Witam, zrobilm tak jak napisales ale nie pomoglo za wiele. Pierwsze 5 minut chodzil normalnie ale wrocilo spowrotem te 100% uzycia procesora
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-03-2020
Ran by TOSHIBA (administrator) on DESKTOP-O99CH2R (TOSHIBA SATELLITE PRO C850-1FN) (25-03-2020 18:54:04)
Running from C:\Users\TOSHIBA\Downloads
Loaded Profiles: TOSHIBA (Available Profiles: TOSHIBA)
Platform: Windows 10 Home Version 1903 18362.592 (X64) Language: Angielski (Zjednoczone Królestwo)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Chromium.) [File not signed] C:\Program Files (x86)\Chromium\Update\ChromiumUpdate.exe
(Digital Communications Inc. - & gt; Digital Communications Inc) C:\Program Files (x86)\Segurazo\SegurazoIC.exe
(Google LLC - & gt; Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC - & gt; Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20212.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20022.11011.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher - & gt; Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MsMpEng.exe
(Microsoft Windows Publisher - & gt; Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\NisSrv.exe
(Realtek Semiconductor Corp - & gt; Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp - & gt; Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp - & gt; Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Synaptics Incorporated - & gt; Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated - & gt; Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated - & gt; Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13196432 2012-09-27] (Realtek Semiconductor Corp - & gt; Realtek Semiconductor)
HKU\S-1-5-21-801835961-1651795148-995800003-1001\...\Run: [Wargaming.net Game Center] = & gt; C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2417528 2020-03-24] (Wargaming.net Limited - & gt; Wargaming.net)
HKU\S-1-5-21-801835961-1651795148-995800003-1001\...\Run: [Chromium] = & gt; " c:\users\toshiba\appdata\local\chromium\application\chrome.exe " --auto-launch-at-startup --profile-directory= " Default " --restore-last-session
HKU\S-1-5-21-801835961-1651795148-995800003-1001\...\MountPoints2: {dec9b498-45fd-11ea-8254-20689df44b97} - " F:\HiSuiteDownLoader.exe "
HKU\S-1-5-21-801835961-1651795148-995800003-1001\...\MountPoints2: {f0c21441-ef92-11e9-8211-20689df44b97} - " F:\HiSuiteDownLoader.exe "
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-21] (Google LLC - & gt; Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1715EFC8-0959-4FF4-AABF-C2359029CCB0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup = & gt; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-25] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {2BE7D8CD-FDC5-403B-9C79-8AA40E2EF513} - System32\Tasks\ChromiumUpdateTaskMachineCore = & gt; C:\Program Files (x86)\Chromium\Update\ChromiumUpdate.exe [102400 2019-12-08] (Chromium.) [File not signed]
Task: {3579BC16-2FA0-4C10-9357-EC1B77CD64EB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification = & gt; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-25] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {661EBB6E-CAB7-4F3E-9BE6-AA4C23056D24} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance = & gt; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-25] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {8DA1591D-D66F-42A4-AF5D-8FEAD7FA392D} - System32\Tasks\Adobe Flash Player PPAPI Notifier = & gt; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_pepper.exe [1453624 2020-03-21] (Adobe Inc. - & gt; Adobe)
Task: {A51304B8-2DAB-4C7B-8B03-EAAD730A96E5} - System32\Tasks\Adobe Flash Player Updater = & gt; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-03-21] (Adobe Inc. - & gt; Adobe)
Task: {A617E51E-9B86-478D-A0FE-C8BD0388A9C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan = & gt; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MpCmdRun.exe [480272 2020-03-25] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {DEFAD7C9-2748-4662-86C5-EAC51DB3F834} - System32\Tasks\GoogleUpdateTaskMachineCore = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-12] (Google Inc - & gt; Google LLC)
