API tools faq
paste
Advertisement
Guest User

FRST scan

a guest
Feb 9th, 2019
101
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 24.02 KB | None | 0 0
raw download clone embed print report
  1. Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 8.02.2019
  2. Uruchomiony przez przem (administrator) DESKTOP-SLJAQO5 (09-02-2019 10:16:28)
  3. Uruchomiony z C:\Users\przem\Desktop
  4. Załadowane profile: przem (Dostępne profile: przem)
  5. Platform: Windows 10 Pro Wersja 1803 17134.523 (X64) Język: Polski (Polska)
  6. Domyślna przeglądarka: Opera
  7. Tryb startu: Normal
  8. Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Procesy (filtrowane) =================
  11.  
  12. (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
  13.  
  14. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  15. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
  16. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  17. () C:\Windows\SysWOW64\PnkBstrB.exe
  18. (Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
  19. () C:\Windows\SysWOW64\PnkBstrA.exe
  20. (Samsung Electronics Co., Ltd.) C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
  21. (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\MsMpEng.exe
  22. (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1812.3-0\NisSrv.exe
  23. (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
  24. (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
  25. (Samsung Electronics Co., Ltd.) C:\Program Files (x86)\SAMSUNG\Easy Display Manager\dmhkcore.exe
  26. (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
  27. (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
  28. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
  29. (Microsoft Corporation) C:\Windows\System32\rundll32.exe
  30. (Microsoft Corporation) C:\Windows\System32\rundll32.exe
  31. () C:\Program Files (x86)\RocketDock\RocketDock.exe
  32. (Crossgate Consulting Limited) C:\Users\przem\AppData\Roaming\ProductAuthenticationService\pas.exe
  33. () C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
  34. () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
  35. (Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi Surround 5.1\Volume Panel\VolPanlu.exe
  36. (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
  37. (Creative Technology Ltd.) C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe
  38. (Creative Technology Ltd.) C:\Program Files (x86)\Creative\ShareDLL\CADI\NotiMan.exe
  39. () C:\Program Files\qBittorrent\qbittorrent.exe
  40. (Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
  41. (Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
  42. () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
  43. () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1811.3241.0_x64__8wekyb3d8bbwe\Calculator.exe
  44. (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
  45. (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
  46. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  47. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera_crashreporter.exe
  48. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  49. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  50. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  51. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  52. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  53. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  54. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  55. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  56. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  57. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  58. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  59. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  60. (Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
  61.  
  62. ==================== Rejestr (filtrowane) ===========================
  63.  
  64. (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
  65.  
  66. HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
  67. HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18387808 2018-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor)
  68. HKLM\...\Run: [Creative SB Monitoring Utility Launcher] => RunDll32 SBAVMonL.dll,SBAVMonitorLauncher
  69. HKLM\...\Run: [Creative SB Monitoring Utility] => RunDll32 sbavmon.dll,SBAVMonitor
  70. HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi Surround 5.1\Volume Panel\VolPanlu.exe [237693 2008-11-24] (Creative Technology Ltd)
  71. HKLM-x32\...\Run: [Module Loader] => C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe [57344 2007-07-23] (Creative Technology Ltd.)
  72. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
  73. HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
  74. HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
  75. HKU\S-1-5-21-1951391260-2181257015-3599169826-1001\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
  76. HKU\S-1-5-21-1951391260-2181257015-3599169826-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd)
  77. HKU\S-1-5-21-1951391260-2181257015-3599169826-1001\...\Run: [ProductAuthenticationService] => C:\Users\przem\AppData\Roaming\ProductAuthenticationService\pas.exe [529352 2018-10-11] (Crossgate Consulting Limited -> Crossgate Consulting Limited)
  78. HKU\S-1-5-21-1951391260-2181257015-3599169826-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [16443120 2018-10-05] (A FOUR TECH CO., LTD. -> )
  79. HKU\S-1-5-21-1951391260-2181257015-3599169826-1001\...\MountPoints2: {7b9923a3-7017-11e8-a956-b482fe37fda8} - "E:\HiSuiteDownLoader.exe"
  80. HKLM\...\Drivers32: [msacm.vorbis] => C:\WINDOWS\system32\vorbis.acm [1470976 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/)
  81. HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] ()
  82. HKLM\...\Drivers32-x32: [msacm.vorbis] => C:\WINDOWS\SysWOW64\vorbis.acm [1554944 2015-03-11] (HMS hxxp://hp.vector.co.jp/authors/VA012897/)
  83. HKLM\...\Drivers32-x32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] ()
  84. HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
  85. HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll
  86. GroupPolicy: Ograniczenia ? <==== UWAGA
  87.  
