wklejto.pl

Dodane przez: ~serdenh (2019-07-26 15:39) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 15-07-2019 01
Uruchomiony przez Msi (administrator)  DESKTOP-53B85K3 (Micro-Star International Co., Ltd. GV62 7RC) (26-07-2019 14:34:55)
Uruchomiony z C:\Users\Msi\Downloads
Załadowane profile: Msi (Dostępne profile: Msi)
Platform: Windows 10 Pro Wersja 1809 17763.557 (X64) Język: Polish (Poland)
Domyślna przeglądarka: "C:\Users\Msi\AppData\Local\Vivaldi\Application\vivaldi.exe" -- "%1"
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Procesy (filtrowane) =================
 
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
 
() [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1905.28.0_x64__8wekyb3d8bbwe\Calculator.exe
() [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ad7cb5e55a410add\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_ad7cb5e55a410add\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_139e2b12c5e53bc5\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_139e2b12c5e53bc5\IntelCpHeciSvc.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11905.1001.4.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\NisSrv.exe
(Microsoft Windows Third Party Application Component -> Adobe) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPHelper.exe
(Trend Micro Inc.) [Brak podpisu cyfrowego] C:\Users\Msi\AppData\Local\Microsoft\Windows\INetCache\IE\19866PRY\HijackThis.exe
 
==================== Rejestr (filtrowane) ===========================
 
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269120 2019-06-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-3098522046-3020698126-864139080-1001\...\Run: [Vivaldi Update Notifier] => C:\Users\Msi\AppData\Local\Vivaldi\Application\update_notifier.exe [1806408 2019-07-18] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
HKU\S-1-5-21-3098522046-3020698126-864139080-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22691064 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3098522046-3020698126-864139080-1001\...\MountPoints2: {6039f809-259a-11e9-babe-b4d5bda7ca1e} - "D:\AutoRun.exe" 
HKU\S-1-5-21-3098522046-3020698126-864139080-1001\...\MountPoints2: {6039f849-259a-11e9-babe-b4d5bda7ca1e} - "D:\AutoRun.exe" 
HKU\S-1-5-21-3098522046-3020698126-864139080-1001\...\MountPoints2: {fdec56ca-1e57-11e9-babe-b4d5bda7ca1e} - "D:\windows\Install\Install.exe" 
HKU\S-1-5-21-3098522046-3020698126-864139080-1001\...\MountPoints2: {fdec5733-1e57-11e9-babe-b4d5bda7ca1e} - "D:\windows\Install\Install.exe" 
HKLM\...\Providers\Internet Print Provider: inetpp.dll [177664 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Providers\LanMan Print Services: win32spl.dll [847872 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}] -> wlgpclnt.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{169EBF44-942F-4C43-87CE-13C93996EBBE}] -> AppManagementConfiguration.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{16be69fa-4209-4250-88cb-716cf41954e0}] -> auditcse.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{25537BA6-77A8-11D2-9B6C-0000F8080861}] -> fdeploy.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{2BFCC077-22D2-48DE-BDE1-2F618D9B476D}] -> AppManagementConfiguration.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{426031c0-0b47-4852-b0ca-ac3d37bfcb39}] -> gptext.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4d968b55-cac2-4ff5-983f-0a54603781a3}] -> WorkFoldersGPExt.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7909AD9E-09EE-4247-BAB9-7029D5F0A278}] -> dmenrollengine.dll [2019-05-04] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{827D319E-6EAC-11D2-A4EA-00C04F79F83A}] -> scecli.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{9650FDBC-053A-4715-AD14-FC2DC65E8330}] -> hvsigpext.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}] -> dot3gpclnt.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{BA649533-0AAC-4E04-B9BC-4DBAE0325B12}] -> pwlauncher.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{C34B2751-1CF4-44F5-9262-C3FC39666591}] -> pwlauncher.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{c6dc5466-785a-11d2-84d0-00c04fb169f7}] -> appmgmts.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{cdeafc3d-948d-49dd-ab12-e578ba4af7aa}] -> gptext.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{F312195E-3D9D-447A-A3F5-08DFFA24735E}] -> dggpext.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{f3ccc681-b74c-4060-9f26-cd84525dca2a}] -> auditcse.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{FB2CA36D-0B40-4307-821B-A13B252DE56C}] -> gptext.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{fbf687e6-f063-4d9f-9f4f-fd9a26acdd5f}] -> gptext.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{FC491EF1-C4AA-4CE1-B329-414B101DB823}] -> dggpext.dll [2018-09-15] (Microsoft Windows -> Microsoft Corporation)
 
