wklejto.pl

Dodane przez: ~moplefan (2018-02-09 14:14) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 08.02.2018
Uruchomiony przez Monika (administrator)  MONIA (09-02-2018 13:50:10)
Uruchomiony z C:UsersMonikaDownloads
Załadowane profile: UpdatusUser & Monika (Dostępne profile: UpdatusUser & Monika)
Platform: Windows 10 Home Wersja 1703 15063.850 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Edge)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Procesy (filtrowane) =================
 
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
 
() C:Program Files (x86)AVG Web TuneUpWtuSystemSupport.exe
(NVIDIA Corporation) C:WindowsSystem32nvvsvc.exe
(NVIDIA Corporation) C:Program FilesNVIDIA CorporationDisplaynvxdsync.exe
(Intel Corporation) C:WindowsSystem32igfxCUIService.exe
(Microsoft Corporation) C:WindowsSystem32wlanext.exe
(Broadcom Corporation.) C:WindowsSystem32BtwRSupportService.exe
(Realsil Microelectronics Inc.) C:Program Files (x86)RealtekRealtek PCIE Card ReaderRIconMan.exe
(Intel(R) Corporation) C:Program FilesInteliCLS ClientHeciServer.exe
(Intel Corporation) C:Program Files (x86)IntelIntel(R) Management Engine ComponentsDALJhi_service.exe
(Sony Corporation) C:Program Files (x86)SonyPlayMemories HomePMBDeviceInfoProvider.exe
(AVG Technologies CZ, s.r.o.) C:Program Files (x86)AVGAVG PC TuneUpTuneUpUtilitiesService64.exe
(Sony Corporation) C:Program Files (x86)SonyVAIO Control CenterVESMgr.exe
(Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.12.17007.18011-0MsMpEng.exe
(Sony Corporation) C:Program Files (x86)SonyVAIO Control CenterVESMgrSub.exe
(Sony Corporation) C:Program Files (x86)SonyVAIO Control CenterVESMgrSub.exe
(Microsoft Corporation) C:WindowsSysWOW64dllhost.exe
(Sony Corporation) C:Program Files (x86)SonyVAIO Control CenterSUSSoundProxy.exe
(Intel Corporation) C:WindowsSystem32igfxEM.exe
(Intel Corporation) C:WindowsSystem32igfxHK.exe
(Intel Corporation) C:WindowsSystem32igfxTray.exe
(AVG Technologies CZ, s.r.o.) C:Program Files (x86)AVGAVG PC TuneUpTuneUpUtilitiesApp64.exe
(Sony Corporation) C:Program Files (x86)SonyVAIO Control CenterNetworkSettingNetworkClient.exe
(NVIDIA Corporation) C:Program FilesNVIDIA CorporationDisplaynvtray.exe
(Microsoft Corporation) C:Program FilesWindows DefenderMSASCuiL.exe
(Realtek Semiconductor) C:Program FilesRealtekAudioHDARAVBg64.exe
(Synaptics Incorporated) C:Program FilesSynapticsSynTPSynTPEnh.exe
(Oracle Corporation) C:Program Files (x86)Common FilesJavaJava Updatejusched.exe
() C:Program Files (x86)AVG Web TuneUpvprot.exe
(Synaptics Incorporated) C:Program FilesSynapticsSynTPSynTPHelper.exe
(Intel Corporation) C:Program Files (x86)IntelIntel(R) Management Engine ComponentsFWServiceIntelMeFWService.exe
(Google Inc.) C:Program Files (x86)GoogleUpdate1.3.33.7GoogleCrashHandler.exe
(Google Inc.) C:UsersMonikaAppDataLocalGoogleUpdate1.3.33.7GoogleCrashHandler.exe
(Google Inc.) C:Program Files (x86)GoogleUpdate1.3.33.7GoogleCrashHandler64.exe
(Google Inc.) C:UsersMonikaAppDataLocalGoogleUpdate1.3.33.7GoogleCrashHandler64.exe
(Sony Corporation) C:Program FilesSonyVAIO UpdateVAIOUpdt.exe
(Intel Corporation) C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe
(Microsoft Corporation) C:ProgramDataMicrosoftWindows DefenderPlatform4.12.17007.18011-0NisSrv.exe
(Microsoft Corporation) C:WindowsSystem32dllhost.exe
(Sony Corporation) C:Program Files (x86)SonyVAIO Control Centervim.exe
(NVIDIA Corporation) C:Program Files (x86)NVIDIA CorporationNVIDIA Update Coredaemonu.exe
(Sony Corporation) C:Program Files (x86)SonyVAIO Control Centervim.exe
(Microsoft Corporation) C:WindowsSystem32dllhost.exe
(Oracle Corporation) C:Program Files (x86)Common FilesJavaJava Updatejucheck.exe
(Sony Corporation) C:Program FilesSonyVAIO UpdateVUAgent.exe
(Intel Corporation) C:Program Files (x86)IntelIntel(R) Management Engine ComponentsUNSUNS.exe
(Microsoft Corporation) C:WindowsSystem32Taskmgr.exe
 
