API tools faq
paste
Advertisement
Kiel97

FRST file

Kiel97
Aug 8th, 2016
89
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 40.83 KB | None | 0 0
raw download clone embed print report
  1. Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 03-08-2016
  2. Uruchomiony przez Admin (administrator) ZDZII (08-08-2016 14:51:36)
  3. Uruchomiony z C:\Users\Admin\Desktop\FRST64 Folder
  4. Załadowane profile: Admin (Dostępne profile: Admin)
  5. Platform: Windows 8.1 (Update) (X64) Język: Polski (Polska)
  6. Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
  7. Tryb startu: Normal
  8. Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Procesy (filtrowane) =================
  11.  
  12. (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
  13.  
  14. (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
  15. (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
  16. (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\avp.exe
  17. (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
  18. (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
  19. (Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
  20. () C:\ProgramData\DatacardService\HWDeviceService64.exe
  21. (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
  22. () C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe
  23. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
  24. (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
  25. () C:\Windows\SysWOW64\PnkBstrA.exe
  26. (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
  27. (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
  28. (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\avpui.exe
  29. (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
  30. (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
  31. (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
  32. (Intel Corporation) C:\Windows\System32\igfxEM.exe
  33. (Intel Corporation) C:\Windows\System32\igfxHK.exe
  34. (Intel Corporation) C:\Windows\System32\igfxTray.exe
  35. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  36. (Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
  37. (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
  38. () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
  39. (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
  40. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
  41. (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
  42. () C:\Program Files (x86)\Gaming Mouse\DareUMonitor.exe
  43. (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
  44. (MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
  45. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  46. (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
  47. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
  48. (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
  49. (Intel Corporation) C:\Windows\System32\igfxext.exe
  50. (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
  51.  
  52.  
  53. ==================== Rejestr (filtrowane) ===========================
  54.  
  55. (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
  56.  
  57. HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2890640 2013-04-22] (ELAN Microelectronics Corp.)
  58. HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13550152 2013-05-30] (Realtek Semiconductor)
  59. HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
  60. HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
  61. HKLM-x32\...\Run: [Dare-U mouse] => C:\Program Files (x86)\Gaming Mouse\DareUMonitor.exe [786432 2012-11-19] ()
  62. HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
  63. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
  64. HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133248 2013-05-31] (Atheros Communications)
  65. HKU\S-1-5-21-3341099471-1774976068-1204589039-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2852128 2016-08-03] (Valve Corporation)
  66. ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Brak pliku
  67.  
  68. ==================== Internet (filtrowane) ====================
  69.  
  70. (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
  71.  
  72. Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
  73. Tcpip\..\Interfaces\{63F2E247-AC8E-4D30-8682-A9F60652FD95}: [DhcpNameServer] 192.168.1.1
  74. Tcpip\..\Interfaces\{9D58513B-DAF5-4A69-A4B7-12057D472D28}: [DhcpNameServer] 192.168.1.1
  75.  
  76. Internet Explorer:
  77. ==================
  78. HKU\S-1-5-21-3341099471-1774976068-1204589039-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com/
  79. HKU\S-1-5-21-3341099471-1774976068-1204589039-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
  80. SearchScopes: HKU\S-1-5-21-3341099471-1774976068-1204589039-1001 -> DefaultScope {F77FEC44-51FD-4388-8DC1-FF027FE89147} URL =
  81. SearchScopes: HKU\S-1-5-21-3341099471-1774976068-1204589039-1001 -> {F77FEC44-51FD-4388-8DC1-FF027FE89147} URL =
  82. BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\x64\IEExt\ie_plugin.dll [2016-07-27] (Kaspersky Lab ZAO)
  83. BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\x64\IEExt\ie_plugin.dll [2016-07-27] (Kaspersky Lab ZAO)
  84. BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\x64\IEExt\ie_plugin.dll [2016-07-27] (Kaspersky Lab ZAO)
  85. BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
  86. BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll [2016-07-27] (Kaspersky Lab ZAO)
  87. BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-07-26] (Oracle Corporation)
  88. BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll [2016-07-27] (Kaspersky Lab ZAO)
  89. BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll [2016-07-27] (Kaspersky Lab ZAO)
  90. BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
  91. BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-26] (Oracle Corporation)
  92. Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
  93. Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
  94.  
