wklejto.pl

Dodane przez: ~jasafrst (2019-12-16 09:30) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja: 14-12-2019
Uruchomiony przez user (administrator)  USER-CE0B076F0A (Hewlett-Packard HP Compaq dc5750 Small Form Factor) (16-12-2019 10:08:36)
Uruchomiony z C:\Documents and Settings\user\Moje dokumenty\Downloads
Załadowane profile: user (Dostępne profile: user)
Platform: Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) Język: Polski
Internet Explorer Wersja 8 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Procesy (filtrowane) =================
 
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
 
() [Brak podpisu cyfrowego] C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
() [Brak podpisu cyfrowego] C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\AthServer.exe
(Atheros) [Brak podpisu cyfrowego] C:\WINDOWS\system32\acs.exe
(ATI Technologies Inc.) [Brak podpisu cyfrowego] C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
(ATI Technologies Inc.) [Brak podpisu cyfrowego] C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
(ATI Technologies Inc.) [Brak podpisu cyfrowego] C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(FirebirdSQL Project) [Brak podpisu cyfrowego] C:\Program Files\Firebird\Firebird_2_0\bin\fbguard.exe
(FirebirdSQL Project) [Brak podpisu cyfrowego] C:\Program Files\Firebird\Firebird_2_0\bin\fbserver.exe
(Google Inc -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc -> Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Huawei Technologies Co., Ltd. -> ) C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe
(Huawei Technologies Co.,Ltd. -> ) C:\Documents and Settings\All Users\Dane aplikacji\Internet Manager\OnlineUpdate\ouc.exe
(Microsoft Windows Component Publisher -> Microsoft Corporation) C:\WINDOWS\system32\alg.exe
(Microsoft Windows Component Publisher -> Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(ZTE CORPORATION -> ) C:\Program Files\ZTE MF823\CancelAutoPlay_df.exe
(ZTE CORPORATION -> ) C:\Program Files\ZTE MF823\CheckNDISPort_df.exe
 
==================== Rejestr (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
 
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-10-04] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
HKLM\...\Run: [CheckNDISPortF0ac70] => C:\Program Files\ZTE MF823\CheckNDISPort_df.exe [417536 2013-03-19] (ZTE CORPORATION -> )
HKLM\...\Run: [CancelAutoPlay_df] => C:\Program Files\ZTE MF823\CancelAutoPlay_df.exe [446720 2013-02-25] (ZTE CORPORATION -> )
HKLM\...\Run: [ATICCC] => C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe [90112 2006-09-25] () [Brak podpisu cyfrowego]
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2006-11-22] (ATI Technologies Inc.)
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [3576664 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {0855fe40-3849-11e6-b452-f6c2cd23ecc2} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {0855fe43-3849-11e6-b452-f6c2cd23ecc2} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {14a4ceb0-caea-11e3-8c95-001b788395c9} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {14a4ceb2-caea-11e3-8c95-001b788395c9} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {14a4ceb3-caea-11e3-8c95-001b788395c9} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {14a4ceb4-caea-11e3-8c95-001b788395c9} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {2de1c843-d6ee-11e5-8d0c-364b50b7ef25} - K:\setup.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {326e3946-e753-11e4-8ded-001b788395c9} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {326e3949-e753-11e4-8ded-001b788395c9} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {326e394b-e753-11e4-8ded-001b788395c9} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {3667d641-dd77-11e6-8ca9-b8be2f061909} - G:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {3667d643-dd77-11e6-8ca9-8bc9533e37ba} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {77f419dc-caca-11e3-8c94-001b788395c9} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {77f419de-caca-11e3-8c94-001b788395c9} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {77f419df-caca-11e3-8c94-001b788395c9} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {77f419e0-caca-11e3-8c94-001b788395c9} - F:\AutoRun.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {85ca5bc2-3cd5-11e5-a980-364b50b7ef25} - T:\setup_stronghold_crusader_extreme_hd_2.0.0.6.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {8c08ae45-d6e2-11e5-b5c0-851ef03f5a0e} - H:\setup.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {9f8e5d45-4577-11e5-8138-364b50b7ef25} - T:\setup.exe
HKU\S-1-5-21-1343024091-1085031214-1801674531-1003\...\MountPoints2: {aead6bfd-be44-11e3-8c82-364b50b7ef25} - G:\SETUP.EXE
HKLM\Software\Microsoft\Active Setup\Installed Components: [<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}] -> C:\WINDOWS\system32\ieudinit.exe [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\WINDOWS\inf\unregmp2.exe [2007-06-27] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] -> C:\WINDOWS\system32\shmgrate.exe [2008-04-15] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] -> 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> 
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-15] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{5945c046-1e7d-11d1-bc44-00c04fd912be}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{7790769C-0471-11d2-AF11-00C04FA35D02}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-15] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\49.0.2623.112\Installer\chrmstp.exe [2018-01-24] (Google Inc -> Google Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{C631DF4C-088F-4156-B058-4375F0853CD8}] -> C:\WINDOWS\System32\cscui.dll [2008-04-15] (Microsoft Windows Component Publisher -> Microsoft Corporation)
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk [2019-01-02]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe () [Brak podpisu cyfrowego]
Startup: C:\Documents and Settings\user\Menu Start\Programy\Autostart\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk [2014-06-07]
ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
 
