Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja:01-03-2016
Uruchomiony przez omyl (administrator)  OMY-4DAAD96489C (02-03-2016 09:46:46)
Uruchomiony z C:\Documents and Settings\omyl\Pulpit\fix
Załadowane profile: omyl (Dostępne profile: omyl & UpdatusUser & Administrator)
Platform: Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) Język: Polski
Internet Explorer Wersja 8 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(百度在线网络技术（北京）有限公司) C:\Program Files\Baidu\BaiduAn\4.0.0.8029\BaiduAnSvc.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(百度在线网络技术（北京）有限公司) C:\Program Files\Baidu\BaiduAn\4.0.0.8029\BaiduAnTray.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\WINDOWS\system32\PnkBstrA.exe
() C:\WINDOWS\system32\PnkBstrB.exe
(Google Inc.) C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe
(百度在线网络技术（北京）有限公司) C:\Program Files\Common Files\Baidu\BaiduHips\1.2.0.892\BaiduHips.exe
(Google Inc.) C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe


==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [Tweak UI] => RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2029640 2009-05-14] (ESET)
HKLM\...\Run: [TkBellExe] => C:\Program Files\Real\RealPlayer\update\realsched.exe [296056 2012-06-04] (RealNetworks, Inc.)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20065896 2012-03-14] (Realtek Semiconductor Corp.)
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1634112 2012-09-23] ()
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1259376 2011-07-29] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [BaiduAnTray] => C:\Program Files\Baidu\BaiduAn\4.0.0.8029\BaiduAnTray.exe [2247688 2016-03-01] (百度在线网络技术（北京）有限公司)
HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\Run: [Google Update] => C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.)
HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3671872 2012-04-17] (DT Soft Ltd)
HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\Run: [ALLUpdate] => C:\Program Files\ALLPlayer\ALLUpdate.exe [1379840 2011-08-16] ()
HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\Run: [uTorrent] => C:\Documents and Settings\omyl\Dane aplikacji\uTorrent\uTorrent.exe [2065944 2016-02-10] (BitTorrent Inc.)
HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\MountPoints2: {0185dcc9-f21b-11e2-99e5-00195b5de07c} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RuNdLl32.EXE      .\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx,ahaezedrn
HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\MountPoints2: {08d8ff42-f23a-11e2-b4dc-00195b5de07c} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RuNdLl32.EXE      .\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx,ahaezedrn
HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\MountPoints2: {19aaf9be-979a-11e1-8071-00195b5de07c} - G:\dwh.exe
HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\MountPoints2: {19aaf9bf-979a-11e1-8071-00195b5de07c} - H:\dwh.exe
HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\MountPoints2: {676f6a6c-2c54-11e4-ab3c-00195b5de07c} - I:\LG_PC_Programs.exe
HKU\S-1-5-21-527237240-1303643608-839522115-1003\...\MountPoints2: {fe4ff598-98fe-11e1-807c-00195b5de07c} - G:\autorun.exe
Lsa: [Authentication Packages] msv1_0 nwprovau
ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} =>  Brak pliku
ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} =>  Brak pliku
ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} =>  Brak pliku
ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} =>  Brak pliku

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 217.144.192.3 217.144.192.33
Tcpip\..\Interfaces\{F9AE5430-A96A-4268-A147-7501A818B457}: [DhcpNameServer] 217.144.192.3 217.144.192.33

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-527237240-1303643608-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-527237240-1303643608-839522115-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.gazeta.pl/0,0.html?p=128
SearchScopes: HKU\S-1-5-21-527237240-1303643608-839522115-1003 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=SKY2DF&PC=SKY2&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-527237240-1303643608-839522115-1003 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=SKY2DF&PC=SKY2&q={searchTerms}&src=IE-SearchBox
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-06-04] (RealPlayer)
BHO: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12] (DivX, LLC)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-09-28] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-09-28] (Oracle Corporation)
BHO: IplexToALLPlayer -> {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} -> C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll [2011-02-09] (ALLCinema Ltd.)
DPF: {F8E691A0-C92E-4E42-9CDA-62FC07A9483B} hxxp://actiftp.hosting4less.com/ACTIGENERAL/AP&Manual/Live%20Demo/nvUnifiedControl.ocx
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  Brak pliku
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\mscoree.dll [2010-03-18] ()
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\mscoree.dll [2010-03-18] ()
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\system32\mscoree.dll [2010-03-18] ()

