wklejto.pl

Dodane przez: ~Anonim (2019-02-11 06:40) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja: 10-02-2019
Uruchomiony przez Toshiba (administrator)  OEM-EA80D20D4DA (11-02-2019 06:31:22)
Uruchomiony z C:\Documents and Settings\Toshiba\Moje dokumenty\Downloads
Załadowane profile: Toshiba (Dostępne profile: Toshiba)
Platform: Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) Język: Polski
Internet Explorer Wersja 8 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Procesy (filtrowane) =================
 
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
 
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation ) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(Digital Wave Ltd.) C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe
() C:\WINDOWS\system32\PnkBstrA.exe
() C:\WINDOWS\system32\PnkBstrB.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
(TOSHIBA Corp.) C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtSrv.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
(TOSHIBA) C:\Program Files\TOSHIBA\TOSHIBA Applet\THotkey.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Controls\TFncKy.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\TDispVol.exe
(Agere Systems) C:\WINDOWS\agrsmmsg.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\TPSMain.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\TPSBattM.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Elaborate Bytes AG) C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynToshiba.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(© 2015 Microsoft Corporation) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Desktop Search\WindowsSearch.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
 
==================== Rejestr (filtrowane) ===========================
 
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
 
HKLM\...\Run: [IntelZeroConfig] => C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe [802816 2006-08-01] (Intel Corporation) [Brak podpisu cyfrowego]
HKLM\...\Run: [IntelWireless] => C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [696320 2006-08-01] (Intel Corporation) [Brak podpisu cyfrowego]
HKLM\...\Run: [THotkey] => C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe [352256 2006-01-05] (TOSHIBA) [Brak podpisu cyfrowego]
HKLM\...\Run: [TFncKy] => TFncKy.exe
HKLM\...\Run: [TDispVol] => C:\WINDOWS\system32\TDispVol.exe [73728 2005-09-16] (TOSHIBA Corporation) [Brak podpisu cyfrowego]
HKLM\...\Run: [AGRSMMSG] => C:\WINDOWS\AGRSMMSG.exe [88203 2014-08-17] (Agere Systems) [Brak podpisu cyfrowego]
HKLM\...\Run: [TPSMain] => C:\WINDOWS\system32\TPSMain.exe [266240 2005-08-04] (TOSHIBA Corporation) [Brak podpisu cyfrowego]
HKLM\...\Run: [ITSecMng] => C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [80840 2011-04-01] (TOSHIBA CORPORATION -> TOSHIBA CORPORATION)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [15691264 2014-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2014-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1343488 2008-08-14] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics, Inc.)
HKLM\...\Run: [VirtualCloneDrive] => C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKLM\...\Run: [NeroFilterCheck] => C:\WINDOWS\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh) [Brak podpisu cyfrowego]
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [220944 2016-12-06] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [135168 2008-02-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
