ADVERTISEMENT

FRST.txt

Reklamy i przekierowania w Chrome - logi FRST do analizy

Hej, cos mi sie pobralo i wyskakuja mi co chwile strony w google chrome. Wstawiam log z FRST. Wczesniej czyscilem adwcleaner, ale nic nie pomoglo. Dzieki za pomoc z gory


Download file - link to post

Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 19-05.2019
Uruchomiony przez Vasquito (administrator) DESKTOP-MJKONRF (Micro-Star International Co., Ltd. MS-7A34) (20-05-2019 22:06:39)
Uruchomiony z C:\Users\Vasquito\Downloads
Załadowane profile: Vasquito (Dostępne profile: Vasquito)
Platform: Windows 10 Pro Wersja 1803 17134.285 (X64) Język: Polski (Polska)
Domyślna przeglądarka: Chrome
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

( ) [Brak podpisu cyfrowego] C:\Users\Vasquito\AppData\Local\Temp\is-B9THU.tmp\BOxfiire.exe
( ) [Brak podpisu cyfrowego] C:\Users\Vasquito\AppData\Roaming\04ippmtejm4\qixyxk4xziy.exe
( ) [Brak podpisu cyfrowego] C:\Users\Vasquito\AppData\Roaming\mgw3oja2hn1\bchoay2swr2.exe
( ) [Brak podpisu cyfrowego] C:\Users\Vasquito\AppData\Roaming\y0yye1s3dhh\3ewcrry222r.exe
( ) [Brak podpisu cyfrowego] C:\Users\Vasquito\AppData\Roaming\y0yye1s3dhh\3ewcrry222r.exe
() [Brak podpisu cyfrowego] C:\Program Files (x86)\MachinerData\ModularInstaller.exe
() [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [Brak podpisu cyfrowego] C:\Users\Vasquito\AppData\Local\App\svchost.exe
() [Brak podpisu cyfrowego] C:\Users\Vasquito\AppData\Local\Temp\is-5MAM9.tmp\BOxfiire.tmp
() [Brak podpisu cyfrowego] C:\Users\Vasquito\AppData\Local\Temp\is-FDQHT.tmp\3ewcrry222r.tmp
() [Brak podpisu cyfrowego] C:\Users\Vasquito\AppData\Local\Temp\is-GEQ9H.tmp\qixyxk4xziy.tmp
() [Brak podpisu cyfrowego] C:\Users\Vasquito\AppData\Local\Temp\is-I7OHM.tmp\bchoay2swr2.tmp
() [Brak podpisu cyfrowego] C:\Users\Vasquito\AppData\Local\Temp\is-J3MRC.tmp\3ewcrry222r.tmp
(9) [Brak podpisu cyfrowego] C:\Program Files\7M1EVCLTRI\7M1EVCLTR.exe
(9) [Brak podpisu cyfrowego] C:\Program Files\JLII4XS6YZ\JLII4XS6Y.exe
(9) [Brak podpisu cyfrowego] C:\Program Files\JLII4XS6YZ\JLII4XS6Y.exe
(9) [Brak podpisu cyfrowego] C:\Program Files\VMZL6YMT9X\VMZL6YMT9.exe
(AAA Internet Publishing, Inc. - & gt; AAA Internet Publishing, Inc.) C:\Program Files (x86)\WTFast\WTFast.exe
(Advanced Micro Devices, Inc. - & gt; AMD) C:\Windows\System32\DriverStore\FileRepository\c0331834.inf_amd64_598c38be6d6a3fce\B331820\atieclxx.exe
(Advanced Micro Devices, Inc. - & gt; AMD) C:\Windows\System32\DriverStore\FileRepository\c0331834.inf_amd64_598c38be6d6a3fce\B331820\atiesrxx.exe
(AVB Disc Soft, SIA - & gt; Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA - & gt; Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(AVB Disc Soft, SIA - & gt; Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(A-Volute - & gt; ) C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe
(A-Volute - & gt; ) C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe
(A-Volute - & gt; A-Volute) C:\Program Files\Nahimic\Nahimic VR\Foundation\NahimicVRSvc32.exe
(A-Volute - & gt; A-Volute) C:\Program Files\Nahimic\Nahimic VR\Foundation\x64\NahimicVRSvc64.exe
(A-Volute - & gt; Nahimic) C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe
(BitTorrent Inc - & gt; BitTorrent Inc.) C:\Users\Vasquito\AppData\Roaming\uTorrent\helper\helper.exe
(BitTorrent Inc - & gt; BitTorrent Inc.) C:\Users\Vasquito\AppData\Roaming\uTorrent\updates\3.5.5_45231\utorrentie.exe
(BitTorrent Inc - & gt; BitTorrent Inc.) C:\Users\Vasquito\AppData\Roaming\uTorrent\updates\3.5.5_45231\utorrentie.exe
(BitTorrent Inc - & gt; BitTorrent Inc.) C:\Users\Vasquito\AppData\Roaming\uTorrent\uTorrent.exe
(Dynamic Digital Depth Australia Pty Ltd - & gt; DDD Group Plc.) C:\Program Files (x86)\TriDef\SmartCam\TriDefSmartCamService64.exe
(EasyAntiCheat Oy - & gt; EasyAntiCheat Ltd) C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
(Electronic Arts, Inc. - & gt; ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. - & gt; ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. - & gt; Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. - & gt; Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Electronic Arts, Inc. - & gt; Respawn Entertainment) C:\Program Files (x86)\Origin Games\Apex\r5apex.exe
(Epic Games Inc. - & gt; Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. - & gt; Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. - & gt; Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Files) [Brak podpisu cyfrowego] C:\Program Files (x86)\Calculator\377740154.exe
(Google Inc - & gt; Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc - & gt; Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC - & gt; Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc. - & gt; McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, Inc. - & gt; McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Users\Vasquito\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.) C:\MSI\MSI Gaming Lan Manager\MSI_Gaming_Lan_Manager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NahimicMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\RAMDisk\MSI_RAMDisk_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI) C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI) C:\Windows\SysWOW64\muachost.exe
(Micro-Star Int'l Co., Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\Gaming APP\MSI_LED.exe
(Opera Software AS - & gt; Opera Software) C:\Users\Vasquito\AppData\Local\Programs\Opera\58.0.3135.132\opera_autoupdate.exe
(Opera Software AS - & gt; Opera Software) C:\Users\Vasquito\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
(Piriform Ltd - & gt; Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe

==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [SecurityHealth] = & gt; C:\Program Files\Windows Defender\MSASCuiL.exe [193024 2018-10-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
HKLM\...\Run: [AvastUI.exe] = & gt; " C:\Program Files\AVAST Software\Avast\AvLaunch.exe " /gui
HKLM\...\Run: [NahimicVRSvc32] = & gt; C:\Program Files\Nahimic\Nahimic VR\Foundation\NahimicVRSvc32.exe [990392 2017-08-07] (A-Volute - & gt; A-Volute)
HKLM\...\Run: [NahimicVRSvc64] = & gt; C:\Program Files\Nahimic\Nahimic VR\Foundation\x64\NahimicVRSvc64.exe [1142456 2017-08-07] (A-Volute - & gt; A-Volute)
HKLM\...\Run: [RTHDVCPL] = & gt; C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235944 2017-08-31] (Realtek Semiconductor Corp. - & gt; Realtek Semiconductor)
HKLM\...\Run: [Nahimic2UILauncher] = & gt; C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [734392 2017-08-09] (A-Volute - & gt; Nahimic)
HKLM\...\Run: [winlogui] = & gt; C:\Windows\system32\winlogui.exe [1803776 2019-02-27] (Microsoft Corporation) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [Command Center] = & gt; C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835768 2017-09-08] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
HKLM-x32\...\Run: [MSI Gaming Lan Manager] = & gt; C:\MSI\MSI Gaming Lan Manager\MSI_Gaming_Lan_Manager.exe [4503200 2017-09-01] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [X_Boost] = & gt; C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe [4226720 2017-09-11] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Super Charger] = & gt; C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1022928 2017-07-28] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
HKLM\...\RunOnce: [hi2x0x5x3p2] = & gt; C:\Program Files (x86)\Calculator\377740154.exe [673792 2019-05-20] (Files) [Brak podpisu cyfrowego]
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia & lt; ==== UWAGA
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [uTorrent] = & gt; C:\Users\Vasquito\AppData\Roaming\uTorrent\uTorrent.exe [1996008 2019-05-10] (BitTorrent Inc - & gt; BitTorrent Inc.)
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [EpicGamesLauncher] = & gt; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35211664 2019-05-10] (Epic Games Inc. - & gt; Epic Games, Inc.)
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [WTFast Tray] = & gt; C:\Program Files (x86)\WTFast\WTFast.exe [7381000 2016-02-23] (AAA Internet Publishing, Inc. - & gt; AAA Internet Publishing, Inc.)
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [DAEMON Tools Lite Automount] = & gt; C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-08-22] (AVB Disc Soft, SIA - & gt; Disc Soft Ltd)
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [World of Tanks] = & gt; " C:\Games\World_of_Tanks\WargamingGameUpdater.exe "
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [Opera Browser Assistant] = & gt; C:\Users\Vasquito\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [2264152 2019-01-03] (Opera Software AS - & gt; Opera Software)
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [App] = & gt; C:\Users\Vasquito\AppData\Local\App\svchost.exe [589824 2019-05-20] () [Brak podpisu cyfrowego] & lt; ==== UWAGA
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [1869322] = & gt; C:\Users\Vasquito\AppData\Local\Temp\is-B9THU.tmp\BOxfiire.exe [8980731 2019-05-19] ( ) [Brak podpisu cyfrowego] & lt; ==== UWAGA
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [5VSNNRWJ7OLFZMD] = & gt; C:\Program Files\7M1EVCLTRI\7M1EVCLTR.exe [1376256 2019-05-20] (9) [Brak podpisu cyfrowego]
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [4967631] = & gt; C:\Users\Vasquito\AppData\Roaming\mgw3oja2hn1\bchoay2swr2.exe [8980731 2019-05-20] ( ) [Brak podpisu cyfrowego]
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [TWRUZDXJP3BD6Z4] = & gt; C:\Program Files\VMZL6YMT9X\VMZL6YMT9.exe [1376256 2019-05-20] (9) [Brak podpisu cyfrowego]
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [3798238] = & gt; C:\Users\Vasquito\AppData\Roaming\04ippmtejm4\qixyxk4xziy.exe [8980731 2019-05-20] ( ) [Brak podpisu cyfrowego]
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [CCleaner Monitoring] = & gt; C:\Program Files\CCleaner\CCleaner64.exe [18534016 2018-07-20] (Piriform Ltd - & gt; Piriform Ltd)
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [D9LPH7ZQRHAJ6VQ] = & gt; C:\Program Files\JLII4XS6YZ\JLII4XS6Y.exe [1376256 2019-05-20] (9) [Brak podpisu cyfrowego]
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\Run: [6855753] = & gt; C:\Users\Vasquito\AppData\Roaming\y0yye1s3dhh\3ewcrry222r.exe [8980731 2019-05-20] ( ) [Brak podpisu cyfrowego]
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\RunOnce: [Application Restart #2] = & gt; C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\...\MountPoints2: {2eaa2170-b8d5-11e8-a5e3-309c238619e4} - " G:\setup.exe "
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\Control Panel\Desktop\\SCRNSAVE.EXE - & gt; C:\Windows\system32\Bubbles.scr [804352 2018-04-12] (Microsoft Windows - & gt; Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.FPS1] = & gt; C:\Windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Brak podpisu cyfrowego]
HKLM\...\Drivers32: [VIDC.FPS1] = & gt; C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Brak podpisu cyfrowego]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.157\Installer\chrmstp.exe [2019-05-17] (Google LLC - & gt; Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; " C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\Installer\chrmstp.exe " --configure-user-settings --verbose-logging --system-level
GroupPolicy: Ograniczenia - Chrome & lt; ==== UWAGA
CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia & lt; ==== UWAGA

