wklejto.pl

Dodane przez: ~Anonim (2019-10-26 12:52) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-10-2019
Ran by Sworski (administrator) on SWORSKI-PC (26-10-2019 14:32:49)
Running from C:\Users\Sworski\Downloads
Loaded Profiles: Sworski (Available Profiles: Sworski)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Angielski (Stany Zjednoczone)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster JAM\Sound Blaster JAM Control Panel\SBJAM.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Scarlet.Crush Productions) [File not signed] C:\Users\Sworski\Downloads\Scarlet.Crush Productions (updated to 1.2.2.175)\Scarlet.Crush Productions\ScpServer\bin\ScpService.exe
(StarWind Software) [File not signed] C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Sound Blaster JAM Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster JAM\Sound Blaster JAM Control Panel\SBJAM.exe [902144 2014-11-27] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3869933723-98745487-2788004008-1000\...\Run: [uTorrent] => C:\Users\Sworski\AppData\Roaming\uTorrent\uTorrent.exe [1823976 2019-10-15] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3869933723-98745487-2788004008-1000\...\Run: [EpicGamesLauncher] => "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
HKU\S-1-5-21-3869933723-98745487-2788004008-1000\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft -> Alcohol Soft Development Team)
HKU\S-1-5-21-3869933723-98745487-2788004008-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3869933723-98745487-2788004008-1000\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [1456128 2018-12-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-3869933723-98745487-2788004008-1000\...\MountPoints2: {7f706911-51f5-11e7-9ba6-bc5ff4f49c5b} - D:\RunGame.exe
HKU\S-1-5-21-3869933723-98745487-2788004008-1000\...\MountPoints2: {b01f952a-3afe-11e8-8608-bc5ff4f49c5b} - I:\RunGame.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-15] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2018-09-05]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {5210E24F-D357-4183-A746-DF8614A8027C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
Task: {78A57FCE-82F3-4F81-AC2C-4800AC198C72} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-15] (Google Inc -> Google Inc.)
Task: {7F31D74D-F2B5-4297-AD00-9CCEE28B1852} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {9F8015F6-593C-484F-9DB5-CC277D6AD502} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [1456128 2018-12-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {DE909D86-503A-4145-ACA3-188596D40F3D} - System32\Tasks\WiseCleaner\WDCSkipUAC => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe [5426496 2017-06-16] (Lespeed Technology Ltd. -> WiseCleaner.com) [File not signed]
Task: {E0D00194-1D34-46F6-AE25-AC8482403400} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-15] (Google Inc -> Google Inc.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{825C1CF6-61D3-4888-B6AC-30DE186F5A68}: [DhcpNameServer] 192.168.0.1
 
Internet Explorer:
==================
HKU\S-1-5-21-3869933723-98745487-2788004008-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp
 
