Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:12-12-2015 01 Uruchomiony przez Papi (administrator) INSPIRON (13-12-2015 15:27:54) Uruchomiony z D:\Downloads Załadowane profile: Papi (Dostępne profile: Papi) Platform: Windows 8.1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe (Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe (Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe (Microsoft Corporation) C:\WINDOWS\System32\GWX\GWX.exe (Intel Corporation) C:\WINDOWS\System32\igfxEM.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (Intel Corporation) C:\WINDOWS\System32\igfxHK.exe (Intel Corporation) C:\WINDOWS\System32\igfxTray.exe (Microsoft Corporation) C:\WINDOWS\System32\SettingSyncHost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\WINDOWS\System32\SkyDrive.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe (Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe (Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (BitTorrent Inc.) C:\Users\dell\AppData\Roaming\uTorrent\uTorrent.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (BitTorrent Inc.) C:\Users\dell\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe (BitTorrent Inc.) C:\Users\dell\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe (BitTorrent Inc.) C:\Users\dell\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\WINDOWS\System32\wbem\WMIADAP.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-09-05] (IDT, Inc.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [682904 2012-09-20] (Alps Electric Co., Ltd.) HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [4391072 2012-11-09] (Dell Inc.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2757424 2015-11-12] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp HKLM\...\Run: [Samsung Link] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [607584 2015-03-18] (Copyright 2013 SAMSUNG) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.) HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [409744 2009-06-24] (Creative Technology Ltd) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6133520 2015-11-07] (AVAST Software) HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2687488 2015-09-29] (Sony Corporation) HKU\S-1-5-21-2946510195-1381483075-2647567292-1001\...\Run: [uTorrent] => C:\Users\dell\AppData\Roaming\uTorrent\uTorrent.exe [2026520 2015-12-02] (BitTorrent Inc.) HKU\S-1-5-21-2946510195-1381483075-2647567292-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31090792 2015-01-23] (Skype Technologies S.A.) HKU\S-1-5-21-2946510195-1381483075-2647567292-1001\...\Run: [ALLUpdate] => C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [2765256 2015-01-24] (ALLPlayer Group Ltd.) HKU\S-1-5-21-2946510195-1381483075-2647567292-1001\...\Run: [Google Update] => C:\Users\dell\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.) AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [177416 2015-11-16] (NVIDIA Corporation) AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [177416 2015-11-16] (NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [155976 2015-11-16] (NVIDIA Corporation) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-26] (AVAST Software) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 62.21.99.94 62.21.99.95 Tcpip\..\Interfaces\{0B66FD7D-6D68-4CA1-97CD-EE6DA16DB54F}: [DhcpNameServer] 192.168.0.2 Tcpip\..\Interfaces\{839CB44E-7150-4A09-B073-BEF34B5C19CD}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{C332B0A1-CE5A-4D6C-8D45-43AD182EECA5}: [DhcpNameServer] 62.21.99.94 62.21.99.95 Internet Explorer: ================== BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-21] (AVAST Software) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-21] (AVAST Software) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) BHO-x32: FlashGetBHO -> {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} -> C:\Users\dell\AppData\Roaming\FlashGetBHO\FlashGetBHO.dll [2012-11-01] (Trend Media Group) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) FireFox: ======== FF Plugin HKU\S-1-5-21-2946510195-1381483075-2647567292-1001: @tools.google.com/Google Update;version=3 -> C:\Users\dell\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-03] (Google Inc.) FF Plugin HKU\S-1-5-21-2946510195-1381483075-2647567292-1001: @tools.google.com/Google Update;version=9 -> C:\Users\dell\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-03] (Google Inc.) Chrome: ======= CHR Profile: C:\Users\dell\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Extension: (Dysk Google) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-27] CHR Extension: (YouTube) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-27] CHR Extension: (Google Search) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-27] CHR Extension: (Avast Online Security) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-27] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-27] CHR