  95. FireFox:
  96. ========
  97. FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\tzkuc1v5.default
  98. FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-18] ()
  99. FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
  100. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-18] ()
  101. FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-06-07] (Foxit Corporation)
  102. FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-06-07] (Foxit Corporation)
  103. FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-06-07] (Foxit Corporation)
  104. FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2016-06-07] (Foxit Corporation)
  105. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-09-29] (Intel Corporation)
  106. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-09-29] (Intel Corporation)
  107. FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-26] (Oracle Corporation)
  108. FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-26] (Oracle Corporation)
  109. FF Plugin-x32: @kaspersky.com/content_blocker_663BE8 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\FFExt\content_blocker@kaspersky.com [2016-07-27] ()
  110. FF Plugin-x32: @kaspersky.com/virtual_keyboard_074028 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2016-07-27] ()
  111. FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
  112. FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npnxgameEU.dll [Brak pliku]
  113. FF Plugin HKU\S-1-5-21-3341099471-1774976068-1204589039-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-06-29] ()
  114. FF user.js: detected! => C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\tzkuc1v5.default\user.js [2016-07-26]
  115. FF SearchPlugin: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\tzkuc1v5.default\searchplugins\dwarf-fortress-wiki-en.xml [2015-06-14]
  116. FF Extension: WOT - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\tzkuc1v5.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-12-11]
  117. FF Extension: Adblock Plus - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\tzkuc1v5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29]
  118. FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25]
  119. FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE8@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\FFExt\content_blocker@kaspersky.com
  120. FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\FFExt\content_blocker@kaspersky.com [2016-07-27]
  121. FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_074028@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\FFExt\virtual_keyboard@kaspersky.com
  122. FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2016-07-27]
  123. FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nie znaleziono
  124.  
  125. Chrome:
  126. =======
  127. CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default
  128. CHR Extension: (Google Docs) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-01]
  129. CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-01]
  130. CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-01]
  131. CHR Extension: (Google Search) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-01]
  132. CHR Extension: (avast! Online Security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-04-01]
  133. CHR Extension: (Google Wallet) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-01]
  134. CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-01]
  135. CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
  136. CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
  137.  
  138. ==================== Usługi (filtrowane) ========================
  139.  
  140. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  141.  
  142. S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [551896 2016-05-01] (Protection Technology)
  143. R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [310912 2013-05-31] (Windows (R) Win 7 DDK provider) [Brak podpisu cyfrowego]
  144. R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\avp.exe [194000 2015-06-29] (Kaspersky Lab ZAO)
  145. R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
  146. R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
  147. S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [470056 2013-05-01] (Acer Incorporated)
  148. R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-16] (Acer Incorporated)
  149. R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Brak podpisu cyfrowego]
  150. S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Brak podpisu cyfrowego]
  151. R2 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1647808 2016-06-21] (Foxit Software Inc.)
  152. R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
  153. R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
  154. R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [Brak podpisu cyfrowego]
  155. S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
  156. S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [224096 2011-06-17] ()
  157. R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2013-01-14] (Intel Corporation)
  158. R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-06-18] (Acer Incorporate)
  159. S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-13] (Electronic Arts)
  160. R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2016-04-02] ()
  161. S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
  162. S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
  163.  
  164. ===================== Sterowniki (filtrowane) ==========================
  165.  
  166. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  167.  
  168. R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [3852976 2016-05-01] (Protection Technology)
  169. S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-05-31] (Qualcomm Atheros)
  170. R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-06-29] (Kaspersky Lab UK Ltd)
  171. S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
  172. R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2016-07-27] (Kaspersky Lab ZAO)
  173. R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [64368 2016-07-27] (Kaspersky Lab ZAO)
  174. S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
  175. R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [159960 2015-06-29] (Kaspersky Lab ZAO)
  176. R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [238000 2016-07-27] (AO Kaspersky Lab)
  177. R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [834992 2016-07-27] (Kaspersky Lab ZAO)
  178. R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [49240 2016-07-27] (AO Kaspersky Lab)
  179. R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [49008 2016-07-27] (Kaspersky Lab ZAO)
  180. R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [48504 2016-07-27] (Kaspersky Lab ZAO)
  181. R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-06-29] (Kaspersky Lab ZAO)
  182. R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [77680 2016-07-27] (Kaspersky Lab ZAO)
  183. R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [89272 2016-07-27] (Kaspersky Lab ZAO)
  184. R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [190648 2016-07-27] (Kaspersky Lab ZAO)
  185. R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated)
  186. R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated)
  187. S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
  188. S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
  189. S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
  190. S3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-11-21] (Microsoft Corporation)
  191. U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
  192.  