==================== Zaplanowane zadania (filtrowane) =============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {06E70978-EB3F-41DA-AE2F-C4CF470D09F2} - System32\Tasks\Driver Easy Scheduled Scan = & gt; C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3443568 2018-07-26] (Easeware Technology Limited - & gt; Easeware)
Task: {0FFE4963-9C27-429D-B869-B10A1677F7F6} - System32\Tasks\Avast Emergency Update = & gt; C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {142AF7AC-B985-4087-A65B-F1A426A7DEA6} - System32\Tasks\Opera scheduled Autoupdate 1541366535 = & gt; C:\Users\Vasquito\AppData\Local\Programs\Opera\launcher.exe [1465432 2019-04-21] (Opera Software AS - & gt; Opera Software)
Task: {2093162B-A124-464B-82B5-B142B8E84B87} - System32\Tasks\GoogleUpdateTaskMachineCore = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-08] (Google Inc - & gt; Google Inc.)
Task: {2318DDD6-363C-4A77-BC69-FD929B9C07B6} - System32\Tasks\CCleanerSkipUAC = & gt; C:\Program Files\CCleaner\CCleaner.exe [13684416 2018-07-20] (Piriform Ltd - & gt; Piriform Ltd)
Task: {2903AAD0-636B-4AFD-864D-37B49CDAEB82} - System32\Tasks\Microsoft\Windows\MemDiag = & gt; C:\Windows\system32\mdres.exe [86528 2018-04-12] (Microsoft Windows - & gt; Microsoft Corporation)
Task: {2A994054-7D24-4C6C-B7D1-0DF0AB45A436} - System32\Tasks\Microsoft\Windows\WDI\SrvHost = & gt; rundll32.exe winscomrssrv.dll,SrvMainHost & lt; ==== UWAGA
Task: {52817DEB-1F9A-4A81-ACE1-ABDFA4BC7750} - System32\Tasks\MSIOSDx64_Host = & gt; C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe [37536 2017-09-05] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.)
Task: {53B72C85-5FD0-4C40-852F-6705EB541535} - System32\Tasks\Avast Software\Overseer = & gt; C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-04-03] (AVAST Software s.r.o. - & gt; AVAST Software)
Task: {6C51FBDE-B2A7-44BD-8731-2EB467B38DFA} - System32\Tasks\Nahimic2UILauncherRun = & gt; C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [734392 2017-08-09] (A-Volute - & gt; Nahimic)
Task: {74576399-9190-4BBF-B845-1E941C5BE235} - System32\Tasks\MSIOSDx86_Host = & gt; C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe [38560 2017-09-05] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.)
Task: {99BA4066-9192-4635-94DF-6517A361E49C} - System32\Tasks\MSIGH_Host = & gt; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3349968 2017-06-23] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.)
Task: {A1FF6511-19FD-49F1-B56F-8C8259F63E87} - System32\Tasks\StartCN = & gt; C:\Program Files\AMD\CNext\CNext\cncmd.exe [49544 2018-08-02] (Advanced Micro Devices, Inc. - & gt; Advanced Micro Devices, Inc.)
Task: {A63852B1-4CC5-48A6-8877-3B0B3B90B9B2} - System32\Tasks\NahimicVRSvc32Run = & gt; C:\Program Files\Nahimic\Nahimic VR\Foundation\NahimicVRSvc32.exe [990392 2017-08-07] (A-Volute - & gt; A-Volute)
Task: {AA5AD39D-E2FF-4DA8-826F-DBFFA6516D33} - System32\Tasks\Opera scheduled assistant Autoupdate 1547499594 = & gt; C:\Users\Vasquito\AppData\Local\Programs\Opera\launcher.exe [1465432 2019-04-21] (Opera Software AS - & gt; Opera Software)
Task: {C55A89B0-F64D-463A-9BDD-4821ECB96C5E} - System32\Tasks\NahimicVRSvc64Run = & gt; C:\Program Files\Nahimic\Nahimic VR\Foundation\x64\NahimicVRSvc64.exe [1142456 2017-08-07] (A-Volute - & gt; A-Volute)
Task: {C58ED793-9DE1-4DDD-9EB2-4FE2C458E5AA} - System32\Tasks\Nahimic2Svc64Run = & gt; C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe [520376 2017-08-09] (A-Volute - & gt; )
Task: {CB8D4580-9394-4BF9-B144-261C14972D83} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary = & gt; rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary & lt; ==== UWAGA
Task: {CD5DC15D-29BD-4267-AE66-EBF13FED94E3} - System32\Tasks\CCleaner Update = & gt; C:\Program Files\CCleaner\CCUpdate.exe [535312 2018-07-20] (Piriform Ltd - & gt; Piriform Ltd)
Task: {D2B55BB7-4928-449C-91B8-2FE6D3A2C2E7} - System32\Tasks\StartDVR = & gt; C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [69512 2018-08-02] (Advanced Micro Devices, Inc. - & gt; Advanced Micro Devices, Inc.)
Task: {E77889A2-1E23-4547-AF09-254EDF587593} - System32\Tasks\GoogleUpdateTaskMachineUA = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-08] (Google Inc - & gt; Google Inc.)
Task: {E798C16D-670C-4FF8-8AF9-D8E66A85C0F8} - System32\Tasks\Nahimic2Svc32Run = & gt; C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe [4412088 2017-08-09] (A-Volute - & gt; )
Task: {EBCE9529-2084-4239-B4BF-4153239D5FBB} - System32\Tasks\MSISW_Host = & gt; C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job = & gt; C:\Windows\explorer.exe
Task: C:\Windows\Tasks\Driver Easy Scheduled Scan.job = & gt; C:\Program Files\Easeware\DriverEasy\DriverEasy.exe

