API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 23rd, 2018
696
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 35.43 KB | None | 0 0
raw download clone embed print report
  1. Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 19.08.2018 02
  2. Uruchomiony przez Czacha (administrator) LAPTOP-5AJ8S20G (22-08-2018 20:30:47)
  3. Uruchomiony z C:\Users\Czacha\Desktop
  4. Załadowane profile: Czacha (Dostępne profile: Czacha)
  5. Platform: Windows 10 Home Wersja 1709 16299.547 (X64) Język: Polski (Polska)
  6. Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome)
  7. Tryb startu: Normal
  8. Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Procesy (filtrowane) =================
  11.  
  12. (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
  13.  
  14. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
  15. (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_bde03d8af75e6be5\igfxCUIService.exe
  16. (Microsoft Corporation) C:\Windows\System32\wlanext.exe
  17. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
  18. (COMODO) C:\Program Files (x86)\Comodo\COMODO Secure Shopping\csssrv64.exe
  19. (Intel Corporation) C:\Windows\System32\ibtsiva.exe
  20. (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
  21. (Comodo) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
  22. (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
  23. (Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
  24. (COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
  25. (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
  26. (Conexant Systems, Inc.) C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe
  27. (Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
  28. (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
  29. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
  30. (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
  31. (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
  32. (Lenovo Group Limited) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
  33. (Lenovo) C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe
  34. (Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
  35. (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
  36. () C:\ProgramData\Microsoft\Windows\Power\PowerSvc.exe
  37. () C:\Program Files\fik Branton Updater\Branton.exe
  38. (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
  39. (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
  40. (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
  41. (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
  42. () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
  43. (CloudBees, Inc.) C:\ProgramData\Microsoft\Windows\EventSvc\eventsvc.exe
  44. () C:\ProgramData\Microsoft\Windows\EventSvc\work0.exe
  45. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  46. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
  47. (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
  48. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
  49. (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
  50. () C:\Program Files\Branton\Branton.exe
  51. (Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
  52. (Lenovo Group Limited) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
  53. (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
  54. (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
  55. () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
  56. (Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
  57. (Lenovo(beijing) Limited) C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe
  58. (f.lux Software LLC) C:\Users\Czacha\AppData\Local\FluxSoftware\Flux\flux.exe
  59. (Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
  60. (Epic Games, Inc.) C:\Program Files (x86)\Gry\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
  61. (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_bde03d8af75e6be5\igfxEM.exe
  62. (COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe
  63. (SweetLabs, Inc) C:\Users\Czacha\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe
  64. (Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
  65. (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
  66. (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
  67. (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
  68. (Lenovo Group Limited) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
  69. (Python Software Foundation) C:\Users\Czacha\AppData\Roaming\YoutubeDownloader\python\python.exe
  70. (AIMP DevTeam) C:\Program Files (x86)\AIMP\AIMP.exe
  71. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  72. (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
  73.  
  74. ==================== Rejestr (filtrowane) ===========================
  75.  
  76. (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
  77.  
  78. HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
  79. HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
  80. HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [602968 2015-12-07] (Conexant Systems, Inc.)
  81. HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel Corporation)
  82. HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (Lenovo(beijing) Limited)
  83. HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2208448 2018-03-13] (COMODO)
  84. HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830232 2016-03-08] (Conexant Systems, Inc.)
  85. HKLM-x32\...\Run: [vdcss] => C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe [7690936 2017-06-30] (COMODO)
  86. HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4072376 2018-01-17] (COMODO)
  87. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4958912 2016-11-17] (Disc Soft Ltd)
  88. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\...\Run: [Gaijin.Net Agent] => C:\Users\Czacha\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2268232 2017-12-29] (Gaijin Entertainment)
  89. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\...\Run: [Steam] => C:\Program Files (x86)\SteamN\steam.exe [3206432 2018-08-09] (Valve Corporation)
  90. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\...\Run: [f.lux] => C:\Users\Czacha\AppData\Local\FluxSoftware\Flux\flux.exe [1806344 2018-07-03] (f.lux Software LLC)
  91. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7368480 2018-08-19] (Lavasoft)
  92. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Gry\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32973712 2018-07-26] (Epic Games, Inc.)
