Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:29-05-2016 02
Ran by mmazu_000 (administrator) on WINDOWS-JUU6T5R (29-05-2016 16:09:26)
Running from C:\Users\mmazu_000\Downloads
Loaded Profiles: mmazu_000 (Available Profiles: mmazu_000 & Administrator)
Platform: Windows 8.1 (Update) (X64) Language: Angielski (Stany Zjednoczone)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
() C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Atheros Communications) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Google Inc.) C:\Users\mmazu_000\AppData\Local\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Users\mmazu_000\AppData\Local\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(Autodesk Inc.) C:\Users\mmazu_000\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
(Microsoft Corporation) C:\Windows\Temp\DF9E6980-65CF-4391-B4DB-E772DFB66425\DismHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(McAfee, Inc.) C:\Program Files\mcafee\virusscan\mcods.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7202520 2013-08-19] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [5762408 2013-06-03] (Dell Inc.)
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537512 2013-07-24] (McAfee, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-11-17] (AVAST Software)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [529480 2016-02-24] (Autodesk Inc.)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [132736 2013-09-05] (Atheros Communications)
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\Run: [Google Update] => C:\Users\mmazu_000\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc.)
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50670720 2016-03-01] (Skype Technologies S.A.)
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\Policies\Explorer: [] 
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\MountPoints2: {1f700ce3-2b0c-11e4-825a-543530c5a420} - "D:\AutoRun.exe" 
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\MountPoints2: {1f700d6b-2b0c-11e4-825a-543530c5a420} - "D:\AutoRun.exe" 
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\MountPoints2: {546f1d73-e8a7-11e3-8258-543530c5a420} - "F:\LGAutoRun.exe" 
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\MountPoints2: {692e0380-27ee-11e5-82ad-543530c5a420} - "F:\AutoRun.exe" 
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\MountPoints2: {6c54c7b5-267b-11e5-82ac-543530c5a420} - "F:\AutoRun.exe" 
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\MountPoints2: {ac3d4240-ee9b-11e4-8295-543530c5a420} - "F:\AutoRun.exe" 
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\MountPoints2: {ac3d444a-ee9b-11e4-8295-543530c5a420} - "F:\AutoRun.exe" 
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\MountPoints2: {ac3d45f4-ee9b-11e4-8295-543530c5a420} - "F:\AutoRun.exe" 
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\...\MountPoints2: {b6e0a64d-2f51-11e4-825b-543530c5a420} - "D:\AutoRun.exe" 
HKU\S-1-5-18\...\Run: [KSS] => "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" autorun
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-11-17] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2014-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 91.231.70.37 91.231.70.58 91.231.70.62 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{3F1CA886-96C9-41E2-A415-3DF2E3441758}: [DhcpNameServer] 91.231.70.37 91.231.70.58 91.231.70.62 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{98F77A31-5081-4919-A7CB-0C1B21F3D3B7}: [DhcpNameServer] 91.231.70.37 91.231.70.58 91.231.70.62 8.8.8.8 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://istart.webssearches.com/?type=hp&ts=1412628315&from=irs&uid=ST1000LM024XHN-M101MBB_S314JA0DC13102C13102
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://istart.webssearches.com/?type=hp&ts=1412628315&from=irs&uid=ST1000LM024XHN-M101MBB_S314JA0DC13102C13102
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://istart.webssearches.com/?type=hp&ts=1412628315&from=irs&uid=ST1000LM024XHN-M101MBB_S314JA0DC13102C13102
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://istart.webssearches.com/?type=hp&ts=1412628315&from=irs&uid=ST1000LM024XHN-M101MBB_S314JA0DC13102C13102
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://istart.webssearches.com/?type=hp&ts=1412628315&from=irs&uid=ST1000LM024XHN-M101MBB_S314JA0DC13102C13102
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://istart.webssearches.com/?type=hp&ts=1412628315&from=irs&uid=ST1000LM024XHN-M101MBB_S314JA0DC13102C13102
HKU\S-1-5-21-1972188415-2893025811-970642349-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1412628315&from=irs&uid=ST1000LM024XHN-M101MBB_S314JA0DC13102C13102&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1412628315&from=irs&uid=ST1000LM024XHN-M101MBB_S314JA0DC13102C13102&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://www.v9.com/web?type=ds&ts=1421849551&from=zbd1&uid=st1000lm024xhn-m101mbb_s314ja0dc13102c13102&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1412628315&from=irs&uid=ST1000LM024XHN-M101MBB_S314JA0DC13102C13102&q={searchTerms}
SearchScopes: HKLM-x32 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://www.v9.com/web?type=ds&ts=1421849551&from=zbd1&uid=st1000lm024xhn-m101mbb_s314ja0dc13102c13102&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1972188415-2893025811-970642349-1001 -> DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1972188415-2893025811-970642349-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1972188415-2893025811-970642349-1001 -> {1A95DC8F-4A6D-4938-B715-50B59B516306} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1972188415-2893025811-970642349-1001 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1972188415-2893025811-970642349-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1972188415-2893025811-970642349-1001 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1972188415-2893025811-970642349-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1972188415-2893025811-970642349-1001 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-11-17] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-11-17] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2013-07-24] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2013-07-24] (McAfee, Inc.)

