Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 26-10-2019 Uruchomiony przez komp (administrator) KOMP-KOMPUTER (Gigabyte Technology Co., Ltd. To be filled by O.E.M.) (27-10-2019 18:31:03) Uruchomiony z C:\Users\komp\Desktop\Downloads Załadowane profile: komp (Dostępne profile: komp & Kama) Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: FF) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe (Electronic Arts, Inc. -> Electronic Arts) D:\Kama\Origin\OriginWebHelperService.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe (Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.569\SSScheduler.exe (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe (McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe (McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\browserhost.exe (McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe (McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\uihost.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) [Brak podpisu cyfrowego] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Shanghai Microvirt Software Technology Co., Ltd. -> ) D:\Gry\MEmu\MemuService.exe (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [SERVICE] => [X] HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation -> Intel Corporation) HKLM-x32\...\Run: [AMD AVT] => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [DLLSuite2016] => C:\Program Files (x86)\DLL Suite\DLLSuite.exe [5991424 2018-01-12] (VskSoft) [Brak podpisu cyfrowego] HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-2231643816-1442730312-3750214250-1000\...\Run: [Dxtory Update Checker 2.0] => D:\Programy\Dxtory2.0\UpdateChecker.exe [93696 2010-10-17] (Dxtory Software) [Brak podpisu cyfrowego] HKU\S-1-5-21-2231643816-1442730312-3750214250-1000\...\Run: [WallpaperSuite] => C:\Users\komp\AppData\Local\WallpaperSuite\WallpaperSuite.exe [1868288 2018-06-15] (WallpaperSuite) [Brak podpisu cyfrowego] HKU\S-1-5-21-2231643816-1442730312-3750214250-1000\...\MountPoints2: E - E:\setup.exe HKU\S-1-5-21-2231643816-1442730312-3750214250-1000\...\MountPoints2: {3a42d5db-4db4-11e7-9bdd-74d435f4ec19} - F:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-2231643816-1442730312-3750214250-1000\...\MountPoints2: {cd0818c9-f6cc-11e6-b80a-806e6f6e6963} - E:\Autorun.exe HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-16] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.139\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level HKLM\Software\...\Authentication\Credential Providers: [{B7724AE5-1135-4889-8A5F-CA98BE6CA1ED}] -> C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.CredentialProvider.dll [2019-03-09] (McAfee, Inc. -> McAfee, LLC.) HKLM\Software\...\Authentication\Credential Providers: [{e74e57b0-6c6d-44d5-9cda-fb2df5ed7435}] -> C:\Windows\system32\certCredProvider.dll [2009-07-14] (Microsoft Windows -> ) Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" "C:\Program Files\McAfee\TrueKey\McAfeeTrueKeyPasswordFilter" GroupPolicy: Ograniczenia - Firefox <==== UWAGA GroupPolicy\User: Ograniczenia ? <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {15EC1934-9CC7-4423-9AD0-0543C68B369D} - System32\Tasks\{C653AAEF-9218-4554-92E5-616DF711EE32} => C:\Windows\system32\pcalua.exe -a "D:\Steam\steamapps\common\Gothic II\system\gothic2_playerkit-2.6f.exe" -d "D:\Steam\steamapps\common\Gothic II\system" Task: {20FB1A8B-7155-4287-A18A-7BA480170398} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [19847856 2018-04-23] (Microsoft Corporation -> Microsoft Corporation) Task: {3174CA32-7683-44B9-BA12-D69AA4A7121A} - System32\Tasks\{3DE8533C-DA62-4186-BB82-1B096A9FFA9A} => D:\Gry\CombatArmsClassic\CA_Classic\CombatArmsClassic.exe Task: {34B2AB2E-4308-4EC0-9CC5-4D568D149B3B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-09] (Adobe Inc. -> Adobe) Task: {547C845C-5D6F-4F43-95CE-F822F09E4B07} - System32\Tasks\klcp_update => CodecTweakTool.exe Task: {5E6DD71A-45F4-42BE-85D4-BF3138C71496} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [19847856 2018-04-23] (Microsoft Corporation -> Microsoft Corporation) Task: {67A172BE-78CC-453A-927A-1A9BC3022B7F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems) Task: {7F4D002F-FC8F-4720-B543-AE4F9182B97D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-02] (Google Inc -> Google Inc.) Task: {82C9D12A-72E8-430E-8464-B2CF7242D11F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-05-02] (Google Inc -> Google Inc.) Task: {9BADC454-6DF0-4891-A362-6A318CCD196D} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_270_Plugin.exe [1457720 2019-10-09] (Adobe Inc. -> Adobe) Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371} C:\Windows\System32\perftrack.dll [950272 2015-01-09] (Microsoft Corporation) Task: {B5EB477F-714F-4805-8703-A433979D8169} - System32\Tasks\Overwolf Updater Task => D:\Programy\porofessor\Overwolf\OverwolfUpdater.exe [2436936 2019-07-29] (Overwolf Ltd -> Overwolf LTD) Task: {BB67B025-56B9-4787-8D57-E60212CF48DA} - System32\Tasks\{27F18831-B18A-41AD-B3EC-6C1A9E8C14D5} => C:\Windows\system32\pcalua.exe -a D:\Programy\OpenOffice\setup.exe -d D:\Programy\OpenOffice Task: {CB1BBE94-7780-4113-B139-F9FE442FCC68} - System32\Tasks\{5A6DDAD3-8E05-457E-BF5E-DC2FDACDCBE6} => C:\Windows\system32\pcalua.exe -a C:\Users\komp\Desktop\Downloads\gothic2_playerkit-2.6f.exe -d C:\Users\komp\Desktop\Downloads Task: {E40F2A6C-1441-4349-9885-078B2E749C4C} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com) Task: {EAD49E5B-8C95-4EC7-836E-3650A1B6888E} - System32\Tasks\BlueStacksHelper => D:\Gry\dsd\BlueStacks\Client\Helper\BlueStacksHelper.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Brak pliku Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Brak pliku Winsock: Catalog5-x64 01 C:\Windows\system32\NLAapi.dll [70656 2018-01-01] (Microsoft Corporation) Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Brak pliku Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL => Brak pliku Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\Parameters: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{DB0A2AC9-4539-4898-B927-59C67715A7A9}: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{DB0A2AC9-4539-4898-B927-59C67715A7A9}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-2231643816-1442730312-3750214250-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie64.dll [2018-04-23] (McAfee, Inc. -> Intel Security) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-08-02] (Oracle America, Inc. -> Oracle Corporation) BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-10-15] (McAfee, LLC -> McAfee, Inc.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-08-02] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security) BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-10-15] (McAfee, LLC -> McAfee, Inc.) Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie64.dll [2018-04-23] (McAfee, Inc. -> Intel Security) Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\McAfee\TrueKey\MSIE\truekey_ie.dll [2018-04-23] (McAfee, Inc. -> Intel Security) Toolbar: HKU\S-1-5-21-2231643816-1442730312-3750214250-1000 -> Brak nazwy - {C500C267-63BF-451F-8797-4D720C9A2ED9} - Brak pliku FireFox: ======== FF DefaultProfile: 1abmil5x.default FF ProfilePath: C:\Users\komp\AppData\Roaming\Mozilla\Firefox\Profiles\1abmil5x.default [2019-10-27] FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\komp\AppData\Roaming\Mozilla\Firefox\Profiles\1abmil5x.