API tools faq
paste
kubsztix

frst

kubsztix
Apr 23rd, 2022
301
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 28.87 KB | None | 0 0
raw download clone embed print report
  1. Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 22-04-2022
  2. Uruchomiony przez KUBSZTIX (administrator) DESKTOP-MJ6LIV4 (Gigabyte Technology Co., Ltd. Z87X-OC) (23-04-2022 21:47:28)
  3. Uruchomiony z C:\Users\KUBSZTIX\Desktop
  4. Załadowane profile: KUBSZTIX
  5. Platform: Microsoft Windows 10 Pro Wersja 21H2 19044.1586 (X64) Język: Polski (Polska)
  6. Domyślna przeglądarka: Chrome
  7. Tryb startu: Normal
  8.  
  9. ==================== Procesy (filtrowane) =================
  10.  
  11. (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
  12.  
  13. (C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFSrvWsc.exe
  14. (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
  15. (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
  16. (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
  17. (C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCopyAccelerator.exe
  18. (C:\Users\KUBSZTIX\AppData\Roaming\uTorrent\uTorrent.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\KUBSZTIX\AppData\Roaming\uTorrent\helper\helper.exe
  19. (C:\Users\KUBSZTIX\AppData\Roaming\uTorrent\uTorrent.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\KUBSZTIX\AppData\Roaming\uTorrent\updates\3.5.5_46206\utorrentie.exe <2>
  20. (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginThinSetupInternal.exe
  21. (explorer.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\KUBSZTIX\AppData\Roaming\uTorrent\uTorrent.exe
  22. (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <16>
  23. (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
  24. (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe
  25. (IObit CO., LTD -> IObit) C:\Users\KUBSZTIX\AppData\Local\Temp\IMF9_BigUpgrade\IMFBigUpgrade.exe
  26. (Kofax, Inc. -> Kofax Inc.) C:\Program Files (x86)\Kofax\PaperPort\pptd40nt.exe
  27. (Kofax, Inc. -> Kofax Inc.) C:\Program Files (x86)\Kofax\PDFViewer\PdfPro7Hook.exe
  28. (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
  29. (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
  30. (services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
  31. (services.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
  32. (services.exe ->) (Kofax, Inc. -> Kofax Inc.) C:\Program Files (x86)\Kofax\PaperPort\PDFProFiltSrvPP.exe
  33. (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
  34. (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
  35. (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
  36. (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe
  37. (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
  38. (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2b01a28ee7b06750\Display.NvContainer\NVDisplay.Container.exe <2>
  39. (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
  40. (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
  41. (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
  42. (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
  43. (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe
  44. (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
  45.  
  46. ==================== Rejestr (filtrowane) ===================
  47.  
  48. (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
  49.  
  50. HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2013-05-14] (Brother Industries, Ltd.) [Brak podpisu cyfrowego]
  51. HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Kofax\PaperPort\IndexSearch.exe [26392 2019-09-14] (Kofax, Inc. -> Kofax Inc.)
  52. HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Kofax\PaperPort\pptd40nt.exe [44624 2019-09-14] (Kofax, Inc. -> Kofax Inc.)
  53. HKLM-x32\...\Run: [PPort14reminder] => C:\Program Files (x86)\Kofax\PaperPort\Ereg\Ereg.exe [3495672 2019-03-26] (Kofax, Inc. -> Kofax, Inc.)
  54. HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Kofax\PDFViewer\pdfpro7hook.exe [658624 2019-09-09] (Kofax, Inc. -> Kofax Inc.)
  55. HKLM-x32\...\Run: [PowerPDF Registry Controller] => C:\Program Files (x86)\Kofax\PDFCreate\RegistryController.exe [305936 2019-09-06] (Kofax, Inc. -> Kofax Inc.)
  56. HKU\S-1-5-21-3805781469-161302958-280653133-1001\...\Run: [ut] => C:\Users\KUBSZTIX\AppData\Roaming\uTorrent\uTorrent.exe [2103848 2022-02-19] (BitTorrent Inc -> BitTorrent Inc.)