==================== Zaplanowane zadania=============================
 
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\WGASetup.job => C:\WINDOWS\system32\KB905474\wgasetup.exe
 
==================== Internet (filtrowane) ====================
 
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{96928DBE-842B-4F12-8BDB-8AEEDA27CFB0}: [DhcpNameServer] 192.168.2.1
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
BHO: IplexToALLPlayer -> {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} -> C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll [2013-11-01] (ALLPlayer Group -> ALLCinema Ltd.)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
 
FireFox:
========
FF ProfilePath: C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\xuhbi8ki.default [2019-12-13]
FF Extension: (MEGA) - C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\xuhbi8ki.default\Extensions\firefox@mega.co.nz.xpi [2019-12-10] [UpdateUrl:hxxps://mega.nz/firefox-web-extension-updates.json]
FF Extension: (Adblock Plus - darmowy adblocker) - C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\xuhbi8ki.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-10-23]
FF Extension: (Hotfix for Firefox bug 1548973 (armagaddon 2.0) mitigation) - C:\Documents and Settings\user\Dane aplikacji\Mozilla\Firefox\Profiles\xuhbi8ki.default\features\{2d26ef5c-71ff-45ed-9551-a2383b555b41}\hotfix-bug-1548973@mozilla.org.xpi [2019-05-25] [Przestarzałe]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-03-27] [Przestarzałe] [Brak podpisu cyfrowego]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-10] (Adobe Inc. -> ) [Brak podpisu cyfrowego]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\4433062.js [2016-11-11] <==== UWAGA (Linkuje do pliku *.cfg)
FF ExtraCheck: C:\Program Files\mozilla firefox\4433062.cfg [2016-11-11] <==== UWAGA
 
Chrome: 
=======
CHR Notifications: Default -> hxxps://pl.tradingview.com
CHR Profile: C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default [2019-12-16]
CHR Extension: (Prezentacje) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-19]
CHR Extension: (Dokumenty) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-19]
CHR Extension: (Dysk Google) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-09]
CHR Extension: (YouTube) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-09]
CHR Extension: (Arkusze) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-19]
CHR Extension: (Dokumenty Google offline) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-27]
CHR Extension: (AdBlock) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-08-23]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-05]
CHR Extension: (Gmail) - C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
 
==================== Usługi (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R2 acs; C:\WINDOWS\system32\acs.exe [499796 2014-05-23] (Atheros) [Brak podpisu cyfrowego]
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-10] (Adobe Inc. -> Adobe) [Brak podpisu cyfrowego]
R2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [430080 2006-11-22] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [520192 2006-11-22] () [Brak podpisu cyfrowego]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1034584 2015-06-18] (Disc Soft Ltd -> Disc Soft Ltd)
R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_0\bin\fbguard.exe [81920 2007-03-02] (FirebirdSQL Project) [Brak podpisu cyfrowego]
R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_0\bin\fbserver.exe [1994752 2007-03-02] (FirebirdSQL Project) [Brak podpisu cyfrowego]
R2 HWDeviceService.exe; C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe [276048 2014-01-15] (Huawei Technologies Co., Ltd. -> )
S2 Internet Manager. RunOuc; C:\Program Files\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [682072 2015-02-24] (Huawei Technologies Co.,Ltd. -> )
S3 jswpsapi; C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [360529 2014-05-23] (wireless) [Brak podpisu cyfrowego]
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2009-05-14] (Hewlett-Packard) [Brak podpisu cyfrowego]
S3 npggsvc; C:\WINDOWS\system32\GameMon.des [3472368 2014-12-01] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2009-05-14] (Hewlett-Packard) [Brak podpisu cyfrowego]
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{54791060-8321-4E6D-9AAB-2F48C9227C19} [5120 2008-04-15] (Microsoft Windows Component Publisher -> Microsoft Corporation)
S2 PLAY ONLINE. RunOuc; C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe [X]
 