  88. ==================== Internet (filtrowane) ====================
  89.  
  90. (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
  91.  
  92. Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
  93. Tcpip\..\Interfaces\{33c6632d-41bd-4285-a386-a2f9996dcf7c}: [DhcpNameServer] 192.168.8.1
  94. Tcpip\..\Interfaces\{ff5573fa-d918-482f-9f3d-d06b3bd9352d}: [DhcpNameServer] 192.168.3.1 192.168.1.1
  95.  
  96. Internet Explorer:
  97. ==================
  98. HKU\S-1-5-21-1951391260-2181257015-3599169826-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
  99. BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
  100. BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-02-09] (Oracle America, Inc. -> Oracle Corporation)
  101. BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
  102. BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
  103. BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-09] (Oracle America, Inc. -> Oracle Corporation)
  104. DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
  105. DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://files.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
  106. DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
  107. Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
  108.  
  109. FireFox:
  110. ========
  111. FF DefaultProfile: syi0rczj.default
  112. FF ProfilePath: C:\Users\przem\AppData\Roaming\Mozilla\Firefox\Profiles\syi0rczj.default [2019-02-09]
  113. FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
  114. FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-09] (Oracle Corporation)
  115. FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-09] (Oracle Corporation)
  116. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
  117.  
  118. ==================== Usługi (filtrowane) ====================
  119.  
  120. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  121.  
  122. S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6076936 2018-08-15] (BattlEye Innovations e.K. -> )
  123. S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2018-09-16] (Creative Labs) [Brak podpisu cyfrowego]
  124. S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-01-23] (Electronic Arts, Inc. -> Electronic Arts)
  125. R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-01-23] (Electronic Arts, Inc. -> Electronic Arts)
  126. R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2018-09-15] (Even Balance, Inc. -> )
  127. R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [215128 2018-09-19] (Even Balance, Inc. -> )
  128. S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
  129. S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [24576 2018-04-03] (Realtek Semiconductor.) [Brak podpisu cyfrowego]
  130. R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3298600 2018-03-02] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
  131. R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-11] (Microsoft Corporation -> Microsoft Corporation)
  132. R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-11] (Microsoft Corporation -> Microsoft Corporation)
  133.  
  134. ===================== Sterowniki (filtrowane) ======================
  135.  
  136. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  137.  
  138. S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [117728 2018-09-15] (Alcor Micro, Corp. -> )
  139. S3 AndnetBus; C:\WINDOWS\System32\drivers\lgandnetbus64.sys [30208 2016-08-31] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
  140. S3 AndNetDiag; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [30720 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
  141. S3 ANDNetModem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [37376 2016-08-24] (Microsoft Windows Hardware Compatibility Publisher -> LG Electronics Inc.)
  142. R3 athr; C:\WINDOWS\System32\drivers\athwnx.sys [4233728 2018-04-12] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
  143. R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [31816 2018-09-15] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
  144. R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-09-15] (Martin Malik - REALiX -> REALiX(tm))
  145. S3 iaLPSSi_GPIO; C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128 2018-04-12] (Intel Corporation - Client Components Group -> Intel Corporation)
  146. R3 Impcd; C:\WINDOWS\System32\drivers\Impcd.sys [158976 2018-03-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
  147. R3 IntcAzAudAddService; C:\WINDOWS\system32\drivers\RTKVHD64.sys [6314848 2018-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
  148. R3 ksaud; C:\WINDOWS\system32\drivers\ksaud.sys [1134208 2009-08-05] (Creative Labs Inc -> Creative Technology Ltd.)
