API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Nov 21st, 2018
311
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 29.56 KB | None | 0 0
raw download clone embed print report
  1. Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 21.11.2018
  2. Uruchomiony przez Adrian PC (administrator) ADRIAN (21-11-2018 17:51:05)
  3. Uruchomiony z C:\Users\Adrian PC\Desktop
  4. Załadowane profile: Adrian PC & Administrator (Dostępne profile: Adrian PC & Administrator)
  5. Platform: Windows 8 (X64) Język: Polski (Polska)
  6. Internet Explorer Wersja 10 (Domyślna przeglądarka: Chrome)
  7. Tryb startu: Normal
  8. Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Procesy (filtrowane) =================
  11.  
  12. (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
  13.  
  14. (AMD) C:\Windows\System32\atiesrxx.exe
  15. (AMD) C:\Windows\System32\atieclxx.exe
  16. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
  17. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
  18. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
  19. (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  20. (Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
  21. (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
  22. (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
  23. () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
  24. (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
  25. (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
  26. () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
  27. (Atheros) C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
  28. (Atheros Communications) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
  29. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
  30. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
  31. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
  32. (Intel Corporation) C:\Windows\System32\igfxsrvc.exe
  33. (Intel Corporation) C:\Windows\System32\hkcmd.exe
  34. () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe
  35. (Intel Corporation) C:\Windows\System32\igfxpers.exe
  36. (Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
  37. (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
  38. (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
  39. (AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
  40. (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
  41. (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
  42. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
  43. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  44. (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
  45. (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
  46. (SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
  47. (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
  48. (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
  49. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  50. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  51. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  52. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  53. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  54. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  55. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  56. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  57. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  58. (SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe
  59. () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe
  60. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  61. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  62. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  63. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  64. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  65. (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.17516_none_6276a5b950d43361\TiWorker.exe
  66. (Microsoft Corporation) C:\Windows\System32\msiexec.exe
  67.  
  68. ==================== Rejestr (filtrowane) ===========================
  69.  
  70. (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
  71.  
  72. HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7188552 2013-05-28] (Realtek Semiconductor)
  73. HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1308232 2013-05-21] (Realtek Semiconductor)
  74. HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1308232 2013-05-21] (Realtek Semiconductor)
  75. HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5762408 2013-03-05] (Dell Inc.)
  76. HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation)
  77. HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-11-21] (AVAST Software)
  78. HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642816 2013-05-05] (Advanced Micro Devices, Inc.)
  79. Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
  80. HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [132224 2013-02-28] (Atheros Communications)
  81. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\...\Run: [GG] => C:\Users\Adrian PC\AppData\Local\GG\Application\gghub.exe [4078144 2015-11-06] (GG Network S.A.)
  82. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\...\Run: [ALLUpdate] => C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [3670472 2015-07-28] (ALLPlayer Group Ltd.)
  83. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd)
  84. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\...\Run: [TomTom MySports Connect.exe] => C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe
  85. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\...\Run: [Flvto Youtube Downloader] => "C:\Users\Adrian PC\AppData\Local\Flvto Youtube Downloader\FlvtoYoutubeDownloader.Redesign.exe" /minimize
  86. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\...\MountPoints2: {0de1b757-baa8-11e8-bea2-74867a48659a} - "E:\HiSuiteDownLoader.exe"
  87. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\...\MountPoints2: {0de1b7aa-baa8-11e8-bea2-74867a48659a} - "E:\HiSuiteDownLoader.exe"
  88. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\...\MountPoints2: {1050cd2f-cfaa-11e7-be94-74867a48659a} - "F:\HiSuiteDownLoader.exe"
  89. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\...\MountPoints2: {97ecb3d2-50dd-11e7-be87-74867a48659a} - "E:\HiSuiteDownLoader.exe"
  90. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\...\MountPoints2: {f277ed90-a954-11e5-be75-74867a48659a} - "E:\setup.exe"
  91. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\...\MountPoints2: {fb7359d1-854b-11e8-be9c-74867a48659a} - "E:\HiSuiteDownLoader.exe"
  92. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
  93. Startup: C:\Users\Adrian PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk [2015-12-03]
  94. ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
  95. Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-01-01]
  96. ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
  97.  