  193. ==================== NetSvcs (filtrowane) ===================
  194.  
  195. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  196.  
  197.  
  198. ==================== Jeden miesiąc - utworzone pliki i foldery ========
  199.  
  200. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  201.  
  202. 2016-08-08 14:48 - 2016-08-08 14:48 - 00305600 _____ C:\WINDOWS\Minidump\080816-45546-01.dmp
  203. 2016-08-08 14:43 - 2016-08-08 14:51 - 00000000 ____D C:\FRST
  204. 2016-08-08 14:42 - 2016-08-08 14:46 - 00000000 ____D C:\Users\Admin\Desktop\FRST64 Folder
  205. 2016-08-08 14:31 - 2016-08-08 14:31 - 00000000 __SHD C:\found.000
  206. 2016-08-08 11:54 - 2016-08-08 11:54 - 00305600 _____ C:\WINDOWS\Minidump\080816-37125-01.dmp
  207. 2016-08-08 10:13 - 2016-08-08 10:13 - 00000000 ____D C:\WINDOWS\SysWOW64\%Report%
  208. 2016-08-08 10:13 - 2016-08-08 10:13 - 00000000 ____D C:\WINDOWS\SysWOW64\%Data%
  209. 2016-07-27 08:45 - 2016-07-27 08:45 - 00305600 _____ C:\WINDOWS\Minidump\072716-38171-01.dmp
  210. 2016-07-27 07:38 - 2016-07-27 07:38 - 00305600 _____ C:\WINDOWS\Minidump\072716-26578-01.dmp
  211. 2016-07-27 07:14 - 2016-07-27 07:14 - 00305600 _____ C:\WINDOWS\Minidump\072716-44218-01.dmp
  212. 2016-07-27 06:21 - 2016-07-27 06:21 - 00305600 _____ C:\WINDOWS\Minidump\072716-38625-01.dmp
  213. 2016-07-27 05:18 - 2016-07-27 05:18 - 00305600 _____ C:\WINDOWS\Minidump\072716-31125-01.dmp
  214. 2016-07-27 04:58 - 2016-07-27 04:58 - 00305600 _____ C:\WINDOWS\Minidump\072716-27734-01.dmp
  215. 2016-07-27 03:57 - 2016-07-27 03:57 - 00305600 _____ C:\WINDOWS\Minidump\072716-32828-01.dmp
  216. 2016-07-27 02:58 - 2016-07-27 02:59 - 00305600 _____ C:\WINDOWS\Minidump\072716-27328-01.dmp
  217. 2016-07-27 01:58 - 2016-07-27 01:58 - 00305600 _____ C:\WINDOWS\Minidump\072716-40687-01.dmp
  218. 2016-07-27 00:50 - 2016-07-27 00:51 - 00305600 _____ C:\WINDOWS\Minidump\072716-52984-01.dmp
  219. 2016-07-27 00:19 - 2016-07-27 00:20 - 00305600 _____ C:\WINDOWS\Minidump\072716-36062-01.dmp
  220. 2016-07-26 23:35 - 2016-07-26 23:35 - 00305544 _____ C:\WINDOWS\Minidump\072616-42250-01.dmp
  221. 2016-07-26 22:35 - 2016-07-26 22:35 - 00002071 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
  222. 2016-07-26 22:35 - 2016-07-26 22:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
  223. 2016-07-26 22:34 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
  224. 2016-07-26 22:33 - 2016-08-08 14:49 - 00000000 ____D C:\ProgramData\Kaspersky Lab
  225. 2016-07-26 22:33 - 2016-07-26 22:33 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
  226. 2016-07-26 22:32 - 2016-07-27 07:52 - 00834992 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
  227. 2016-07-26 22:32 - 2015-06-29 21:15 - 00159960 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
  228. 2016-07-26 21:51 - 2016-07-26 21:52 - 00284960 _____ C:\WINDOWS\Minidump\072616-30546-01.dmp
  229. 2016-07-26 21:09 - 2016-07-26 21:10 - 00284960 _____ C:\WINDOWS\Minidump\072616-28156-01.dmp
  230. 2016-07-26 21:01 - 2016-07-26 22:36 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
  231. 2016-07-26 20:49 - 2016-07-26 20:49 - 00285016 _____ C:\WINDOWS\Minidump\072616-38593-01.dmp
  232. 2016-07-26 20:46 - 2016-07-26 20:47 - 00311130 _____ C:\unp30533486383389767.mdmp
  233. 2016-07-26 20:10 - 2016-07-26 20:10 - 00285016 _____ C:\WINDOWS\Minidump\072616-37156-01.dmp
  234. 2016-07-26 19:47 - 2016-07-26 19:48 - 00285016 _____ C:\WINDOWS\Minidump\072616-24171-01.dmp
  235. 2016-07-26 19:14 - 2016-07-26 19:14 - 00281158 _____ C:\unp30533473556109783.mdmp
