Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14-08-2019 Uruchomiony przez Jaro (administrator) KOMPJARO (Kiano Kiano Elegance 14.2) (22-08-2019 14:17:23) Uruchomiony z C:\Users\Jaro\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads Załadowane profile: Jaro (Dostępne profile: Jaro & Administrator) Platform: Windows 10 Pro Wersja 1803 17134.915 (X64) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKU\S-1-5-21-419808145-1333804198-1164173002-1001\...\Run: [Spotify] => C:\Users\Jaro\AppData\Roaming\Spotify\Spotify.exe [25972968 2019-01-26] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-419808145-1333804198-1164173002-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [23153344 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-419808145-1333804198-1164173002-1001\...\Run: [Chromium] => "c:\users\jaro\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session HKLM\Software\...\Authentication\Credential Providers: [{27FBDB57-B613-4AF2-9D7E-4FA7A66C21AD}] -> %systemroot%\system32\TrustedSignalCredProv.dll Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0A143BDA-FF0A-4460-85CA-DB497A96056C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {1D19CF91-A8B0-43DF-ABEA-FC2205C691C7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2243B915-96B6-4AB8-B94F-5356056E9E48} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_Plugin.exe [1457208 2019-08-14] (Adobe Inc. -> Adobe) Task: {29D2FFA5-47FE-4B97-853E-10DB8D46122A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {29F92DDB-6CFD-414A-8385-8BFB1B394598} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Jaro\Downloads\esetonlinescanner_plk.exe [8170808 2019-08-22] (ESET, spol. s r.o. -> ESET spol. s r.o.) Task: {364807E3-F39B-4A3A-AF58-4643C1BF0293} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4865FBE5-8169-46DE-B3DC-E0C5BE727106} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-24] (Google Inc -> Google Inc.) Task: {60B2ED84-A60A-47C7-A765-9CE7B784C51A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {6FE72531-58D3-418C-8C78-E93BBCDB3C8B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-24] (Google Inc -> Google Inc.) Task: {B2531D0A-11A9-4B10-B9AA-6482FBF2308D} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe Task: {DA39058D-B286-4C3B-B8D6-4BC0BAF0BABC} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Jaro\Downloads\esetonlinescanner_plk.exe [8170808 2019-08-22] (ESET, spol. s r.o. -> ESET spol. s r.o.) Task: {DC33105B-3046-40E3-8CE1-DC9B7961A1E5} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-08-14] (Adobe Inc. -> Adobe) Task: {DEF9A8F6-2568-4538-8372-649053CDFFF4} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-419808145-1333804198-1164173002-1006 => C:\Users\Jaro\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {F16C6E9C-43B8-452C-9D0B-867AF75DF594} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-08-19] (AVAST Software s.r.o. -> AVAST Software) Task: {F9EB0A50-7BF6-4383-A215-1B59BE1B1AC7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{26e35ebb-98bd-4977-a952-715919792363}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-419808145-1333804198-1164173002-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.web-pl.com/ SearchScopes: HKU\S-1-5-21-419808145-1333804198-1164173002-1001 -> DefaultScope {A7B030C1-8701-401F-A67B-52F157F8CAF9} URL = hxxp://www.web-pl.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-419808145-1333804198-1164173002-1001 -> {A7B030C1-8701-401F-A67B-52F157F8CAF9} URL = hxxp://www.web-pl.com/search?q={searchTerms} Edge: ====== Edge HomeButtonPage: HKU\S-1-5-21-419808145-1333804198-1164173002-1001 -> hxxp://www.web-pl.com/ FireFox: ======== FF DefaultProfile: zsic43ci.default FF ProfilePath: C:\Users\Jaro\AppData\Roaming\Mozilla\Firefox\Profiles\zsic43ci.default [2019-08-22] FF Homepage: Mozilla\Firefox\Profiles\zsic43ci.default -> www.google.pl FF Extension: (Użyj Google Translate) - C:\Users\Jaro\AppData\Roaming\Mozilla\Firefox\Profiles\zsic43ci.