wklejto.pl

Dodane przez: ~tomekg55 (2018-11-14 21:07) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14.11.2018
Uruchomiony przez Tomek (administrator)  TOMEK-KOMPUTER (14-11-2018 20:53:26)
Uruchomiony z C:UsersTomekDownloads
Załadowane profile: Tomek & UpdatusUser (Dostępne profile: Tomek & UpdatusUser)
Platform: Windows 7 Home Premium (X64) Język: Polski (Polska)
Internet Explorer Wersja 8 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Procesy (filtrowane) =================
 
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
 
(AuthenTec, Inc) C:Program FilesTrueSuiteTrueSuite.Service.exe
(NVIDIA Corporation) C:WindowsSystem32nvvsvc.exe
(Microsoft Corporation) C:Program FilesMicrosoft Security ClientMsMpEng.exe
(NVIDIA Corporation) C:Program FilesNVIDIA CorporationDisplayNvXDSync.exe
(NVIDIA Corporation) C:WindowsSystem32nvvsvc.exe
(ASUSTek Computer Inc.) C:Program Files (x86)ASUSATK PackageATK HotkeyAsLdrSrv.exe
(Autodesk Inc.) C:Program Files (x86)Common FilesAutodesk SharedAppManagerR1AdAppMgrSvc.exe
(Adobe Systems, Incorporated) C:Program Files (x86)Common FilesAdobeAdobeGCClientAGMService.exe
(Adobe Systems, Incorporated) C:Program Files (x86)Common FilesAdobeAdobeGCClientAGSService.exe
(Autodesk, Inc.) C:Program Files (x86)AutodeskContent ServiceConnect.Service.ContentService.exe
(Intel Corporation) C:Program Files (x86)IntelBluetoothdevmonsrv.exe
(Broadcom Corporation.) C:Program FilesASUSBluetooth Softwarebtwdins.exe
(Brio) C:Program FilesFolderSizeFolderSizeSvc.exe
() C:ProgramDataMobileBrServmbbService.exe
(Intel Corporation) C:Program Files (x86)IntelBluetoothobexsrv.exe
(Malwarebytes) C:Program FilesMalwarebytesAnti-MalwareMBAMService.exe
(Microsoft Corporation) C:Program FilesMicrosoft Security ClientNisSrv.exe
(AuthenTec Inc.) C:Program FilesTrueSuiteTrueSuite.TouchControl.exe
(ASUSTek Computer Inc.) C:Program Files (x86)ASUSATK PackageATK HotkeyHControl.exe
(ASUSTek Computer Inc.) C:Program Files (x86)ASUSATK PackageATKOSD2ATKOSD2.exe
(Synaptics Incorporated) C:Program FilesSynapticsSynTPSynTPEnh.exe
(Realtek Semiconductor) C:Program FilesRealtekAudioHDARAVCpl64.exe
(Realtek Semiconductor) C:Program FilesRealtekAudioHDARAVBg64.exe
(Microsoft Corporation) C:Program FilesMicrosoft Security Clientmsseces.exe
(Intel Corporation) C:WindowsSystem32igfxtray.exe
(Intel Corporation) C:WindowsSystem32igfxpers.exe
(AuthenTec, Inc.) C:Program FilesTrueSuitex86TrueSuite.ClientAppLogonExe.exe
(Logitech, Inc.) C:Program FilesLogitechSetPointPSetPoint.exe
(Synaptics Incorporated) C:Program FilesSynapticsSynTPSynTPHelper.exe
(Intel Corporation) C:Program Files (x86)IntelBluetoothmediasrv.exe
(Logitech, Inc.) C:Program FilesCommon FilesLogiShrdKHAL3KHALMNPR.exe
(Malwarebytes) C:Program FilesMalwarebytesAnti-Malwarembamtray.exe
(Akamai Technologies, Inc.) C:UsersTomekAppDataLocalAkamainetsession_win.exe
(Microsoft Corporation) C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE
(Akamai Technologies, Inc.) C:UsersTomekAppDataLocalAkamainetsession_win.exe
(Broadcom Corporation.) C:Program FilesASUSBluetooth SoftwareBTTray.exe
(Microsoft Corporation) C:Program Files (x86)Microsoft OfficeOffice14ONENOTEM.EXE
(Virage Logic Corporation / Sonic Focus) C:Program Files (x86)ASUSSonic FocusSonicFocusTray.exe
(ASUSTek Computer Inc.) C:Program Files (x86)ASUSATK PackageATK MediaDMedia.exe
(Windows (R) Win 7 DDK provider) C:Program FilesFresco Logic IncFresco Logic USB3.0 Host ControllerhostFLxHCIm.exe
(ASUSTek Computer Inc.) C:Program Files (x86)ASUSUSBChargerPlusUsbChargerPlus.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Broadcom Corporation.) C:Program FilesASUSBluetooth SoftwareBTStackServer.exe
(NVIDIA Corporation) C:Program Files (x86)NVIDIA CorporationNVIDIA Updatusdaemonu.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
(Google Inc.) C:Program Files (x86)GoogleChromeApplicationchrome.exe
 