FireFox:
========
FF DefaultProfile: 2thlz4di.default
FF ProfilePath: C:\Users\Sworski\AppData\Roaming\Mozilla\Firefox\Profiles\2thlz4di.default [2019-10-09]
FF Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\Sworski\AppData\Roaming\Mozilla\Firefox\Profiles\2thlz4di.default\Extensions\sp@avast.com.xpi [2019-03-15]
FF Extension: (Avast Online Security) - C:\Users\Sworski\AppData\Roaming\Mozilla\Firefox\Profiles\2thlz4di.default\Extensions\wrc@avast.com.xpi [2018-07-17]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-11-29] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-11-29] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-07] (Google Inc -> Google LLC)
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default [2019-10-26]
CHR Extension: (Prezentacje) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Dysk Google) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-21]
CHR Extension: (YouTube) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-15]
CHR Extension: (Video Downloader professional) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2019-04-11]
CHR Extension: (Arkusze) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-16]
CHR Extension: (AdBlock) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-10-22]
CHR Extension: (Avast Online Security) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-07-16]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\Sworski\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6085360 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft -> Alcohol Soft Development Team)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8395968 2019-10-22] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-04-24] (Disc Soft Ltd -> Disc Soft Ltd)
R2 Ds3Service; C:\Users\Sworski\Downloads\Scarlet.Crush Productions (updated to 1.2.2.175)\Scarlet.Crush Productions\ScpServer\bin\ScpService.exe [381952 2014-04-03] (Scarlet.Crush Productions) [File not signed]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2019-02-01] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2348336 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3228976 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [471696 2019-10-07] (Rockstar Games, Inc. -> Rockstar Games)
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [171520 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-10-08] (AVAST Software s.r.o. -> AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-06-15] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-06-15] (Disc Soft Ltd -> Disc Soft Ltd)
S3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [495376 2013-05-30] (Intel Corporation -> Intel Corporation)
S3 EasyAntiCheatSys; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.sys [1238640 2019-10-26] (EasyAntiCheat Oy -> EasyAntiCheat Oy)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2019-09-30] (Malwarebytes Corporation -> Malwarebytes)
R3 hidkmdf; C:\Windows\System32\DRIVERS\hidkmdf.sys [36944 2018-08-20] (SteelSeries ApS -> Windows (R) Win 7 DDK provider)
S3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46568 2013-01-19] (Intel(R) Smart Connect software -> )
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-10-26] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [224408 2019-10-26] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-10-26] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-10-26] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [106344 2019-10-26] (Malwarebytes Corporation -> Malwarebytes)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [59240 2018-01-24] (NVIDIA Corporation -> NVIDIA Corporation)
S3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57928 2018-01-24] (NVIDIA Corporation -> NVIDIA Corporation)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [393880 2019-02-26] (Disc Soft Ltd -> Duplex Secure Ltd.)
R3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [46408 2017-12-15] (SteelSeries ApS -> SteelSeries ApS)
R3 sshid; C:\Windows\System32\DRIVERS\sshid.sys [56496 2018-08-20] (SteelSeries ApS -> SteelSeries ApS)
R3 tpg64win7; C:\Windows\System32\DRIVERS\tpg64win7.sys [648808 2012-02-22] (Realtek Semiconductor Corp -> TP-LINK TECHNOLOGIES CO., LTD)
S3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2014-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
U3 at3w1btw; C:\Windows\System32\Drivers\at3w1btw.sys [0 0000-00-00] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)
S3 AsrSetupDrv; \??\C:\Windows\SysWOW64\Drivers\AsrSetupDrv.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One month (created) ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2019-10-26 14:32 - 2019-10-26 14:34 - 000020500 _____ C:\Users\Sworski\Downloads\FRST.txt
2019-10-26 14:32 - 2019-10-26 14:33 - 000000000 ____D C:\FRST
2019-10-26 14:30 - 2019-10-26 14:30 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-10-26 14:29 - 2019-10-26 14:29 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-10-26 14:29 - 2019-10-26 14:29 - 000224408 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-10-26 14:29 - 2019-10-26 14:29 - 000106344 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-10-26 14:27 - 2019-10-26 14:27 - 007622344 _____ (Malwarebytes) C:\Users\Sworski\Downloads\AdwCleaner.exe
2019-10-26 14:26 - 2019-10-26 14:26 - 001617920 _____ (Farbar) C:\Users\Sworski\Downloads\FRST64 (1).exe
2019-10-26 14:19 - 2019-10-26 14:19 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-10-26 14:19 - 2019-10-26 14:19 - 000000000 ____D C:\Users\Sworski\AppData\Local\mbam
2019-10-26 14:18 - 2019-10-26 14:18 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-10-26 14:18 - 2019-10-26 14:18 - 000001867 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2019-10-26 14:18 - 2019-10-26 14:18 - 000000000 ____D C:\Users\Sworski\AppData\Local\mbamtray
2019-10-26 14:18 - 2019-10-26 14:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-10-26 14:18 - 2019-10-26 14:18 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-10-26 14:18 - 2019-10-26 14:18 - 000000000 ____D C:\Program Files\Malwarebytes
2019-10-26 14:18 - 2019-09-30 06:25 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-10-26 14:17 - 2019-10-26 14:18 - 067040480 _____ (Malwarebytes ) C:\Users\Sworski\Downloads\mb3-setup-consumer-3.8.3.2965-1.0.629-1.0.13065.exe
2019-10-26 11:10 - 2019-10-26 11:10 - 000019680 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_15867896328214.dll
2019-10-25 22:46 - 2019-10-25 22:49 - 000000000 ____D C:\Users\Sworski\Downloads\El.Camino.A.Breaking.Bad.Movie.2019.720p.WEBRip.800MB.x264-GalaxyRG[TGx]
2019-10-25 22:43 - 2019-10-25 22:46 - 000000000 ____D C:\Users\Sworski\Downloads\The.Walking.Dead.S10E02.WEB.h264-TBS[ettv]
2019-10-24 22:18 - 2019-10-24 22:18 - 000000000 ____D C:\ProgramData\Rockstar Games
2019-10-24 22:13 - 2019-10-24 22:13 - 052383792 _____ (Rockstar Games.) C:\Users\Sworski\Downloads\Rockstar-Games-Launcher.exe
2019-10-18 17:06 - 2019-10-18 17:06 - 000107395 _____ C:\Users\Sworski\Desktop\D-wb2eqU4AAlPcN.jpg_medium
2019-10-18 17:06 - 2019-10-18 17:06 - 000107395 _____ C:\Users\Sworski\Desktop\D-wb2eqU4AAlPcN (1).jpg_medium
2019-10-13 20:14 - 2019-10-13 20:19 - 000000000 ____D C:\Users\Sworski\Downloads\The.Walking.Dead.S10E01.1080p.WEB.h264-TBS[ettv]
2019-10-08 19:58 - 2019-10-08 19:57 - 000355720 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2019-10-08 19:57 - 2019-10-08 19:57 - 000236024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2019-10-08 19:57 - 2019-10-08 19:57 - 000171520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
 
