018-09-02 20:26 - 2018-09-02 20:26 - 000000000 ____D C:\ProgramData\LogMeIn
2018-09-02 20:25 - 2018-09-02 20:26 - 009154560 _____ C:\Users\Adrian\Downloads\hamachi.msi
2018-09-02 20:23 - 2018-09-02 20:23 - 000001024 _____ C:\.rnd
2018-09-02 20:21 - 2018-09-02 20:22 - 030543872 _____ C:\Users\Adrian\Downloads\LogMeIn.msi
2018-09-02 19:57 - 2018-09-05 18:52 - 000000000 ____D C:\Users\Adrian\Documents\Klei
2018-09-02 19:57 - 2018-09-02 19:57 - 000000000 ____D C:\Users\Public\Documents\Steam
2018-09-02 19:35 - 2018-09-02 19:35 - 000000000 ____D C:\Users\Adrian\AppData\Local\LogMeIn
==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2018-09-07 17:20 - 2017-07-12 22:28 - 000000000 ____D C:\Program Files (x86)\Steam
2018-09-07 17:20 - 2017-07-11 18:30 - 000000000 ____D C:\ProgramData\NVIDIA
2018-09-07 17:20 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-09-07 17:11 - 2011-02-04 19:38 - 000739694 _____ C:\Windows\system32\perfh015.dat
2018-09-07 17:11 - 2011-02-04 19:38 - 000155268 _____ C:\Windows\system32\perfc015.dat
2018-09-07 17:11 - 2009-07-14 07:13 - 001668226 _____ C:\Windows\system32\PerfStringBackup.INI
2018-09-07 17:11 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-09-07 17:00 - 2017-08-23 13:26 - 000000000 ____D C:\Users\Adrian\AppData\LocalLow\Mozilla
2018-09-07 16:36 - 2009-07-14 06:45 - 000022944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-09-07 16:36 - 2009-07-14 06:45 - 000022944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-09-07 16:31 - 2017-07-11 19:11 - 000003758 _____ C:\Windows\System32\Tasks\AutoKMS
2018-09-07 16:07 - 2017-07-13 00:09 - 000000000 ____D C:\Users\Adrian\AppData\Roaming\discord
2018-09-07 00:46 - 2018-06-16 18:46 - 000004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-07 00:46 - 2018-06-16 18:46 - 000003940 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-07 00:46 - 2018-06-16 18:46 - 000003798 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-07 00:46 - 2018-06-16 18:46 - 000003792 _____ C:\Windows\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-07 00:46 - 2018-06-16 18:46 - 000003792 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-07 00:46 - 2018-06-16 18:46 - 000003792 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-07 00:46 - 2018-06-16 18:46 - 000003790 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-07 00:46 - 2018-01-17 01:26 - 000003100 _____ C:\Windows\System32\Tasks\MailRuUpdater
2018-09-07 00:46 - 2017-11-26 01:06 - 000003216 _____ C:\Windows\System32\Tasks\{A2793785-D04F-4FCC-93CE-7762C16E4194}
2018-09-07 00:46 - 2017-10-24 16:40 - 000003010 _____ C:\Windows\System32\Tasks\{15DE0DEC-BD04-47E7-A6C1-8A471A6CB70A}
2018-09-07 00:46 - 2017-10-24 16:37 - 000003010 _____ C:\Windows\System32\Tasks\{79F5DC97-8617-4A05-AAF8-004A07225B6A}
2018-09-07 00:46 - 2017-10-24 16:37 - 000003010 _____ C:\Windows\System32\Tasks\{26C81884-90A3-4E52-94A4-7D7F566D5408}
2018-09-07 00:46 - 2017-10-24 16:36 - 000003010 _____ C:\Windows\System32\Tasks\{02AB85A9-DA58-4A6E-83F5-1B0D02CA35FF}
2018-09-07 00:46 - 2017-10-24 16:32 - 000003010 _____ C:\Windows\System32\Tasks\{C37C62DF-0C6A-4379-B0F3-D849AE960E78}
2018-09-07 00:46 - 2017-10-24 16:32 - 000003010 _____ C:\Windows\System32\Tasks\{1DEE93EB-16B0-447D-A202-9B711691C757}
2018-09-07 00:46 - 2017-10-24 16:14 - 000003202 _____ C:\Windows\System32\Tasks\{97E0B5A4-AA25-4E0A-ABE2-0263802B99DB}
2018-09-07 00:46 - 2017-10-24 16:05 - 000003050 _____ C:\Windows\System32\Tasks\{1725DAD7-50DE-49EA-A440-C924CA6168DD}
2018-09-07 00:46 - 2017-10-07 12:59 - 000003018 _____ C:\Windows\System32\Tasks\{97A4011F-403B-461D-B746-819A41D49061}
2018-09-07 00:46 - 2017-10-07 12:54 - 000003018 _____ C:\Windows\System32\Tasks\{FA168091-0886-4800-A201-1B90FD6EA0F2}
2018-09-07 00:46 - 2017-07-14 18:21 - 000003260 _____ C:\Windows\System32\Tasks\{7003A0F6-162B-4CF2-BE7D-8556E1EB8848}
2018-09-07 00:46 - 2017-07-14 18:18 - 000003296 _____ C:\Windows\System32\Tasks\{2B579CD8-6E24-4B6B-924B-10A29E10DF3C}
2018-09-07 00:46 - 2017-07-14 17:54 - 000003336 _____ C:\Windows\System32\Tasks\{EED91DB1-AF2B-49E3-9E29-2CF2615D6FA4}
2018-09-07 00:46 - 2017-07-11 18:30 - 000003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-07 00:46 - 2017-07-11 18:30 - 000003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-07 00:46 - 2017-07-11 18:30 - 000003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-07 00:46 - 2017-07-11 18:30 - 000003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-09-06 22:07 - 2017-08-08 09:09 - 000000000 ____D C:\Users\Adrian\AppData\Local\Warframe