==================== Rejestr (filtrowane) ===========================
 
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
 
HKLM...Run: [SynTPEnh] => C:Program FilesSynapticsSynTPSynTPEnh.exe [2392360 2017-02-06] (Synaptics Incorporated)
HKLM...Run: [RtHDVCpl] => C:Program FilesRealtekAudioHDARAVCpl64.exe [11858536 2017-02-06] (Realtek Semiconductor)
HKLM...Run: [RtHDVBg] => C:Program FilesRealtekAudioHDARAVBg64.exe [2226280 2017-02-06] (Realtek Semiconductor)
HKLM...Run: [MSC] => c:Program FilesMicrosoft Security Clientmsseces.exe [1353680 2016-11-14] (Microsoft Corporation)
HKLM...Run: [BTMTrayAgent] => rundll32.exe "C:Program Files (x86)IntelBluetoothbtmshell.dll",TrayApp
HKLM...Run: [AdobeAAMUpdater-1.0] => C:Program Files (x86)Common FilesAdobeOOBEPDAppUWAUpdaterStartupUtility.exe [508128 2016-03-22] (Adobe Systems Incorporated)
HKLM...Run: [AmIcoSinglun64] => C:Program Files (x86)AmIcoSingLunAmIcoSinglun64.exe [324096 2010-08-11] (Alcor Micro Corp.)
HKLM...Run: [ClientAppLogon] => C:Program FilesTrueSuiteTrueSuite.ClientAppLogonExe.exe [421192 2011-10-10] (AuthenTec, Inc.)
HKLM...Run: [ClientAppLogon32] => C:Program FilesTrueSuitex86TrueSuite.ClientAppLogonExe.exe [308040 2011-10-10] (AuthenTec, Inc.)
HKLM...Run: [EvtMgr6] => C:Program FilesLogitechSetPointPSetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM...Run: [AdobeGCInvoker-1.0] => C:Program Files (x86)Common FilesAdobeAdobeGCClientAGCInvokerUtility.exe [2670056 2018-09-10] (Adobe Systems, Incorporated)
HKLM-x32...Run: [SonicMasterTray] => C:Program Files (x86)ASUSSonic FocusSonicFocusTray.exe [984400 2010-07-09] (Virage Logic Corporation / Sonic Focus)
HKLM-x32...Run: [ATKOSD2] => C:Program Files (x86)ASUSATK PackageATKOSD2ATKOSD2.exe [433848 2016-08-17] (ASUSTek Computer Inc.)
HKLM-x32...Run: [ATKMEDIA] => C:Program Files (x86)ASUSATK PackageATK MediaDMedia.exe [224952 2016-08-17] (ASUSTek Computer Inc.)
HKLM-x32...Run: [FLxHCIm] => C:Program FilesFresco Logic IncFresco Logic USB3.0 Host ControllerhostFLxHCIm.exe [43008 2011-04-08] (Windows (R) Win 7 DDK provider)
HKLM-x32...Run: [USBChargerPlusTray] => C:Program Files (x86)ASUSUSBChargerPlusUSBChargerPlus.exe [495536 2011-03-28] (ASUSTek Computer Inc.)
HKLM-x32...Run: [BCSSync] => C:Program Files (x86)Microsoft OfficeOffice14BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
WinlogonNotifyigfxcui: C:WindowsSYSTEM32igfxdev.dll (Intel Corporation)
WinlogonNotifyLBTWlgn: c:program filescommon fileslogishrdbluetoothLBTWlgn.dll (Logitech, Inc.)
HKUS-1-5-21-2980001072-133352716-226721190-1000...Run: [Akamai NetSession Interface] => C:UsersTomekAppDataLocalAkamainetsession_win.exe [4490200 2017-09-08] (Akamai Technologies, Inc.)
HKUS-1-5-21-2980001072-133352716-226721190-1000...Run: [OfficeSyncProcess] => C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE [718208 2010-03-16] (Microsoft Corporation)
HKUS-1-5-21-2980001072-133352716-226721190-1000...PoliciesExplorer: [] 
HKUS-1-5-21-2980001072-133352716-226721190-1000...MountPoints2: D - D:StartMR.exe
HKUS-1-5-21-2980001072-133352716-226721190-1000...MountPoints2: {526e1d9b-85e3-11e7-a101-a2361af5e625} - E:AutoRun.exe
HKUS-1-5-21-2980001072-133352716-226721190-1000...MountPoints2: {c1644582-1e5a-11e8-b2e5-5404a6183756} - D:LG_PC_Programs.exe
HKUS-1-5-21-2980001072-133352716-226721190-1000...MountPoints2: {cb23f58a-ac88-11e0-a386-806e6f6e6963} - D:Autorun.exe
AppInit_DLLs: C:Windowssystem32nvinitx.dll => C:Windowssystem32nvinitx.dll [226920 2017-02-06] (NVIDIA Corporation)
AppInit_DLLs-x32: C:WindowsSysWOW64nvinit.dll => C:WindowsSysWOW64nvinit.dll [192616 2017-02-06] (NVIDIA Corporation)
Lsa: [Notification Packages] scecli C:Program FilesASUSBluetooth SoftwareBtwProximityCP.dll
Startup: C:ProgramDataMicrosoftWindowsStart MenuProgramsStartupBluetooth.lnk [2018-09-18]
ShortcutTarget: Bluetooth.lnk -> C:Program FilesASUSBluetooth SoftwareBTTray.exe (Broadcom Corporation.)
Startup: C:UsersTomekAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupTworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk [2018-06-15]
ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk -> C:Program Files (x86)Microsoft OfficeOffice14ONENOTEM.EXE (Microsoft Corporation)
 
