Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 28-12-2019 Uruchomiony przez Błażej (administrator) JASKIER (Gigabyte Technology Co., Ltd. B150M-D3H) (01-01-2020 11:31:37) Uruchomiony z C:\Users\Błażej\Downloads Załadowane profile: Błażej (Dostępne profile: defaultuser0 & Błażej & postgres) Platform: Windows 10 Pro Wersja 1803 17134.1130 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe () [Brak podpisu cyfrowego] C:\Program Files\Genesis GX57\GenesisGX57.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe (Gigabyte Technology CO., LTD.) [Brak podpisu cyfrowego] C:\Program Files (x86)\GIGABYTE\Smart TimeLock\AlarmClock.exe (Gigabyte Technology CO., LTD.) [Brak podpisu cyfrowego] C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel(R) Network Platform Group -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe (Wilk Elektronik S.A. -> Wilk Elektronik S.A.) C:\Program Files (x86)\GOODRAM\OPTIMUM SSD Tool\OST_service.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel(R) Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) HKU\S-1-5-21-4290056093-4266606261-1096544619-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-4290056093-4266606261-1096544619-1001\...\MountPoints2: {d80a271a-5587-11e9-b333-1c1b0d27e18c} - "F:\S3\Autorun.exe" HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\Installer\chrmstp.exe [2019-12-31] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{5EF9A232-5B5B-4768-95F2-3F601FB184E3}] -> C:\WINDOWS\system32\AutoGreenCP.dll [2016-11-30] () [Brak podpisu cyfrowego] IFEO\SppExtComObj.exe: [Debugger] SppExtComObjPatcher.exe ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {02CEF0CD-A5D9-4841-9062-E1EFBA73E334} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-31] (Adobe Inc. -> Adobe) Task: {065B2A88-0055-4580-A235-D049DD0C0E6C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-30] (Google Inc -> Google Inc.) Task: {10DB9A9B-B454-4306-87D9-E545104E8527} - System32\Tasks\Kerish Doctor => C:\Program Files (x86)\Kerish Doctor\KerishDoctor.exe Task: {330694DE-1E99-4B92-86DC-9649169FB136} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18352 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {3B3CC51B-EDC6-48B4-A31F-F62691221CF8} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426416 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {486E247D-527A-4F2F-9B54-FD96DDDE651E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_pepper.exe [1453112 2019-12-31] (Adobe Inc. -> Adobe) Task: {4E682CED-3AAF-41E3-8D67-7DB765768FD3} - System32\Tasks\XinGuanDianT3-GmTaskPlan => C:\Program Files\Genesis GX57\GenesisGX57.exe [885760 2014-11-11] () [Brak podpisu cyfrowego] Task: {522F57BB-2670-4335-A15C-83C35A0C50ED} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855408 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) Task: {52D6F083-AEBE-4D32-AB80-3819FF5F7D29} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [887152 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) Task: {653056C4-6C1B-49D9-BBF9-692E0BACD30C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855408 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7919D005-A20C-4C55-B0C9-87AD502E15C3} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [562544 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7DE1837C-F160-41AC-81B5-5E980066F204} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [887152 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7DFAE559-FBA1-4CBA-8A0D-032BBD83FEE7} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [232880 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {841F4FA1-4853-49DB-AD52-B515EAFFF8E0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {8A69FE2A-A245-4601-9959-41E4DD25798F} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [887152 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8D2B08D2-723B-4970-9379-E5939ECF9EDC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16494464 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {973A89D5-8509-438B-B14B-EE78E63FB11D} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253872 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {A242728E-1BE9-45A7-BC6A-D73010CFC214} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15792 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {A27E9B21-E552-4DF8-85F5-6CF3EF78F3FF} - System32\Tasks\Safer-Networking\Spybot Anti-Beacon\Refresh Anti-Beacon immunization => C:\Program Files (x86)\Spybot Anti-Beacon\SDAntiBeacon.exe [5584920 2015-10-19] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Brak podpisu cyfrowego] Task: {A5552165-B160-47E9-A98D-B17374043F2B} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA Task: {A844E8E9-576E-4E7A-BF9A-4BB3905272CD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-11-30] (Google Inc -> Google Inc.) Task: {BD46B618-5686-4462-BD32-3A79271AAFB8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems) Task: {E02ABCBD-8797-403E-A6A2-6B3E335BEFA7} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [887152 2019-01-31] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FE9A266E-72EA-4F5B-88E8-16B290312BE5} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-31] (Adobe Inc. -> Adobe) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{7502d4a8-330e-48fb-96ff-c2d7317906a1}: [DhcpNameServer] 192.168.8.1 Internet Explorer: ================== BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\WINDOWS\system32\mscoree.