Witam, problemem jest komputer kolegi. Chrome działa tragicznie, co chwilę otwierają się randomowe strony typu "policja" itd. Dodaję logi z FRST oraz Addition. Proszę o pomoc w powrocie do normalności.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 25-02-2017
Uruchomiony przez rafal (administrator) LENOVO-PC (25-02-2017 17:46:53)
Uruchomiony z C:\Users\rafal\Downloads
Załadowane profile: rafal (Dostępne profile: rafal)
Platform: Windows 10 Home Wersja 1607 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Edge)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
(Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Lenovo) C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
() C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(ClientConnect LTD) C:\Program Files (x86)\LenovoBrowserGuard\Main\bin\CltMngSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files\Lenovo PhoneCompanion\adb.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ClientConnect LTD) C:\Program Files (x86)\LenovoBrowserGuard\LenovoBrowserGuard\bin\cltmng.exe
(Pokki) C:\Users\rafal\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
() C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Lenovo) C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
() C:\Program Files (x86)\ZTE MF823\CheckNDISPort_df.exe
() C:\Program Files (x86)\ZTE MF823\CancelAutoPlay_df.exe
(Google Inc.) C:\Users\rafal\AppData\Local\Google\Update\GoogleUpdate.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Pokki) C:\Users\rafal\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.105.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Pokki) C:\Users\rafal\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
(Google Inc.) C:\Users\rafal\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\rafal\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\rafal\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\rafal\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\rafal\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\rafal\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\rafal\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Program Files\Lenovo\iMController\AutoUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Pokki) C:\Users\rafal\AppData\Local\SweetLabs App Platform\Engine\ServiceStartMenuIndexer.exe
() C:\Program Files\Lenovo\iMController\LegacyFeatures.exe
() C:\Program Files\Lenovo\iMController\PluginCommunication.exe
==================== Rejestr (filtrowane) ====================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [RtsFT] = & gt; C:\WINDOWS\RTFTrack.exe [5060864 2015-06-16] (Realtek semiconductor)
HKLM\...\Run: [ETDCtrl] = & gt; C:\Program Files\Elantech\ETDCtrl.exe [3743648 2015-09-12] (ELAN Microelectronics Corp.)
HKLM\...\Run: [cAudioFilterAgent] = & gt; C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-04] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] = & gt; C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] = & gt; C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [PhoneCompanion] = & gt; C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [836592 2015-01-21] (Lenovo)
HKLM\...\Run: [Energy Manager] = & gt; C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2015-01-21] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] = & gt; C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10841584 2015-01-21] (Lenovo(beijing) Limited)
HKLM\...\Run: [WindowsDefender] = & gt; C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-07] (Microsoft Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] = & gt; C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] = & gt; C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [GrooveMonitor] = & gt; C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM-x32\...\Run: [CheckNDISPortF0ac70] = & gt; C:\Program Files (x86)\ZTE MF823\CheckNDISPort_df.exe [417536 2013-03-19] ()
HKLM-x32\...\Run: [CancelAutoPlay_df] = & gt; C:\Program Files (x86)\ZTE MF823\CancelAutoPlay_df.exe [446720 2013-02-25] ()
HKLM\...\Policies\Explorer\Run: [BtvStack] = & gt; C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-2684803811-96035815-1040160515-1001\...\Run: [Google Update] = & gt; C:\Users\rafal\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-23] (Google Inc.)
HKU\S-1-5-21-2684803811-96035815-1040160515-1001\...\MountPoints2: {2a381725-d5c7-11e6-830f-364b50b7efd9} - " F:\AutoRun.exe "
AppInit_DLLs: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC64~1.DLL = & gt; C:\Program Files (x86)\LenovoBrowserGuard\LenovoBrowserGuard\bin\SPVC64Loader.dll [206152 2014-07-22] (ClientConnect LTD)
AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL = & gt; C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonExtIE64.dll [119616 2014-09-26] (Amazon Inc.)
AppInit_DLLs-x32: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC32~1.DLL = & gt; C:\Program Files (x86)\LenovoBrowserGuard\LenovoBrowserGuard\bin\SPVC32Loader.dll [173896 2014-07-22] (ClientConnect LTD)
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{0b9feba5-433f-4d95-9887-829d3c9e24a3}: [DhcpNameServer] 194.204.159.1 194.204.152.34
Tcpip\..\Interfaces\{9d2c379d-a1ca-41a1-904b-0fc175a5d386}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{b18ec053-6bde-4726-a631-0f922d7b7725}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{f9081767-ad6f-4b8b-9e6f-b6e2df69b19f}: [NameServer] 212.2.96.51,212.2.96.52
Tcpip\..\Interfaces\{f9081767-ad6f-4b8b-9e6f-b6e2df69b19f}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2684803811-96035815-1040160515-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2684803811-96035815-1040160515-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-2684803811-96035815-1040160515-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
BHO-x32: Groove GFS Browser Helper - & gt; {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - & gt; C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
FireFox:
========
FF Plugin HKU\S-1-5-21-2684803811-96035815-1040160515-1001: @tools.google.com/Google Update;version=3 - & gt; C:\Users\rafal\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-23] (Google Inc.)