  93. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\...\Run: [YoutubeDownloader_upd] => C:\Users\Czacha\AppData\Roaming\YoutubeDownloader_upd\python\pythonw.exe [95904 2018-08-01] (Python Software Foundation) <==== UWAGA
  94. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\...\Run: [YoutubeDownloader] => C:\Users\Czacha\AppData\Roaming\YoutubeDownloader\python\pythonw.exe [95904 2018-08-01] (Python Software Foundation) <==== UWAGA
  95. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\...\MountPoints2: {b7c39bfb-af39-11e6-af16-001e101f6e95} - "F:\setup.exe"
  96. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\...\MountPoints2: {c9dd9127-4e39-11e7-af8c-c85b76110638} - "F:\HiSuiteDownLoader.exe"
  97. Startup: C:\Users\Czacha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GamerHash.lnk [2018-08-17]
  98. ShortcutTarget: GamerHash.lnk -> C:\Users\Czacha\AppData\Local\GamerHash\GamerHashLauncher.exe (Brak pliku)
  99.  
  100. ==================== Internet (filtrowane) ====================
  101.  
  102. (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
  103.  
  104. Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
  105. Tcpip\..\Interfaces\{2b152973-32aa-4a4e-9341-96c812872784}: [NameServer] 192.168.200.1,213.199.225.14
  106. Tcpip\..\Interfaces\{9cb7c6f8-b0b2-45d7-a9fe-80fcf71f4292}: [NameServer] 82.163.143.178,82.163.142.180
  107. Tcpip\..\Interfaces\{9cb7c6f8-b0b2-45d7-a9fe-80fcf71f4292}: [DhcpNameServer] 192.168.1.1
  108.  
  109. Internet Explorer:
  110. ==================
  111. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo15.msn.com/?pc=LCTE
  112. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
  113. HKU\S-1-5-21-661999521-1470042451-2146426113-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
  114. SearchScopes: HKU\S-1-5-21-661999521-1470042451-2146426113-1001 -> DefaultScope {578ABA60-4607-4998-910A-C2BB53A5630E} URL =
  115. SearchScopes: HKU\S-1-5-21-661999521-1470042451-2146426113-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://pl.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10454__180606__yaie&p={searchTerms}
  116. BHO: IeUrlFilter Class -> {2DD257A3-5028-41AE-A1E7-A12F76A08893} -> C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho64.dll [2017-06-30] (COMODO)
  117. BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-08-18] (Microsoft Corporation)
  118. BHO-x32: IeUrlFilter Class -> {2DD257A3-5028-41AE-A1E7-A12F76A08893} -> C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho32.dll [2017-06-30] (COMODO)
  119. Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-08-18] (Microsoft Corporation)
  120. Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-08-18] (Microsoft Corporation)
  121. Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-08-18] (Microsoft Corporation)
  122. Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-08-18] (Microsoft Corporation)
  123.  
  124. FireFox:
  125. ========
  126. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-03-06] (Microsoft Corporation)
  127. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
  128. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
  129. FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
  130. FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
  131.  
  132. Chrome:
  133. =======
  134. CHR DefaultSearchURL: Default -> hxxps://defaultsearch.co/?q={searchTerms}
  135. CHR DefaultSearchKeyword: Default -> Adaware Secure
  136. CHR Profile: C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default [2018-08-18]
  137. CHR Extension: (Prezentacje) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
  138. CHR Extension: (Dokumenty) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
  139. CHR Extension: (Dysk Google) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-10-15]
  140. CHR Extension: (YouTube) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-10-15]
  141. CHR Extension: (Adblock Plus) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-08-16]
  142. CHR Extension: (Adaware Ad Block) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmllgdnjnkbapbchnebiedipojhmnjej [2018-08-18]
  143. CHR Extension: (Galaxy-View) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcbeddldohkakodfncjnkkjfojggbahp [2016-11-14]
  144. CHR Extension: (Arkusze) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
  145. CHR Extension: (Dokumenty Google offline) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-10-15]
  146. CHR Extension: (Save to Facebook) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2017-01-11]
  147. CHR Extension: (Adaware Secure) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nladljmabboanhihfkjacnnkgjhnokhj [2018-08-16]
  148. CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-02]
  149. CHR Extension: (Adaware Web Protection) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnooggpliipegmffiolegeppbgkclbpi [2018-08-18]
  150. CHR Extension: (Gmail) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-10-15]
  151. CHR Extension: (Chrome Media Router) - C:\Users\Czacha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-17]
  152. CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
  153. CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
  154. CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx
  155.  
