Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja: 31-08-2016 Uruchomiony przez msti (administrator) MATI-KOMPUTER (04-09-2016 12:39:48) Uruchomiony z C:\Users\msti\Downloads Załadowane profile: msti (Dostępne profile: msti) Platform: Microsoft Windows 7 Ultimate (X86) Język: Polski (Polska) Internet Explorer Wersja 8 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Digital Wave Ltd.) C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe (Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe (Nullsoft, Inc.) C:\Program Files\Winamp\winampa.exe (RealNetworks, Inc.) C:\Program Files\Common Files\Real\Update_OB\realsched.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [NeroCheck] => C:\Windows\system32\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh) HKLM\...\Run: [WinampAgent] => C:\Program Files\Winamp\winampa.exe [74752 2011-10-26] (Nullsoft, Inc.) HKLM\...\Run: [TkBellExe] => C:\Program Files\Common Files\Real\Update_OB\realsched.exe [198160 2009-08-08] (RealNetworks, Inc.) Winlogon\Notify\WgaLogon: HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-21-3694238110-1512007055-801634889-1000\...\Run: [ALLUpdate] => C:\Program Files\ALLPlayer\ALLUpdate.exe [869888 2008-11-24] () HKU\S-1-5-21-3694238110-1512007055-801634889-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\daemon.exe [490952 2008-07-24] (DT Soft Ltd) HKU\S-1-5-21-3694238110-1512007055-801634889-1000\...\Run: [Google Update] => "C:\Users\msti\AppData\Local\Google\Update\GoogleUpdate.exe" /c HKU\S-1-5-21-3694238110-1512007055-801634889-1000\...\Run: [ccleaner] => C:\Program Files\CCleaner\CCleaner.exe [2761024 2012-02-22] (Piriform Ltd) HKU\S-1-5-21-3694238110-1512007055-801634889-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-3694238110-1512007055-801634889-1000\...\MountPoints2: {ce4fe3c1-7352-11e4-976d-001d7d9f93c0} - F:\LG_PC_Programs.exe HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Brak pliku Startup: C:\Users\msti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk [2009-10-01] ShortcutTarget: OpenOffice.org 3.1.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe () CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) ProxyServer: [S-1-5-21-3694238110-1512007055-801634889-1000] => 83.2.10.149:80 AutoConfigURL: [S-1-5-21-3694238110-1512007055-801634889-1000] => 83.2.10.149:80 Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{E01E36C2-8B5E-4B98-9686-A4E1D24E5F15}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKU\S-1-5-21-3694238110-1512007055-801634889-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms} HKU\S-1-5-21-3694238110-1512007055-801634889-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.bing.com/search?q={searchTerms} HKU\S-1-5-21-3694238110-1512007055-801634889-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie HKU\S-1-5-21-3694238110-1512007055-801634889-1000\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://www.bing.com/search?q={searchTerms} SearchScopes: HKLM -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms} SearchScopes: HKLM -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3694238110-1512007055-801634889-1000 -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3694238110-1512007055-801634889-1000 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-3694238110-1512007055-801634889-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-06] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-06] (Oracle Corporation) BHO: IEPluginBHO Class -> {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} -> C:\Users\msti\AppData\Roaming\Nowe Gadu-Gadu\_userdata\ggbho.1.dll => Brak pliku DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\msti\AppData\Roaming\Mozilla\Firefox\Profiles\nekhbmjf.default FF Plugin: @ganymede/GanymedeNetPlugin,version=1.0 -> C:\Program Files\Ganymede\Plugins\npganymedenet.dll [2012-10-11] ( ) FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.) FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-06] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-06] (Oracle Corporation) FF Plugin: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2009-08-08] (RealNetworks, Inc.) FF Plugin: @real.com/nprjplug;version=1.0.3.69 -> C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll [2009-08-08] (RealNetworks, Inc.) FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll [2009-08-08] (RealNetworks, Inc.) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-06-23] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3694238110-1512007055-801634889-1000: @tools.google.com/Google Update;version=3 -> C:\Users\msti\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [Brak pliku] FF Plugin HKU\S-1-5-21-3694238110-1512007055-801634889-1000: @tools.google.com/Google Update;version=9 -> C:\Users\msti\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [Brak pliku] FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npganymedenet.dll [2012-10-11] ( ) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2016-06-23] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2009-08-08] (RealNetworks, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprjplug.dll [2009-08-08] (RealNetworks, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll [2009-08-08] (RealNetworks, Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll [2011-10-26] (Nullsoft, Inc.) FF Extension: (Firefox Hotfix) - C:\Users\msti\AppData\Roaming\Mozilla\Firefox\Profiles\nekhbmjf.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-02] Chrome: ======= CHR Profile: C:\Users\msti\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Prezentacje Google) - C:\Users\msti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-20] CHR Extension: (Dokumenty Google) - C:\Users\msti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-20] CHR Extension: (Dysk Google) - C:\Users\msti\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-20] CHR Extension: (YouTube) - C:\Users\msti\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-20] CHR Extension: (Arkusze Google) - C:\Users\msti\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-20] CHR Extension: (Dokumenty Google offline) - C:\Users\msti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-20] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\msti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-20] CHR Extension: (Gmail) - C:\Users\msti\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-20] CHR Extension: (Chrome Media Router) - C:\Users\msti\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2008-09-01] StartMenuInternet: Google Chrome.OXSZAPLE4C34O3MZN47EFSJXNY - C:\Users\msti\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 DigitalWave.Update.Service; C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe [388968 2016-03-28] (Digital Wave Ltd.) R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes) R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-06-23] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 GCR410P; C:\Windows\System32\DRIVERS\grserial.sys [31232 2009-06-23] (Gemplus) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [170200 2016-09-04] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [53120 2016-03-10] (Malwarebytes Corporation) S3 Nokia USB Phone Parent; C:\Windows\System32\drivers\nmwcd.sys [124928 2005-10-13] (Nokia) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [721904 2009-08-08] () [Brak podpisu cyfrowego] R1 StarOpen; C:\Windows\system32\Drivers\StarOpen.sys [5632 2006-07-24] () [Brak podpisu cyfrowego] U3 any2hia8; C:\Windows\system32\Drivers\any2hia8.sys [0 ] (Microsoft Corporation) <==== UWAGA (zerobajtowy plik/folder) ========================== MD5 sterowników ======================= C:\Windows\system32\DRIVERS\1394ohci.sys AF782BDFE3CAC47F1129A4B5D2A01A65 C:\Windows\System32\DRIVERS\ACPI.sys 24ECB80A4516AEBF828BA3DAE0F52837 C:\Windows\system32\DRIVERS\acpipmi.sys 04503378010AB9BB20F59757B7DD9178 C:\Windows\system32\DRIVERS\adp94xx.sys 64FE691755CECBE226A2A9F099069396 C:\Windows\system32\DRIVERS\adpahci.sys F47A684F03846427B10C47A04DCC893E C:\Windows\system32\DRIVERS\adpu320.sys 772648E54E1E10C63FFAF509E1387E1B C:\Windows\system32\drivers\afd.sys 3D6BA7231C736266C8AAD8117525D045 C:\Windows\system32\DRIVERS\agp440.sys 9B394E33353BDF2B5E52AEE81ADABBE8 C:\Windows\system32\DRIVERS\djsvs.sys A8F7DE9200972636A58BE505009C31FD C:\Windows\system32\DRIVERS\aliide.sys 4F63FA31F0B7C1F3F1A197937D105AD6 C:\Windows\system32\DRIVERS\amdagp.sys 87F28E1A7D3A798EB7E4E96767C0631A