FF Plugin HKU\S-1-5-21-2684803811-96035815-1040160515-1001: @tools.google.com/Google Update;version=9 - & gt; C:\Users\rafal\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-23] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\rafal\AppData\Local\Google\Chrome\User Data\Default [2017-02-25]
CHR Extension: (Dokumenty Google) - C:\Users\rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-14]
CHR Extension: (Dysk Google) - C:\Users\rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Google Search) - C:\Users\rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Potwierdź wiek) - C:\Users\rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnidnomjgpmgekkccpkngmhklphpeneg [2016-05-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Copy Link URL) - C:\Users\rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\idimebjnbdepjllaongdhgnekjobbmci [2016-12-31]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-15]
CHR Extension: (Chrome Media Router) - C:\Users\rafal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-04]
==================== Usługi (filtrowane) ====================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [592880 2014-07-09] ()
R2 CltMngSvc; C:\Program Files (x86)\LenovoBrowserGuard\Main\bin\CltMngSvc.exe [2538824 2014-07-22] (ClientConnect LTD)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [135072 2015-09-12] (ELAN Microelectronics Corp.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [328616 2015-12-22] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Brak podpisu cyfrowego]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-22] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-01-21] (Lenovo(beijing) Limited)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272776 2014-09-03] ()
R2 LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [38896 2014-02-17] (Lenovo(beijing) Limited)
R2 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1872808 2015-12-01] (Maxthon)
R2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [288240 2015-01-21] (Lenovo)
S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [305136 2015-01-21] (Lenovo)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-10-29] (Atheros) [Brak podpisu cyfrowego]
===================== Sterowniki (filtrowane) ======================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2015-12-29] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2015-12-29] (Windows (R) Win 7 DDK provider)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [29464 2013-10-10] (Intel Corporation)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [410880 2015-07-03] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3068160 2015-06-16] (Realtek Semiconductor Corp.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ( " CyberLink)
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc - utworzone pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2017-02-25 17:46 - 2017-02-25 17:48 - 00016102 _____ C:\Users\rafal\Downloads\FRST.txt
2017-02-25 17:46 - 2017-02-25 17:46 - 00000000 ____D C:\FRST
2017-02-25 17:45 - 2017-02-25 17:46 - 02423296 _____ (Farbar) C:\Users\rafal\Downloads\FRST64.exe
==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2017-02-25 17:47 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-02-25 17:46 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-25 17:42 - 2015-06-12 18:28 - 00000000 ____D C:\Users\rafal\AppData\Local\SweetLabs App Platform
2017-02-25 17:39 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-02-25 17:37 - 2015-06-12 18:29 - 00000000 __SHD C:\Users\rafal\IntelGraphicsProfiles
2017-02-22 19:42 - 2016-10-09 10:55 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-02-19 18:12 - 2016-09-14 17:53 - 00000000 ____D C:\Users\rafal\Desktop\Nowy folder
2017-02-19 18:12 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-02-13 22:42 - 2016-10-09 11:02 - 00000000 ____D C:\Users\rafal
2017-02-13 18:27 - 2016-10-09 11:32 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-02-13 15:25 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-02-11 16:36 - 2015-06-12 18:29 - 00000000 ____D C:\Users\rafal\AppData\Local\Packages
2017-02-02 21:21 - 2015-06-14 23:12 - 00002470 _____ C:\Users\rafal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-02 21:21 - 2015-06-14 23:12 - 00002462 _____ C:\Users\rafal\Desktop\Google Chrome.lnk
2017-01-26 19:22 - 2017-01-21 09:20 - 00000140 _____ C:\WINDOWS\Reimage.ini
2017-01-26 16:32 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
==================== Pliki w katalogu głównym wybranych folderów =======
2016-10-09 10:57 - 2016-10-09 10:57 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Niektóre pliki w TEMP:
====================
2016-12-05 10:03 - 2016-12-05 10:04 - 64111920 _____ (SweetLabs,Inc.) C:\Users\rafal\AppData\Local\Temp\octAEC7.tmp.exe
2017-01-21 09:20 - 2017-01-21 09:21 - 13414504 _____ (Reimage) C:\Users\rafal\AppData\Local\Temp\ReimagePackage.exe
==================== Bamital & volsnap ======================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
C:\WINDOWS\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo
LastRegBack: 2017-02-06 20:03
==================== Koniec FRST.txt ============================