wklejto.pl

Dodane przez: ~Idealis (2018-11-20 08:36) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 15.11.2018
Uruchomiony przez Idealis81 (administrator)  IDEALIS (20-11-2018 08:33:53)
Uruchomiony z C:\Users\Idealis81\Downloads
Załadowane profile: Idealis81 (Dostępne profile: Idealis81)
Platform: Windows 8.1 (Update) (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Procesy (filtrowane) =================
 
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
 
==================== Rejestr (filtrowane) ===========================
 
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
 
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15794160 2013-11-27] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80368 2013-11-27] (Lenovo(beijing) Limited)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2771576 2015-12-16] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-11-19] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3689919535-233560513-2311959061-1001\...\Run: [Idealis81] => cmd.exe /c start www.exinariuminix.info
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175368 2015-12-16] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [153392 2015-12-16] (NVIDIA Corporation)
 
==================== Internet (filtrowane) ====================
 
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{3BAC3063-D338-4682-AE4B-75419BBC3918}: [DhcpNameServer] 192.168.1.1 192.168.1.1
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://uk.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnf_kmpswt_17_22&param1=1&param2=f%3D1%26b%3DIE%26cc%3Dgb%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztByDyC0FtB0E0C0FtC0A0DtB0B0E0AtN0D0Tzu0StCzyyBzytN1L2XzutAtFtBzytFtAtFyDyBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEtDtDyC0EyC0AzztGyDyCtBzytG0BtAyD0CtGtCtAyDtDtGtB0BtBtDtCtA0DtCzyzy0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyB0E0BtAyEzy0AyDtGyByDtDzytGyEyB0EtDtG0AtAyCyEtG0B0A0E0AtCtB0ByDyD0DyE0A2QtN0A0LzutBtN1B2Z1V1T1S1NzutCtByCtCzy%26cr%3D579299405%26a%3Dwnf_kmpswt_17_22%26os_ver%3D6.3%26os%3DWindows%2B8.1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://uk.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnf_kmpswt_17_22&param1=1&param2=f%3D1%26b%3DIE%26cc%3Dgb%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztByDyC0FtB0E0C0FtC0A0DtB0B0E0AtN0D0Tzu0StCzyyBzytN1L2XzutAtFtBzytFtAtFyDyBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEtDtDyC0EyC0AzztGyDyCtBzytG0BtAyD0CtGtCtAyDtDtGtB0BtBtDtCtA0DtCzyzy0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyB0E0BtAyEzy0AyDtGyByDtDzytGyEyB0EtDtG0AtAyCyEtG0B0A0E0AtCtB0ByDyD0DyE0A2QtN0A0LzutBtN1B2Z1V1T1S1NzutCtByCtCzy%26cr%3D579299405%26a%3Dwnf_kmpswt_17_22%26os_ver%3D6.3%26os%3DWindows%2B8.1
HKU\S-1-5-21-3689919535-233560513-2311959061-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://uk.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnf_kmpswt_17_22&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dgb%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztByDyC0FtB0E0C0FtC0A0DtB0B0E0AtN0D0Tzu0StCzyyBzytN1L2XzutAtFtBzytFtAtFyDyBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEtDtDyC0EyC0AzztGyDyCtBzytG0BtAyD0CtGtCtAyDtDtGtB0BtBtDtCtA0DtCzyzy0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyB0E0BtAyEzy0AyDtGyByDtDzytGyEyB0EtDtG0AtAyCyEtG0B0A0E0AtCtB0ByDyD0DyE0A2QtN0A0LzutBtN1B2Z1V1T1S1NzutCtByCtCzy%26cr%3D579299405%26a%3Dwnf_kmpswt_17_22%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://uk.