Extension: (Gmail) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-27] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-06] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12] ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [404360 2013-12-21] (Samsung) [Brak podpisu cyfrowego] R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-26] (AVAST Software) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4048280 2015-09-26] (Avast Software) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156400 2015-11-12] (NVIDIA Corporation) R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [Brak podpisu cyfrowego] R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation) R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-11-12] (NVIDIA Corporation) R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8133424 2015-11-12] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5915440 2015-11-12] (NVIDIA Corporation) R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [496128 2015-09-29] (Sony Corporation) R2 Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [616288 2015-03-18] (Copyright 2013 SAMSUNG) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-26] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-26] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-26] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-26] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-07] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-07] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-09-26] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-26] (AVAST Software) R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [132608 2015-01-30] (Microsoft Corporation) R3 BthHFAud; C:\Windows\System32\drivers\BthHfAud.sys [32768 2014-10-08] (Microsoft Corporation) R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.) R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-10-15] (Motorola Solutions, Inc.) S3 Delldiag; C:\pcdoctor_depot_tools\WBT_W64\DDDriver.sys [16256 2011-08-24] () [Brak podpisu cyfrowego] S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-13] (Malwarebytes) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-08-31] (Intel Corporation) R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [132656 2015-09-26] (AVAST Software) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19760 2015-11-12] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation) S3 s1039bus; C:\Windows\System32\drivers\s1039bus.sys [127600 2010-03-15] (MCCI Corporation) S3 s1039mdfl; C:\Windows\system32\DRIVERS\s1039mdfl.sys [19568 2010-03-15] (MCCI Corporation) S3 s1039mdm; C:\Windows\system32\DRIVERS\s1039mdm.sys [161904 2010-03-15] (MCCI Corporation) S3 s1039mgmt; C:\Windows\system32\DRIVERS\s1039mgmt.sys [141424 2010-03-15] (MCCI Corporation) S3 s1039nd5; C:\Windows\system32\DRIVERS\s1039nd5.sys [34416 2010-03-15] (MCCI Corporation) S3 s1039obex; C:\Windows\system32\DRIVERS\s1039obex.sys [137328 2010-03-15] (MCCI Corporation) S3 s1039unic; C:\Windows\System32\drivers\s1039unic.sys [158320 2010-03-15] (MCCI Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381608 2015-07-27] (Duplex Secure Ltd.) R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [274336 2015-09-26] (Avast Software) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-12-12 23:40 - 2015-12-01 18:19 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-12-12 23:40 - 2015-12-01 18:19 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-12-11 12:55 - 2015-12-11 11:25 - 00053640 _____ C:\Users\dell\Desktop\FRST.txt 2015-12-11 12:55 - 2015-12-11 11:25 - 00045664 _____ C:\Users\dell\Desktop\Addition.txt 2015-12-11 12:55 - 2015-12-11 11:25 - 00040421 _____ C:\Users\dell\Desktop\Shortcut.txt 2015-12-11 12:53 - 2015-12-11 12:53 - 00879922 _____ C:\Users\dell\Desktop\GMER.txt 2015-12-11 11:20 - 2015-12-13 15:27 - 00000000 ____D C:\FRST 2015-12-10 09:26 - 2015-12-13 15:23 - 00000000 ____D C:\Users\dell\AppData\LocalLow\uTorrent 2015-12-09 12:02 - 2015-12-13 15:22 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-12-09 12:01 - 2015-12-09 12:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-12-09 12:01 - 2015-12-09 12:01 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-12-09 12:01 - 2015-12-09 12:01 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2015-12-09 12:01 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-12-09 12:01 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2015-12-09 12:01 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2015-12-09 10:18 - 2015-11-09 01:41 - 01540728 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2015-12-09 10:18 - 2015-11-08 23:30 - 04176384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-12-09 10:18 - 2015-11-08 22:23 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2015-12-09 10:18 - 2015-11-08 22:13 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2015-12-09 