HKLM\...\Run: [HotKeysCmds] => C:\WINDOWS\system32\hkcmd.exe [159744 2008-02-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
HKLM\...\Run: [Persistence] => C:\WINDOWS\system32\igfxpers.exe [131072 2008-02-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
HKU\S-1-5-21-682003330-1532298954-725345543-1004\...\Run: [BingSvc] => C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\Microsoft\BingSvc\BingSvc.exe [144008 2016-01-05] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-682003330-1532298954-725345543-1004\...\Run: [Chromium] => c:\documents and settings\toshiba\ustawienia lokalne\dane aplikacji\chromium\application\chrome.exe [666624 2015-07-30] (The Chromium Authors)
HKLM\...\Drivers32: [msacm.trspch] => C:\WINDOWS\system32\tssoft32.acm [8192 2004-08-04] (DSP GROUP, INC.)
HKLM\...\Drivers32: [vidc.I420] => C:\WINDOWS\system32\msh263.drv [294912 2008-04-14] (Microsoft Corporation)
HKLM\...\Drivers32: [vidc.iv31] => C:\WINDOWS\system32\ir32_32.dll [199168 2004-08-04] ()
HKLM\...\Drivers32: [vidc.iv32] => C:\WINDOWS\system32\ir32_32.dll [199168 2004-08-04] ()
HKLM\...\Drivers32: [vidc.iv41] => C:\WINDOWS\system32\ir41_32.ax [848384 2008-04-14] (Intel Corporation)
HKLM\...\Drivers32: [msacm.msg723] => C:\WINDOWS\system32\msg723.acm [118784 2004-08-04] (Microsoft Corporation)
HKLM\...\Drivers32: [vidc.M263] => C:\WINDOWS\system32\msh263.drv [294912 2008-04-14] (Microsoft Corporation)
HKLM\...\Drivers32: [vidc.M261] => C:\WINDOWS\system32\msh261.drv [188416 2008-04-14] (Microsoft Corporation)
HKLM\...\Drivers32: [msacm.msaudio1] => C:\WINDOWS\system32\msaud32.acm [282654 2009-09-01] (Microsoft Corporation)
HKLM\...\Drivers32: [msacm.sl_anet] => C:\WINDOWS\system32\sl_anet.acm [86016 2008-04-14] (Sipro Lab Telecom Inc.)
HKLM\...\Drivers32: [msacm.iac2] => C:\WINDOWS\system32\iac25_32.ax [199680 2008-04-14] (Intel Corporation)
HKLM\...\Drivers32: [vidc.iv50] => C:\WINDOWS\system32\ir50_32.dll [755200 2008-04-14] (Intel Corporation)
HKLM\...\Drivers32: [msacm.ac3filter] => C:\WINDOWS\system32\ac3filter.acm [965120 2013-12-17] ()
HKLM\Software\Microsoft\Active Setup\Installed Components: [<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}] -> C:\WINDOWS\system32\ieudinit.exe [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\WINDOWS\inf\unregmp2.exe [2007-06-27] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] -> C:\WINDOWS\system32\shmgrate.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] -> 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{5945c046-1e7d-11d1-bc44-00c04fd912be}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{7790769C-0471-11d2-AF11-00C04FA35D02}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\49.0.2623.112\Installer\chrmstp.exe [2016-04-20] (Google Inc -> Google Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{C631DF4C-088F-4156-B058-4375F0853CD8}] -> C:\WINDOWS\System32\cscui.dll [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{c6dc5466-785a-11d2-84d0-00c04fb169f7}] -> appmgmts.dll
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Windows Search.lnk [2014-08-17]
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
Startup: C:\Documents and Settings\Toshiba\Menu Start\Programy\Autostart\Rejestracja FIFA 11.lnk [2014-09-17]
ShortcutTarget: Rejestracja FIFA 11.lnk -> C:\Program Files\EA Sports\FIFA 11\Support\EAregister.exe (Brak pliku)
 