C:\Windows\system32\DRIVERS\amdide.sys 86A8F4F3A7FBE1DA428C5FE9EF4515EF C:\Windows\system32\DRIVERS\amdk8.sys 3F66367B93980FA81396959EDC76DFA7 C:\Windows\system32\DRIVERS\amdppm.sys 60351055556834C392331C0F216A8E50 C:\Windows\system32\DRIVERS\amdsata.sys 11014BB22D113728199B986198DC18F4 C:\Windows\system32\DRIVERS\amdsbs.sys 7F0A0B4C468F953672C0B039E6D8A6EC C:\Windows\System32\DRIVERS\amdxata.sys 643E6E6AE7E59FC62EAE9E59256A1DDD C:\Windows\system32\drivers\appid.sys 28FAFB6E22F61B5B0E4E7BFB19C54AEC C:\Windows\system32\DRIVERS\arc.sys AAEED4FA44F181C678C217D97E168DE7 C:\Windows\system32\DRIVERS\arcsas.sys 956E16C1EFA9133A5DA51C7D1D863C6A C:\Windows\System32\DRIVERS\asyncmac.sys 6A40E3E02DB10E5497FDBB2F366BC16C C:\Windows\System32\DRIVERS\atapi.sys D90ACAAA54CED9326799A59201107EC7 C:\Windows\System32\DRIVERS\atikmdag.sys 712D8A95E45B070114C5309ADA7358FF C:\Windows\system32\DRIVERS\bxvbdx.sys ==> MD5 jest poprawne C:\Windows\System32\DRIVERS\b57nd60x.sys ==> MD5 jest poprawne C:\Windows\system32\Drivers\Beep.sys A6EE06FE7DDDF6F87225EE6DCA120EE0 C:\Windows\System32\DRIVERS\blbdrive.sys D2FF91678C4218EA758A4E7C1BF9A5E0 C:\Windows\System32\DRIVERS\bowser.sys 598CD03CEDDF0323AAF8417CFA938A3B C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 jest poprawne C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 jest poprawne C:\Windows\System32\Drivers\Brserid.sys ==> MD5 jest poprawne C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 jest poprawne C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 jest poprawne C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 jest poprawne C:\Windows\system32\DRIVERS\bthmodem.sys 7F00B14823273A63046A2FD53F7193AA C:\Windows\System32\DRIVERS\cdfs.sys F30A869159183D715DB63BE8CC8C6D30 C:\Windows\System32\DRIVERS\cdrom.sys F0F8C9AD4957EB4A74B7659026C08A6E C:\Windows\system32\DRIVERS\circlass.sys 3DF2B8F78D171A83EFBF7418798C99A5 C:\Windows\System32\CLFS.sys 2BD968CF82BCB1244A776BE05E98A1AF C:\Windows\system32\DRIVERS\CmBatt.sys 25F4066AB4E626BB8103D139D702558F C:\Windows\system32\DRIVERS\cmdide.sys 57514F19FDD3BB043904FE12CBC44F01 C:\Windows\System32\Drivers\cng.sys A81CEC969E44F8F410A77A36CFBB2990 C:\Windows\system32\DRIVERS\compbatt.sys 6654895C6BFD62601655A9F7875B81E4 C:\Windows\System32\DRIVERS\CompositeBus.sys 07685FA053CE0040D9C983E58EAF279F C:\Windows\system32\DRIVERS\crcdisk.sys E704524CF75E4803FC740ED741A681BC C:\Windows\System32\drivers\csc.sys 5B0E70917F760DBDB455367467154501 C:\Windows\System32\Drivers\dfsc.sys 76EFE4B9C277CD8AA4B500ED495B8AFD C:\Windows\System32\drivers\discache.sys FB56AEECF4AF51881AA7EA3501A6C852 C:\Windows\System32\DRIVERS\disk.sys 32DD8580AA0248CFDBED9B926FCD87EA C:\Windows\System32\drivers\drmkaud.sys D7F2520A19A590368CEF432288FBFAA1 C:\Windows\System32\drivers\dxgkrnl.sys 7D1939322BED97321BA48DD395201404 C:\Windows\system32\DRIVERS\evbdx.sys ==> MD5 jest poprawne C:\Windows\system32\DRIVERS\elxstor.sys 9E1DDDAEEB2419D7DEF81E7340A3EB7D C:\Windows\system32\DRIVERS\errdev.sys EDA0FA34809E83C630226B3217CDA19A C:\Windows\system32\Drivers\exfat.sys 1B673DD77D3B9B5F3048D3F24F118599 C:\Windows\system32\Drivers\fastfat.sys E5BFFBC04CEF3FE1CA0392F74B656064 C:\Windows\System32\DRIVERS\fdc.sys 06801695B4846C469B746792F2E0F70F C:\Windows\System32\drivers\fileinfo.sys BECADCA968D5E3F6A402F9EC7057DD39 C:\Windows\System32\drivers\filetrace.sys 694891D5C167F6AE2A16D71ACD6F7130 C:\Windows\System32\DRIVERS\flpydisk.sys 5D937A58B6781CC7D2ADE817CE00AE57 C:\Windows\System32\drivers\fltmgr.sys 31A967DD82D713DFAF6EEE20ED7D838D C:\Windows\System32\drivers\FsDepends.sys D11211F7BBD59065FF9C9FCC41AB262C C:\Windows\system32\Drivers\Fs_Rec.sys EA08031A81D736B700658A40DCA38F3F C:\Windows\System32\DRIVERS\fvevol.sys AB78B0FB7D862F356AC49993BBEE860B C:\Windows\system32\DRIVERS\gagp30kx.sys 5E267259691E063B3FF8DA2486C29110 C:\Windows\System32\DRIVERS\grserial.sys 4849CC6C27D6456CE2F7EF7C016AB503 C:\Windows\System32\DRIVERS\ggflt.sys 007AEA2E06E7CEF7372E40C277163959 C:\Windows\System32\DRIVERS\ggsemc.sys C73DE35960CA75C5AB4AE636B127C64E C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 jest poprawne C:\Windows\System32\drivers\HdAudio.sys 50C961FC9013BB3844BFDAAFFC2A6ADA C:\Windows\System32\DRIVERS\HDAudBus.sys 