==================== Rejestr (filtrowane) ===========================
 
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
 
HKLM...Run: [SecurityHealth] => C:Program FilesWindows DefenderMSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM...Run: [RtHDVBg] => C:Program FilesRealtekAudioHDARAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM...Run: [AvgUi] => C:Program Files (x86)AVGFrameworkCommonavguirna.exe [239592 2017-09-14] ()
HKLM...Run: [SynTPEnh] => C:Program FilesSynapticsSynTPSynTPEnh.exe [3928264 2015-05-27] (Synaptics Incorporated)
HKLM-x32...Run: [PMBVolumeWatcher] => C:Program Files (x86)SonyPlayMemories HomePMBVolumeWatcher.exe [740376 2013-02-06] (Sony Corporation)
HKLM-x32...Run: [Intel AppUp(R) center] => C:Program Files (x86)IntelIntelAppStorebinismagent.exe [156000 2013-02-19] (Intel Corporation)
HKLM-x32...Run: [SunJavaUpdateSched] => C:Program Files (x86)Common FilesJavaJava Updatejusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM-x32...Run: [AvgUi] => C:Program Files (x86)AVGFrameworkCommonavguirna.exe [239592 2017-09-14] ()
HKLM-x32...Run: [vProt] => C:Program Files (x86)AVG Web TuneUpvprot.exe [2187336 2018-01-03] ()
HKUS-1-5-21-2287847894-3235838258-45098106-1001...Run: [Facebook Update] => C:UsersMonikaAppDataLocalFacebookUpdateFacebookUpdate.exe [138096 2013-10-23] (Facebook Inc.)
HKUS-1-5-21-2287847894-3235838258-45098106-1001...RunOnce: [WAB Migrate] => C:Program FilesWindows Mailwab.exe [517120 2017-03-18] (Microsoft Corporation)
HKUS-1-5-21-2287847894-3235838258-45098106-1002...Run: [Facebook Update] => C:UsersMonikaAppDataLocalFacebookUpdateFacebookUpdate.exe [138096 2013-10-23] (Facebook Inc.)
HKUS-1-5-21-2287847894-3235838258-45098106-1002...Run: [Sony PC Companion] => C:Program Files (x86)SonySony PC CompanionPCCompanion.exe [457088 2015-09-23] (Sony)
HKUS-1-5-21-2287847894-3235838258-45098106-1002...Run: [DAEMON Tools Ultra Agent] => C:Program FilesDAEMON Tools UltraDTAgent.exe [4526424 2015-12-27] (Disc Soft Ltd)
HKUS-1-5-21-2287847894-3235838258-45098106-1002...Run: [Lync] => C:Program FilesMicrosoft OfficeOffice16lync.exe [27088568 2017-12-16] (Microsoft Corporation)
HKUS-1-5-21-2287847894-3235838258-45098106-1002...Run: [Google Update] => C:UsersMonikaAppDataLocalGoogleUpdate1.3.33.7GoogleUpdateCore.exe [601680 2017-11-16] (Google Inc.)
AppInit_DLLs: C:Windowssystem32nvinitx.dll => C:Windowssystem32nvinitx.dll [199064 2016-06-23] (NVIDIA Corporation)
CHR HKLMSOFTWAREPoliciesGoogle: Ograniczenia <==== UWAGA
 
==================== Internet (filtrowane) ====================
 
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
 
TcpipParameters: [DhcpNameServer] 192.168.1.254
Tcpip..Interfaces{1d8649f4-849e-4e41-bf21-7025dd85975f}: [DhcpNameServer] 192.168.1.254
 