FireFox:
========
FF ProfilePath: C:\Users\mmazu_000\AppData\Roaming\Mozilla\Firefox\Profiles\y95my363.default
FF NewTab: hxxp://www.delta-homes.com/newtab/?type=nt&ts=1431086388&z=f1be39a508f3766a47bfc1egdz1cdg3e2bcq0c8m0q&from=wpm05083&uid=ST1000LM024XHN-M101MBB_S314JA0DC13102C13102
FF DefaultSearchEngine: delta-homes
FF SearchEngineOrder.1: V9
FF SelectedSearchEngine: delta-homes
FF Homepage: hxxp://www.delta-homes.com/?type=hp&ts=1431086388&z=f1be39a508f3766a47bfc1egdz1cdg3e2bcq0c8m0q&from=wpm05083&uid=ST1000LM024XHN-M101MBB_S314JA0DC13102C13102
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-13] ()
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2013-07-24] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-09-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-09-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-09-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-09-11] (Foxit Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2013-07-24] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-06] (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin HKU\S-1-5-21-1972188415-2893025811-970642349-1001: @tools.google.com/Google Update;version=3 -> C:\Users\mmazu_000\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin HKU\S-1-5-21-1972188415-2893025811-970642349-1001: @tools.google.com/Google Update;version=9 -> C:\Users\mmazu_000\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF SearchPlugin: C:\Users\mmazu_000\AppData\Roaming\Mozilla\Firefox\Profiles\y95my363.default\searchplugins\delta-homes.xml [2015-11-20]
FF SearchPlugin: C:\Users\mmazu_000\AppData\Roaming\Mozilla\Firefox\Profiles\y95my363.default\searchplugins\V9.xml [2015-01-21]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-18]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-05-18]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2014-04-19] [not signed]

Chrome: 
=======
CHR Profile: C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentacje Google) - C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-23]
CHR Extension: (Dokumenty Google) - C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-23]
CHR Extension: (Dysk Google) - C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-23]
CHR Extension: (Google Search) - C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-31]
CHR Extension: (Avast SafePrice) - C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-03-08]
CHR Extension: (Arkusze Google) - C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Avast Online Security) - C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-04-21]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Gmail) - C:\Users\mmazu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-23]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-11-17]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-11-17]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1145928 2016-02-24] (Autodesk Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [312448 2013-09-05] (Windows (R) Win 7 DDK provider) [File not signed]
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
S3 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [77944 2015-11-03] (Autodesk)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-11-17] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109520 2015-11-16] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5554152 2015-11-16] (Avast Software)
R2 CLHNServiceForPowerDVD12; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [89864 2013-11-29] (CyberLink Corp.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [326856 2013-07-10] (McAfee, Inc.)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [175464 2013-07-24] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe [334608 2013-07-25] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [326856 2013-07-10] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [326856 2013-07-10] (McAfee, Inc.)
R3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [602944 2013-07-06] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [326856 2013-07-10] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [326856 2013-07-10] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [326856 2013-07-10] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1017016 2013-08-05] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-07] (McAfee, Inc.)
R2 mfevtp; C:\windows\system32\mfevtps.exe [182752 2013-08-07] (McAfee, Inc.)