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\Parameters: [DhcpNameServer] 217.172.224.160 89.231.1.206
Tcpip\..\Interfaces\{af4d0612-ee30-417b-abca-3e5cd66b9ced}: [DhcpNameServer] 217.172.224.160 89.231.1.206

Internet Explorer:
==================
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoGk3GzeHhcr-ccZ8pRjWbegMFgkcpuit_SPwNNDhLvajYKETdW1wxyWjeosQSh5G5xxQsfxYW-omrErc-qXlkPiIpmgzPhmDzO_WAhWKg0ew8D6e-tEkr_kjTZH77IoLCK6NyvOgIBqmaRW-HGArsZCT5Hcw-orROWZmdKLsDwjk & q={searchTerms}
HKU\S-1-5-21-4276445531-638447664-1439027332-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoGk3GzeHhcr-ccZ8pRjWbegMFgkcpuit_SPwNNDhLvajYKETdW1wxyWjeosQSh5G5xxQsfxYW-omrErQMc0XXo7wV5iEQYQaGqOKZDZkpO72QwblU4IRBeA8oE81AY9IXjBupzqmoTZfXIKagZc52ScAY3eAptpxBerj5yEAzJL0
SearchScopes: HKLM-x32 - & gt; DefaultScope - brak wartości
BHO: McAfee WebAdvisor - & gt; {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - & gt; C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-03-02] (McAfee, Inc. - & gt; McAfee, Inc.)
BHO-x32: McAfee WebAdvisor - & gt; {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - & gt; C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-03-02] (McAfee, Inc. - & gt; McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll Brak pliku

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-04-24]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin-x32: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc - & gt; Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc - & gt; Google LLC)