  156. ==================== Usługi (filtrowane) ====================
  157.  
  158. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  159.  
  160. S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7206312 2018-07-17] ()
  161. S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [688992 2017-02-27] (Lenovo)
  162. R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8853984 2018-08-09] (Microsoft Corporation)
  163. R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11395096 2018-03-13] (COMODO)
  164. R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2876096 2018-03-13] (COMODO)
  165. R2 csssrv; C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe [3210936 2017-06-30] (COMODO)
  166. R2 CxUtilSvc; C:\Program Files\Conexant\SAII\CxUtilSvc.exe [132096 2016-05-12] (Conexant Systems, Inc.) [Brak podpisu cyfrowego]
  167. R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1473216 2016-11-17] (Disc Soft Ltd)
  168. R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [3074312 2018-07-04] (Comodo)
  169. S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [776832 2018-05-02] (EasyAntiCheat Ltd)
  170. R2 EventSvc; C:\ProgramData\Microsoft\Windows\EventSvc\eventsvc.exe [360448 2018-07-24] (CloudBees, Inc.) [Brak podpisu cyfrowego] <==== UWAGA
  171. R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-29] (Lenovo)
  172. S4 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
  173. S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19440 2015-11-04] (Intel Corporation)
  174. R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [184064 2017-01-13] (Intel Corporation)
  175. S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego]
  176. R2 ImControllerService; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [71408 2018-05-16] (Lenovo Group Limited)
  177. R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1199544 2018-01-17] (COMODO)
  178. S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273544 2016-12-07] (Lenovo)
  179. S4 Mobile Partner. RunOuc; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [655744 2012-06-28] ()
  180. S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268704 2017-02-13] ()
  181. R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
  182. S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
  183. R2 PowerSvc; C:\ProgramData\Microsoft\Windows\Power\PowerSvc.exe [6406448 2018-06-25] () [Brak podpisu cyfrowego] <==== UWAGA
  184. R2 SAService; C:\WINDOWS\system32\SAsrv.exe [431960 2015-09-15] (Conexant Systems, Inc.)
  185. R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [267328 2017-05-16] (Synaptics Incorporated)
  186. R2 Update Service; C:\Program Files\fik Branton Updater\Branton.exe [788480 2018-08-17] () [Brak podpisu cyfrowego]
  187. R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25888 2018-08-19] ()
  188. S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
  189. S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)
  190. S2 WMPNetworkAcSvc; C:\Users\Czacha\AppData\Roaming\WMPNetworkAcSvc\WMPNetworkAcSvc.exe [3920896 2018-08-16] () [Brak podpisu cyfrowego] <==== UWAGA
  191. R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3743648 2017-02-13] (Intel® Corporation)
  192. R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
  193. R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
  194. S2 SysSvc; "C:\Users\Czacha\AppData\Local\NtvHost\syssvc.exe" [X]
  195.  
  196. ===================== Sterowniki (filtrowane) ======================
  197.  
  198. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  199.  
  200. R1 cmdcss; C:\WINDOWS\system32\drivers\cmdcss.sys [126056 2017-03-31] (COMODO)
  201. R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [44056 2018-02-02] (COMODO)
  202. R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [830448 2018-02-02] (COMODO)
  203. R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [50768 2018-02-02] (COMODO)
  204. R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-11-22] (Disc Soft Ltd)
  205. R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-11-22] (Disc Soft Ltd)
  206. R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [253696 2017-01-13] (Intel Corporation)
  207. R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [133896 2018-02-02] (COMODO)
  208. R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63200 2017-12-13] (COMODO)
  209. R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7689728 2017-09-29] (Intel Corporation)
  210. S3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_bc6256506b580c14\nvlddmkm.sys [16923064 2017-10-07] (NVIDIA Corporation)
  211. S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-11] (NVIDIA Corporation)
  212. R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50624 2017-10-11] (NVIDIA Corporation)
  213. R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-10-11] (NVIDIA Corporation)
  214. R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-23] (Realtek )
  215. R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [418784 2016-08-05] (Realsil Semiconductor Corporation)
  216. S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-03] (Synaptics Incorporated)
  217. R3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [1057864 2016-10-03] (Sunplus Innovation Technology Inc.)
  218. S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
  219. S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
  220. S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)
  221. R3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org)
  222. S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
  223. S3 xhunter1; C:\WINDOWS\xhunter1.sys [37344 2017-04-29] (Wellbia.com Co., Ltd.)
  224.  