S2 Mobile Partner. RunOuc; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [655744 2012-06-28] ()
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [326856 2013-07-10] (McAfee, Inc.)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2013-07-30] (CyberLink)
S3 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-19] (Realtek Semiconductor)
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915408 2013-10-17] (SoftThinks SAS)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36096 2013-05-22] (Advanced Micro Devices, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-11-17] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-11-16] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-11-17] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [466400 2015-11-16] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-11-17] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-11-17] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-17] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-17] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [154256 2015-11-17] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-11-17] (AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-16] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [138240 2013-06-23] (Advanced Micro Devices)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-05] (Qualcomm Atheros)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-08-07] (McAfee, Inc.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-25] (OSR Open Systems Resources, Inc.)
R3 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-09-07] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197264 2012-05-28] (McAfee, Inc.)
S3 huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [239104 2012-09-18] (Huawei Technologies Co., Ltd.)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-07] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-07] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69264 2013-08-07] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-07] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-07] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [377040 2013-07-09] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [95984 2013-07-09] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-07] (McAfee, Inc.)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [147088 2015-11-16] (AVAST Software)
R2 ntk_PowerDVD12; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [84168 2013-03-15] (Cyberlink Corp.)
R3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [30448 2013-08-12] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [34544 2013-08-12] (Synaptics Incorporated)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [310904 2015-11-16] (Avast Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R2 {73526619-C24F-470B-9BED-53D455FBB5C6}; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [32456 2013-11-30] (CyberLink Corp.)
S1 mkzmwgce; \??\C:\WINDOWS\system32\drivers\mkzmwgce.sys [X]
S3 OSFMount; \??\C:\Program Files\OSFMount\OSFMount.sys [X]
S3 PCDSRVC{67F2314B-25F2B3C0-06020200}_0; \??\c:\gencotst\pcdsrvc_x64.pkms [X]
R3 PCDSRVC{D3412D80-CF3B4A27-06020200}_0; \??\c:\program files\my dell\pcdsrvc_x64.pkms [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-29 16:12 - 2016-05-29 16:12 - 00380928 _____ C:\Users\mmazu_000\Downloads\8tizqw9y.exe
2016-05-29 16:09 - 2016-05-29 16:09 - 00028818 _____ C:\Users\mmazu_000\Downloads\FRST.txt
2016-05-29 16:08 - 2016-05-29 16:09 - 00000000 ____D C:\FRST
2016-05-29 16:06 - 2016-05-29 16:07 - 02383872 _____ (Farbar) C:\Users\mmazu_000\Downloads\FRST64.exe
2016-05-29 15:53 - 2016-05-29 15:54 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\mmazu_000\Downloads\mbam-setup-2.1.6.1022.exe
2016-05-29 15:48 - 2016-05-29 15:49 - 00000000 ____D C:\Users\mmazu_000\Desktop\pendrivr
2016-05-29 14:54 - 2016-05-29 14:54 - 00259268 _____ C:\Users\mmazu_000\Downloads\Cw-6_AnalizaObieguChlodz.pdf
2016-05-29 12:17 - 2016-05-29 12:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2016-05-28 16:21 - 2016-05-28 16:24 - 00000000 ____D C:\Users\mmazu_000\Desktop\new
2016-05-28 16:11 - 2016-05-28 16:13 - 00000000 ____D C:\Users\mmazu_000\Desktop\terma do kolosa nr 1