Chrome:
=======
CHR HomePage: Default - & gt; hxxps://www.google.com/
CHR StartupUrls: Default - & gt; " hxxp://google.pl/ "
CHR Profile: C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default [2019-05-20]
CHR Extension: (Prezentacje) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-08-05]
CHR Extension: (Dokumenty) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-05]
CHR Extension: (Dysk Google) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-08-05]
CHR Extension: (YouTube) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-05]
CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-04-27]
CHR Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-02-27]
CHR Extension: (Arkusze) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-08-05]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2019-04-27]
CHR Extension: (Dokumenty Google offline) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-05]
CHR Extension: (Gmail) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\Vasquito\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-05]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AMD External Events Utility; C:\Windows\System32\DriverStore\FileRepository\c0331834.inf_amd64_598c38be6d6a3fce\B331820\atiesrxx.exe [505320 2018-08-03] (Advanced Micro Devices, Inc. - & gt; AMD)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8348064 2018-12-19] (BattlEye Innovations e.K. - & gt; )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3729512 2018-08-22] (AVB Disc Soft, SIA - & gt; Disc Soft Ltd)
R3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2019-02-04] (EasyAntiCheat Oy - & gt; EasyAntiCheat Ltd)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [47056 2017-08-23] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2019792 2016-10-13] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.)
R2 Main Service; C:\Program Files (x86)\MachinerData\ModularInstaller.exe [2701312 2019-05-20] () [Brak podpisu cyfrowego]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [899640 2019-03-02] (McAfee, Inc. - & gt; McAfee, Inc.)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [2108600 2017-09-01] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2347704 2017-08-31] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4054200 2017-09-01] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2247352 2017-08-31] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
R2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2489016 2017-09-04] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2017-08-31] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [4848312 2017-08-31] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [83616 2017-09-11] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star INT'L CO., LTD.)
R2 MSI_RAMDisk_Service; C:\Program Files (x86)\MSI\RAMDisk\MSI_RAMDisk_Service.exe [71864 2017-09-15] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; Micro-Star Int'l Co., Ltd.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [174032 2017-07-28] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2303792 2019-04-22] (Electronic Arts, Inc. - & gt; Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3175216 2019-04-22] (Electronic Arts, Inc. - & gt; Electronic Arts)
R2 TriDefSmartCamService; c:\program files (x86)\tridef\smartcam\tridefsmartcamservice64.exe [11090400 2017-04-27] (Dynamic Digital Depth Australia Pty Ltd - & gt; DDD Group Plc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-08-08] (Microsoft Corporation - & gt; Microsoft Corporation)
S3 aswbIDSAgent; " C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe " [X]
S2 avast! Antivirus; " C:\Program Files\AVAST Software\Avast\AvastSvc.exe " [X]
S3 AvastWscReporter; " C:\Program Files\AVAST Software\Avast\wsc_proxy.exe " /runassvc [X]
S2 cFosSpeedS; " C:\Program Files\cFosSpeed\spd.exe " -service [X]

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [43400 2017-03-01] (Advanced Micro Devices Inc. - & gt; Advanced Micro Devices, Inc)
R3 amdkmdag; C:\Windows\System32\DriverStore\FileRepository\c0331834.inf_amd64_598c38be6d6a3fce\B331820\atikmdag.sys [46792680 2018-08-03] (Advanced Micro Devices, Inc. - & gt; Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DriverStore\FileRepository\c0331834.inf_amd64_598c38be6d6a3fce\B331820\atikmpag.sys [587752 2018-08-03] (Advanced Micro Devices, Inc. - & gt; Advanced Micro Devices, Inc.)
R1 amdpsp; C:\Windows\system32\DRIVERS\amdpsp.sys [239976 2017-06-12] (Advanced Micro Devices Inc. - & gt; Advanced Micro Devices, Inc. )
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [199712 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [229384 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201320 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346664 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59568 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [15360 2018-08-08] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [249016 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46968 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [163392 2018-09-11] (AVAST Software s.r.o. - & gt; AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111864 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87904 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1027720 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [467320 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215920 2018-09-12] (AVAST Software s.r.o. - & gt; AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [381560 2018-09-04] (AVAST Software s.r.o. - & gt; AVAST Software)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [107496 2018-07-17] (Microsoft Windows Hardware Compatibility Publisher - & gt; Advanced Micro Devices)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2018-08-22] (Disc Soft Ltd - & gt; Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2018-08-22] (Disc Soft Ltd - & gt; Disc Soft Ltd)
R3 EasyAntiCheatSys; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.sys [1012336 2019-05-20] (EasyAntiCheat Oy - & gt; EasyAntiCheat Oy)
R3 I2cHkBurn; C:\Windows\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology - & gt; FINTEK Corp.)
R3 NTIOLib_CC_DDR; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
R3 NTIOLib_MBAPI; C:\Program Files (x86)\MSI\Gaming APP\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; MSI)
R2 RAMDriv; C:\Windows\system32\DRIVERS\ramdriv.sys [86936 2016-03-10] (Christiaan GHIJSELINCK - & gt; Micro-Star Int'l Co., Ltd.)
R2 RAMDriv; C:\Windows\SysWOW64\DRIVERS\ramdriv.sys [86936 2016-03-10] (Christiaan GHIJSELINCK - & gt; Micro-Star Int'l Co., Ltd.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [984032 2017-06-05] (Realtek Semiconductor Corp. - & gt; Realtek )
S3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [25088 2015-04-14] (SteelSeries ApS - & gt; SteelSeries ApS)
R3 TriDefSmartCam; C:\Windows\system32\DRIVERS\TriDefSmartCam.sys [48304 2017-02-20] (Dynamic Digital Depth Australia Pty Ltd - & gt; DDD Group Plc.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [46584 2018-08-08] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [340008 2018-08-08] (Microsoft Windows - & gt; Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [61992 2018-08-08] (Microsoft Windows - & gt; Microsoft Corporation)
R2 WtfEngineDrv; C:\Windows\system32\DRIVERS\WtfEngineDrv.sys [27904 2016-02-01] (Initex - & gt; AAA Internet Publishing, Inc.)
S3 NTIOLib_DVDSetup; \??\D:\STEROWNIKI ITPMSI\NTIOLib_X64.sys [X]