===================== Sterowniki (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1763584 2014-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R3 ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2829824 2006-11-22] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 b57w2k; C:\WINDOWS\System32\DRIVERS\b57xp32.sys [237096 2011-10-26] (Broadcom Corporation -> Broadcom Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\DRIVERS\dtlitescsibus.sys [25016 2015-07-31] (Disc Soft Ltd -> Disc Soft Ltd)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [249856 2014-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_hwusbdev; C:\WINDOWS\System32\DRIVERS\ew_hwusbdev.sys [95232 2013-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_usbenumfilter; C:\WINDOWS\System32\DRIVERS\ew_usbenumfilter.sys [14976 2015-07-17] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 filtertdidriver; C:\WINDOWS\System32\drivers\ewfiltertdidriver.sys [7552 2013-08-16] (Huawei Technologies Co., Ltd.) [Brak podpisu cyfrowego]
R3 HDAudBus; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [144384 2008-04-15] (Microsoft Windows Component Publisher -> Windows (R) Server 2003 DDK provider)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2008-10-28] (Microsoft Windows Hardware Compatibility Publisher -> HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2008-10-28] (Microsoft Windows Hardware Compatibility Publisher -> HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2008-10-28] (Microsoft Windows Hardware Compatibility Publisher -> HP)
S3 huawei_cdcacm; C:\WINDOWS\System32\DRIVERS\ew_jucdcacm.sys [101504 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\WINDOWS\System32\DRIVERS\ew_jucdcecm.sys [70784 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 huawei_enumerator; C:\WINDOWS\System32\DRIVERS\ew_jubusenum.sys [77824 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\WINDOWS\System32\DRIVERS\ew_juextctrl.sys [27776 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\WINDOWS\System32\DRIVERS\ewusbmdm.sys [199296 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\WINDOWS\System32\DRIVERS\ew_cdcacm.sys [111872 2015-07-17] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcecm; C:\WINDOWS\System32\DRIVERS\ew_cdcecm.sys [117888 2015-07-17] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 JSWSCIMD; C:\WINDOWS\System32\DRIVERS\jswscimd.sys [57440 2014-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R3 Ptilink; C:\WINDOWS\System32\DRIVERS\ptilink.sys [17792 2008-04-15] (Microsoft Windows Component Publisher -> Parallel Technologies, Inc.)
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [20480 2008-04-15] (Microsoft Windows Component Publisher -> Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [329384 2015-05-29] (Disc Soft Ltd -> Duplex Secure Ltd.)
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [58208 2014-05-23] (Atheros Communications, Inc.) [Brak podpisu cyfrowego]
S4 IntelIde; Brak ImagePath
U1 WS2IFSL; Brak ImagePath
 
==================== NetSvcs (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
 
==================== Jeden miesiąc (utworzone) ===================
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2019-12-16 10:06 - 2019-12-16 10:09 - 000000000 ____D C:\FRST
2019-12-16 09:25 - 2019-12-16 09:25 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2019-12-13 13:13 - 2019-12-13 13:13 - 000193143 _____ C:\Documents and Settings\user\Pulpit\Komunikat ws szkolenia.pdf
2019-12-13 13:10 - 2019-12-13 13:10 - 000206243 _____ C:\Documents and Settings\user\Pulpit\EZU.9097.53.2019.MD _pismo do NIL i OIL dotyczące wejścia w życie obowią....pdf
2019-12-12 15:31 - 2019-12-12 15:36 - 000000952 _____ C:\Documents and Settings\user\Pulpit\białko.txt
2019-12-11 09:19 - 2019-12-11 09:56 - 000000080 _____ C:\Documents and Settings\user\Dane aplikacji\mBot.ini
2019-12-10 13:31 - 2019-12-10 13:31 - 001831436 _____ C:\Documents and Settings\user\Pulpit\portalszoi-zz_inst_uzyt_realizator.pdf
2019-12-10 13:22 - 2019-12-10 13:22 - 000182256 _____ C:\Documents and Settings\user\Pulpit\Komunikat 06.12.2019.pdf
2019-12-04 16:59 - 2019-12-04 16:59 - 000061245 _____ C:\Documents and Settings\user\Pulpit\Faktura_VAT_ZIK_19_FV_0186526.pdf
2019-11-26 18:18 - 2019-11-26 18:18 - 000914379 _____ C:\Documents and Settings\user\Pulpit\pismo WSOZ-SP.425.645.2019 z dnia 22.11.2019.pdf
2019-11-19 11:58 - 2019-11-19 11:59 - 000590898 _____ C:\Documents and Settings\user\Pulpit\pismo WSOZ-SP.425.645.2019.pdf
 