==================== Internet (filtrowane) ====================
 
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{E1E01086-E89E-47DD-9A2E-2E82171D6263}: [DhcpNameServer] 192.168.0.1
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.gazeta.pl/0,0.html?p=181&d=20140921
HKU\S-1-5-21-682003330-1532298954-725345543-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=pl-pl
HKU\S-1-5-21-682003330-1532298954-725345543-1004\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-682003330-1532298954-725345543-1004\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://mysearch.avg.com?cid={1B45AD73-C0C6-4B42-A8FA-18CF03F42F45}&mid=e73845c6760847d2b7fed15a44a75db2-07e09cb15308a4106c570f7fac7faad800935ea1&lang=pl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-08 22:19:16&v=4.0.6.10&pid=wtu&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-682003330-1532298954-725345543-1004 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={1B45AD73-C0C6-4B42-A8FA-18CF03F42F45}&mid=e73845c6760847d2b7fed15a44a75db2-07e09cb15308a4106c570f7fac7faad800935ea1&lang=pl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-08 22:19:16&v=4.0.0.19&pid=wtu&sg=&sap=dsp&q={searchTerms}
DPF: {17492023-C23A-453E-A040-C7C580BBF700} hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1408289524046
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF DefaultProfile: d9xb6y0j.default-1489408412746
FF ProfilePath: C:\Documents and Settings\Toshiba\Dane aplikacji\Mozilla\Firefox\Profiles\d9xb6y0j.default-1489408412746 [2019-02-05]
FF Extension: (Quick Searcher) - C:\Documents and Settings\Toshiba\Dane aplikacji\Mozilla\Firefox\Profiles\d9xb6y0j.default-1489408412746\Extensions\mefhakmgclhhfbdadeojlkbllmecialg@chrome-store-foxified-1132576233 [2018-05-21]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-08-17] [Przestarzałe] [Brak podpisu cyfrowego]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_114.dll [2019-01-09] ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin HKU\S-1-5-21-682003330-1532298954-725345543-1004: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll [2017-05-18] (Unity Technologies ApS)
StartMenuInternet: FIREFOX.EXE - firefox.exe
 
Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=pl-pl
CHR StartupUrls: Default -> "hxxp://www.interia.pl/"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC=__PARAM__&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxp://www.bing.com/osjson.aspx?FORM=__PARAM__DF&PC=__PARAM__&query={searchTerms}
CHR Profile: C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default [2019-02-11]
CHR Extension: (Bing) - C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2018-03-10]
CHR Extension: (Hola Free VPN Proxy Unblocker) - C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2019-02-01]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR HKU\S-1-5-21-682003330-1532298954-725345543-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
 
==================== Usługi (filtrowane) ====================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2019-01-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated) [Brak podpisu cyfrowego]
S3 AppMgmt; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation) <==== UWAGA (Brak ServiceDLL)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [935184 2016-12-06] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R2 DigitalWave.Update.Service; C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe [387944 2016-05-11] (Digital Wave Ltd -> Digital Wave Ltd.) [Brak podpisu cyfrowego]
R2 EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [434176 2006-08-01] (Intel Corporation) [Brak podpisu cyfrowego]
S2 HidServ; C:\WINDOWS\System32\svchost.exe [14336 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation) <==== UWAGA (Brak ServiceDLL)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [66872 2017-04-07] (Even Balance, Inc. -> )
R2 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [107832 2017-04-07] (Even Balance, Inc. -> )
R2 RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [327680 2006-08-01] (Intel Corporation) [Brak podpisu cyfrowego]
R2 S24EventMonitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [937984 2006-08-01] (Intel Corporation ) [Brak podpisu cyfrowego]
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{A1ECC011-502C-41A2-BD43-0FE6D9B4B4E0} [5120 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
R2 TAPPSRV; C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe [35328 2005-12-20] (TOSHIBA Corp.) [Brak podpisu cyfrowego]
 
===================== Sterowniki (filtrowane) ======================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21419 2014-08-17] (Meetinghouse Data Communications) [Brak podpisu cyfrowego]
R3 AgereSoftModem; C:\WINDOWS\System32\DRIVERS\AGRSM.sys [1122656 2014-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Agere Systems)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [31088 2010-12-16] (Elaborate Bytes AG -> Elaborate Bytes AG)
R3 ialm; C:\WINDOWS\System32\DRIVERS\igxpmp32.sys [5854752 2008-02-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 IntcAzAudAddService; C:\WINDOWS\System32\drivers\RtkHDAud.sys [4123136 2014-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R3 NETw3x32; C:\WINDOWS\System32\DRIVERS\NETw3x32.sys [1707776 2006-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel® Corporation)
R2 s24trans; C:\WINDOWS\System32\DRIVERS\s24trans.sys [12544 2006-08-02] (Intel Corporation) [Brak podpisu cyfrowego]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Windows Component Publisher -> Microsoft Corporation)
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [20480 2008-04-13] (Microsoft Windows Component Publisher -> Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
R3 SynTP; C:\WINDOWS\System32\DRIVERS\SynTP.sys [231424 2008-08-14] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics, Inc.)
R3 tifm21; C:\WINDOWS\System32\drivers\tifm21.sys [162560 2014-08-17] (Microsoft Windows Hardware Compatibility Publisher -> Texas Instruments)
R3 TVALD; C:\WINDOWS\System32\DRIVERS\NBSMI.sys [6144 2005-10-20] (Toshiba Corporation) [Brak podpisu cyfrowego]
R3 VClone; C:\WINDOWS\System32\DRIVERS\VClone.sys [30208 2011-01-15] (Elaborate Bytes AG) [Brak podpisu cyfrowego]
S4 IntelIde; Brak ImagePath
S1 MBAMChameleon; \SystemRoot\system32\drivers\MBAMChameleon.sys [X]
S3 Tosrfcom; Brak ImagePath
U1 WS2IFSL; Brak ImagePath
 