7422F31F4CD09FCB36DFF62B09595BDC C:\Windows\system32\DRIVERS\HidBatt.sys 593D83A9D5779FF1274C78F0714E2518 C:\Windows\system32\DRIVERS\hidbth.sys 87D1B7427150805CC1A6C4D0AC5292B4 C:\Windows\system32\DRIVERS\hidir.sys 2DD90E4B3530E248680576ECB3FCF6B1 C:\Windows\System32\DRIVERS\hidusb.sys 5BFB528E3662C3C436643BB3F27DAF15 C:\Windows\system32\DRIVERS\HpSAMD.sys 522BD69B19C6CEB61E88924BB9B89617 C:\Windows\System32\drivers\HTTP.sys 09CA19F97A915D00F37B9423ACDD2722 C:\Windows\System32\drivers\hwpolicy.sys 5B6356E6B910F4BC0C2B6C8B7ED1EB32 C:\Windows\System32\DRIVERS\i8042prt.sys 00A34DE09F0048893311CF81639EE2E6 C:\Windows\system32\DRIVERS\iaStorV.sys E2D61947675D724CE287D318AC4507C2 C:\Windows\system32\DRIVERS\iirsp.sys B24CB4E5F3567A955D27DFDA33969CE6 C:\Windows\system32\DRIVERS\intelide.sys 655AC5DB8F6B1FD8ABB32F9A6BAEF8FC C:\Windows\System32\DRIVERS\intelppm.sys 888577155B5CAF7CC23F71836F02636A C:\Windows\System32\DRIVERS\ipfltdrv.sys FD28440A6680AC75A5827884E7B97698 C:\Windows\system32\DRIVERS\IPMIDrv.sys 9A3BD9981092CD5AC14373CC3E3B6504 C:\Windows\System32\drivers\ipnat.sys C8C34F280D6C75C28674B5063D783647 C:\Windows\System32\drivers\irenum.sys D7426D1E45E6E5952A0C880836C84A1E C:\Windows\system32\DRIVERS\isapnp.sys EFF1BE949A6512DD358CC559881B8046 C:\Windows\system32\DRIVERS\msiscsi.sys 47A76FC5F6EE5ED0ED6BAC6D582522C1 C:\Windows\System32\DRIVERS\kbdclass.sys 7C2734643B7DFCD906ED6DE486826879 C:\Windows\System32\DRIVERS\kbdhid.sys F1E5D4E2465ABA63B50938CBDC4A15FE C:\Windows\System32\Drivers\ksecdd.sys 0DF4E83EB6B0261F3408CE078008235A C:\Windows\System32\Drivers\ksecpkg.sys E15E48A9979727584AC742DA3918B39E C:\Windows\System32\DRIVERS\lltdio.sys 89FF52AD9FD03CF5E600B2F110A66E32 C:\Windows\system32\DRIVERS\lsi_fc.sys 39DDD75A1ED6B7621506020F7CE28509 C:\Windows\system32\DRIVERS\lsi_sas.sys 56BECBCFD5ECEBC6902539C30C4B2921 C:\Windows\system32\DRIVERS\lsi_sas2.sys 78FC0CE728D48CE84FA3C6B8B9F4C4E8 C:\Windows\system32\DRIVERS\lsi_scsi.sys CB02D314C3BBFBE6F40124145520441F C:\Windows\system32\drivers\luafv.sys 3415233DC976351E11232CAA5C8643D5 C:\Windows\system32\drivers\mbam.sys A1D52DB330E18B5A7A718D31D950CA87 C:\Windows\system32\drivers\MBAMSwissArmy.sys 5023F594D5448E16F920157174C61358 C:\Windows\system32\drivers\mwac.sys 66DDF98174707CBADBCA6BBABDA1231C C:\Windows\system32\DRIVERS\megasas.sys 63AA228BFDF5E82B97944AA0BF54759E C:\Windows\system32\DRIVERS\MegaSR.sys 7CD815E9E7A0DA255166A4BACEF0748B C:\Windows\System32\drivers\modem.sys 4E070C479837E8589480F7639E70DB38 C:\Windows\System32\DRIVERS\monitor.sys 1D0284983FC0CAA6EA3B775FA65C777C C:\Windows\System32\DRIVERS\mouclass.sys 0816B78AD35C36421ABA74C217F26266 C:\Windows\system32\DRIVERS\mouhid.sys A12E8829900B509257EFDC7542E882C1 C:\Windows\System32\drivers\mountmgr.sys F3394CAACFEFB3ECE0FCA6B7B6B69FF1 C:\Windows\system32\DRIVERS\mpio.sys F68B752ED8BC736072984D8CBEA19BE0 C:\Windows\System32\drivers\mpsdrv.sys 05990677A59BEED78E008538DEAD5EAE C:\Windows\system32\drivers\mrxdav.sys 4DCE93289D821B77DD83D35073FB90C2 C:\Windows\System32\DRIVERS\mrxsmb.sys 85327CD14FE1F7B6D3ACA2D475D35DFA C:\Windows\System32\DRIVERS\mrxsmb10.sys B5D4CE8432125FD5BB0734166B819802 C:\Windows\System32\DRIVERS\mrxsmb20.sys 6E23A3CF110BA7C5229ED52B4187D023 C:\Windows\system32\DRIVERS\msahci.sys 5E7F3F06C9EDA98463CB95296325765B C:\Windows\system32\DRIVERS\msdsm.sys 6E5E1B0AF76BBC2FF49067633C9D07E9 C:\Windows\system32\Drivers\Msfs.sys 987490CA311E2C8AB4D91265B2C25268 C:\Windows\System32\drivers\mshidkmdf.sys FE0A18E93744DE29874CABE582112CBD C:\Windows\System32\DRIVERS\msisadrv.sys 3C4412680F6B53892BEB4E20929E5050 C:\Windows\System32\drivers\MSKSSRV.sys BBA471BA66AD06F1EDCBE72B5DB5F2E1 C:\Windows\System32\drivers\MSPCLOCK.sys 45D3BCF3640299FB26800C87ABECC507 C:\Windows\System32\drivers\MSPQM.sys 0ACABFC91E813B2D073319D56AFEB85B C:\Windows\system32\Drivers\MsRPC.sys CA46B0C70EBB9161EB936D0A67E0968B C:\Windows\System32\DRIVERS\mssmbios.sys 006D1DFF95479CA24690400FD1D11DA6 C:\Windows\System32\drivers\MSTEE.sys EF94E248C00D92B13BB0886685F3EECE C:\Windows\system32\DRIVERS\MTConfig.sys 2E845D6ADF90535B746D8EEEBD1A4982 C:\Windows\System32\Drivers\mup.sys D6C03FF1EC60EBE0AF9B6DF0E20891F1 C:\Windows\System32\DRIVERS\nwifi.sys 64D4D21910265659E5308121BC2417EA