Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:12-10-2015 Uruchomiony przez User (administrator) USER-KOMPUTER (04-11-2016 17:04:00) Uruchomiony z C:\Users\User\Downloads Załadowane profile: User (Dostępne profile: User & Test) Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\ismagent.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe (Samsung Electronics) C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe (CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (Microsoft Corporation) C:\Windows\System32\StikyNot.exe () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe (DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Autodesk, Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe (Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Easy Support Center\SamoyedAgent.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe (Dassault Systèmes SolidWorks Corp.) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe () C:\ProgramData\DatacardService\HWDeviceService64.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe () C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe (DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe () C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\browsernativehost.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Google Inc.) C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe (Farbar) C:\Users\User\Downloads\FRST64 (1).exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-04-28] (Adobe Systems Incorporated) HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-29] () HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9099440 2016-10-27] (AVAST Software) HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-04-28] (Samsung Electronics Co., Ltd.) HKLM-x32\...\Run: [ADSK DLMSession] => C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1627032 2015-01-28] (Autodesk, Inc.) HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [529480 2016-02-24] (Autodesk Inc.) HKLM-x32\...\Run: [Bonus.SSR.FR12] => C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [1472312 2015-09-11] (ABBYY Production LLC.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1156824 2016-09-16] (Adobe Systems Incorporated) Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.) HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\Run: [Facebook Update] => C:\Users\User\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-11-17] (Facebook Inc.) HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\Run: [GoogleChromeAutoLaunch_BCEA24321E5E4F1401136BBEDFB545FE] => C:\Users\User\AppData\Local\Google\Chrome\Application\chrome.exe [921704 2016-10-20] (Google Inc.) HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\Run: [Akamai NetSession Interface] => "C:\Users\User\AppData\Local\Akamai\netsession_win.exe" HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation) HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3035968 2012-02-02] (DT Soft Ltd) HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\Run: [GG] => C:\Users\User\AppData\Local\GG\Application\gghub.exe [4078144 2016-07-04] (GG Network S.A.) HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\Policies\Explorer: [] HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\MountPoints2: {8d4bd7d9-775c-11e5-8bc6-e8039acb881a} - E:\setup.EXE /AUTORUN HKU\S-1-5-21-1130217176-4031021830-1519301973-1000\...\MountPoints2: {8d4bd7dd-775c-11e5-8bc6-e8039acb881a} - F:\INSTALL.EXE ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-08-30] (AVAST Software) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.) ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2014-03-20] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2014-03-20] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2014-03-20] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2014-03-20] (GG Network S.A.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2015 Fast Start.lnk [2015-12-06] ShortcutTarget: SOLIDWORKS 2015 Fast Start.lnk -> C:\Windows\Installer\{F8093877-4F2C-40ED-9BA7-2F9F48F5176F}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 62.179.1.63 62.179.1.62 Tcpip\..\Interfaces\{2C4A114F-454B-4516-BC51-D1C7FF9CF1E8}: [NameServer] 89.108.195.21 89.108.202.21 Tcpip\..\Interfaces\{B6A746C6-CBB4-45AE-85E8-1CCEDC619C22}: [NameServer] 89.108.195.20 89.108.202.20 Tcpip\..\Interfaces\{CEBD8EBD-90F1-4FB4-9B99-44F049010531}: [DhcpNameServer] 62.179.1.63 62.179.1.62 Tcpip\..\Interfaces\{CFAF1B7D-7C10-4AC1-82A8-A90E18DEA74E}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{EE1DEB54-B0BB-4099-8FD0-1FDE43B777C8}: [NameServer] 89.108.195.21 89.108.202.21 Internet Explorer: ================== BHO: Brak nazwy -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> => Brak pliku BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-08] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-08-31] (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-24] (AVAST Software) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-10-08] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-08] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-31] (Oracle Corporation) BHO-x32: Brak nazwy -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> => Brak pliku BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-10-08] (Microsoft Corporation) BHO-x32: DivX Plus Web Player HTML5