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc (utworzone) ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2019-05-20 22:06 - 2019-05-20 22:07 - 000038271 _____ C:\Users\Vasquito\Downloads\FRST.txt
2019-05-20 22:06 - 2019-05-20 22:06 - 002435072 _____ (Farbar) C:\Users\Vasquito\Downloads\FRST64.exe
2019-05-20 22:06 - 2019-05-20 22:06 - 000000000 ____D C:\FRST
2019-05-20 22:04 - 2019-05-20 22:04 - 001793536 _____ (Farbar) C:\Users\Vasquito\Downloads\FRST.exe
2019-05-20 21:59 - 2019-05-20 21:59 - 000019680 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_987106369356.dll
2019-05-20 21:55 - 2019-05-20 21:55 - 000000266 __RSH C:\Users\Vasquito\ntuser.pol
2019-05-20 21:55 - 2019-05-20 21:55 - 000000000 ____D C:\Users\Vasquito\AppData\Roaming\y0yye1s3dhh
2019-05-20 21:55 - 2019-05-20 21:55 - 000000000 ____D C:\Program Files\JLII4XS6YZ
2019-05-20 21:54 - 2019-05-20 21:54 - 007025360 _____ (Malwarebytes) C:\Users\Vasquito\Downloads\adwcleaner_7.3 (1).exe
2019-05-20 21:53 - 2019-05-20 21:54 - 000000000 ____D C:\AdwCleaner
2019-05-20 21:52 - 2019-05-20 21:53 - 007025360 _____ (Malwarebytes) C:\Users\Vasquito\Downloads\adwcleaner_7.3.exe
2019-05-20 21:50 - 2019-05-20 21:50 - 000002876 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-05-20 21:48 - 2019-05-20 21:48 - 000000000 ____D C:\Users\Vasquito\AppData\Roaming\04ippmtejm4
2019-05-20 21:48 - 2019-05-20 21:48 - 000000000 ____D C:\Program Files\VMZL6YMT9X
2019-05-20 21:29 - 2019-05-20 21:29 - 000000000 ____D C:\ProgramData\Pader
2019-05-20 21:28 - 2019-05-20 21:29 - 000000000 ____D C:\Program Files (x86)\MachinerData
2019-05-20 21:28 - 2019-05-20 21:28 - 000000000 ____D C:\Users\Vasquito\AppData\Roaming\mgw3oja2hn1
2019-05-20 21:28 - 2019-05-20 21:28 - 000000000 ____D C:\ProgramData\{822A9040-63EA-2705-927E-86AB9299DFFA}
2019-05-20 21:28 - 2019-05-20 21:28 - 000000000 ____D C:\ProgramData\{0D377276-81DC-A818-A49C-9B24A47BC275}
2019-05-20 21:28 - 2019-05-20 21:28 - 000000000 ____D C:\Program Files\7M1EVCLTRI
2019-05-20 21:28 - 2019-05-20 21:28 - 000000000 ____D C:\Program Files (x86)\Calculator
2019-05-20 21:27 - 2019-05-20 21:27 - 001895383 _____ C:\Users\Vasquito\AppData\Local\Singsing.bin
2019-05-20 21:27 - 2019-05-20 21:27 - 000003270 __RSH C:\ProgramData\ntuser.pol
2019-05-20 21:27 - 2019-05-20 21:27 - 000000000 ____D C:\Users\Vasquito\AppData\Roaming\Mozilla
2019-05-20 21:27 - 2019-05-20 21:27 - 000000000 ____D C:\Users\Vasquito\AppData\Local\AdvinstAnalytics
2019-05-20 21:26 - 2019-05-20 21:46 - 000722944 _____ C:\Users\Vasquito\AppData\Local\sha.db
2019-05-20 21:26 - 2019-05-20 21:26 - 007936512 _____ C:\Users\Vasquito\AppData\Local\agent.dat
2019-05-20 21:26 - 2019-05-20 21:26 - 002038621 _____ C:\Users\Vasquito\AppData\Local\Round-Dom.tst
2019-05-20 21:26 - 2019-05-20 21:26 - 001446912 _____ (TODO: & lt; Company name & gt; ) C:\Users\Vasquito\AppData\Local\Round-Dom.exe
2019-05-20 21:26 - 2019-05-20 21:26 - 001446912 _____ (TODO: & lt; Company name & gt; ) C:\Users\Vasquito\AppData\Local\Haytam.exe
2019-05-20 21:26 - 2019-05-20 21:26 - 000140800 _____ C:\Users\Vasquito\AppData\Local\installer.dat
2019-05-20 21:26 - 2019-05-20 21:26 - 000126464 _____ C:\Users\Vasquito\AppData\Local\noah.dat
2019-05-20 21:26 - 2019-05-20 21:26 - 000126464 _____ C:\Users\Vasquito\AppData\Local\lobby.dat
2019-05-20 21:26 - 2019-05-20 21:26 - 000072787 _____ C:\Users\Vasquito\AppData\Local\Haytam.tst
2019-05-20 21:26 - 2019-05-20 21:26 - 000070992 _____ C:\Users\Vasquito\AppData\Local\Config.xml
2019-05-20 21:26 - 2019-05-20 21:26 - 000054272 _____ C:\Users\Vasquito\AppData\Local\ApplicationHosting.dat
2019-05-20 21:26 - 2019-05-20 21:26 - 000005568 _____ C:\Users\Vasquito\AppData\Local\md.xml
2019-05-20 21:26 - 2019-05-20 21:26 - 000000000 ____D C:\Users\Vasquito\AppData\Local\App
2019-05-20 18:58 - 2019-05-20 19:25 - 000000000 ____D C:\Users\Vasquito\Downloads\Sekiro Shadows Die Twice [2019] [CODEX] [MULTI]
2019-05-20 18:45 - 2019-05-20 18:45 - 000000000 ___HD C:\$Windows.~WS
2019-05-20 18:09 - 2019-05-20 18:42 - 000001908 _____ C:\Windows\diagwrn.xml
2019-05-20 18:09 - 2019-05-20 18:42 - 000001908 _____ C:\Windows\diagerr.xml
2019-05-20 18:09 - 2019-05-20 18:42 - 000000000 ___HD C:\$WINDOWS.~BT
2019-05-20 16:52 - 2019-05-20 19:27 - 000000000 ____D C:\ESD
2019-05-20 16:48 - 2019-05-20 16:48 - 019229160 _____ (Microsoft Corporation) C:\Users\Vasquito\Downloads\MediaCreationTool1809.exe
2019-05-05 22:48 - 2019-05-05 22:48 - 000000000 ____D C:\Users\Vasquito\Documents\WB Games
2019-05-05 22:48 - 2019-05-05 22:48 - 000000000 ____D C:\Users\Vasquito\Documents\CPY_SAVES
2019-04-29 19:04 - 2019-05-20 21:56 - 000000000 ____D C:\Users\Vasquito\AppData\LocalLow\uTorrent
2019-04-27 22:51 - 2019-04-27 22:51 - 000000000 ____D C:\Users\Vasquito\AppData\Roaming\Google