  225. ==================== NetSvcs (filtrowane) ===================
  226.  
  227. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  228.  
  229.  
  230. ==================== Jeden miesiąc - utworzone pliki i foldery ========
  231.  
  232. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  233.  
  234. 2018-08-22 20:30 - 2018-08-22 20:31 - 000022692 _____ C:\Users\Czacha\Desktop\FRST.txt
  235. 2018-08-22 20:30 - 2018-08-22 20:30 - 000000000 ____D C:\FRST
  236. 2018-08-22 20:29 - 2018-08-22 10:18 - 002413056 _____ (Farbar) C:\Users\Czacha\Desktop\FRST64.exe
  237. 2018-08-22 20:29 - 2018-08-22 10:18 - 001773568 _____ (Farbar) C:\Users\Czacha\Desktop\FRST.exe
  238. 2018-08-18 15:21 - 2018-08-18 15:21 - 000002067 _____ C:\Users\Public\Desktop\Hotel Giant 2.lnk
  239. 2018-08-18 15:21 - 2018-08-18 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotel Giant 2
  240. 2018-08-18 15:16 - 2018-08-18 15:18 - 000000000 ____D C:\Users\Czacha\Downloads\Hotel Giant Tycoon 2
  241. 2018-08-18 12:31 - 2018-08-18 12:31 - 000002490 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
  242. 2018-08-18 12:31 - 2018-08-18 12:31 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
  243. 2018-08-18 12:31 - 2018-08-18 12:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narzędzia pakietu Microsoft Office
  244. 2018-08-17 20:12 - 2018-08-18 18:29 - 000000000 ____D C:\Users\Czacha\AppData\Local\NtvHost
  245. 2018-08-17 19:53 - 2018-08-17 19:53 - 000013976 _____ C:\WINDOWS\System32\Tasks\Branton
  246. 2018-08-17 19:53 - 2018-08-17 19:53 - 000003964 _____ C:\WINDOWS\System32\Tasks\Branton Launcher
  247. 2018-08-17 19:53 - 2018-08-17 19:53 - 000001540 _____ C:\WINDOWS\Tasks\Branton.job
  248. 2018-08-17 19:53 - 2018-08-17 19:53 - 000000490 _____ C:\WINDOWS\Tasks\Branton Launcher.job
  249. 2018-08-17 19:53 - 2018-08-17 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\fik Branton Updater
  250. 2018-08-17 19:53 - 2018-08-17 19:53 - 000000000 ____D C:\Program Files\fik Branton Updater
  251. 2018-08-17 19:53 - 2018-08-17 19:53 - 000000000 ____D C:\Program Files\Branton
  252. 2018-08-17 19:52 - 2018-08-17 21:07 - 000000000 ____D C:\Users\Czacha\AppData\Local\GoogleChromeUserData
  253. 2018-08-17 19:52 - 2018-08-17 19:52 - 000000034 _____ C:\Users\Public\Documents\{DE764086-1C0A-4DD3-90BA-0B93BDD794BE}
  254. 2018-08-17 19:52 - 2018-08-17 19:52 - 000000000 ____D C:\Users\Czacha\AppData\Roaming\WMPNetworkAcSvc
  255. 2018-08-17 19:50 - 2018-08-17 19:52 - 000000000 ____D C:\Users\Czacha\AppData\Local\GoogleChromeApplication
  256. 2018-08-17 19:47 - 2018-08-17 20:00 - 000000000 ____D C:\Users\Czacha\AppData\Roaming\YoutubeDownloader_upd
  257. 2018-08-17 19:47 - 2018-08-17 20:00 - 000000000 ____D C:\Users\Czacha\AppData\Roaming\YoutubeDownloader
  258. 2018-08-17 19:47 - 2018-08-17 19:47 - 000004010 _____ C:\WINDOWS\System32\Tasks\YoutubeDownloader_upd
  259. 2018-08-17 19:47 - 2018-08-17 19:47 - 000003540 _____ C:\WINDOWS\System32\Tasks\YoutubeDownloader
  260. 2018-08-17 19:42 - 2018-08-17 19:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerSnowie
  261. 2018-08-17 15:30 - 2018-08-17 20:46 - 886519864 _____ C:\Users\Czacha\Downloads\Hearts of Iron 2 Doomsday - Armagedon[PL].rar
  262. 2018-08-17 15:28 - 2018-08-17 23:14 - 000000000 ____D C:\Users\Czacha\AppData\LocalLow\uTorrent
  263. 2018-08-17 15:05 - 2018-08-17 15:05 - 000001335 _____ C:\Users\Czacha\Desktop\Hearts of Iron IV Waking the Tiger.lnk