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-10-22] FF HKLM\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\FFExt\light_plugin_firefox\addon.xpi => nie znaleziono FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-10-15] FF HKLM-x32\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\FFExt\light_plugin_firefox\addon.xpi => nie znaleziono FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_270.dll [2019-10-09] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-08-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-08-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_270.dll [2019-10-09] (Adobe Inc. -> ) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-08] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-11] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2231643816-1442730312-3750214250-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\komp\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-08] (Unity Technologies SF -> Unity Technologies ApS) StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Firefox\Firefox.exe Chrome: ======= CHR DefaultSearchURL: Default -> hxxps://pl.search.yahoo.com/search?fr=mcafee_uninternational&type=E210PL91105G10&p={searchTerms} CHR DefaultSearchKeyword: Default -> mcafee CHR Profile: C:\Users\komp\AppData\Local\Google\Chrome\User Data\Default [2019-10-13] CHR Extension: (Dokumenty) - C:\Users\komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-05-19] CHR Extension: (Dysk Google) - C:\Users\komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-05-19] CHR Extension: (YouTube) - C:\Users\komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-05-19] CHR Extension: (Adobe Acrobat) - C:\Users\komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-09-23] CHR Extension: (McAfee® WebAdvisor) - C:\Users\komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2019-07-19] CHR Extension: (Dokumenty Google offline) - C:\Users\komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-24] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-02] CHR Extension: (Gmail) - C:\Users\komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-26] CHR Extension: (Chrome Media Router) - C:\Users\komp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-19] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [239616 2012-06-20] (Advanced Micro Devices, Inc. -> AMD) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-03-27] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8566440 2018-04-23] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2018-11-04] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 GameforgeClientService; C:\Program Files (x86)\GameforgeClient\gfservice.exe [512160 2019-10-07] (Gameforge 4D GmbH -> ) R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) S3 MatSvc; C:\Program Files\Microsoft Fix it Center\Matsvc.exe [343856 2011-06-13] (Microsoft Corporation -> Microsoft Corporation) R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [911672 2019-10-15] (McAfee, LLC -> McAfee, Inc.) R2 MEmuSVC; D:\Gry\MEmu\MemuService.exe [85304 2019-02-20] (Shanghai Microvirt Software Technology Co., Ltd. -> ) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [7987104 2017-04-10] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) S3 Origin Client Service; D:\Kama\Origin\OriginClientService.exe [2348336 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; D:\Kama\Origin\OriginWebHelperService.exe [3228976 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts) S3 OverwolfUpdater; D:\Programy\porofessor\Overwolf\OverwolfUpdater.exe [2436936 2019-07-29] (Overwolf Ltd -> Overwolf LTD) S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Brak podpisu cyfrowego] S4 SbieSvc; D:\Programy\Piaskownica\SbieSvc.exe [197776 2016-12-14] (Invincea, Inc. -> Sandboxie Holdings, LLC) R2 TrueKey; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.Service.exe [421432 2019-03-09] (McAfee, Inc. -> McAfee, LLC.) R2 TrueKeyScheduler; C:\Program Files\McAfee\TrueKey\McTkSchedulerService.exe [421432 