==================== Zaplanowane zadania (filtrowane) =============
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
Task: {1F5BC68C-E8F2-4CE5-BB35-837EAA068CD3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {37FC8AD6-6A7A-48DF-8F6D-1C1E7B729BC2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {46C4508D-7B80-4FA9-91BA-28F3AEAC40A9} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_207_pepper.exe [1452600 2019-06-11] (Adobe Inc. -> Adobe)
Task: {52152565-5897-4F54-A82E-9B8EB9A94ED7} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {59A0095E-0B2D-43BA-9761-A86F918ACC7E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16664352 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6387A92A-75CD-4509-9EF9-EEFCBE513186} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe [3617760 2019-06-04] (Easeware Technology Limited -> Easeware)
Task: {67D6A8DA-0CB6-4D19-B111-73DBE85FD822} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {69F4C66E-DDCA-446B-922C-B2851C90C4FC} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => BthUdTask.exe [40448 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
Task: {7A11302B-5BD2-4CED-BBE7-BE1B97F9B480} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-06-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {83DF21AF-8369-4B6B-AA31-BB6262C3DE54} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2380088 2019-06-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {84EBB703-C1D2-4D13-87C2-999DCF70D827} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
Task: {99C718AD-837A-46C0-910D-7CBAC429ABF0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A09F8BBB-1724-42E2-847E-A640281843D8} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {B5147B05-2213-4AE4-AB5C-188753D66529} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
Task: {B98F4B52-8E09-4824-9FAD-63ECDBE65519} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CB4EC86B-4B8D-4E6F-8A08-639DA930C61C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-06-11] (Adobe Inc. -> Adobe)
Task: {CE13FBE3-17E4-49CA-ADF9-1D87402C6B7C} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {E6E4FA14-0F5E-41CE-9679-E75CEFBA02D1} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [816960 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
 
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
 
Task: C:\WINDOWS\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
 
==================== Internet (filtrowane) ====================
 
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
 
Tcpip\Parameters: [DhcpNameServer] 194.168.4.100 194.168.8.100
Tcpip\..\Interfaces\{850f9b52-7449-4978-b0cb-4316f9aa03e7}: [NameServer] 185.130.104.222,185.4.65.4,116.203.6.218,185.4.64.13
Tcpip\..\Interfaces\{850f9b52-7449-4978-b0cb-4316f9aa03e7}: [DhcpNameServer] 194.168.4.100 194.168.8.100
Tcpip\..\Interfaces\{d38f8c83-43bc-4b75-8b65-89264ef69278}: [NameServer] 185.130.104.222,185.4.65.4,116.203.6.218,185.4.64.13
Tcpip\..\Interfaces\{d38f8c83-43bc-4b75-8b65-89264ef69278}: [DhcpNameServer] 194.168.4.100 194.168.8.100
Tcpip\..\Interfaces\{d467751d-1639-4c3e-b76a-a4ef964a8697}: [NameServer] 185.130.104.222,185.4.65.4,116.203.6.218,185.4.64.13
Tcpip\..\Interfaces\{d467751d-1639-4c3e-b76a-a4ef964a8697}: [DhcpNameServer] 194.168.4.100 194.168.8.100
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-3098522046-3020698126-864139080-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
 
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files (x86)\T-Mobile\InternetManager_Z\Bin\addon => nie znaleziono
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
 
==================== Usługi (filtrowane) ====================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [26984 2019-07-25] (IDSA Production signing key -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [80744 2019-07-25] (IDSA Production signing key -> Intel)
S3 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [885560 2019-05-15] (Intel(R) Software Development Products -> )
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [529696 2019-06-17] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806144 2019-01-04] (ICEpower a/s -> ICEpower)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [742704 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [668472 2017-10-11] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [213648 2017-11-09] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5382448 2019-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
R2 SynTPEnhService; C:\WINDOWS\System32\SynTPEnhService.exe [399440 2018-08-30] (Synaptics Incorporated -> Synaptics Incorporated)
R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe [205112 2019-05-15] (Intel(R) Software Development Products -> )
S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [885560 2019-05-15] (Intel(R) Software Development Products -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\NisSrv.exe [2433136 2019-06-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MsMpEng.exe [109896 2019-06-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
 