  98. ==================== Internet (filtrowane) ====================
  99.  
  100. (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
  101.  
  102. Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
  103. Tcpip\..\Interfaces\{6EEAC7BF-4E0A-445F-89DE-41BA57897C81}: [DhcpNameServer] 192.168.0.1
  104.  
  105. Internet Explorer:
  106. ==================
  107. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell13.msn.com/?pc=DCJB
  108. HKU\S-1-5-21-3593565133-1213687148-1192349871-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
  109. HKU\S-1-5-21-3593565133-1213687148-1192349871-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell13.msn.com/?pc=DCJB
  110. HKU\S-1-5-21-3593565133-1213687148-1192349871-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCJB
  111. SearchScopes: HKU\S-1-5-21-3593565133-1213687148-1192349871-1001 -> DefaultScope {A0F6A96A-5A40-43A1-A50A-DE6351D9C67D} URL =
  112. BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll [2013-02-28] (Qualcomm Atheros Commnucations)
  113. BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
  114. BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2015-10-28] (FreeDownloadManager.ORG)
  115.  
  116. FireFox:
  117. ========
  118. FF DefaultProfile: 0wz1ix6w.default
  119. FF ProfilePath: C:\Users\Adrian PC\AppData\Roaming\Mozilla\Firefox\Profiles\0wz1ix6w.default [2018-11-21]
  120. FF Homepage: Mozilla\Firefox\Profiles\0wz1ix6w.default -> hxxps://www.google.com/
  121. FF Extension: (Avast SafePrice) - C:\Users\Adrian PC\AppData\Roaming\Mozilla\Firefox\Profiles\0wz1ix6w.default\Extensions\sp@avast.com.xpi [2018-04-15]
  122. FF Extension: (Avast Online Security) - C:\Users\Adrian PC\AppData\Roaming\Mozilla\Firefox\Profiles\0wz1ix6w.default\Extensions\wrc@avast.com.xpi [2018-07-21]
  123. FF Extension: (Adblock Plus) - C:\Users\Adrian PC\AppData\Roaming\Mozilla\Firefox\Profiles\0wz1ix6w.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-08-03] [Przestarzałe]
  124. FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nie znaleziono
  125. FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_153.dll [2018-11-21] ()
  126. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_153.dll [2018-11-21] ()
  127. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-06-01] (Intel Corporation)
  128. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-06-01] (Intel Corporation)
  129. FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
  130. FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
  131. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
  132. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
  133. FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-09-20] (Adobe Systems Inc.)
  134.  
  135. Chrome:
  136. =======
  137. CHR DefaultProfile: Default
  138. CHR HomePage: Default -> hxxps://www.google.pl/
  139. CHR StartupUrls: Default -> "hxxps://www.google.pl/"
  140. CHR Profile: C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default [2018-11-21]
  141. CHR Extension: (Prezentacje) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
  142. CHR Extension: (Free Download Manager) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2018-08-02]
  143. CHR Extension: (Dokumenty) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
  144. CHR Extension: (Dysk Google) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
  145. CHR Extension: (YouTube) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-02]
  146. CHR Extension: (Adobe Acrobat) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-11]
  147. CHR Extension: (Arkusze) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
  148. CHR Extension: (Dokumenty Google offline) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-16]
  149. CHR Extension: (AdBlock) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-10-15]
  150. CHR Extension: (EasyHome Homestyler) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmmkfaghgcicheaimnpffeeekheafkb [2017-08-03]
  151. CHR Extension: (Planner 5D) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2017-08-03]
  152. CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
  153. CHR Extension: (Gmail) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-02]
  154. CHR Extension: (Chrome Media Router) - C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-21]
  155. CHR Profile: C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\Guest Profile [2018-10-08]
  156. CHR Profile: C:\Users\Adrian PC\AppData\Local\Google\Chrome\User Data\System Profile [2018-10-08]
  157. CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
  158. CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <nie znaleziono>
  159. CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nie znaleziono>
  160.  
  161. ==================== Usługi (filtrowane) ====================
  162.  