==================== Jeden miesiąc (zmodyfikowane) ==================
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2019-12-16 10:09 - 2014-03-27 07:53 - 000000000 ____D C:\Documents and Settings\user\Ustawienia lokalne\Temp
2019-12-16 09:46 - 2014-03-27 08:30 - 000000000 ____D C:\WINDOWS\security
2019-12-16 09:45 - 2017-08-09 07:51 - 000001036 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2019-12-16 09:45 - 2017-08-09 07:51 - 000001032 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2019-12-16 09:31 - 2015-07-01 10:36 - 000000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2019-12-16 09:14 - 2015-03-24 15:34 - 000000260 _____ C:\WINDOWS\Tasks\WGASetup.job
2019-12-16 09:12 - 2015-03-24 16:21 - 000000220 _____ C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job
2019-12-16 09:12 - 2014-03-27 07:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-12-16 09:12 - 2008-04-15 13:00 - 000002206 _____ C:\WINDOWS\system32\wpa.dbl
2019-12-14 13:01 - 2019-01-02 15:33 - 000524288 _____ C:\WINDOWS\system32\config\ACS.evt
2019-12-14 13:01 - 2014-03-28 19:56 - 000524288 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2019-12-14 13:01 - 2014-03-27 07:53 - 000000188 ___SH C:\Documents and Settings\user\ntuser.ini
2019-12-14 13:01 - 2014-03-27 07:52 - 000032588 _____ C:\WINDOWS\SchedLgU.Txt
2019-12-14 12:48 - 2018-03-14 10:31 - 000000980 _____ C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job
2019-12-14 12:48 - 2014-03-27 07:45 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-12-14 09:45 - 2014-03-27 07:53 - 000000000 ___HD C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji
2019-12-13 13:13 - 2014-07-02 09:55 - 000000000 ____D C:\Documents and Settings\user\Moje dokumenty\Pobrane
2019-12-13 13:13 - 2014-03-27 07:53 - 000000000 ____D C:\Documents and Settings\user\Pulpit
2019-12-11 10:15 - 2015-12-11 13:16 - 000000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Avg
2019-12-11 10:15 - 2014-11-26 09:32 - 000000000 ____D C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Avg
2019-12-11 10:15 - 2014-03-27 08:23 - 000000000 ____D C:\Program Files\AVG
2019-12-11 10:15 - 2014-03-27 07:53 - 000000000 __RHD C:\Documents and Settings\user\Dane aplikacji
2019-12-11 10:13 - 2014-03-27 08:38 - 000000000 ____D C:\Documents and Settings\All Users\Pulpit
2019-12-11 10:13 - 2014-03-27 08:38 - 000000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy
2019-12-11 10:11 - 2017-07-13 12:22 - 000000000 ____D C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\Temp
2019-12-10 10:31 - 2014-03-27 10:46 - 000842296 _____ (Adobe) C:\WINDOWS\system32\FlashPlayerApp.exe
2019-12-10 10:31 - 2014-03-27 10:46 - 000175160 _____ (Adobe) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2019-12-07 11:24 - 2014-03-27 11:51 - 000022528 _____ C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-12-05 15:21 - 2015-05-28 10:02 - 000012853 _____ C:\Documents and Settings\user\Pulpit\cenyszkiel.xlsx
2019-11-21 09:24 - 2014-03-27 08:30 - 000000000 ___HD C:\WINDOWS\inf
2019-11-20 15:05 - 2014-03-27 07:53 - 000000000 ___RD C:\Documents and Settings\user\Menu Start\Programy
2019-11-16 09:18 - 2014-03-27 08:38 - 001281850 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-16 09:18 - 2008-04-15 13:00 - 000566752 _____ C:\WINDOWS\system32\perfh015.dat
2019-11-16 09:18 - 2008-04-15 13:00 - 000107074 _____ C:\WINDOWS\system32\perfc015.dat
 
==================== Pliki w katalogu głównym wybranych folderów ========
 
2011-03-30 10:40 - 2011-03-30 10:40 - 000095576 ____C (Microsoft Corporation) C:\Program Files\DSETUP.dll
2011-03-30 10:40 - 2011-03-30 10:40 - 001566040 _____ () C:\Program Files\dsetup32.dll
2011-03-30 10:40 - 2011-03-30 10:40 - 000517976 _____ () C:\Program Files\DXSETUP.exe
2014-05-05 13:28 - 2007-04-12 13:41 - 007430473 _____ (Firebird Project                                            ) C:\Program Files\Firebird-2.0.1.12855-1-Win32_pdb.exe
2019-12-11 09:19 - 2019-12-11 09:56 - 000000080 _____ () C:\Documents and Settings\user\Dane aplikacji\mBot.ini
2014-03-27 11:51 - 2019-12-07 11:24 - 000022528 _____ () C:\Documents and Settings\user\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-07 08:05 - 2019-05-21 13:16 - 000002922 ____C () C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
2018-05-10 14:14 - 2018-05-10 14:14 - 000000016 _____ () C:\Documents and Settings\All Users\Dane aplikacji\mntemp
 
==================== SigCheck ============================
 
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
 
==================== Koniec  FRST.txt ========================
Wygenerowano w 0.005s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!