Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 14.03.2018
Uruchomiony przez Jakub (19-03-2018 22:42:25) Run:1
Uruchomiony z E:\pobrane
Załadowane profile: Jakub (Dostępne profile: Jakub)
Tryb startu: Normal
==============================================

fixlist - zawartość:
*****************
CloseProcesses:
CreateRestorePoint:
EmptyTemp:
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [3632848 2017-08-08] (COMODO)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FocalFilterHelper.lnk [2017-06-18]
ShortcutTarget: FocalFilterHelper.lnk -> C:\Program Files (x86)\FocalFilter\FocalFilterHelper.exe (Microsoft)
BootExecute: autocheck autochk * bootdelete
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-09-16] (Intel Security)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-09-16] (Intel Security)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\MO\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
S4 ChromodoUpdater; C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe [2304184 2016-03-30] (Comodo)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [133840 2017-08-08] (COMODO)
S4 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [987048 2016-09-15] (McAfee, Inc.)
S4 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-09-15] (McAfee, Inc.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S1 WinmonProcessMonitor; \??\C:\Windows\System32\drivers\WinmonProcessMonitor.sys [X]
VirusTotal: d:\program files\windows defender\MpCmdRun.exe
COMODO Antivirus (HKLM\...\{DAC390BA-1387-4DF8-A9BC-683E81E77E86}) (Version: 10.1.0.6476 - COMODO Security Solutions Inc.) Hidden
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} =>  -> Brak pliku
ContextMenuHandlers1-x32-x32: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => E:\MO\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} =>  -> Brak pliku
ContextMenuHandlers3-x32: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => E:\MO\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} =>  -> Brak pliku
Task: {A1D60D55-A6B8-401B-BC05-2938E02DF2F2} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => d:\program files\windows defender\MpCmdRun.exe
Task: {A36B5276-56B3-4847-A45B-3AD2C46007CD} - System32\Tasks\{F4C7BB8F-8532-4E02-9318-E5397280DAA0} => C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe
Task: {C4E8B14A-4159-4C58-BDAD-281DBBFC97E8} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => d:\program files\windows defender\MpCmdRun.exe
AlternateDataStreams: C:\autoexec.bat:$CmdTcID [64]
MSCONFIG\Services: ChromodoUpdater => 2
MSCONFIG\Services: TrueKey => 2
MSCONFIG\Services: TrueKeyScheduler => 2
FirewallRules: [{AF915C5C-5614-46C6-9428-DC67E2279402}] => (Allow) C:\Windows\rss\csrss.exe
FirewallRules: [{393A477A-56D1-458B-B27E-A64AAE56D9E8}] => (Allow) C:\Users\Jakub\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
FirewallRules: [{12290FE5-7DE9-46C1-818C-70A7C4F98D78}] => (Allow) C:\Windows\rss\csrss.exe
FirewallRules: [{612A8EB6-A49C-44A4-B991-E21AA0457C6B}] => (Allow) C:\Users\Jakub\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk
C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks\CodeBlocks CC Test.lnk
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{E6EA64B6-F279-4326-AFD4-3FF7E5062C7C}\PlayTasks\0\Zagraj.lnk
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{D17AFEB6-0E99-4305-8A78-6FAC0F2B7387}\PlayTasks\0\Zagraj.lnk
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{C572C5A3-D268-489A-93D9-CC4D5DCA2BB5}\PlayTasks\0\Zagraj.lnk
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{BB07B012-8F26-4C9A-AEAF-32C040C5A2FB}\PlayTasks\0\Zagraj.lnk
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{602E1D5D-4EF4-4498-BEE4-21FBEDD13ECF}\PlayTasks\0\Zagraj.lnk
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{0FA229B8-6CE2-4150-BB0C-350F8049CA6F}\PlayTasks\0\Zagraj.lnk
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{0F6AE92A-C1EA-4138-BB4F-17E4C700F099}\PlayTasks\0\Zagraj.lnk
Hosts:

