Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 17.02.2018 Uruchomiony przez jakub (administrator) JAKUB******** (18-02-2018 17:50:22) Uruchomiony z B:\ Załadowane profile: jakub (Dostępne profile: jakub) Platform: Windows 8.1 (Update) (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: FF) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe (IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Intel Corporation) C:\Windows\System32\ibtsiva.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe (IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe () B:\Program Files\Serviio\bin\ServiioService.exe () B:\Program Files\Serviio\bin\ServiioService.exe (Tekla) C:\Program Files (x86)\Tekla Warehouse\Tekla.Warehouse.WindowsService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\System32\vds.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe (IObit) C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\RealTimeProtector.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe () C:\Program Files (x86)\USBScan\USBScan.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (IObit) C:\Program Files (x86)\IObit\Driver Booster\5.2.0\Scheduler.exe (IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (IObit) C:\Program Files (x86)\IObit\Driver Booster\5.2.0\Pub\PubMonitor.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamPt.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-10-09] (TOSHIBA Corporation) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2018-01-12] (AVAST Software) HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [6004512 2017-01-11] (IObit) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587800 2017-12-19] (Oracle Corporation) HKLM-x32\...\Run: [USBScan.exe] => C:\Program Files (x86)\USBScan\USBScan.exe [1971712 2013-07-14] () HKU\S-1-5-21-242199268-3129651509-2813359090-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [5230784 2017-12-15] (Disc Soft Ltd) HKU\S-1-5-21-242199268-3129651509-2813359090-1001\...\Run: [Advanced SystemCare 11] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3598624 2017-12-11] (IObit) HKU\S-1-5-21-242199268-3129651509-2813359090-1001\...\MountPoints2: {28a8782e-e1c7-11e7-82d6-c454446b8bd6} - "E:\autorun.exe" HKU\S-1-5-21-242199268-3129651509-2813359090-1001\...\MountPoints2: {28a87841-e1c7-11e7-82d6-c454446b8bd6} - "F:\autorun.exe" HKU\S-1-5-21-242199268-3129651509-2813359090-1001\...\MountPoints2: {90d1603e-97ec-11e7-82a6-c454446b8bd6} - "E:\startme.exe" BootExecute: autocheck autochk * SmartDefragBootTime.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{AFF4F04A-B1F6-411E-AF5F-0D01865A5F09}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== HKU\S-1-5-21-242199268-3129651509-2813359090-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?ocid=iehp HKU\S-1-5-21-242199268-3129651509-2813359090-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TEJB HKU\S-1-5-21-242199268-3129651509-2813359090-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://toshiba.eu/symbaloo_c BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22] (IObit) BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-02-06] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2018-02-06] (Microsoft Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-02-06] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_162\bin\ssv.dll [2018-01-30] (Oracle Corporation) BHO-x32: IObit Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2017-08-04] (IObit) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2018-02-06] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_162\bin\jp2ssv.dll [2018-01-30] (Oracle Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-02-06] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-02-06] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-02-06] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-02-06] (Microsoft Corporation) Filter: application/x-mfe-ipt - Brak wartości CLSID FireFox: ======== FF DefaultProfile: wg497tem.Jakub FF DefaultProfile: 2wtowgj1.default FF ProfilePath: C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\wg497tem.Jakub [2018-02-18] FF ProfilePath: C:\Users\jakub\AppData\Roaming\Firefox\Firefox\Profiles\2wtowgj1.default [2017-05-26] <==== UWAGA FF Extension: (SimilarWeb) - C:\Users\jakub\AppData\Roaming\Firefox\Firefox\Profiles\2wtowgj1.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2017-05-24] [Przestarzałe] [Brak podpisu cyfrowego] FF Extension: (HSearch) - C:\Users\jakub\AppData\Roaming\Firefox\Firefox\Profiles\2wtowgj1.default\Extensions\@E97YHOMI-FU8L-IM23-VUT9-RVDZT7M8XL8H.xpi [2017-05-24] [Brak podpisu cyfrowego] FF Extension: (Polski Language Pack) - C:\Users\jakub\AppData\Roaming\Firefox\Firefox\Profiles\2wtowgj1.default\Extensions\langpack-pl@firefox.mozilla.org.xpi [2017-05-24] [Przestarzałe] [Brak podpisu cyfrowego] FF SearchPlugin: C:\Users\jakub\AppData\Roaming\Firefox\Firefox\Profiles\2wtowgj1.default\searchplugins\startsearch.xml [2017-05-24] FF HKLM-x32\...