Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 22-08-2019 Uruchomiony przez oem (administrator) DESKTOP-J6FQEFD (MSI MS-7721) (24-08-2019 15:05:03) Uruchomiony z C:\Users\oem\Downloads Załadowane profile: oem (Dostępne profile: oem) Platform: Windows 10 Home Wersja 1803 17134.885 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Genesis\Genesis RX66\Monitor.EXE () [Brak podpisu cyfrowego] C:\Program Files (x86)\Genesis\Genesis RX66\OSD.exe () [Brak podpisu cyfrowego] C:\Program Files (x86)\Genesis\GX75\GenesisGX75.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\browserhost.exe (McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\uihost.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19051.16210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_1.16.1012.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.50.38.0_x64__kzf8qxf38zg5c\SkypeApp.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.50.38.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe (SoundMixer) [Brak podpisu cyfrowego] C:\Users\oem\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [Genesis RX66 keyboard] => C:\Program Files (x86)\Genesis\Genesis RX66\Monitor.exe [479232 2013-09-24] () [Brak podpisu cyfrowego] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) HKLM-x32\...\Run: [GenesisGX75] => C:\Program Files (x86)\Genesis\GX75\GenesisGX75.exe [5999616 2015-11-25] () [Brak podpisu cyfrowego] HKU\S-1-5-21-716437688-3208686116-1985376518-1001\...\Run: [Opera Browser Assistant] => C:\Users\oem\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [2753560 2019-08-22] (Opera Software AS -> Opera Software) HKU\S-1-5-21-716437688-3208686116-1985376518-1001\...\MountPoints2: {0b723577-06f3-11e9-863d-d8cb8a36ba28} - "E:\Setup.exe" HKU\S-1-5-21-716437688-3208686116-1985376518-1001\...\MountPoints2: {0fe892e6-2867-11e9-8655-d8cb8a36ba28} - "H:\HiSuiteDownLoader.exe" HKU\S-1-5-21-716437688-3208686116-1985376518-1001\...\MountPoints2: {8bfb4682-d9c3-11e8-8622-d8cb8a36ba28} - "G:\HiSuiteDownLoader.exe" HKU\S-1-5-21-716437688-3208686116-1985376518-1001\...\MountPoints2: {bf9578cd-e793-11e8-862d-d8cb8a36ba28} - "E:\Setup.exe" HKU\S-1-5-21-716437688-3208686116-1985376518-1001\...\MountPoints2: {cb1e343e-495a-11e9-8673-d8cb8a36ba28} - "E:\HiSuiteDownLoader.exe" HKU\S-1-5-21-716437688-3208686116-1985376518-1001\...\MountPoints2: {dddfb4be-fd73-11e8-8639-d8cb8a36ba28} - "E:\HiSuiteDownLoader.exe" HKU\S-1-5-21-716437688-3208686116-1985376518-1001\...\MountPoints2: {e0ed4d19-09be-11e9-863d-d8cb8a36ba28} - "E:\Install.exe" HKU\S-1-5-21-716437688-3208686116-1985376518-1001\...\Winlogon: [Shell] %comspec% <==== UWAGA HKU\S-1-5-21-716437688-3208686116-1985376518-1001\...\Command Processor: @mode 20,5 & tasklist /FI "IMAGENAME eq SoundMixer.exe" 2>NUL | find /I /N "SoundMixer.exe">NUL && exit & if exist "C:\Users\oem\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" ( start /MIN "" "C:\Users\oem\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) <==== UWAGA HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112640 2014-09-29] () [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.100\Installer\chrmstp.exe [2019-08-11] (Google LLC -> Google LLC) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {05CB6AB5-0995-4BEF-9077-0E8D2334C3B3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [840744 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1764CE79-1B8B-41BA-885A-AF37C7F47159} - System32\Tasks\Opera scheduled assistant Autoupdate 1547146289 => C:\Users\oem\AppData\Local\Programs\Opera\launcher.exe [1519640 2019-08-07] (Opera Software AS -> Opera Software) Task: {194C1160-7699-425E-BB00-E99C4C8707E6} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [572456 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {24D20C8B-A2B8-4A0E-B732-D7B69409D946} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3724328 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2979B826-B364-4B6A-911E-B8C10F25A061} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [152112 2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Task: {2D927F86-0BF6-41A3-A6AE-3041C852297A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-18] (Google