2016-05-23 21:48 - 2016-05-23 21:48 - 00292997 _____ C:\Users\mmazu_000\Downloads\mp-6.pdf
2016-05-22 21:22 - 2016-05-22 21:22 - 00917016 _____ C:\Users\mmazu_000\Downloads\steps3tests_answerkey.pdf
2016-05-22 21:05 - 2016-05-22 21:05 - 02605746 _____ C:\Users\mmazu_000\Downloads\steps3tests_units3_5.pdf
2016-05-22 16:41 - 2016-05-22 17:12 - 00012424 _____ C:\Users\mmazu_000\Desktop\majkut.xlsx
2016-05-22 16:25 - 2016-05-22 16:25 - 00446208 _____ C:\Users\mmazu_000\Downloads\A17.pdf
2016-05-22 16:22 - 2016-05-22 16:23 - 00160726 _____ C:\Users\mmazu_000\Downloads\203_S karta pomiarowa.pdf
2016-05-22 16:22 - 2016-05-22 16:22 - 00229495 _____ C:\Users\mmazu_000\Downloads\203_S wspolczynnik LAMBDA.pdf
2016-05-22 16:21 - 2016-05-22 16:21 - 00210434 _____ C:\Users\mmazu_000\Downloads\203_S instrukcja.pdf
2016-05-22 15:32 - 2016-05-22 15:34 - 00137045 _____ C:\Users\mmazu_000\Downloads\Obliczanie rozpływu mocy.pdf
2016-05-22 12:14 - 2016-05-22 12:14 - 00372224 _____ C:\Users\mmazu_000\Downloads\1099A1221.rar
2016-05-19 22:10 - 2016-05-19 11:42 - 00073816 _____ C:\Users\mmazu_000\Desktop\IPP ZAJ. 19,05.xlsm
2016-05-18 20:21 - 2016-05-18 20:21 - 00052184 _____ (AVAST Software) C:\WINDOWS\avaFDFC.tmp
2016-05-17 22:49 - 2016-05-17 22:49 - 00024064 _____ C:\Users\mmazu_000\Downloads\E18.xls
2016-05-17 22:49 - 2016-05-17 22:49 - 00013824 _____ C:\Users\mmazu_000\Downloads\E16.xls
2016-05-17 19:41 - 2016-05-11 22:08 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-05-17 19:41 - 2016-05-11 22:08 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-17 11:48 - 2016-05-17 12:37 - 00077589 _____ C:\Users\mmazu_000\Desktop\Projekt - Gr.1, sekcja 7, Mazur, Mondry.xlsm
2016-05-17 09:29 - 2016-05-17 09:29 - 00073997 _____ C:\Users\mmazu_000\Downloads\IPP ZAJECIA 05.05.xlsm
2016-05-17 09:29 - 2016-05-17 09:29 - 00052184 _____ (AVAST Software) C:\WINDOWS\avaB493.tmp
2016-05-16 20:06 - 2016-05-16 20:08 - 00111961 _____ C:\Users\mmazu_000\Downloads\E1_statyka2.pdf
2016-05-16 18:10 - 2016-05-16 20:40 - 00010813 _____ C:\Users\mmazu_000\Desktop\terma5.xlsx
2016-05-16 18:07 - 2016-04-22 22:54 - 25816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-05-16 18:04 - 2016-04-22 22:15 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-05-16 18:04 - 2016-04-22 22:14 - 02893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-05-16 18:04 - 2016-04-22 22:08 - 06052864 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-05-16 18:04 - 2016-04-22 22:06 - 20349952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-05-16 18:04 - 2016-04-22 22:00 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-05-16 18:04 - 2016-04-22 21:35 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-05-16 18:04 - 2016-04-22 21:29 - 02285568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-05-16 18:04 - 2016-04-22 21:23 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-05-16 18:04 - 2016-04-22 21:19 - 15414784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-05-16 18:04 - 2016-04-22 21:17 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-05-16 18:04 - 2016-04-22 21:14 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-05-16 18:04 - 2016-04-22 21:14 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-05-16 18:04 - 2016-04-22 21:14 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-05-16 18:04 - 2016-04-22 21:12 - 02131968 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-05-16 18:04 - 2016-04-22 20:54 - 13811200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-05-16 18:04 - 2016-04-22 20:53 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-05-16 18:04 - 2016-04-22 20:52 - 02596864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-05-16 18:04 - 2016-04-22 20:52 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-05-16 18:04 - 2016-04-22 20:51 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-05-16 18:04 - 2016-04-22 20:40 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-05-16 18:04 - 2016-04-22 20:27 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-05-16 18:04 - 2016-04-22 20:24 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-05-16 18:03 - 2016-04-22 21:24 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-05-16 18:03 - 2016-04-22 20:58 - 04611072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-05-16 18:03 - 2016-04-22 20:58 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-05-16 18:03 - 2016-04-22 20:52 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-05-16 18:03 - 2016-04-22 20:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-05-16 18:03 - 2016-04-22 20:23 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-05-16 17:55 - 2016-05-16 17:55 - 00014446 _____ C:\Users\mmazu_000\Downloads\wilgotnosc-moja(1).xlsx