Task: {F6C0CC11-9748-4504-BD10-FB3788AB6D2B} - System32\Tasks\ChromiumUpdateTaskMachineUA = & gt; C:\Program Files (x86)\Chromium\Update\ChromiumUpdate.exe [102400 2019-12-08] (Chromium.) [File not signed]
Task: {F7BC2760-1760-4A84-8F9E-A6BEB96F88B4} - System32\Tasks\GoogleUpdateTaskMachineUA = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-12] (Google Inc - & gt; Google LLC)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{847bd428-54e7-4daa-a056-1261e53c8ee4}: [DhcpNameServer] 192.168.8.1
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1 & PC=IC05 & PTAG=ICO-1da1eb06dfbe79d9
HKU\S-1-5-21-801835961-1651795148-995800003-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1 & PC=IC05 & PTAG=ICO-1da1eb06dfbe79d9
SearchScopes: HKU\S-1-5-21-801835961-1651795148-995800003-1001 - & gt; DefaultScope {412884FF-6E3A-4FF0-8BE6-D13070F576F2} URL = hxxp://www.view-search.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-801835961-1651795148-995800003-1001 - & gt; {0CE02FFA-A6B0-46F6-BA2F-BD32C3630126} URL = hxxps://uk.search.yahoo.com/yhs/search?hspart=iry & hsimp=yhs-fullyhosted_003 & type=wnd_kposyyky05sl5_19_49_dopc & param1=1 & param2=f%3D4%26b%3DIE%26cc%3Dgb%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1QzuyBtDyDyE0DtBtAtCtAzztA0E0ByCyEtCtN0D0Tzu0StBzzzytBtN1L2XzuyEtFyDyBtFtDtFzyyBtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StC0AyC0E0Fzy0CyCtGtDzzyC0FtG0AtByEtBtGtByE0EyDtGyEyDyCzzyCtAzz0CyB0FtD0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy1Q1QtDtDzy1PyEtG1S1R1QzztGyEzy1P1TtGzzzztCtAtGyEtDtByB1RzytAtDyDyEzy1P2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDyByDtByByEyBzzyD%26cr%3D889329209%26a%3Dwnd_kposyyky05sl5_19_49_dopc%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome & p={searchTerms}
SearchScopes: HKU\S-1-5-21-801835961-1651795148-995800003-1001 - & gt; {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://uk.search.yahoo.com/yhs/search?hspart=iry & hsimp=yhs-fullyhosted_003 & type=wsg_kposyyky05sl5_19_49_ssg00 & param1=1 & param2=f%3D4%26b%3DIE%26cc%3Dgb%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyBtDyDyE0DtBtAtCtAzztA0E0ByCyEtCtN0D0Tzu0StBzzzyzztN1L2XzuyEtFyDyBtFtDtFtCtDyDtN1L1Czu1BtCtN1L1G1B1V1N2Y1L1Qzu2StC0D0F0B0AyD0EtBtGyCyBtAtAtGyEtAyCyDtGtDtB0CyCtGtByEyEyEtDtB0B0AyEzyyDzy2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy1Q1QtDtDzy1PyEtG1S1R1QzztGyEzy1P1TtGzzzztCtAtGyEtDtByB1RzytAtDyDyEzy1P2QtN0A0LzuyEtN1B2Z1V1T1S1NzutByEyCtAtAtN1Q2Z1B1P1RzutCyDyByDzztAtAzytCyD%26cr%3D1918117205%26a%3Dwsg_kposyyky05sl5_19_49_ssg00%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome & p={searchTerms}
SearchScopes: HKU\S-1-5-21-801835961-1651795148-995800003-1001 - & gt; {412884FF-6E3A-4FF0-8BE6-D13070F576F2} URL = hxxp://www.view-search.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-801835961-1651795148-995800003-1001 - & gt; {bce42d98-b1cd-493f-a64c-107aae7521be} URL = hxxp://www.bing.com/search?FORM=INCOH2 & PC=IC05 & PTAG=ICO-1da1eb06dfbe79d9 & q={searchTerms}
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-801835961-1651795148-995800003-1001 - & gt; hxxp://www.view-search.com/
FireFox:
========
FF DefaultProfile: qeqot4j1.default
FF ProfilePath: C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\qeqot4j1.default [2020-01-15]
FF ProfilePath: C:\Users\TOSHIBA\AppData\Roaming\Mozilla\Firefox\Profiles\dag3ihx7.default-release [2020-01-15]
FF Plugin-x32: @chbrowserupdate.com/Chromium Update;version=3 - & gt; C:\Program Files (x86)\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [2019-12-08] (Chromium.) [File not signed]
FF Plugin-x32: @chbrowserupdate.com/Chromium Update;version=9 - & gt; C:\Program Files (x86)\Chromium\Update\1.3.99.0\npChromiumUpdate3.dll [2019-12-08] (Chromium.) [File not signed]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default [2020-03-25]
CHR HomePage: Default - & gt; hxxp://www.view-search.com/
CHR StartupUrls: Default - & gt; " hxxp://www.view-search.com/ "
CHR NewTab: Default - & gt; Not-active: " chrome-extension://hfamgdphmadpbopjpnjeclijgabhmeml/index.html " , Not-active: " chrome-extension://bhoagceacaklimpcejjofabngcjkebfg/index.html "