  264. 2018-08-17 11:46 - 2018-08-17 12:49 - 000000000 ____D C:\Users\Czacha\Downloads\codex-hearts.of.iron.iv.waking.the.tiger
  265. 2018-08-16 23:17 - 2018-08-18 12:26 - 000000000 ____D C:\Users\Czacha\Documents\Paradox Interactive
  266. 2018-08-16 23:17 - 2018-08-16 23:17 - 000000000 ____D C:\Users\Public\Documents\Steam
  267. 2018-08-16 23:16 - 2018-08-16 23:16 - 000001342 _____ C:\Users\Czacha\Desktop\Europa Universalis IV Rule Britannia.lnk
  268. 2018-08-16 18:38 - 2018-08-16 18:38 - 000000000 ___HD C:\$GetCurrent
  269. 2018-08-16 18:34 - 2018-08-16 19:17 - 000000000 ____D C:\Windows10Upgrade
  270. 2018-08-16 17:23 - 2018-08-16 22:06 - 000000000 ____D C:\Users\Czacha\Downloads\codex-europa.universalis.iv.rule.britannia
  271. 2018-08-16 17:14 - 2018-08-16 17:14 - 000000000 ____D C:\WINDOWS\UpdateAssistant
  272. 2018-08-10 20:33 - 2018-08-10 20:33 - 000441894 _____ C:\Users\Czacha\Desktop\ZUA.pdf
  273. 2018-07-31 21:09 - 2018-07-31 21:09 - 000000000 ____D C:\Users\Czacha\Downloads\Scenes Of A Sexual Nature [2006] [DVDRip.XViD-NoName] [Lektor PL] (Arx]
  274. 2018-07-31 20:38 - 2018-08-17 19:35 - 000000000 ____D C:\Users\Czacha\Downloads\Filmy
  275. 2018-07-31 20:38 - 2018-07-31 23:03 - 000000000 ____D C:\Users\Czacha\Downloads\Seriale
  276. 2018-07-31 19:58 - 2018-07-31 19:58 - 000000000 ____D C:\Users\Czacha\Downloads\The.Orphanage.2007
  277. 2018-07-29 22:24 - 2018-07-29 22:24 - 000000000 ___HD C:\Users\Public\Shared Files
  278.  
  279. ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
  280.  
  281. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  282.  
  283. 2018-08-22 20:27 - 2016-10-15 20:38 - 000000000 ____D C:\Users\Czacha\AppData\Roaming\AIMP
  284. 2018-08-22 20:23 - 2017-10-12 19:05 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
  285. 2018-08-22 20:07 - 2016-10-15 16:29 - 000000000 ____D C:\Users\Czacha\AppData\Local\CrashDumps
  286. 2018-08-22 16:43 - 2017-04-26 23:05 - 000000000 ____D C:\ProgramData\NVIDIA
  287. 2018-08-22 16:39 - 2016-10-15 21:53 - 000000000 ____D C:\Users\Czacha\AppData\Local\Host App Service
  288. 2018-08-22 16:35 - 2016-10-15 21:54 - 000000000 __SHD C:\Users\Czacha\IntelGraphicsProfiles
  289. 2018-08-21 21:49 - 2017-10-28 03:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
  290. 2018-08-21 12:24 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
  291. 2018-08-20 14:56 - 2017-10-22 12:42 - 000000000 ___DC C:\WINDOWS\Panther
  292. 2018-08-20 14:05 - 2017-10-28 04:13 - 000024768 _____ C:\WINDOWS\diagwrn.xml
  293. 2018-08-20 14:05 - 2017-10-28 04:13 - 000024768 _____ C:\WINDOWS\diagerr.xml
  294. 2018-08-20 01:26 - 2017-09-29 10:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
  295. 2018-08-20 00:52 - 2018-04-12 18:58 - 000000000 ___HD C:\$WINDOWS.~BT
  296. 2018-08-20 00:52 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\Registration
  297. 2018-08-20 00:52 - 2017-09-29 15:44 - 000000000 ____D C:\WINDOWS\INF
  298. 2018-08-19 23:47 - 2017-10-26 11:50 - 066172700 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
  299. 2018-08-19 12:51 - 2017-01-15 16:56 - 000000000 ____D C:\Users\Czacha\AppData\Roaming\vlc
  300. 2018-08-19 10:04 - 2016-10-15 21:57 - 000000000 __RDL C:\Users\Czacha\OneDrive
  301. 2018-08-18 15:22 - 2016-12-16 12:03 - 000000000 ____D C:\Users\Czacha\Documents\My Games
  302. 2018-08-18 15:20 - 2016-06-13 01:13 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
  303. 2018-08-18 15:19 - 2018-05-01 23:59 - 000000000 ____D C:\Program Files (x86)\Gry