  149. R1 SABI; C:\Windows\system32\Drivers\SABI.sys [13824 2009-05-28] (Microsoft Windows Hardware Compatibility Publisher -> SAMSUNG ELECTRONICS)
  150. S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46680 2018-12-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
  151. R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [330936 2018-12-11] (Microsoft Windows -> Microsoft Corporation)
  152. R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-11] (Microsoft Windows -> Microsoft Corporation)
  153. R3 ykinw8; C:\WINDOWS\System32\drivers\ykinx64.sys [288768 2018-04-12] (Microsoft Windows -> Marvell)
  154.  
  155. ==================== NetSvcs (filtrowane) ===================
  156.  
  157. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  158.  
  159.  
  160. ==================== Jeden miesiąc (utworzone) ========
  161.  
  162. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  163.  
  164. 2019-02-09 10:16 - 2019-02-09 10:17 - 000014660 _____ C:\Users\przem\Desktop\FRST.txt
  165. 2019-02-09 10:16 - 2019-02-09 10:16 - 000000000 ____D C:\Users\przem\Desktop\FRST-OlderVersion
  166. 2019-02-09 10:16 - 2019-02-09 10:16 - 000000000 ____D C:\FRST
  167. 2019-02-09 10:11 - 2019-02-09 10:11 - 000000000 ____D C:\Users\przem\AppData\Roaming\Sun
  168. 2019-02-09 10:11 - 2019-02-09 10:11 - 000000000 ____D C:\Users\przem\AppData\LocalLow\Sun
  169. 2019-02-09 10:10 - 2019-02-09 10:10 - 000099192 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
  170. 2019-02-09 10:10 - 2019-02-09 10:10 - 000000000 ____D C:\ProgramData\Oracle
  171. 2019-02-09 10:10 - 2019-02-09 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
  172. 2019-02-09 10:10 - 2019-02-09 10:10 - 000000000 ____D C:\Program Files (x86)\Java
  173. 2019-02-09 10:08 - 2019-02-09 10:08 - 001962336 _____ (Oracle Corporation) C:\Users\przem\Desktop\JavaSetup8u201.exe
  174. 2019-02-09 09:49 - 2019-02-09 10:16 - 002434048 _____ (Farbar) C:\Users\przem\Desktop\FRST64.exe
  175. 2019-02-09 09:43 - 2019-02-09 09:43 - 000000000 ____D C:\AdwCleaner
  176. 2019-02-09 09:42 - 2019-02-09 09:42 - 007316688 _____ (Malwarebytes) C:\Users\przem\Desktop\AdwCleaner.exe
  177. 2019-02-09 09:38 - 2019-02-09 09:41 - 000000000 ____D C:\Users\przem\Downloads\[R.G.Gamblers].Heroes.of.Might.and.Magic.3.HD.Edition
  178. 2019-02-09 09:38 - 2019-02-09 09:38 - 000017974 _____ C:\Users\przem\Desktop\[agusiq-torrents.pl] - Heroes of Might &amp; Magic (3) III - HD Edition (2015) (MULTi9-PL] [DL] [Steam-Rip] [R.G Gamers] [DVD5] [.exe_.bin].torrent
  179. 2019-02-08 20:03 - 2019-02-08 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
  180. 2019-02-08 20:03 - 2019-02-08 20:03 - 000000000 ____D C:\Program Files (x86)\HD Tune
  181. 2019-02-04 21:00 - 2019-02-04 21:00 - 000002488 _____ C:\Users\przem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenFM.lnk