C:\Windows\System32\drivers\ndis.sys 0CBCA206104CC87B2C855555E9B2CB11 C:\Windows\System32\DRIVERS\ndiscap.sys 02CDFD000E6B9ACA04E9544286B88C43 C:\Windows\System32\DRIVERS\ndistapi.sys 635CABED287CF916613139C79C3EDA9C C:\Windows\System32\DRIVERS\ndisuio.sys BA7835277C0ADE05B11B75437B75AB3B C:\Windows\System32\DRIVERS\ndiswan.sys 77408BE669D00B5EC97A37E2D487684A C:\Windows\system32\Drivers\NDProxy.sys B9DA43B4552230023A45C0C6E3216EDE C:\Windows\System32\DRIVERS\netbios.sys 79F67720BE9140331E553396A0E4624D C:\Windows\System32\DRIVERS\netbt.sys C5353F9C99A0717E543C70983A822E6A C:\Windows\system32\DRIVERS\nfrd960.sys 5EC34A704A64A4E51226CC67E4CCCA63 C:\Windows\System32\drivers\nmwcd.sys 09899CA1E1DF288BEB768461401D18EE C:\Windows\system32\Drivers\Npfs.sys DF1CD3E547287EC349C2CBA2134EE194 C:\Windows\System32\drivers\nsiproxy.sys B51B54CA184ECE3929D4032087FAD0B0 C:\Windows\system32\Drivers\Ntfs.sys 673D81C0C8764C03D5D5199CCBD8518A C:\Windows\system32\Drivers\Null.sys E7EA9EE0F84E0D77FAD8311E6B7FAB40 C:\Windows\system32\DRIVERS\nvraid.sys 07AF0EC6D7E2EBC2A5CE7BF08D0715AE C:\Windows\system32\DRIVERS\nvstor.sys 8550298F4BF5716AC9CE854CAB38C24C C:\Windows\system32\DRIVERS\nv_agp.sys 5B22A71E02C48C63CDFA54C9A4904E46 C:\Windows\system32\DRIVERS\ohci1394.sys 31DF6E8D79032244BF3EAAF42E9E69FA C:\Windows\System32\DRIVERS\parport.sys 4F4825F91B809FE4F4123F35C0AB3316 C:\Windows\System32\drivers\partmgr.sys 6F9F32F9E6B3468D7D6C12AEBDC17BB0 C:\Windows\System32\DRIVERS\parvdm.sys 2B8419059F77BBA67223B50E87ACE32E C:\Windows\System32\DRIVERS\pci.sys DD6C3601EAD874470E61295F25CE943F C:\Windows\System32\DRIVERS\pciide.sys D6607B933FAA4252807836EA518005CD C:\Windows\system32\DRIVERS\pcmcia.sys D84C4FB9619516CFFBD578F419EB99E0 C:\Windows\System32\drivers\pcw.sys E19EFA3A90771044EA58AB045ABFCA86 C:\Windows\System32\drivers\peauth.sys 61D8AA05AAFC0209E21BB15FA0491FC4 C:\Windows\System32\DRIVERS\raspptp.sys BA11465BCD4674B599AB57CCA93FB2DF C:\Windows\system32\DRIVERS\processr.sys 2757564745319D1CC47200F2E63FE50B C:\Windows\System32\DRIVERS\pacer.sys 18A97DE73644851A93F0E0B12F787685 C:\Windows\system32\DRIVERS\ql2300.sys CF1423799525EB45069897C69AD5BEE7 C:\Windows\system32\DRIVERS\ql40xx.sys BBC16ADB6FA47F09EF6685EDBB03EE33 C:\Windows\system32\drivers\qwavedrv.sys DEE73346B62DAFDD424BA010CFE54178 C:\Windows\System32\DRIVERS\rasacd.sys 8A758EE99CB89262B62751D6CEDBEEA1 C:\Windows\System32\DRIVERS\AgileVpn.sys AB5153E88C9D2D27B242748E030D4B95 C:\Windows\System32\DRIVERS\rasl2tp.sys D3669FEAB051EA8F86A00184D66A766E C:\Windows\System32\DRIVERS\raspppoe.sys BE4B8DF8E4DEE87858B39FCB189EED40 C:\Windows\System32\DRIVERS\rassstp.sys 88B261611928D77AC1AFEE4D38C1982B C:\Windows\System32\DRIVERS\rdbss.sys 5A27B5388A0D7985E9CC81A058BD3878 C:\Windows\System32\DRIVERS\rdpbus.sys E55186FDB3C05C32593F21F5E8143015 C:\Windows\System32\DRIVERS\RDPCDD.sys 8E3879C9ECD06797CD87EB037A946463 C:\Windows\System32\drivers\rdpdr.sys 06001AE35EE9BD949CDE8CA2A35398DB C:\Windows\System32\drivers\rdpencdd.sys 75D6C0E94568DCBC6919354F74FF093F C:\Windows\System32\drivers\rdprefmp.sys 140CB2548542CFAAC3014FA87BB8F21D C:\Windows\system32\Drivers\RDPWD.sys 8A2B86FBB0A0FA3986536B57ED0828BC C:\Windows\System32\drivers\rdyboost.sys 5976FA5820B7260B772966CAA1E6DE5C C:\Windows\System32\DRIVERS\rspndr.sys 6736A71F286EFAADC6FEE6116B97EEFC C:\Windows\System32\DRIVERS\Rt86win7.sys 7DFD48E24479B68B258D8770121155A0 C:\Windows\system32\DRIVERS\vms3cap.sys 08DAD2DB67DCA19E68C481591A35D767 C:\Windows\system32\DRIVERS\sbp2port.sys 5F88BF702E014C99E9DBD8A52EB1B0B8 C:\Windows\System32\DRIVERS\scfilter.sys F4FC939F0610B9C1FE2389EAEDFFB7BF C:\Windows\system32\Drivers\secdrv.sys ==> MD5 jest poprawne C:\Windows\System32\DRIVERS\serenum.sys FD5C5E05C0D6503A9DE69AEA9560E29B C:\Windows\System32\DRIVERS\serial.sys 0EDDDC4FF3C536988E3661A6AE10771B C:\Windows\system32\DRIVERS\sermouse.sys CC3664930DD02F2018F80CDC01C2CEC0 C:\Windows\system32\DRIVERS\sffdisk.sys 2BE4EBFA47434686DC2C806D541B1E9F C:\Windows\system32\DRIVERS\sffp_mmc.sys 302F55662C7473E7E1C0D610EBF73683 C:\Windows\system32\DRIVERS\sffp_sd.sys 5C49EE18C60D35EE4CF5E960358F5097 C:\Windows\system32\DRIVERS\sfloppy.sys C2BFBFEFFED1693531B7C93A4959187D C:\Windows\system32\DRIVERS\sisagp.sys 9EF218384DA9550148B35C7D96555A6C