Internet Explorer:
==================
HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = www.google.com
HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = www.google.com
HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = www.google.com
HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = www.google.com
HKUS-1-5-21-2287847894-3235838258-45098106-1001SoftwareMicrosoftInternet ExplorerMain,Start Page = hxxps://www.google.pl/
HKUS-1-5-21-2287847894-3235838258-45098106-1001SoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = hxxp://sony13.msn.com
HKUS-1-5-21-2287847894-3235838258-45098106-1002SoftwareMicrosoftInternet ExplorerMain,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKUS-1-5-21-2287847894-3235838258-45098106-1002SoftwareMicrosoftInternet ExplorerMain,Start Page = hxxps://mysearch.avg.com/?cid={47F5330E-1FEF-4552-96FF-1BF21E800973}&mid=c004afd4ed9147cc9d41a9cd7adcf87d-2e11b5950416128e06dd66c161ab468ab47f9497&lang=pl&ds=AVG&coid=avgtbavg&cmpid=0816tb2&pr=fr&d=2016-01-15 16:58:55&v=4.3.4.122&pid=wtu&sg=&sap=hp
HKUS-1-5-21-2287847894-3235838258-45098106-1002SoftwareMicrosoftInternet ExplorerMain,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKUS-1-5-21-2287847894-3235838258-45098106-1002 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={47F5330E-1FEF-4552-96FF-1BF21E800973}&mid=c004afd4ed9147cc9d41a9cd7adcf87d-2e11b5950416128e06dd66c161ab468ab47f9497&lang=pl&ds=AVG&coid=avgtbavg&cmpid=1116tb&pr=fr&d=2016-01-15 16:58:55&v=4.3.6.255&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKUS-1-5-21-2287847894-3235838258-45098106-1002 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program FilesMicrosoft OfficeOffice16OCHelper.dll [2017-12-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:Program FilesJavajre1.8.0_65binssv.dll [2015-10-25] (Oracle Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:Program FilesAVG Web TuneUp4.3.9.605AVG Web TuneUp.dll [2018-01-03] (AVG)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:Program FilesMicrosoft OfficeOffice16GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:Program FilesJavajre1.8.0_65binjp2ssv.dll [2015-10-25] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:Program Files (x86)Microsoft OfficeOffice16OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:Program Files (x86)Javajre1.8.0_65binssv.dll [2015-10-25] (Oracle Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:Program Files (x86)AVG Web TuneUp4.3.9.605AVG Web TuneUp.dll [2018-01-03] (AVG)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:Program Files (x86)Microsoft OfficeOffice16GROOVEEX.DLL [2017-07-11] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:Program Files (x86)Javajre1.8.0_65binjp2ssv.dll [2015-10-25] (Oracle Corporation)
Toolbar: HKLM - Brak nazwy - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  Brak pliku
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:Program FilesMicrosoft OfficeOffice16MSOSB.DLL [2017-08-15] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:Program Files (x86)Microsoft OfficeOffice16MSOSB.DLL [2017-08-15] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:Program FilesMicrosoft OfficeOffice16MSOSB.DLL [2017-08-15] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:Program Files (x86)Microsoft OfficeOffice16MSOSB.DLL [2017-08-15] (Microsoft Corporation)
 
