API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Dec 6th, 2018
124
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 21.78 KB | None | 0 0
raw download clone embed print report
  1. Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 01.12.2018 01
  2. Uruchomiony przez Druszczenko (administrator) DESKTOP-HOFPNDU (06-12-2018 18:30:07)
  3. Uruchomiony z C:\Users\Druszczenko\Downloads
  4. Załadowane profile: Druszczenko (Dostępne profile: Druszczenko)
  5. Platform: Windows 10 Home Wersja 1703 15063.909 (X64) Język: Polski (Polska)
  6. Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
  7. Tryb startu: Normal
  8. Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Procesy (filtrowane) =================
  11.  
  12. (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
  13.  
  14. () C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FBAgent.exe
  15. (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxCUIService.exe
  16. (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
  17. () C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\DCNTranProc.exe
  18. (Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
  19. (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
  20. (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHDCPSvc.exe
  21. (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  22. (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1810.5-0\MsMpEng.exe
  23. (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\IntelCpHeciSvc.exe
  24. (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
  25. (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
  26. (Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1810.5-0\NisSrv.exe
  27. (Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
  28. (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
  29. (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
  30. (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
  31. (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxEM.exe
  32. () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeHost.exe
  33. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
  34. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
  35. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  36. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  37. (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  38. (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  39. (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  40. (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  41. (Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
  42. (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
  43. (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  44. (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
  45. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  46. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
  47. (Microsoft Corporation) C:\Windows\System32\browser_broker.exe
  48. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
  49. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
  50. (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
  51. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
  52. (Microsoft Corporation) C:\Windows10Upgrade\Windows10UpgraderApp.exe
  53. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  54. (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
  55. (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
  56. (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
  57. (Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
  58. (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.1111_none_b9580e706f668ab0\TiWorker.exe
  59. (Microsoft Corporation) C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\SDXHelper.exe
  60.  
  61. ==================== Rejestr (filtrowane) ===========================
  62.  
  63. (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
  64.  
  65. HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
  66.  
  67. ==================== Internet (filtrowane) ====================
  68.  
  69. (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
  70.  
  71. ProxyServer: [S-1-5-21-345879739-3670273313-2407084088-1001] => 127.0.0.1:1080
  72. Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
  73. Tcpip\..\Interfaces\{076baab5-899e-494b-bcf0-0c38cb4e715d}: [DhcpNameServer] 192.168.1.1
  74. Tcpip\..\Interfaces\{e7c2ded2-4131-4301-a16a-2f82a24a10a9}: [DhcpNameServer] 40.51.1.11
  75.  
  76. Internet Explorer:
  77. ==================
  78. HKU\S-1-5-21-345879739-3670273313-2407084088-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://onet.pl/
  79. HKU\S-1-5-21-345879739-3670273313-2407084088-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE
  80. SearchScopes: HKU\S-1-5-21-345879739-3670273313-2407084088-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  81. SearchScopes: HKU\S-1-5-21-345879739-3670273313-2407084088-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  82. BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-12-06] (Microsoft Corporation)
  83. Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-06] (Microsoft Corporation)
  84. Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-12-06] (Microsoft Corporation)
  85. Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-06] (Microsoft Corporation)
  86. Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-12-06] (Microsoft Corporation)
  87. Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-06] (Microsoft Corporation)
  88. Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-12-06] (Microsoft Corporation)
  89. Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-06] (Microsoft Corporation)
  90. Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-12-06] (Microsoft Corporation)
  91.  
  92. FireFox:
  93. ========
  94. FF DefaultProfile: jbx0ui9e.default-1509041237755
  95. FF ProfilePath: C:\Users\Druszczenko\AppData\Roaming\Mozilla\Firefox\Profiles\jbx0ui9e.default-1509041237755 [2018-12-06]
  96. FF Homepage: Mozilla\Firefox\Profiles\jbx0ui9e.default-1509041237755 -> onet.pl
  97. FF Extension: (uBlock Origin) - C:\Users\Druszczenko\AppData\Roaming\Mozilla\Firefox\Profiles\jbx0ui9e.default-1509041237755\Extensions\uBlock0@raymondhill.net.xpi [2018-12-06]
  98. FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-10-24] (Microsoft Corporation)
  99. FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-10-24] (Microsoft Corporation)
  100. FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
  101.  