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnf_kmpswt_17_22&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dgb%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztByDyC0FtB0E0C0FtC0A0DtB0B0E0AtN0D0Tzu0StCzyyBzytN1L2XzutAtFtBzytFtAtFyDyBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEtDtDyC0EyC0AzztGyDyCtBzytG0BtAyD0CtGtCtAyDtDtGtB0BtBtDtCtA0DtCzyzy0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyB0E0BtAyEzy0AyDtGyByDtDzytGyEyB0EtDtG0AtAyCyEtG0B0A0E0AtCtB0ByDyD0DyE0A2QtN0A0LzutBtN1B2Z1V1T1S1NzutCtByCtCzy%26cr%3D579299405%26a%3Dwnf_kmpswt_17_22%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKLM -> {AAEB27AB-878B-4B01-8E2D-A6BE30BED31C} URL = hxxp://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_ir_14_33_ff&cd=2XzuyEtN2Y1L1QzuzztByDyC0FtB0E0C0FtC0A0DtB0B0E0AtN0D0Tzu0SzyyDyBtN1L2XzutAtFtCtFtDtFyEtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StB0B0A0B0CtAtBtAtGyEtDtBzytGtDtBzytBtGtBtA0EtAtGtDzz0FyD0E0D0FzyyC0Ezy0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0EtCtC0DtCyBtAtG0C0CtC0FtGyEzy0E0BtGzz0ByE0EtG0Fzy0ByDyD0DyDtDzytD0FyD2Q&cr=286737522&ir=
SearchScopes: HKLM-x32 -> DefaultScope - brak wartości
SearchScopes: HKLM-x32 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://uk.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnf_kmpswt_17_22&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dgb%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztByDyC0FtB0E0C0FtC0A0DtB0B0E0AtN0D0Tzu0StCzyyBzytN1L2XzutAtFtBzytFtAtFyDyBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEtDtDyC0EyC0AzztGyDyCtBzytG0BtAyD0CtGtCtAyDtDtGtB0BtBtDtCtA0DtCzyzy0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyB0E0BtAyEzy0AyDtGyByDtDzytGyEyB0EtDtG0AtAyCyEtG0B0A0E0AtCtB0ByDyD0DyE0A2QtN0A0LzutBtN1B2Z1V1T1S1NzutCtByCtCzy%26cr%3D579299405%26a%3Dwnf_kmpswt_17_22%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3689919535-233560513-2311959061-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxps://uk.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wnf_kmpswt_17_22&param1=1&param2=f%3D4%26b%3DIE%26cc%3Dgb%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuzztByDyC0FtB0E0C0FtC0A0DtB0B0E0AtN0D0Tzu0StCzyyBzytN1L2XzutAtFtBzytFtAtFyDyBtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2SyEtDtDyC0EyC0AzztGyDyCtBzytG0BtAyD0CtGtCtAyDtDtGtB0BtBtDtCtA0DtCzyzy0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyB0E0BtAyEzy0AyDtGyByDtDzytGyEyB0EtDtG0AtAyCyEtG0B0A0E0AtCtB0ByDyD0DyE0A2QtN0A0LzutBtN1B2Z1V1T1S1NzutCtByCtCzy%26cr%3D579299405%26a%3Dwnf_kmpswt_17_22%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3689919535-233560513-2311959061-1001 -> {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = hxxp://www.bing.com/search?FORM=U270DF&PC=U270&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3689919535-233560513-2311959061-1001 -> {AAEB27AB-878B-4B01-8E2D-A6BE30BED31C} URL = hxxp://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_ir_14_33_ff&cd=2XzuyEtN2Y1L1QzuzztByDyC0FtB0E0C0FtC0A0DtB0B0E0AtN0D0Tzu0SzyyDyBtN1L2XzutAtFtCtFtDtFyEtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StB0B0A0B0CtAtBtAtGyEtDtBzytGtDtBzytBtGtBtA0EtAtGtDzz0FyD0E0D0FzyyC0Ezy0C2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0EtCtC0DtCyBtAtG0C0CtC0FtGyEzy0E0BtGzz0ByE0EtG0Fzy0ByDyD0DyDtDzytD0FyD2Q&cr=286737522&ir=
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-10-19] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-19] (Oracle Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF DefaultProfile: wpxsf228.default-1542650262873
FF ProfilePath: C:\Users\Idealis81\AppData\Roaming\Mozilla\Firefox\Profiles\wpxsf228.default-1542650262873 [2018-11-20]
FF Extension: (Avast Online Security) - C:\Users\Idealis81\AppData\Roaming\Mozilla\Firefox\Profiles\wpxsf228.default-1542650262873\Extensions\wrc@avast.com.xpi [2018-07-30]
FF Extension: (Firefox Monitor) - C:\Users\Idealis81\AppData\Roaming\Mozilla\Firefox\Profiles\wpxsf228.default-1542650262873\features\{254af431-ddfa-4475-8edd-31051ac007d1}\fxmonitor@mozilla.org.xpi [2018-11-19]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_31_0_0_148.dll [2018-11-14] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_148.dll [2018-11-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-19] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
 
Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <nie znaleziono>
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <nie znaleziono>
 
==================== Usługi (filtrowane) ====================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [8188768 2018-11-19] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [324000 2018-11-19] (AVAST Software)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156216 2015-12-16] (NVIDIA Corporation)
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Brak podpisu cyfrowego]
S4 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
S4 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [156104 2013-06-04] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-12-16] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8185464 2015-12-16] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [6477432 2015-12-16] (NVIDIA Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [338944 2013-08-11] (IDT, Inc.) [Brak podpisu cyfrowego]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
S3 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]
 
===================== Sterowniki (filtrowane) ======================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [201240 2018-11-19] (AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [230344 2018-11-19] (AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201768 2018-11-19] (AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346592 2018-11-19] (AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59496 2018-11-19] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [185072 2018-11-19] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46384 2018-11-19] (AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42288 2018-11-19] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [163208 2018-11-19] (AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111800 2018-11-19] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87432 2018-11-19] (AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1028680 2018-11-19] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469272 2018-11-19] (AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [208472 2018-11-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [380464 2018-11-19] (AVAST Software)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-08-14] ()
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [132920 2013-03-25] (Motorola Solutions, Inc.)
R3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-08-14] (Disc Soft Ltd)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [74344 2013-07-03] (Intel Corporation)
S3 lehidmini; C:\Windows\System32\drivers\leath_hid.sys [39704 2013-08-29] (Atheros)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-08-14] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-12-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-12-16] (NVIDIA Corporation)
R3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
 
==================== NetSvcs (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
 