  57. HKU\S-1-5-21-3805781469-161302958-280653133-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4279208 2022-03-14] (Valve Corp. -> Valve Corporation)
  58. HKU\S-1-5-21-3805781469-161302958-280653133-1001\...\Run: [KUBSZTIX] => explorer.exe hxxp://dinoklafbzor.org (Brak pliku) <==== UWAGA
  59. HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\100.0.4896.127\Installer\chrmstp.exe [2022-04-23] (Google LLC -> Google LLC)
  60.  
  61. ==================== Zaplanowane zadania (filtrowane) ============
  62.  
  63. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  64.  
  65. Task: {1F093A52-5319-45AF-AB69-81147DD0240A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-23] (Microsoft Windows Publisher -> Microsoft Corporation)
  66. Task: {20820FBA-357C-4C3C-B855-840C135D358F} - System32\Tasks\GoogleUpdateTaskMachineCore{29401277-A738-41B6-8F86-8C885DC44C2A} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-26] (Google LLC -> Google LLC)
  67. Task: {23220C15-12AC-4F56-B52D-119BD4FCEA29} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
  68. Task: {25169637-F3AC-4509-8F8F-1C1759E65945} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXvGPUDisableTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe Disable (Brak pliku)
  69. Task: {2A302F3B-5620-48A6-B250-279173D7FA0C} - System32\Tasks\GoogleUpdateTaskMachineUA{DB497AE6-A590-42CF-BC55-6AD2DE4471E9} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2022-01-26] (Google LLC -> Google LLC)
  70. Task: {44EA9BA5-BE85-4D09-B78B-AB84AF995B7C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
  71. Task: {4845B138-5486-4ABF-94F3-49F8EE44F39A} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate
  72. Task: {56572CD8-5625-4FDA-8314-F770184FCCC3} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXWarningTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe Warning (Brak pliku)
  73. Task: {6BE05E76-C4AB-4D73-B470-4F5F1BBD3C6F} - System32\Tasks\KUBSZTIX => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v KUBSZTIX /t REG_SZ /d "explorer.exe hxxp://dinoklafbzor.org" <==== UWAGA
  74. Task: {6CBC8652-F8D7-405E-A470-35E748ADD07B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
  75. Task: {7A606B87-628E-4D89-9DC9-1EAF47193C3B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339472 2022-02-03] (Nvidia Corporation -> NVIDIA Corporation)
  76. Task: {7D865D10-C4F9-42E5-BA06-7C20848B7EC5} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
  77. Task: {88BBDFF2-AA0C-4639-8749-2F1E91AED3C1} - System32\Tasks\IMF_SkipUAC_KUBSZTIX => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [6848720 2022-01-26] (IObit CO., LTD -> IObit) [Brak podpisu cyfrowego]
  78. Task: {96AF3D27-5A6D-4632-8D53-1D6EFD07EE9B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
  79. Task: {B98FCE6E-8161-4BF6-BF37-0804E4C7B8B2} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1009872 2021-11-02] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
  80. Task: {BFC15CD4-8007-4650-B078-61B4CD50AFE5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-23] (Microsoft Windows Publisher -> Microsoft Corporation)
  81. Task: {D8DB00A3-E2D7-4CF1-874A-A3B61314958C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-23] (Microsoft Windows Publisher -> Microsoft Corporation)
  82. Task: {EA25E850-A470-46B2-BDEC-D9B200C60892} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
  83. Task: {F2E5778C-EC79-4F7A-9C92-AD9C724CD2BE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647376 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
  84. Task: {FBB233BA-AB99-4A58-BE0B-CB0F3652A8D6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-23] (Microsoft Windows Publisher -> Microsoft Corporation)
  85.  
  86. (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
  87.  
  88.  
  89. ==================== Internet (filtrowane) ====================
  90.  
  91. (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
  92.  
