Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:09-01-2015 Uruchomiony przez Łukasz (administrator) LAPTOK (10-02-2016 19:35:25) Uruchomiony z C:\Users\Łukasz\Downloads Załadowane profile: Łukasz (Dostępne profile: Łukasz) Platform: Windows 8.1 (Update 1) (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: FF) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Microsoft Corporation) C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe (Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\livecomm.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Atheros Communications) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (ALLPlayer Group Ltd.) C:\Program Files (x86)\ALLPlayer Remote\ALLPlayerRemoteControl.exe (Polar Electro Oy) C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe (Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe (Microsoft Corporation) C:\Windows\WinStore\WSHost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7202520 2013-08-27] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-27] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-27] (Realtek Semiconductor) HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5774664 2013-10-21] (Dell Inc.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2796272 2013-11-22] (Synaptics Incorporated) HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-04] (Intel Corporation) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [132736 2013-09-04] (Atheros Communications) HKU\S-1-5-21-2466319396-4157294396-1527453628-1001\...\Run: [ALLUpdate] => C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [2765256 2014-11-03] (ALLPlayer Group Ltd.) HKU\S-1-5-21-2466319396-4157294396-1527453628-1001\...\Run: [ALLPlayer WiFi Remote] => C:\Program Files (x86)\ALLPlayer Remote\ALLPlayerRemoteControl.exe [5182896 2014-07-23] (ALLPlayer Group Ltd.) HKU\S-1-5-21-2466319396-4157294396-1527453628-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [2874048 2015-02-19] (Valve Corporation) HKU\S-1-5-21-2466319396-4157294396-1527453628-1001\...\Run: [Polar FlowSync] => C:\Program Files (x86)\Polar\Polar FlowSync\flowsync.exe [1191936 2015-11-19] (Polar Electro Oy) HKU\S-1-5-21-2466319396-4157294396-1527453628-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8322328 2015-05-08] (Piriform Ltd) HKU\S-1-5-21-2466319396-4157294396-1527453628-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Ribbons.scr [130048 2013-08-22] (Microsoft Corporation) ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Windows\system32\mscoree.dll [2013-08-22] (Microsoft Corporation) ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Windows\system32\mscoree.dll [2013-08-22] (Microsoft Corporation) Startup: C:\Users\Łukasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk [2016-02-10] ShortcutTarget: IMVU.lnk -> C:\Users\Łukasz\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe () ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{D3DBBAAB-098F-475C-87D8-A1E634B8CDC1}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== FireFox: ======== FF ProfilePath: C:\Users\Łukasz\AppData\Roaming\Mozilla\Firefox\Profiles\49395z8g.default-1452200394433 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-20] () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-20] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1214154.dll [2014-11-07] (Adobe Systems, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin HKU\S-1-5-21-2466319396-4157294396-1527453628-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-03-13] (Ubisoft) Chrome: ======= CHR Profile: C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Dokumenty Google) - C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-25] CHR Extension: (Dysk Google) - C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-02] CHR Extension: (YouTube) - C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24] CHR Extension: (Google Search) - C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-02] CHR Extension: (Dokumenty Google offline) - C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-02] CHR Extension: (Gumshoe) - C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\mekpfngodchodemgmkhinohkfjefjeea [2016-02-02] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-11] CHR Extension: (Gmail) - C:\Users\Łukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-02] ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [312448 2013-09-04] (Windows (R) Win 7 DDK provider) [Brak podpisu cyfrowego] R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2571352 2016-01-05] (Dell Inc.) R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201816 2016-01-05] (Dell Inc.) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Brak podpisu cyfrowego] S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation) R2 MsDepSvc; C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe [80472 2012-09-06] (Microsoft Corporation) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-08-27] (Realtek Semiconductor) R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915920 2013-11-21] (SoftThinks SAS) R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31928 2016-01-12] (Dell Inc.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-16] (Qualcomm Atheros Communications, Inc.) R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-12-11] () R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-04] (Qualcomm Atheros) R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-01-30] (Dell Computer Corporation) R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2015-05-22] (Dell Computer Corporation) S3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.) S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-12-11] () R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation) S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2013-08-12] (Synaptics Incorporated) R3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [31472 2013-11-22] (Synaptics Incorporated) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [35856 2013-10-31] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [236888 2013-10-31] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-02-10 19:33 - 2016-02-10 19:33 - 00000000 ___RD C:\Users\Łukasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2016-02-10 19:32 - 2016-02-10 19:32 - 00000000 ____H C:\ProgramData\cm-lock 2016-02-10 19:29 - 2016-02-10 19:30 - 00019036 _____ C:\Users\Łukasz\Downloads\Fixlog.txt 2016-02-10 19:26 - 2016-02-10 19:28 - 00008542 _____ C:\Users\Łukasz\Desktop\fixlist.txt 2016-02-09 21:12 - 2016-02-09 21:12 - 00488613 _____ C:\Users\Łukasz\Downloads\ukasz_Uracz_2016-02-09_19-06-38.tcx 2016-02-09 21:12 - 2016-02-09 21:12 - 00148225 _____ C:\Users\Łukasz\Downloads\ukasz_Uracz_2016-02-09_19-30-45.tcx 2016-02-09 21:12 - 2016-02-09 21:12 - 00145406 _____ C:\Users\Łukasz\Downloads\ukasz_Uracz_2016-02-09_18-56-28.tcx 2016-02-09 21:11 - 2016-02-09 21:11 - 02461700 _____ C:\Users\Łukasz\Downloads\ukasz_Uracz_2016-02-06_11-01-57.tcx 2016-02-09 21:11 - 2016-02-09 21:11 - 00953147 _____ C:\Users\Łukasz\Downloads\ukasz_Uracz_2016-02-04_18-41-31.tcx 2016-02-09 21:10 - 2016-02-09 21:10 - 00693653 _____ C:\Users\Łukasz\Downloads\ukasz_Uracz_2016-02-03_19-21-38.tcx 2016-02-05 11:15 - 2016-02-05 11:23 - 00000000 ____D C:\Users\Łukasz\Desktop\NIKA 2016-01-31 16:07 - 2016-01-31 16:07 - 02100780 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-31_14-02-14.tcx 2016-01-30 17:35 - 2016-01-30 17:35 - 03299141 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-30_10-59-58.tcx 2016-01-29 10:55 - 2016-01-29 10:55 - 00000000 __HDC C:\ProgramData\{010DD54D-6F97-418D-BC47-2089F30A0075} 2016-01-28 20:59 - 2016-01-28 20:59 - 00279323 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-28_20-06-55.tcx 2016-01-28 20:58 - 2016-01-28 20:58 - 00448768 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-28_19-24-30.tcx 2016-01-28 20:58 - 2016-01-28 20:58 - 00408775 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-28_19-48-03.tcx 2016-01-28 19:01 - 2016-01-28 19:01 - 00004026 _____ C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask 2016-01-28 19:01 - 2016-01-28 19:01 - 00003484 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask 2016-01-28 19:01 - 2016-01-28 19:01 - 00003338 _____ C:\Windows\System32\Tasks\PCDDataUploadTask 2016-01-28 19:01 - 2016-01-28 19:01 - 00003216 _____ C:\Windows\System32\Tasks\SystemToolsDailyTest 2016-01-28 19:01 - 2016-01-28 19:01 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows 2016-01-28 19:01 - 2016-01-28 19:01 - 00000000 ____D C:\Program Files\Dell Support Center 2016-01-27 20:39 - 2016-01-27 20:39 - 01530860 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-27_18-18-30.tcx 2016-01-26 21:16 - 2016-01-26 21:16 - 00138438 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-26_19-17-15(2).tcx 2016-01-26 21:15 - 2016-01-26 21:15 - 00138438 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-26_19-17-15(1).tcx 2016-01-26 21:01 - 2016-01-26 21:01 - 00299954 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-26_20-08-40.tcx 2016-01-26 21:00 - 2016-01-26 21:01 - 00776269 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-26_19-31-20.tcx 2016-01-26 21:00 - 2016-01-26 21:00 - 00138438 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-26_19-17-15.tcx 2016-01-26 11:18 - 2016-02-10 19:32 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\IMVU 2016-01-26 11:18 - 2016-01-26 11:18 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU 2016-01-26 11:18 - 2016-01-26 11:18 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\IMVUClient 2016-01-26 11:17 - 2016-01-26 11:17 - 00244304 _____ C:\Users\Łukasz\Downloads\InstallIMVU_523.0_st.exe 2016-01-26 11:17 - 2016-01-26 11:17 - 00244304 _____ C:\Users\Łukasz\Downloads\InstallIMVU_523.0_st (1).exe 2016-01-25 19:17 - 2016-01-25 19:17 - 00004761 _____ C:\Users\Łukasz\Desktop\Protokól RP.odt 2016-01-24 20:17 - 2016-01-24 20:18 - 00000000 ____D C:\Users\Łukasz\Desktop\Nowy folder 2016-01-24 16:06 - 2016-01-24 16:06 - 03567746 _____ C:\Users\Łukasz\Downloads\Łukasz_Uracz_2016-01-24_12-54-55.tcx 2016-01-20 21:10 - 2016-01-21 09:15 - 00007835 _____ C:\Users\Łukasz\Desktop\Nasze babcie.odt 2016-01-18 20:15 - 2016-01-18 20:15 - 00011005 _____ C:\Users\Łukasz\Desktop\podatek.ods 2016-01-17 20:20 - 2016-01-17 20:20 - 00047980 _____ C:\Users\Łukasz\Downloads\Shortcut.txt 2016-01-16 20:09 - 2016-01-16 20:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Surround Driver Installer 2016-01-16 20:09 - 2016-01-16 20:09 - 00000000 ____D C:\Program Files (x86)\Razer Surround Driver Installer 2016-01-14 21:05 - 2016-01-14 21:14 - 181174296 _____ C:\Users\Łukasz\Downloads\cureit.exe ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-02-10 19:35 - 2016-01-09 17:51 - 00014537 _____ C:\Users\Łukasz\Downloads\FRST.txt 2016-02-10 19:35 - 2014-11-16 16:54 - 00000000 ____D C:\FRST 2016-02-10 19:34 - 2014-03-15 04:45 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery 2016-02-10 19:33 - 2014-08-04 19:37 - 05303808 ___SH C:\Users\Łukasz\Desktop\Thumbs.db 2016-02-10 19:32 - 2014-11-16 18:51 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-02-10 19:32 - 2014-11-16 18:51 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-02-10 19:32 - 2014-08-22 17:30 - 00000000 ___RD C:\Users\Łukasz\OneDrive 2016-02-10 19:31 - 2014-08-04 17:29 - 00000000 ____D C:\Users\Łukasz 2016-02-10 19:31 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-02-10 19:31 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI 2016-02-10 19:30 - 2015-02-06 08:41 - 00000000 ____D C:\Users\Łukasz\AppData\LocalLow\Temp 2016-02-10 19:29 - 2015-12-17 21:38 - 00000000 ____D C:\Program Files\Common Files\AV 2016-02-10 19:10 - 2014-08-04 17:35 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2466319396-4157294396-1527453628-1001 2016-02-10 18:43 - 2015-01-29 17:12 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-02-10 18:34 - 2014-11-16 18:51 - 00002240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-02-10 18:34 - 2014-11-16 18:51 - 00002211 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-02-09 21:13 - 2014-08-04 19:36 - 01383424 ___SH C:\Users\Łukasz\Downloads\Thumbs.db 2016-02-09 13:35 - 2014-03-15 04:25 - 01828496 _____ C:\Windows\system32\PerfStringBackup.INI 2016-02-09 13:35 - 2013-08-23 00:12 - 00808198 _____ C:\Windows\system32\perfh015.dat 2016-02-09 13:35 - 2013-08-23 00:12 - 00164014 _____ C:\Windows\system32\perfc015.dat 2016-02-09 13:35 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf 2016-02-04 20:55 - 2015-04-29 18:55 - 00000000 ____D C:\ProgramData\boost_interprocess 2016-02-03 09:27 - 2014-11-16 18:51 - 00004042 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2016-02-03 09:27 - 2014-11-16 18:51 - 00003806 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2016-02-02 17:28 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\NDF 2016-01-30 17:19 - 2014-08-04 17:30 - 00000000 ____D C:\Users\Łukasz\AppData\Roaming\Atheros 2016-01-30 17:04 - 2014-08-04 17:31 - 00000000 ____D C:\Users\Łukasz\Documents\Bluetooth Folder 2016-01-29 10:55 - 2015-02-13 16:56 - 00000000 ____D C:\ProgramData\SupportAssistAgent 2016-01-28 19:01 - 2014-03-15 04:43 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell 2016-01-28 19:00 - 2014-03-15 04:43 - 00000000 ____D C:\ProgramData\PCDr 2016-01-25 21:52 - 2014-08-06 18:33 - 00000000 ____D C:\Users\Łukasz\AppData\Local\CrashDumps 2016-01-21 10:39 - 2013-08-22 14:36 - 00000000 ____D C:\Windows 2016-01-20 19:43 - 2015-01-29 17:12 - 00003818 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-01-17 20:20 - 2016-01-09 17:52 - 00037941 _____ C:\Users\Łukasz\Downloads\Addition.txt 2016-01-16 20:16 - 2014-12-03 16:30 - 00000000 ____D C:\Program Files (x86)\GTX Box Team ==================== Pliki w katalogu głównym wybranych folderów ======= 2015-10-18 10:45 - 2015-10-18 10:45 - 0000036 _____ () C:\Users\Łukasz\AppData\Local\giplay_settings 2016-02-10 19:32 - 2016-02-10 19:32 - 0000000 ____H () C:\ProgramData\cm-lock 2014-03-15 04:11 - 2014-03-15 04:11 - 0000000 ____H () C:\ProgramData\DP45977C.lfl ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2016-02-07 12:46 ==================== Koniec FRST.txt ============================