FireFox:
========
FF ProfilePath: C:\Documents and Settings\omyl\Dane aplikacji\Mozilla\Firefox\Profiles\lql4z5yb.default
FF DefaultSearchEngine: Search Module
FF SearchEngineOrder.3: Bing 
FF SelectedSearchEngine: Bing 
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll [2016-02-09] ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-12-13] (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-06-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-09-28] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll [2011-11-17] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame -> C:\Documents and Settings\All Users\Dane aplikacji\NexonEU\NGM\npNxGameeu.dll [2012-09-27] (Nexon)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [Brak pliku]
FF Plugin: @real.com/nppl3260;version=15.0.4.53 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2012-06-04] (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=15.0.4.53 -> C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll [2012-06-04] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.4.53 -> C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll [2012-06-04] (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.4.53 -> C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll [2012-06-04] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=15.0.4.53 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll [2012-06-04] (RealPlayer)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-527237240-1303643608-839522115-1003: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-527237240-1303643608-839522115-1003: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-527237240-1303643608-839522115-1003: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Brak pliku]
FF Extension: Battlefield Play4Free - C:\Documents and Settings\omyl\Dane aplikacji\Mozilla\Firefox\Profiles\lql4z5yb.default\extensions\battlefieldplay4free@ea.com [2012-09-27] [Brak podpisu cyfrowego]
FF Extension: Bing Search Engine - C:\Documents and Settings\omyl\Dane aplikacji\Mozilla\Firefox\Profiles\lql4z5yb.default\Extensions\bingsearch.full@microsoft.com [2015-03-12] [Brak podpisu cyfrowego]
FF Extension: Iplex to ALLPlayer - C:\Documents and Settings\omyl\Dane aplikacji\Mozilla\Firefox\Profiles\lql4z5yb.default\Extensions\IplextoALL@ALLPlayer.org.xpi [2012-06-05] [Brak podpisu cyfrowego]
FF Extension: Discover Treasure - C:\Documents and Settings\omyl\Dane aplikacji\Mozilla\Firefox\Profiles\lql4z5yb.default\Extensions\{8868300f-dc22-4874-ad87-a30587560d49}.xpi [2015-12-06] [Brak podpisu cyfrowego]
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &video& - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-04-05] [Brak podpisu cyfrowego]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-05-09] [Brak podpisu cyfrowego]
FF HKLM\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-06-04] [Brak podpisu cyfrowego]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF Extension: Eset Plugin - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2014-02-02] [Brak podpisu cyfrowego]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\!0EDDAD3282F0185AC1FF97C4D43113C30EDD.js [2015-12-07] <==== UWAGA
FF ExtraCheck: C:\Program Files\mozilla firefox\0EDDAD3282F0185AC1FF97C4D43113C30EDD [2015-12-07] <==== UWAGA

Chrome: 
=======
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll => Brak pliku
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\48.0.2564.116\gcswf32.dll => Brak pliku
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_257.dll => Brak pliku
CHR Plugin: (Native Client) - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\48.0.2564.116\ppGoogleNaClPluginChrome.dll => Brak pliku
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\48.0.2564.116\pdf.dll => Brak pliku
CHR Plugin: (AVG Internet Security) - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2191_0\plugins/avgnpss.dll => Brak pliku
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Brak pliku
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) ) - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) ) - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Download Plugin) - C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
CHR Plugin: (Google Update) - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll => Brak pliku
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U4) - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.40.255) - C:\WINDOWS\system32\npDeployJava1.dll => Brak pliku
CHR Plugin: (Pando Web Plugin) - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll => Brak pliku
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Profile: C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default
CHR Extension: (AdBlock) - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-02-15]
CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2012-08-07]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-08-07]
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2012-06-04]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
StartMenuInternet: chrome.exe - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
StartMenuInternet: Google Chrome.KFMSANMP5PYDILRWMB7DCPPVNE - C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe

==================== Usługi (filtrowane) ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 BaiduHips; C:\Program Files\Common Files\Baidu\BaiduHips\1.2.0.892\BaiduHips.exe [89096 2016-01-29] (百度在线网络技术（北京）有限公司)
R2 BDMRTP; C:\Program Files\Baidu\BaiduAn\4.0.0.8029\BaiduAnSvc.exe [1096712 2016-01-29] (百度在线网络技术（北京）有限公司)
S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [20680 2009-05-14] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [731840 2009-05-14] (ESET)
S3 FirebirdServerMAGIXInstance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®) [Brak podpisu cyfrowego]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-09-28] (Oracle Corporation)
S2 nmhegt; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
R2 NWCWorkstation; C:\WINDOWS\System32\nwwks.dll [65536 2008-04-14] (Microsoft Corporation)
R2 NwSapAgent; C:\WINDOWS\System32\ipxsap.dll [66560 2004-08-04] (Microsoft Corporation)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2016-01-03] ()
R2 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [189248 2016-01-03] ()
S2 .EsetTrialReset; C:\WINDOWS\system32\regedt32.exe /s C:\WINDOWS\esettrialreset.reg
S2 miaylec; C:\WINDOWS\system32\kdtcbu.dll [X]

===================== Sterowniki (filtrowane) ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 bd0001; C:\WINDOWS\System32\DRIVERS\bd0001.sys [107528 2016-03-01] (Baidu)
R1 bd0002; C:\WINDOWS\System32\DRIVERS\bd0002.sys [184328 2016-03-01] (Baidu)
R2 BDArKit; C:\WINDOWS\System32\DRIVERS\BDArKit.sys [144008 2016-01-29] (Baidu Technology)
S2 BDMNetMon; C:\WINDOWS\System32\DRIVERS\BDMNetMon.sys [118472 2016-01-29] () [Brak podpisu cyfrowego]
S1 BDMWrench; C:\WINDOWS\System32\DRIVERS\BDMWrench.sys [239432 2016-01-29] () [Brak podpisu cyfrowego]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [242240 2012-05-08] (DT Soft Ltd)
R2 eamon; C:\WINDOWS\System32\DRIVERS\eamon.sys [114472 2009-05-14] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [107256 2009-05-14] (ESET)
R1 epfwtdir; C:\WINDOWS\System32\DRIVERS\epfwtdir.sys [94360 2009-05-14] (ESET)
S3 EsgScanner; C:\WINDOWS\System32\DRIVERS\EsgScanner.sys [19984 2015-12-14] ()
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [124264 2012-07-03] (NVIDIA Corporation)
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-13] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2004-08-04] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2004-08-04] (Microsoft Corporation)
R3 NWRDR; C:\WINDOWS\System32\DRIVERS\nwrdr.sys [163584 2008-04-13] (Microsoft Corporation)
R3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2014-09-09] (Duplex Secure Ltd.)
S3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [262912 2007-06-08] (Marvell)
U3 a6pm7fo7; C:\WINDOWS\system32\Drivers\a6pm7fo7.sys [0 ] (Microsoft Corporation) <==== UWAGA (zerobajtowy plik/folder)
S1 BDDefense; system32\drivers\BDDefense.sys [X]
S1 BDEnhanceBoost; system32\DRIVERS\BDEnhanceBoost.sys [X]
S3 cpuz135; \??\C:\WINDOWS\TEMP\cpuz135\cpuz135_x32.sys [X]
S3 EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys [X]
S4 IntelIde; Brak ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S1 SRepairDrv; \??\C:\WINDOWS\GJFix\SRepairDrv [X]
S3 XDva399; \??\C:\WINDOWS\system32\XDva399.sys [X]
S3 XDva400; \??\C:\WINDOWS\system32\XDva400.sys [X]

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

NETSVC: nmhegt -> Brak ścieżki do pliku.
NETSVC: miaylec -> C:\WINDOWS\system32\kdtcbu.dll ==> Brak pliku