  93. Tcpip\Parameters: [DhcpNameServer] 10.0.0.138 10.0.0.138
  94. Tcpip\..\Interfaces\{45dc4003-35d2-4fbc-b3d0-9dcd055f6e53}: [DhcpNameServer] 10.0.0.138 10.0.0.138
  95.  
  96. Edge:
  97. =======
  98. Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono]
  99. Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono]
  100. Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono]
  101. Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono]
  102. Edge Profile: C:\Users\KUBSZTIX\AppData\Local\Microsoft\Edge\User Data\Default [2022-04-07]
  103.  
  104. FireFox:
  105. ========
  106. FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
  107.  
  108. Chrome:
  109. =======
  110. CHR Profile: C:\Users\KUBSZTIX\AppData\Local\Google\Chrome\User Data\Default [2022-04-23]
  111. CHR DownloadDir: C:\Users\KUBSZTIX\Desktop
  112. CHR Notifications: Default -> hxxps://dotchaudou.com
  113. CHR Session Restore: Default -> [funkcja włączona]
  114. CHR Extension: (Dokumenty Google offline) - C:\Users\KUBSZTIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-04-23]
  115. CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\KUBSZTIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-04-23]
  116. CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\KUBSZTIX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-01-26]
  117.  
  118. ==================== Usługi (filtrowane) ===================
  119.  
  120. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  121.  
  122. S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Brak podpisu cyfrowego]
  123. S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-03-02] (EasyAntiCheat Oy -> Epic Games, Inc.)
  124. R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFSrv.exe [2485456 2021-12-16] (IObit CO., LTD -> IObit)
  125. S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2563288 2022-02-22] (Electronic Arts, Inc. -> Electronic Arts)
  126. R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3481824 2022-02-22] (Electronic Arts, Inc. -> Electronic Arts)
  127. R2 PDFProFiltSrvPP; C:\Program Files (x86)\Kofax\PaperPort\PDFProFiltSrvPP.exe [86632 2019-09-14] (Kofax, Inc. -> Kofax Inc.)
  128. S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6228008 2022-03-11] (Microsoft Windows Publisher -> Microsoft Corporation)
  129. R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-23] (Microsoft Windows Publisher -> Microsoft Corporation)
  130. R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-23] (Microsoft Windows Publisher -> Microsoft Corporation)
  131. R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2b01a28ee7b06750\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2b01a28ee7b06750\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
  132.  
  133. ===================== Sterowniki (filtrowane) ===================
  134.  
  135. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  136.  
  137. S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
  138. S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
  139. R3 HidHide; C:\WINDOWS\System32\drivers\HidHide.sys [61408 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
  140. R3 Imf8HpRegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpRegFilter.sys [41848 2019-12-17] (IObit Information Technology -> IObit)
  141. R1 IMFCameraProtect; C:\Windows\system32\drivers\IMFCameraProtect.sys [42360 2019-07-30] (IObit Information Technology -> IObit)
  142. R3 IMFDownProtect; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFDownProtect.sys [40920 2021-07-30] (IObit CO., LTD -> IObit)
  143. R3 IMFEFSFileControl; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFEFSFileControl.sys [40824 2019-08-14] (IObit Information Technology -> IObit)
  144. R3 IMFForceDelete; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFForceDelete.sys [34192 2019-06-11] (IObit Information Technology -> IObit)
  145. R3 ImfHpFileFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfHpFileFilter.sys [45432 2019-12-17] (IObit Information Technology -> IObit)
  146. R3 ImfObCallback; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\ImfObCallback.sys [33984 2020-03-12] (IObit Information Technology -> IObit)
  147. R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
  148. R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
  149. S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-04-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
  150. R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [443664 2022-04-23] (Microsoft Windows -> Microsoft Corporation)
  151. R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-23] (Microsoft Windows -> Microsoft Corporation)
  152.  
  153. ==================== NetSvcs (filtrowane) ===================
  154.  
  155. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  156.  