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2019-07-15] FF Extension: (Google Translator for Firefox) - C:\Users\Jaro\AppData\Roaming\Mozilla\Firefox\Profiles\zsic43ci.default\Extensions\translator@zoli.bod.xpi [2019-07-15] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_238.dll [2019-08-14] (Adobe Inc. -> ) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_238.dll [2019-08-14] (Adobe Inc. -> ) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) Chrome: ======= CHR HomePage: Default -> hxxps://www.komputgood%20morning%2C%20you%20do%20not%20speak%20at%20allronik.pl/ CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxps://www.google.pl/","hxxp://www.web-pl.com/" CHR Profile: C:\Users\Jaro\AppData\Local\Google\Chrome\User Data\Default [2019-08-20] CHR Extension: (Tłumacz Google) - C:\Users\Jaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2018-11-24] CHR Extension: (Dysk Google) - C:\Users\Jaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-24] CHR Extension: (YouTube) - C:\Users\Jaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-24] CHR Extension: (pro grey) - C:\Users\Jaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\enhpebdanojkmhbbneclbkmpleemilaj [2019-08-18] CHR Extension: (AdBlock) - C:\Users\Jaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-08-15] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Jaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-24] CHR Extension: (Gmail) - C:\Users\Jaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30] CHR Extension: (Chrome Media Router) - C:\Users\Jaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-10] CHR Extension: (Rozszerzenie Sprawdzanie hasła) - C:\Users\Jaro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pncabnpcffmalkkjpajodfhijclecjno [2019-08-15] ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S4 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1714320 2017-11-30] (Intel Corporation -> Intel Corporation) S4 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [281736 2018-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5074120 2019-07-09] (Microsoft Windows Publisher -> Microsoft Corporation) S4 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [970240 2018-05-20] (Microsoft Windows -> ) S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [285696 2019-02-16] (Microsoft Windows -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [72584 2017-01-12] (Intel Corporation -> Intel Corporation) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [78808 2017-11-30] (Intel Corporation -> Intel Corporation) R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [392160 2017-11-30] (Intel Corporation -> Intel Corporation) R3 HidEventFilter; C:\WINDOWS\System32\drivers\HidEventFilter.sys [54816 2016-10-28] (Intel(R) Software -> Intel Corporation) R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [767568 2018-05-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation) R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [9860816 2019-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation ) R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [430720 2018-06-01] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [344288 2019-07-26] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-26] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-08-22 14:16 - 2019-08-22 14:17 - 000000000 ____D C:\FRST 2019-08-22 12:03 - 2019-08-22 12:04 - 008170808 _____ (ESET spol. s r.o.) C:\Users\Jaro\Downloads\ESETOnlineScanner_PLK(1).exe 2019-08-22 12:03 - 2019-08-22 12:03 - 008170808 _____ (ESET spol. s r.o.) C:\Users\Jaro\Downloads\ESETOnlineScanner_PLK.exe 2019-08-22 12:02 - 2019-08-22 12:03 - 000000000 ____D C:\Users\Jaro\AppData\Local\FSDART 2019-08-22 12:02 - 2019-08-22 12:02 - 009603600 _____ (F-Secure Corporation) C:\Users\Jaro\Downloads\F-SecureOnlineScanner.exe 2019-08-22 11:29 - 2019-08-22 11:29 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2019-08-22 10:52 - 2019-08-22 10:52 - 000000000 ____D C:\Users\Jaro\AppData\Local\Microsoft_Corporation 2019-08-22 09:21 - 2019-08-22 09:21 - 000000000 ____D C:\$Windows.