==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2016-03-02 09:46 - 2016-03-02 09:46 - 00000000 ____D C:\Documents and Settings\omyl\Pulpit\fix
2016-03-02 09:44 - 2016-03-02 09:46 - 00000000 ____D C:\FRST
2016-03-02 09:08 - 2016-03-02 09:08 - 01518592 _____ C:\Documents and Settings\omyl\Pulpit\adwcleaner_5.037.exe
2016-03-01 19:01 - 2016-03-01 19:10 - 00000000 ____D C:\WINDOWS\GJFix
2016-03-01 19:01 - 2016-03-01 19:01 - 00005120 _____ C:\Documents and Settings\omyl\Dane aplikacji\GiftBag.db
2016-03-01 19:01 - 2016-03-01 19:01 - 00000000 ____D C:\Documents and Settings\All Users\TXQMPC
2016-03-01 19:00 - 2016-03-01 19:00 - 00000000 ____D C:\Documents and Settings\LocalService\Dane aplikacji\Tencent
2016-03-01 18:56 - 2016-01-29 09:56 - 00239432 _____ C:\WINDOWS\system32\Drivers\BDMWrench.sys
2016-03-01 18:56 - 2016-01-29 09:56 - 00118472 _____ C:\WINDOWS\system32\Drivers\BDMNetMon.sys
2016-03-01 18:54 - 2016-03-01 18:57 - 00184328 _____ (Baidu) C:\WINDOWS\system32\Drivers\bd0002.sys
2016-03-01 18:54 - 2016-03-01 18:57 - 00107528 _____ (Baidu) C:\WINDOWS\system32\Drivers\bd0001.sys
2016-03-01 18:54 - 2016-03-01 18:54 - 00000000 ____D C:\Program Files\Common Files\Baidu
2016-03-01 18:54 - 2016-01-29 09:56 - 00144008 _____ (Baidu Technology) C:\WINDOWS\system32\Drivers\BDArKit.SYS
2016-03-01 18:53 - 2016-03-02 09:07 - 00001814 _____ C:\Documents and Settings\All Users\Pulpit\百度卫士-软件管理.lnk
2016-03-01 18:53 - 2016-03-01 18:53 - 00000000 ____D C:\Program Files\Baidu
2016-03-01 18:53 - 2016-03-01 18:53 - 00000000 ____D C:\Documents and Settings\omyl\Dane aplikacji\Baidu
2016-03-01 18:53 - 2016-03-01 18:53 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Baidu
2016-03-01 18:52 - 2016-03-01 18:52 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\ĂŔÍĽäŻŔŔ
2016-02-26 18:05 - 2016-02-26 18:05 - 02207574 _____ C:\Documents and Settings\omyl\Pulpit\listonosz.bmp
2016-02-04 21:05 - 2016-02-04 22:01 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-02-03 20:18 - 2016-02-03 20:18 - 00000000 ____D C:\Documents and Settings\omyl\Moje dokumenty\League of Legends

