Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 25.02.2019 01
- Uruchomiony przez Professional (administrator) PROFESSIONAL-PC (26-02-2019 21:36:48)
- Uruchomiony z C:\Users\Professional\Desktop
- Załadowane profile: Professional (Dostępne profile: Professional)
- Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska)
- Internet Explorer Wersja 11 (Domyślna przeglądarka: Opera)
- Tryb startu: Normal
- Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
- ==================== Procesy (filtrowane) =================
- (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
- (LENOVO -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
- (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
- (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\ISD\ISD_TouchService.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe
- (Wacom Technology Corp. -> Wacom Technology, Inc) C:\Program Files\Tablet\CalibrationAssistant.exe
- (AuthenTec, Inc. -> Authentec Inc.) C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
- (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
- (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
- (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
- (Fork, Ltd.) [Brak podpisu cyfrowego] C:\Windows\Prey\wpxsvc.exe
- (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
- (Node.js Foundation -> Node.js) C:\Windows\Prey\versions\1.8.2\bin\node.exe
- (Prey SpA -> Fork, Ltd.) [Brak podpisu cyfrowego] C:\Windows\Prey\versions\1.8.2\node_modules\os-triggers\bin\lightevt.exe
- (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
- (Atheros Communications, Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Jumpstart\jswpbapi.exe
- (Qualcomm Inc -> QUALCOMM, Inc.) C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kLenovo.exe
- (Ralink Technology, Corp.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Ralink\Common\RaRegistry.exe
- (Ralink Technology, Corp.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe
- (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
- (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
- (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\ISD\ISD_Tablet.exe
- (Lenovo (Japan) Ltd. -> Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Tablet Shortcut\TSMService.exe
- (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
- (Michael Maltsev -> RaMMicHaeL) [Brak podpisu cyfrowego] C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
- () [Brak podpisu cyfrowego] C:\Program Files (x86)\D-Link\DWA-127\WPSHWPBC.exe
- (NETGEAR -> ) C:\Program Files (x86)\NETGEAR\WNA1100\WifiSvc.exe
- (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
- (LENOVO -> Lenovo) C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
- (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
- (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
- (LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
- (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
- (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
- (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
- (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wisptis.exe
- (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\ISD\ISD_TabletUser.exe
- (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
- (Lenovo(Japan)Ltd. -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
- (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\ISD\ISD_Tablet.exe
- (Michael Maltsev -> RaMMicHaeL) [Brak podpisu cyfrowego] C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
- (LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
- (LENOVO -> Lenovo Group Limited) C:\Program Files\Lenovo\ZOOM\TpScrex.exe
- (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
- (Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
- (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
- (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
- (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
- (Viber Media S.à r.l. -> Viber Media S.Ã r.l.) C:\Users\Professional\AppData\Local\Viber.old\Viber.exe
- (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
- (Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
- (F.lux Software LLC -> f.lux Software LLC) C:\Users\Professional\AppData\Local\FluxSoftware\Flux\flux.exe
- (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
- (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
- (Ricoh co.,Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
- (Hewlett-Packard Co.) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
- (Lenovo (Japan) Ltd. -> Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Tablet Shortcut\TSMResident.exe
- (Ralink Technology Corporation -> Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaUI.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
- (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
- (Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
- (IO3O LLC -> IO3O LLC) [Brak podpisu cyfrowego] C:\Program Files (x86)\IO3O LLC\Who Is On My Wifi\mywifi.exe
- (Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
- (Mega Limited -> Mega Limited) C:\Users\Professional\AppData\Local\MEGAsync\MEGAsync.exe
- (Atheros Communications, Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Jumpstart\jswtrayutil.exe
- (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
- (Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
- (LENOVO -> Lenovo Group Limited) C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
- (Lenovo) [Brak podpisu cyfrowego] C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
- (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxext.exe
- (Hewlett-Packard Co.) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
- (Hewlett-Packard Co.) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
- (Hewlett-Packard) [Brak podpisu cyfrowego] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
- (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
- (LENOVO -> Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
- (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
- (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\ISD\ISD_TouchUser.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera_crashreporter.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Opera Software AS -> Opera Software) C:\Program Files\Opera\58.0.3135.68\opera.exe
- (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\osk.exe
- ==================== Rejestr (filtrowane) ===========================
- (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
- HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [307768 2009-11-15] (Conexant Systems, Inc. -> )
- HKLM\...\Run: [PSQLLauncher] => C:\Program Files\ThinkVantage Fingerprint Software\launcher.exe [86312 2013-03-05] (AuthenTec, Inc. -> Authentec Inc.)