==================== NetSvcs (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
 
==================== Jeden miesiąc (utworzone) ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2019-02-11 06:31 - 2019-02-11 06:31 - 000000000 ____D C:\FRST
2019-02-06 16:16 - 2019-02-06 16:16 - 000000044 _____ C:\Documents and Settings\NetworkService\Dane aplikacji\WB.CFG
2019-02-05 17:19 - 2019-02-09 18:19 - 000000402 _____ C:\WINDOWS\Tasks\At2.job
2019-02-05 17:19 - 2019-02-05 17:26 - 000000000 ____D C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\chromium
2019-02-05 17:16 - 2019-02-09 18:18 - 000000634 _____ C:\WINDOWS\Tasks\Chromium dacin.job
2019-02-05 17:16 - 2019-02-09 18:16 - 000000398 _____ C:\WINDOWS\Tasks\At1.job
2019-02-05 17:16 - 2019-02-09 17:18 - 000000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\{05ACC0CF-8FEE-4A09-0928-D44B936A5F85}
2019-02-05 17:16 - 2019-02-05 17:27 - 000000000 ____D C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\{54B962E5-7011-0E5D-1D89-2BB539E1D72D}
2019-02-05 17:16 - 2019-02-05 17:19 - 000000000 ____D C:\Program Files\Common Files\6AC7F2EF-955E-64C5-0FD2-1D6A3176288F
2019-01-22 13:08 - 2019-01-22 13:08 - 000013865 _____ C:\Documents and Settings\Toshiba\Moje dokumenty\lista z DPS Biskupice.odt
2019-01-20 09:06 - 2019-01-20 09:11 - 000083968 _____ C:\Documents and Settings\Toshiba\Pulpit\faktur-tauron sty.19r..xls
 