10:18 - 2015-11-08 22:01 - 01753600 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2015-12-09 10:18 - 2015-11-08 21:52 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2015-12-09 10:18 - 2015-11-08 21:48 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2015-12-09 10:18 - 2015-11-08 21:42 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2015-12-09 10:15 - 2015-11-20 23:47 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2015-12-09 10:15 - 2015-11-20 19:18 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2015-12-09 10:15 - 2015-11-20 17:58 - 03706880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-12-09 10:15 - 2015-11-20 17:47 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe 2015-12-09 10:15 - 2015-11-20 17:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll 2015-12-09 10:15 - 2015-11-20 17:44 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll 2015-12-09 10:15 - 2015-11-20 17:44 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2015-12-09 10:15 - 2015-11-20 17:43 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2015-12-09 10:15 - 2015-11-20 17:42 - 02243584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll 2015-12-09 10:15 - 2015-11-20 17:30 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe 2015-12-09 10:15 - 2015-11-20 17:29 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll 2015-12-09 10:15 - 2015-11-20 17:28 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2015-12-09 10:15 - 2015-11-20 17:27 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2015-12-09 10:12 - 2015-11-22 07:59 - 07455064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-12-09 10:12 - 2015-11-22 07:59 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2015-12-09 10:12 - 2015-11-22 07:59 - 01659568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2015-12-09 10:12 - 2015-11-22 07:59 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2015-12-09 10:12 - 2015-11-22 07:59 - 01487008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2015-12-09 10:12 - 2015-11-22 07:59 - 01355848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2015-12-09 10:12 - 2015-11-22 07:58 - 01499920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2015-12-09 10:12 - 2015-11-21 19:32 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll 2015-12-09 10:12 - 2015-11-21 18:50 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll 2015-12-09 10:12 - 2015-11-21 17:59 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll 2015-12-09 10:12 - 2015-11-21 17:49 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll 2015-12-09 10:12 - 2015-11-21 17:47 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll 2015-12-09 10:12 - 2015-11-21 17:40 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll 2015-12-09 10:12 - 2015-11-05 09:59 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys 2015-12-09 10:11 - 2015-10-28 16:49 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2015-12-09 10:11 - 2015-10-28 16:29 - 02462720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2015-12-03 16:52 - 2015-12-03 16:52 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software 2015-12-03 16:52 - 2015-12-03 16:52 - 00000000 ____D C:\Program Files\Common Files\AV 2015-11-27 00:45 - 2015-12-09 14:28 - 00000000 ____D C:\WINDOWS\SysWOW64\NV 2015-11-27 00:45 - 2015-12-09 14:28 - 00000000 ____D C:\WINDOWS\system32\NV 2015-11-27 00:41 - 2015-11-16 04:35 - 42913912 _____ C:\WINDOWS\system32\nvcompiler.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 37881976 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 22310008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 18363000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 17515528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 16553568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 15717864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 15122296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 14835872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 13527440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 12034248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 11130488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys 2015-11-27 00:41 - 2015-11-16 04:35 - 02870576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 02490672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 01905272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435900.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435900.