FireFox:
========
FF DefaultProfile: 1zqape3x.default
FF ProfilePath: C:UsersMonikaAppDataRoamingMozillaFirefoxProfiles1zqape3x.default [2018-02-04]
FF Extension: (AVG Web TuneUp) - C:UsersMonikaAppDataRoamingMozillaFirefoxProfiles1zqape3x.defaultExtensionsavg@toolbar.xpi [2016-12-07] [Przestarzałe]
FF Extension: (Constant Fun) - C:UsersMonikaAppDataRoamingMozillaFirefoxProfiles1zqape3x.defaultExtensions{a4bba433-422f-4e06-89ad-b3fca2f5d5c4}.xpi [2015-12-26] [Przestarzałe] [Brak podpisu cyfrowego]
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:Program FilesJavajre1.8.0_65bindtpluginnpDeployJava1.dll [2015-10-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:Program FilesJavajre1.8.0_65binplugin2npjp2.dll [2015-10-25] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:Program FilesMicrosoft Silverlight5.1.50907.0npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:PROGRA~1MICROS~1Office16NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:Program Files (x86)Common FilesAVG Secure SearchSiteSafetyInstaller40.3.8\npsitesafety.dll [Brak pliku]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:Program Files (x86)IntelIntel(R) Management Engine ComponentsIPTnpIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:Program Files (x86)IntelIntel(R) Management Engine ComponentsIPTnpIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:Program Files (x86)Javajre1.8.0_65bindtpluginnpDeployJava1.dll [2015-10-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:Program Files (x86)Javajre1.8.0_65binplugin2npjp2.dll [2015-10-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:Program Files (x86)Mozilla Firefoxpluginsnpmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:Program Files (x86)Microsoft Silverlight5.1.50907.0npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:PROGRA~2MICROS~1Office16NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:Program Files (x86)GoogleUpdate1.3.33.7npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:Program Files (x86)GoogleUpdate1.3.33.7npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:Program Files (x86)AdobeAcrobat Reader DCReaderAIRnppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin HKUS-1-5-21-2287847894-3235838258-45098106-1002: @Skype Limited.com/Facebook Video Calling Plugin -> C:UsersMonikaAppDataLocalFacebookVideoSkypenpFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKUS-1-5-21-2287847894-3235838258-45098106-1002: @tools.google.com/Google Update;version=3 -> C:UsersMonikaAppDataLocalGoogleUpdate1.3.33.7npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin HKUS-1-5-21-2287847894-3235838258-45098106-1002: @tools.google.com/Google Update;version=9 -> C:UsersMonikaAppDataLocalGoogleUpdate1.3.33.7npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin HKUS-1-5-21-2287847894-3235838258-45098106-1002: intel.com/AppUp -> C:Program Files (x86)IntelIntelAppStorebinnpAppUp.dll [2013-02-19] (Intel)
FF Plugin HKUS-1-5-21-2287847894-3235838258-45098106-1002: intel.com/AppUpx64 -> C:Program Files (x86)IntelIntelAppStorebinnpAppUp_x64.dll [2013-02-19] (Intel)
 
Chrome: 
=======
CHR HomePage: Default -> mysearch.avg.com
CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
CHR DefaultSearchKeyword: Default -> hxxps://mysearch.avg.com
CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Profile: C:UsersMonikaAppDataLocalGoogleChromeUser DataDefault [2018-02-09]
CHR Extension: (Prezentacje) - C:UsersMonikaAppDataLocalGoogleChromeUser DataDefaultExtensionsaapocclcgogkmnckokdopfmhonfmgoek [2017-11-06]
CHR Extension: (Dokumenty) - C:UsersMonikaAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2017-10-19]
CHR Extension: (Dysk Google) - C:UsersMonikaAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2016-12-05]
CHR Extension: (YouTube) - C:UsersMonikaAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-05]
CHR Extension: (AVG Secure Search) - C:UsersMonikaAppDataLocalGoogleChromeUser DataDefaultExtensionschfdnecihphmhljaaejmgoiahnihplgn [2016-12-14]
CHR Extension: (Arkusze) - C:UsersMonikaAppDataLocalGoogleChromeUser DataDefaultExtensionsfelcaaldnbdncclmgdcncolpebgiejap [2017-10-19]
CHR Extension: (Dokumenty Google offline) - C:UsersMonikaAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-07]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:UsersMonikaAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:UsersMonikaAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2016-12-05]
CHR Extension: (Chrome Media Router) - C:UsersMonikaAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-20]
CHR HKUS-1-5-21-2287847894-3235838258-45098106-1002SOFTWAREGoogleChromeExtensions...ChromeExtension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32...ChromeExtension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
 
Opera: 
=======
OPR StartupUrls: "hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRghGcgxaUFsTQBgXeQAITA1CEwQOIQlaUhRIGQUacFoKVAFBEAUFIk0FA1oDB0VXfV5bFElXTwhgL1dLFVgfVXNWLg=="
OPR Session Restore: -> [funkcja włączona]
 