2016-05-16 17:47 - 2016-05-16 17:47 - 00014446 _____ C:\Users\mmazu_000\Downloads\wilgotnosc-moja.xlsx
2016-05-16 17:31 - 2014-03-09 19:13 - 00000000 ____D C:\Users\mmazu_000\Desktop\MP_TT_lab
2016-05-16 17:20 - 2016-05-16 17:22 - 00215198 _____ C:\Users\mmazu_000\Downloads\instr_Clapeyron(2).pdf
2016-05-16 17:19 - 2016-05-16 17:19 - 00215198 _____ C:\Users\mmazu_000\Downloads\instr_Clapeyron(1).pdf
2016-05-16 17:13 - 2016-05-16 17:13 - 00338959 _____ C:\Users\mmazu_000\Downloads\instr_Wd_Wg.pdf
2016-05-16 16:36 - 2016-03-31 08:50 - 01307328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-05-16 16:33 - 2016-03-31 05:40 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-05-16 16:00 - 2016-04-06 23:13 - 00561960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-05-16 16:00 - 2016-04-06 23:13 - 00137976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-05-16 16:00 - 2016-04-06 20:20 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-05-16 16:00 - 2016-04-06 20:19 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-05-16 16:00 - 2016-04-06 20:19 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-05-16 16:00 - 2016-04-06 19:49 - 00120384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-05-16 16:00 - 2016-04-06 19:40 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-05-16 16:00 - 2016-04-06 18:57 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-05-16 16:00 - 2016-04-06 18:52 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-05-16 16:00 - 2016-04-06 18:20 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-05-16 16:00 - 2016-04-06 17:48 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-05-16 15:59 - 2016-04-10 09:48 - 00738096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-05-16 15:59 - 2016-04-10 09:48 - 00613624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-05-16 15:59 - 2016-04-10 06:14 - 01380600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-05-16 15:59 - 2016-04-10 01:29 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-05-16 15:59 - 2016-04-10 00:07 - 01097728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-05-16 15:59 - 2016-03-12 02:49 - 02466136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-05-16 15:59 - 2016-03-12 02:47 - 00160160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2016-05-16 15:59 - 2016-03-12 02:47 - 00121912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2016-05-16 15:59 - 2016-03-10 18:55 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-05-16 15:59 - 2016-03-10 18:42 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-05-16 15:59 - 2015-12-30 23:53 - 02017624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-05-16 15:57 - 2016-03-29 03:42 - 07446368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-05-16 15:57 - 2016-02-27 20:28 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-05-16 15:57 - 2016-02-27 19:57 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-05-16 15:57 - 2016-02-27 19:19 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-05-16 15:57 - 2016-02-27 18:32 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-05-16 15:56 - 2016-04-10 07:37 - 01549144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-05-16 15:56 - 2016-04-09 23:58 - 00534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-05-16 15:56 - 2016-04-09 23:50 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-05-16 15:55 - 2016-04-10 06:21 - 01763376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-05-16 15:55 - 2016-04-10 06:21 - 01489088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-05-16 15:54 - 2016-03-10 19:03 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsparse.dll
2016-05-16 15:54 - 2016-03-10 18:48 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsparse.dll