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 00877176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 00861816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 00689272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 00673912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 00501056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 00422240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 00413816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 00369272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll 2015-11-27 00:41 - 2015-11-16 04:35 - 00031352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys 2015-11-27 00:30 - 2015-11-27 00:30 - 00000000 ____D C:\ProgramData\Package Cache 2015-11-27 00:30 - 2015-11-12 19:37 - 00112712 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll 2015-11-26 23:43 - 2015-11-27 00:28 - 00000000 ____D C:\Users\dell\AppData\Roaming\PhotoScape 2015-11-26 23:43 - 2015-11-26 23:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2015-11-26 23:42 - 2015-11-26 23:42 - 00001053 _____ C:\Users\dell\Desktop\PhotoScape.lnk 2015-11-26 23:42 - 2015-11-26 23:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape 2015-11-26 23:42 - 2015-11-26 23:42 - 00000000 ____D C:\Program Files (x86)\PhotoScape 2015-11-25 18:54 - 2015-01-06 04:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys 2015-11-25 18:54 - 2015-01-06 03:59 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys 2015-11-25 18:54 - 2015-01-06 02:12 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll 2015-11-25 18:54 - 2015-01-06 02:02 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll 2015-11-25 18:52 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll 2015-11-25 18:52 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZST.DLL 2015-11-25 18:52 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL 2015-11-25 18:52 - 2015-10-22 18:43 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL 2015-11-25 18:52 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll 2015-11-25 18:52 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZST.DLL 2015-11-25 18:52 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL 2015-11-25 18:52 - 2015-10-22 17:59 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL 2015-11-25 18:52 - 2015-10-22 17:21 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2015-11-25 18:52 - 2015-10-22 17:21 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll 2015-11-25 18:52 - 2015-10-22 16:58 - 00868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2015-11-25 18:52 - 2015-10-22 16:58 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll 2015-11-25 18:52 - 2015-10-22 15:08 - 00513456 _____ C:\WINDOWS\SysWOW64\locale.nls 2015-11-25 18:52 - 2015-10-22 15:08 - 00513456 _____ C:\WINDOWS\system32\locale.nls 2015-11-25 18:51 - 2015-10-10 18:20 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll 2015-11-25 18:50 - 2015-10-08 17:11 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll 2015-11-25 18:50 - 2015-10-08 16:50 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll 2015-11-25 18:50 - 2015-10-03 20:41 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2015-11-25 18:50 - 2015-10-03 20:41 - 01124384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2015-11-25 18:49 - 2015-10-05 19:28 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe 2015-11-25 18:49 - 2015-10-05 19:25 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-11-25 18:49 - 2015-06-09 23:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2015-11-25 18:49 - 2015-06-09 23:39 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys 2015-11-25 18:49 - 2015-06-09 23:38 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2015-11-25 18:49 - 2015-05-01 02:13 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2015-11-25 18:49 - 2015-05-01 02:13 - 01488000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2015-11-25 18:49 - 2015-05-01 02:13 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2015-11-25 17:37 - 2015-11-25 17:37 - 00000000 ____D C:\$SysReset 2015-11-14 14:48 - 2015-11-14 14:48 - 00017579 _____ C:\Users\dell\Desktop\tabela badawcza do wysłania.odt 2015-11-14 03:06 - 2015-09-29 13:24 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys 2015-11-14 03:06 - 2015-09-04 20:24 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys 2015-11-14 03:06 - 2015-08-28 23:20 - 00183368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe 2015-11-14 03:06 - 2015-08-20 21:45 - 01380048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2015-11-14 03:06 - 2015-08-20 18:48 - 01096704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2015-11-13 13:08 - 2015-11-13 13:08 - 00019960 _____ C:\Users\dell\Desktop\ankieta do wydruku.odt ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-12-13 15:28 - 2014-09-27 06:21 - 00000000 ____D C:\Users\dell\AppData\Roaming\uTorrent 2015-12-13 15:27 - 2013-07-11 22:37 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2946510195-1381483075-2647567292-1001 2015-12-13 15:24 - 2014-09-19 15:38 - 00001074 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-12-13 15:23 - 2014-12-15 15:07 - 05096448 ___SH C:\Users\dell\Desktop\Thumbs.db 2015-12-13 15:22 - 2014-12-12 17:18 - 00000000 ___DO C:\Users\dell\OneDrive 2015-12-13 15:22 - 2014-09-19 15:38 - 00001070 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-12-13 15:21 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-12-13 15:18 - 2014-12-12 15:08 - 00001186 _____ C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-12-13 15:18 - 2014-09-19 15:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-12-13 15:06 - 2014-09-24 16:08 - 01735328 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-12-13 15:06 - 2014-09-24 15:35 - 00770530 _____ C:\WINDOWS\system32\perfh015.dat 2015-12-13 15:06 - 2014-09-24 15:35 - 00155698 _____ C:\WINDOWS\system32\perfc015.dat 2015-12-13 15:06 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf 2015-12-13 15:05 - 2015-02-15 10:53 - 00003836 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{802D2947-3F39-4728-A228-24D6182B349E} 2015-12-13 00:10 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-12-12 23:39 - 2013-08-22 15:44 - 00361728 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-12-12 23:39 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS 2015-12-12 23:37 - 2014-09-19 16:34 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2015-12-12 23:37 - 2014-09-19 16:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2015-12-11 13:36 - 2015-04-20 11:59 - 00001072 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2946510195-1381483075-2647567292-1001UA.job 2015-12-11 11:33 - 2014-09-19 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-12-11 11:31 - 2014-09-19 19:25 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-12-11 11:26 - 2014-09-19 19:25 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-12-09 22:36 - 2015-04-20 11:59 - 00001020 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2946510195-1381483075-2647567292-1001Core.job 2015-12-09 12:57 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker 2015-12-09 12:55 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-12-07 17:51 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-12-04 11:19 - 2014-09-19 15:38 - 00004046 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-12-04 11:19 - 2014-09-19 15:38 - 00003810 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-12-03 22:31 - 2015-04-20 11:59 - 00004016 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2946510195-1381483075-2647567292-1001UA 2015-12-03 22:31 - 2015-04-20 11:59 - 00003636 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2946510195-1381483075-2647567292-1001Core 2015-11-29 18:19 - 2014-09-19 18:58 - 00000000 ____D C:\Program Files\CCleaner 2015-11-27 00:45 - 2014-12-12 12:46 - 00000000 ____D C:\ProgramData\NVIDIA 2015-11-27 00:30 - 2014-09-19 19:13 - 00000000 ____D C:\Users\dell\AppData\Local\NVIDIA Corporation 2015-11-27 00:23 - 2014-09-19 18:58 - 00001612 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2015-11-26 23:43 - 2014-09-19 15:38 - 00000000 ____D C:\Users\dell\AppData\Local\Google 2015-11-26 23:43 - 2014-09-19 15:38 - 00000000 ____D C:\Program Files (x86)\Google 2015-11-26 09:38 - 2014-12-12 15:08 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2015-11-25 19:16 - 2014-09-19 16:59 - 00000919 _____ C:\Users\dell\Desktop\Moja muzyka.lnk 2015-11-25 19:16 - 2014-09-19 16:58 - 00000951 _____ C:\Users\dell\Desktop\Moje dokumenty.lnk 2015-11-25 19:16 - 2014-09-19 16:58 - 00000944 _____ C:\Users\dell\Desktop\Moje obrazy.lnk 2015-11-25 18:38 - 2014-09-19 16:58 - 00000884 _____ C:\Users\dell\Desktop\Moje wideo.lnk 2015-11-25 18:05 - 2014-09-19 15:35 - 00002866 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2015-11-25 18:01 - 2015-09-10 08:09 - 00000000 ___HD C:\$Windows.~BT 2015-11-25 17:47 - 2015-07-26 20:21 - 00000000 ____D C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup 2015-11-25 17:47 - 2015-07-10 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices 2015-11-25 17:47 - 2015-05-04 09:20 - 00000000 ____D C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-11-25 17:47 - 2015-05-04 09:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-11-25 17:47 - 2015-04-05 12:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayMemories Home 2015-11-25 17:47 - 2015-03-02 01:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2015-11-25 17:47 - 2015-03-01 23:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 2015-11-25 17:47 - 2015-02-20 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2015-11-25 17:47 - 2015-02-15 00:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-11-25 17:47 - 2015-01-12 01:27 - 00000000 ____D C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2015-11-25 17:47 - 2015-01-12 01:24 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 2015-11-25 17:47 - 2014-12-12 12:55 - 00000000 ____D C:\Users\dell 2015-11-25 17:47 - 2014-12-12 12:45 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-11-25 17:47 - 2014-12-12 12:45 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2015-11-25 17:47 - 2014-12-12 12:45 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2015-11-25 