==================== Usługi (filtrowane) ====================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
S2 avgsvc; C:Program Files (x86)AVGFrameworkCommonavgsvca.exe [1428656 2017-09-14] () [Brak podpisu cyfrowego]
R2 BcmBtRSupport; C:WINDOWSsystem32BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)
S3 Disc Soft Ultra Bus Service; C:Program FilesDAEMON Tools UltraDiscSoftBusService.exe [1340760 2015-08-10] (Disc Soft Ltd)
R2 igfxCUIService1.0.0.0; C:WINDOWSsystem32igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 Intel(R) ME Service; C:Program Files (x86)IntelIntel(R) Management Engine ComponentsFWServiceIntelMeFWService.exe [129824 2013-01-23] (Intel Corporation)
R2 jhi_service; C:Program Files (x86)IntelIntel(R) Management Engine ComponentsDALjhi_service.exe [166688 2013-01-23] (Intel Corporation)
S4 MBAMScheduler; C:Program Files (x86)Malwarebytes Anti-Malwarembamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S2 MBAMService; C:Program Files (x86)Malwarebytes Anti-Malwarembamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 PMBDeviceInfoProvider; C:Program Files (x86)SonyPlayMemories HomePMBDeviceInfoProvider.exe [483864 2013-02-06] (Sony Corporation)
R2 TuneUp.UtilitiesSvc; C:Program Files (x86)AVGAVG PC TuneUpTuneUpUtilitiesService64.exe [5906704 2017-07-26] (AVG Technologies CZ, s.r.o.)
S3 VCFw; C:Program Files (x86)Common FilesSony SharedVAIO Content Folder WatcherVCFw.exe [972000 2013-01-06] (Sony Corporation)
R3 VUAgent; C:Program FilesSonyVAIO Updatevuagent.exe [1656600 2016-03-31] (Sony Corporation)
R3 WdNisSvc; C:ProgramDataMicrosoftWindows Defenderplatform4.12.17007.18011-0NisSrv.exe [356168 2018-01-22] (Microsoft Corporation)
R2 WinDefend; C:ProgramDataMicrosoftWindows Defenderplatform4.12.17007.18011-0MsMpEng.exe [105792 2018-01-22] (Microsoft Corporation)
R2 WtuSystemSupport; C:Program Files (x86)AVG Web TuneUpWtuSystemSupport.exe [981576 2018-01-03] ()
S2 McOobeSv2; "C:Program FilesCommon FilesmcafeePlatformMcSvcHostMcSvHost.exe" /McCoreSvc [X]
 
===================== Sterowniki (filtrowane) ======================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R3 bcbtums; C:WINDOWSsystem32driversbcbtums.sys [173312 2015-03-27] (Broadcom Corporation.)
R3 BCM43XX; C:WINDOWSsystem32DRIVERSbcmwl63a.sys [8469680 2013-12-07] (Broadcom Corporation)
S3 EsgScanner; C:WINDOWSSystem32DRIVERSEsgScanner.sys [22704 2016-01-17] ()
R3 MBAMProtector; C:WINDOWSsystem32driversmbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:WINDOWSsystem32driversMBAMSwissArmy.sys [192216 2016-01-18] (Malwarebytes)
S3 MBAMWebAccessControl; C:WINDOWSsystem32driversmwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R1 MpKsl11199f7b; C:ProgramDataMicrosoftWindows DefenderDefinition Updates{66726254-7113-4646-AF8A-A3202A2876B7}MpKsl11199f7b.sys [58120 2018-02-09] (Microsoft Corporation)
R1 MpKsl2c22c2d3; C:ProgramDataMicrosoftWindows DefenderDefinition Updates{BDEDDBF8-AF33-4B7F-958E-D642271F4C20}MpKsl2c22c2d3.sys [58120 2018-02-06] (Microsoft Corporation)
S3 SDFRd; C:WINDOWSSystem32driversSDFRd.sys [31128 2017-03-18] ()
R3 SmbDrvI; C:WINDOWSsystem32DRIVERSSmb_driver_Intel.sys [42696 2015-05-27] (Synaptics Incorporated)
R3 TuneUpUtilitiesDrv; C:Program Files (x86)AVGAVG PC TuneUpTuneUpUtilitiesDriver64.sys [32304 2017-02-21] (AVG Netherlands B.V.)
S0 WdBoot; C:WINDOWSSystem32driverswdWdBoot.sys [46072 2018-01-22] (Microsoft Corporation)
R0 WdFilter; C:WINDOWSSystem32driverswdWdFilter.sys [288848 2018-01-22] (Microsoft Corporation)
R3 WdNisDrv; C:WINDOWSSystem32driverswdWdNisDrv.sys [129616 2018-01-22] (Microsoft Corporation)
 
==================== NetSvcs (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
 