\Firefox\Extensions: [arthurj8283@gmail.com] - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\rwh227o7.default-1494169458448\extensions\arthurj8283@gmail.com => nie znaleziono FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-06] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.162.2 -> C:\Program Files (x86)\Java\jre1.8.0_162\bin\dtplugin\npDeployJava1.dll [2018-01-30] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.162.2 -> C:\Program Files (x86)\Java\jre1.8.0_162\bin\plugin2\npjp2.dll [2018-01-30] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-01-22] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-01-22] (Microsoft Corporation) Chrome: ======= HKU\S-1-5-21-242199268-3129651509-2813359090-1001\...\StartMenuInternet\ChromeHTML: -> <==== UWAGA ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdvancedSystemCareService11; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1058080 2017-12-11] (IObit) S2 AppleNotificationsSrv; C:\Windows\System32\svchost.exe [38792 2014-10-29] (Microsoft Corporation) <==== UWAGA (Brak ServiceDLL) S2 AppleNotificationsSrv; C:\Windows\SysWOW64\svchost.exe [33088 2014-10-29] (Microsoft Corporation) <==== UWAGA (Brak ServiceDLL) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7538536 2018-01-12] (AVAST Software) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2018-01-12] (AVAST Software) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7968432 2018-01-30] (Microsoft Corporation) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3128000 2017-12-15] (Disc Soft Ltd) S3 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [21840 2014-03-21] () S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [381992 2017-04-02] (EasyAntiCheat Ltd) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8242752 2017-10-03] (GOG.com) R2 ibtsiva; C:\Windows\system32\ibtsiva.exe [183448 2017-08-11] (Intel Corporation) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego] R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [354280 2016-07-28] (Intel Corporation) R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [1740576 2017-01-10] (IObit) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Brak podpisu cyfrowego] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-03-06] (Intel Corporation) R2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [206112 2017-06-14] (IObit) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2014-03-06] (Intel Corporation) R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-12-16] (IObit) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-10-11] () R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2017-02-27] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2017-11-27] () R2 Serviio; b:\Program Files\Serviio\bin\ServiioService.exe [413696 2017-07-23] () [Brak podpisu cyfrowego] S3 SSSvc; C:\Program Files (x86)\ScreenShot\SSSvc.exe [139744 2016-11-02] (Filseclab Corporation Limited) S3 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10885360 2017-05-31] (TeamViewer GmbH) R2 Tekla Warehouse; C:\Program Files (x86)\Tekla Warehouse\Tekla.Warehouse.WindowsService.exe [16944 2015-04-10] (Tekla) S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116088 2013-12-24] (Toshiba Europe GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [185096 2018-01-12] (AVAST Software) S3 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [321512 2018-01-12] (AVAST Software) S3 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [199448 2018-01-12] (AVAST Software) S3 aswblog; C:\Windows\System32\drivers\aswbloga.sys [343768 2018-01-12] (AVAST Software) S3 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [57696 2018-01-12] (AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [149344 2018-01-12] (AVAST Software) S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46976 2018-01-12] (AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [146648 2018-01-12] (AVAST Software) S3 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110336 2018-01-12] (AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84384 2018-01-12] (AVAST Software) S3 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1025176 2018-01-12] (AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [457896 2018-01-12] (AVAST Software) S3 aswStm; C:\Windows\System32\drivers\aswStm.sys [204456 2018-01-12] (AVAST Software) S3 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [358672 2018-01-12] (AVAST Software) R3 cpuz143; C:\Windows\temp\cpuz143\cpuz143_x64.sys [48960 2018-02-18] (CPUID) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2017-12-17] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2017-12-17] (Disc Soft Ltd) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-29] () S3 ETDSMBus; C:\Windows\System32\drivers\ETDSMBus.sys [32840 2017-06-28] (ELAN Microelectronic Corp.) R2 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [155912 2016-03-31] (BitDefender LLC) R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2017-05-22] (LogMeIn Inc.) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-02-22] (REALiX(tm)) R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [230920 2017-06-05] (Intel Corporation) S3 IMFFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys [22208 2016-12-16] (IObit) R3 iobit_monitor_server; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win7_x64.sys [14680 2016-12-21] (IObit) R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [21928 2017-06-06] (IObit.com) R3 IURegProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegProcessFilter.sys [27048 2017-06-13] (IObit.com) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193968 2018-02-18] (Malwarebytes) R3 MBAMFarflt; C:\Windows\system32\DRIVERS\farflt.sys [110016 2018-02-18] (Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [46008 2018-02-18] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2018-02-18] (Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [94144 2018-02-18] (Malwarebytes) R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3521032 2017-12-31] (Intel Corporation) S3 NETwNs64; C:\Windows\system32\DRIVERS\Netwsw02.sys [3424512 2017-06-04] (Intel Corporation) S3 ptun0901; C:\Windows\system32\DRIVERS\ptun0901.sys [27136 2014-08-08] (The OpenVPN Project) [Brak podpisu cyfrowego] S3 qcusbser; C:\Windows\system32\DRIVERS\qcusbser.sys [243712 2014-05-23] (QUALCOMM Incorporated) [Brak podpisu cyfrowego] S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2016-12-16] (IObit.com) R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [329184 2017-08-14] (Realtek Semiconductor Corp.) R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit) S3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-02-21] (Synaptics Incorporated) R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [36712 2017-02-22] (Toshiba Corporation) S3 Trufos; C:\Windows\System32\DRIVERS\TRUFOS.sys [452040 2016-03-31] (BitDefender S.R.L.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) U3 aswbdisk; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2018-02-18 17:49 - 2018-02-18 17:49 - 000002896 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (jakub) 2018-02-18 17:36 - 2018-02-18 17:36 - 000094144 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2018-02-18 17:32 - 2018-02-18 17:32 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2018-02-18 17:32 - 2018-02-18 17:32 - 000193968 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2018-02-18 17:32 - 2018-02-18 17:32 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2018-02-18 17:32 - 2018-02-18 17:32 - 000046008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2018-02-18 17:32 - 2018-02-18 17:32 - 000001902 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2018-02-18 17:32 - 2018-02-18 17:32 - 000000000 ____D C:\Program Files\Malwarebytes 2018-02-18 17:32 - 2017-11-29 09:11 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys 2018-02-18 17:31 - 2018-02-18 17:31 - 067651432 _____ (Malwarebytes ) C:\Users\jakub\Downloads\mb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3976.exe 2018-02-17 14:16 - 2018-02-18 17:50 - 000000000 ____D C:\FRST 2018-02-17 14:14 - 2018-02-17 14:14 - 001763840 _____ (Farbar) C:\Users\jakub\Downloads\FRST.exe 2018-02-16 20:11 - 2018-02-16 20:11 - 000000000 _____ C:\autoexec.bat 2018-02-16 19:35 - 2018-02-17 19:05 - 106692608 _____ C:\Windows\system32\config\SOFTWARE 2018-02-16 19:35 - 2018-02-17 19:05 - 001572864 _____ C:\Windows\system32\config\DEFAULT 2018-02-16 19:35 - 2018-02-17 19:05 - 000028672 _____ C:\Windows\system32\config\SAM 2018-02-16 19:35 - 2018-02-17 19:05 - 000024576 _____ C:\Windows\system32\config\SECURITY 2018-02-16 10:17 - 2018-02-16 10:17 - 000011264 _____ (HRHXJvb) C:\autoexec (2).bat 2018-02-14 15:53 - 2018-01-21 12:09 - 000145080 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2018-02-14 15:53 - 2018-01-21 07:13 - 001994752 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2018-02-14 15:53 - 2018-01-21 07:13 - 001569280 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2018-02-14 15:53 - 2018-01-21 07:13 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2018-02-14 15:53 - 2018-01-21 07:13 - 000654336 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2018-02-14 15:53 - 2018-01-21 07:13 - 000604672 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2018-02-14 15:53 - 2018-01-21 07:13 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2018-02-14 15:53 - 2018-01-21 07:13 - 000378880 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2018-02-14 15:53 - 2018-01-21 07:13 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2018-02-14 15:53 - 2018-01-21 07:13 - 000236544 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2018-02-14 15:50 - 2018-02-10 09:44 - 025740288 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2018-02-14 15:50 - 2018-02-10 08:19 - 002900480 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2018-02-14 15:50 - 2018-02-10 08:16 - 000577536 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2018-02-14 15:50 - 2018-02-10 08:16 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2018-02-14 15:50 - 2018-02-10 08:09 - 005782016 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2018-02-14 15:50 - 2018-02-10 08:06 