C:\Windows\system32\DRIVERS\SiSRaid2.sys 877380140CE1AA01F6BCBFA8182F39A2 C:\Windows\system32\DRIVERS\sisraid4.sys 8BE5F2E5F1C86A48F100A2EBD4433714 C:\Windows\System32\DRIVERS\smb.sys 4CBB5B87A4E36DA5551095C234124E5B C:\Windows\system32\Drivers\spldr.sys D23F7DC88E3984D311A35FB4BCEB7979 C:\Windows\System32\Drivers\sptd.sys D41D8CD98F00B204E9800998ECF8427E C:\Windows\System32\DRIVERS\srv.sys 96F6AC82F44D87192BE62472BD1AE668 C:\Windows\System32\DRIVERS\srv2.sys 5A198B36AD9E1C9C357215A25D366186 C:\Windows\System32\DRIVERS\srvnet.sys 958AF45FE331C82692CDCBA7D04FE64A C:\Windows\system32\Drivers\StarOpen.sys 306521935042FC0A6988D528643619B3 C:\Windows\system32\DRIVERS\stexstor.sys 91488549550BD2EB86DD6D0DC8684112 C:\Windows\System32\DRIVERS\vmstorfl.sys 92448620204D15161FF3FE9CB0F38109 C:\Windows\system32\DRIVERS\storvsc.sys EEB4FA54A148AE7761DD3A61F05D12C1 C:\Windows\System32\DRIVERS\swenum.sys 9B1BA412692A926616686C88CD8619D9 C:\Windows\System32\drivers\tcpip.sys 3BE031650A3D03F4B3B71F0D4F4A0429 C:\Windows\System32\DRIVERS\tcpip.sys 3BE031650A3D03F4B3B71F0D4F4A0429 C:\Windows\System32\drivers\tcpipreg.sys F3D50B917C99C1810A99F02F8A5FADD0 C:\Windows\System32\drivers\tdpipe.sys FDB0693999FD37E1125889942981E5A1 C:\Windows\System32\drivers\tdtcp.sys F48EB89F5198F82E1C697A12E96E6006 C:\Windows\System32\DRIVERS\tdx.sys A6835CFAE1DBB80FF9A837ED86558343 C:\Windows\System32\DRIVERS\termdd.sys 327BC39EB2C2B6AC57D781D3A551F9F2 C:\Windows\System32\DRIVERS\tssecsrv.sys 32F7CBFDA4D107D5C96395840DA998AD C:\Windows\System32\DRIVERS\tunnel.sys E7FC7EF685EBED3D6615D06E7103E3A4 C:\Windows\system32\DRIVERS\uagp35.sys 602DF2EBB8B30C0B072A06ADB91848ED C:\Windows\System32\DRIVERS\udfs.sys B042C83B61E60DC48461305C7BA4DDAA C:\Windows\system32\DRIVERS\uliagpkx.sys CB3E94B99BB3E515697C22EBF32CD874 C:\Windows\System32\DRIVERS\umbus.sys CD3F732AB1E1B0FC498DFA07F411D2B6 C:\Windows\system32\DRIVERS\umpass.sys F8D48EE7790526FAA1AD027449F2DE6E C:\Windows\System32\drivers\usbaudio.sys 030FD039A6BD02C845CF3A7282C5E2EB C:\Windows\System32\DRIVERS\usbccgp.sys 14D4A8328CD245BF847990E087C20F02 C:\Windows\system32\DRIVERS\usbcir.sys 48EDE5AC303EBCD1DE5CE3B65A8D576A C:\Windows\System32\DRIVERS\usbehci.sys A64E6F3A0A38E7D56E8C7F6A6C7200D3 C:\Windows\System32\DRIVERS\usbhub.sys 9400FF32403185A0977D4820303578A5 C:\Windows\system32\DRIVERS\usbohci.sys DE8E5F898E29D4EF99033804401825D6 C:\Windows\system32\DRIVERS\usbprint.sys 774A216C9B22F78C3FE3439B3CF0D0B6 C:\Windows\System32\DRIVERS\USBSTOR.SYS AE022FD8AF0E23817DEA4B06462873A3 C:\Windows\System32\DRIVERS\usbuhci.sys D5C7DF74FBD6C9A66D6AC73AC4A133E2 C:\Windows\System32\DRIVERS\vdrvroot.sys A5561AE923DFF1443F17E638E96D5F0B C:\Windows\System32\DRIVERS\vgapnp.sys DA860E04B5B47D46F11741FB98343145 C:\Windows\System32\drivers\vga.sys DCAB6E8E4A5DF5662963699C2202189D C:\Windows\system32\DRIVERS\vhdmp.sys 3B83574F3B499AB3BDE327C7EA72C553 C:\Windows\system32\DRIVERS\viaagp.sys 347EAB4BDC20A921DCBF181A1A9713DC C:\Windows\system32\DRIVERS\viac7.sys 35867FCBFA523F42128BD5207C89F332 C:\Windows\system32\DRIVERS\viaide.sys 55EC0CED2DE86120EA2DB689A4451260 C:\Windows\system32\DRIVERS\vmbus.sys 55CC02D31840707241B470274A21E963 C:\Windows\system32\DRIVERS\VMBusHID.sys 4E223B3B5C85B89DBCC5FA7E3EEFFC2F C:\Windows\System32\DRIVERS\volmgr.sys A3FC2C68D543C63CAC69441693F90B22 C:\Windows\System32\drivers\volmgrx.sys 48DD95FD41BD3784EBF34D2BA4F7E7A6 C:\Windows\System32\DRIVERS\volsnap.sys 379743F66B00E46F9391E438208B404A C:\Windows\system32\DRIVERS\vsmraid.sys 081F7776C12C4FE3CAF57EC6C30CC1A4 C:\Windows\System32\drivers\vwifibus.sys 894B8685799B73C9378CF7DB54C3B61C C:\Windows\system32\DRIVERS\wacompen.sys DB27484015DEFE496E2E695B803C1FE7 C:\Windows\System32\DRIVERS\wanarp.sys F951024176496774539DA24A628E6C74 C:\Windows\System32\DRIVERS\wanarp.sys F951024176496774539DA24A628E6C74 C:\Windows\system32\DRIVERS\wd.sys A0E1E7C9754425AE7283AAC1D46AC974 C:\Windows\System32\drivers\Wdf01000.sys D0B9526855A93878F60EB9BF8870C4E1 C:\Windows\System32\DRIVERS\wfplwf.sys 6FFFE204D26F97991506C8CC90973A44 C:\Windows\System32\drivers\wimmount.sys F51B606C893231B6322B7D9A45AD55E1 C:\Windows\System32\DRIVERS\WinUsb.sys 92DA24A316AB6E1BD297BDA90F1FEE8C C:\Windows\system32\DRIVERS\wmiacpi.sys A517D16260ADE69313283710428B3D6C