Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:14-09-2015
Uruchomiony przez x (administrator)  X-KOMPUTER (15-09-2015 15:19:33)
Uruchomiony z C:\Users\x\Desktop\20150915 - OTL scan
Załadowane profile: x (Dostępne profile: x)
Platform: Windows 7 Ultimate (X64) Język: Polski (Polska)
Internet Explorer Wersja 8 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Program Files (x86)\PLAY ONLINE\PLAY ONLINE.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusService.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe


==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-29] ()
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2010-02-11] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [InstallValidator.exe.FA87EC44_C38F_4148_93A1_FF4A64A2B707] => C:\Program Files (x86)\National Instruments\Shared\NIUninstaller\InstallValidator.exe [265096 2013-06-19] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKU\S-1-5-21-4130386618-3200899232-3589253035-1000\...\Run: [Mobile Partner] => C:\Program Files (x86)\PLAY ONLINE\PLAY ONLINE.exe [514048 2013-07-03] ()
HKU\S-1-5-21-4130386618-3200899232-3589253035-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-4130386618-3200899232-3589253035-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [2899136 2015-08-19] (Valve Corporation)
ShellIconOverlayIdentifiers: [Uchwyt nakładania ikony podpisu cyfrowego] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2009-02-09] (Autodesk, Inc.)

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\Parameters: [DhcpNameServer] 217.172.224.160 89.231.1.206
Tcpip\..\Interfaces\{473DCC76-9C9D-4AB7-BA2E-AEC2F3AE141E}: [NameServer] 89.108.195.21 89.108.202.21
Tcpip\..\Interfaces\{473DCC76-9C9D-4AB7-BA2E-AEC2F3AE141E}: [DhcpNameServer] 89.108.195.21 89.108.202.21
Tcpip\..\Interfaces\{7BC5FDDD-7B66-42FF-9BFF-C5AEED5E030E}: [NameServer] 89.108.195.21 89.108.202.21
Tcpip\..\Interfaces\{B0B4BC6B-E988-4430-A9C2-79DF69F15675}: [DhcpNameServer] 217.172.224.160 89.231.1.206

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKU\S-1-5-21-4130386618-3200899232-3589253035-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12] (DivX, LLC)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-08-09] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-09] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\x\AppData\Roaming\Mozilla\Firefox\Profiles\7ep7ocb7.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-16] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll [2013-01-24] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-16] ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2011-12-13] (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-09] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-09] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll [2013-01-24] ( Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.11.2571 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll [2006-10-07] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.1739 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll [2006-10-07] (RealNetworks, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-05-11] (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\x\AppData\Roaming\Mozilla\Firefox\Profiles\7ep7ocb7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-11-24]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-11-11]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &video& - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-11-15]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]

==================== Usługi (filtrowane) ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R3 Disc Soft Lite Bus Service; C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
S3 FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [1030600 2014-10-12] (Macrovision Europe Ltd.) [Brak podpisu cyfrowego]
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Brak podpisu cyfrowego]
S2 PLAY ONLINE. RunOuc; C:\Program Files (x86)\PLAY ONLINE\UpdateDog\ouc.exe [246112 2013-07-03] ()
U2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S2 UI Assistant Service; C:\Program Files (x86)\PLAY ONLINE\AssistantServices.exe [X]