==================== Internet (filtrowane) ====================
 
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
 
TcpipParameters: [DhcpNameServer] 192.168.0.1
Tcpip..Interfaces{0BC36F40-9215-424E-9909-A6B69220EC7A}: [DhcpNameServer] 192.168.42.129
Tcpip..Interfaces{4074C6A8-9797-4111-9B3C-FD788F828F21}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip..Interfaces{9522AC04-80FF-4C38-B68D-E76C0E300C35}: [DhcpNameServer] 192.168.0.1
Tcpip..Interfaces{C7F3841B-DB79-4A49-9973-15ECC925E25B}: [DhcpNameServer] 192.168.1.1 192.168.1.1
 
Internet Explorer:
==================
HKUS-1-5-21-2980001072-133352716-226721190-1000SoftwareMicrosoftInternet ExplorerMain,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp
BHO: TrueSuite WebStore -> {5cb2b77d-c8ca-44db-af20-a7a4df462a12} -> C:WindowsSYSTEM32mscoree.dll [2009-11-25] (Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:Program FilesMicrosoft OfficeOffice14GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:Program FilesTrueSuiteTrueSuite.IEBHO.dll [2011-10-10] (AuthenTec Inc.)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:Program FilesLogitechSetPointPSetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:Program FilesMicrosoft OfficeOffice14URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: TrueSuite WebStore -> {5cb2b77d-c8ca-44db-af20-a7a4df462a12} -> C:WindowsSysWOW64mscoree.dll [2009-11-25] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:Program Files (x86)Microsoft OfficeOffice14GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: TrueSuite Website Log On -> {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} -> C:Program FilesTrueSuitex86TrueSuite.IEBHO.dll [2011-10-10] (AuthenTec Inc.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:Program FilesLogitechSetPointP32-bitSetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:Program Files (x86)Microsoft OfficeOffice14URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:Program Files (x86)Windows LivePhoto GalleryAlbumDownloadProtocolHandler.dll Brak pliku
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:Windowssystem32urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:WindowsSysWOW64urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:Windowssystem32urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:WindowsSysWOW64urlmon.dll [2009-07-14] (Microsoft Corporation)
 