==================== Jeden miesiąc (zmodyfikowane) ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2019-05-20 22:06 - 2018-08-08 17:37 - 000000000 ____D C:\Users\Vasquito\AppData\Roaming\uTorrent
2019-05-20 22:05 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-20 22:03 - 2018-06-08 10:16 - 001763508 _____ C:\Windows\system32\PerfStringBackup.INI
2019-05-20 22:03 - 2018-04-12 17:54 - 000782502 _____ C:\Windows\system32\perfh015.dat
2019-05-20 22:03 - 2018-04-12 17:54 - 000151664 _____ C:\Windows\system32\perfc015.dat
2019-05-20 22:03 - 2018-04-12 01:36 - 000000000 ____D C:\Windows\INF
2019-05-20 21:59 - 2018-10-05 22:41 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-05-20 21:59 - 2018-10-05 22:38 - 000000000 ____D C:\Users\Vasquito\AppData\Roaming\Origin
2019-05-20 21:59 - 2018-10-05 22:38 - 000000000 ____D C:\ProgramData\Origin
2019-05-20 21:55 - 2018-08-08 22:26 - 000002278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-20 21:55 - 2018-08-08 22:26 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-05-20 21:55 - 2018-08-07 17:07 - 000000000 ____D C:\Users\Vasquito\AppData\Local\CrashDumps
2019-05-20 21:55 - 2018-06-08 10:13 - 000000000 ____D C:\Users\Vasquito
2019-05-20 21:55 - 2018-06-08 10:10 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-05-20 21:54 - 2018-08-08 17:38 - 000000000 ____D C:\Users\Vasquito\AppData\Roaming\Lavasoft
2019-05-20 21:54 - 2018-08-08 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2019-05-20 21:54 - 2018-08-08 17:38 - 000000000 ____D C:\ProgramData\Lavasoft
2019-05-20 21:54 - 2018-08-08 17:38 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2019-05-20 21:54 - 2018-04-11 23:04 - 000524288 _____ C:\Windows\system32\config\BBI
2019-05-20 21:45 - 2018-08-05 19:32 - 000000000 ____D C:\ProgramData\Package Cache
2019-05-20 21:27 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\system32\GroupPolicy
2019-05-20 21:23 - 2019-03-24 22:21 - 000000000 ____D C:\Users\Vasquito\AppData\Local\BitTorrentHelper
2019-05-20 20:31 - 2019-02-28 00:32 - 000001195 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2019-05-20 19:27 - 2018-06-08 11:09 - 000000000 ____D C:\Windows\Panther
2019-05-20 17:50 - 2018-06-08 10:10 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-05-19 23:27 - 2018-06-10 08:50 - 000003384 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4276445531-638447664-1439027332-1001
2019-05-19 23:27 - 2018-06-08 10:16 - 000000000 ___RD C:\Users\Vasquito\OneDrive
2019-05-19 23:27 - 2018-06-08 10:13 - 000002416 _____ C:\Users\Vasquito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-17 15:55 - 2018-06-08 10:17 - 000000000 ____D C:\Users\Vasquito\AppData\Local\ElevatedDiagnostics
2019-05-15 17:06 - 2018-08-08 22:25 - 000003568 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-15 17:06 - 2018-08-08 22:25 - 000003444 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-13 17:09 - 2019-04-03 20:33 - 000000000 ____D C:\Users\Vasquito\opera autoupdate
2019-05-05 22:48 - 2018-08-06 20:17 - 000000000 ____D C:\Users\Vasquito\AppData\Local\D3DSCache
2019-05-01 00:57 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\LiveKernelReports
2019-04-30 22:37 - 2018-10-05 22:39 - 000000000 ____D C:\Program Files (x86)\Origin
2019-04-29 20:49 - 2018-10-05 22:59 - 000001220 _____ C:\Users\Public\Desktop\FIFA 19.lnk
2019-04-24 21:22 - 2018-11-04 23:22 - 000004276 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1541366535
2019-04-24 21:22 - 2018-11-04 23:22 - 000001408 _____ C:\Users\Vasquito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk

==================== Pliki w katalogu głównym wybranych folderów =======

2019-05-20 21:26 - 2019-05-20 21:26 - 007936512 _____ () C:\Users\Vasquito\AppData\Local\agent.dat
2019-05-20 21:26 - 2019-05-20 21:26 - 000054272 _____ () C:\Users\Vasquito\AppData\Local\ApplicationHosting.dat
2019-05-20 21:26 - 2019-05-20 21:26 - 000070992 _____ () C:\Users\Vasquito\AppData\Local\Config.xml
2019-05-20 21:26 - 2019-05-20 21:26 - 001446912 _____ (TODO: & lt; Company name & gt; ) C:\Users\Vasquito\AppData\Local\Haytam.exe
2019-05-20 21:26 - 2019-05-20 21:26 - 000072787 _____ () C:\Users\Vasquito\AppData\Local\Haytam.tst
2019-05-20 21:26 - 2019-05-20 21:26 - 000140800 _____ () C:\Users\Vasquito\AppData\Local\installer.dat
2019-05-20 21:26 - 2019-05-20 21:26 - 000126464 _____ () C:\Users\Vasquito\AppData\Local\lobby.dat
2019-05-20 21:26 - 2019-05-20 21:26 - 000005568 _____ () C:\Users\Vasquito\AppData\Local\md.xml
2019-05-20 21:26 - 2019-05-20 21:26 - 000126464 _____ () C:\Users\Vasquito\AppData\Local\noah.dat
2019-05-20 21:26 - 2019-05-20 21:26 - 001446912 _____ (TODO: & lt; Company name & gt; ) C:\Users\Vasquito\AppData\Local\Round-Dom.exe
2019-05-20 21:26 - 2019-05-20 21:26 - 002038621 _____ () C:\Users\Vasquito\AppData\Local\Round-Dom.tst
2019-05-20 21:26 - 2019-05-20 21:46 - 000722944 _____ () C:\Users\Vasquito\AppData\Local\sha.db
2019-05-20 21:27 - 2019-05-20 21:27 - 001895383 _____ () C:\Users\Vasquito\AppData\Local\Singsing.bin
2019-05-20 21:27 - 2019-05-20 21:27 - 000032038 _____ () C:\Users\Vasquito\AppData\Local\uninstall_temp.ico
2018-11-11 10:52 - 2018-11-11 10:52 - 000000000 _____ () C:\Users\Vasquito\AppData\Local\{28A23184-69AA-44FD-8AFF-A344A7A13DF3}
2018-11-12 17:19 - 2018-11-12 17:19 - 000000000 _____ () C:\Users\Vasquito\AppData\Local\{31F5B434-3BBD-44E9-8F24-76CA38439C36}

==================== SigCheck ===============================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

==================== Koniec FRST.txt ============================