- HKLM\...\Run: [AcWin7Hlpr] => C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [63728 2014-12-16] (LENOVO -> Lenovo)
- HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916592 2014-07-28] (Synaptics Incorporated -> Synaptics Incorporated)
- HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1340192 2016-01-29] (Microsoft Corporation -> Microsoft Corporation)
- HKLM-x32\...\Run: [RotateImage] => C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.) [Brak podpisu cyfrowego]
- HKLM-x32\...\Run: [TSMResident] => C:\Program Files (x86)\ThinkPad\Tablet Shortcut\TSMRESIDENT.EXE [485336 2012-01-27] (Lenovo (Japan) Ltd. -> Lenovo Group Limited)
- HKLM-x32\...\Run: [TabletButton] => C:\Program Files (x86)\ThinkPad\Tablet Shortcut\TabletButton.EXE [468328 2010-10-27] (Lenovo(Japan)Ltd. -> Lenovo Group Limited )
- HKLM-x32\...\Run: [PWMTRV] => C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [6371568 2014-11-14] (LENOVO -> Lenovo Group Limited)
- HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [111928 2013-05-03] (Intel Corporation -> Intel Corporation)
- HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
- HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard Company -> Hewlett-Packard)
- HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard) [Brak podpisu cyfrowego]
- HKLM-x32\...\Run: [jswtrayutil] => C:\Program Files (x86)\Jumpstart\jswtrayutil.exe [528384 2008-09-26] (Atheros Communications, Inc.) [Brak podpisu cyfrowego]
- HKLM-x32\...\Run: [RandMAC] => C:\Users\Professional\Desktop\MadMACs\MadMACs.exe doittoit
- HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation)
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\Run: [Viber] => C:\Users\Professional\AppData\Local\Viber.old\Viber.exe [45485648 2016-11-03] (Viber Media S.à r.l. -> Viber Media S.Ã r.l.)
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\Run: [Free Download Manager] => "C:\Program Files (x86)\FreeDownloadManager.ORG\Free Download Manager\fdm.exe" --minimized
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3144480 2019-02-19] (Valve -> Valve Corporation)
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-02-02] (Disc Soft Ltd -> Disc Soft Ltd)
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\Run: [Flvto Youtube Downloader] => "C:\Users\Professional\AppData\Local\Flvto Youtube Downloader\FlvtoYoutubeDownloader.Redesign.exe" /minimize
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\Run: [f.lux] => C:\Users\Professional\AppData\Local\FluxSoftware\Flux\flux.exe [1820168 2018-10-24] (F.lux Software LLC -> f.lux Software LLC)
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-08-24] (Piriform Ltd -> Piriform Ltd)
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\RunOnce: [Adobe Speed Launcher] => 1550884386
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\MountPoints2: {037b879e-644f-11e6-a614-00a0c6000000} - D:\LGAutoRun.exe
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\MountPoints2: {aa68a43e-8967-11e6-bc82-889ffaf7756a} - D:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A01B06 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\MountPoints2: {fa6ef8c9-8ce7-11e7-9829-e3b8bc95afc9} - D:\setup.exe
- HKU\S-1-5-18\...\Run: [Free Download Manager] => "C:\Program Files (x86)\FreeDownloadManager.ORG\Free Download Manager\fdm.exe" --minimized
- HKLM\Software\...\AppCompatFlags\Custom\Earth2150.exe: [{1abde667-3035-44a3-a6be-12b3c0821790}.sdb] -> GOG.com Earth 2150
- HKLM\Software\...\AppCompatFlags\InstalledSDB\{1abde667-3035-44a3-a6be-12b3c0821790}: [DatabasePath] -> C:\Windows\AppPatch\Custom\{1abde667-3035-44a3-a6be-12b3c0821790}.sdb [2014-06-23]
- HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.119\Installer\chrmstp.exe [2019-02-25] (Google LLC -> Google Inc.)
- HKLM\Software\...\Authentication\Credential Providers: [{18CBEEAA-6708-41A1-9379-D08915333CF2}] -> C:\Program Files\ThinkVantage Fingerprint Software\provider.dll [2013-03-05] (AuthenTec, Inc. -> Authentec Inc.)
- HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\ThinkPad\Bluetooth Software\\BtwCP.dll [2011-06-13] (Broadcom Corporation -> Broadcom Corporation.)