  157.  
  158. ==================== Jeden miesiąc (utworzone) (filtrowane) =========
  159.  
  160. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  161.  
  162. 2022-04-23 21:47 - 2022-04-23 21:47 - 000018813 _____ C:\Users\KUBSZTIX\Desktop\FRST.txt
  163. 2022-04-23 21:47 - 2022-04-23 21:47 - 000000000 ____D C:\Users\KUBSZTIX\Desktop\FRST-OlderVersion
  164. 2022-04-23 21:47 - 2022-04-23 21:47 - 000000000 ____D C:\FRST
  165. 2022-04-23 21:46 - 2022-04-23 21:47 - 002366976 _____ (Farbar) C:\Users\KUBSZTIX\Desktop\FRST64.exe
  166. 2022-04-23 19:29 - 2022-04-23 19:29 - 000000000 ___HD C:\$WinREAgent
  167. 2022-04-06 19:33 - 2022-04-06 19:33 - 900432748 _____ C:\WINDOWS\MEMORY.DMP
  168. 2022-04-06 19:33 - 2022-04-06 19:33 - 001159300 _____ C:\WINDOWS\Minidump\040622-11828-01.dmp
  169. 2022-04-06 19:33 - 2022-04-06 19:33 - 000000000 ____D C:\WINDOWS\Minidump
  170. 2022-03-29 07:40 - 2022-03-29 07:41 - 000000000 ____D C:\AdwCleaner
  171. 2022-03-28 17:58 - 2022-03-17 18:33 - 000047792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
  172. 2022-03-28 17:54 - 2022-03-18 07:43 - 001905904 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
  173. 2022-03-28 17:54 - 2022-03-18 07:43 - 001905904 _____ C:\WINDOWS\system32\vulkaninfo.exe
  174. 2022-03-28 17:54 - 2022-03-18 07:43 - 001478392 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
  175. 2022-03-28 17:54 - 2022-03-18 07:43 - 001478392 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
  176. 2022-03-28 17:54 - 2022-03-18 07:43 - 001467840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
  177. 2022-03-28 17:54 - 2022-03-18 07:43 - 001432312 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
  178. 2022-03-28 17:54 - 2022-03-18 07:43 - 001432312 _____ C:\WINDOWS\system32\vulkan-1.dll
  179. 2022-03-28 17:54 - 2022-03-18 07:43 - 001209400 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
  180. 2022-03-28 17:54 - 2022-03-18 07:43 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
  181. 2022-03-28 17:54 - 2022-03-18 07:43 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
  182. 2022-03-28 17:54 - 2022-03-18 07:40 - 000795704 _____ C:\WINDOWS\system32\nvofapi64.dll
  183. 2022-03-28 17:54 - 2022-03-18 07:40 - 000715944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
  184. 2022-03-28 17:54 - 2022-03-18 07:40 - 000636480 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
  185. 2022-03-28 17:54 - 2022-03-18 07:39 - 002121688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
  186. 2022-03-28 17:54 - 2022-03-18 07:39 - 001600680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
  187. 2022-03-28 17:54 - 2022-03-18 07:39 - 001529936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
  188. 2022-03-28 17:54 - 2022-03-18 07:39 - 001175696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
  189. 2022-03-28 17:54 - 2022-03-18 07:39 - 000981648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
  190. 2022-03-28 17:54 - 2022-03-18 07:39 - 000792208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
  191. 2022-03-28 17:54 - 2022-03-18 07:39 - 000712664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
  192. 2022-03-28 17:54 - 2022-03-18 07:38 - 008610472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
  193. 2022-03-28 17:54 - 2022-03-18 07:38 - 007713872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
  194. 2022-03-28 17:54 - 2022-03-18 07:38 - 005729752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
  195. 2022-03-28 17:54 - 2022-03-18 07:38 - 005101528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
  196. 2022-03-28 17:54 - 2022-03-18 07:38 - 002931856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
