Po włączeniu komputera od razu w przeglądarce załącz mi się ta strona diplodocs.org Proszę o pomoc. Log z FRST
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 10.02.2019 01
Uruchomiony przez Łukasz (administrator) TRACERPC (11-02-2019 16:48:11)
Uruchomiony z C:\Users\Łukasz\Downloads
Załadowane profile: Łukasz (Dostępne profile: Łukasz)
Platform: Windows 8.1 Pro (Update) (X64) Język: Polski (Polska)
Domyślna przeglądarka: FF
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
() C:\Program Files (x86)\EaseUS\Todo Backup\CMC\bin\EBCClient.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(@ByELDI) C:\Program Files\KMSpico\Service_KMS.exe
() C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Alexandr Irza) C:\Program Files (x86)\Volume2\Volume2.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Node.js) C:\Program Files\net.downloadhelper.coapp\bin\net.downloadhelper.coapp-win-64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Rejestr (filtrowane) ===========================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [Classic Start Menu] = & gt; C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (Ivaylo Beltchev - & gt; IvoSoft) [Brak podpisu cyfrowego]
HKLM\...\Run: [RtHDVCpl] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor Corp - & gt; Realtek Semiconductor)
HKLM-x32\...\Run: [Adobe ARM] = & gt; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems, Incorporated - & gt; Adobe Systems Incorporated)
HKLM-x32\...\Run: [Volume2] = & gt; C:\Program Files (x86)\Volume2\Volume2.exe [4710912 2013-02-10] (Alexandr Irza) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle America, Inc. - & gt; Oracle Corporation)
HKU\S-1-5-21-2011756923-1455782274-4231052353-1001\...\Run: [CCleaner Monitoring] = & gt; C:\Program Files\CCleaner\CCleaner64.exe [7404312 2015-01-20] (Piriform Ltd - & gt; Piriform Ltd)
HKU\S-1-5-21-2011756923-1455782274-4231052353-1001\...\Run: [Volume2] = & gt; C:\Program Files (x86)\Volume2\Volume2.exe [4710912 2013-02-10] (Alexandr Irza)
HKU\S-1-5-21-2011756923-1455782274-4231052353-1001\...\Run: [DAEMON Tools Lite Automount] = & gt; D:\programy\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd - & gt; Disc Soft Ltd)
HKU\S-1-5-21-2011756923-1455782274-4231052353-1001\...\Run: [World of Tanks (1)] = & gt; E:\Gry\wot\WargamingGameUpdater.exe [3139936 2018-06-25] (Wargaming.net Limited - & gt; Wargaming.net)
HKU\S-1-5-21-2011756923-1455782274-4231052353-1001\...\Run: [Łukasz] = & gt; explorer.exe hxxp://dipladoks.org & lt; ==== UWAGA
HKU\S-1-5-21-2011756923-1455782274-4231052353-1001\...\Policies\Explorer: [HideSCAVolume] 0
HKU\S-1-5-21-2011756923-1455782274-4231052353-1001\...\MountPoints2: {0ac5c0b3-424e-11e5-849d-fcaa142f5df4} - " I:\setup.exe "
HKU\S-1-5-21-2011756923-1455782274-4231052353-1001\...\MountPoints2: {3aa09b01-0f22-11e7-870d-fcaa142f5df4} - " I:\Setup.exe "
HKLM\...\Drivers32: [vidc.mjpg] = & gt; C:\Windows\system32\bdmjpeg64.dll [25640 2013-08-05] ()
HKLM\...\Drivers32: [vidc.mpeg] = & gt; C:\Windows\system32\bdmpegv64.dll [70200 2013-08-05] ()
HKLM\...\Drivers32: [msacm.bdmpeg] = & gt; C:\Windows\system32\bdmpega64.acm [70712 2013-08-05] ()
HKLM\...\Drivers32-x32: [vidc.mjpg] = & gt; C:\Windows\SysWOW64\bdmjpeg.dll [23080 2013-08-05] ()
HKLM\...\Drivers32-x32: [vidc.mpeg] = & gt; C:\Windows\SysWOW64\bdmpegv.dll [66104 2013-08-05] ()
HKLM\...\Drivers32-x32: [msacm.bdmpeg] = & gt; C:\Windows\SysWOW64\bdmpega.acm [66104 2013-08-05] ()
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-13] (Google Inc - & gt; Google Inc.)