C:\Windows\system32\drivers\ws2ifsl.sys 7F3318657718387519FF73AA3DD41302 C:\Windows\System32\drivers\WudfPf.sys 7ADB30196B6868E7AB89460C4D023D62 C:\Windows\System32\DRIVERS\WUDFRd.sys BE3B09232A4822779492C9BA7D99D2DF C:\Windows\system32\Drivers\any2hia8.sys ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Trzy miesiące - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-09-04 12:39 - 2016-09-04 12:40 - 00031547 _____ C:\Users\msti\Downloads\FRST.txt 2016-09-04 12:39 - 2016-09-04 12:39 - 00000000 ____D C:\FRST 2016-09-04 12:38 - 2016-09-04 12:38 - 01747968 _____ (Farbar) C:\Users\msti\Downloads\FRST.exe 2016-09-04 12:20 - 2016-09-04 12:20 - 03826240 _____ C:\Users\msti\Downloads\adwcleaner.pl 6.010.exe 2016-09-04 12:09 - 2016-09-04 12:09 - 22851472 _____ (Malwarebytes ) C:\Users\msti\Downloads\mbam-setup-2.2.1.1043.exe 2016-09-04 12:09 - 2016-09-04 12:09 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-09-02 15:42 - 2016-09-02 15:42 - 01171126 _____ C:\Users\msti\Downloads\Policja_-_procedury.pdf 2016-08-18 19:33 - 2016-08-18 19:34 - 44694405 _____ C:\Users\msti\Downloads\asdasd 003.mp4 2016-08-18 03:51 - 2016-09-04 12:24 - 00000000 ____D C:\Users\msti\AppData\Roaming\Media Player Classic 2016-08-18 03:50 - 2016-08-18 03:55 - 00000000 ____D C:\Users\msti\AppData\Roaming\Real 2016-08-18 03:49 - 2016-08-18 03:49 - 00000000 ____D C:\Users\msti\AppData\Roaming\BESTplayer 2016-08-13 17:27 - 2016-09-01 23:48 - 00000175 _____ C:\Users\msti\Desktop\yyyyyy.txt 2016-07-31 17:21 - 2016-07-31 17:21 - 00019428 _____ C:\Users\msti\Downloads\BigTitsBoss - Cherie Deville mp4 24 june 2014-[rarbg.com].torrent 2016-07-30 10:40 - 2016-09-04 12:24 - 00000000 ____D C:\Users\msti\AppData\Roaming\Winamp 2016-07-30 10:37 - 2016-07-30 10:50 - 107388919 _____ C:\Users\msti\Desktop\KOVALHIO SNAKE'S SET 4.wmv 2016-07-30 10:29 - 2016-07-30 10:50 - 00000000 ____D C:\Users\msti\AppData\Local\WMTools Downloaded Files 2016-07-30 10:29 - 2016-07-30 10:29 - 00003584 _____ C:\Users\msti\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2016-07-21 17:08 - 2016-07-21 17:08 - 00000000 ____D C:\Users\msti\AppData\Roaming\Adobe 2016-07-21 17:08 - 2016-07-21 17:08 - 00000000 ____D C:\Users\msti\AppData\LocalLow\Adobe 2016-07-21 17:08 - 2016-07-21 17:08 - 00000000 ____D C:\Users\msti\AppData\Local\Adobe 2016-07-20 18:08 - 2016-08-05 23:23 - 00002107 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-07-20 18:08 - 2016-08-05 23:23 - 00002095 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-07-20 18:07 - 2016-09-04 12:24 - 00001032 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-07-20 18:07 - 2016-09-04 12:22 - 00001036 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-07-20 18:07 - 2016-07-20 18:07 - 00987728 _____ (Google Inc.) C:\Users\msti\Downloads\ChromeSetup.exe 2016-07-19 19:47 - 2016-07-19 19:47 - 00000000 ____D C:\ProgramData\Adobe 2016-07-19 19:44 - 2016-07-19 19:44 - 00000000 ____D C:\Users\msti\AppData\Roaming\WinRAR 2016-07-19 19:43 - 2016-07-19 19:44 - 00000000 ____D C:\Users\msti\AppData\Local\Mozilla 2016-07-19 19:43 - 2016-07-19 19:43 - 00000000 ____D C:\Users\msti\AppData\Roaming\Mozilla 2016-07-19 19:36 - 2016-07-19 19:36 - 00000000 ____D C:\Users\msti\AppData\Roaming\OpenOffice.org 2016-07-19 19:35 - 2016-07-19 19:44 - 00000000 ____D C:\Users\msti\AppData\Local\VirtualStore 2016-07-15 21:19 - 2016-08-03 19:17 - 00001558 _____ C:\Users\msti\Desktop\One a moze number one.txt 2016-07-15 17:51 - 2016-07-15 17:51 - 00000220 _____ C:\Users\msti\Documents\dfgjkk.txt 2016-06-17 19:26 - 2016-08-26 22:04 - 00000580 _____ C:\Users\msti\Desktop\under.txt ==================== Trzy miesiące - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-09-04 12:33 - 2016-03-28 18:54 - 00000000 ____D C:\AdwCleaner 2016-09-04 12:26 - 2007-10-23 17:02 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-09-04 12:24 - 2014-12-29 19:07 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-09-04 12:24 - 2010-01-03 19:32 - 00000000 ____D C:\Windows\Minidump 2016-09-04 12:24 - 2009-06-23 11:24 - 00000000 ____D C:\Windows\inf 2016-09-04 12:23 - 2009-06-23 13:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-09-04 12:22 - 2015-07-07 18:55 - 00000000 ____D C:\Program