  197. 2022-03-28 17:54 - 2022-03-18 07:38 - 000456872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
  198. 2022-03-28 17:54 - 2022-03-18 07:36 - 000850088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
  199. 2022-03-28 17:54 - 2022-03-17 18:33 - 000089337 _____ C:\WINDOWS\system32\nvinfo.pb
  200. 2022-03-28 14:25 - 2022-03-28 14:25 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Local\Kofax
  201. 2022-03-28 14:24 - 2022-03-28 14:35 - 000000000 ____D C:\Users\KUBSZTIX\Documents\My PaperPort Documents
  202. 2022-03-28 14:24 - 2022-03-28 14:24 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Roaming\Nuance
  203. 2022-03-28 14:24 - 2022-03-28 14:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kofax Power PDF Create
  204. 2022-03-28 14:23 - 2022-03-28 14:23 - 000000000 ____D C:\ProgramData\zeon
  205. 2022-03-28 14:23 - 2022-03-28 14:23 - 000000000 ____D C:\Program Files\Kofax
  206. 2022-03-28 14:22 - 2022-03-28 14:24 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Roaming\.oit
  207. 2022-03-28 14:22 - 2022-03-28 14:24 - 000000000 ____D C:\ProgramData\TEMP
  208. 2022-03-28 14:22 - 2022-03-28 14:24 - 000000000 ____D C:\Program Files (x86)\Kofax
  209. 2022-03-28 14:22 - 2022-03-28 14:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kofax PaperPort 14
  210. 2022-03-28 14:22 - 2022-03-28 14:22 - 000000000 ____D C:\WINDOWS\PIXTRAN
  211. 2022-03-28 14:22 - 2022-03-28 14:22 - 000000000 ____D C:\Users\KUBSZTIX\Documents\MyWebPages
  212. 2022-03-28 14:22 - 2022-03-28 14:22 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Roaming\Zeon
  213. 2022-03-28 14:22 - 2022-03-28 14:22 - 000000000 ____D C:\ProgramData\ScanSoft
  214. 2022-03-28 14:22 - 2022-03-28 14:22 - 000000000 ____D C:\ProgramData\Macrovision
  215. 2022-03-28 14:22 - 2022-03-28 14:22 - 000000000 ____D C:\ProgramData\FLEXnet
  216. 2022-03-28 14:20 - 2022-03-28 14:24 - 000000000 ____D C:\ProgramData\Nuance
  217. 2022-03-28 14:20 - 2022-03-28 14:22 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Local\Nuance
  218. 2022-03-28 14:19 - 2022-03-28 14:20 - 000000000 ____D C:\KofaxPaperPortEnterprise-14_7_0
  219.  
  220. ==================== Jeden miesiąc (zmodyfikowane) ==================
  221.  
  222. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  223.  
  224. 2022-04-23 21:48 - 2022-01-26 20:28 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Roaming\uTorrent
  225. 2022-04-23 21:46 - 2022-02-04 19:54 - 000000000 ____D C:\Program Files (x86)\Steam
  226. 2022-04-23 21:30 - 2022-01-26 19:28 - 000000000 ____D C:\Program Files (x86)\Google
  227. 2022-04-23 21:07 - 2022-01-27 14:10 - 000003422 _____ C:\WINDOWS\BRRBCOM.INI
  228. 2022-04-23 19:49 - 2022-01-26 20:11 - 000000000 ____D C:\ProgramData\NVIDIA
  229. 2022-04-23 19:48 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
  230. 2022-04-23 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
  231. 2022-04-23 19:35 - 2022-01-29 11:26 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
  232. 2022-04-23 19:35 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
  233. 2022-04-23 19:31 - 2022-01-26 19:29 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  234. 2022-04-23 19:29 - 2022-01-26 18:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
  235. 2022-04-23 19:28 - 2022-01-26 19:07 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
  236. 2022-04-23 19:26 - 2022-01-26 21:18 - 000000000 ____D C:\ProgramData\ProductData
  237. 2022-04-23 19:25 - 2022-03-15 15:03 - 000000000 ____D C:\Users\KUBSZTIX\AppData\LocalLow\uTorrent
  238. 2022-04-23 19:25 - 2022-01-30 10:22 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
  239. 2022-04-23 19:25 - 2022-01-30 10:22 - 000003416 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d814f2c265af6c