  102. ==================== Usługi (filtrowane) ====================
  103.  
  104. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  105.  
  106. R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [325600 2016-08-26] (Windows (R) Win 7 DDK provider)
  107. R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9646240 2018-11-20] (Microsoft Corporation)
  108. S3 DevActSvc; C:\Program Files (x86)\ASUS\ASUS Device Activation\DevActSvc.exe [326032 2018-06-05] ()
  109. R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2215168 2016-11-01] (Intel Corporation)
  110. R2 FBAgent; C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\FBAgent.exe [73032 2014-08-13] ()
  111. S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-26] (Intel(R) Corporation)
  112. R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-09-14] (Intel Corporation)
  113. S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\10.1.0.5644\wtoolex\wpsupdatesvr.exe [133376 2016-11-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
  114. R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
  115. R2 Tran_Process_Proc; C:\Program Files (x86)\FarStone\TotalRecovery Pro\EFB\DCNTranProc.exe [71024 2014-03-25] ()
  116. R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\NisSrv.exe [3917016 2018-10-25] (Microsoft Corporation)
  117. R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MsMpEng.exe [114208 2018-10-25] (Microsoft Corporation)
  118. S3 wpscloudsvr; C:\Program Files (x86)\Kingsoft\WPS Office\wpscloudsvr.exe [162048 2016-11-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
  119.  
  120. ===================== Sterowniki (filtrowane) ======================
  121.  
  122. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  123.  
  124. R3 AsusHFilter; C:\WINDOWS\System32\drivers\AsusHFilter.sys [30200 2016-12-22] ()
  125. R3 AsusPTPDrv; C:\WINDOWS\System32\drivers\AsusPTPFilter.sys [99320 2016-10-11] (ASUS Corporation)
  126. R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4320176 2016-11-27] (Qualcomm Atheros Communications, Inc.)
  127. R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [66616 2016-11-01] (Intel Corporation)
  128. R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [350272 2016-11-01] (Intel Corporation)
  129. S3 farmntio; C:\Windows\system32\drivers\farmntio.sys [25144 2014-03-25] () [Brak podpisu cyfrowego]
  130. R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-08-22] (Realtek )
  131. S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
  132. S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46184 2018-10-25] (Microsoft Corporation)
  133. R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [328696 2018-10-25] (Microsoft Corporation)
  134. R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60408 2018-10-25] (Microsoft Corporation)
  135.  
  136. ==================== NetSvcs (filtrowane) ===================
  137.  
  138. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  139.  
  140.  
  141. ==================== Jeden miesiąc - utworzone pliki i foldery ========
  142.  
  143. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  144.  
  145. 2018-12-06 18:30 - 2018-12-06 18:36 - 000012172 _____ C:\Users\Druszczenko\Downloads\FRST.txt
  146. 2018-12-06 18:28 - 2018-12-06 18:30 - 000000000 ____D C:\FRST
  147. 2018-12-06 18:25 - 2018-12-06 18:25 - 000000790 _____ C:\Users\Druszczenko\Desktop\Pobrane — skrót.lnk
  148. 2018-12-06 18:24 - 2018-12-06 18:24 - 000000000 ____D C:\Users\Druszczenko\Desktop\ccleaner
  149. 2018-12-06 18:19 - 2018-12-06 18:19 - 000000721 _____ C:\Users\Druszczenko\Desktop\Asystent aktualizacji do systemu Windows 10.lnk
  150. 2018-12-06 18:14 - 2018-12-06 18:14 - 002417152 _____ (Farbar) C:\Users\Druszczenko\Downloads\FRST64.exe
  151. 2018-12-06 18:10 - 2018-12-06 18:10 - 000004608 ___RH C:\farstone_pe.letter