  163. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  164.  
  165. R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [8188768 2018-11-21] (AVAST Software)
  166. R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [227968 2013-02-28] (Qualcomm Atheros Commnucations) [Brak podpisu cyfrowego]
  167. R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [324000 2018-11-21] (AVAST Software)
  168. S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd)
  169. R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-08-23] () [Brak podpisu cyfrowego]
  170. R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation)
  171. R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Brak podpisu cyfrowego]
  172. S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
  173. R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-06-01] (Intel Corporation)
  174. R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego]
  175. R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego]
  176. R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-25] ()
  177. R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [245832 2013-05-18] (Realtek Semiconductor)
  178. R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915480 2013-05-23] (SoftThinks SAS)
  179. S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation)
  180. R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [81536 2013-03-02] (Atheros) [Brak podpisu cyfrowego]
  181. S2 avast; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
  182. S3 avastm; "C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
  183.  
  184. ===================== Sterowniki (filtrowane) ======================
  185.  
  186. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  187.  
  188. R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [36520 2012-09-14] (Advanced Micro Devices, Inc.)
  189. R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [201240 2018-11-21] (AVAST Software)
  190. R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [230344 2018-11-21] (AVAST Software)
  191. R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201768 2018-11-21] (AVAST Software)
  192. R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346592 2018-11-21] (AVAST Software)
  193. R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59496 2018-11-21] (AVAST Software)
  194. R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239608 2018-11-21] (AVAST Software)
  195. S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46384 2018-11-21] (AVAST Software)
  196. R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2018-11-21] (AVAST Software)
  197. R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [163208 2018-11-21] (AVAST Software)
  198. R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111800 2018-11-21] (AVAST Software)
  199. R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87432 2018-11-21] (AVAST Software)
  200. R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1028680 2018-11-21] (AVAST Software)
  201. R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469272 2018-11-21] (AVAST Software)
  202. R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [208472 2018-11-21] (AVAST Software)
  203. R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380464 2018-11-21] (AVAST Software)
  204. S3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2013-02-28] (Qualcomm Atheros)
  205. R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
  206. R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
  207. S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
  208. S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
  209. R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-01-05] (Disc Soft Ltd)
  210. R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [46392 2016-01-05] (Disc Soft Ltd)
  211. S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-08-23] (Huawei Technologies Co., Ltd.)
  212. U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-08-23] (Huawei Technologies Co., Ltd.)
  213. R3 MEIx64; C:\WINDOWS\System32\drivers\TeeDriverx64.sys [99800 2013-06-01] (Intel Corporation)
  214. S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-03-05] (Synaptics Incorporated)
  215. R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [31984 2013-03-05] (Synaptics Incorporated)
  216. S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation)
  217. S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation)
  218. R1 ESProtectionDriver; \??\C:\WINDOWS\system32\drivers\mbae64.sys [X]
  219. S3 MBAMFarflt; system32\DRIVERS\farflt.sys [X]
  220. S3 MBAMWebProtection; \SystemRoot\system32\DRIVERS\mwac.sys [X]
  221.  
  222. ==================== NetSvcs (filtrowane) ===================
  223.  
  224. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  225.  
  226.  
  227. ==================== Jeden miesiąc - utworzone pliki i foldery ========
  228.  
  229. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  230.  