  236. 2016-07-26 15:55 - 2016-07-26 15:55 - 00000000 _____ C:\Recovery.txt
  237. 2016-07-26 15:45 - 2016-07-26 15:46 - 00285016 _____ C:\WINDOWS\Minidump\072616-39421-01.dmp
  238. 2016-07-26 15:32 - 2016-07-26 15:32 - 00000000 ____D C:\Users\Public\Foxit Software
  239. 2016-07-26 15:32 - 2016-07-26 15:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
  240. 2016-07-26 15:32 - 2016-07-26 15:32 - 00000000 ____D C:\Program Files\7-Zip
  241. 2016-07-26 15:31 - 2016-08-08 11:54 - 00000000 ____D C:\ProgramData\Foxit Software
  242. 2016-07-26 15:31 - 2016-07-26 15:31 - 00001335 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
  243. 2016-07-26 15:31 - 2016-07-26 15:31 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Foxit AgentInformation
  244. 2016-07-26 15:31 - 2016-07-26 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
  245. 2016-07-26 15:31 - 2016-07-26 15:31 - 00000000 ____D C:\ProgramData\Foxit ContentPlatform
  246. 2016-07-26 15:18 - 2016-07-26 15:18 - 00261547 _____ C:\unp30533440800547089.mdmp
  247. 2016-07-26 15:04 - 2016-07-26 15:04 - 00255145 _____ C:\unp30533438808625460.mdmp
  248. 2016-07-26 15:01 - 2016-07-26 15:01 - 00285016 _____ C:\WINDOWS\Minidump\072616-26156-01.dmp
  249. 2016-07-26 15:00 - 2016-07-26 15:00 - 00273779 _____ C:\unp305334372727872102.mdmp
  250. 2016-07-26 14:51 - 2016-07-26 14:51 - 00271145 _____ C:\unp305334362027097914.mdmp
  251. 2016-07-26 14:48 - 2016-07-26 14:48 - 00240853 _____ C:\unp305334354254740666.mdmp
  252. 2016-07-26 13:50 - 2016-07-26 13:50 - 00284936 _____ C:\WINDOWS\Minidump\072616-25890-01.dmp
  253. 2016-07-26 13:42 - 2016-07-26 13:42 - 00270517 _____ C:\unp305334263414064824.mdmp
  254. 2016-07-26 13:20 - 2016-07-26 13:20 - 00265021 _____ C:\unp305334233158522115.mdmp
  255. 2016-07-26 07:17 - 2016-07-26 07:17 - 00285016 _____ C:\WINDOWS\Minidump\072616-32312-01.dmp
  256. 2016-07-26 06:34 - 2016-07-26 06:34 - 00264514 _____ C:\unp305333664286764580.mdmp
  257. 2016-07-26 05:42 - 2016-07-26 05:42 - 00285016 _____ C:\WINDOWS\Minidump\072616-30437-01.dmp
  258. 2016-07-26 05:33 - 2016-07-26 05:33 - 00308015 _____ C:\unp305333582157659019.mdmp
  259. 2016-07-26 05:26 - 2016-07-26 05:27 - 00285016 _____ C:\WINDOWS\Minidump\072616-40750-01.dmp
  260. 2016-07-26 05:11 - 2016-07-26 05:11 - 00281163 _____ C:\unp305333551644057493.mdmp
  261. 2016-07-26 05:03 - 2016-07-26 05:03 - 00284954 _____ C:\unp305333541320948664.mdmp
  262. 2016-07-25 23:26 - 2016-07-25 23:26 - 00285016 _____ C:\WINDOWS\Minidump\072516-36171-01.dmp
  263. 2016-07-25 23:18 - 2016-07-25 23:19 - 00261731 _____ C:\unp30533306568117264.mdmp
  264. 2016-07-25 23:09 - 2016-07-25 23:09 - 00285016 _____ C:\WINDOWS\Minidump\072516-32781-01.dmp
  265. 2016-07-25 22:59 - 2016-07-25 22:59 - 00290960 _____ C:\unp305333031909917683.mdmp
  266. 2016-07-25 22:55 - 2016-08-08 14:48 - 00000000 ____D C:\WINDOWS\Minidump
  267. 2016-07-25 22:55 - 2016-07-25 22:55 - 00285016 _____ C:\WINDOWS\Minidump\072516-56140-01.dmp
  268. 2016-07-25 22:52 - 2016-07-25 22:52 - 00248211 _____ C:\unp305333022081003387.mdmp
  269. 2016-07-25 22:34 - 2016-07-25 22:34 - 00258993 _____ C:\unp305332993982133354.mdmp
  270. 2016-07-25 22:29 - 2016-07-25 22:29 - 00280079 _____ C:\unp30533299974153471.mdmp
  271. 2016-07-25 22:16 - 2016-07-25 22:16 - 00301855 _____ C:\unp305332971550792940.mdmp
  272. 2016-07-22 09:43 - 2016-07-22 09:44 - 00000000 ____D C:\Users\Admin\AppData\Local\PAYDAY
  273. 2016-07-22 00:30 - 2016-07-22 00:30 - 00000221 _____ C:\Users\Admin\Desktop\PAYDAY The Heist.url