2016-05-16 15:54 - 2016-03-05 19:44 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-05-16 15:54 - 2016-03-05 19:04 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-05-15 23:33 - 2016-03-16 03:58 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-05-15 23:33 - 2016-03-16 03:58 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-05-15 23:33 - 2016-03-10 18:52 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-05-15 23:32 - 2016-04-11 08:21 - 00074584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2016-05-15 23:32 - 2016-03-14 18:50 - 00316760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-05-15 23:32 - 2016-02-06 18:58 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-05-15 23:32 - 2016-02-06 18:32 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-05-15 23:28 - 2016-05-15 23:28 - 00021701 _____ C:\Users\mmazu_000\Downloads\pa gr1.ods
2016-05-15 23:16 - 2016-05-15 23:16 - 00124469 _____ C:\Users\mmazu_000\Downloads\E1_statyka1.pdf
2016-05-13 22:51 - 2016-05-13 22:53 - 00000000 ____D C:\Users\mmazu_000\Desktop\tme notatki
2016-05-13 17:52 - 2016-05-13 17:52 - 05995712 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2016-05-12 13:51 - 2016-05-12 15:17 - 1073741824 _____ C:\Users\mmazu_000\Downloads\AutoMapa_6.19_(1604)_Europa_(Cracked).part3.rar
2016-05-12 13:48 - 2016-05-12 15:28 - 431414155 _____ C:\Users\mmazu_000\Downloads\AutoMapa_6.19_(1604)_Europa_(Cracked).part4.rar
2016-05-12 13:43 - 2016-05-12 15:41 - 1073741824 _____ C:\Users\mmazu_000\Downloads\AutoMapa_6.19_(1604)_Europa_(Cracked).part2.rar
2016-05-12 13:41 - 2016-05-12 15:39 - 1073741824 _____ C:\Users\mmazu_000\Downloads\AutoMapa_6.19_(1604)_Europa_(Cracked).part1.rar
2016-05-12 11:17 - 2016-05-12 13:39 - 864555008 _____ C:\Users\mmazu_000\Downloads\Game.of.Thrones.S06E02.PL.480p.HDTV.XviD-KiT-DW-MTU.avi
2016-05-12 11:14 - 2016-05-12 12:33 - 719351808 _____ C:\Users\mmazu_000\Downloads\Game.of.Thrones.S06E01.PL.480p.HDTV.XviD-KiT-DW-MTU.avi
2016-05-11 17:00 - 2016-05-11 18:44 - 743411712 _____ C:\Users\mmazu_000\Downloads\Game.of.Thrones.S06E03.PL.480p.HDTV.XviD-KiT.avi
2016-05-11 16:58 - 2016-05-11 18:28 - 523479520 _____ C:\Users\mmazu_000\Downloads\Game.of.Thrones.S06E02.PL.480p.HDTV.XviD-KiT.avi.part
2016-05-11 16:56 - 2016-05-11 18:28 - 177613432 _____ C:\Users\mmazu_000\Downloads\Game.of.Thrones.S06E01.PL.480p.HDTV.XviD-KiT.avi.part
2016-05-09 19:43 - 2016-05-09 19:43 - 01208171 _____ C:\Users\mmazu_000\Downloads\bilet_104896.pdf
2016-05-09 19:43 - 2016-05-09 19:43 - 01208158 _____ C:\Users\mmazu_000\Downloads\bilet_104895.pdf
2016-05-09 19:43 - 2016-05-09 19:43 - 01208152 _____ C:\Users\mmazu_000\Downloads\bilet_104894.pdf
2016-05-09 19:43 - 2016-05-09 19:43 - 01208141 _____ C:\Users\mmazu_000\Downloads\bilet_104897.pdf
2016-05-09 19:40 - 2016-05-09 19:41 - 01208154 _____ C:\Users\mmazu_000\Downloads\bilet_104893.pdf
2016-05-09 11:25 - 2016-05-09 11:25 - 04136137 _____ (SIMEX Sp. z o.o. ) C:\Users\mmazu_000\Downloads\68997DAQManager-v1.7.3.82-install.exe
2016-05-09 11:24 - 2016-05-09 11:25 - 00494248 _____ C:\Users\mmazu_000\Downloads\77491T_instrukcja.pdf
2016-05-08 13:57 - 2016-05-08 13:57 - 00205989 _____ C:\Users\mmazu_000\Downloads\Badanie sieci trójfazowej.pdf
2016-05-08 11:38 - 2016-05-08 11:41 - 100916253 _____ C:\Users\mmazu_000\Downloads\zdj_rower_
2016-05-06 23:04 - 2016-01-06 20:25 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-05-06 18:01 - 2016-05-08 10:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-05-05 18:21 - 2016-05-28 16:10 - 00000000 ____D C:\Users\mmazu_000\Desktop\aa

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-29 15:51 - 2014-08-05 23:02 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-05-29 15:43 - 2016-04-19 21:50 - 00000000 ____D C:\Users\mmazu_000\Desktop\IPP PROGRAM ALL
2016-05-29 15:23 - 2014-11-17 23:02 - 00001106 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1972188415-2893025811-970642349-1001UA.job
2016-05-29 15:00 - 2014-08-08 16:53 - 00000000 ____D C:\Users\mmazu_000\AppData\Local\CrashDumps
2016-05-29 14:29 - 2016-03-14 19:15 - 00000000 ____D C:\Users\mmazu_000\AppData\Roaming\Skype
2016-05-29 12:20 - 2014-08-05 21:42 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1972188415-2893025811-970642349-1001
