FRST.txt

Bardzo powolne działanie laptopa

Tak to wygląda:


Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 23-11-2017
Uruchomiony przez Bernadeta (administrator) BERNADETA (23-11-2017 20:31:51)
Uruchomiony z C:\Users\Bernadeta\Downloads
Załadowane profile: Bernadeta (Dostępne profile: Bernadeta)
Platform: Windows 10 Home Wersja 1511 10586.873 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Edge)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Lenovo) C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Lenovo) C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
() C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
() C:\Program Files\Lenovo PhoneCompanion\adb.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
() C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Updates\LU.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
() C:\Program Files\Lenovo\iMController\LegacyFeatures.exe

==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

" Path " (C:\Program Files (x86)\Lenovo\FusionEngine;C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin;C:\Program Files (x86)\Skype\Phone\ - & gt; C:\Program Files (x86)\Lenovo\FusionEngine;C:\Program Files (x86)\Intel\TXE Components\TCS\;C:\Program Files\Intel\TXE Components\TCS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SystemRoot%\System32\WindowsPowerShell\v1.0;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin;C:\Program Files (x86)\Skype\Phone\) & lt; ==== Repaired successfully
HKLM\...\Run: [RtsFT] = & gt; C:\Windows\RTFTrack.exe [5060864 2015-06-16] (Realtek semiconductor)
HKLM\...\Run: [cAudioFilterAgent] = & gt; C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-04] (Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] = & gt; C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] = & gt; C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [PhoneCompanion] = & gt; C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [836592 2015-01-06] (Lenovo)
HKLM\...\Run: [Energy Manager] = & gt; C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2015-01-06] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] = & gt; C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10841584 2015-01-06] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] = & gt; C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945672 2015-07-27] (Synaptics Incorporated)
HKLM\...\Run: [AvgUi] = & gt; C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-10-31] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] = & gt; C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [302744 2017-10-22] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] = & gt; C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] = & gt; C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [AvgUi] = & gt; C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-10-31] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] = & gt; C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-10-31] (AVG Technologies CZ, s.r.o.)
HKLM\...\Policies\Explorer\Run: [BtvStack] = & gt; C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-3799993751-3803681585-1394063601-1001\...\Run: [CCleaner Monitoring] = & gt; C:\Program Files\CCleaner\CCleaner64.exe [10024624 2017-11-08] (Piriform Ltd)
HKU\S-1-5-21-3799993751-3803681585-1394063601-1001\...\RunOnce: [Uninstall C:\Users\Bernadeta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] = & gt; C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q " C:\Users\Bernadeta\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64 "
HKU\S-1-5-21-3799993751-3803681585-1394063601-1001\...\RunOnce: [Uninstall C:\Users\Bernadeta\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] = & gt; C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q " C:\Users\Bernadeta\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64 "
HKU\S-1-5-21-3799993751-3803681585-1394063601-1001\...\RunOnce: [Uninstall C:\Users\Bernadeta\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] = & gt; C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q " C:\Users\Bernadeta\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64 "
HKU\S-1-5-21-3799993751-3803681585-1394063601-1001\...\RunOnce: [Uninstall 17.3.7073.1013_1\amd64] = & gt; C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q " C:\Users\Bernadeta\AppData\Local\Microsoft\OneDrive\17.3.7073.1013_1\amd64 "
HKU\S-1-5-21-3799993751-3803681585-1394063601-1001\...\RunOnce: [Uninstall 17.3.7073.1013_1] = & gt; C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q " C:\Users\Bernadeta\AppData\Local\Microsoft\OneDrive\17.3.7073.1013_1 "

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a19f783e-7b54-4d22-ba02-469687e2a31a}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d9fe33eb-1345-4020-bb61-9b7e8c18a965}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================

FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default [2017-11-23]
CHR Extension: (Dokumenty Google) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-13]
CHR Extension: (Dysk Google) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-04]
CHR Extension: (Google Search) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Arkusze Google) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-13]
CHR Extension: (McAfee(R) WebAdvisor) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2017-03-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-19]
CHR Extension: (Water's Valley) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhpodmbdlgmgffpgbennemfkjhhaocfl [2015-10-25]
CHR Extension: (Skype) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-03-09]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-13]
CHR Extension: (Chrome Media Router) - C:\Users\Bernadeta\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-07]