==================== Jeden miesiąc (zmodyfikowane) ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2019-02-11 06:33 - 2014-08-17 15:11 - 000000000 ____D C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp
2019-02-11 06:26 - 2014-08-17 19:06 - 000000466 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{92636A9D-7CBE-4C50-84F1-F118F6905068}.job
2019-02-11 06:25 - 2014-08-17 19:54 - 000000000 ____D C:\WINDOWS\system32\Lang
2019-02-11 06:25 - 2014-08-17 15:11 - 000000000 ___HD C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji
2019-02-11 06:24 - 2016-09-21 10:36 - 000000314 ____H C:\WINDOWS\Tasks\AVG EUpdate Task.job
2019-02-11 06:24 - 2014-09-21 09:24 - 000001032 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2019-02-11 06:24 - 2014-08-17 19:04 - 000000226 _____ C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job
2019-02-11 06:24 - 2014-08-17 15:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-02-10 08:01 - 2014-08-17 15:11 - 000000188 ___SH C:\Documents and Settings\Toshiba\ntuser.ini
2019-02-10 08:01 - 2014-08-17 15:10 - 000032564 _____ C:\WINDOWS\SchedLgU.Txt
2019-02-10 07:21 - 2017-04-11 20:33 - 000000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2019-02-09 18:58 - 2018-03-13 17:21 - 000000980 _____ C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job
2019-02-09 18:58 - 2014-08-17 15:01 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-02-09 18:47 - 2017-04-11 20:32 - 000000992 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2019-02-09 18:11 - 2014-09-21 09:24 - 000001036 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2019-02-08 15:00 - 2014-08-17 19:04 - 000000220 _____ C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job
2019-02-08 08:07 - 2014-09-21 08:52 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-02-08 08:07 - 2014-08-17 16:22 - 000000000 __RHD C:\Documents and Settings\All Users\Dane aplikacji
2019-02-08 08:07 - 2014-08-17 16:22 - 000000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy
2019-02-08 08:07 - 2014-08-17 16:22 - 000000000 ____D C:\Documents and Settings\All Users\Pulpit
2019-02-08 08:06 - 2014-08-17 15:11 - 000000000 ___RD C:\Documents and Settings\Toshiba\Moje dokumenty
2019-02-08 08:05 - 2014-08-17 15:11 - 000000000 __RHD C:\Documents and Settings\Toshiba\Dane aplikacji
2019-02-08 08:05 - 2014-08-17 15:11 - 000000000 ___RD C:\Documents and Settings\Toshiba\Menu Start\Programy
2019-02-08 08:05 - 2014-08-17 15:11 - 000000000 ____D C:\Documents and Settings\Toshiba\Pulpit
2019-02-06 16:16 - 2014-08-17 15:07 - 000000000 ____D C:\Documents and Settings\NetworkService\Dane aplikacji
2019-02-06 15:53 - 2004-08-04 13:00 - 000012984 _____ C:\WINDOWS\system32\wpa.dbl
2019-02-05 17:11 - 2014-09-21 07:36 - 000000116 _____ C:\WINDOWS\NeroDigital.ini
2019-01-12 12:09 - 2017-11-15 07:12 - 000000000 ____D C:\Documents and Settings\Toshiba\Pulpit\Muzyka
2019-01-12 11:42 - 2014-10-21 20:45 - 000000000 ____D C:\Documents and Settings\Toshiba\Dane aplikacji\vlc
 
==================== Pliki w katalogu głównym wybranych folderów =======
 
2017-04-07 13:24 - 2017-04-07 13:24 - 000022328 _____ () C:\Documents and Settings\Toshiba\Dane aplikacji\PnkBstrK.sys
2014-09-21 07:36 - 2018-12-31 19:07 - 000144896 _____ () C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-08-17 21:39 - 2014-08-17 21:39 - 000000132 _____ () C:\Documents and Settings\Toshiba\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
 
Pliki do przeniesienia lub usunięcia:
====================
C:\Windows\Tasks\At1.job
C:\Windows\Tasks\At2.job
 