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{096A6C3E-D31D-4E87-857A-38AC9B13C6C3}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{eb8b2fa8-9174-4cb7-9ca0-8e5b9ccf7db1}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
BHO: IDM integration (IDMIEHlprObj Class) - & gt; {0055C089-8582-441B-A0BF-17B458C2A3A8} - & gt; C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2017-09-22] (Tonec Inc. - & gt; Internet Download Manager, Tonec Inc.)
BHO: Lync Browser Helper - & gt; {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - & gt; C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-01-23] (Microsoft Corporation - & gt; Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-12] (Oracle America, Inc. - & gt; Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-12] (Oracle America, Inc. - & gt; Oracle Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) - & gt; {0055C089-8582-441B-A0BF-17B458C2A3A8} - & gt; C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2017-09-22] (Tonec Inc. - & gt; Internet Download Manager, Tonec Inc.)
BHO-x32: Adobe PDF Link Helper - & gt; {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - & gt; C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated - & gt; Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper - & gt; {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - & gt; C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-01-21] (Microsoft Corporation - & gt; Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - & gt; {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - & gt; C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation - & gt; Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-01-23] (Microsoft Corporation - & gt; Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 754xvexz.default
FF ProfilePath: C:\Users\Łukasz\AppData\Roaming\Mozilla\Firefox\Profiles\754xvexz.default [2019-02-11]
FF Extension: (MEGA) - C:\Users\Łukasz\AppData\Roaming\Mozilla\Firefox\Profiles\754xvexz.default\Extensions\firefox@mega.co.nz.xpi [2019-02-07]
FF Extension: (uBlock Origin) - C:\Users\Łukasz\AppData\Roaming\Mozilla\Firefox\Profiles\754xvexz.default\Extensions\uBlock0@raymondhill.net.xpi [2019-02-05]
FF Extension: (Video DownloadHelper) - C:\Users\Łukasz\AppData\Roaming\Mozilla\Firefox\Profiles\754xvexz.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-08-14]
FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\Łukasz\AppData\Roaming\Mozilla\Firefox\Profiles\754xvexz.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-01-23]
FF Extension: (DownThemAll!) - C:\Users\Łukasz\AppData\Roaming\Mozilla\Firefox\Profiles\754xvexz.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-09-29] [Przestarzałe]
FF HKU\S-1-5-21-2011756923-1455782274-4231052353-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2017-10-03]
FF HKU\S-1-5-21-2011756923-1455782274-4231052353-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Łukasz\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Łukasz\AppData\Roaming\IDM\idmmzcc5 [2017-10-06] [Przestarzałe] [Brak podpisu cyfrowego]
FF HKU\S-1-5-21-2011756923-1455782274-4231052353-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-01-26] [Przestarzałe]
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_114.dll [2019-01-08] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 - & gt; C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 - & gt; C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-12] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - & gt; C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - & gt; C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_114.dll [2019-01-08] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - & gt; D:\programy\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - & gt; C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - & gt; C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - & gt; C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - & gt; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - & gt; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: Adobe Reader - & gt; C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default [2019-02-11]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-28]
CHR Extension: (Chrome Media Router) - C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-05]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2017-10-03]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2017-10-03]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2017-10-03]
==================== Usługi (filtrowane) ====================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1536520 2017-06-09] (BattlEye Innovations e.K. - & gt; )