  152. 2018-12-06 18:04 - 2018-12-06 18:05 - 000000000 ____D C:\AdwCleaner
  153. 2018-12-06 18:03 - 2018-12-06 18:03 - 007321808 _____ (Malwarebytes) C:\Users\Druszczenko\Downloads\AdwCleaner.exe
  154. 2018-12-06 18:03 - 2018-12-06 18:03 - 007321808 _____ (Malwarebytes) C:\Users\Druszczenko\Downloads\AdwCleaner(1).exe
  155. 2018-12-06 16:45 - 2018-05-03 08:16 - 000278960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Notifier.exe
  156. 2018-12-06 16:43 - 2018-07-18 00:55 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
  157. 2018-12-06 16:43 - 2018-07-18 00:53 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
  158. 2018-12-06 16:43 - 2018-07-18 00:53 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
  159. 2018-12-06 16:43 - 2018-07-18 00:52 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
  160. 2018-12-06 16:43 - 2018-07-18 00:47 - 002449920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
  161. 2018-12-06 16:43 - 2018-07-18 00:47 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
  162. 2018-12-06 16:43 - 2018-07-13 05:19 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
  163. 2018-12-06 16:43 - 2018-07-13 05:08 - 000788480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
  164. 2018-12-06 16:43 - 2018-06-12 02:20 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
  165. 2018-12-06 16:43 - 2018-06-08 06:34 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
  166. 2018-12-06 16:43 - 2018-06-08 06:33 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
  167. 2018-12-06 16:43 - 2018-06-08 06:32 - 001078272 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
  168. 2018-12-06 16:43 - 2018-06-08 06:31 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
  169. 2018-12-06 16:43 - 2018-06-08 06:30 - 000693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
  170. 2018-12-06 16:43 - 2018-06-08 06:29 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
  171. 2018-12-06 16:43 - 2018-06-08 06:25 - 001161728 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
  172. 2018-12-06 16:43 - 2018-06-08 06:20 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
  173. 2018-12-06 16:43 - 2018-06-08 06:17 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
  174. 2018-12-06 16:43 - 2018-03-05 02:56 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
  175. 2018-12-06 16:43 - 2018-03-05 02:56 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
  176. 2018-12-06 16:43 - 2018-03-05 02:55 - 000207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
  177. 2018-12-06 16:43 - 2018-03-05 02:53 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
  178. 2018-12-06 16:43 - 2018-03-02 07:43 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
  179. 2018-12-06 16:43 - 2018-02-12 23:58 - 000026464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
  180. 2018-12-06 16:43 - 2018-02-12 23:17 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
  181. 2018-12-06 16:43 - 2018-02-12 23:10 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
  182. 2018-12-06 06:59 - 2018-12-06 06:59 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-345879739-3670273313-2407084088-1001
  183. 2018-12-06 00:58 - 2018-12-06 00:58 - 000000000 ____D C:\Users\Druszczenko\AppData\Local\ESET
  184. 2018-12-06 00:57 - 2018-12-06 00:57 - 006989432 _____ (ESET spol. s r.o.) C:\Users\Druszczenko\Downloads\esetonlinescanner_plk.exe
  185. 2018-12-06 00:57 - 2018-12-06 00:57 - 006989432 _____ (ESET spol. s r.o.) C:\Users\Druszczenko\Downloads\esetonlinescanner_plk(1).exe
  186. 2018-12-06 00:05 - 2018-11-28 17:11 - 000000010 _____ C:\Users\Druszczenko\Desktop\portable.dat
  187.  
  188. ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
  189.  
  190. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  191.  