Inc -> Google Inc.) Task: {337722D6-9D6F-4193-91D6-25DC20300BA7} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3442C463-D927-46AC-B11F-41DF7EA901C9} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {389D7791-50E4-497A-9900-26657E317CE0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-18] (Google Inc -> Google Inc.) Task: {54BB9432-FBA3-4098-82AB-C6A44BB8D69F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208400 2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Task: {79108F0C-A690-466A-BC25-D007797F4C14} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7C2C7D28-E9F6-48F2-B009-4F484BDC0942} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [152112 2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Task: {7DA5B799-75A3-40FD-AEE6-53809E251687} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26804232 2019-06-26] (Microsoft Corporation -> Microsoft Corporation) Task: {88746E1E-9DB0-450F-AE5C-71044BC88AC8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [840744 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {95049C62-E05E-41DF-9893-9E9E942A5325} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {B3B292F1-A8D2-4814-8A80-2B6D427C95BF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems) Task: {BD805328-2546-44BD-96C2-AE578E5D9433} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C0F7ED23-658E-4207-A79B-07F75AF24814} - System32\Tasks\Opera scheduled Autoupdate 1543943780 => C:\Users\oem\AppData\Local\Programs\Opera\launcher.exe [1519640 2019-08-07] (Opera Software AS -> Opera Software) Task: {CC020305-D222-40EF-AE21-769E3E4B2A91} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2438472 2019-07-31] (Overwolf Ltd -> Overwolf LTD) Task: {E407238C-649A-42EF-975D-8FFF4D43DEB8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E768C22D-B1DE-4B08-9D9B-127790BE6591} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EAFB4839-2390-48CE-A388-DF891BDF5E25} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {ED2B4F2F-CFFB-4AC6-B87C-1D6A8EA7D83F} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EDB83A54-4374-4255-A220-C39827DE2808} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [702504 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EDFD0129-86C4-4DDB-BB79-CA0BF796959B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877096 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F403D6C0-BA09-4786-B9E6-D665573A9FC2} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208400 2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Task: {F457475D-1AA2-4E33-82EB-905E28ED97FC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26804232 2019-06-26] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{bb3cb3f2-6b71-4706-bf83-18725f023f22}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-08-22] (McAfee, LLC -> McAfee, Inc.) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-04-06] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-01-28] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-08-22] (McAfee, LLC -> McAfee, Inc.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-01-28] (Oracle America, Inc. -> Oracle Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-07-22] (Microsoft Corporation -> Microsoft Corporation) Edge: ====== DownloadDir: C:\Users\oem\Downloads FireFox: ======== FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-08-22] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-01-28] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-01-28] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default [2019-08-24] CHR Extension: (Prezentacje) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-18] CHR Extension: (Dokumenty) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-18] CHR Extension: (Dysk Google) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-18] CHR Extension: (YouTube) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-18] CHR Extension: (McAfee® WebAdvisor) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2019-08-16] CHR Extension: (Dokumenty Google offline) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-18] CHR Extension: (AdBlock) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-08-16] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-18] CHR Extension: (Gmail) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30] CHR Extension: (Chrome Media Router) - C:\Users\oem\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-11] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8361960 2019-07-22] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11413600 2019-06-26] (Microsoft Corporation -> Microsoft Corporation) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3644008 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2018-07-09] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2018-07-12] (FUTUREMARK INC -> Futuremark) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [791112 2019-06-12] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7170632 2019-06-12] (GOG Sp. z o.o. -> GOG.com) S2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [905472 2019-08-22] (McAfee, LLC -> McAfee, Inc.) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2329904 2019-08-20] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3204912 2019-08-20] (Electronic Arts, Inc. -> Electronic Arts) S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2438472 2019-07-31] (Overwolf Ltd -> Overwolf LTD) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-30] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2018-12-25] (Disc Soft Ltd -> Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2018-12-25] (Disc Soft Ltd -> Disc Soft Ltd) R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2019-02-11] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7a8e74171e1b8492\nvlddmkm.sys [20736208 2019-03-02] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek ) R3 SteamStreamingMicrophone; C:\Windows\system32\drivers\SteamStreamingMicrophone.sys [40736 2018-06-08] (Valve Corp. -> ) R3 SteamStreamingSpeakers; C:\Windows\system32\drivers\SteamStreamingSpeakers.sys [40736 2018-06-08] (Valve Corp. -> ) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [47496 2019-07-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [344288 2019-07-30] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-30] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\Windows\xhunter1.sys [55704 2019-05-08] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-12-04 07:57 - 2019-12-04 07:57 - 000000000 ____D C:\Users\oem\AppData\Local\ElevatedDiagnostics 2019-08-24 15:05 - 2019-08-24 15:07 - 000030848 _____ C:\Users\oem\Downloads\FRST.txt 2019-08-24 15:03 - 2019-08-24 15:05 - 000000000 ____D C:\FRST 2019-08-24 15:03 - 2019-08-24 15:03 - 001612800 _____ (Farbar) C:\Users\oem\Downloads\FRST64.exe 2019-08-24 15:03 - 2019-08-24 15:03 - 001612800 _____ (Farbar) C:\Users\oem\Downloads\FRST64 (1).exe 2019-08-24 14:56 - 2019-08-24 14:56 - 002756608 _____ C:\Users\oem\Downloads\phantom.exe 2019-08-24 14:56 - 2019-08-24 14:56 - 002756608 _____ C:\Users\oem\Desktop\phantom.exe 2019-08-24 14:55 - 2019-08-24 14:55 - 002613760 _____ C:\Users\oem\Downloads\phantom (1) (1).exe 2019-08-24 14:55 - 2019-08-24 14:55 - 002613760 _____ C:\Users\oem\Desktop\phantom (1) (1).exe 2019-08-24 14:43 - 2019-08-24 14:44 - 002613760 _____ C:\Users\oem\Downloads\phantom (1).exe 2019-08-16 21:02 - 2019-08-16 22:08 - 000000000 ____D C:\Program Files (x86)\Anno 1800 2019-08-16 21:00 - 2019-08-16 21:00 - 088926808 _____ (Ubisoft) C:\Users\oem\Desktop\anno-1800.exe 2019-08-16 20:59 - 2019-08-16 20:59 - 002396168 _____ (Nolurasa ) C:\Users\oem\Downloads\anno-1800-ks_0133765037.exe 2019-08-16 17:42 - 2019-08-16 22:08 - 000000948 _____ C:\Users\oem\AppData\Roaming\Microsoft\Windows\Start Menu\Anno 1800.lnk 2019-08-16 17:42 - 2019-08-16 22:08 - 000000924 _____ C:\Users\Public\Desktop\Anno 1800.lnk 2019-08-16 15:43 - 2019-08-16 16:45 - 2319974400 ____R C:\Users\oem\Downloads\Anno.1800.Deluxe.Edition.FULL.UNLOCKED.iso 2019-08-16 15:41 - 2019-08-16 16:58 - 000000000 ____D C:\Users\oem\AppData\Local\BitTorrentHelper 2019-08-13 14:44 - 2019-08-13 14:44 - 001516994 _____ C:\Users\oem\Downloads\Localization.rar 2019-08-13 14:16 - 2019-08-13 14:16 - 000001293 _____ C:\Users\Public\Desktop\Crysis 