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2018-02-14 15:50 - 2018-02-10 07:36 - 015283712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2018-02-14 15:50 - 2018-02-10 07:34 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2018-02-14 15:50 - 2018-02-10 07:32 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2018-02-14 15:50 - 2018-02-10 07:27 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2018-02-14 15:50 - 2018-02-10 07:20 - 020274176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2018-02-14 15:50 - 2018-02-10 07:14 - 001546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2018-02-14 15:50 - 2018-02-10 06:57 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2018-02-14 15:50 - 2018-02-10 06:54 - 002294272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2018-02-14 15:50 - 2018-02-10 06:49 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2018-02-14 15:50 - 2018-02-10 06:35 - 004498944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2018-02-14 15:50 - 2018-02-10 06:33 - 013680640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2018-02-14 15:50 - 2018-02-10 06:27 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2018-02-14 15:50 - 2018-02-10 06:27 - 000694784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2018-02-14 15:50 - 2018-02-10 06:14 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2018-02-14 15:50 - 2018-02-10 06:10 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2018-02-14 15:50 - 2018-02-03 07:04 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2018-02-14 15:50 - 2018-02-03 07:03 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2018-02-14 15:50 - 2018-02-03 00:53 - 007408984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2018-02-14 15:50 - 2018-01-21 12:54 - 000419160 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2018-02-14 15:50 - 2018-01-13 02:18 - 002452824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2018-02-14 15:50 - 2018-01-12 22:42 - 000376664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys 2018-02-14 15:50 - 2018-01-12 19:31 - 004690944 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe 2018-02-14 15:50 - 2018-01-12 18:35 - 003553280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe 2018-02-14 15:50 - 2018-01-11 19:19 - 000032384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2018-02-14 15:50 - 2018-01-11 18:56 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll 2018-02-14 15:50 - 2018-01-11 18:07 - 000748032 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2018-02-14 15:50 - 2018-01-09 07:21 - 004168704 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2018-02-14 15:50 - 2018-01-09 07:18 - 000401920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2018-02-14 15:49 - 2018-02-10 08:06 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2018-02-14 15:49 - 2018-02-10 07:48 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2018-02-14 15:49 - 2018-02-10 07:47 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2018-02-14 15:49 - 2018-02-10 07:46 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2018-02-14 15:49 - 2018-02-10 07:41 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2018-02-14 15:49 - 2018-02-10 07:36 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2018-02-14 15:49 - 2018-02-10 07:02 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2018-02-14 15:49 - 2018-02-10 06:56 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2018-02-14 15:49 - 2018-02-10 06:49 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2018-02-14 15:49 - 2018-02-10 06:35 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2018-02-14 15:49 - 2018-02-10 06:35 - 000128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2018-02-14 15:49 - 2018-02-10 06:35 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2018-02-14 15:49 - 2018-02-10 06:32 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2018-02-14 15:49 - 2018-02-10 06:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2018-02-14 15:49 - 2018-02-10 06:08 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2018-02-14 15:49 - 2018-02-01 19:51 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2018-02-10 21:11 - 2018-02-05 21:38 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2018-02-10 21:11 - 2018-02-05 21:38 - 000177648 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2018-02-10 14:49 - 2018-02-10 14:49 - 005189808 _____ (Enigma Software Group USA, LLC.) C:\Users\jakub\Downloads\SpyHunter-Installer.exe 2018-02-10 14:19 - 2018-02-10 14:19 - 000000912 _____ C:\Users\Public\Desktop\USBScan.lnk 2018-02-10 14:19 - 2018-02-10 14:19 - 000000000 ____D C:\Program Files (x86)\USBScan 2018-02-09 23:10 - 2018-02-14 21:44 - 000000000 ____D C:\dowloads 2018-02-08 13:35 - 2018-02-08 13:35 - 000020320 _____ C:\Users\jakub\Desktop\raty kredyt PKO BP.xlsx 2018-02-08 13:20 - 2018-02-03 09:17 - 027714318 ____N C:\Users\jakub\Desktop\Desktop.rar 2018-02-05 08:16 - 2018-02-05 08:16 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Kalypso Media 2018-02-03 08:55 - 2018-02-03 08:55 - 