  274. 2016-07-21 08:48 - 2016-07-21 08:48 - 00000000 ____D C:\WINDOWS\EOONotify
  275. 2016-07-21 00:05 - 2016-07-21 00:05 - 00007020 _____ C:\Users\Admin\AppData\Local\recently-used.xbel
  276. 2016-07-19 11:38 - 2016-07-19 11:38 - 00275759 _____ C:\unp305320011351464533.mdmp
  277. 2016-07-19 11:37 - 2016-07-02 06:29 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
  278. 2016-07-19 11:37 - 2016-07-02 06:29 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
  279. 2016-07-19 02:58 - 2016-05-25 15:22 - 00875712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
  280. 2016-07-19 02:58 - 2016-05-25 15:22 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
  281. 2016-07-19 02:58 - 2016-05-25 15:12 - 00869576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
  282. 2016-07-19 02:58 - 2016-05-25 15:12 - 00678600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
  283. 2016-07-18 21:59 - 2016-07-18 21:59 - 00003288 _____ C:\WINDOWS\System32\Tasks\{A09DA10E-7241-4D2E-A832-A9E9B595235D}
  284. 2016-07-18 21:39 - 2016-06-25 22:05 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
  285. 2016-07-18 21:39 - 2016-06-25 20:13 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
  286. 2016-07-18 21:39 - 2016-06-25 18:24 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
  287. 2016-07-18 21:39 - 2016-06-25 18:15 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
  288. 2016-07-18 21:39 - 2016-06-25 18:13 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
  289. 2016-07-18 21:39 - 2016-06-25 18:05 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
  290. 2016-07-18 21:39 - 2016-06-22 15:48 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
  291. 2016-07-18 21:39 - 2016-06-21 20:32 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
  292. 2016-07-18 21:39 - 2016-06-21 16:12 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
  293. 2016-07-18 21:39 - 2016-06-21 15:48 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
  294. 2016-07-18 21:39 - 2016-06-21 15:48 - 01208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
  295. 2016-07-18 21:39 - 2016-06-21 15:48 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
  296. 2016-07-18 21:39 - 2016-06-21 15:48 - 00544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
  297. 2016-07-18 21:39 - 2016-06-21 15:48 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
  298. 2016-07-18 21:39 - 2016-06-21 15:48 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
  299. 2016-07-18 21:39 - 2016-06-21 15:48 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
  300. 2016-07-18 21:39 - 2016-06-11 21:45 - 07445856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
  301. 2016-07-18 21:39 - 2016-06-11 19:56 - 25812992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
  302. 2016-07-18 21:39 - 2016-06-11 19:12 - 20348928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
  303. 2016-07-18 21:39 - 2016-01-30 21:50 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
  304. 2016-07-18 21:39 - 2016-01-30 21:00 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
  305. 2016-07-18 21:39 - 2016-01-30 20:48 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
  306. 2016-07-18 21:39 - 2016-01-30 20:18 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
  307. 2016-07-18 21:39 - 2016-01-30 19:48 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
  308. 2016-07-18 21:39 - 2016-01-30 19:41 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
  309. 2016-07-18 21:38 - 2016-06-11 20:14 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