  240. 2022-04-23 19:25 - 2022-01-29 11:30 - 000003646 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{DB497AE6-A590-42CF-BC55-6AD2DE4471E9}
  241. 2022-04-23 19:25 - 2022-01-29 11:30 - 000003522 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{29401277-A738-41B6-8F86-8C885DC44C2A}
  242. 2022-04-23 19:25 - 2022-01-29 11:26 - 000000000 ____D C:\Users\KUBSZTIX
  243. 2022-04-23 19:25 - 2022-01-26 20:24 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Local\BitTorrentHelper
  244. 2022-04-23 19:24 - 2022-01-26 18:55 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
  245. 2022-04-23 19:24 - 2022-01-26 18:55 - 000000000 __SHD C:\Users\KUBSZTIX\IntelGraphicsProfiles
  246. 2022-04-07 20:25 - 2022-02-03 15:59 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Roaming\Origin
  247. 2022-04-07 20:25 - 2022-02-03 15:59 - 000000000 ____D C:\ProgramData\Origin
  248. 2022-04-07 19:27 - 2022-02-03 16:01 - 000000000 ____D C:\Program Files (x86)\Origin Games
  249. 2022-04-07 19:27 - 2022-02-03 15:59 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Local\Origin
  250. 2022-04-07 13:26 - 2022-01-29 11:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
  251. 2022-04-07 10:32 - 2022-01-29 11:32 - 002001866 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  252. 2022-04-07 10:32 - 2019-12-07 17:09 - 000855904 _____ C:\WINDOWS\system32\perfh015.dat
  253. 2022-04-07 10:32 - 2019-12-07 17:09 - 000181914 _____ C:\WINDOWS\system32\perfc015.dat
  254. 2022-04-07 10:32 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
  255. 2022-04-07 10:25 - 2022-01-29 11:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
  256. 2022-04-07 10:25 - 2022-01-29 11:25 - 000008192 ___SH C:\DumpStack.log.tmp
  257. 2022-04-06 19:33 - 2022-01-29 11:25 - 000258664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
  258. 2022-04-06 19:33 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
  259. 2022-03-30 17:26 - 2022-01-26 18:49 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Local\Packages
  260. 2022-03-29 07:54 - 2022-01-25 23:48 - 000000000 ___RD C:\Users\KUBSZTIX\Desktop\Skan brother
  261. 2022-03-29 07:41 - 2022-01-26 21:18 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Roaming\IObit
  262. 2022-03-29 07:41 - 2022-01-26 21:18 - 000000000 ____D C:\Users\KUBSZTIX\AppData\LocalLow\IObit
  263. 2022-03-29 07:41 - 2022-01-26 21:17 - 000000000 ____D C:\ProgramData\IObit
  264. 2022-03-28 18:00 - 2022-01-26 20:13 - 000000000 ____D C:\Users\KUBSZTIX\AppData\Local\NVIDIA
  265. 2022-03-28 09:57 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
  266. 2022-03-25 15:15 - 2019-12-07 17:12 - 000000000 ___SD C:\WINDOWS\system32\AppV
  267. 2022-03-25 15:15 - 2019-12-07 17:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
  268. 2022-03-25 15:15 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
  269. 2022-03-25 15:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
  270. 2022-03-25 15:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
  271. 2022-03-25 15:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
  272. 2022-03-25 15:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
  273. 2022-03-25 15:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
  274. 2022-03-25 15:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
  275. 2022-03-25 15:15 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
  276.  
  277. ==================== SigCheck ============================
  278.  
  279. (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
  280.  
  281. ==================== Koniec FRST.txt ========================
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!