 
Niektóre pliki w TEMP:
====================
2014-09-20 21:37 - 2006-03-16 02:02 - 000073728 _____ (Electronic Arts Inc.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\2006 FIFA World Cup_uninst.exe
2014-09-19 06:55 - 2006-03-31 13:26 - 000729088 _____ (Electronic Arts Inc.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\AutoRun.exe
2014-09-19 06:55 - 2005-12-22 04:49 - 000585728 _____ (Electronic Arts Inc.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\AutoRunGUI.dll
2016-02-29 07:27 - 2016-01-12 16:23 - 000179624 _____ (AVG Technologies CZ, s.r.o.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\avguirn_081031195813.exe
2016-05-14 08:21 - 2016-04-14 16:29 - 000186640 _____ (AVG Technologies CZ, s.r.o.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\avguirn_081578382895.exe
2016-06-27 10:45 - 2016-05-18 12:03 - 000186640 _____ (AVG Technologies CZ, s.r.o.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\avguirn_082011846234.exe
2016-08-23 06:34 - 2016-07-20 13:01 - 000186640 _____ (AVG Technologies CZ, s.r.o.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\avguirn_08403710332.exe
2016-04-11 06:28 - 2016-02-18 12:09 - 000179624 _____ (AVG Technologies CZ, s.r.o.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\avguirn_08433981068.exe
2016-04-20 06:33 - 2016-03-23 15:57 - 000186640 _____ (AVG Technologies CZ, s.r.o.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\avguirn_08478027031.exe
2016-07-29 16:26 - 2016-06-21 17:49 - 000186640 _____ (AVG Technologies CZ, s.r.o.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\avguirn_08578965537.exe
2016-06-11 06:30 - 2016-04-22 09:01 - 000186640 _____ (AVG Technologies CZ, s.r.o.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\avguirn_08619225039.exe
2016-01-21 09:20 - 2015-12-08 07:23 - 000091048 _____ (AVG Technologies CZ, s.r.o.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\avguirn_08677172672.exe
2016-01-05 17:32 - 2016-01-05 17:32 - 000144008 _____ (© 2015 Microsoft Corporation) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\BingSvc.exe
2016-01-05 17:31 - 2016-01-05 17:32 - 001118360 _____ (© 2015 Microsoft Corporation) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\BSvcProcessor.exe
2016-01-05 17:31 - 2016-01-05 17:31 - 000170128 _____ (© 2015 Microsoft Corporation) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\BSvcUpdater.exe
2018-05-21 19:44 - 2018-05-21 19:44 - 001262320 _____ () C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\but-setup-9.exe
2018-05-21 19:44 - 2018-05-21 19:44 - 000282624 _____ () C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\Dota2.exe
2014-09-20 21:37 - 2006-03-31 13:26 - 000344064 _____ (Electronic Arts Inc.) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\eauninstall.exe
2018-05-21 19:43 - 2018-05-21 19:43 - 000000000 _____ () C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\ElementsInstall.exe
2014-09-19 07:00 - 2014-09-20 21:43 - 000090112 _____ (Electronic Arts) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\EReg2HWDetect.dll
2019-02-05 17:15 - 2019-02-05 17:17 - 002691712 _____ (                                                            ) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\Free-Audio-CD-to-MP3-Converter-48820-AsystentPobierania_2126606146.exe
2018-05-21 19:44 - 2018-05-21 19:44 - 000007680 _____ (Microsoft) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\PlanoPlan.exe
2018-05-21 19:44 - 2018-05-21 19:44 - 000936448 _____ () C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\setup (1).exe
2018-05-21 19:44 - 2018-05-21 19:44 - 000387024 _____ (ZRFXRD                                                      ) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\setup.exe
2014-09-17 14:25 - 2014-09-17 14:25 - 000112375 _____ (WebsitesList) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\SimBundD.exe
2014-09-17 14:25 - 2014-09-17 14:25 - 000112375 _____ (WebsitesList) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\SimBundD[1].exe
2018-05-21 19:44 - 2018-05-21 19:44 - 000372224 _____ (Trademark Barys Company) C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\SixE.exe
2017-05-29 06:43 - 2004-12-10 10:01 - 001220976 _____ () C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\xfire_installer_10650.exe
2015-10-12 09:12 - 2015-10-12 09:13 - 000000000 _____ () C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\{54A26FF2-E0D5-4238-A101-D220260FB069}-45.0.2454.101_chrome_installer.exe
2015-07-01 06:07 - 2015-07-01 06:07 - 000000000 _____ () C:\Documents and Settings\Toshiba\Ustawienia lokalne\Temp\{C665ECDF-44C9-4612-B06B-415DAE9E84BC}-43.0.2357.130_43.0.2357.81_chrome_updater.exe
 
==================== Bamital & volsnap ======================
 
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
 
C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\dllhost.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
 
==================== Koniec  FRST.txt ============================
Wygenerowano w 0.043s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!