2016-05-29 12:16 - 2015-11-01 00:58 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-05-29 12:15 - 2014-05-28 15:22 - 00000000 __RDO C:\Users\mmazu_000\SkyDrive
2016-05-28 17:24 - 2015-07-16 07:28 - 00001054 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1972188415-2893025811-970642349-1001Core1d0bf884693a842.job
2016-05-28 16:14 - 2016-03-19 14:04 - 00000000 ____D C:\Users\mmazu_000\Desktop\sem4
2016-05-28 16:14 - 2014-05-28 16:31 - 00000000 ___RD C:\Users\mmazu_000\Desktop\programy
2016-05-28 13:53 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-28 12:54 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2016-05-28 12:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-05-28 12:28 - 2014-04-19 02:11 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2016-05-28 12:25 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-05-28 12:22 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-26 11:30 - 2014-08-05 21:35 - 00003970 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0FF62ACF-337C-4213-91B8-5AB0B4811845}
2016-05-19 22:05 - 2014-08-05 21:24 - 00000000 ____D C:\Users\mmazu_000
2016-05-17 19:36 - 2013-08-22 16:44 - 00568552 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-05-17 19:25 - 2014-12-13 00:43 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-05-17 19:25 - 2013-08-22 21:12 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-17 19:24 - 2013-08-22 15:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-05-17 18:10 - 2014-05-28 15:20 - 00000000 ____D C:\Users\mmazu_000\Documents\Bluetooth Folder
2016-05-17 12:45 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-05-16 16:04 - 2014-08-07 15:49 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-05-15 22:22 - 2014-08-07 15:49 - 139319312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-05-14 11:28 - 2016-03-19 16:17 - 00136495 _____ C:\AutoMapaSetupLog.txt
2016-05-14 10:33 - 2015-10-23 23:39 - 00002432 _____ C:\Users\mmazu_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-13 23:22 - 2014-06-04 12:14 - 00000000 ____D C:\Users\mmazu_000\Desktop\filmy
2016-05-13 22:57 - 2016-03-24 22:05 - 00000410 _____ C:\Users\mmazu_000\Desktop\Nowy dokument tekstowy (3).txt
2016-05-13 22:57 - 2015-01-12 17:46 - 00000000 ____D C:\Users\mmazu_000\Desktop\Moni szkola pendrive
2016-05-13 22:54 - 2016-04-27 18:03 - 00000729 _____ C:\Users\mmazu_000\Desktop\Nowy dokument tekstowy (4).txt
2016-05-13 17:53 - 2014-08-05 23:02 - 00003712 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-05-11 17:18 - 2015-07-16 07:28 - 00003680 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1972188415-2893025811-970642349-1001Core1d0bf884693a842
2016-05-11 17:18 - 2014-11-17 23:02 - 00004060 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1972188415-2893025811-970642349-1001UA
2016-05-11 16:08 - 2015-04-04 16:16 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2016-05-11 16:08 - 2015-04-04 16:16 - 00000000 ___SD C:\WINDOWS\system32\GWX
2016-05-11 16:08 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-05-08 10:12 - 2014-08-05 22:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-29 20:51 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps

==================== Files in the root of some directories =======

2014-11-14 17:46 - 2014-11-14 17:46 - 0000001 _____ () C:\Users\mmazu_000\AppData\Local\llftool.4.40.agreement
2014-04-19 03:00 - 2014-04-19 03:00 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-04-19 02:02 - 2014-04-19 02:03 - 0000121 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log
2014-04-19 01:54 - 2014-04-19 01:56 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2014-04-19 01:56 - 2014-04-19 01:59 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log
2014-04-19 01:59 - 2014-04-19 02:02 - 0000108 _____ () C:\ProgramData\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}.log
2014-04-19 01:54 - 2014-04-19 01:54 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

Some files in TEMP:
====================
C:\Users\mmazu_000\AppData\Local\Temp\odk_setup.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-05-17 19:49

==================== End of FRST.txt ============================