  192. 2018-12-06 18:28 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
  193. 2018-12-06 18:27 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
  194. 2018-12-06 18:21 - 2017-08-08 17:00 - 000000000 ____D C:\Windows10Upgrade
  195. 2018-12-06 18:19 - 2018-04-29 20:18 - 000000733 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Asystent aktualizacji do systemu Windows 10.lnk
  196. 2018-12-06 18:17 - 2017-08-08 21:26 - 002415624 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  197. 2018-12-06 18:17 - 2017-03-20 04:59 - 001103312 _____ C:\WINDOWS\system32\perfh015.dat
  198. 2018-12-06 18:17 - 2017-03-20 04:59 - 000242100 _____ C:\WINDOWS\system32\perfc015.dat
  199. 2018-12-06 18:15 - 2017-08-08 16:59 - 000000200 _____ C:\Users\Druszczenko\AppData\Roaming\sp_data.sys
  200. 2018-12-06 18:12 - 2017-08-08 23:57 - 000000000 ____D C:\Users\Druszczenko\AppData\LocalLow\Mozilla
  201. 2018-12-06 18:11 - 2017-08-08 16:56 - 000000000 __SHD C:\Users\Druszczenko\IntelGraphicsProfiles
  202. 2018-12-06 18:10 - 2017-08-08 20:44 - 000409360 _____ C:\WINDOWS\system32\FNTCACHE.DAT
  203. 2018-12-06 18:10 - 2017-04-17 11:29 - 000000000 ____D C:\ProgramData\McAfee
  204. 2018-12-06 18:09 - 2018-09-30 12:14 - 000000000 ____D C:\ProgramData\2AB1E294
  205. 2018-12-06 18:09 - 2017-08-08 23:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
  206. 2018-12-06 18:09 - 2017-08-08 21:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
  207. 2018-12-06 18:07 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
  208. 2018-12-06 18:07 - 2017-03-18 12:40 - 001048576 _____ C:\WINDOWS\system32\config\BBI
  209. 2018-12-06 18:06 - 2018-02-26 18:22 - 000000000 ____D C:\Program Files\rempl
  210. 2018-12-06 17:58 - 2017-08-13 13:58 - 000000000 ____D C:\WINDOWS\system32\MRT
  211. 2018-12-06 17:58 - 2017-08-13 13:57 - 137810048 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
  212. 2018-12-06 17:48 - 2017-08-08 20:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
  213. 2018-12-06 17:02 - 2018-04-29 20:24 - 000003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
  214. 2018-12-06 17:02 - 2017-08-08 21:30 - 000003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
  215. 2018-12-06 16:19 - 2018-06-06 20:24 - 000004236 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{F8542147-BF3D-4C95-9448-4DA8BF23D116}
  216. 2018-12-06 00:54 - 2017-08-08 23:53 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
  217. 2018-12-06 00:54 - 2017-08-08 23:51 - 000000000 ____D C:\Program Files\Mozilla Firefox
  218. 2018-12-06 00:20 - 2017-03-18 22:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
  219. 2018-12-06 00:18 - 2017-03-18 22:03 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
  220. 2018-12-06 00:17 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
  221. 2018-12-06 00:16 - 2017-04-17 11:37 - 000000000 ____D C:\Program Files\Microsoft Office
  222. 2018-12-06 00:10 - 2017-11-17 20:22 - 000002427 _____ C:\Users\Druszczenko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
  223. 2018-12-06 00:10 - 2017-08-08 21:30 - 000003388 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-345879739-3670273313-2407084088-1001
  224. 2018-12-06 00:10 - 2017-08-08 17:04 - 000000000 ___RD C:\Users\Druszczenko\OneDrive
  225. 2018-12-06 00:07 - 2017-08-08 17:32 - 000000000 ___DC C:\WINDOWS\Panther
  226. 2018-12-06 00:06 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
  227. 2018-12-06 00:03 - 2018-02-28 18:54 - 000592416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
  228. 2018-12-05 23:58 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\NDF
  229. 2018-11-15 18:48 - 2017-09-26 17:22 - 000000000 ____D C:\Users\Druszczenko\AppData\Roaming\foobar2000
  230.  
  231. ==================== Pliki w katalogu głównym wybranych folderów =======
  232.  
  233. 2017-08-08 16:59 - 2018-12-06 18:15 - 000000200 _____ () C:\Users\Druszczenko\AppData\Roaming\sp_data.sys
  234.  
  235. Niektóre pliki w TEMP:
  236. ====================
  237. 2018-12-06 01:01 - 2017-08-09 13:12 - 001277584 _____ (McAfee, Inc.) C:\Users\Druszczenko\AppData\Local\Temp\0236181544054516mcinst.exe
  238.  
  239. ==================== Bamital & volsnap ======================
  240.  
  241. (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
  242.  
  243. C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
  244. C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo
  245. C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
  246. C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo
  247. C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
  248. C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo
  249. C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
  250. C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
  251. C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo
  252. C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
  253. C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo
  254. C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
  255. C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
  256. C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
  257. C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
  258.  
  259. LastRegBack: 2018-10-24 20:02
  260.  
  261. ==================== Koniec FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!