3 Deluxe Edition.lnk 2019-08-13 14:16 - 2019-08-13 14:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr DJ 2019-08-13 13:47 - 2019-08-13 13:47 - 000000000 ____D C:\Program Files (x86)\Mr DJ 2019-08-13 13:15 - 2019-08-13 13:28 - 000000000 ____D C:\Users\oem\Downloads\Crysis 3 DE repack Mr DJ 2019-08-04 09:25 - 2019-08-04 09:25 - 020332420 _____ C:\Users\oem\Downloads\Stinger-katalog--PL.pdf 2019-07-27 14:07 - 2019-07-27 14:07 - 000000000 ____D C:\Users\oem\AppData\Local\BattlEye ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-08-24 15:04 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-08-24 14:14 - 2018-10-18 10:13 - 000000000 ____D C:\ProgramData\NVIDIA 2019-08-24 13:54 - 2019-01-11 17:05 - 000000000 ____D C:\Users\oem\Downloads\opera autoupdate 2019-08-24 13:49 - 2019-03-17 22:37 - 000000000 ____D C:\Users\oem\AppData\Local\LogMeIn Hamachi 2019-08-24 13:43 - 2018-10-18 09:59 - 000000000 ____D C:\Users\oem 2019-08-24 13:43 - 2018-10-18 09:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-08-24 13:43 - 2018-10-18 09:52 - 000000000 ____D C:\Windows\system32\SleepStudy 2019-08-23 17:04 - 2019-07-21 21:16 - 000002170 _____ C:\Users\oem\Desktop\TFTactics.lnk 2019-08-23 17:04 - 2019-07-21 21:14 - 000000000 ____D C:\Users\oem\AppData\Local\Overwolf 2019-08-23 11:47 - 2019-01-10 20:51 - 000004440 _____ C:\Windows\System32\Tasks\Opera scheduled assistant Autoupdate 1547146289 2019-08-22 18:23 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\AppReadiness 2019-08-20 12:02 - 2019-02-08 23:18 - 000000000 ____D C:\ProgramData\Origin 2019-08-20 10:58 - 2019-02-08 23:21 - 000000000 ____D C:\Program Files (x86)\Origin 2019-08-18 01:58 - 2018-10-19 16:29 - 000000000 ____D C:\Users\oem\AppData\Roaming\TS3Client 2019-08-17 11:33 - 2019-07-21 21:15 - 000000000 ____D C:\Program Files (x86)\Overwolf 2019-08-16 23:26 - 2018-04-12 01:30 - 000000000 ____D C:\Windows\CbsTemp 2019-08-16 17:05 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\LiveKernelReports 2019-08-16 16:59 - 2018-12-19 22:14 - 000000000 ____D C:\Users\oem\AppData\Roaming\uTorrent 2019-08-15 10:51 - 2018-10-18 10:38 - 000004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2019-08-15 10:50 - 2018-10-18 10:38 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-08-11 21:31 - 2018-12-04 19:16 - 000004232 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1543943780 2019-08-11 21:31 - 2018-12-04 19:16 - 000001423 _____ C:\Users\oem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2019-08-11 21:31 - 2018-10-18 10:23 - 000002309 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-08-11 21:31 - 2018-10-18 10:23 - 000002268 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-08-11 21:30 - 2018-10-18 10:06 - 000003374 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-716437688-3208686116-1985376518-1001 2019-08-11 21:30 - 2018-10-18 10:03 - 000000000 ___RD C:\Users\oem\OneDrive 2019-08-11 21:30 - 2018-10-18 09:59 - 000002403 _____ C:\Users\oem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-08-09 00:01 - 2018-11-08 17:49 - 000000000 ____D C:\steam 2019-08-08 21:29 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps 2019-08-07 23:34 - 2018-11-23 17:16 - 000000000 ____D C:\Program Files\rempl 2019-08-04 16:20 - 2018-11-08 17:27 - 000000000 ____D C:\Users\oem\AppData\Local\D3DSCache 2019-08-04 16:03 - 2018-11-08 17:25 - 000000000 ____D C:\Users\oem\AppData\Roaming\discord 2019-07-30 18:36 - 2018-10-18 09:53 - 000000000 ____D C:\Windows\system32\Drivers\wd 2019-07-29 18:11 - 2018-10-18 11:28 - 000000000 ____D C:\Windows\system32\MRT 2019-07-29 18:07 - 2018-10-18 11:28 - 136618864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2019-07-28 11:46 - 2019-07-21 21:15 - 000000000 ____D C:\ProgramData\Overwolf 2019-07-27 14:08 - 2019-03-14 15:05 - 000000000 ____D C:\Users\oem\ansel 2019-07-27 14:06 - 2018-10-18 10:52 - 000000000 ____D C:\ProgramData\Package Cache ==================== SigCheck =============================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) UWAGA: ==> Nie można uzyskać dostępu do BCD. -> 0 ==================== Koniec FRST.txt ============================