==================== Jeden miesiąc - utworzone pliki i foldery ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2018-11-19 20:36 - 2018-11-19 21:15 - 000000000 ____D C:\Users\Idealis81\Downloads\backups
2018-11-19 20:31 - 2018-11-19 20:31 - 000388608 _____ (Trend Micro Inc.) C:\Users\Idealis81\Downloads\HijackThis_2.0.4.exe
2018-11-19 20:30 - 2018-11-19 20:31 - 002607708 _____ ( ) C:\Users\Idealis81\Downloads\HijackThis-12030-AsystentPobierania_2217732397.exe
2018-11-19 19:37 - 2018-11-19 19:37 - 000038061 _____ C:\Users\Idealis81\Downloads\Addition.txt
2018-11-19 19:36 - 2018-11-20 08:34 - 000018247 _____ C:\Users\Idealis81\Downloads\FRST.txt
2018-11-19 19:35 - 2018-11-20 08:33 - 000000000 ____D C:\FRST
2018-11-19 19:35 - 2018-11-19 19:35 - 000000000 ____D C:\Users\Idealis81\Downloads\FRST-OlderVersion
2018-11-19 19:29 - 2018-11-19 19:35 - 002416128 _____ (Farbar) C:\Users\Idealis81\Downloads\FRST64.exe
2018-11-19 19:23 - 2018-11-19 19:23 - 000378584 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-11-19 19:19 - 2018-11-19 19:19 - 000001138 _____ C:\Windows\system32\.crusader
2018-11-19 19:06 - 2018-11-19 19:06 - 000000000 ____D C:\Program Files\HitmanPro
2018-11-19 19:05 - 2018-11-19 19:05 - 011576808 _____ (SurfRight B.V.) C:\Users\Idealis81\Downloads\HitmanPro_x64.exe
2018-11-19 19:04 - 2018-11-19 19:19 - 000000000 ____D C:\ProgramData\HitmanPro
2018-11-19 19:04 - 2018-11-19 19:04 - 010960168 _____ (SurfRight B.V.) C:\Users\Idealis81\Downloads\HitmanPro.exe
2018-11-19 18:39 - 2018-11-19 18:40 - 018071560 _____ (Piriform Software Ltd) C:\Users\Idealis81\Downloads\ccsetup549.exe
2018-11-14 14:52 - 2018-10-25 01:54 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2018-11-14 14:52 - 2018-10-25 01:51 - 000121344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2018-11-14 14:52 - 2018-10-25 01:46 - 000205824 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2018-11-14 14:52 - 2018-10-25 01:45 - 000168448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2018-11-14 14:52 - 2018-10-18 03:48 - 025737728 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-11-14 14:52 - 2018-10-18 03:17 - 020281344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-11-14 14:52 - 2018-10-16 04:46 - 007371720 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-11-14 14:52 - 2018-10-16 04:39 - 002171800 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2018-11-14 14:52 - 2018-10-16 04:39 - 001662504 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-11-14 14:52 - 2018-10-16 04:39 - 001063368 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2018-11-14 14:52 - 2018-10-16 04:18 - 001137472 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-11-14 14:52 - 2018-10-16 04:02 - 001563584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2018-11-14 14:52 - 2018-10-16 04:02 - 001214920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-11-14 14:52 - 2018-10-12 21:35 - 000862208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-11-14 14:52 - 2018-10-12 21:26 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-11-14 14:52 - 2018-10-12 21:25 - 000189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2018-11-14 14:52 - 2018-10-12 21:22 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-11-14 14:52 - 2018-10-12 21:17 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-11-14 14:52 - 2018-10-12 21:16 - 000148992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2018-11-14 14:52 - 2018-10-12 21:16 - 000131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2018-11-14 14:52 - 2018-10-12 21:03 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-11-14 14:52 - 2018-10-12 21:00 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-11-14 14:52 - 2018-10-12 20:59 - 013680640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-11-14 14:52 - 2018-10-12 20:57 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-11-14 14:52 - 2018-10-12 20:56 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-11-14 14:52 - 2018-10-12 20:51 - 000267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2018-11-14 14:52 - 2018-10-12 20:47 - 001049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2018-11-14 14:52 - 2018-10-12 20:42 - 004386816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-11-14 14:52 - 2018-10-12 20:38 - 001330176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-11-14 14:52 - 2018-10-12 20:36 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-11-14 14:52 - 2018-10-12 03:16 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\dispex.dll