2018-09-06 18:13 - 2017-07-12 22:13 - 000000000 ____D C:\ProgramData\AVAST Software
2018-09-06 18:06 - 2018-03-26 07:07 - 000000000 ____D C:\Users\Adrian\AppData\Local\AVAST Software
2018-09-06 17:44 - 2017-07-11 18:18 - 000000000 ____D C:\Program Files (x86)\Google
2018-09-06 17:43 - 2017-07-17 15:11 - 000000000 ____D C:\Users\Adrian\AppData\Local\CrashDumps
2018-09-06 17:42 - 2018-03-28 15:12 - 000000000 ____D C:\ProgramData\Hi-Rez Studios
2018-09-06 17:42 - 2018-03-28 15:12 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2018-09-06 17:42 - 2017-07-11 18:15 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-09-06 17:39 - 2017-07-14 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2018-09-06 17:39 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2018-09-06 17:37 - 2017-11-19 14:05 - 000000000 ____D C:\Users\Adrian\AppData\Roaming\Origin
2018-09-06 17:37 - 2017-11-19 13:57 - 000000000 ____D C:\ProgramData\Origin
2018-09-06 17:33 - 2017-09-02 15:11 - 000098680 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2018-09-06 17:33 - 2017-09-02 15:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-09-06 17:33 - 2017-09-02 15:11 - 000000000 ____D C:\Program Files (x86)\Java
2018-09-06 17:33 - 2017-07-17 13:36 - 000000000 ____D C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-09-06 17:33 - 2017-07-17 13:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-09-06 17:33 - 2017-07-17 13:36 - 000000000 ____D C:\Program Files (x86)\WinRAR
2018-09-06 17:32 - 2018-02-20 05:24 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-09-06 17:32 - 2018-02-20 05:24 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-06 17:32 - 2018-02-20 05:24 - 000000000 ____D C:\Windows\system32\Macromed
2018-09-06 17:32 - 2018-02-20 05:23 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-09-06 15:28 - 2017-10-02 17:36 - 000000000 ____D C:\Users\Adrian\AppData\Roaming\DAEMON Tools Lite
2018-09-06 15:28 - 2017-07-11 21:04 - 000000000 ____D C:\Users\Adrian\AppData\Roaming\TS3Client
2018-09-06 15:27 - 2017-07-11 19:04 - 000000000 ____D C:\Windows\Panther
2018-09-06 02:34 - 2017-08-23 13:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-09-06 02:34 - 2017-08-23 13:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-09-05 18:52 - 2017-07-14 17:04 - 000000000 ____D C:\Users\Adrian\AppData\Roaming\uTorrent
2018-09-05 15:53 - 2017-10-15 16:24 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2018-08-27 18:17 - 2017-11-25 21:01 - 000000000 ____D C:\Program Files (x86)\Origin Games
2018-08-26 19:51 - 2017-11-26 14:43 - 000214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2018-08-26 19:51 - 2017-11-26 14:43 - 000214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2018-08-26 19:38 - 2017-11-19 14:04 - 000000000 ____D C:\Program Files (x86)\Origin
2018-08-20 22:31 - 2018-06-14 23:46 - 000000671 _____ C:\Users\Public\Desktop\Battlefield 1.lnk
2018-08-14 15:05 - 2017-08-31 01:50 - 000000000 ____D C:\Users\Adrian\AppData\Local\Ubisoft Game Launcher
==================== Pliki w katalogu głównym wybranych folderów =======
2009-07-14 03:14 - 2009-07-14 03:14 - 000186368 ____N (Microsoft Corporation) C:\Program Files (x86)\Common Files\naeYavaLaV.exe
2018-09-05 18:36 - 2018-09-05 18:36 - 000000002 _____ () C:\Users\Adrian\AppData\Local\imw.ini
2018-09-07 15:36 - 2018-09-07 15:36 - 000007603 _____ () C:\Users\Adrian\AppData\Local\Resmon.ResmonCfg
2009-07-14 03:14 - 2009-07-14 03:14 - 000073216 ____N (Microsoft Corporation) C:\Users\Adrian\AppData\Local\uAXOR.exe
==================== Bamital & volsnap ======================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
C:\Windows\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\wininit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\explorer.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\explorer.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\svchost.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\User32.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\userinit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo
LastRegBack: 2018-09-05 02:06
==================== Koniec FRST.txt ============================