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-18] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-18] (Oracle America, Inc. -> Oracle Corporation) Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\WINDOWS\system32\mscoree.dll [2018-04-12] (Microsoft Windows -> Microsoft Corporation) Edge: ====== DownloadDir: C:\Users\Błażej\Downloads FireFox: ======== FF DefaultProfile: pbvouqna.default FF ProfilePath: C:\Users\Błażej\AppData\Roaming\Mozilla\Firefox\Profiles\pbvouqna.default [2020-01-01] FF Extension: (Telemetry coverage) - C:\Users\Błażej\AppData\Roaming\Mozilla\Firefox\Profiles\pbvouqna.default\features\{1f98615c-8c88-4965-9755-4c7737cdc7c8}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-10-05] [Przestarzałe] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_303.dll [2019-12-31] (Adobe Inc. -> ) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-31] (Adobe Inc. -> ) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-18] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-18] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-31] (Google LLC -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-31] (Google LLC -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-17] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-4290056093-4266606261-1096544619-1001: ubisoft.com/uplaypc -> D:\Settlers 7\Data\Base\_Dbg\Bin\Release\orbit\npuplaypc.dll [Brak pliku] Chrome: ======= CHR Profile: C:\Users\Błażej\AppData\Local\Google\Chrome\User Data\Default [2020-01-01] CHR Extension: (Prezentacje) - C:\Users\Błażej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Dokumenty) - C:\Users\Błażej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Dysk Google) - C:\Users\Błażej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-01] CHR Extension: (YouTube) - C:\Users\Błażej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-01] CHR Extension: (Adobe Acrobat) - C:\Users\Błażej\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-10-10] CHR Extension: (Arkusze) - C:\Users\Błażej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Dokumenty Google offline) - C:\Users\Błażej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-16] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Błażej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-10] CHR Extension: (Gmail) - C:\Users\Błażej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-15] CHR Extension: (Chrome Media Router) - C:\Users\Błażej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-31] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AppleChargerSrv; C:\WINDOWS\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> ) R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142792 2018-10-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [Brak podpisu cyfrowego] S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128944 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-01-01] (Malwarebytes Inc -> Malwarebytes) S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [123824 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 OPTIMUM SSD Tool Service; C:\Program Files (x86)\GOODRAM\OPTIMUM SSD Tool\OST_service.exe [413352 2019-01-28] (Wilk Elektronik S.A. -> Wilk Elektronik S.A.) R2 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5098408 2019-09-13] (Microsoft Windows Publisher -> Microsoft Corporation) R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [102400 2013-02-22] (Gigabyte Technology CO., LTD.) [Brak podpisu cyfrowego] S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-31] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-31] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 AppleCharger; C:\WINDOWS\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) R3 athur; C:\WINDOWS\System32\drivers\athuwbx.sys [2702336 2013-11-20] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-04-02] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-04-02] (AVB Disc Soft, SIA -> Disc Soft Ltd) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-01-01] (Malwarebytes Corporation -> Malwarebytes) S3 gdrv; C:\Windows\gdrv.sys [26792 2018-12-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R3 gdrv2; C:\WINDOWS\gdrv2.sys [32600 2019-08-11] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2019-01-27] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk]) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216544 2020-01-01] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-01-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [224408 2020-01-01] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-01-01] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [278344 2020-01-01] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [116832 2020-01-01] (Malwarebytes Corporation -> Malwarebytes) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_db678424d2641c3d\nvlddmkm.sys [22094728 2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation) S3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-11-29] (NVIDIA Corporation -> NVIDIA Corporation) S3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2018-11-29] (NVIDIA Corporation -> NVIDIA Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-12-21] (Apple, Inc.) [Brak podpisu cyfrowego] S1 UsbCharger; C:\WINDOWS\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-31] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-31] (Microsoft Windows -> Microsoft Corporation) S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-01-01 11:31 - 2020-01-01 11:32 - 000024395 _____ C:\Users\Błażej\Downloads\FRST.txt 2020-01-01 11:30 - 2020-01-01 11:31 - 000000000 ____D C:\FRST 2020-01-01 11:30 - 2020-01-01 11:30 - 002272256 _____ (Farbar) C:\Users\Błażej\Downloads\FRST64.exe 2020-01-01 11:27 - 2020-01-01 11:27 - 000000000 ___HD C:\$WINDOWS.