*****************

Procesy zostały pomyślnie zamknięte.
Punkt przywracania został pomyślnie utworzony.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\IseUI" => pomyślnie usunięto
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FocalFilterHelper.lnk" => nie znaleziono
C:\Program Files => FRST posiada zabezpieczenie uniemożliwiające przesunięcie tego katalogu.
HKLM\System\CurrentControlSet\Control\Session Manager\\BootExecute => Wartość pomyślnie przywrócono
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}" => pomyślnie usunięto
"HKLM\Software\Wow6432Node\Classes\CLSID\{0F4B8786-5502-4803-8EBC-F652A1153BB6}" => pomyślnie usunięto
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{4BAAC1B8-0800-42C9-8FA6-08B211F356B8}" => pomyślnie usunięto
"HKLM\Software\Wow6432Node\Classes\CLSID\{4BAAC1B8-0800-42C9-8FA6-08B211F356B8}" => pomyślnie usunięto
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}" => pomyślnie usunięto
"HKLM\Software\Wow6432Node\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}" => pomyślnie usunięto
"HKLM\Software\Wow6432Node\Classes\PROTOCOLS\Handler\grooveLocalGWS" => pomyślnie usunięto
"HKLM\Software\Wow6432Node\Classes\CLSID\{88FED34C-F0CA-4636-A375-3CB6248B04CD}" => pomyślnie usunięto
"HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk" => pomyślnie usunięto
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk" => pomyślnie usunięto
"HKLM\System\CurrentControlSet\Services\ChromodoUpdater" => pomyślnie usunięto
ChromodoUpdater => serwis pomyślnie usunięto
"HKLM\System\CurrentControlSet\Services\isesrv" => pomyślnie usunięto
isesrv => serwis pomyślnie usunięto
"HKLM\System\CurrentControlSet\Services\TrueKey" => pomyślnie usunięto
TrueKey => serwis pomyślnie usunięto
"HKLM\System\CurrentControlSet\Services\TrueKeyScheduler" => pomyślnie usunięto
TrueKeyScheduler => serwis pomyślnie usunięto
"HKLM\System\CurrentControlSet\Services\catchme" => pomyślnie usunięto
catchme => serwis pomyślnie usunięto
"HKLM\System\CurrentControlSet\Services\WinmonProcessMonitor" => pomyślnie usunięto
WinmonProcessMonitor => serwis pomyślnie usunięto
"VirusTotal: d:\program files\windows defender\MpCmdRun.exe" => nie znaleziono
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DAC390BA-1387-4DF8-A9BC-683E81E77E86}\\SystemComponent" => pomyślnie usunięto
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Comodo Antivirus" => pomyślnie usunięto
HKLM\Software\Classes\CLSID\{4255A182-CAD9-4214-A19B-7BA7FB633BBD} => nie znaleziono
ContextMenuHandlers1-x32-x32: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => E:\MO\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation) => Błąd: Nie znaleziono automatycznej naprawy dla tego wejścia.
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\Comodo Antivirus" => pomyślnie usunięto
HKLM\Software\Classes\CLSID\{4255A182-CAD9-4214-A19B-7BA7FB633BBD} => nie znaleziono
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\XXX Groove GFS Context Menu Handler XXX" => pomyślnie usunięto
"HKLM\Software\Wow6432Node\Classes\CLSID\{6C467336-8281-4E60-8204-430CED96822D}" => pomyślnie usunięto
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Comodo Antivirus" => pomyślnie usunięto
HKLM\Software\Classes\CLSID\{4255A182-CAD9-4214-A19B-7BA7FB633BBD} => nie znaleziono
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1D60D55-A6B8-401B-BC05-2938E02DF2F2} => nie znaleziono
C:\Windows\System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Defender\MP Scheduled Scan" => pomyślnie usunięto
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A36B5276-56B3-4847-A45B-3AD2C46007CD} => nie znaleziono
"C:\Windows\System32\Tasks\{F4C7BB8F-8532-4E02-9318-E5397280DAA0}" => nie znaleziono
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F4C7BB8F-8532-4E02-9318-E5397280DAA0} => nie znaleziono
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C4E8B14A-4159-4C58-BDAD-281DBBFC97E8} => nie znaleziono
C:\Windows\System32\Tasks\Microsoft\Windows Defender\MpIdleTask => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Defender\MpIdleTask" => pomyślnie usunięto
C:\autoexec.bat => ":$CmdTcID" ADS pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ChromodoUpdater" => pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\ChromodoUpdater => nie znaleziono
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TrueKey" => pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\TrueKey => nie znaleziono
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TrueKeyScheduler" => pomyślnie usunięto
HKLM\System\CurrentControlSet\Services\TrueKeyScheduler => nie znaleziono
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AF915C5C-5614-46C6-9428-DC67E2279402}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{393A477A-56D1-458B-B27E-A64AAE56D9E8}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{12290FE5-7DE9-46C1-818C-70A7C4F98D78}" => pomyślnie usunięto
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{612A8EB6-A49C-44A4-B991-E21AA0457C6B}" => pomyślnie usunięto
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio Installer.lnk => pomyślnie przeniesiono
C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks\CodeBlocks CC Test.lnk => pomyślnie przeniesiono
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{E6EA64B6-F279-4326-AFD4-3FF7E5062C7C}\PlayTasks\0\Zagraj.lnk => pomyślnie przeniesiono
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{D17AFEB6-0E99-4305-8A78-6FAC0F2B7387}\PlayTasks\0\Zagraj.lnk => pomyślnie przeniesiono
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{C572C5A3-D268-489A-93D9-CC4D5DCA2BB5}\PlayTasks\0\Zagraj.lnk => pomyślnie przeniesiono
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{BB07B012-8F26-4C9A-AEAF-32C040C5A2FB}\PlayTasks\0\Zagraj.lnk => pomyślnie przeniesiono
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{602E1D5D-4EF4-4498-BEE4-21FBEDD13ECF}\PlayTasks\0\Zagraj.lnk => pomyślnie przeniesiono
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{0FA229B8-6CE2-4150-BB0C-350F8049CA6F}\PlayTasks\0\Zagraj.lnk => pomyślnie przeniesiono
C:\Users\Jakub\AppData\Local\Microsoft\Windows\GameExplorer\{0F6AE92A-C1EA-4138-BB4F-17E4C700F099}\PlayTasks\0\Zagraj.lnk => pomyślnie przeniesiono
C:\Windows\System32\Drivers\etc\hosts => pomyślnie przeniesiono
Hosts pomyślnie przywrócono.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 29776599 B
Java, Flash, Steam htmlcache => 1080 B
Windows/system/drivers => 17174 B
Edge => 0 B
Chrome => 1050448 B
Firefox => 391293867 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 25050 B
LocalService => 0 B
NetworkService => 0 B
Jakub => 3340691485 B

RecycleBin => 0 B
EmptyTemp: => 3.5 GB danych tymczasowych Usunięto.

================================


System wymagał restartu.

==== Koniec  Fixlog 22:43:46 ====