==================== Jeden miesiąc - utworzone pliki i foldery ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2018-02-09 13:50 - 2018-02-09 13:51 - 000022719 _____ C:UsersMonikaDownloadsFRST.txt
2018-02-09 13:47 - 2018-02-09 13:47 - 000005797 _____ C:UsersMonikaDesktopAdwCleaner[S0].txt
2018-02-09 13:41 - 2018-02-09 13:50 - 000000000 ____D C:FRST
2018-02-09 13:40 - 2018-02-09 13:45 - 000000000 ____D C:AdwCleaner
2018-02-09 13:40 - 2018-02-09 13:41 - 002401792 _____ (Farbar) C:UsersMonikaDownloadsFRST64.exe
2018-02-09 13:40 - 2018-02-09 13:40 - 008222496 _____ (Malwarebytes) C:UsersMonikaDownloadsadwcleaner_7.0.8.0.exe
2018-02-09 13:23 - 2018-02-09 13:23 - 000000279 _____ C:UsersMonikaAppDataRoamingMicrosoftWindowsStart MenuProgramsTen komputer.lnk
2018-02-09 13:17 - 2018-02-09 13:18 - 010593944 _____ (McAfee, Inc.) C:UsersMonikaDownloadsMCPR.exe
2018-02-09 12:48 - 2018-02-09 12:48 - 000000000 ____D C:WINDOWSsystem32Driverswd
2018-02-06 13:26 - 2018-02-06 13:27 - 000000000 ___HD C:$WINDOWS.~BT
2018-02-06 12:21 - 2018-02-06 12:21 - 000002245 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Earth Pro.lnk
2018-02-06 12:21 - 2018-02-06 12:21 - 000002207 _____ C:UsersPublicDesktopGoogle Earth Pro.lnk
2018-02-06 12:20 - 2018-02-06 12:20 - 000000000 ____D C:Program FilesGoogle
 
==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2018-02-09 13:26 - 2017-03-18 22:03 - 000000000 ____D C:WINDOWSAppReadiness
2018-02-09 13:26 - 2013-10-17 19:57 - 000000000 ____D C:UsersMonikaAppDataLocalPackages
2018-02-09 13:18 - 2013-08-20 21:41 - 000000000 ____D C:ProgramDataMcAfee
2018-02-09 13:07 - 2017-03-18 22:03 - 000000000 ___HD C:Program FilesWindowsApps
2018-02-09 12:56 - 2017-12-04 11:37 - 000004204 _____ C:WINDOWSSystem32TasksUser_Feed_Synchronization-{D46C38A3-3E5C-4F4E-8C5F-2BF7DDF143B1}
2018-02-09 12:55 - 2017-12-04 11:31 - 002000474 _____ C:WINDOWSsystem32PerfStringBackup.INI
2018-02-09 12:55 - 2017-03-20 04:59 - 000907046 _____ C:WINDOWSsystem32perfh015.dat
2018-02-09 12:55 - 2017-03-20 04:59 - 000186608 _____ C:WINDOWSsystem32perfc015.dat
2018-02-09 12:48 - 2015-08-13 10:26 - 000000000 __SHD C:UsersMonikaIntelGraphicsProfiles
2018-02-09 12:47 - 2017-12-04 11:37 - 000000006 ____H C:WINDOWSTasksSA.DAT
2018-02-09 12:46 - 2017-03-18 12:40 - 000786432 _____ C:WINDOWSsystem32configBBI
2018-02-09 12:43 - 2017-12-04 10:52 - 000000000 ____D C:WINDOWSsystem32SleepStudy
2018-02-06 13:27 - 2017-10-06 21:19 - 000000000 ___DC C:WINDOWSPanther
2018-02-06 13:26 - 2017-12-04 10:44 - 000000000 ____D C:Windows.old
2018-02-06 12:57 - 2017-03-18 22:01 - 000000000 ____D C:WINDOWSINF
2018-02-06 12:32 - 2017-10-06 21:18 - 000000000 ____D C:Program Filesrempl
2018-02-06 12:23 - 2018-01-09 15:14 - 000063626 _____ C:WINDOWSControl.KTL
2018-02-06 12:23 - 2018-01-04 12:59 - 001427282 _____ C:WINDOWSProcessedPackets.KTL
2018-02-06 12:23 - 2017-11-28 13:11 - 005760100 _____ C:WINDOWSNGIPacket.KTL
2018-02-06 12:23 - 2017-11-28 13:11 - 000288294 _____ C:WINDOWSNGIControl.KTL
2018-02-06 12:23 - 2017-11-28 13:11 - 000288104 _____ C:WINDOWSSentOSPackets.KTL
2018-02-06 12:20 - 2013-10-27 18:42 - 000000000 ____D C:Program Files (x86)Google
2018-02-04 21:31 - 2014-01-02 19:03 - 000548000 ____N (Microsoft Corporation) C:WINDOWSsystem32MpSigStub.exe
2018-02-04 20:52 - 2017-12-04 11:37 - 000003992 _____ C:WINDOWSSystem32TasksOpera scheduled Autoupdate 1432471631
2018-02-04 20:52 - 2015-05-24 13:46 - 000000000 ____D C:Program Files (x86)Opera
2018-01-22 17:35 - 2013-10-21 14:18 - 000000000 ____D C:WINDOWSsystem32MRT
2018-01-21 17:44 - 2017-10-19 12:10 - 129365736 ____C (Microsoft Corporation) C:WINDOWSsystem32MRT-KB890830.exe
2018-01-21 17:43 - 2013-10-21 14:18 - 129365736 ____C (Microsoft Corporation) C:WINDOWSsystem32MRT.exe
2018-01-21 17:42 - 2017-03-18 21:51 - 000000000 ____D C:WINDOWSCbsTemp
2018-01-19 10:45 - 2012-07-26 06:26 - 000000301 _____ C:WINDOWSwin.ini
2018-01-17 20:27 - 2013-10-17 19:40 - 000000000 __RHD C:UsersPublicAccountPictures
2018-01-17 20:23 - 2017-12-04 10:52 - 000447896 _____ C:WINDOWSsystem32FNTCACHE.DAT
2018-01-17 20:20 - 2017-03-18 22:03 - 000000000 ___SD C:WINDOWSSysWOW64F12
2018-01-17 20:20 - 2017-03-18 22:03 - 000000000 ___SD C:WINDOWSsystem32F12
 