  310. 2016-07-18 21:38 - 2016-06-11 20:11 - 02895360 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
  311. 2016-07-18 21:38 - 2016-06-11 19:56 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
  312. 2016-07-18 21:38 - 2016-06-11 19:42 - 06047744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
  313. 2016-07-18 21:38 - 2016-06-11 19:23 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
  314. 2016-07-18 21:38 - 2016-06-11 19:22 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
  315. 2016-07-18 21:38 - 2016-06-11 19:22 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
  316. 2016-07-18 21:38 - 2016-06-11 19:21 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
  317. 2016-07-18 21:38 - 2016-06-11 19:20 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
  318. 2016-07-18 21:38 - 2016-06-11 19:13 - 02287104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
  319. 2016-07-18 21:38 - 2016-06-11 19:12 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
  320. 2016-07-18 21:38 - 2016-06-11 19:07 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
  321. 2016-07-18 21:38 - 2016-06-11 19:03 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
  322. 2016-07-18 21:38 - 2016-06-11 19:01 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
  323. 2016-07-18 21:38 - 2016-06-11 19:00 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
  324. 2016-07-18 21:38 - 2016-06-11 19:00 - 00724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
  325. 2016-07-18 21:38 - 2016-06-11 18:57 - 02131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
  326. 2016-07-18 21:38 - 2016-06-11 18:44 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
  327. 2016-07-18 21:38 - 2016-06-11 18:43 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
  328. 2016-07-18 21:38 - 2016-06-11 18:38 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
  329. 2016-07-18 21:38 - 2016-06-11 18:33 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
  330. 2016-07-18 21:38 - 2016-06-11 18:31 - 04608000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
  331. 2016-07-18 21:38 - 2016-06-11 18:31 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
  332. 2016-07-18 21:38 - 2016-06-11 18:31 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
  333. 2016-07-18 21:38 - 2016-06-11 18:30 - 15409664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
  334. 2016-07-18 21:38 - 2016-06-11 18:29 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
  335. 2016-07-18 21:38 - 2016-06-11 18:26 - 02869248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
  336. 2016-07-18 21:38 - 2016-06-11 18:15 - 13806080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
  337. 2016-07-18 21:38 - 2016-06-11 18:12 - 01550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
  338. 2016-07-18 21:38 - 2016-06-11 18:02 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
  339. 2016-07-18 21:38 - 2016-06-11 17:59 - 02392576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
  340. 2016-07-18 21:38 - 2016-06-11 17:56 - 01315840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
  341. 2016-07-18 21:38 - 2016-06-11 17:56 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
  342. 2016-07-18 21:23 - 2016-06-10 23:35 - 04167680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
  343. 2016-07-12 10:37 - 2016-07-12 10:38 - 20157440 _____ C:\Users\Admin\Downloads\PhysX-9.12.1031-SystemSoftware-Legacy.msi
  344. 2016-07-12 10:21 - 2016-07-12 10:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reality Pump
  345.  