===================== Sterowniki (filtrowane) ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-08-17] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [229376 2013-07-03] (Huawei Technologies Co., Ltd.)
S2 Kmm4xNT; C:\Windows\SysWow64\Drivers\Kmm4xNT.sys [95484 2002-04-26] (DATOM Dariusz Cielebąk)
R1 VBoxUSBMon; C:\Windows\System32\DRIVERS\VBoxUSBMon.sys [127648 2015-08-12] (BigNox Corporation)
R1 XQHDrv; C:\Windows\System32\DRIVERS\XQHDrv.sys [253600 2015-08-12] (BigNox Corporation)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2015-09-15 14:47 - 2015-09-15 15:09 - 00000000 ____D C:\AdwCleaner
2015-09-15 14:46 - 2015-09-15 14:46 - 00000000 ____D C:\Users\x\Desktop\ADW Cleaner
2015-09-15 14:45 - 2015-09-15 14:46 - 01660416 _____ C:\Users\x\Downloads\adwcleaner_5.007.exe
2015-09-15 14:01 - 2015-09-15 14:01 - 00025220 _____ C:\Users\x\Downloads\Addition.txt
2015-09-15 13:41 - 2015-09-15 15:19 - 00000000 ____D C:\FRST
2015-09-15 13:41 - 2015-09-15 13:41 - 02190848 _____ (Farbar) C:\Users\x\Downloads\FRST64.exe
2015-09-15 12:46 - 2015-09-15 12:47 - 01694208 _____ (Farbar) C:\Users\x\Downloads\FRST.exe
2015-09-15 12:33 - 2015-09-15 15:18 - 00000000 ____D C:\Users\x\Desktop\20150915 - OTL scan
2015-09-15 12:29 - 2015-09-15 12:29 - 00053048 _____ C:\Users\x\Downloads\Extras.Txt
2015-09-15 12:28 - 2015-09-15 12:28 - 00089256 _____ C:\Users\x\Downloads\OTL.Txt
2015-09-13 17:43 - 2015-09-13 17:45 - 00000000 ____D C:\Users\x\Desktop\Allegro IX
2015-08-30 21:09 - 2015-08-30 21:09 - 00000000 ____D C:\Users\x\Documents\My Games
2015-08-30 21:09 - 2015-08-30 21:09 - 00000000 ____D C:\Users\x\AppData\Local\My Games
2015-08-30 20:27 - 2015-08-30 20:27 - 00000220 _____ C:\Users\x\Desktop\Sid Meier's Civilization V.url
2015-08-30 20:27 - 2015-08-30 20:27 - 00000000 ____D C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-30 20:10 - 2015-08-30 20:10 - 00000000 ____D C:\Users\x\AppData\Local\Steam
2015-08-30 20:10 - 2015-08-30 20:10 - 00000000 ____D C:\Users\x\AppData\Local\CEF
2015-08-30 20:02 - 2015-09-15 15:17 - 00000000 ____D C:\Program Files (x86)\Steam
2015-08-30 20:02 - 2015-08-30 20:02 - 00000877 _____ C:\Users\Public\Desktop\Steam.lnk
2015-08-30 20:02 - 2015-08-30 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-30 09:54 - 2015-08-12 05:58 - 00127648 _____ (BigNox Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2015-08-30 09:53 - 2015-08-12 05:58 - 00253600 _____ (BigNox Corporation) C:\Windows\system32\Drivers\XQHDrv.sys
2015-08-30 09:48 - 2015-08-30 09:48 - 22241040 _____ C:\Users\x\Downloads\NOXVMx.exe
2015-08-30 09:39 - 2015-08-30 09:39 - 00000000 ____D C:\Users\x\Documents\Nox_share
2015-08-30 09:38 - 2015-09-15 12:12 - 00000000 ____D C:\Users\x\AppData\Local\Nox
2015-08-30 09:37 - 2015-09-15 12:10 - 00000000 ____D C:\Users\x\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Andy
2015-08-30 09:37 - 2015-09-15 12:10 - 00000000 ____D C:\Users\x\.VirtualBox
2015-08-30 09:35 - 2015-09-15 12:12 - 00047594 _____ C:\Windows\DPINST.LOG
2015-08-30 09:35 - 2015-08-30 09:35 - 00000000 ____D C:\Program Files\DIFX
2015-08-30 09:34 - 2015-07-10 13:22 - 00922704 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2015-08-30 09:33 - 2015-08-30 09:33 - 00000000 ____D C:\ProgramData\Apple
2015-08-30 09:33 - 2015-08-30 09:33 - 00000000 ____D C:\Program Files\Bonjour
2015-08-30 09:33 - 2015-08-30 09:33 - 00000000 ____D C:\Program Files (x86)\Bonjour
2015-08-30 09:32 - 2015-09-15 12:10 - 00000000 ____D C:\Users\x\Andy
2015-08-30 09:32 - 2015-08-30 09:32 - 00000000 ____D C:\Program Files\Oracle
2015-08-30 09:30 - 2015-08-30 09:31 - 00000000 ____D C:\Program Files\AndyOfflineInstaller45
2015-08-30 09:23 - 2015-08-30 09:23 - 01017928 _____ (Duodian Technology Co. Ltd.) C:\Users\x\Downloads\Nox_setup_v2.3.0.0_dl_En.exe
2015-08-30 09:20 - 2015-09-15 12:10 - 00000000 ____D C:\Users\x\AppData\Roaming\Andy
2015-08-30 09:20 - 2015-09-15 12:10 - 00000000 ____D C:\Program Files\Andy
2015-08-30 09:20 - 2015-08-30 09:38 - 00000000 ___RD C:\Users\x\AppData\Roaming\Andy_45_Online
2015-08-30 09:20 - 2015-08-30 09:20 - 01323336 _____ C:\Users\x\Downloads\Andy_Android_Emulator_v45_25.exe
2015-08-30 09:18 - 2015-08-30 09:19 - 00004344 _____ C:\Users\x\Downloads\BlueStacks-SplitInstaller_native_b-6.253.5.exe
2015-08-28 15:55 - 2015-08-28 15:55 - 01888151 _____ C:\Users\x\Downloads\Załączniki do SIWZ.zip
2015-08-28 15:54 - 2015-08-28 18:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-25 14:01 - 2015-08-25 14:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2015-08-17 15:44 - 2015-08-17 15:44 - 00000000 ____D C:\Users\x\AppData\Local\Disc_Soft_Ltd
2015-08-17 15:18 - 2015-08-17 15:18 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2015-08-17 15:18 - 2015-08-17 15:18 - 00001944 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2015-08-17 15:18 - 2015-08-17 15:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-08-17 15:18 - 2015-08-17 15:18 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2015-08-17 14:54 - 2015-08-17 14:54 - 01709792 _____ (Disc Soft Ltd.) C:\Users\x\Downloads\DTLiteInstaller.exe