  182. 2019-02-04 21:00 - 2019-02-04 21:00 - 000002480 _____ C:\Users\przem\Desktop\OpenFM.lnk
  183. 2019-02-04 21:00 - 2019-02-04 21:00 - 000000000 ____D C:\Users\przem\AppData\Roaming\OpenFM
  184. 2019-02-04 21:00 - 2019-02-04 21:00 - 000000000 ____D C:\Users\przem\AppData\Local\OpenFM
  185. 2019-02-04 11:40 - 2019-02-04 11:40 - 000000000 ____D C:\Users\przem\Desktop\ThrottleStop_870
  186. 2019-02-04 10:07 - 2019-02-04 10:07 - 000000383 _____ C:\Users\przem\Documents\pc używany.txt
  187. 2019-02-04 09:19 - 2019-02-04 09:19 - 000002098 _____ C:\Users\Public\Desktop\Bloody6.lnk
  188. 2019-02-04 09:18 - 2019-02-04 09:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloody
  189. 2019-02-04 09:18 - 2019-02-04 09:18 - 000000000 ____D C:\Program Files (x86)\Bloody6
  190. 2019-02-04 08:57 - 2019-02-04 08:57 - 000000222 _____ C:\Users\przem\Desktop\Neverwinter.url
  191. 2019-02-03 20:15 - 2019-02-07 07:29 - 000027176 _____ C:\Users\przem\Documents\Roczny budżet.xlsx
  192. 2019-02-03 10:32 - 2019-02-03 10:46 - 000000000 ____D C:\Users\przem\Documents\My Games
  193. 2019-02-03 10:05 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
  194. 2019-02-03 10:05 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
  195. 2019-02-03 10:05 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
  196. 2019-02-03 10:05 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
  197. 2019-02-03 10:05 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
  198. 2019-02-03 10:05 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
  199. 2019-02-03 10:05 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
  200. 2019-02-03 10:05 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
  201. 2019-02-03 10:05 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
  202. 2019-02-03 10:05 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
  203. 2019-01-28 21:01 - 2019-01-28 21:02 - 000000000 ____D C:\Users\przem\Desktop\ibiza
  204. 2019-01-15 20:22 - 2019-01-15 20:22 - 000001771 _____ C:\Users\przem\Desktop\Counter-Strike 1.6 v48.lnk
  205. 2019-01-15 20:22 - 2019-01-15 20:22 - 000000000 ____D C:\Users\przem\AppData\Roaming\ProductAuthenticationService
  206. 2019-01-15 20:22 - 2019-01-15 20:22 - 000000000 ____D C:\Users\przem\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6 v48
  207. 2019-01-15 20:20 - 2019-01-15 20:22 - 000000000 ____D C:\Users\przem\AppData\Roaming\SteamServerBrowser
  208. 2019-01-15 20:20 - 2019-01-15 20:20 - 000000000 ____D C:\Gry
  209. 2019-01-15 20:00 - 2018-09-20 05:12 - 001483576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
  210. 2019-01-13 15:15 - 2019-01-13 15:32 - 2372965328 _____ C:\Users\przem\Desktop\Every.Day.2018.PL.SUBBED.720p.BRRip.x264.AC3-R3TK.mkv
  211.  
  212. ==================== Jeden miesiąc (zmodyfikowane) ========
  213.  
  214. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  215.  