  231. 2018-11-21 17:51 - 2018-11-21 17:51 - 000021579 _____ C:\Users\Adrian PC\Desktop\FRST.txt
  232. 2018-11-21 17:50 - 2018-11-21 17:51 - 000000000 ____D C:\FRST
  233. 2018-11-21 17:44 - 2018-11-21 17:44 - 002416640 _____ (Farbar) C:\Users\Adrian PC\Desktop\FRST64.exe
  234. 2018-11-21 17:35 - 2018-11-21 17:36 - 000286760 _____ C:\WINDOWS\Minidump\112118-46500-01.dmp
  235. 2018-11-21 17:35 - 2018-11-21 17:35 - 803470330 _____ C:\WINDOWS\MEMORY.DMP
  236. 2018-11-21 17:35 - 2018-11-21 17:35 - 000000000 ____D C:\WINDOWS\Minidump
  237. 2018-11-21 17:19 - 2018-11-21 17:19 - 000378584 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
  238. 2018-11-18 14:51 - 2018-11-18 14:51 - 000000000 ____D C:\Users\Adrian PC\Desktop\3333
  239. 2018-11-18 12:26 - 2018-11-18 12:26 - 000000000 ____D C:\Users\Adrian PC\AppData\Local\UnityModManagerNet
  240. 2018-11-02 12:22 - 2018-11-02 12:22 - 000000875 _____ C:\Users\Public\Desktop\BatteryMon.lnk
  241. 2018-11-02 12:22 - 2018-11-02 12:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BatteryMon
  242. 2018-11-01 19:00 - 2018-11-01 19:00 - 000000000 ____D C:\Users\Adrian PC\AppData\Local\Ndemic Creations
  243. 2018-10-31 21:59 - 2018-10-31 21:59 - 000000000 ____D C:\Users\Adrian PC\AppData\LocalLow\Oxymoron Games
  244. 2018-10-23 19:44 - 2018-11-21 17:18 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
  245.  
  246. ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
  247.  
  248. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  249.  
  250. 2018-11-21 17:50 - 2015-11-27 23:16 - 000000000 ____D C:\ProgramData\Malwarebytes
  251. 2018-11-21 17:45 - 2013-10-23 15:10 - 000000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
  252. 2018-11-21 17:42 - 2012-07-26 10:51 - 000795984 _____ C:\WINDOWS\system32\perfh015.dat
  253. 2018-11-21 17:42 - 2012-07-26 10:51 - 000160066 _____ C:\WINDOWS\system32\perfc015.dat
  254. 2018-11-21 17:42 - 2012-07-26 08:28 - 001796820 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  255. 2018-11-21 17:42 - 2012-07-26 06:37 - 000000000 ____D C:\WINDOWS\Inf
  256. 2018-11-21 17:36 - 2012-07-26 08:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
  257. 2018-11-21 17:32 - 2018-03-13 18:06 - 000004566 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
  258. 2018-11-21 17:32 - 2017-08-03 12:39 - 000003482 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
  259. 2018-11-21 17:32 - 2017-08-03 12:39 - 000003354 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
  260. 2018-11-21 17:32 - 2017-08-03 09:27 - 000004424 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
  261. 2018-11-21 17:32 - 2016-10-04 13:00 - 000003176 _____ C:\WINDOWS\System32\Tasks\{B37897C6-252B-4F79-BD55-1D1FD307DEF2}
  262. 2018-11-21 17:32 - 2015-12-03 17:02 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
  263. 2018-11-21 17:32 - 2015-11-25 18:55 - 000004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
  264. 2018-11-21 17:32 - 2015-11-25 15:25 - 000003990 _____ C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
  265. 2018-11-21 17:32 - 2015-11-25 15:25 - 000003440 _____ C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
  266. 2018-11-21 17:32 - 2015-11-25 15:25 - 000003200 _____ C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
  267. 2018-11-21 17:26 - 2012-07-26 09:12 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
  268. 2018-11-21 17:26 - 2012-07-26 09:12 - 000000000 ____D C:\WINDOWS\system32\Macromed
  269. 2018-11-21 17:23 - 2018-01-08 05:53 - 000239608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
  270. 2018-11-21 17:23 - 2017-03-16 14:49 - 000003910 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
  271. 2018-11-21 17:19 - 2017-11-20 17:32 - 000201240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
  272. 2018-11-21 17:19 - 2015-11-25 16:54 - 000469272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
  273. 2018-11-21 17:19 - 2015-11-25 16:54 - 000380464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
  274. 2018-11-21 17:19 - 2015-11-25 16:54 - 000208472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
  275. 2018-11-21 17:19 - 2015-11-25 16:54 - 000163208 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
  276. 2018-11-21 17:19 - 2015-11-25 16:54 - 000111800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
  277. 2018-11-21 17:19 - 2015-11-25 16:54 - 000087432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