S3 Disc Soft Lite Bus Service; D:\programy\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd - & gt; Disc Soft Ltd)
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [36904 2015-12-10] (CHENGDU YIWO Tech Development Co., Ltd. - & gt; CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego]
R2 EBC Client; C:\Program Files (x86)\EaseUS\Todo Backup\CMC\bin\EBCClient.exe [89128 2015-12-10] (CHENGDU YIWO Tech Development Co., Ltd. - & gt; ) [Brak podpisu cyfrowego]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2794224 2018-06-13] (ESET, spol. s r.o. - & gt; ESET)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-02-11] (Electronic Arts, Inc. - & gt; Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-02-11] (Electronic Arts, Inc. - & gt; Electronic Arts)
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [971968 2015-02-02] (@ByELDI - & gt; @ByELDI) [Brak podpisu cyfrowego]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation - & gt; Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation - & gt; Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; " C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe " -s NVDisplay.ContainerLocalSystem -f " C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log " -l 3 -d " C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem " -r -p 30000
R2 NvTelemetryContainer; " C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe " -s NvTelemetryContainer -f " C:\ProgramData\NVIDIA\NvTelemetryContainer.log " -l 3 -d " C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins " -r
===================== Sterowniki (filtrowane) ======================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S3 athur; C:\Windows\system32\DRIVERS\athurx.sys [1847296 2010-01-06] (Microsoft Windows Hardware Compatibility Publisher - & gt; Atheros Communications, Inc.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics CO., LTD. - & gt; Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-08-14] (Disc Soft Ltd - & gt; Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [267304 2018-03-25] (ESET, spol. s r.o. - & gt; ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET, spol. s r.o. - & gt; ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15872 2018-06-13] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [200360 2018-03-25] (ESET, spol. s r.o. - & gt; ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [155576 2018-06-13] (ESET, spol. s r.o. - & gt; ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [211744 2018-03-25] (ESET, spol. s r.o. - & gt; ESET)
R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [62640 2018-03-25] (ESET, spol. s r.o. - & gt; ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [85976 2018-03-25] (ESET, spol. s r.o. - & gt; ESET)
R0 EUBAKUP; C:\Windows\System32\drivers\eubakup.sys [60968 2015-12-10] (CHENGDU YIWO Tech Development Co., Ltd. - & gt; CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego]
R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [48168 2015-12-10] (CHENGDU YIWO Tech Development Co., Ltd. - & gt; ) [Brak podpisu cyfrowego]
R1 EUDSKACS; C:\Windows\system32\drivers\eudskacs.sys [18472 2015-12-10] (CHENGDU YIWO Tech Development Co., Ltd. - & gt; CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego]
R1 EUFDDISK; C:\Windows\system32\drivers\EuFdDisk.sys [192552 2015-12-10] (CHENGDU YIWO Tech Development Co., Ltd. - & gt; CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego]
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-08-21] (Malwarebytes Corporation - & gt; Malwarebytes)
R3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [591360 2013-06-18] (Microsoft Windows - & gt; Realtek )
R0 speedfan; C:\Windows\SysWow64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. - & gt; Almico Software)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics CO., LTD. - & gt; Samsung Electronics Co., Ltd.)
S3 usbrndis6; C:\Windows\system32\DRIVERS\usb80236.sys [20992 2013-08-22] (Microsoft Windows - & gt; Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [35320 2014-09-22] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 - & gt; Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [258368 2014-09-22] (Microsoft Windows - & gt; Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Windows - & gt; Microsoft Corporation)
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc (utworzone) ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2019-02-11 16:48 - 2019-02-11 16:48 - 000018357 _____ C:\Users\Łukasz\Downloads\FRST.txt