17:47 - 2014-12-12 12:43 - 00000000 ____D C:\Program Files\IDT 2015-11-25 17:47 - 2014-11-20 19:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NapiProjekt 2015-11-25 17:47 - 2014-11-17 23:32 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox 2015-11-25 17:47 - 2014-11-17 23:32 - 00000000 ____D C:\WINDOWS\system32\vbox 2015-11-25 17:47 - 2014-11-13 01:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer 2015-11-25 17:47 - 2014-10-29 16:35 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense 2015-11-25 17:47 - 2014-10-17 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-11-25 17:47 - 2014-10-04 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2015-11-25 17:47 - 2014-09-24 17:37 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Embedded Lockdown Manager 2015-11-25 17:47 - 2014-09-24 15:35 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN 2015-11-25 17:47 - 2014-09-24 15:35 - 00000000 ____D C:\WINDOWS\system32\WCN 2015-11-25 17:47 - 2014-09-23 23:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashGet3.7 2015-11-25 17:47 - 2014-09-19 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-11-25 17:47 - 2014-09-19 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-11-25 17:47 - 2014-09-19 15:13 - 00000000 __RHD C:\Users\Public\AccountPictures 2015-11-25 17:47 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps 2015-11-25 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz 2015-11-25 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME 2015-11-25 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF 2015-11-25 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME 2015-11-25 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer 2015-11-25 17:47 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-11-25 17:47 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-11-25 17:47 - 2013-07-11 22:38 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2015-11-25 17:47 - 2013-07-11 22:38 - 00000000 ____D C:\Program Files\Intel 2015-11-25 17:47 - 2013-07-11 22:38 - 00000000 ____D C:\Program Files (x86)\Intel 2015-11-25 17:47 - 2013-07-11 22:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Webcam 2015-11-25 17:47 - 2013-07-11 22:29 - 00000000 ____D C:\ProgramData\PRICache 2015-11-25 17:47 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2015-11-24 15:33 - 2014-12-12 12:53 - 00034293 _____ C:\WINDOWS\diagwrn.xml 2015-11-24 15:33 - 2014-12-12 12:53 - 00034293 _____ C:\WINDOWS\diagerr.xml 2015-11-24 15:29 - 2014-12-12 13:14 - 00023140 _____ C:\WINDOWS\system32\emptyregdb.dat 2015-11-24 14:06 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM 2015-11-24 14:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\registration 2015-11-24 14:00 - 2014-12-12 12:40 - 00000000 ___DC C:\WINDOWS\Panther 2015-11-16 04:35 - 2015-07-18 18:06 - 00033607 _____ C:\WINDOWS\system32\nvinfo.pb 2015-11-16 04:35 - 2015-05-25 22:28 - 03159248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2015-11-16 04:35 - 2014-11-17 23:40 - 12770944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll 2015-11-16 04:35 - 2014-11-17 23:40 - 03579696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2015-11-16 04:35 - 2014-11-17 23:40 - 00467912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll 2015-11-16 04:35 - 2014-11-17 23:40 - 00388024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll 2015-11-16 04:35 - 2014-11-17 23:40 - 00177416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll 2015-11-16 04:35 - 2014-11-17 23:40 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll 2015-11-14 13:29 - 2015-03-29 11:28 - 00000000 ____D C:\Users\dell\Desktop\szkoła 2015-11-14 07:06 - 2014-12-12 12:45 - 06358832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2015-11-14 07:06 - 2014-12-12 12:45 - 02983032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2015-11-14 07:06 - 2014-12-12 12:45 - 02554488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2015-11-14 07:06 - 2014-12-12 12:45 - 00938800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe 2015-11-14 07:06 - 2014-12-12 12:45 - 00523384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2015-11-14 07:06 - 2014-12-12 12:45 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2015-11-14 07:06 - 2014-12-12 12:45 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2015-11-14 07:06 - 2014-12-12 12:45 - 00062768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2015-11-14 00:17 - 2015-10-21 18:55 - 00000000 ____D C:\Program Files (x86)\Dropbox 2015-11-14 00:12 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData ==================== Pliki w katalogu głównym wybranych folderów ======= 2015-10-21 20:59 - 2015-10-21 20:59 - 0003539 _____ () C:\Users\dell\AppData\Local\recently-used.xbel ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2015-02-13 17:03 ==================== Koniec FRST.txt ============================