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2016-03-02 09:46 - 2012-04-03 17:08 - 00000000 ____D C:\Documents and Settings\omyl\Ustawienia lokalne\Temp
2016-03-02 09:46 - 2012-04-03 17:08 - 00000000 ____D C:\Documents and Settings\omyl\Pulpit
2016-03-02 09:45 - 2014-03-31 15:34 - 00000460 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{41B19D70-5B44-45E2-B037-169D31D013A1}.job
2016-03-02 09:29 - 2015-12-08 00:56 - 00000000 ____D C:\AdwCleaner
2016-03-02 09:22 - 2014-04-03 09:59 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-03-02 09:13 - 2015-12-07 23:47 - 00000510 _____ C:\WINDOWS\Tasks\Component Balance.job
2016-03-02 09:13 - 2015-12-07 23:47 - 00000484 _____ C:\WINDOWS\Tasks\Component Balance2.job
2016-03-02 09:13 - 2012-04-04 14:52 - 00000000 ____D C:\Documents and Settings\omyl\Dane aplikacji\uTorrent
2016-03-02 09:10 - 2014-09-07 17:53 - 00000438 _____ C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1410108814.job
2016-03-02 09:10 - 2012-06-04 16:38 - 00000276 _____ C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-527237240-1303643608-839522115-1003.job
2016-03-02 09:10 - 2012-04-03 16:36 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-02 09:10 - 2004-08-04 13:00 - 00002422 _____ C:\WINDOWS\system32\wpa.dbl
2016-03-02 09:09 - 2012-04-03 17:08 - 00000188 ___SH C:\Documents and Settings\omyl\ntuser.ini
2016-03-02 09:09 - 2012-04-03 16:36 - 00032508 _____ C:\WINDOWS\SchedLgU.Txt
2016-03-02 09:01 - 2012-04-09 21:57 - 00072192 _____ C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-02 09:00 - 2012-11-24 19:59 - 00000000 ____D C:\Documents and Settings\omyl\Menu Start\Programy\Image-Line
2016-03-02 09:00 - 2012-11-24 19:57 - 00000000 ____D C:\Program Files\Image-Line
2016-03-02 08:54 - 2012-08-07 15:09 - 00002303 _____ C:\Documents and Settings\omyl\Pulpit\Google Chrome.lnk
2016-03-01 19:10 - 2012-04-03 18:21 - 00304416 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-01 19:08 - 2012-05-08 08:18 - 00000730 _____ C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
2016-03-01 19:08 - 2012-04-03 18:21 - 00000000 __RHD C:\Documents and Settings\All Users\Dane aplikacji
2016-03-01 19:08 - 2012-04-03 18:21 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy
2016-03-01 19:08 - 2012-04-03 18:21 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit
2016-03-01 19:08 - 2012-04-03 17:08 - 00000000 __RHD C:\Documents and Settings\omyl\Dane aplikacji
2016-03-01 19:08 - 2012-04-03 17:08 - 00000000 ___RD C:\Documents and Settings\omyl\Menu Start\Programy
2016-03-01 19:08 - 2012-04-03 17:08 - 00000000 ___HD C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji
2016-03-01 19:07 - 2012-04-04 17:56 - 00086096 _____ C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2016-03-01 19:02 - 2012-06-20 20:18 - 00000000 ____D C:\WINDOWS\Minidump
2016-03-01 19:02 - 2012-04-03 18:21 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start
2016-03-01 19:01 - 2012-04-03 18:21 - 00000000 ____D C:\Documents and Settings\All Users
2016-03-01 19:00 - 2014-06-25 15:58 - 00000000 ____D C:\Documents and Settings\omyl\Moje dokumenty\Pobrane
2016-03-01 19:00 - 2012-04-03 16:36 - 00000000 ____D C:\Documents and Settings\LocalService\Dane aplikacji
2016-03-01 16:04 - 2012-08-07 15:09 - 00001076 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-527237240-1303643608-839522115-1003Core.job
2016-02-28 01:03 - 2014-07-06 17:18 - 00000000 ____D C:\Documents and Settings\omyl\Dane aplikacji\vlc
2016-02-26 18:05 - 2012-04-03 17:08 - 00000000 ___RD C:\Documents and Settings\omyl\Moje dokumenty\Moje obrazy
2016-02-19 23:04 - 2012-08-07 15:09 - 00002309 _____ C:\Documents and Settings\omyl\Menu Start\Programy\Google Chrome.lnk
2016-02-14 18:55 - 2015-12-18 00:36 - 00002569 _____ C:\Documents and Settings\omyl\Pulpit\µTorrent.lnk
2016-02-14 15:03 - 2012-05-08 08:51 - 00000000 ____D C:\Documents and Settings\omyl\Moje dokumenty\Pobieranie
2016-02-09 22:22 - 2012-05-08 13:51 - 00796864 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-02-09 22:22 - 2012-05-08 13:51 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-02-05 06:23 - 2012-05-08 08:18 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-02-03 20:18 - 2012-04-03 17:08 - 00000000 ___RD C:\Documents and Settings\omyl\Moje dokumenty

==================== Pliki w katalogu głównym wybranych folderów =======

2016-03-01 19:01 - 2016-03-01 19:01 - 0005120 _____ () C:\Documents and Settings\omyl\Dane aplikacji\GiftBag.db
2012-09-27 09:29 - 2016-01-03 13:18 - 0138056 _____ () C:\Documents and Settings\omyl\Dane aplikacji\PnkBstrK.sys
2016-01-03 18:19 - 2016-01-03 18:19 - 0000004 _____ () C:\Documents and Settings\omyl\Dane aplikacji\steam_md4.dat
2012-04-09 21:57 - 2016-03-02 09:01 - 0072192 _____ () C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-01-12 15:17 - 2013-01-12 15:17 - 0017408 _____ () C:\Documents and Settings\omyl\Ustawienia lokalne\Dane aplikacji\WebpageIcons.db

Niektóre pliki w TEMP:
====================
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\11.22.63.s01e03.__18842_il807709.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\11a87a49s_1202000448.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\ggdrive-menu.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\ggdrive-overlay.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\HOa9Ye8qzm.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\installstats.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\QQPCMgr_Setup.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\setup.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\SkypeSetup.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\utt1222.tmp.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\utt141C.tmp.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\utt1F03.tmp.exe
C:\Documents and Settings\omyl\Ustawienia lokalne\Temp\vlc-2.2.1-win32.exe


==================== Bamital & volsnap =================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo

==================== Koniec  FRST.txt ============================