- HKLM\Software\...\Authentication\Credential Provider Filters: [{AE583D93-8D1B-424F-9858-5623FB7824EE}] -> C:\Program Files\ThinkVantage Fingerprint Software\provider.dll [2013-03-05] (AuthenTec, Inc. -> Authentec Inc.)
- Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll
- Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-02-18]
- ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.)
- Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2017-04-14]
- ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) [Brak podpisu cyfrowego]
- Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk [2017-12-20]
- ShortcutTarget: Ralink Wireless Utility.lnk -> C:\Program Files (x86)\Ralink\Common\RaUI.exe (Ralink Technology Corporation -> Ralink Technology, Corp.)
- Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Who Is On My Wifi.lnk [2018-07-17]
- ShortcutTarget: Who Is On My Wifi.lnk -> C:\Program Files (x86)\IO3O LLC\Who Is On My Wifi\mywifi.exe (IO3O LLC -> IO3O LLC) [Brak podpisu cyfrowego]
- Startup: C:\Users\Professional\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2018-06-26]
- ShortcutTarget: MEGAsync.lnk -> C:\Users\Professional\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
- ==================== Internet (filtrowane) ====================
- (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
- Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
- Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
- Tcpip\..\Interfaces\{088FBD46-8294-4630-90B3-BBF3B012F532}: [DhcpNameServer] 192.168.1.1
- Tcpip\..\Interfaces\{1671EEFE-EA84-4E04-82FE-6733B47B6436}: [DhcpNameServer] 192.168.42.129
- Tcpip\..\Interfaces\{599AC821-0FB8-435A-B926-CCFD1EB437EC}: [DhcpNameServer] 192.168.42.129
- Tcpip\..\Interfaces\{DFF702DA-9FB3-4B56-A2FF-97402B6AA332}: [DhcpNameServer] 192.168.1.254
- Tcpip\..\Interfaces\{E81BA04E-1D72-4F8B-8F49-7AFAEED4B730}: [DhcpNameServer] 192.168.1.1
- HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,192.168.0.1,-1]
- Internet Explorer:
- ==================
- HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/el-gr/?ocid=iehp
- BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-10-19] (Oracle America, Inc. -> Oracle Corporation)
- BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-19] (Oracle America, Inc. -> Oracle Corporation)
- BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Company -> Hewlett-Packard Co.)
- BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-10-19] (Oracle America, Inc. -> Oracle Corporation)
- BHO-x32: FlashGetBHO -> {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} -> C:\Users\Professional\AppData\Roaming\FlashGetBHO\FlashGetBHO.dll [2012-01-06] (Trend Media Corporation Limited -> Trend Media Group) [Brak podpisu cyfrowego]
- BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-19] (Oracle America, Inc. -> Oracle Corporation)
- BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Company -> Hewlett-Packard Co.)
- FireFox:
- ========
- FF DefaultProfile: 9nhafha0.default
- FF ProfilePath: C:\Users\Professional\AppData\Roaming\Mozilla\Firefox\Profiles\9nhafha0.default [2019-02-26]
- FF Extension: (Ghostery – Bloker reklam chroniący prywatność) - C:\Users\Professional\AppData\Roaming\Mozilla\Firefox\Profiles\9nhafha0.default\Extensions\firefox@ghostery.com.xpi [2018-12-18]
- FF Extension: (User-Agent Switcher) - C:\Users\Professional\AppData\Roaming\Mozilla\Firefox\Profiles\9nhafha0.default\Extensions\{75afe46a-7a50-4c6b-b866-c43a1075b071}.xpi [2018-07-31]
- FF Extension: (Video DownloadHelper) - C:\Users\Professional\AppData\Roaming\Mozilla\Firefox\Profiles\9nhafha0.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-08-12]
- FF Extension: (Adblock Plus – wersja rozwojowa) - C:\Users\Professional\AppData\Roaming\Mozilla\Firefox\Profiles\9nhafha0.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-12-18]
- FF Extension: (Telemetry coverage) - C:\Users\Professional\AppData\Roaming\Mozilla\Firefox\Profiles\9nhafha0.default\features\{d23386f7-14c4-46cd-9a69-03ce862a720b}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-11-22] [Przestarzałe]
- FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
- FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2017-04-14] [Przestarzałe] [Brak podpisu cyfrowego]
- FF HKU\S-1-5-21-3284156953-2231564213-1393044623-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
- FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_142.dll [2019-02-13] (Adobe Systems Incorporated -> )
- FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-19] (Oracle America, Inc. -> Oracle Corporation)
- FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-19] (Oracle America, Inc. -> Oracle Corporation)
- FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
- FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] (Microsoft Corporation -> Microsoft Corporation)
- FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_142.dll [2019-02-13] (Adobe Systems Incorporated -> )
- FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.) [Brak podpisu cyfrowego]
- FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-19] (Oracle America, Inc. -> Oracle Corporation)
- FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-19] (Oracle America, Inc. -> Oracle Corporation)
- FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
- FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] (Microsoft Corporation -> Microsoft Corporation)
- FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation -> Microsoft Corporation)
- FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
- FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
- FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
- FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN -> VideoLAN)
- FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.9 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll [2011-02-28] (Wacom, Inc.) [Brak podpisu cyfrowego]
- FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
- Chrome:
- =======
- CHR Profile: C:\Users\Professional\AppData\Local\Google\Chrome\User Data\Default [2018-09-09]
- CHR Extension: (Prezentacje) - C:\Users\Professional\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-01]
- CHR Extension: (Dokumenty) - C:\Users\Professional\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-01]
- CHR Extension: (Dysk Google) - C:\Users\Professional\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-23]
- CHR Extension: (YouTube) - C:\Users\Professional\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-23]
- CHR Extension: (Arkusze) - C:\Users\Professional\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-01]
- CHR Extension: (Dokumenty Google offline) - C:\Users\Professional\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-23]
- CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Professional\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-12-01]
- CHR Extension: (Gmail) - C:\Users\Professional\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-23]
- CHR Extension: (Chrome Media Router) - C:\Users\Professional\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-01]
- Opera:
- =======
- OPR Extension: (RestMan) - C:\Users\Professional\AppData\Roaming\Opera Software\Opera Stable\Extensions\aahelpfcopefplnmnphdochceilphfeb [2018-03-15]
- OPR Extension: (YouTube MP3 Downloader) - C:\Users\Professional\AppData\Roaming\Opera Software\Opera Stable\Extensions\danfmmfbeaomffmgdnpgofcmphkpobii [2018-10-29]
- OPR Extension: (Video Downloader Prime) - C:\Users\Professional\AppData\Roaming\Opera Software\Opera Stable\Extensions\diefijfleiebcgdkmaefbjehgcokpdjl [2018-09-17]
- OPR Extension: (Dark Mode) - C:\Users\Professional\AppData\Roaming\Opera Software\Opera Stable\Extensions\jabpfojepndedlelamfloejfoopkogcf [2019-01-14]
- OPR Extension: (YouTube Downloader) - C:\Users\Professional\AppData\Roaming\Opera Software\Opera Stable\Extensions\kclijeogghhkmenkommbnjobhnndpfba [2018-10-29]
- OPR Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\Professional\AppData\Roaming\Opera Software\Opera Stable\Extensions\khgbdhkpcapllhgfekjegcinegfhjbmi [2018-10-29]
- OPR Extension: (Bulk Media Downloader) - C:\Users\Professional\AppData\Roaming\Opera Software\Opera Stable\Extensions\kplhfapemdbjdfflffdggodigfmpefdo [2018-08-05]
- OPR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\Professional\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2019-01-27]
- ==================== Usługi (filtrowane) ====================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- S2 ASRSVC; C:\Program Files (x86)\ThinkPad\Tablet Shortcut\ASR\ASRSVC.exe [79136 2010-10-27] (Lenovo(Japan)Ltd. -> Lenovo Group Limited)
- R2 CronService; C:\Windows\Prey\wpxsvc.exe [611854 2018-07-01] (Fork, Ltd.) [Brak podpisu cyfrowego]
- R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-02] (Disc Soft Ltd -> Disc Soft Ltd)
- S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [319536 2014-11-14] (Lenovo(Japan)Ltd. -> Lenovo.)