===================== Sterowniki (filtrowane) ======================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
S3 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [313112 2019-03-14] (Bluestack Systems, Inc. -> Bluestack System Inc. )
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [110488 2014-12-03] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [1017712 2019-06-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [191992 2019-06-17] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 L1C; C:\WINDOWS\System32\drivers\L1C63x64.sys [162024 2019-01-15] (Rivet Networks LLC -> Qualcomm Atheros, Inc.)
S3 massfilter; C:\WINDOWS\System32\drivers\massfilter.sys [11776 2011-08-10] (MBB Incorporated) [Brak podpisu cyfrowego]
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [8719864 2019-04-30] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_f7d6d865270fd4b9\nvlddmkm.sys [21836032 2019-06-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [441432 2019-06-19] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [43008 2019-05-15] (Intel Corporation -> )
R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [56912 2018-08-30] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [206104 2014-12-03] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-06-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [337632 2019-06-20] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-06-20] (Microsoft Windows -> Microsoft Corporation)
S3 ZTEusbmdm6k; C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys [123264 2011-08-10] (ZTE Incorporated) [Brak podpisu cyfrowego]
S3 ZTEusbnmea; C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys [123264 2011-08-10] (ZTE Incorporated) [Brak podpisu cyfrowego]
S3 ZTEusbser6k; C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys [123264 2011-08-10] (ZTE Incorporated) [Brak podpisu cyfrowego]
U3 aswbdisk; Brak ImagePath
U3 aswblog; Brak ImagePath
S3 cpuz140; \??\C:\Users\Msi\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [X] <==== UWAGA
S3 ew_hwusbdev; \SystemRoot\system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; \SystemRoot\System32\drivers\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; \SystemRoot\system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; \SystemRoot\System32\drivers\ew_juextctrl.sys [X]
S3 huawei_wwanecm; \SystemRoot\System32\drivers\ew_juwwanecm.sys [X]
 
==================== NetSvcs (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
 
==================== Jeden miesiąc (utworzone) ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2019-07-26 14:15 - 2019-07-26 14:15 - 000000000 ____D C:\Users\Msi\AppData\Roaming\Macromedia
2019-07-26 14:14 - 2019-07-26 14:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2019-07-21 16:41 - 2019-07-21 16:41 - 000001800 _____ C:\Users\Msi\Desktop\AdwCleaner[S05].txt
2019-07-21 06:56 - 2019-07-21 06:56 - 000000000 ____D C:\Users\Msi\AppData\LocalLow\Temp
2019-07-20 14:59 - 2019-07-20 14:27 - 000228544 _____ (AVAST Software) C:\Users\Msi\Desktop\avast_free_antivirus_setup_online.exe
2019-07-20 06:49 - 2019-07-20 06:49 - 000027427 _____ C:\Users\Msi\Downloads\FIXLIST.txt
2019-07-19 16:06 - 2019-07-19 16:06 - 000002375 _____ C:\Users\Msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2019-07-19 16:06 - 2019-07-19 16:06 - 000002338 _____ C:\Users\Msi\Desktop\Vivaldi.lnk
2019-07-19 16:06 - 2019-07-19 16:06 - 000000000 ____D C:\Users\Msi\AppData\Local\Vivaldi
2019-07-19 15:56 - 2019-07-19 15:56 - 000016810 _____ C:\Users\Msi\Downloads\Fixlog.txt
2019-07-19 15:51 - 2019-07-19 15:54 - 000034079 _____ C:\Users\Msi\Downloads\oxirbwakvzwdfp.txt
2019-07-19 15:30 - 2019-07-20 06:32 - 000028665 _____ C:\Users\Msi\Downloads\Addition.txt
2019-07-19 15:27 - 2019-07-26 14:36 - 000023018 _____ C:\Users\Msi\Downloads\FRST.txt
2019-07-19 15:26 - 2019-07-26 14:34 - 000000000 ____D C:\FRST
2019-07-19 15:24 - 2019-07-19 15:24 - 002095104 _____ (Farbar) C:\Users\Msi\Downloads\FRST64.exe
2019-06-28 09:11 - 2014-12-03 03:01 - 000206104 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2019-06-28 09:11 - 2014-12-03 03:01 - 000110488 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys
2019-06-28 09:09 - 2019-06-28 09:09 - 000000000 ____D C:\ProgramData\Samsung
2019-06-28 09:09 - 2019-06-28 09:09 - 000000000 ____D C:\Program Files\SAMSUNG
2019-06-28 09:08 - 2019-06-28 09:09 - 016044077 _____ C:\Users\Msi\Downloads\SAMSUNG_USB_Driver_for_Mobile_Phones.zip
2019-06-28 09:05 - 2019-06-28 09:05 - 003518434 _____ C:\Users\Msi\Downloads\Odin3_v3.13.1.zip
2019-06-28 08:41 - 2019-06-01 15:09 - 518021308 _____ C:\Users\Msi\Desktop\CSC_OMC_OXM_G975FOXM1ASE5_CL16003457_QB23792291_REV01_user_low_ship.tar.rar
2019-06-28 08:37 - 2019-06-28 08:42 - 000000000 ____D C:\Users\Msi\Desktop\G975FXXU1ASE7_G975FOXM1ASE5_BTU
2019-06-27 07:56 - 2019-06-27 15:17 - 831900113 _____ C:\Users\Msi\Downloads\G975FXXU1ASE7_G975FOXM1ASE5_BTU.zip
2019-06-26 08:07 - 2019-06-26 18:45 - 000000443 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
 