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2015-09-15 15:17 - 2013-05-17 17:36 - 00024470 _____ C:\Windows\PFRO.log
2015-09-15 15:17 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-15 15:17 - 2009-07-14 06:51 - 00205656 _____ C:\Windows\setupact.log
2015-09-15 15:16 - 2012-11-15 14:33 - 01958431 _____ C:\Windows\WindowsUpdate.log
2015-09-15 15:16 - 2009-07-14 06:45 - 00009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-15 15:16 - 2009-07-14 06:45 - 00009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-15 15:09 - 2012-11-15 14:53 - 00000000 ____D C:\Users\x
2015-09-15 15:05 - 2012-11-16 08:42 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-15 12:13 - 2013-12-22 22:26 - 00000000 ____D C:\Windows\system32\appmgmt
2015-09-15 10:32 - 2014-09-07 10:22 - 00589512 _____ (ESET) C:\Windows\SysWOW64\%InstallDir%speclean.exe
2015-09-13 17:19 - 2014-08-06 08:07 - 00000000 ____D C:\Users\x\Desktop\2014-07-13 - 27 Kraków Węgry Rumunia Bułgaria
2015-09-06 20:43 - 2009-07-14 19:55 - 00737242 _____ C:\Windows\system32\perfh015.dat
2015-09-06 20:43 - 2009-07-14 19:55 - 00153930 _____ C:\Windows\system32\perfc015.dat
2015-09-06 20:43 - 2009-07-14 07:13 - 01661232 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-30 20:02 - 2012-11-22 13:46 - 00424191 _____ C:\Windows\DirectX.log
2015-08-30 08:53 - 2014-09-10 18:26 - 00000000 ____D C:\Users\x\AppData\Roaming\.minecraft
2015-08-28 18:47 - 2012-11-16 08:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-26 15:11 - 2013-06-17 16:10 - 00000000 ____D C:\Users\x\AppData\Local\Microsoft Games
2015-08-25 14:05 - 2014-12-19 22:39 - 00000000 ____D C:\Users\x\Desktop\Franek
2015-08-19 10:01 - 2014-12-28 22:23 - 00003876 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1419798182
2015-08-19 10:01 - 2014-12-28 22:21 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-17 15:19 - 2014-10-12 07:57 - 00000000 ____D C:\Users\x\AppData\Roaming\DAEMON Tools Lite
2015-08-16 19:22 - 2012-11-16 08:42 - 00003868 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-16 09:05 - 2012-11-16 08:42 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-16 09:05 - 2012-11-16 08:42 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Pliki w katalogu głównym wybranych folderów =======

2014-12-02 21:51 - 2014-12-02 21:51 - 0000986 _____ () C:\Users\x\AppData\Local\recently-used.xbel
2014-03-23 16:59 - 2014-03-23 16:59 - 0003177 _____ () C:\Users\x\AppData\Local\unins000.dat
2014-03-23 16:59 - 2014-03-23 16:58 - 0707504 _____ () C:\Users\x\AppData\Local\unins000.exe
2014-03-23 16:59 - 2014-03-23 16:59 - 0011761 _____ () C:\Users\x\AppData\Local\unins000.msg

==================== Bamital & volsnap =================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo
C:\Windows\explorer.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\Windows\system32\services.exe => Plik podpisany cyfrowo
C:\Windows\system32\User32.dll => MD5 jest poprawne
C:\Windows\SysWOW64\User32.dll => MD5 jest poprawne
C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo


LastRegBack: 2015-09-13 17:37

==================== Koniec  FRST.txt ============================