FireFox:
========
FF HKLM-x32...FirefoxExtensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:Program FilesLogitechSetPointPLogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:Program FilesLogitechSetPointPLogiSmoothFirefoxExt [2017-12-19] [Przestarzałe] [Brak podpisu cyfrowego]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:PROGRA~1MICROS~3Office14NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:Program Files (x86)Common FilesAdobeOOBEPDAppCCMUtilitiesnpAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:PROGRA~2MICROS~2Office14NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:PROGRA~2MICROS~2Office14NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:Program Files (x86)Windows LivePhoto GalleryNPWLPG.dll [Brak pliku]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:Program Files (x86)GoogleUpdate1.3.33.17npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:Program Files (x86)GoogleUpdate1.3.33.17npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:Program Files (x86)AdobeAcrobat Reader DCReaderAIRnppdf32.dll [2018-06-29] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:Program Files (x86)Common FilesAdobeOOBEPDAppCCMUtilitiesnpAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)
 
Chrome: 
=======
CHR StartupUrls: Default -> "hxxps://www.google.pl/"
CHR Profile: C:UsersTomekAppDataLocalGoogleChromeUser DataDefault [2018-11-14]
CHR Extension: (Prezentacje) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionsaapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionsaohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Dysk Google) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionsapdfllckaahabafndbhieahigkjlhalf [2017-02-06]
CHR Extension: (YouTube) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionsblpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-06]
CHR Extension: (Video Downloader professional) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionselicpjhcidhpjomhibiffojpinpmmpil [2018-04-08]
CHR Extension: (Photo Zoom for Facebook) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionselioihkkcdgakfbahdoddophfngopipi [2017-05-22]
CHR Extension: (Arkusze) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionsfelcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Facebook™ Chat Privacy) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionsgfpgaanechfneiboempkfjghninbibjn [2017-08-16]
CHR Extension: (Dokumenty Google offline) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionsghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-20]
CHR Extension: (AdBlock) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionsgighmmpiobklfepjocnamgkkbiglidom [2018-10-12]
CHR Extension: (No Coin - Block miners on the web!) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionsgojamcfopckidlocpkbelmpjcgmbgjcl [2018-02-26]
CHR Extension: (Website Logon) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionshnkfnepfpdlmgpagkanfefpppcicnloj [2017-12-04]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionspjkljhegncpnkpknbcohdijeoejaedia [2017-02-06]
CHR Extension: (Chrome Media Router) - C:UsersTomekAppDataLocalGoogleChromeUser DataDefaultExtensionspkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-31]
CHR Profile: C:UsersTomekAppDataLocalGoogleChromeUser DataSystem Profile [2018-01-14]
CHR HKLM-x32...ChromeExtension: [hnkfnepfpdlmgpagkanfefpppcicnloj] - C:Program FilesTrueSuitex86tschrome.crx [2011-09-27]
 
==================== Usługi (filtrowane) ====================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R2 AdAppMgrSvc; C:Program Files (x86)Common FilesAutodesk SharedAppManagerR1AdAppMgrSvc.exe [1145928 2016-02-24] (Autodesk Inc.)
R2 AGMService; C:Program Files (x86)Common FilesAdobeAdobeGCClientAGMService.exe [2910696 2018-09-10] (Adobe Systems, Incorporated)
R2 AGSService; C:Program Files (x86)Common FilesAdobeAdobeGCClientAGSService.exe [2704872 2018-09-10] (Adobe Systems, Incorporated)
R2 Autodesk Content Service; C:Program Files (x86)AutodeskContent ServiceConnect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 btwdins; C:Program FilesASUSBluetooth Softwarebtwdins.exe [1005944 2012-12-06] (Broadcom Corporation.)
S3 Disc Soft Lite Bus Service; C:Program FilesDAEMON Tools LiteDiscSoftBusServiceLite.exe [1471168 2017-02-06] (Disc Soft Ltd)
R2 FolderSize; C:Program FilesFolderSizeFolderSizeSvc.exe [163840 2013-02-13] (Brio) [Brak podpisu cyfrowego]
R2 FPLService; C:Program FilesTrueSuiteTrueSuite.Service.exe [291656 2011-10-10] (AuthenTec, Inc)
R2 MBAMService; C:Program FilesMalwarebytesAnti-Malwarembamservice.exe [6347056 2018-09-19] (Malwarebytes)
R2 Mobile Broadband HL Service; C:ProgramDataMobileBrServmbbservice.exe [232288 2012-03-12] ()
R2 MsMpSvc; c:Program FilesMicrosoft Security ClientMsMpEng.exe [119864 2016-11-14] (Microsoft Corporation)
R3 NisSrv; c:Program FilesMicrosoft Security ClientNisSrv.exe [361816 2016-11-14] (Microsoft Corporation)
S3 WinDefend; C:Program FilesWindows Defendermpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
 