2019-03-09] (McAfee, Inc. -> McAfee, LLC.) R2 TrueKeyServiceHelper; C:\Program Files\McAfee\TrueKey\McAfee.TrueKey.ServiceHelper.exe [194168 2019-03-09] (McAfee, Inc. -> McAfee, LLC.) S2 wiasvc; C:\ProgramData\Microsoft\Windows\Image\capCADF.tmp [84 2017-06-02] () [Brak podpisu cyfrowego] <==== UWAGA R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-08-20] (Microsoft Windows -> Microsoft Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [10266624 2012-06-20] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [368128 2012-06-20] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96896 2012-05-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) S3 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [303712 2019-01-21] (Bluestack Systems, Inc. -> Bluestack System Inc. ) R3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [26968 2018-11-09] (SteelSeries ApS -> Windows (R) Win 7 DDK provider) S3 htcnprot; C:\Windows\System32\DRIVERS\htcnprot.sys [36928 2013-10-17] (HTC Corp. -> Windows (R) Win 7 DDK provider) S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (Sqa.com(Test) -> QUALCOMM Incorporated) R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project) R1 MEmuDrv; C:\Windows\System32\DRIVERS\MEmuDrv.sys [309952 2019-04-15] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation) S3 SbieDrv; D:\Programy\Piaskownica\SbieDrv.sys [205968 2016-12-14] (Invincea, Inc. -> Sandboxie Holdings, LLC) R3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [46408 2017-06-02] (SteelSeries ApS -> SteelSeries ApS) R3 sshid; C:\Windows\System32\DRIVERS\sshid.sys [46520 2018-11-09] (SteelSeries ApS -> SteelSeries ApS) S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB) U3 aswbdisk; Brak ImagePath S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X] S3 efavdrv; \??\C:\Windows\system32\drivers\efavdrv.sys [X] S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [X] S1 ESProtectionDriver; \??\C:\Windows\system32\drivers\mbae64.sys [X] S3 gdrv; \??\C:\Windows\gdrv.sys [X] S3 MBAMFarflt; system32\DRIVERS\farflt.sys [X] S3 MBAMProtection; system32\DRIVERS\mbam.sys [X] S3 MBAMWebProtection; system32\DRIVERS\mwac.sys [X] S3 XFDriver64; \??\D:\Programy\Xfire2\XFDriver64.sys [X] S3 xhunter1; \??\C:\Windows\xhunter1.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-10-27 18:27 - 2019-10-27 18:57 - 000000000 ____D C:\FRST 2019-10-27 16:05 - 2019-10-27 16:05 - 000000207 _____ C:\Windows\tweaking.com-regbackup-KOMP-KOMPUTER-Windows-7-Professional-(64-bit).dat 2019-10-27 16:03 - 2019-10-27 16:03 - 000000000 ____D C:\RegBackup 2019-10-27 15:55 - 2019-10-27 15:55 - 000003662 _____ C:\Windows\system32\Tasks\Tweaking.com - Windows Repair Tray Icon 2019-10-27 15:54 - 2019-10-27 15:54 - 000002163 _____ C:\Users\komp\Desktop\Tweaking.com - Windows Repair.lnk 2019-10-27 15:53 - 2019-10-27 15:53 - 000000000 ____D C:\Users\komp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweaking.com 2019-10-27 15:52 - 2019-10-27 15:52 - 000000000 ____D C:\Program Files (x86)\Tweaking.com 2019-10-27 15:51 - 2019-10-27 15:54 - 000311862 _____ C:\Windows\Tweaking.com - Windows Repair Setup Log.txt 2019-10-26 07:28 - 2016-10-13 14:47 - 001096192 _____ (Microsoft Corporation) C:\Users\komp\Desktop\rdvidcrl.dll 2019-10-26 07:27 - 2016-10-19 12:22 - 000066048 _____ (Microsoft Corporation) C:\Users\komp\Desktop\tsgqec.dll 2019-10-25 19:21 - 2019-10-25 19:21 - 000001018 _____ C:\Users\komp\Desktop\DLLSuite.lnk 2019-10-25 19:19 - 2019-10-26 07:52 - 000000000 ____D C:\Program Files (x86)\DLL Suite 2019-10-25 19:11 - 2019-10-25 19:11 - 000000000 ____D C:\Users\komp\AppData\Local\WallpaperSuite 2019-10-23 19:29 - 2019-10-23 19:29 - 000002974 _____ C:\Users\komp\Desktop\SFCFix.txt 2019-10-23 19:29 - 2019-10-23 19:29 - 000000000 ____D C:\SFCFix 2019-10-23 18:59 - 2019-10-23 19:29 - 000000000 ____D