2019-02-10 22:31 - 2019-02-10 22:31 - 000000000 ____D C:\Users\Public\Documents\Steam
2019-02-08 21:33 - 2019-02-08 21:33 - 000037845 _____ C:\Users\Łukasz\AppData\Local\recently-used.xbel
2019-02-03 20:50 - 2019-02-03 20:50 - 000003868 _____ C:\Users\Łukasz\Documents\cc_20190203_205019.reg
2019-01-31 17:31 - 2019-01-31 17:31 - 000003492 _____ C:\Windows\System32\Tasks\Łukasz
2019-01-16 16:50 - 2015-08-17 07:16 - 000890761 _____ C:\Users\Łukasz\Downloads\Jak-wypelnic-druk-przelewu-n-na-karte.pdf
==================== Jeden miesiąc (zmodyfikowane) ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2019-02-11 16:48 - 2018-12-15 17:07 - 000000000 ____D C:\FRST
2019-02-11 16:47 - 2016-12-11 22:51 - 000000000 ____D C:\Users\Łukasz\AppData\LocalLow\Mozilla
2019-02-11 16:47 - 2015-02-19 16:59 - 000000000 ____D C:\ProgramData\NVIDIA
2019-02-11 16:47 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-02-11 10:24 - 2015-02-19 16:59 - 000000000 ____D C:\Users\Łukasz\AppData\Roaming\ClassicShell
2019-02-11 10:17 - 2018-12-09 17:22 - 000000000 ____D C:\Users\Łukasz\Documents\Euro Truck Simulator 2
2019-02-11 08:41 - 2016-12-29 16:59 - 000000000 ____D C:\Users\Łukasz\Desktop\pierdoły
2019-02-11 08:19 - 2015-12-24 23:36 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-02-11 08:19 - 2015-12-24 23:31 - 000000000 ____D C:\Users\Łukasz\AppData\Roaming\Origin
2019-02-11 08:19 - 2015-05-16 20:38 - 000000000 ____D C:\ProgramData\Origin
2019-02-11 08:16 - 2015-12-24 23:17 - 000000000 ____D C:\Program Files (x86)\Origin
2019-02-11 08:16 - 2014-03-18 10:56 - 001817498 _____ C:\Windows\system32\PerfStringBackup.INI
2019-02-11 08:16 - 2014-03-18 10:28 - 000799780 _____ C:\Windows\system32\perfh015.dat
2019-02-11 08:16 - 2014-03-18 10:28 - 000160522 _____ C:\Windows\system32\perfc015.dat
2019-02-11 08:16 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
2019-02-11 08:06 - 2017-07-18 09:44 - 000000000 ____D C:\Users\Łukasz\Desktop\VBkm
2019-02-11 06:55 - 2016-11-03 16:59 - 000003988 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{F8672702-916C-48AA-85F1-E640F21BDDE1}
2019-02-11 06:52 - 2018-12-15 17:05 - 002434048 _____ (Farbar) C:\Users\Łukasz\Downloads\FRST64.exe
2019-02-11 06:50 - 2015-02-19 17:03 - 000000000 ___RD C:\Users\Łukasz\Desktop\Programy
2019-02-10 22:20 - 2016-11-03 17:33 - 000000000 ____D C:\Users\Łukasz\AppData\Local\CrashDumps
2019-02-10 21:08 - 2015-02-28 21:05 - 000000000 ____D C:\Users\Łukasz\Documents\Bandicam
2019-02-10 18:45 - 2015-02-19 17:24 - 000000000 ____D C:\Users\Łukasz\AppData\Roaming\uTorrent
2019-02-08 21:34 - 2015-03-26 16:58 - 000000000 ____D C:\Users\Łukasz\.gimp-2.8
2019-02-05 16:46 - 2015-02-19 18:39 - 000000000 ____D C:\Users\Łukasz\Documents\OCCT
2019-02-05 16:03 - 2016-06-08 10:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-02-05 16:03 - 2015-02-19 16:48 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-02-05 11:09 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2019-02-05 10:28 - 2015-03-26 17:08 - 000000000 ____D C:\Users\Łukasz\AppData\Local\gtk-2.0
2019-02-05 07:16 - 2015-02-19 16:47 - 000003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2011756923-1455782274-4231052353-1001
2019-02-05 07:10 - 2015-02-19 16:48 - 000001175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-02-05 07:10 - 2015-02-19 16:48 - 000000000 ____D C:\ProgramData\Mozilla
2019-02-04 08:49 - 2015-02-19 23:30 - 000000000 ____D C:\Users\Łukasz
2019-02-04 08:15 - 2015-09-17 17:50 - 000000000 ____D C:\Users\Łukasz\AppData\Roaming\AIMP
2019-01-30 08:58 - 2015-06-20 22:41 - 000000000 ____D C:\Users\Łukasz\dwhelper
==================== Pliki w katalogu głównym wybranych folderów =======
2018-06-26 10:21 - 2018-06-26 10:21 - 000000000 ___SH () C:\Users\Łukasz\AppData\Local\LumaEmu
2019-02-08 21:33 - 2019-02-08 21:33 - 000037845 _____ () C:\Users\Łukasz\AppData\Local\recently-used.xbel
2017-07-26 22:49 - 2018-07-02 00:02 - 000007597 _____ () C:\Users\Łukasz\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap ======================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
C:\Windows\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\explorer.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\explorer.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\svchost.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\User32.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\userinit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\dllhost.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\dllhost.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo
LastRegBack: 2019-02-03 09:34
==================== Koniec FRST.txt ============================