  216. 2019-02-09 10:17 - 2018-04-03 11:51 - 000000000 ____D C:\Users\przem\AppData\Roaming\qBittorrent
  217. 2019-02-09 10:10 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
  218. 2019-02-09 09:51 - 2018-06-13 21:01 - 001673762 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  219. 2019-02-09 09:51 - 2018-04-12 16:54 - 000747126 _____ C:\WINDOWS\system32\perfh015.dat
  220. 2019-02-09 09:51 - 2018-04-12 16:54 - 000144102 _____ C:\WINDOWS\system32\perfc015.dat
  221. 2019-02-09 09:51 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
  222. 2019-02-09 09:47 - 2018-08-15 08:41 - 000000000 ____D C:\Program Files (x86)\Steam
  223. 2019-02-09 09:47 - 2018-07-02 17:33 - 000000000 ____D C:\Users\przem\AppData\Roaming\TeamViewer
  224. 2019-02-09 09:47 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
  225. 2019-02-09 09:47 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
  226. 2019-02-09 09:45 - 2018-09-17 15:51 - 000003142 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
  227. 2019-02-09 09:44 - 2018-06-13 20:59 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
  228. 2019-02-09 09:44 - 2018-04-03 11:41 - 000000000 ____D C:\Program Files\CCleaner
  229. 2019-02-09 09:43 - 2018-09-15 18:11 - 000000000 ____D C:\Users\przem\AppData\Roaming\IObit
  230. 2019-02-09 09:43 - 2018-04-11 22:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
  231. 2019-02-09 09:34 - 2018-06-13 20:59 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
  232. 2019-02-09 00:18 - 2018-06-13 20:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
  233. 2019-02-08 20:26 - 2018-06-13 20:59 - 000005350 _____ C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-SLJAQO5-przem DESKTOP-SLJAQO5
  234. 2019-02-08 20:21 - 2018-06-13 20:58 - 000002570 _____ C:\WINDOWS\diagwrn.xml
  235. 2019-02-08 20:21 - 2018-06-13 20:58 - 000001908 _____ C:\WINDOWS\diagerr.xml
  236. 2019-02-08 19:27 - 2018-06-14 21:10 - 000000000 ____D C:\ProgramData\Packages
  237. 2019-02-08 19:27 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
  238. 2019-02-04 21:03 - 2018-06-17 09:40 - 000000000 ____D C:\Users\przem\AppData\LocalLow\Mozilla
  239. 2019-02-04 15:33 - 2018-04-06 13:25 - 000000000 ____D C:\Users\przem\Documents\CV
  240. 2019-02-04 12:02 - 2018-09-17 15:48 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
  241. 2019-02-03 18:16 - 2018-03-28 19:52 - 000000000 ____D C:\Program Files\Opera
  242. 2019-02-03 17:02 - 2018-03-28 18:44 - 000000000 ____D C:\Users\przem\AppData\Local\Packages
  243. 2019-02-03 11:06 - 2018-09-15 20:17 - 000000000 ____D C:\Users\przem\AppData\Roaming\Origin
  244. 2019-02-03 11:06 - 2018-09-15 20:17 - 000000000 ____D C:\ProgramData\Origin
  245. 2019-02-01 09:28 - 2018-04-06 13:26 - 000000000 ____D C:\Users\przem\AppData\Roaming\AIMP
  246. 2019-01-29 19:18 - 2018-09-15 20:20 - 000000000 ____D C:\Program Files (x86)\Origin
  247. 2019-01-19 18:38 - 2018-11-16 19:23 - 000000000 ____D C:\Program Files\rempl
  248. 2019-01-18 11:45 - 2018-03-28 18:44 - 000000000 ____D C:\Users\przem\AppData\Roaming\Adobe
  249. 2019-01-15 20:09 - 2018-06-18 18:11 - 000012513 _____ C:\Users\przem\Documents\Historia Serwisowa Peugeot 407.xlsx
  250. 2019-01-15 20:02 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
  251. 2019-01-14 10:20 - 2018-10-09 19:56 - 000000000 ____D C:\KMPlayer
  252. 2019-01-10 18:16 - 2018-06-13 20:59 - 000004000 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1522263219
  253. 2019-01-10 18:16 - 2018-03-28 19:53 - 000001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk
  254.  
  255. ==================== Bamital & volsnap ======================
  256.  
  257. (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
  258.  
  259. C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
  260. C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo
  261. C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
  262. C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo
  263. C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
  264. C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo
  265. C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
  266. C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
  267. C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo
  268. C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
  269. C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo
  270. C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
  271. C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
  272. C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
  273. C:\WINDOWS\system32\dllhost.exe => Plik podpisany cyfrowo
  274. C:\WINDOWS\SysWOW64\dllhost.exe => Plik podpisany cyfrowo
  275. C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
  276.  
  277. LastRegBack: 2018-06-13 20:52
  278.  
  279. ==================== Koniec FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!