  304. 2018-08-18 12:41 - 2017-09-29 15:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
  305. 2018-08-18 12:31 - 2016-06-13 01:05 - 000002520 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
  306. 2018-08-18 12:31 - 2016-06-13 01:05 - 000002508 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
  307. 2018-08-18 12:31 - 2016-06-13 01:05 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
  308. 2018-08-18 12:31 - 2016-06-13 01:05 - 000002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
  309. 2018-08-18 12:31 - 2016-06-13 01:05 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
  310. 2018-08-18 12:25 - 2016-06-13 01:02 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
  311. 2018-08-18 12:24 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
  312. 2018-08-18 12:24 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
  313. 2018-08-17 23:14 - 2017-06-29 21:52 - 000000000 ____D C:\Users\Czacha\AppData\Roaming\uTorrent
  314. 2018-08-17 20:18 - 2017-08-17 14:58 - 000000000 ____D C:\Users\Czacha\AppData\Roaming\Comodo
  315. 2018-08-17 19:50 - 2016-06-13 02:04 - 000000000 ____D C:\ProgramData\Intel
  316. 2018-08-17 15:25 - 2017-10-28 04:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
  317. 2018-08-17 15:06 - 2017-09-29 10:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
  318. 2018-08-17 11:33 - 2018-07-14 20:07 - 000000000 ____D C:\Program Files\rempl
  319. 2018-08-17 11:26 - 2017-05-02 00:59 - 000000000 ____D C:\Users\Czacha\AppData\Local\Adobe
  320. 2018-08-17 11:25 - 2017-10-28 04:12 - 000004702 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
  321. 2018-08-17 11:24 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
  322. 2018-08-17 11:24 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
  323. 2018-08-17 11:22 - 2017-10-28 04:09 - 002344612 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  324. 2018-08-17 11:22 - 2017-09-30 16:29 - 001075066 _____ C:\WINDOWS\system32\perfh015.dat
  325. 2018-08-17 11:22 - 2017-09-30 16:29 - 000233782 _____ C:\WINDOWS\system32\perfc015.dat
  326. 2018-08-17 00:23 - 2017-05-22 17:04 - 000000000 ____D C:\Program Files (x86)\SteamN
  327. 2018-08-16 18:41 - 2016-10-21 00:45 - 000000000 ____D C:\WINDOWS\system32\MRT
  328. 2018-08-16 18:33 - 2017-09-29 15:37 - 000000000 ____D C:\WINDOWS\CbsTemp
  329. 2018-08-16 18:33 - 2016-10-21 00:45 - 137343192 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
  330. 2018-08-13 14:31 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\NDF
  331. 2018-08-13 10:38 - 2017-10-28 04:12 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-661999521-1470042451-2146426113-1001
  332. 2018-08-13 10:38 - 2016-10-15 21:57 - 000002417 _____ C:\Users\Czacha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
  333. 2018-08-09 23:29 - 2016-10-15 16:05 - 000002314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  334. 2018-08-09 23:29 - 2016-10-15 16:05 - 000002273 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  335. 2018-08-06 23:19 - 2018-07-02 19:35 - 000000000 ____D C:\ProgramData\Packages
  336. 2018-08-06 17:31 - 2018-07-13 15:52 - 000836480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
  337. 2018-08-06 17:31 - 2018-07-13 15:52 - 000181120 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
  338. 2018-07-29 22:24 - 2017-02-11 13:54 - 000000000 ____D C:\Intel
  339. 2018-07-29 22:18 - 2018-05-02 00:01 - 000000000 ____D C:\Users\Czacha\AppData\Local\UnrealEngine
  340.  