- R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [Brak podpisu cyfrowego]
- R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [Brak podpisu cyfrowego]
- R2 jswpbapi; C:\Program Files (x86)\Jumpstart\jswpbapi.exe [265216 2008-09-26] (Atheros Communications, Inc.) [Brak podpisu cyfrowego]
- S3 jswpsapi; C:\Program Files (x86)\Jumpstart\jswpsapi.exe [954368 2008-09-26] (Atheros Communications, Inc.) [Brak podpisu cyfrowego]
- R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
- R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2016-01-29] (Microsoft Corporation -> Microsoft Corporation)
- S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-12-04] (Intel Corporation-Wireless Connectivity Solutions -> )
- S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Brak podpisu cyfrowego]
- R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [374344 2016-01-29] (Microsoft Corporation -> Microsoft Corporation)
- S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Brak podpisu cyfrowego]
- R2 QDLService2kLenovo; C:\Program Files (x86)\QUALCOMM\QDLService2k\QDLService2kLenovo.exe [1688384 2011-05-23] (Qualcomm Inc -> QUALCOMM, Inc.)
- R2 RalinkRegistryWriter; C:\Program Files (x86)\Ralink\Common\RaRegistry.exe [372736 2012-01-12] (Ralink Technology, Corp.) [Brak podpisu cyfrowego]
- R2 RalinkRegistryWriter64; C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe [447488 2012-01-12] (Ralink Technology, Corp.) [Brak podpisu cyfrowego]
- S3 RaMediaServer; C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe [625728 2011-08-18] (Ralink Technology Corporation -> )
- S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
- R2 TabletServiceISD; C:\Program Files\Tablet\ISD\ISD_Tablet.exe [5650296 2012-04-10] (Wacom Technology Corp. -> Wacom Technology, Corp.)
- R2 TabletSVC; C:\Program Files (x86)\ThinkPad\Tablet Shortcut\TSMService.exe [83920 2012-02-08] (Lenovo (Japan) Ltd. -> Lenovo Group Limited)
- R2 TouchServiceISD; C:\Program Files\Tablet\ISD\ISD_TouchService.exe [449912 2012-04-10] (Wacom Technology Corp. -> Wacom Technology, Corp.)
- R2 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [126568 2015-02-18] (Michael Maltsev -> RaMMicHaeL) [Brak podpisu cyfrowego]
- S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
- R2 WPSHWPBC; C:\Program Files (x86)\D-Link\DWA-127\WPSHWPBC.exe [311296 2012-12-20] () [Brak podpisu cyfrowego]
- R2 WSWNA1100; C:\Program Files (x86)\NETGEAR\WNA1100\WifiSvc.exe [316120 2014-03-19] (NETGEAR -> )
- R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-12-04] (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation)
- ===================== Sterowniki (filtrowane) ======================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- R3 5U877; C:\Windows\System32\DRIVERS\5U877.sys [167040 2011-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
- S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
- S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
- S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis64.sys [94208 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
- S3 athur; C:\Windows\System32\DRIVERS\athurx.sys [1924096 2010-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
- S3 btusbflt; C:\Windows\System32\drivers\btusbflt.sys [54824 2010-04-09] (Broadcom Corporation -> Broadcom Corporation.)
- S3 btwaudio; C:\Windows\System32\drivers\btwaudio.sys [98344 2010-01-15] (Broadcom Corporation -> Broadcom Corporation.)
- S3 btwavdt; C:\Windows\System32\drivers\btwavdt.sys [132648 2010-01-15] (Broadcom Corporation -> Broadcom Corporation.)
- S3 btwl2cap; C:\Windows\System32\DRIVERS\btwl2cap.sys [35104 2009-04-07] (Broadcom Corporation -> Broadcom Corporation.)
- S3 btwrchid; C:\Windows\System32\DRIVERS\btwrchid.sys [21288 2010-01-15] (Broadcom Corporation -> Broadcom Corporation.)
- R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-08-29] (Disc Soft Ltd -> Disc Soft Ltd)
- R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-08-29] (Disc Soft Ltd -> Disc Soft Ltd)
- R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
- S1 HBtnKey; C:\Windows\System32\DRIVERS\wstbtndb.sys [17064 2010-06-28] (Wistron Corporation -> Lenovo)
- R3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [12311904 2012-01-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
- R3 Impcd; C:\Windows\System32\DRIVERS\Impcd.sys [158976 2010-02-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
- R3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [317440 2011-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
- R1 JSWPSLWF; C:\Windows\System32\DRIVERS\jswpslwfx.sys [26624 2008-05-15] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
- R1 LeapdroidVMDrv; C:\Program Files\Leapdroid\VM\LeapdroidVMDrv.sys [300952 2016-11-03] (Leapdroid Inc -> Leapdroid Inc.)