CHR DefaultSearchURL: Default - & gt; hxxp://www.view-search.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default - & gt; search
CHR Extension: (Prezentacje) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-12]
CHR Extension: (Dokumenty) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-12]
CHR Extension: (Dysk Google) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-10-12]
CHR Extension: (Search Manager) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhoagceacaklimpcejjofabngcjkebfg [2019-12-02]
CHR Extension: (YouTube) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-12]
CHR Extension: (Search Selector B) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\decldcimcihaomcidlpnlfgebmjafkcg [2020-03-25]
CHR Extension: (Arkusze) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-25]
CHR Extension: (Web Start) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfamgdphmadpbopjpnjeclijgabhmeml [2020-03-02]
CHR Extension: (Awesome Music Search) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\llghpgbjbahdjbdemlognkcemgigdcpa [2020-01-24]
CHR Extension: (Search Manager) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nccfgpamboionigdpfjmijhlgmgdbael [2019-12-02]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-12]
CHR Extension: (Gmail) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-12]
CHR Extension: (Chrome Media Router) - C:\Users\TOSHIBA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-25]
CHR HKLM\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg]
CHR HKLM\...\Chrome\Extension: [decldcimcihaomcidlpnlfgebmjafkcg]
CHR HKLM\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael]
CHR HKU\S-1-5-21-801835961-1651795148-995800003-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg]
CHR HKU\S-1-5-21-801835961-1651795148-995800003-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [decldcimcihaomcidlpnlfgebmjafkcg]
CHR HKU\S-1-5-21-801835961-1651795148-995800003-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael]
CHR HKLM-x32\...\Chrome\Extension: [bhoagceacaklimpcejjofabngcjkebfg]
CHR HKLM-x32\...\Chrome\Extension: [decldcimcihaomcidlpnlfgebmjafkcg]
CHR HKLM-x32\...\Chrome\Extension: [nccfgpamboionigdpfjmijhlgmgdbael]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
" SegurazoIC " = & gt; service was unlocked. & lt; ==== ATTENTION
S2 chromium; C:\Program Files (x86)\Chromium\Update\ChromiumUpdate.exe [102400 2019-12-08] (Chromium.) [File not signed]
S3 chromiumm; C:\Program Files (x86)\Chromium\Update\ChromiumUpdate.exe [102400 2019-12-08] (Chromium.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [201360 2012-09-27] (Realtek Semiconductor Corp - & gt; Realtek Semiconductor)
R2 SegurazoIC; C:\Program Files (x86)\Segurazo\SegurazoIC.exe [4471400 2019-10-13] (Digital Communications Inc. - & gt; Digital Communications Inc) & lt; ==== ATTENTION
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-05-04] (Synaptics Incorporated - & gt; Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-03-25] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-03-25] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\WINDOWS\System32\drivers\athw8x.sys [4233728 2019-03-19] (Microsoft Windows - & gt; Qualcomm Atheros Communications, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [136040 2019-09-26] (Samsung Electronics Co., Ltd. - & gt; Samsung Electronics Co., Ltd.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [662528 2019-03-19] (Microsoft Windows - & gt; Realtek )
R1 SEGURAZOKD; C:\Program Files (x86)\Segurazo\SegurazoKD.sys [84256 2019-10-02] (Digital Communications Inc. - & gt; Digital Communications Inc) & lt; ==== ATTENTION
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [47816 2019-04-29] (Dynabook Inc. - & gt; Dynabook Inc.)
R3 tosrfec; C:\WINDOWS\System32\drivers\tosrfec.sys [37808 2019-04-30] (Dynabook Inc. - & gt; Dynabook Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-03-25] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [391392 2020-03-25] (Microsoft Windows - & gt; Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-25] (Microsoft Windows - & gt; Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)