2018-11-14 14:52 - 2018-10-12 03:12 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-11-14 14:52 - 2018-10-12 03:10 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-11-14 14:52 - 2018-10-12 03:10 - 000235520 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2018-11-14 14:52 - 2018-10-12 03:01 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-11-14 14:52 - 2018-10-12 02:59 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-11-14 14:52 - 2018-10-12 02:59 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-11-14 14:52 - 2018-10-12 02:58 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2018-11-14 14:52 - 2018-10-12 02:58 - 000158720 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2018-11-14 14:52 - 2018-10-12 02:35 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-11-14 14:52 - 2018-10-12 02:30 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-11-14 14:52 - 2018-10-12 02:27 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-11-14 14:52 - 2018-10-12 02:27 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-11-14 14:52 - 2018-10-12 02:25 - 015283712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-11-14 14:52 - 2018-10-12 02:19 - 004859904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-11-14 14:52 - 2018-10-12 02:17 - 000809984 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-11-14 14:52 - 2018-10-12 02:12 - 002882048 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2018-11-14 14:52 - 2018-10-12 02:06 - 001555968 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-11-14 14:52 - 2018-10-12 01:55 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-11-14 14:52 - 2018-10-06 19:14 - 001547192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-11-14 14:52 - 2018-10-06 19:14 - 000388536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2018-11-14 14:52 - 2018-10-06 19:04 - 001308976 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-11-14 14:52 - 2018-10-06 19:03 - 000356288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2018-11-14 14:52 - 2018-10-06 17:48 - 004168192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-11-14 14:52 - 2018-10-06 16:41 - 002465792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2018-11-14 14:52 - 2018-10-06 16:34 - 002175488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2018-11-14 14:52 - 2018-10-06 16:32 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-11-14 14:52 - 2018-09-28 14:38 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2018-11-14 14:52 - 2018-09-28 14:34 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msisip.dll
2018-11-14 14:52 - 2018-09-23 17:47 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2018-11-14 14:52 - 2018-09-23 17:45 - 000468992 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2018-11-14 14:52 - 2018-09-23 17:45 - 000248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2018-11-14 14:52 - 2018-09-23 17:37 - 000774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2018-11-14 14:52 - 2018-09-23 17:24 - 003631616 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2018-11-14 14:52 - 2018-09-23 17:23 - 000391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2018-11-14 14:52 - 2018-09-23 17:23 - 000272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2018-11-14 14:52 - 2018-09-23 17:20 - 002750464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2018-11-14 14:52 - 2018-09-23 17:17 - 000699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2018-11-14 14:52 - 2018-09-23 17:00 - 000200192 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2018-11-14 14:52 - 2018-09-23 17:00 - 000133120 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2018-11-14 14:52 - 2018-09-23 16:58 - 000904192 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2018-11-14 14:52 - 2018-09-23 16:56 - 002551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2018-11-14 14:52 - 2018-09-23 16:53 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2018-11-14 14:52 - 2018-09-23 16:51 - 001920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2018-11-14 14:52 - 2018-09-23 16:50 - 000709632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2018-11-14 14:52 - 2018-09-12 19:30 - 000137008 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-11-14 14:52 - 2018-09-11 16:30 - 003718144 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-11-14 14:52 - 2018-08-26 04:38 - 001200640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2018-11-14 14:52 - 2018-08-26 04:38 - 000323072 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2018-11-14 14:52 - 2018-08-26 04:21 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2018-11-14 14:52 - 2018-08-26 04:21 - 000200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2018-11-14 14:52 - 2018-08-26 02:45 - 000513448 _____ C:\Windows\SysWOW64\locale.nls
2018-11-14 14:52 - 2018-08-26 02:45 - 000513448 _____ C:\Windows\system32\locale.nls
2018-11-14 14:52 - 2018-08-21 14:39 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-11-14 14:52 - 2018-08-21 14:35 - 000358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-11-14 14:52 - 2018-08-19 17:22 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-11-14 14:52 - 2018-08-19 16:52 - 001436672 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-11-14 14:52 - 2018-08-19 16:43 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-10-23 17:16 - 2018-10-23 17:16 - 000000000 ____D C:\Users\Idealis81\AppData\Roaming\Mobon
 