- R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [198512 2019-02-22] (Malwarebytes Corporation -> Malwarebytes)
- R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [127136 2019-02-22] (Malwarebytes Corporation -> Malwarebytes)
- R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [72864 2019-02-23] (Malwarebytes Corporation -> Malwarebytes)
- R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [274416 2019-02-23] (Malwarebytes Corporation -> Malwarebytes)
- R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [104784 2019-02-22] (Malwarebytes Corporation -> Malwarebytes)
- R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [289120 2015-11-13] (Microsoft Corporation -> Microsoft Corporation)
- S3 NETwNs64; C:\Windows\System32\DRIVERS\NETwsw00.sys [11524096 2014-07-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
- R3 NETwNv64; C:\Windows\System32\DRIVERS\NETwNv64.sys [8399360 2011-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
- R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133816 2015-11-13] (Microsoft Corporation -> Microsoft Corporation)
- R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
- R3 qcfilterlno2k; C:\Windows\System32\DRIVERS\qcfilterlno2k.sys [6400 2011-05-23] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
- S3 qcusbnetlno2k; C:\Windows\System32\DRIVERS\qcusbnetlno2k.sys [444416 2011-05-23] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
- R3 qcusbserlno2k; C:\Windows\System32\DRIVERS\qcusbserlno2k.sys [231040 2011-05-23] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
- S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [12528 2017-07-26] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Brak podpisu cyfrowego]
- R3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
- R3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
- R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
- R3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
- R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [45296 2014-07-28] (Synaptics Incorporated -> Synaptics Incorporated)
- R2 smihlp; C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [13128 2011-05-30] (AuthenTec, Inc. -> Authentec Inc.)
- S3 SrvHsfHDA; C:\Windows\System32\DRIVERS\VSTAZL6.SYS [292864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
- S3 SrvHsfV92; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
- S3 SrvHsfWinac; C:\Windows\System32\DRIVERS\VSTCNXT6.SYS [740864 2009-06-10] (Microsoft Windows -> Conexant Systems, Inc.)
- R3 USBPcap; C:\Windows\System32\DRIVERS\USBPcap.sys [38456 2017-08-20] (Tomasz Moń -> USBPcap)
- S1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [131144 2017-03-15] (Oracle Corporation -> Oracle Corporation)
- R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [205440 2017-03-15] (Oracle Corporation -> Oracle Corporation)
- S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [137920 2017-03-15] (Oracle Corporation -> Oracle Corporation)
- R3 wacomvthid; C:\Windows\System32\DRIVERS\WacomVTHid.sys [16368 2012-04-10] (Wacom Technology Corp. -> Wacom Technology)
- S3 WISDPen; C:\Windows\System32\DRIVERS\wisdpen.sys [44656 2012-04-10] (Wacom Technology Corp. -> Wacom Technology)
- ==================== NetSvcs (filtrowane) ===================
- (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
- ==================== Jeden miesiąc (utworzone) ========
- (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
- 2019-02-26 21:36 - 2019-02-26 21:40 - 000038326 _____ C:\Users\Professional\Desktop\FRST.txt
- 2019-02-26 21:36 - 2019-02-26 21:36 - 000000000 ____D C:\FRST
- 2019-02-26 21:35 - 2019-02-26 21:35 - 002433536 _____ (Farbar) C:\Users\Professional\Desktop\FRST64.exe
- 2019-02-26 13:07 - 2014-06-10 17:52 - 000000000 ____D C:\Users\Professional\Desktop\Der Bananenlaster Tape Eigen `94
- 2019-02-26 12:59 - 2019-02-26 13:03 - 072791707 _____ C:\Users\Professional\Desktop\B1000-Der Bananenlaster Tape Eigen `94.rar
- 2019-02-22 16:11 - 2019-02-23 03:10 - 000072864 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
- 2019-02-22 16:10 - 2019-02-23 03:10 - 000274416 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