Files\Mozilla Firefox 2016-09-04 12:22 - 2009-06-23 13:22 - 00023840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-09-04 12:22 - 2009-06-23 13:22 - 00023840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-09-04 12:15 - 2007-05-26 13:06 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3694238110-1512007055-801634889-1000UA.job 2016-09-04 12:09 - 2014-12-29 19:07 - 00001020 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-09-04 12:09 - 2014-12-29 19:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2016-09-04 12:09 - 2014-12-29 19:07 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2016-09-03 22:22 - 2015-08-01 06:56 - 00000992 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job 2016-08-21 09:15 - 2007-05-26 13:06 - 00001002 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3694238110-1512007055-801634889-1000Core.job 2016-08-19 17:52 - 2009-06-23 13:42 - 00032514 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-08-18 03:48 - 2009-06-23 11:24 - 00000000 __RHD C:\Users\Public\Libraries ==================== Pliki w katalogu głównym wybranych folderów ======= 2013-06-06 12:52 - 2014-06-24 17:10 - 0003728 _____ () C:\Program Files\Mozilla Firefoxavg-secure-search.xml 2012-05-16 13:31 - 2012-05-16 13:31 - 0000129 _____ () C:\Program Files\order.url 2016-07-30 10:29 - 2016-07-30 10:29 - 0003584 _____ () C:\Users\msti\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo ==================== BCD ================================ Menedľer rozruchu systemu Windows --------------------------------- Identyfikator {bootmgr} device partition=C: description Windows Boot Manager locale pl-PL inherit {globalsettings} default {current} resumeobject {196b267b-847b-11de-a75c-a980147ae361} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Moduˆ ˆadujĄcy rozruchu systemu Windows --------------------------------------- Identyfikator {current} device partition=C: path \Windows\system32\winload.exe description Windows 7 locale pl-PL inherit {bootloadersettings} recoverysequence {196b267d-847b-11de-a75c-a980147ae361} recoveryenabled Yes osdevice partition=C: systemroot \Windows resumeobject {196b267b-847b-11de-a75c-a980147ae361} nx OptIn Moduˆ ˆadujĄcy rozruchu systemu Windows --------------------------------------- Identyfikator {196b267d-847b-11de-a75c-a980147ae361} device ramdisk=[C:]\Recovery\196b267d-847b-11de-a75c-a980147ae361\Winre.wim,{196b267e-847b-11de-a75c-a980147ae361} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\196b267d-847b-11de-a75c-a980147ae361\Winre.wim,{196b267e-847b-11de-a75c-a980147ae361} systemroot \windows nx OptIn winpe Yes Wznawianie ze stanu hibernacji ------------------------------ Identyfikator {196b267b-847b-11de-a75c-a980147ae361} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale pl-PL inherit {resumeloadersettings} filedevice partition=C: filepath \hiberfil.sys pae Yes debugoptionenabled No Moduˆ testujĄcy pami©† systemu Windows -------------------------------------- Identyfikator {memdiag} device partition=C: path \boot\memtest.exe description Diagnostyka pami©ci systemu Windows locale pl-PL inherit {globalsettings} badmemoryaccess Yes Ustawienia usˆug EMS -------------------- Identyfikator {emssettings} bootems Yes Ustawienia debugera ------------------- Identyfikator {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Uszkodzenia pami©ci RAM ----------------------- Identyfikator {badmemory} Ustawienia globalne ------------------- Identyfikator {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Ustawienia moduˆu ˆadujĄcego rozruchu ------------------------------------- Identyfikator {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Ustawienia funkcji hypervisor ----------------------------- Identyfikator {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Ustawienia moduˆu ˆadujĄcego wznawiania --------------------------------------- Identyfikator {resumeloadersettings} inherit {globalsettings} Opcje urzĄdzenia ---------------- Identyfikator {196b267e-847b-11de-a75c-a980147ae361} description Ramdisk Options ramdisksdidevice partition=C: ramdisksdipath \Recovery\196b267d-847b-11de-a75c-a980147ae361\boot.sdi LastRegBack: 2016-04-02 20:35 ==================== Koniec FRST.txt ============================