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [282536 2017-10-22] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7496672 2017-10-22] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-10-31] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [729048 2017-04-11] (AVG Technologies CZ, s.r.o.)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [592880 2014-07-09] ()
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [328616 2015-09-24] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Brak podpisu cyfrowego]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-22] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-01-06] (Lenovo(beijing) Limited)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272776 2014-09-03] ()
R2 LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [37624 2014-04-21] (Lenovo(beijing) Limited)
R2 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1872808 2015-12-11] (Maxthon)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [288240 2015-01-06] (Lenovo)
S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [305136 2015-01-06] (Lenovo)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-27] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-03-28] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-10-29] (Atheros) [Brak podpisu cyfrowego]
S2 mfemms; " C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe " [X]

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4334240 2015-10-02] (Qualcomm Atheros Communications, Inc.)
R1 avgbdisk; C:\WINDOWS\system32\drivers\avgbdiska.sys [166624 2017-10-22] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\system32\drivers\avgbidsdrivera.sys [314640 2017-10-22] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\system32\drivers\avgbidsha.sys [192584 2017-10-22] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\WINDOWS\system32\drivers\avgbloga.sys [336896 2017-10-22] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\system32\drivers\avgbuniva.sys [51336 2017-10-22] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\system32\drivers\avgHwid.sys [39424 2017-10-22] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\system32\drivers\avgMonFlt.sys [140192 2017-10-22] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\system32\drivers\avgRdr2.sys [102792 2017-10-22] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\system32\drivers\avgRvrt.sys [76832 2017-10-22] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\system32\drivers\avgSnx.sys [1022288 2017-11-23] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\system32\drivers\avgSP.sys [579584 2017-10-22] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\system32\drivers\avgStm.sys [193768 2017-10-22] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\system32\drivers\avgVmm.sys [355856 2017-10-22] (AVG Technologies CZ, s.r.o.)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [80760 2015-09-23] (McAfee, Inc.)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77432 2017-11-01] ()
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [193464 2017-11-23] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [46008 2017-11-23] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-11-23] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [94144 2017-11-23] (Malwarebytes)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [29464 2013-10-10] (Intel Corporation)
S3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [415976 2015-09-23] (McAfee, Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek )
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [410880 2015-07-03] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3068160 2015-06-16] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-27] (Synaptics Incorporated)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ( " CyberLink)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2017-11-23 20:31 - 2017-11-23 20:33 - 000017296 _____ C:\Users\Bernadeta\Downloads\FRST.txt
2017-11-23 20:31 - 2017-11-23 20:31 - 000000000 ____D C:\Users\Bernadeta\Downloads\FRST-OlderVersion
2017-11-23 19:42 - 2017-11-23 19:42 - 000094144 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-11-23 19:23 - 2017-11-23 19:23 - 000000000 ____D C:\Users\Bernadeta\Doctor Web
2017-11-23 19:23 - 2017-11-23 19:23 - 000000000 ____D C:\ProgramData\Doctor Web
2017-11-23 19:21 - 2017-11-23 19:21 - 007649280 _____ C:\Program Files (x86)\GUTCD8C.tmp
2017-11-23 19:21 - 2017-11-23 19:21 - 000000000 ____D C:\Program Files (x86)\GUMCD7C.tmp
2017-11-23 19:14 - 2017-11-23 19:42 - 000046008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-11-23 19:14 - 2017-11-23 19:14 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2017-11-23 19:14 - 2017-11-23 19:14 - 000193464 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2017-11-23 19:13 - 2017-11-23 19:13 - 000001923 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-11-23 19:13 - 2017-11-23 19:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-11-23 19:13 - 2017-11-23 19:13 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-11-23 19:13 - 2017-11-23 19:13 - 000000000 ____D C:\Program Files\Malwarebytes
2017-11-23 19:13 - 2017-11-01 08:54 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-11-23 19:04 - 2017-11-23 19:11 - 000037091 _____ C:\Users\Bernadeta\Downloads\Fixlog.txt
2017-11-23 18:34 - 2017-11-23 19:03 - 000004212 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2017-11-23 18:34 - 2017-11-23 18:34 - 000002866 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-11-23 18:34 - 2017-11-23 18:34 - 000000874 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-11-23 18:34 - 2017-11-23 18:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-11-23 18:34 - 2017-11-23 18:34 - 000000000 ____D C:\Program Files\CCleaner
2017-11-23 18:30 - 2017-11-23 19:04 - 000000000 ____D C:\Users\Bernadeta\Desktop\szuty
2017-11-23 18:29 - 2017-11-23 18:49 - 000000000 ____D C:\AdwCleaner
2017-11-23 17:51 - 2017-11-23 17:51 - 000000000 ___HD C:\$AV_AVG
2017-11-23 16:50 - 2017-11-23 16:50 - 000001131 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk
2017-11-23 16:49 - 2017-11-23 20:31 - 000000000 ____D C:\FRST
2017-11-23 16:48 - 2017-11-23 20:31 - 002393088 _____ (Farbar) C:\Users\Bernadeta\Downloads\FRST64.exe