- 2019-02-22 16:10 - 2019-02-22 16:10 - 000198512 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
- 2019-02-22 16:10 - 2019-02-22 16:10 - 000127136 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
- 2019-02-22 16:10 - 2019-02-22 16:10 - 000104784 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
- 2019-02-22 16:10 - 2019-02-22 16:10 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
- 2019-02-22 16:10 - 2019-02-22 16:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
- 2019-02-22 16:10 - 2019-01-08 15:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
- 2019-02-16 20:49 - 2019-02-16 20:49 - 000000000 ____D C:\Users\Professional\AppData\Roaming\GameSparks
- 2019-02-16 20:48 - 2019-02-16 20:48 - 000000000 ____D C:\Users\Public\Documents\Steam
- 2019-02-16 20:47 - 2019-02-16 20:47 - 000000000 ____D C:\Users\Professional\Desktop\Crusader.Kings.II.Holy.Fury.Update.v3.0.1.1-CODEX
- 2019-02-16 20:41 - 2019-02-16 20:45 - 018029569 _____ C:\Users\Professional\Desktop\sg1954-CKIIHFUpd3011.rar
- 2019-02-16 20:34 - 2019-02-16 20:40 - 057565893 _____ C:\Users\Professional\Desktop\sg1570-CK2HFUpd310.rar
- 2019-02-16 20:31 - 2019-02-16 20:31 - 000001137 _____ C:\Users\Professional\Desktop\Crusader Kings II Holy Fury.lnk
- 2019-02-16 20:31 - 2019-02-16 20:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crusader Kings II Holy Fury
- 2019-02-16 20:25 - 2019-02-19 07:02 - 000000000 ____D C:\Program Files (x86)\Crusader Kings II Holy Fury
- 2019-02-16 18:54 - 2019-02-16 20:22 - 000000000 ____D C:\Users\Professional\Desktop\Crusader.Kings.II.Holy.Fury-CODEX
- 2019-02-15 18:05 - 2019-02-16 20:48 - 000000000 ____D C:\Users\Professional\Documents\Paradox Interactive
- 2019-02-15 18:01 - 2017-03-20 09:38 - 000000000 ____D C:\Users\Professional\Desktop\Victoria.II.v3.04.Inclu.ALL.DLC
- 2019-02-15 17:48 - 2019-02-15 17:59 - 372042890 ____R C:\Users\Professional\Desktop\Victoria.II.v3.04.Inclu.ALL.DLC.rar
- 2019-02-12 00:26 - 2019-02-12 00:27 - 000954591 _____ C:\Users\Professional\Desktop\PeerBlock_r693__Win32_Release.zip
- 2019-02-09 02:00 - 2019-02-09 02:13 - 000000000 ____D C:\Users\Professional\Desktop\[XTORRENTY.ORG] Kler.2018.PL.DVDRip.XviD-KiT.avi
- 2019-02-06 19:33 - 2019-02-06 20:38 - 403014031 ____R C:\Users\Professional\Desktop\MEIOU.rar
- 2019-02-04 12:23 - 2019-02-04 12:23 - 000026952 _____ C:\Users\Professional\AppData\Local\recently-used.xbel
- 2019-02-04 12:03 - 2019-02-04 12:04 - 000028728 _____ C:\Users\Professional\Desktop\f66b35e2-83b8-4fc9-a1a0-9cc27fb32574_1.ef23ad67645678207ee898464f6ecabf.jpeg
- 2019-02-02 22:17 - 2019-02-07 17:36 - 000001800 _____ C:\Users\Public\Desktop\Europa Universalis III Complete.lnk
- 2019-02-02 21:26 - 2019-02-15 17:46 - 000000000 ____D C:\Users\Professional\AppData\LocalLow\uTorrent
- 2019-02-02 21:26 - 2019-02-02 22:02 - 000000000 ____D C:\Users\Professional\Desktop\Europa.Universalis.III.Complete.Incl.Collection.DLC-GOG
- ==================== Jeden miesiąc (zmodyfikowane) ========
- (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
- 2019-02-26 21:34 - 2018-07-17 22:44 - 000000000 ____D C:\wifidata
- 2019-02-26 14:21 - 2019-01-18 17:35 - 000000020 _____ C:\Users\Professional\Desktop\aa.txt
- 2019-02-26 14:20 - 2016-07-01 14:22 - 000000000 ____D C:\Users\Professional\AppData\Roaming\vlc
- 2019-02-26 13:43 - 2018-07-01 11:16 - 000000000 ____D C:\Windows\Prey
- 2019-02-26 01:42 - 2017-06-23 14:02 - 000000000 ____D C:\Program Files (x86)\Steam
- 2019-02-25 21:50 - 2017-03-23 21:57 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
- 2019-02-23 14:09 - 2016-11-18 01:53 - 000000000 ____D C:\Users\Professional\AppData\Roaming\ViberPC
- 2019-02-23 14:09 - 2016-11-18 01:52 - 000000000 ____D C:\Users\Professional\AppData\Local\Viber.old
- 2019-02-23 03:17 - 2009-07-14 06:45 - 000021504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
- 2019-02-23 03:17 - 2009-07-14 06:45 - 000021504 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
- 2019-02-23 03:16 - 2011-04-12 15:21 - 000740792 _____ C:\Windows\system32\perfh015.dat
- 2019-02-23 03:16 - 2011-04-12 15:21 - 000156076 _____ C:\Windows\system32\perfc015.dat
- 2019-02-23 03:16 - 2009-07-14 07:13 - 001670702 _____ C:\Windows\system32\PerfStringBackup.INI