===================== Sterowniki (filtrowane) ======================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R1 ATKWMIACPIIO; C:Program Files (x86)ASUSATK PackageATK WMIACPISHA1atkwmiacpi64.sys [19768 2013-07-02] (ASUSTek Computer Inc.)
R3 dtlitescsibus; C:WindowsSystem32DRIVERSdtlitescsibus.sys [30264 2017-02-13] (Disc Soft Ltd)
R3 dtliteusbbus; C:WindowsSystem32DRIVERSdtliteusbbus.sys [47672 2017-02-13] (Disc Soft Ltd)
R3 FLxHCIh; C:WindowsSystem32DRIVERSFLxHCIh.sys [56320 2011-04-08] (Fresco Logic)
R3 kbfiltr; C:WindowsSystem32DRIVERSkbfiltr.sys [15416 2017-02-06] ( )
R3 MBAMSwissArmy; C:WindowsSystem32Driversmbamswissarmy.sys [260480 2018-11-14] (Malwarebytes)
R0 MpFilter; C:WindowsSystem32DRIVERSMpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
R3 NisDrv; C:WindowsSystem32DRIVERSNisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
S3 SNP2UVC; C:WindowsSystem32DRIVERSsnp2uvc.sys [1800832 2017-02-06] (Sonix Technology Co., Ltd.)
 
==================== NetSvcs (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
 