~BT 2020-01-01 11:24 - 2020-01-01 11:24 - 000278344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-01-01 11:24 - 2020-01-01 11:24 - 000224408 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2020-01-01 11:24 - 2020-01-01 11:24 - 000116832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2020-01-01 11:24 - 2020-01-01 11:24 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2020-01-01 11:24 - 2020-01-01 11:24 - 000000000 ____D C:\Users\Błażej\AppData\LocalLow\IGDump 2020-01-01 01:10 - 2020-01-01 01:10 - 000000000 ____D C:\Users\Błażej\AppData\Local\cache 2020-01-01 01:09 - 2020-01-01 01:09 - 000216544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2020-01-01 01:09 - 2020-01-01 01:09 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-01-01 01:09 - 2020-01-01 01:09 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2020-01-01 01:09 - 2020-01-01 01:09 - 000002029 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-01-01 01:09 - 2020-01-01 01:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2020-01-01 01:09 - 2020-01-01 01:09 - 000000000 ____D C:\Program Files\Malwarebytes 2020-01-01 01:08 - 2020-01-01 01:08 - 001883976 _____ (Malwarebytes) C:\Users\Błażej\Downloads\MBSetup.exe 2020-01-01 01:01 - 2020-01-01 11:27 - 000000000 ____D C:\WINDOWS\Panther 2020-01-01 00:53 - 2020-01-01 00:53 - 008237744 _____ (Malwarebytes) C:\Users\Błażej\Downloads\adwcleaner_8.0.1.exe 2019-12-31 16:46 - 2019-12-31 16:46 - 000040851 _____ C:\Users\Błażej\Downloads\Czarownica 2 - Maleficent_ Mistress of Evil 2019 [MD] [1080p] [WEB-DL] [AC3] [x264-KiT] [Dubbing PL].torrent 2019-12-31 14:23 - 2019-12-31 14:24 - 000000000 ____D C:\WINDOWS\LastGood 2019-12-31 14:23 - 2019-10-02 23:17 - 000124784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2019-12-31 14:21 - 2019-12-31 14:21 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2019-12-31 14:20 - 2019-12-31 14:20 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-01-01 11:30 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF 2020-01-01 11:24 - 2018-08-12 22:01 - 000004228 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{F377E566-8A1D-4A7B-B61B-A2DB3D4E5CBE} 2020-01-01 11:24 - 2018-08-12 22:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-01-01 11:24 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-01-01 11:24 - 2016-11-30 21:59 - 000000000 ____D C:\ProgramData\NVIDIA 2020-01-01 11:23 - 2018-08-12 21:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-01-01 11:23 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2020-01-01 10:53 - 2018-08-12 22:03 - 001765324 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-01-01 10:53 - 2018-04-12 16:54 - 000782502 _____ C:\WINDOWS\system32\perfh015.dat 2020-01-01 10:53 - 2018-04-12 16:54 - 000151664 _____ C:\WINDOWS\system32\perfc015.dat 2020-01-01 01:14 - 2018-08-12 22:47 - 000000000 ____D C:\Users\Błażej\AppData\Local\D3DSCache 2020-01-01 01:09 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-01-01 00:52 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-12-31 17:29 - 2016-12-22 22:43 - 000000000 ____D C:\Users\Błażej\AppData\Roaming\uTorrent 2019-12-31 16:41 - 2018-01-13 13:13 - 000000000 ____D C:\Users\Błażej\AppData\Local\Packages 2019-12-31 16:24 - 2016-11-30 21:58 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2019-12-31 15:01 - 2018-08-12 22:01 - 000004638 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier 2019-12-31 15:01 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2019-12-31 15:01 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed 2019-12-31 14:23 - 2016-11-30 21:58 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2019-12-31 14:22 - 2016-11-30 22:23 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-12-31 14:20 - 2016-11-30 22:23 - 129221664 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-12-31 14:16 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps 2019-12-31 14:16 - 2016-11-30 22:26 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-12-31 14:16 - 2016-11-30 22:26 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-12-31 14:13 - 2018-03-01 08:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2019-12-31 14:06 - 2018-08-12 22:01 - 000004674 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier 2019-12-31 14:04 - 2018-08-12 22:01 - 000003570 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2019-12-31 14:04 - 2018-08-12 22:01 - 000003446 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore ==================== Pliki w katalogu głównym wybranych folderów ======== 2018-01-15 23:05 - 2018-12-06 23:17 - 000007602 _____ () C:\Users\Błażej\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================