~BT 2019-08-22 09:20 - 2019-08-22 09:20 - 000000000 ___HD C:\$SysReset 2019-08-22 08:54 - 2019-08-22 08:54 - 013811300 _____ C:\Users\Jaro\Downloads\windows10.0-kb4497398-x64_0a99e08d23ecba053cf6a699442e6536af020e66 (1).msu 2019-08-22 08:28 - 2019-08-22 08:28 - 019256968 _____ (Microsoft Corporation) C:\Users\Jaro\Downloads\MediaCreationTool1903(1).exe 2019-08-21 17:35 - 2019-08-21 17:35 - 006254480 _____ (Microsoft Corporation) C:\Users\Jaro\Downloads\Windows10Upgrade9252(1).exe 2019-08-21 15:44 - 2019-08-21 15:47 - 026073136 _____ ( ) C:\Users\Jaro\Downloads\DLLSuite_Setup.exe 2019-08-21 15:16 - 2019-08-21 17:50 - 000000000 ____D C:\ProgramData\mks_vir 2019-08-21 15:15 - 2019-08-21 15:16 - 031222152 _____ (mks_vir) C:\Users\Jaro\Downloads\mks_vir_online.exe 2019-08-21 15:11 - 2019-08-21 15:11 - 006254480 _____ (Microsoft Corporation) C:\Users\Jaro\Downloads\Windows10Upgrade9252.exe 2019-08-21 15:06 - 2019-08-21 15:06 - 000000000 _____ C:\Users\Administrator\sfc 2019-08-21 14:50 - 2019-08-21 14:56 - 000000000 ____D C:\Users\Administrator\AppData\Local\CrashDumps 2019-08-21 14:50 - 2019-08-21 14:50 - 000000000 ____D C:\Users\Administrator\AppData\Local\DBG 2019-08-21 14:48 - 2019-08-21 14:48 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2019-08-21 14:48 - 2019-08-21 14:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2019-08-21 14:38 - 2019-08-21 14:38 - 000000000 ____D C:\Users\Administrator\AppData\Local\PeerDistRepub 2019-08-21 13:26 - 2019-08-21 13:29 - 000000000 ____D C:\Users\Administrator\AppData\Local\Comms 2019-08-21 13:25 - 2019-08-21 14:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\PlaceholderTileLogoFolder 2019-08-21 13:22 - 2019-08-21 13:22 - 000001417 _____ C:\Users\Administrator\Desktop\Microsoft Edge.lnk 2019-08-21 13:22 - 2019-08-21 13:22 - 000000000 ___HD C:\Users\Administrator\MicrosoftEdgeBackups 2019-08-21 13:22 - 2019-08-21 13:22 - 000000000 ____D C:\Users\Administrator\AppData\Local\MicrosoftEdge 2019-08-21 13:21 - 2019-08-21 15:06 - 000000000 ____D C:\Users\Administrator 2019-08-21 13:21 - 2019-08-21 14:43 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles 2019-08-21 13:21 - 2019-08-21 14:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages 2019-08-21 13:21 - 2019-08-21 14:13 - 000000000 ____D C:\Users\Administrator\AppData\Local\Publishers 2019-08-21 13:21 - 2019-08-21 13:21 - 000000020 ___SH C:\Users\Administrator\ntuser.ini 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\Ustawienia lokalne 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\Szablony 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\Moje dokumenty 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\Menu Start 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\Documents\Moje wideo 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\Documents\Moje obrazy 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\Documents\Moja muzyka 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\Dane aplikacji 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Tymczasowe pliki internetowe 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Historia 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 _SHDL C:\Users\Administrator\AppData\Local\Dane aplikacji 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 ___RD C:\Users\Administrator\3D Objects 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe 2019-08-21 13:21 - 2019-08-21 13:21 - 000000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform 2019-08-21 13:07 - 2019-08-21 13:07 - 005022920 _____ (Dll-Files.com ) C:\Users\Jaro\Downloads\dffsetup.exe 2019-08-21 13:01 - 