==================== Jeden miesiąc (zmodyfikowane) ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2019-07-26 14:34 - 2019-06-25 18:11 - 000000000 ____D C:\Users\Msi\AppData\Local\CrashDumps
2019-07-26 14:16 - 2018-10-26 12:43 - 000000000 ____D C:\Users\Msi\AppData\Local\VirtualStore
2019-07-26 14:16 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-07-26 14:14 - 2019-01-10 12:37 - 000000000 ____D C:\ProgramData\Package Cache
2019-07-26 14:14 - 2018-10-26 12:53 - 000000000 ____D C:\Program Files (x86)\Intel
2019-07-26 14:09 - 2019-06-19 04:54 - 000004162 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9DDD79A0-8083-4303-A880-BD16CC026886}
2019-07-26 14:08 - 2019-06-20 17:12 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-07-26 14:05 - 2018-10-26 12:53 - 000000000 __SHD C:\Users\Msi\IntelGraphicsProfiles
2019-07-22 17:08 - 2018-12-18 18:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-07-22 17:08 - 2018-10-26 12:50 - 000000000 ____D C:\ProgramData\NVIDIA
2019-07-21 16:43 - 2018-12-18 18:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-07-21 16:42 - 2018-09-15 07:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-07-21 06:56 - 2018-10-26 12:43 - 000000000 ___RD C:\Users\Msi\3D Objects
2019-07-20 14:18 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-07-19 16:12 - 2018-12-14 05:12 - 000000000 ____D C:\Users\Msi\AppData\Local\ElevatedDiagnostics
2019-07-19 15:37 - 2019-06-19 21:50 - 000000000 ____D C:\Users\Msi\AppData\Local\D3DSCache
2019-07-19 14:53 - 2018-12-14 05:15 - 000000000 ___DC C:\WINDOWS\Panther
2019-07-19 14:53 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-07-19 14:53 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-07-19 14:48 - 2019-06-17 18:31 - 000002738 _____ C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_QUEENCREEK
2019-07-19 14:41 - 2019-06-20 17:12 - 000002236 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-07-08 12:51 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-07-06 11:33 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-07-06 07:56 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-06-26 18:48 - 2018-12-18 18:50 - 001678734 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-06-26 18:48 - 2018-09-15 17:43 - 000748958 _____ C:\WINDOWS\system32\perfh015.dat
2019-06-26 18:48 - 2018-09-15 17:43 - 000144570 _____ C:\WINDOWS\system32\perfc015.dat
 
==================== Pliki w katalogu głównym wybranych folderów ================
 
2019-06-20 17:10 - 2019-06-20 17:50 - 000007643 _____ () C:\Users\Msi\AppData\Local\Resmon.ResmonCfg
 
==================== SigCheck ===============================
 
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
 
==================== Koniec  FRST.txt ============================
Wygenerowano w 0.039s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!