  346. ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
  347.  
  348. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  349.  
  350. 2016-08-08 14:51 - 2015-04-15 06:56 - 00000000 ____D C:\Program Files (x86)\Steam
  351. 2016-08-08 14:49 - 2015-03-12 23:34 - 00000000 ____D C:\Users\Admin
  352. 2016-08-08 14:48 - 2014-05-06 07:54 - 623111677 _____ C:\WINDOWS\MEMORY.DMP
  353. 2016-08-08 14:48 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
  354. 2016-08-08 14:42 - 2015-05-04 20:17 - 00402944 ___SH C:\Users\Admin\Downloads\Thumbs.db
  355. 2016-08-08 14:39 - 2013-11-11 03:21 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3341099471-1774976068-1204589039-1001
  356. 2016-08-08 12:02 - 2015-12-25 17:21 - 00003972 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0E1B860C-92DC-43F8-9256-88B4B295B863}
  357. 2016-08-08 12:02 - 2014-04-18 08:42 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
  358. 2016-08-08 10:13 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
  359. 2016-07-27 08:01 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
  360. 2016-07-27 07:52 - 2015-06-29 21:15 - 00478392 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\kl1.sys
  361. 2016-07-27 07:52 - 2015-06-29 21:15 - 00190648 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\kneps.sys
  362. 2016-07-27 07:52 - 2015-06-29 21:15 - 00089272 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klwtp.sys
  363. 2016-07-27 07:52 - 2015-06-29 21:15 - 00077680 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klwfp.sys
  364. 2016-07-27 07:52 - 2015-06-29 21:15 - 00064368 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\kldisk.sys
  365. 2016-07-27 07:52 - 2015-06-29 21:15 - 00049240 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klim6.sys
  366. 2016-07-27 07:51 - 2015-06-29 21:15 - 00238000 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
  367. 2016-07-27 07:51 - 2015-06-29 21:15 - 00049008 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
  368. 2016-07-27 07:51 - 2015-06-29 21:15 - 00048504 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klmouflt.sys
  369. 2016-07-26 23:11 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
  370. 2016-07-26 22:35 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
  371. 2016-07-26 22:33 - 2012-07-26 10:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
  372. 2016-07-26 22:07 - 2014-11-21 06:46 - 01825074 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  373. 2016-07-26 22:07 - 2014-11-21 06:07 - 00807160 _____ C:\WINDOWS\system32\perfh015.dat
  374. 2016-07-26 22:07 - 2014-11-21 06:07 - 00163478 _____ C:\WINDOWS\system32\perfc015.dat
  375. 2016-07-26 21:34 - 2012-07-26 07:37 - 00000000 ____D C:\Users\Default.migrated
  376. 2016-07-26 20:55 - 2014-04-01 20:49 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
  377. 2016-07-26 20:51 - 2015-04-24 20:24 - 02592256 ___SH C:\Users\Admin\Desktop\Thumbs.db
  378. 2016-07-26 15:39 - 2015-09-06 19:43 - 00000000 ____D C:\Users\Admin\.oracle_jre_usage
  379. 2016-07-26 15:39 - 2015-03-19 14:54 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
  380. 2016-07-26 15:39 - 2015-03-19 14:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
  381. 2016-07-26 15:39 - 2014-04-21 10:54 - 00000000 ____D C:\Program Files (x86)\Java
  382. 2016-07-26 15:35 - 2016-06-11 08:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
  383. 2016-07-25 18:03 - 2015-08-31 15:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Skype
  384. 2016-07-21 08:53 - 2015-04-12 18:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
  385. 2016-07-21 08:53 - 2015-04-12 18:03 - 00000000 ___SD C:\WINDOWS\system32\GWX
  386. 2016-07-21 08:53 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
  387. 2016-07-21 01:26 - 2015-07-30 22:13 - 00000000 ____D C:\Users\Admin\.gimp-2.8
  388. 2016-07-21 00:05 - 2015-08-14 15:48 - 00000000 ____D C:\Users\Admin\AppData\Local\gtk-2.0
  389. 2016-07-19 14:08 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