2019-08-21 13:01 - 003802280 _____ (Solvusoft ) C:\Users\Jaro\Downloads\Setup_RocketPC_2019.exe 2019-08-21 12:57 - 2019-08-21 12:57 - 019256968 _____ (Microsoft Corporation) C:\Users\Jaro\Downloads\MediaCreationTool1903.exe 2019-08-21 11:08 - 2019-08-21 11:08 - 005912576 _____ C:\Users\Jaro\Downloads\sawbuck-0.6.8.0-release.msi 2019-08-21 11:04 - 2019-08-21 11:06 - 084619736 _____ (GitHub, Inc.) C:\Users\Jaro\Downloads\GitHubDesktopSetup.exe 2019-08-21 10:55 - 2019-08-21 10:55 - 058016000 _____ (Google LLC) C:\Users\Jaro\Downloads\ChromeStandaloneSetup64.exe 2019-08-21 09:31 - 2019-08-21 09:31 - 000876568 _____ (Microsoft Corporation) C:\Users\Jaro\Downloads\mssstool64(1).exe 2019-08-21 09:23 - 2019-08-21 09:23 - 000876568 _____ (Microsoft Corporation) C:\Users\Jaro\Downloads\mssstool64.exe 2019-08-21 09:16 - 2019-08-21 09:16 - 015216471 _____ C:\Users\Jaro\Downloads\windows10.0-kb4500109-x64_b727d70aacc30ac3522c02b285164d908e818ad6 (1).msu 2019-08-21 09:14 - 2019-08-21 09:14 - 015216471 _____ C:\Users\Jaro\Downloads\windows10.0-kb4500109-x64_b727d70aacc30ac3522c02b285164d908e818ad6.msu 2019-08-21 09:03 - 2019-08-21 09:03 - 017311590 _____ C:\Users\Jaro\Downloads\windows10.0-kb4497398-arm64_3169565fc28e3ebdc2a7fac676d1a1d33c78f929.msu 2019-08-21 09:01 - 2019-08-21 09:01 - 013811300 _____ C:\Users\Jaro\Downloads\windows10.0-kb4497398-x64_0a99e08d23ecba053cf6a699442e6536af020e66.msu 2019-08-21 08:39 - 2019-08-21 08:40 - 001151544 _____ (Google LLC) C:\Users\Jaro\Downloads\ChromeSetup.exe 2019-08-20 19:36 - 2019-08-20 20:02 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2019-08-20 19:34 - 2019-08-20 19:34 - 000000000 ____D C:\WINDOWS\pss 2019-08-20 15:38 - 2019-08-22 07:32 - 000000000 ____D C:\Users\Jaro\AppData\Local\Mozilla Firefox 2019-08-15 09:53 - 2019-08-18 20:57 - 000000000 __SHD C:\found.000 2019-08-15 08:54 - 2019-08-15 08:54 - 000000080 ___SH C:\bootTel.dat 2019-08-13 22:28 - 2019-03-28 11:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll 2019-08-13 22:28 - 2019-03-28 11:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll 2019-08-13 22:28 - 2019-03-28 11:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll 2019-08-13 22:28 - 2019-03-28 11:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll 2019-08-13 22:28 - 2019-03-28 08:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll 2019-08-13 22:28 - 2019-03-28 08:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll 2019-08-13 22:28 - 2019-03-28 08:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll 2019-08-13 22:28 - 2019-03-28 08:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll 2019-08-13 22:28 - 2019-03-28 08:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll 2019-08-13 22:27 - 2019-03-28 08:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll 2019-08-02 21:41 - 2019-08-03 09:56 - 000001908 _____ C:\WINDOWS\diagwrn.xml 2019-08-02 21:41 - 2019-08-03 09:56 - 000001908 _____ C:\WINDOWS\diagerr.xml 2019-08-02 21:36 - 2019-08-03 08:02 - 000000036 _____ C:\WINDOWS\progress.ini 2019-08-02 21:27 - 2019-08-20 14:51 - 000000000 ____D C:\Windows10Upgrade 2019-08-02 21:27 - 2019-08-03 07:54 - 000000000 ___HD C:\$GetCurrent 2019-07-26 10:26 - 2019-07-26 10:26 - 000000000 ____D C:\Users\Jaro\AppData\Roaming\WinRAR 2019-07-26 10:25 - 2019-08-21 14:48 - 000000000 ____D C:\Program Files\WinRAR 2019-07-25 14:25 - 2019-07-25 14:25 - 000003794 _____ C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onLogOn 2019-07-25 14:25 - 2019-07-25 14:25 - 000003352 _____ C:\WINDOWS\System32\Tasks\EOSv3 Scheduler onTime 2019-07-25 13:29 - 2019-07-25 13:29 - 000000000 ____D C:\WINDOWS\system32\appmgmt 2019-07-25 12:56 - 2019-07-25 12:56 - 000000000 ____D C:\Users\Jaro\AppData\Local\ESET ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-08-22 14:02 - 2018-11-01 17:09 - 000000000 ____D C:\Users\Jaro\AppData\LocalLow\Mozilla 2019-08-22 11:35 - 2018-11-24 17:37 