  278. 2018-11-21 17:19 - 2015-11-25 16:54 - 000046384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
  279. 2018-11-21 17:18 - 2017-03-16 14:49 - 000346592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys
  280. 2018-11-21 17:18 - 2017-03-16 14:49 - 000230344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
  281. 2018-11-21 17:18 - 2017-03-16 14:49 - 000201768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys
  282. 2018-11-21 17:18 - 2017-03-16 14:49 - 000059496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys
  283. 2018-11-21 17:18 - 2015-11-25 16:54 - 001028680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
  284. 2018-11-18 12:28 - 2018-08-29 17:15 - 000000000 ____D C:\Users\Adrian PC\Desktop\UnityModManager
  285. 2018-11-17 15:01 - 2018-10-11 15:45 - 000000000 ____D C:\Users\Adrian PC\AppData\Roaming\AIMP
  286. 2018-11-17 14:42 - 2015-11-25 18:54 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
  287. 2018-11-13 12:50 - 2012-07-26 09:12 - 000000000 ___HD C:\Program Files\WindowsApps
  288. 2018-11-13 12:50 - 2012-07-26 09:12 - 000000000 ____D C:\WINDOWS\AUInstallAgent
  289. 2018-11-11 23:24 - 2014-12-16 16:52 - 000000000 ____D C:\GRY
  290. 2018-11-10 23:17 - 2017-08-03 12:40 - 000002232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  291. 2018-11-10 23:17 - 2017-08-03 12:40 - 000002191 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  292. 2018-11-06 21:30 - 2015-12-15 20:39 - 000000000 ____D C:\Users\Adrian PC\AppData\Roaming\Free Download Manager
  293. 2018-11-02 12:22 - 2018-09-30 10:13 - 000000000 ____D C:\Program Files\BatteryMon
  294. 2018-11-02 12:17 - 2018-08-15 11:56 - 000000000 ____D C:\Users\Adrian PC\AppData\Local\ElevatedDiagnostics
  295. 2018-11-02 12:08 - 2013-10-23 15:02 - 000000000 ____D C:\ProgramData\PCDr
  296. 2018-11-01 21:21 - 2017-12-17 22:25 - 000000000 ____D C:\Program Files\Malwarebytes
  297. 2018-11-01 18:55 - 2015-12-01 22:18 - 000000000 ____D C:\Users\Adrian PC\AppData\Roaming\qBittorrent
  298. 2018-10-23 20:02 - 2016-01-05 18:34 - 000000000 ____D C:\Users\Adrian PC\AppData\Local\CrashDumps
  299. 2018-10-23 19:57 - 2017-08-03 00:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
  300. 2018-10-23 19:57 - 2017-08-03 00:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
  301. 2018-10-23 19:43 - 2015-11-25 16:48 - 000000000 ____D C:\ProgramData\AVAST Software
  302. 2018-10-22 12:42 - 2015-11-25 17:03 - 000000000 ____D C:\Users\Adrian PC\AppData\Roaming\GG
  303. 2018-10-22 12:35 - 2015-11-25 17:03 - 000000000 ____D C:\Users\Adrian PC\AppData\Local\GG
  304.  
  305. ==================== Pliki w katalogu głównym wybranych folderów =======
  306.  
  307. 2017-07-07 23:36 - 2017-10-22 21:17 - 000004608 _____ () C:\Users\Adrian PC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  308. 2017-09-21 23:36 - 2017-09-21 23:36 - 000004096 ____H () C:\Users\Adrian PC\AppData\Local\keyfile3.drm
  309.  
  310. Niektóre pliki w TEMP:
  311. ====================
  312. 2017-09-14 22:04 - 2017-09-14 22:04 - 010581280 _____ () C:\Users\Adrian PC\AppData\Local\Temp\HPPSdr.exe
  313.  
  314. ==================== Bamital & volsnap ======================
  315.  
  316. (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
  317.  
  318. C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
  319. C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo
  320. C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
  321. C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo
  322. C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
  323. C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo
  324. C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
  325. C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
  326. C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo
  327. C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
  328. C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo
  329. C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
  330. C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
  331. C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
  332. C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
  333.  
  334. LastRegBack: 2018-11-16 19:32
  335.  
  336. ==================== Koniec FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!