- 2019-02-23 03:16 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
- 2019-02-23 03:09 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
- 2019-02-22 16:07 - 2018-02-10 23:08 - 000003890 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1518296881
- 2019-02-22 16:07 - 2018-02-10 22:55 - 000000000 ____D C:\Program Files\Opera
- 2019-02-22 15:56 - 2016-08-21 17:42 - 000000000 ____D C:\Users\Professional\AppData\Roaming\uTorrent
- 2019-02-19 12:22 - 2018-06-26 09:25 - 000000000 ____D C:\Users\Professional\AppData\Local\MEGAsync
- 2019-02-16 20:24 - 2017-08-29 21:26 - 000000000 ____D C:\Users\Professional\AppData\Roaming\DAEMON Tools Lite
- 2019-02-13 09:50 - 2018-03-13 17:52 - 000004590 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
- 2019-02-13 09:50 - 2015-02-18 12:57 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
- 2019-02-13 09:50 - 2015-02-18 12:57 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
- 2019-02-13 09:50 - 2015-02-18 12:57 - 000004412 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
- 2019-02-13 09:50 - 2015-02-18 12:57 - 000000000 ____D C:\Windows\SysWOW64\Macromed
- 2019-02-13 09:50 - 2015-02-18 12:57 - 000000000 ____D C:\Windows\system32\Macromed
- 2019-02-12 08:53 - 2018-09-09 18:12 - 000000000 ____D C:\Program Files\CCleaner
- 2019-02-12 08:53 - 2017-12-01 17:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
- 2019-02-12 08:53 - 2015-02-18 12:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
- 2019-02-07 17:35 - 2017-12-03 21:48 - 000000000 ____D C:\GOG Games
- 2019-02-06 22:13 - 2016-11-20 00:50 - 000000000 ____D C:\Users\Professional\AppData\LocalLow\Mozilla
- 2019-02-04 12:24 - 2016-09-15 02:35 - 000000000 ____D C:\Users\Professional\.gimp-2.8
- 2019-02-04 12:23 - 2016-09-15 02:52 - 000000000 ____D C:\Users\Professional\AppData\Local\gtk-2.0
- 2019-02-02 22:25 - 2017-12-03 21:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
- 2019-02-02 22:22 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
- 2019-02-01 23:15 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
- 2019-02-01 17:56 - 2016-11-18 01:59 - 000000000 ____D C:\Users\Professional\Documents\ViberDownloads
- ==================== Pliki w katalogu głównym wybranych folderów =======
- 2018-06-17 10:57 - 2018-07-16 15:59 - 000001012 _____ () C:\Users\Professional\AppData\Roaming\downloads.json
- 2019-02-04 12:23 - 2019-02-04 12:23 - 000026952 _____ () C:\Users\Professional\AppData\Local\recently-used.xbel
- 2015-02-18 11:36 - 2019-01-16 18:37 - 000007612 _____ () C:\Users\Professional\AppData\Local\resmon.resmoncfg
- Niektóre pliki w TEMP:
- ====================
- 2018-10-19 15:34 - 2018-10-19 15:34 - 001892728 _____ (Oracle Corporation) C:\Users\Professional\AppData\Local\Temp\jre-8u191-windows-au.exe
- 2018-05-30 12:52 - 2018-05-30 12:52 - 000015800 _____ (LG Electronics) C:\Users\Professional\AppData\Local\Temp\WebInstaller.exe
- ==================== Bamital & volsnap ======================
- (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
- C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
- C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
- C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo
- C:\Windows\explorer.exe => Plik podpisany cyfrowo
- C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
- C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
- C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
- C:\Windows\system32\services.exe => Plik podpisany cyfrowo
- C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
- C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo
- C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
- C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
- C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
- C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
- C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
- C:\Windows\system32\dllhost.exe => Plik podpisany cyfrowo
- C:\Windows\SysWOW64\dllhost.exe => Plik podpisany cyfrowo
- C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
- LastRegBack: 2019-02-22 05:43
- ==================== Koniec FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement