API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 20th, 2018
109
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 23.38 KB | None | 0 0
raw download clone embed print report
  1. Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 20.06.2018
  2. Uruchomiony przez Marta (administrator) MARTA (20-06-2018 17:26:47)
  3. Uruchomiony z C:\Users\Marta\Desktop
  4. Załadowane profile: Marta & (Dostępne profile: Marta)
  5. Platform: Windows 8.1 Connected (Update) (X64) Język: Polski (Polska)
  6. Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome)
  7. Tryb startu: Normal
  8. Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Procesy (filtrowane) =================
  11.  
  12. (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
  13.  
  14. (Intel Corporation) C:\Windows\System32\igfxCUIService.exe
  15. (Arcabit) C:\Program Files\Arcabit\bin\arcasv.exe
  16. (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
  17. (Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
  18. (Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
  19. (Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
  20. (Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
  21. (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
  22. (Arcabit) C:\Program Files\Arcabit\bin\arcamon.exe
  23. (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
  24. (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
  25. () C:\Program Files\Arcabit\bin\scanenginecon.exe
  26. (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
  27. (Intel Corporation) C:\Windows\System32\igfxEM.exe
  28. (Intel Corporation) C:\Windows\System32\igfxHK.exe
  29. (Intel Corporation) C:\Windows\System32\igfxTray.exe
  30. (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
  31. (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
  32. (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
  33. (Arcabit) C:\Program Files\Arcabit\bin\awsc.exe
  34. (Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
  35. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
  36. (Arcabit) C:\Program Files\Arcabit\bin\arcamenu.exe
  37. () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
  38. (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
  39. (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
  40. (Intel Corporation) C:\Windows\System32\igfxext.exe
  41. (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
  42. (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
  43. (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
  44. (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
  45. (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
  46. (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
  47. (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
  48. (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe
  49. (Microsoft Corporation) C:\Windows\System32\cmd.exe
  50. (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
  51.  
  52. ==================== Rejestr (filtrowane) ===========================
  53.  
  54. (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
  55.  
  56. HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672664 2014-06-30] (Realtek Semiconductor)
  57. HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\Windows\System32\DptfPolicyLpmServiceHelper.exe [111488 2013-09-17] (Intel Corporation)
  58. HKLM\...\Run: [arcamenu] => C:\Program Files\Arcabit\bin\arcamenu.exe [388288 2018-06-20] (Arcabit)
  59. HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-01-21] (Microsoft Corporation)
  60. HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-02-26] (Atheros Communications)
  61. HKU\S-1-5-21-3235453208-3398187264-552297352-1001\...\Run: [ChomikBox] => C:\Program Files (x86)\ChomikBox\chomikbox.exe [3941376 2017-02-21] ( )
  62. HKU\S-1-5-21-3235453208-3398187264-552297352-1001\...\MountPoints2: {1f6ac8c9-d4c7-11e6-828a-2c600c68b6b1} - "D:\autorun.exe"
  63. HKU\S-1-5-21-3235453208-3398187264-552297352-1001\...\MountPoints2: {43493374-8ce8-11e7-8294-2c600c68b6b1} - "D:\autorun.exe"
  64. HKU\S-1-5-21-3235453208-3398187264-552297352-1001\...\MountPoints2: {53bc485e-35cb-11e7-8290-2c600c68b6b1} - "D:\autorun.exe"
  65. HKU\S-1-5-21-3235453208-3398187264-552297352-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Fliqlo.scr [679936 2017-09-28] (ScreenTime Media)
  66. HKU\S-1-5-21-3235453208-3398187264-552297352-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06202018165208498\...\Run: [ChomikBox] => C:\Program Files (x86)\ChomikBox\chomikbox.exe [3941376 2017-02-21] ( )
  67. HKU\S-1-5-21-3235453208-3398187264-552297352-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06202018165208498\...\MountPoints2: {1f6ac8c9-d4c7-11e6-828a-2c600c68b6b1} - "D:\autorun.exe"
  68. HKU\S-1-5-21-3235453208-3398187264-552297352-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06202018165208498\...\MountPoints2: {43493374-8ce8-11e7-8294-2c600c68b6b1} - "D:\autorun.exe"
  69. HKU\S-1-5-21-3235453208-3398187264-552297352-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06202018165208498\...\MountPoints2: {53bc485e-35cb-11e7-8290-2c600c68b6b1} - "D:\autorun.exe"
  70. HKU\S-1-5-21-3235453208-3398187264-552297352-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06202018165208498\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Fliqlo.scr [679936 2017-09-28] (ScreenTime Media)
  71.  
  72. ==================== Internet (filtrowane) ====================
  73.  
  74. (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
  75.  
  76. Tcpip\..\Interfaces\{3BF61BFF-8D9B-49D2-8856-1383F01D9396}: [DhcpNameServer] 37.8.214.2 31.11.202.254
  77.  
  78. Internet Explorer:
  79. ==================
  80. HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
  81. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
  82. HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
  83. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
  84. HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
  85. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
  86. HKU\S-1-5-21-3235453208-3398187264-552297352-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
  87. HKU\S-1-5-21-3235453208-3398187264-552297352-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06202018165208498\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
  88. SearchScopes: HKU\S-1-5-21-3235453208-3398187264-552297352-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
  89. SearchScopes: HKU\S-1-5-21-3235453208-3398187264-552297352-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
  90. SearchScopes: HKU\S-1-5-21-3235453208-3398187264-552297352-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06202018165208498 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
  91. SearchScopes: HKU\S-1-5-21-3235453208-3398187264-552297352-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06202018165208498 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
  92. BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
  93. BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
  94.  
  95. FireFox:
  96. ========
  97. FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => nie znaleziono
  98. FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => nie znaleziono
  99. FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
  100. FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
  101. FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
  102. FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
  103. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-01-10] (Microsoft Corporation)
  104. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
  105. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
  106.  
  107. Chrome:
  108. =======
  109. CHR Profile: C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default [2018-06-20]
  110. CHR Extension: (Prezentacje) - C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
  111. CHR Extension: (Dokumenty) - C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
  112. CHR Extension: (Dysk Google) - C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
  113. CHR Extension: (YouTube) - C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
  114. CHR Extension: (Adblock Plus) - C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-05-16]
  115. CHR Extension: (Google Search) - C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
  116. CHR Extension: (Arkusze) - C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
  117. CHR Extension: (Peony) - C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjebicjjmadngcokehioegckmpjamdbn [2017-11-21]
  118. CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
  119. CHR Extension: (Gmail) - C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-25]
  120. CHR Extension: (Chrome Media Router) - C:\Users\Marta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-20]
  121.  
  122. ==================== Usługi (filtrowane) ====================
  123.  
  124. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  125.  
  126. R2 arcabitsv; C:\Program Files\Arcabit\bin\arcasv.exe [215392 2018-06-20] (Arcabit)
  127. R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-02-26] (Windows (R) Win 7 DDK provider) [Brak podpisu cyfrowego]
  128. R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-26] (Acer Incorporated)
  129. R2 DptfParticipantAcpiProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-09-17] (Intel Corporation)
  130. R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [150760 2013-09-17] (Intel Corporation)
  131. R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-06-12] (Acer Incorporated)
  132. R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315352 2014-05-30] (Intel Corporation)
  133. R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [Brak podpisu cyfrowego]
  134. S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel(R) Corporation)
  135. R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [466664 2014-06-10] (Acer Incorporate)
  136. R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
  137. R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporate)
  138. R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-06-26] (Acer Incorporate)
  139. S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (acer)
  140. S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
  141. S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
  142.  
  143. ===================== Sterowniki (filtrowane) ======================
  144.  
  145. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  146.  
  147. R3 ArcaFsAv; C:\Windows\System32\DRIVERS\arcafsav.sys [44880 2018-06-20] ()
  148. R1 arcawfp; C:\Windows\System32\drivers\arcawfp.sys [79664 2018-03-12] (Windows (R) Win 7 DDK provider)
  149. S3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Qualcomm Atheros Communications, Inc.)
  150. R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-26] (Qualcomm Atheros)
  151. R3 DptfDevAcpiProc; C:\Windows\system32\DRIVERS\DptfDevAcpiProc.sys [198808 2013-09-17] (Intel Corporation)
  152. S3 DptfDevDisplay; C:\Windows\System32\drivers\DptfDevDisplay.sys [70752 2013-09-17] (Intel Corporation)
  153. S3 DptfDevDram; C:\Windows\System32\drivers\DptfDevDram.sys [145640 2013-09-17] (Intel Corporation)
  154. S3 DptfDevFan; C:\Windows\System32\drivers\DptfDevFan.sys [50640 2013-09-17] (Intel Corporation)
  155. R3 DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [78504 2013-09-17] (Intel Corporation)
  156. S3 DptfDevPch; C:\Windows\System32\drivers\DptfDevPch.sys [116752 2013-09-17] (Intel Corporation)
  157. S3 DptfDevPower; C:\Windows\System32\drivers\DptfDevPower.sys [71808 2013-09-17] (Intel Corporation)
  158. R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [493240 2013-09-17] (Intel Corporation)
  159. S3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2016-02-21] (Disc Soft Ltd)
  160. S3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47672 2016-02-21] (Disc Soft Ltd)
  161. R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Intel Corporation)
  162. R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Intel Corporation)
  163. R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
  164. R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-06-20] (Malwarebytes)
  165. R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-12-10] (Intel Corporation)
  166. S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
  167. R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
  168. R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [42224 2014-02-19] (Synaptics Incorporated)
  169. R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-16] (Intel Corporation)
  170. S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
  171. S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
  172. S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
  173. S3 aswHdsKe; \??\C:\Windows\system32\drivers\aswHdsKe.sys [X]
  174. U0 aswVmm; Brak ImagePath
  175.  
  176. ==================== NetSvcs (filtrowane) ===================
  177.  
  178. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  179.  
  180.  
  181. ==================== Jeden miesiąc - utworzone pliki i foldery ========
  182.  
  183. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  184.  
  185. 2018-06-20 17:26 - 2018-06-20 17:27 - 000016708 _____ C:\Users\Marta\Desktop\FRST.txt
  186. 2018-06-20 16:44 - 2018-06-20 16:44 - 000013794 _____ C:\Users\Marta\Desktop\mal.txt
  187. 2018-06-20 16:34 - 2018-06-20 22:06 - 002412544 _____ (Farbar) C:\Users\Marta\Desktop\FRST64.exe
  188. 2018-06-20 16:32 - 2018-06-20 16:41 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
  189. 2018-06-20 16:32 - 2018-06-20 16:32 - 000001887 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
  190. 2018-06-20 16:32 - 2018-06-20 16:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
  191. 2018-06-20 16:32 - 2018-05-24 06:55 - 000152184 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
  192. 2018-06-20 16:31 - 2018-06-20 21:55 - 078101496 _____ (Malwarebytes ) C:\Users\Marta\Desktop\mb3-setup-consumer-3.5.1.2522-1.0.374-1.0.5526.exe
  193. 2018-06-20 16:31 - 2018-06-20 16:31 - 000000000 ____D C:\ProgramData\Malwarebytes
  194. 2018-06-20 16:31 - 2018-06-20 16:31 - 000000000 ____D C:\Program Files\Malwarebytes
  195. 2018-06-20 16:08 - 2018-06-20 21:31 - 147436040 _____ (K7 Computing Pvt. Ltd.) C:\Users\Marta\Desktop\setup-eng-avp.exe
  196. 2018-06-20 16:06 - 2018-06-20 21:32 - 141032688 _____ (Arcabit Ltd.) C:\Users\Marta\Desktop\arcabitsetup2_av_trial.exe
  197. 2018-06-20 15:32 - 2018-06-20 15:48 - 000000000 ____D C:\ProgramData\Norton
  198. 2018-06-20 15:31 - 2018-06-20 15:31 - 000000000 ____D C:\ProgramData\NortonInstaller
  199. 2018-06-20 13:33 - 2018-06-20 17:26 - 000000000 ____D C:\FRST
  200. 2018-06-20 13:20 - 2018-06-20 14:49 - 000000000 ____D C:\ProgramData\Kaspersky Lab
  201. 2018-06-20 13:20 - 2018-06-20 13:21 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
  202. 2018-06-20 13:19 - 2018-06-20 13:22 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
  203. 2018-06-19 18:30 - 2018-06-19 18:30 - 000262598 _____ C:\Users\Marta\Desktop\WZÓR-2-CHORĄGIEWKI.pdf
  204. 2018-06-19 18:30 - 2018-06-19 18:30 - 000257517 _____ C:\Users\Marta\Desktop\WZÓR-2-LITERKI.pdf
  205. 2018-06-18 19:48 - 2018-06-18 19:48 - 000016747 ____H C:\Users\Marta\Desktop\~WRL0005.tmp
  206. 2018-06-13 10:33 - 2018-06-20 15:10 - 000000000 ____D C:\Users\Marta\Documents\MAGIX Downloads
  207. 2018-06-13 10:33 - 2018-06-13 10:33 - 000000000 ____D C:\Users\Marta\AppData\Roaming\MAGIX
  208. 2018-06-05 20:11 - 2018-06-05 20:11 - 000000000 ____D C:\Program Files\Common Files\Avast Software
  209.  
  210. ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
  211.  
  212. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  213.  
  214. 2018-06-20 16:48 - 2016-05-08 08:48 - 001817498 _____ C:\Windows\system32\PerfStringBackup.INI
  215. 2018-06-20 16:48 - 2015-02-16 00:57 - 000802570 _____ C:\Windows\system32\perfh015.dat
  216. 2018-06-20 16:48 - 2015-02-16 00:57 - 000161578 _____ C:\Windows\system32\perfc015.dat
  217. 2018-06-20 16:48 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
  218. 2018-06-20 16:46 - 2015-08-25 20:38 - 000003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3235453208-3398187264-552297352-1001
  219. 2018-06-20 16:41 - 2018-03-12 14:32 - 000044880 _____ C:\Windows\system32\Drivers\arcafsav.sys
  220. 2018-06-20 16:41 - 2015-08-25 20:33 - 000000000 ___RD C:\Users\Marta\OneDrive
  221. 2018-06-20 16:40 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
  222. 2018-06-20 16:29 - 2014-08-11 19:21 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
  223. 2018-06-20 16:28 - 2014-08-11 19:22 - 000000000 ____D C:\ProgramData\CyberLink
  224. 2018-06-20 16:17 - 2014-08-11 19:19 - 000000000 ____D C:\Program Files (x86)\Acer
  225. 2018-06-20 16:16 - 2014-08-11 19:31 - 000000000 ____D C:\Program Files\Acer
  226. 2018-06-20 16:07 - 2018-03-12 14:29 - 000000000 ____D C:\ProgramData\Arcabit
  227. 2018-06-20 16:07 - 2018-03-12 14:29 - 000000000 ____D C:\Program Files\Arcabit
  228. 2018-06-20 15:48 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
  229. 2018-06-20 15:46 - 2013-08-22 17:36 - 000000000 ___HD C:\Windows\ELAMBKUP
  230. 2018-06-20 15:46 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\ELAM
  231. 2018-06-20 15:43 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\system32\NDF
  232. 2018-06-20 15:26 - 2017-11-02 09:36 - 000000000 ____D C:\Users\Marta\Documents\Bluetooth Folder
  233. 2018-06-20 15:19 - 2015-08-25 20:04 - 000000000 ____D C:\Users\Marta
  234. 2018-06-20 15:11 - 2015-12-12 08:41 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software
  235. 2018-06-20 15:11 - 2015-08-28 23:36 - 000000000 ____D C:\Windows\system32\appraiser
  236. 2018-06-20 15:11 - 2013-08-22 17:36 - 000000000 __RSD C:\Windows\Media
  237. 2018-06-20 15:11 - 2013-08-22 17:36 - 000000000 ___RD C:\Windows\ToastData
  238. 2018-06-20 15:11 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\PolicyDefinitions
  239. 2018-06-20 15:11 - 2013-08-22 17:36 - 000000000 ____D C:\Program Files\Windows Defender
  240. 2018-06-20 15:10 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache
  241. 2018-06-20 15:06 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
  242. 2018-06-20 15:00 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\registration
  243. 2018-06-20 14:57 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\system32\Sysprep
  244. 2018-06-20 14:54 - 2016-02-21 21:44 - 000000000 __RHD C:\MSOCache
  245. 2018-06-20 14:54 - 2015-12-12 08:41 - 000000000 ____D C:\Program Files\Common Files\AV
  246. 2018-06-20 13:21 - 2015-09-25 17:12 - 026478592 ___SH C:\Users\Marta\Desktop\Thumbs.db
  247. 2018-06-20 12:53 - 2015-09-01 06:26 - 000000000 ____D C:\Users\Marta\AppData\Local\CrashDumps
  248. 2018-06-15 12:57 - 2017-11-03 11:24 - 000000000 ____D C:\Users\Marta\Desktop\przedszkole
  249. 2018-06-13 08:35 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
  250. 2018-06-10 21:34 - 2018-01-04 19:55 - 000012800 ___SH C:\Users\Marta\Downloads\Thumbs.db
  251. 2018-06-05 14:42 - 2015-08-25 20:45 - 000000000 ____D C:\Users\Marta\Desktop\save
  252.  
  253. ==================== Pliki w katalogu głównym wybranych folderów =======
  254.  
  255. 2015-08-25 21:26 - 2015-08-25 20:52 - 001123840 _____ (Karol Winnicki) C:\Program Files\BESTplayer.exe
  256.  
  257. ==================== Bamital & volsnap ======================
  258.  
  259. (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
  260.  
  261. C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
  262. C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
  263. C:\Windows\explorer.exe => Plik podpisany cyfrowo
  264. C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
  265. C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
  266. C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
  267. C:\Windows\system32\services.exe => Plik podpisany cyfrowo
  268. C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
  269. C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo
  270. C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
  271. C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
  272. C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
  273. C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
  274. C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
  275. C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
  276.  
  277. LastRegBack: 2018-06-10 09:55
  278.  
  279. ==================== Koniec FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!