  341. ==================== Pliki w katalogu głównym wybranych folderów =======
  342.  
  343. 2018-04-17 22:57 - 2018-04-17 22:57 - 000006067 _____ () C:\Users\Czacha\AppData\Local\recently-used.xbel
  344. 2017-08-18 05:35 - 2017-08-18 05:35 - 000007640 _____ () C:\Users\Czacha\AppData\Local\Resmon.ResmonCfg
  345.  
  346. ZeroAccess:
  347. C:\Users\Czacha\AppData\Local\NtvHost
  348. C:\Users\Czacha\AppData\Local\NtvHost\ext.zip
  349. C:\Users\Czacha\AppData\Local\NtvHost\host.json
  350. C:\Users\Czacha\AppData\Local\NtvHost\ntd.cfg
  351. C:\Users\Czacha\AppData\Local\NtvHost\syssvc.xml
  352. C:\Users\Czacha\AppData\Local\NtvHost\n\nup.zip.tmp
  353. C:\Users\Czacha\AppData\Local\NtvHost\ext\background.html
  354. C:\Users\Czacha\AppData\Local\NtvHost\ext\background.js
  355. C:\Users\Czacha\AppData\Local\NtvHost\ext\manifest.json
  356. C:\Users\Czacha\AppData\Local\NtvHost\ext\_locales\en_US\messages.json
  357. C:\Users\Czacha\AppData\Local\NtvHost\ext\_locales\en\messages.json
  358. C:\Users\Czacha\AppData\Local\NtvHost\ext\ico\128.png
  359. C:\Users\Czacha\AppData\Local\NtvHost\ext\ico\16.png
  360. C:\Users\Czacha\AppData\Local\NtvHost\ext\ico\32.png
  361. C:\Users\Czacha\AppData\Local\NtvHost\ext\ico\48.png
  362.  
  363. Pliki do przeniesienia lub usunięcia:
  364. ====================
  365. C:\Users\Czacha\AppData\Roaming\YoutubeDownloader_upd\python\pythonw.exe
  366. C:\Users\Czacha\AppData\Roaming\YoutubeDownloader\python\pythonw.exe
  367.  
  368.  
  369. Niektóre pliki w TEMP:
  370. ====================
  371. 2018-08-17 19:35 - 2018-08-17 19:50 - 000001040 _____ () C:\Users\Czacha\AppData\Local\Temp\43193543dddd.exe
  372. 2018-08-17 19:54 - 2018-08-17 19:54 - 000020480 _____ (CatX) C:\Users\Czacha\AppData\Local\Temp\cubesta.exe
  373. 2018-08-17 19:35 - 2018-08-17 19:35 - 003828053 _____ () C:\Users\Czacha\AppData\Local\Temp\fag.exe
  374. 2018-08-17 19:34 - 2018-08-17 19:34 - 000032768 _____ (DianneLMeans@armyspy.com ) C:\Users\Czacha\AppData\Local\Temp\fagw.exe
  375. 2018-08-17 19:35 - 2018-08-17 19:35 - 002076160 _____ () C:\Users\Czacha\AppData\Local\Temp\MediaPlay.exe
  376. 2018-08-17 19:35 - 2018-08-17 19:35 - 000016384 _____ (Nicole R. Cosentino ) C:\Users\Czacha\AppData\Local\Temp\tuna.exe
  377. 2018-08-18 10:56 - 2018-08-19 10:05 - 000391024 _____ (adaware) C:\Users\Czacha\AppData\Local\Temp\wcupdater.exe
  378. 2018-08-17 19:54 - 2018-08-17 19:54 - 000877520 _____ () C:\Users\Czacha\AppData\Local\Temp\XVD.exe
  379.  
  380. ==================== Bamital & volsnap ======================
  381.  
  382. (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
  383.  
  384. C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
  385. C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo
  386. C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
  387. C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo
  388. C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
  389. C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo
  390. C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
  391. C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
  392. C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo
  393. C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
  394. C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo
  395. C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
  396. C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
  397. C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
  398. C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
  399.  
  400. LastRegBack: 2018-08-16 18:31
  401.  
  402. ==================== Koniec FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!