==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2018-11-20 08:33 - 2014-03-17 17:18 - 000000000 ___RD C:\Users\Idealis81\Desktop\Ikony z pulpitu
2018-11-20 08:31 - 2014-03-17 17:15 - 000003996 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{3E67B9D8-E837-4F07-8006-954B4A99B2CB}
2018-11-20 08:28 - 2016-11-18 08:26 - 000000000 ____D C:\Users\Idealis81\AppData\LocalLow\Mozilla
2018-11-20 08:28 - 2013-11-27 08:56 - 000000000 ____D C:\ProgramData\Energy Manager
2018-11-19 22:55 - 2014-03-17 09:00 - 000003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3689919535-233560513-2311959061-1001
2018-11-19 22:38 - 2018-09-06 15:08 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-11-19 22:38 - 2018-06-20 01:30 - 000003524 _____ C:\Windows\System32\Tasks\Idealis81
2018-11-19 22:38 - 2018-03-14 10:02 - 000004568 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-11-19 22:38 - 2015-12-04 08:15 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
2018-11-19 22:38 - 2015-08-15 17:49 - 000002796 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2018-11-19 22:38 - 2014-03-20 16:34 - 000004388 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-11-19 21:23 - 2013-11-26 15:08 - 001817498 _____ C:\Windows\system32\PerfStringBackup.INI
2018-11-19 21:23 - 2013-08-23 00:12 - 000801022 _____ C:\Windows\system32\perfh015.dat
2018-11-19 21:23 - 2013-08-23 00:12 - 000160728 _____ C:\Windows\system32\perfc015.dat
2018-11-19 21:23 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
2018-11-19 21:17 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-11-19 20:39 - 2016-11-18 08:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-11-19 20:39 - 2014-03-20 11:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-11-19 20:36 - 2014-03-17 08:51 - 000000000 ____D C:\Users\Idealis81
2018-11-19 19:25 - 2017-02-08 08:23 - 000003910 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2018-11-19 19:23 - 2017-11-18 00:28 - 000201240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-11-19 19:23 - 2014-04-27 05:59 - 000046384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-11-19 19:23 - 2014-03-20 23:20 - 000469272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-11-19 19:23 - 2014-03-20 23:20 - 000380464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-11-19 19:23 - 2014-03-20 23:20 - 000208472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-11-19 19:23 - 2014-03-20 23:20 - 000163208 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-11-19 19:23 - 2014-03-20 23:20 - 000111800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-11-19 19:23 - 2014-03-20 23:20 - 000087432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-11-19 19:22 - 2018-10-19 10:18 - 000042288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2018-11-19 19:22 - 2018-01-05 15:21 - 000185072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-11-19 19:22 - 2017-02-08 08:23 - 000346592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys
2018-11-19 19:22 - 2017-02-08 08:23 - 000230344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2018-11-19 19:22 - 2017-02-08 08:23 - 000201768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys
2018-11-19 19:22 - 2017-02-08 08:23 - 000059496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys
2018-11-19 19:22 - 2014-03-20 23:20 - 001028680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-11-19 19:22 - 2014-03-20 11:53 - 000001173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-11-19 19:20 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2018-11-19 18:41 - 2014-04-03 17:47 - 000000000 ____D C:\Users\Idealis81\AppData\Roaming\BitTorrent
2018-11-19 18:35 - 2018-06-30 15:01 - 000000000 ____D C:\Users\Idealis81\AppData\LocalLow\Empyrean
2018-11-19 18:35 - 2018-06-30 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\House Flipper
2018-11-19 18:28 - 2018-07-31 22:34 - 000000000 ____D C:\Users\Idealis81\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-11-17 07:17 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache
2018-11-16 20:30 - 2013-08-22 15:44 - 000339192 _____ C:\Windows\system32\FNTCACHE.DAT
2018-11-16 07:18 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
2018-11-15 05:39 - 2014-03-21 03:01 - 000000000 ____D C:\Windows\system32\MRT
2018-11-15 05:37 - 2014-03-21 03:01 - 137810048 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-11-14 06:18 - 2018-08-03 07:10 - 000000000 ____D C:\Users\Idealis81\AppData\Local\AVAST Software
2018-11-14 03:02 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-11-14 03:02 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\Macromed
2018-11-11 05:04 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\NDF
2018-11-05 16:37 - 2014-04-08 23:55 - 000000000 ____D C:\AdwCleaner
2018-11-05 16:34 - 2016-01-28 17:50 - 000000000 ____D C:\Users\Idealis81\AppData\Local\CrashDumps
2018-11-05 16:34 - 2014-08-14 18:47 - 000000000 ____D C:\Users\Idealis81\AppData\Roaming\DAEMON Tools Lite
2018-11-05 16:31 - 2015-08-15 17:49 - 000000000 ____D C:\Program Files\CCleaner
2018-11-02 21:48 - 2018-09-12 05:50 - 000835168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-11-02 21:48 - 2018-09-12 05:50 - 000179808 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-10-27 08:30 - 2014-06-21 14:53 - 000000000 ____D C:\Users\Idealis81\AppData\Local\ElevatedDiagnostics
 
==================== Pliki w katalogu głównym wybranych folderów =======
 
2017-05-18 18:41 - 2017-05-18 18:41 - 000004608 _____ () C:\Users\Idealis81\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-03-23 19:51 - 2017-03-23 19:51 - 000001800 _____ () C:\Users\Idealis81\AppData\Local\recently-used.xbel
 
Niektóre pliki w TEMP:
====================
2018-11-19 21:10 - 2018-11-19 21:10 - 002607708 _____ (                                                            ) C:\Users\Idealis81\AppData\Local\Temp\HijackThis-12030-AsystentPobierania_2217732397.exe
 
==================== Bamital & volsnap ======================
 
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
 
C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
C:\Windows\explorer.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\Windows\system32\services.exe => Plik podpisany cyfrowo
C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
 
LastRegBack: 2018-11-16 07:16
 
==================== Koniec  FRST.txt ============================
Wygenerowano w 0.052s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!