==================== Jeden miesiąc - utworzone pliki i foldery ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2018-11-14 20:53 - 2018-11-14 20:53 - 000020935 _____ C:UsersTomekDownloadsFRST.txt
2018-11-14 20:53 - 2018-11-14 20:53 - 000000000 ____D C:UsersTomekDownloadsFRST-OlderVersion
2018-11-14 20:53 - 2018-11-14 20:53 - 000000000 ____D C:FRST
2018-11-14 20:52 - 2018-11-14 20:53 - 002416128 _____ (Farbar) C:UsersTomekDownloadsFRST64.exe
2018-11-14 20:09 - 2018-11-14 20:09 - 000260480 _____ (Malwarebytes) C:Windowssystem32Driversmbamswissarmy.sys
2018-11-14 19:59 - 2018-11-14 19:59 - 000000000 ____D C:UsersTomekDownloadsWLAN_Atheros_PNP_Win7_64_Z920458
2018-11-14 19:58 - 2018-11-14 19:59 - 002089740 _____ C:UsersTomekDownloadsWLAN_Atheros_PNP_Win7_64_Z920458.zip
2018-11-14 19:47 - 2018-11-14 19:48 - 000000000 ____D C:AdwCleaner
2018-11-14 19:46 - 2018-11-14 19:47 - 007592144 _____ (Malwarebytes) C:UsersTomekDownloadsAdwCleaner.exe
2018-11-13 23:31 - 2018-11-13 23:31 - 000092100 _____ C:UsersTomekDesktopdynamiczne1.mb
2018-11-12 23:38 - 2018-11-12 23:38 - 002700668 _____ C:UsersTomekDownloadsazfvs76sohkw-Amortizer.rar
2018-11-12 23:38 - 2018-11-12 23:38 - 000000000 ____D C:UsersTomekDownloadsazfvs76sohkw-Amortizer
2018-11-12 23:36 - 2018-11-12 23:36 - 000000000 ____D C:UsersTomekDownloads74-roadster
2018-11-12 23:35 - 2018-11-12 23:36 - 061479677 _____ C:UsersTomekDownloads74-roadster.zip
2018-11-12 23:32 - 2018-11-12 23:32 - 000000000 ____D C:UsersTomekDownloadsbysurphyvf28-Man
2018-11-12 23:31 - 2018-11-12 23:31 - 004143890 _____ C:UsersTomekDownloadsbysurphyvf28-Man.rar
2018-11-12 23:03 - 2018-11-12 23:03 - 000078444 _____ C:UsersTomekDesktopkk.mb
2018-11-12 19:30 - 2018-11-12 19:31 - 006053981 _____ C:UsersTomekDownloads32-blend.zip
2018-11-12 17:23 - 2018-11-12 17:23 - 000000000 ____D C:UsersTomekDocumentsxgen
2018-11-12 17:22 - 2018-11-12 17:22 - 000000000 ____D C:UsersTomekDocumentsmaya
2018-11-12 17:21 - 2018-11-12 17:21 - 000000000 ____D C:UsersTomekDocumentsDirect Connect
2018-11-12 16:56 - 2018-11-12 17:16 - 000001792 _____ C:UsersPublicDesktopMaya 2015.lnk
2018-11-12 16:31 - 2018-11-12 16:32 - 010566624 _____ C:UsersTomekDownloadsAutodesk_Maya_2015_R1_wi_en-US_Setup.exe
2018-11-12 16:31 - 2018-11-12 16:31 - 000485504 _____ (Autodesk Inc.) C:UsersTomekDownloadsAutodesk_Maya_2015_R1_wi_en-US_Setup_webinstall.exe
2018-11-12 15:16 - 2018-11-12 15:16 - 000000000 ____D C:ProgramDataApplications
2018-11-12 15:15 - 2018-11-12 15:16 - 023174608 _____ (Autodesk, Inc.) C:UsersTomekDownloadsAutodeskDownloadManagerSetup.exe
2018-11-12 15:15 - 2018-11-12 15:15 - 000000517 _____ C:UsersTomekDownloadsupdate.xml
2018-11-12 15:14 - 2018-11-12 15:14 - 000486960 _____ (Autodesk Inc.) C:UsersTomekDownloadsAutodeskDownloadManager_webinstall.exe
2018-11-10 14:34 - 2018-11-10 14:35 - 000000000 ____D C:UsersTomekDocumentsGTA San Andreas User Files
2018-10-29 19:07 - 2018-10-29 21:33 - 000014303 _____ C:UsersTomekDesktopsam.xlsx
2018-10-28 18:05 - 2018-11-04 17:29 - 000000000 ____D C:UsersTomekAppDataLocalNFS Underground 2
2018-10-28 17:49 - 2018-10-28 17:51 - 000000000 ____D C:NFSUG2
2018-10-19 15:08 - 2018-10-19 19:35 - 000000109 _____ C:UsersTomekDesktopkatt.txt
2018-10-17 20:00 - 2018-10-17 20:00 - 000000000 ____D C:UsersTomekAppDataLocalmbam
2018-10-17 19:59 - 2018-10-27 13:46 - 000152688 _____ (Malwarebytes) C:Windowssystem32Driversmbae64.sys
2018-10-17 19:59 - 2018-10-17 19:59 - 000001867 _____ C:UsersPublicDesktopMalwarebytes.lnk
2018-10-17 19:59 - 2018-10-17 19:59 - 000000000 ____D C:UsersTomekAppDataLocalmbamtray
2018-10-17 19:59 - 2018-10-17 19:59 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsMalwarebytes
2018-10-17 19:59 - 2018-10-17 19:59 - 000000000 ____D C:ProgramDataMalwarebytes
2018-10-17 19:59 - 2018-10-17 19:59 - 000000000 ____D C:Program FilesMalwarebytes
2018-10-17 19:46 - 2018-10-17 19:50 - 080022264 _____ (Malwarebytes ) C:UsersTomekDesktopmb3-setup-consumer-3.6.1.2711-1.0.463-1.0.6913.exe
2018-10-17 19:18 - 2018-10-17 19:18 - 000000000 ____D C:UsersTomekDesktopWLAN_Atheros_PNP_Win7_64_Z920458
2018-10-17 19:16 - 2018-10-17 19:16 - 000001846 _____ C:UsersUpdatusUserDesktopSammy Suricate.lnk
2018-10-17 19:16 - 2018-10-17 19:16 - 000001846 _____ C:UsersTomekDesktopSammy Suricate.lnk
2018-10-17 19:16 - 2018-10-17 19:16 - 000000000 ____D C:UsersTomekAppDataRoamingMicrosoftWindowsStart MenuProgramsSammy Suricate
2018-10-17 19:16 - 2018-10-17 19:16 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsSammy Suricate
2018-10-17 19:16 - 2018-10-17 19:16 - 000000000 ____D C:Program Files (x86)Sammy Suricate
2018-10-17 19:00 - 2018-10-17 19:00 - 000000000 ____D C:UsersTomekDesktopASUS_Wi-FiDriver_Win10_V1000352_20170811
 
==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2018-11-14 20:16 - 2009-07-14 05:45 - 000014784 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-11-14 20:16 - 2009-07-14 05:45 - 000014784 ____H C:Windowssystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-11-14 20:15 - 2009-07-14 18:55 - 000739932 _____ C:Windowssystem32perfh015.dat
2018-11-14 20:15 - 2009-07-14 18:55 - 000155474 _____ C:Windowssystem32perfc015.dat
2018-11-14 20:15 - 2009-07-14 06:13 - 001668226 _____ C:Windowssystem32PerfStringBackup.INI
2018-11-14 20:15 - 2009-07-14 04:20 - 000000000 ____D C:Windowsinf
2018-11-14 20:08 - 2009-07-14 06:08 - 000000006 ____H C:WindowsTasksSA.DAT
2018-11-14 20:05 - 2018-03-30 20:14 - 000000000 ____D C:UsersTomekDocumentsPliki programu Outlook
2018-11-14 19:50 - 2018-01-09 23:32 - 000000000 ____D C:UsersTomekAppDataLocalAkamai
2018-11-13 16:26 - 2017-02-06 02:35 - 000002230 _____ C:ProgramDataMicrosoftWindowsStart MenuProgramsGoogle Chrome.lnk
2018-11-13 16:26 - 2017-02-06 02:35 - 000002189 _____ C:UsersPublicDesktopGoogle Chrome.lnk
2018-11-12 17:23 - 2018-01-09 22:31 - 000000000 ____D C:UsersTomekAppDataLocalAutodesk
2018-11-12 17:22 - 2018-01-09 22:31 - 000000000 ____D C:UsersTomekAppDataRoamingAutodesk
2018-11-12 17:22 - 2018-01-09 22:14 - 000000000 ____D C:ProgramDataAutodesk
2018-11-12 17:20 - 2018-01-09 22:27 - 000000000 ____D C:Program FilesCommon FilesAutodesk Shared
2018-11-12 17:17 - 2018-01-09 23:52 - 000000000 ____D C:Program FilesAutodesk
2018-11-12 16:56 - 2018-01-09 23:49 - 000000000 ____D C:ProgramDataMicrosoftWindowsStart MenuProgramsAutodesk
2018-11-12 16:32 - 2018-01-09 23:31 - 000000000 ____D C:Autodesk
2018-11-12 16:05 - 2017-11-13 17:35 - 000000000 ____D C:ProgramDataPackage Cache
2018-11-12 15:17 - 2018-01-09 23:52 - 000000000 ____D C:UsersPublicDocumentsAutodesk
2018-11-12 15:12 - 2017-11-13 17:35 - 000000000 ____D C:Program FilesANSYS Student
2018-11-10 02:00 - 2017-02-06 23:36 - 000000000 ____D C:Program Files (x86)Steam
2018-11-03 13:40 - 2018-10-11 11:39 - 000000000 ____D C:UsersTomekDesktopmuzik
2018-10-30 18:21 - 2017-02-06 02:39 - 000000000 ____D C:UsersTomekAppDataLocalElevatedDiagnostics
2018-10-28 18:05 - 2017-05-08 21:34 - 000000000 ____D C:UsersTomekAppDataRoamingMicrosoftWindowsStart MenuProgramsGames
2018-10-21 22:54 - 2009-07-14 06:08 - 000032608 _____ C:WindowsTasksSCHEDLGU.TXT
2018-10-17 19:24 - 2009-07-14 04:20 - 000000000 ____D C:Windowssystem32NDF
2018-10-17 19:06 - 2018-05-26 20:01 - 000000000 ____D C:UsersTomekDesktoppulpit2
2018-10-17 19:05 - 2017-10-07 16:25 - 000000000 ____D C:UsersTomekDesktoppulpit
2018-10-15 22:48 - 2017-02-06 02:54 - 000559880 ____N (Microsoft Corporation) C:Windowssystem32MpSigStub.exe
 