==================== Pliki w katalogu głównym wybranych folderów =======
 
2015-03-03 18:46 - 2015-03-03 18:54 - 000005906 _____ () C:UsersMonikaAppDataLocalunins000.dat
2015-03-03 18:54 - 2015-03-03 18:54 - 000707744 _____ () C:UsersMonikaAppDataLocalunins000.exe
2015-03-03 18:46 - 2015-03-03 18:54 - 000011761 _____ () C:UsersMonikaAppDataLocalunins000.msg
 
Niektóre pliki w TEMP:
====================
2017-12-04 14:45 - 2015-08-11 16:00 - 007675448 _____ (Spotify Ltd) C:UsersMonikaAppDataLocalTempSpotifyUninstall.exe
 
==================== Bamital & volsnap ======================
 
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
 
C:WINDOWSsystem32winlogon.exe => Plik podpisany cyfrowo
C:WINDOWSsystem32wininit.exe => Plik podpisany cyfrowo
C:WINDOWSexplorer.exe => Plik podpisany cyfrowo
C:WINDOWSSysWOW64explorer.exe => Plik podpisany cyfrowo
C:WINDOWSsystem32svchost.exe => Plik podpisany cyfrowo
C:WINDOWSSysWOW64svchost.exe => Plik podpisany cyfrowo
C:WINDOWSsystem32services.exe => Plik podpisany cyfrowo
C:WINDOWSsystem32User32.dll => Plik podpisany cyfrowo
C:WINDOWSSysWOW64User32.dll => Plik podpisany cyfrowo
C:WINDOWSsystem32userinit.exe => Plik podpisany cyfrowo
C:WINDOWSSysWOW64userinit.exe => Plik podpisany cyfrowo
C:WINDOWSsystem32rpcss.dll => Plik podpisany cyfrowo
C:WINDOWSsystem32dnsapi.dll => Plik podpisany cyfrowo
C:WINDOWSSysWOW64dnsapi.dll => Plik podpisany cyfrowo
C:WINDOWSsystem32Driversvolsnap.sys => Plik podpisany cyfrowo
 
LastRegBack: 2018-01-04 14:54
 
==================== Koniec  FRST.txt ============================
Wygenerowano w 0.038s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!