C:\Users\komp\AppData\Local\niemiro 2019-10-23 18:15 - 2019-10-23 18:15 - 000000931 _____ C:\Users\Public\Desktop\Microsoft Fix it Center.lnk 2019-10-23 18:15 - 2019-10-23 18:15 - 000000000 ____D C:\Windows\MATS 2019-10-23 18:15 - 2019-10-23 18:15 - 000000000 ____D C:\Program Files\Microsoft Fix it Center 2019-10-22 19:26 - 2019-10-22 19:26 - 000230578 _____ C:\Users\komp\Desktop\cc_20191022_202603.reg 2019-10-22 18:18 - 2019-10-22 18:54 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2019-10-20 18:39 - 2019-10-20 18:39 - 000260702 _____ C:\Users\komp\Documents\cc_20191020_193938.reg 2019-10-20 18:29 - 2019-10-27 17:28 - 000297668 _____ C:\Windows\ntbtlog.txt 2019-10-20 18:06 - 2019-10-20 18:14 - 000001679 _____ C:\Users\Public\Desktop\League of Legends.lnk 2019-10-20 17:47 - 2019-10-20 17:47 - 000000000 ____D C:\Users\komp\AppData\Local\EpicGamesLauncher 2019-10-20 17:19 - 2019-10-20 17:19 - 000000000 ____D C:\Users\Kama\Documents\League of Legends 2019-10-20 17:17 - 2019-10-20 17:17 - 000000000 ____D C:\Users\Kama\AppData\Local\CEF 2019-10-20 13:43 - 2019-10-20 13:43 - 000000000 ____D C:\Users\Kama\AppData\Roaming\Sun 2019-10-20 13:43 - 2019-10-20 13:43 - 000000000 ____D C:\Users\Kama\AppData\LocalLow\Sun 2019-10-17 12:47 - 2019-10-17 12:47 - 000000000 ____D C:\Users\Kama\AppData\LocalLow\Adobe 2019-10-17 12:41 - 2019-10-17 12:47 - 000000000 ____D C:\Users\Kama\AppData\Local\Adobe 2019-10-16 11:44 - 2019-10-16 11:44 - 000001180 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk 2019-10-12 14:09 - 2019-10-12 14:09 - 000000000 ____D C:\Users\komp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games 2019-10-12 14:08 - 2019-10-12 14:12 - 000000000 ____D C:\Users\komp\AppData\Local\Riot Games 2019-10-05 15:00 - 2019-10-05 15:00 - 000000150 _____ C:\Users\komp\Desktop\Metin2 pl-PL.url 2019-10-05 14:43 - 2019-10-08 18:07 - 000000037 _____ C:\Users\Public\Desktop\Gameforge Client.url 2019-10-05 14:43 - 2019-10-08 18:07 - 000000000 ____D C:\Program Files (x86)\GameforgeClient 2019-10-05 14:43 - 2019-10-05 14:43 - 000000000 ____D C:\Users\komp\AppData\Local\Gameforge4d 2019-10-04 18:19 - 2019-10-04 20:05 - 000000000 ____D C:\Users\Kama\AppData\LocalLow\Mozilla 2019-10-04 18:19 - 2019-10-04 18:19 - 000000000 ____D C:\Users\Kama\AppData\Roaming\Mozilla 2019-10-04 18:19 - 2019-10-04 18:19 - 000000000 ____D C:\Users\Kama\AppData\Local\Mozilla ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-10-27 18:58 - 2009-07-14 05:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-10-27 18:58 - 2009-07-14 05:45 - 000031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-10-27 18:09 - 2011-04-12 14:21 - 000726364 _____ C:\Windows\system32\perfh015.dat 2019-10-27 18:09 - 2011-04-12 14:21 - 000150524 _____ C:\Windows\system32\perfc015.dat 2019-10-27 18:09 - 2009-07-14 06:13 - 001662250 _____ C:\Windows\system32\PerfStringBackup.INI 2019-10-27 18:09 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2019-10-27 18:08 - 2017-05-10 18:39 - 000000000 ____D C:\Users\komp\AppData\LocalLow\Mozilla 2019-10-27 18:03 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-10-27 17:24 - 2009-07-14 06:08 - 000032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2019-10-27 17:00 - 2017-02-19 19:26 - 000119760 _____ C:\Users\komp\AppData\Local\GDIPFONTCACHEV1.DAT 2019-10-27 16:59 - 2011-04-12 14:32 - 000000000 ___RD C:\Users\Public\Recorded TV 2019-10-27 16:57 - 2017-02-19 18:57 - 000000000 ____D C:\Windows\CSC 2019-10-27 16:57 - 2009-07-14 05:45 - 000461504 _____ C:\Windows\system32\FNTCACHE.DAT 2019-10-27 16:51 - 2009-07-14 03:34 - 000000439 _____ C:\Windows\win.ini 2019-10-26 07:22 - 2017-02-19 19:01 - 000000000 ___HD C:\Users\komp 2019-10-22 19:30 - 2017-02-19 19:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-10-20 18:32 - 2018-03-11 13:30 - 000000000 ____D