==================== One month (modified) ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2019-10-26 14:30 - 2018-03-26 12:24 - 000000000 ____D C:\Users\Sworski\AppData\Local\AVAST Software
2019-10-26 14:30 - 2017-06-15 22:52 - 000000000 ____D C:\Users\Sworski\AppData\Roaming\uTorrent
2019-10-26 14:29 - 2019-05-31 16:32 - 000000000 ____D C:\Users\Sworski\AppData\Local\BitTorrentHelper
2019-10-26 14:29 - 2017-06-15 19:02 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-26 14:29 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-10-26 14:25 - 2018-04-04 09:55 - 000000000 ____D C:\Users\Sworski\Desktop\Nowy folder
2019-10-26 14:23 - 2009-07-14 06:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-10-26 14:23 - 2009-07-14 06:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-10-26 14:02 - 2017-06-15 20:23 - 000000000 ____D C:\Program Files (x86)\Steam
2019-10-26 13:52 - 2018-03-20 17:37 - 000000000 ____D C:\ProgramData\Origin
2019-10-26 11:04 - 2019-02-02 18:54 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-10-26 11:04 - 2018-12-10 16:45 - 000000000 ____D C:\Users\Sworski\AppData\Roaming\Origin
2019-10-25 18:05 - 2017-06-27 14:03 - 000000000 ____D C:\Users\Sworski\AppData\Roaming\TS3Client
2019-10-24 22:22 - 2017-08-08 15:50 - 000000000 ____D C:\Program Files\Rockstar Games
2019-10-24 22:22 - 2017-08-08 15:50 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2019-10-24 22:18 - 2017-08-08 15:57 - 000000000 ____D C:\Users\Sworski\Documents\Rockstar Games
2019-10-24 22:18 - 2017-08-08 15:57 - 000000000 ____D C:\Users\Sworski\AppData\Local\Rockstar Games
2019-10-24 22:18 - 2017-06-15 23:07 - 000000000 ____D C:\ProgramData\Package Cache
2019-10-22 15:39 - 2017-06-15 22:41 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2019-10-18 17:10 - 2017-06-15 18:34 - 000000000 ____D C:\Users\Sworski\AppData\Roaming\Adobe
2019-10-16 16:00 - 2018-12-10 16:46 - 000000000 ____D C:\Program Files (x86)\Origin
2019-10-15 21:02 - 2017-06-15 16:57 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-15 21:02 - 2017-06-15 16:57 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-10-15 21:02 - 2017-06-15 16:57 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2019-10-14 19:33 - 2019-04-04 21:15 - 000001122 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2019-10-14 19:33 - 2019-04-04 21:15 - 000001122 _____ C:\ProgramData\Desktop\Apex Legends.lnk
2019-10-13 14:58 - 2018-02-22 17:40 - 000000000 ____D C:\Users\Sworski\AppData\Local\CrashDumps
2019-10-09 16:02 - 2017-06-16 00:01 - 000000000 ____D C:\Users\Sworski\AppData\Roaming\discord
2019-10-08 19:59 - 2017-06-15 22:41 - 000848432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2019-10-08 19:59 - 2017-06-15 22:41 - 000460448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2019-10-08 19:57 - 2019-02-19 16:38 - 000276952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2019-10-08 19:57 - 2018-10-22 15:30 - 000042736 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2019-10-08 19:57 - 2017-06-15 22:41 - 000316528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2019-10-08 19:57 - 2017-06-15 22:41 - 000110320 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2019-10-08 19:57 - 2017-06-15 22:41 - 000083792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2019-10-08 19:56 - 2019-01-17 16:40 - 000274456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2019-10-08 19:56 - 2019-01-16 16:37 - 000209552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2019-10-08 19:56 - 2019-01-16 16:37 - 000065120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2019-10-08 19:56 - 2019-01-16 16:37 - 000037616 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2019-10-08 19:56 - 2017-11-22 08:24 - 000204824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2019-10-07 20:56 - 2017-06-15 16:56 - 000003484 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-07 20:56 - 2017-06-15 16:56 - 000003356 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-07 20:56 - 2017-06-15 16:56 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-02 18:20 - 2017-06-15 20:17 - 000000000 ____D C:\Users\Sworski\Desktop\RYSUNKI
2019-09-29 21:14 - 2018-08-23 23:31 - 000000000 ____D C:\Users\Sworski\AppData\Local\Ubisoft Game Launcher
2019-09-28 20:26 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
 
==================== Files in the root of some directories ================
 
2019-03-07 21:54 - 2019-03-31 19:57 - 000000132 _____ () C:\Users\Sworski\AppData\Roaming\Preferencje formatu BMP CS6 firmy Adobe
2017-07-16 02:06 - 2017-08-08 16:38 - 000000058 _____ () C:\Users\Sworski\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
2018-04-24 07:48 - 2018-04-24 07:48 - 000000000 _____ () C:\Users\Sworski\AppData\Local\{D50EBEC0-6341-4242-9BD5-1FF961538E36}
 
==================== SigCheck ===============================
 
(There is no automatic fix for files that do not pass verification.)
 
 
LastRegBack: 2019-10-25 16:25
==================== End of FRST.txt ============================
Wygenerowano w 0.005s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!