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-08-22 11:29 - 2018-11-24 17:35 - 000000000 ____D C:\WINDOWS\INF 2019-08-22 10:56 - 2018-11-24 18:06 - 000004330 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-08-22 10:56 - 2018-11-24 17:44 - 001786900 _____ C:\WINDOWS\system32\perfh015.dat 2019-08-22 10:56 - 2018-11-24 17:44 - 000454032 _____ C:\WINDOWS\system32\perfc015.dat 2019-08-22 10:49 - 2018-11-24 18:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-08-22 10:48 - 2018-11-24 17:27 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2019-08-22 10:41 - 2018-11-24 17:28 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-08-22 09:15 - 2019-01-16 22:03 - 000000000 ____D C:\Users\Jaro\AppData\Local\CrashDumps 2019-08-22 07:19 - 2018-10-19 18:57 - 000000000 __SHD C:\Users\Jaro\IntelGraphicsProfiles 2019-08-21 19:21 - 2018-11-24 17:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-08-21 17:14 - 2019-01-10 22:33 - 000000000 ____D C:\WINDOWS\Minidump 2019-08-21 17:03 - 2018-11-24 17:37 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-08-21 15:33 - 2018-11-24 17:37 - 000000000 ____D C:\WINDOWS\registration 2019-08-21 14:11 - 2018-11-24 18:19 - 000000000 ____D C:\ProgramData\Packages 2019-08-21 14:11 - 2018-11-24 17:37 - 000000000 ___HD C:\Program Files\WindowsApps 2019-08-21 13:38 - 2018-11-24 17:27 - 000000000 ____D C:\WINDOWS\Panther 2019-08-21 13:21 - 2018-10-20 02:35 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-08-21 13:17 - 2018-11-24 18:01 - 000000000 ____D C:\Users\Jaro\AppData\Local\Packages 2019-08-21 11:40 - 2018-11-24 18:01 - 000000000 ____D C:\Users\Jaro\AppData\Local\ConnectedDevicesPlatform 2019-08-21 08:38 - 2018-11-25 12:41 - 000000000 ____D C:\Program Files\rempl 2019-08-20 20:00 - 2019-06-02 09:20 - 000000335 _____ C:\Users\Jaro\Desktop\computer.lnk 2019-08-20 18:45 - 2018-11-24 17:53 - 000000000 ____D C:\WINDOWS\InfusedApps 2019-08-20 17:51 - 2018-11-24 17:58 - 000000000 ____D C:\Users\Jaro 2019-08-20 15:42 - 2018-11-24 18:06 - 000000000 ____D C:\Program Files (x86)\Google 2019-08-15 08:32 - 2018-11-24 17:37 - 000000000 ____D C:\WINDOWS\system32\NDF 2019-08-14 08:27 - 2019-07-15 14:04 - 000004630 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier 2019-08-14 08:27 - 2019-07-15 14:03 - 000000000 ____D C:\Users\Jaro\AppData\Local\Adobe 2019-08-14 08:27 - 2018-11-24 17:37 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2019-08-14 08:27 - 2018-11-24 17:37 - 000000000 ____D C:\WINDOWS\system32\Macromed 2019-08-13 22:27 - 2018-11-25 12:33 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-08-13 22:24 - 2018-11-25 12:33 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-08-04 11:26 - 2019-01-06 13:15 - 000000000 ____D C:\Users\Jaro\AppData\Local\ElevatedDiagnostics 2019-08-02 23:29 - 2018-11-24 17:37 - 000000000 ____D C:\WINDOWS\system32\oobe 2019-08-02 22:15 - 2018-11-24 17:27 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2019-07-26 09:26 - 2018-11-24 18:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2019-07-25 13:29 - 2018-11-24 18:06 - 000000000 ____D C:\Users\Jaro\AppData\Local\Google 2019-07-25 13:10 - 2019-05-18 10:10 - 000000000 ____D C:\Users\Jaro\AppData\Local\WallpaperHd 2019-07-24 17:13 - 2019-05-18 10:12 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update 2019-07-24 08:23 - 2018-11-24 17:56 - 000000000 ____D C:\ProgramData\Realtek ==================== Pliki w katalogu głównym wybranych folderów ================ 2019-02-05 12:36 - 2019-02-05 12:36 - 000007616 _____ () C:\Users\Jaro\AppData\Local\Resmon.ResmonCfg ==================== SigCheck =============================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) UWAGA: ==> Nie można uzyskać dostępu do BCD. -> 'C:\WINDOWS\system32\bcdedit.exe' is not recognized as an internal or external command, operable program or batch file. ==================== Koniec FRST.txt ============================