C:\Users\komp\AppData\Local\ElevatedDiagnostics 2019-10-20 14:17 - 2019-09-23 15:18 - 000000229 _____ C:\Users\Kama\AppData\Roaming\WB.CFG 2019-10-20 13:39 - 2019-09-22 09:17 - 000000000 ____D C:\Users\Kama\AppData\Roaming\Origin 2019-10-17 12:47 - 2019-09-21 19:48 - 000000000 ____D C:\Users\Kama\AppData\Roaming\Adobe 2019-10-16 20:16 - 2017-10-17 13:32 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task 2019-10-16 20:14 - 2017-10-17 13:31 - 000000000 ____D C:\Users\komp\AppData\Local\Adobe 2019-10-16 15:20 - 2019-09-21 19:48 - 000000000 ____D C:\Users\Kama\AppData\Local\Google 2019-10-16 11:44 - 2018-02-11 14:13 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2019-10-16 11:35 - 2018-05-02 14:15 - 000002189 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-10-13 19:39 - 2018-07-22 20:32 - 000000000 ____D C:\Users\komp\AppData\Local\Blizzard Entertainment 2019-10-13 19:39 - 2018-07-22 20:31 - 000000000 ____D C:\Users\komp\AppData\Local\Blizzard 2019-10-13 19:39 - 2018-04-03 19:01 - 000000000 ____D C:\Users\komp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2019-10-13 19:39 - 2018-04-03 19:01 - 000000000 ____D C:\Users\komp\AppData\Local\Discord 2019-10-13 19:37 - 2017-06-10 10:54 - 000000000 ____D C:\Temp 2019-10-13 13:09 - 2018-02-12 13:45 - 000003182 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2231643816-1442730312-3750214250-1000 2019-10-13 13:08 - 2018-02-11 16:25 - 000002206 _____ C:\Users\komp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2019-10-13 13:08 - 2018-02-11 16:25 - 000000000 ___RD C:\Users\komp\OneDrive 2019-10-13 09:23 - 2017-02-19 20:10 - 000000000 ____D C:\Users\komp\AppData\Local\Overwolf 2019-10-12 14:11 - 2017-03-03 14:42 - 000000000 ____D C:\Users\komp\AppData\Roaming\steelseries-engine-3-client 2019-10-09 16:38 - 2019-09-10 18:49 - 005769272 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2019-10-09 16:38 - 2018-03-13 17:13 - 000004570 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier 2019-10-09 16:38 - 2017-04-06 20:22 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe 2019-10-09 16:38 - 2017-04-06 20:22 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2019-10-09 16:38 - 2017-04-06 20:22 - 000004424 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater 2019-10-09 16:38 - 2017-04-06 20:22 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2019-10-09 16:38 - 2017-04-06 20:22 - 000000000 ____D C:\Windows\system32\Macromed 2019-10-08 15:58 - 2018-05-02 14:15 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2019-10-08 15:58 - 2018-05-02 14:15 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2019-10-08 15:58 - 2018-05-02 14:15 - 000000000 ____D C:\Program Files (x86)\Google 2019-10-05 09:23 - 2019-09-23 10:07 - 000001005 _____ C:\Users\Public\Desktop\The Sims 4.lnk 2019-10-05 09:15 - 2019-09-23 10:32 - 000000000 ____D C:\Program Files (x86)\Origin Games 2019-10-04 18:18 - 2019-09-22 09:17 - 000000000 ____D C:\Users\Kama\AppData\Local\WallpaperSuite 2019-10-02 20:22 - 2018-06-28 14:58 - 000000000 ____D C:\Users\komp\Desktop\Filmy 2019-10-02 20:01 - 2017-03-14 08:40 - 000000000 ____D C:\Users\komp\Desktop\Muzyka 2019-09-29 08:23 - 2019-06-26 08:19 - 000000000 ____D C:\Users\komp\Desktop\Nowe ==================== Pliki w katalogu głównym wybranych folderów ================ 2019-09-22 09:27 - 2019-09-22 09:27 - 063388184 _____ (Electronic Arts) C:\Users\Kama\origin-10-5-47-29954.exe 2018-03-03 00:27 - 2018-03-03 00:27 - 000140800 _____ () C:\Users\komp\AppData\Local\installer.dat 2018-12-09 09:34 - 2018-12-09 09:34 - 000000000 _____ () C:\Users\komp\AppData\Local\{1CDA0B3F-CBB3-4E65-ABE3-4552A0267520} ==================== SigCheck =============================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2019-10-04 14:59 ==================== Koniec FRST.txt ============================