  390. 2016-07-19 11:36 - 2013-08-22 16:44 - 00619568 _____ C:\WINDOWS\system32\FNTCACHE.DAT
  391. 2016-07-19 04:52 - 2014-12-16 22:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
  392. 2016-07-19 04:52 - 2014-11-21 06:29 - 00000000 ____D C:\Program Files\Windows Journal
  393. 2016-07-19 04:52 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
  394. 2016-07-19 03:09 - 2013-11-10 13:40 - 00000000 ____D C:\WINDOWS\system32\MRT
  395. 2016-07-19 03:05 - 2013-11-10 13:40 - 144749672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
  396. 2016-07-18 22:02 - 2014-04-18 08:42 - 00003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
  397. 2016-07-18 22:02 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
  398. 2016-07-18 22:02 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
  399. 2016-07-18 22:01 - 2014-04-03 19:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
  400. 2016-07-18 22:01 - 2013-06-04 06:35 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
  401. 2016-07-18 21:58 - 2014-07-01 19:02 - 00000000 ____D C:\Users\Admin\Desktop\gry
  402. 2016-07-18 21:34 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
  403. 2016-07-12 10:29 - 2015-08-31 15:56 - 00000000 ____D C:\ProgramData\Skype
  404. 2016-07-12 10:10 - 2014-05-31 07:58 - 00000000 ____D C:\Program Files (x86)\Reality Pump
  405.  
  406. ==================== Pliki w katalogu głównym wybranych folderów =======
  407.  
  408. 2016-07-21 00:05 - 2016-07-21 00:05 - 0007020 _____ () C:\Users\Admin\AppData\Local\recently-used.xbel
  409. 2014-02-05 10:20 - 2014-02-05 10:20 - 0000017 _____ () C:\Users\Admin\AppData\Local\resmon.resmoncfg
  410.  
  411. Niektóre pliki w TEMP:
  412. ====================
  413. C:\Users\Admin\AppData\Local\Temp\autorun.dll
  414. C:\Users\Admin\AppData\Local\Temp\FoxitUpdater.exe
  415. C:\Users\Admin\AppData\Local\Temp\jansi-32-1.8.dll
  416. C:\Users\Admin\AppData\Local\Temp\jre-8u45-windows-au.exe
  417. C:\Users\Admin\AppData\Local\Temp\jre-8u60-windows-au.exe
  418. C:\Users\Admin\AppData\Local\Temp\jre-8u65-windows-au.exe
  419. C:\Users\Admin\AppData\Local\Temp\jre-8u66-windows-au.exe
  420. C:\Users\Admin\AppData\Local\Temp\jre-8u71-windows-au.exe
  421. C:\Users\Admin\AppData\Local\Temp\jre-8u73-windows-au.exe
  422. C:\Users\Admin\AppData\Local\Temp\SkypeSetup.exe
  423. C:\Users\Admin\AppData\Local\Temp\totaluninstaller2.exe
  424. C:\Users\Admin\AppData\Local\Temp\ubi1D78.tmp.exe
  425. C:\Users\Admin\AppData\Local\Temp\_is1AF0.exe
  426. C:\Users\Admin\AppData\Local\Temp\_is7AAF.exe
  427. C:\Users\Admin\AppData\Local\Temp\_is7B2A.exe
  428. C:\Users\Admin\AppData\Local\Temp\_isB28C.exe
  429. C:\Users\Admin\AppData\Local\Temp\_isD265.exe
  430. C:\Users\Admin\AppData\Local\Temp\_isEC97.exe
  431.  
  432.  
  433. ==================== Bamital & volsnap =================
  434.  
  435. (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
  436.  
  437. C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
  438. C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo
  439. C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
  440. C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo
  441. C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
  442. C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo
  443. C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
  444. C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
  445. C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo
  446. C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
  447. C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo
  448. C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
  449. C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
  450. C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
  451. C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
  452.  
  453.  
  454. LastRegBack: 2016-08-08 12:22
  455.  
  456. ==================== Koniec FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!