==================== Pliki w katalogu głównym wybranych folderów =======
 
2017-05-09 16:28 - 2017-05-09 16:28 - 325407814 _____ () C:UsersTomekAppDataLocalACCCx4_0_1_188.zip.aamdownload
2017-05-09 16:28 - 2017-05-09 16:28 - 000003630 _____ () C:UsersTomekAppDataLocalACCCx4_0_1_188.zip.aamdownload.aamd
2018-09-28 18:07 - 2018-09-28 18:07 - 000000000 _____ () C:UsersTomekAppDataLocaloobelibMkey.log
2017-09-01 15:29 - 2018-02-03 01:15 - 000007598 _____ () C:UsersTomekAppDataLocalResmon.ResmonCfg
 
Niektóre pliki w TEMP:
====================
2018-01-09 22:35 - 2013-11-25 08:43 - 000060296 _____ (Autodesk, Inc.) C:UsersTomekAppDataLocalTempAcDeltree.exe
2017-05-09 16:28 - 2015-03-05 07:54 - 002212008 _____ (Adobe Systems Incorporated) C:UsersTomekAppDataLocalTempAdobeApplicationManager.exe
2018-11-12 17:15 - 2018-11-12 17:15 - 001950000 _____ (Flexera Software LLC) C:UsersTomekAppDataLocalTempFNP_ACT_InstallerCA.dll
2017-10-22 22:04 - 2017-10-22 22:04 - 034709528 _____ (Ellora Assets Corporation                                   ) C:UsersTomekAppDataLocalTempFreemakeVideoConverterFull.exe
2017-12-19 23:22 - 2015-07-02 21:36 - 000098760 _____ () C:UsersTomekAppDataLocalTempLMkRstPt.exe
2017-03-15 17:57 - 2017-07-10 22:30 - 000192512 _____ () C:UsersTomekAppDataLocalTempsfamcc00001.dll
2017-03-15 17:59 - 2017-03-16 02:45 - 000192512 _____ () C:UsersTomekAppDataLocalTempsfamcc00002.dll
2015-02-10 18:56 - 2015-02-10 18:56 - 000105984 _____ () C:UsersTomekAppDataLocalTempsfextra.dll
 
==================== Bamital & volsnap ======================
 
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
 
C:Windowssystem32winlogon.exe => Plik podpisany cyfrowo
C:Windowssystem32wininit.exe => Plik podpisany cyfrowo
C:WindowsSysWOW64wininit.exe => Plik podpisany cyfrowo
C:Windowsexplorer.exe => Plik podpisany cyfrowo
C:WindowsSysWOW64explorer.exe => Plik podpisany cyfrowo
C:Windowssystem32svchost.exe => Plik podpisany cyfrowo
C:WindowsSysWOW64svchost.exe => Plik podpisany cyfrowo
C:Windowssystem32services.exe => Plik podpisany cyfrowo
C:Windowssystem32User32.dll => Plik podpisany cyfrowo
C:WindowsSysWOW64User32.dll => Plik podpisany cyfrowo
C:Windowssystem32userinit.exe => Plik podpisany cyfrowo
C:WindowsSysWOW64userinit.exe => Plik podpisany cyfrowo
C:Windowssystem32rpcss.dll => Plik podpisany cyfrowo
C:Windowssystem32dnsapi.dll => Plik podpisany cyfrowo
C:WindowsSysWOW64dnsapi.dll => Plik podpisany cyfrowo
C:Windowssystem32Driversvolsnap.sys => Plik podpisany cyfrowo
 
LastRegBack: 2018-11-04 10:39
 
==================== Koniec  FRST.txt ============================
Wygenerowano w 0.044s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!