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2017-11-23 20:24 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-11-23 20:19 - 2017-09-24 14:11 - 001022288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgsnx.sys
2017-11-23 20:12 - 2015-10-30 08:11 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-23 19:39 - 2017-07-28 09:50 - 000003374 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3799993751-3803681585-1394063601-1001
2017-11-23 19:39 - 2016-04-29 10:57 - 000002474 _____ C:\Users\Bernadeta\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-11-23 19:39 - 2015-09-13 19:06 - 000000000 ___RD C:\Users\Bernadeta\OneDrive
2017-11-23 19:38 - 2016-04-28 16:01 - 000000000 ____D C:\Users\Bernadeta
2017-11-23 19:35 - 2015-09-13 18:58 - 000000000 __SHD C:\Users\Bernadeta\IntelGraphicsProfiles
2017-11-23 19:33 - 2016-02-13 18:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-23 19:31 - 2017-09-25 08:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-11-23 19:31 - 2017-09-24 14:05 - 000000955 _____ C:\Users\Public\Desktop\AVG.lnk
2017-11-23 19:24 - 2016-12-01 09:09 - 000003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-11-23 19:23 - 2015-10-30 08:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-23 19:19 - 2016-04-28 16:23 - 001845594 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-23 19:19 - 2016-02-13 18:29 - 000818302 _____ C:\WINDOWS\system32\perfh015.dat
2017-11-23 19:19 - 2016-02-13 18:29 - 000157970 _____ C:\WINDOWS\system32\perfc015.dat
2017-11-23 19:19 - 2015-10-30 08:21 - 000000000 ____D C:\WINDOWS\INF
2017-11-23 19:09 - 2015-10-30 08:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-11-23 19:08 - 2015-10-30 07:28 - 000524288 ___SH C:\WINDOWS\system32\config\BBI
2017-11-23 19:04 - 2015-09-16 05:34 - 000000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2017-11-23 19:03 - 2017-09-24 14:12 - 000004282 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2017-11-23 18:48 - 2017-04-28 10:20 - 000000000 ____D C:\WINDOWS\system32\log
2017-11-23 18:46 - 2015-01-06 07:15 - 000000000 ____D C:\Program Files (x86)\Amazon
2017-11-23 18:06 - 2015-09-13 18:58 - 000000000 ____D C:\Users\Bernadeta\AppData\Local\Packages
2017-11-23 17:53 - 2015-10-30 08:24 - 000000000 ___HD C:\Program Files\WindowsApps
2017-11-23 17:43 - 2017-09-20 10:22 - 000000000 ____D C:\Program Files\rempl
2017-11-23 16:55 - 2015-09-14 09:25 - 000000000 ____D C:\Program Files (x86)\Opera
2017-11-23 16:34 - 2015-09-13 19:12 - 000004222 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1FF87175-8932-43E1-8A47-8952235B4147}
2017-11-22 17:36 - 2016-04-28 14:54 - 000000000 ____D C:\ProgramData\MFAData
2017-11-22 17:36 - 2016-04-28 14:51 - 000000000 ____D C:\Users\Bernadeta\AppData\Local\Avg
2017-10-28 21:06 - 2016-10-01 22:20 - 000000992 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job

==================== Pliki w katalogu głównym wybranych folderów =======

2017-11-23 19:21 - 2017-11-23 19:21 - 007649280 _____ () C:\Program Files (x86)\GUTCD8C.tmp

==================== Bamital & volsnap ======================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\WINDOWS\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo

LastRegBack: 2017-02-23 20:27

==================== Koniec FRST.txt ============================


Pobierz plik - link do postu