004562580 _____ C:\Users\jakub\Downloads\1.4.1.0 Quasar Golden Edition.rar 2018-02-01 02:28 - 2017-10-04 09:21 - 000029352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll 2018-02-01 02:28 - 2017-10-04 09:21 - 000019088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll 2018-02-01 02:28 - 2017-10-04 04:45 - 000030888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll 2018-02-01 02:28 - 2017-10-04 04:45 - 000019088 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll 2018-01-30 16:36 - 2018-01-30 16:36 - 000999760 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys 2018-01-30 16:36 - 2018-01-30 16:36 - 000466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll 2018-01-30 16:36 - 2018-01-30 16:36 - 000444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll 2018-01-30 16:36 - 2018-01-30 16:36 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll 2018-01-30 16:36 - 2018-01-30 16:36 - 000122824 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll 2018-01-30 16:36 - 2018-01-30 16:36 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll 2018-01-30 16:36 - 2018-01-30 16:36 - 000000000 ____D C:\Program Files (x86)\OpenAL 2018-01-30 16:33 - 2018-01-30 16:33 - 000000000 ____D C:\Program Files\Microsoft Silverlight 2018-01-30 16:33 - 2018-01-30 16:33 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2018-01-30 16:30 - 2018-01-30 16:30 - 002608640 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll 2018-01-30 16:30 - 2018-01-30 16:30 - 002170880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll 2018-01-30 16:30 - 2018-01-30 16:30 - 000361472 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe 2018-01-30 16:30 - 2018-01-30 16:30 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll 2018-01-30 16:30 - 2018-01-30 16:30 - 000276312 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2018-01-30 16:30 - 2018-01-30 16:30 - 000242176 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll 2018-01-30 16:30 - 2018-01-30 16:30 - 000236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll 2018-01-30 16:30 - 2018-01-30 16:30 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\SCardSvr.dll 2018-01-30 16:30 - 2018-01-30 16:30 - 000186880 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2018-01-30 16:30 - 2018-01-30 16:30 - 000169984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll 2018-01-30 16:30 - 2018-01-30 16:30 - 000165376 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys 2018-01-30 16:30 - 2018-01-30 16:30 - 000132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2018-01-30 16:30 - 2018-01-30 16:30 - 000082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2018-01-30 16:30 - 2018-01-30 16:30 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\SCardDlg.dll 2018-01-30 16:30 - 2018-01-30 16:30 - 000040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys 2018-01-30 16:24 - 2018-01-30 16:23 - 000097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2018-01-30 16:19 - 2018-01-30 16:19 - 001469952 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys 2018-01-30 16:18 - 2018-01-30 16:18 - 000206496 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverW8x64.sys 2018-01-30 16:15 - 2018-01-30 16:15 - 000480800 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2018-01-30 16:07 - 2018-02-18 17:08 - 000003264 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler 2018-01-30 16:04 - 2018-01-30 16:39 - 000002275 _____ C:\Users\Public\Desktop\Driver Booster 5.lnk 2018-01-30 15:53 - 2018-01-30 15:54 - 019909472 _____ (IObit ) C:\Users\jakub\Downloads\driver_booster_setup.exe 2018-01-30 15:05 - 2018-02-18 17:08 - 000003026 _____ C:\Windows\System32\Tasks\ASC11_PerformanceMonitor 2018-01-30 15:04 - 2018-02-18 17:08 - 000002830 _____ C:\Windows\System32\Tasks\ASC11_SkipUac_jakub 2018-01-30 15:04 - 2018-02-18 09:28 - 000002259 _____ C:\Users\Public\Desktop\Advanced SystemCare 11.lnk 2018-01-30 14:59 - 2018-01-30 15:01 - 028486704 _____ (IObit ) C:\Users\jakub\Downloads\advanced-systemcare-setup.exe 2018-01-25 13:57 - 2018-02-16 19:57 - 000004172 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2018-01-25 13:57 - 2018-01-25 13:57 - 000001955 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2018-01-25 13:57 - 2018-01-12 08:28 - 000457896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2018-01-25 13:57 - 2018-01-12 08:28 - 000365680 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2018-01-25 13:57 - 2018-01-12 08:28 - 000358672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2018-01-25 13:57 - 2018-01-12 08:28 - 000204456 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2018-01-25 13:57 - 2018-01-12 08:28 - 000185096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys 2018-01-25 13:57 - 2018-01-12 08:28 - 000146648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2018-01-25 13:57 - 2018-01-12 08:28 - 000110336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2018-01-25 13:57 - 2018-01-12 08:28 - 000084384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2018-01-25 13:57 - 2018-01-12 08:28 - 000046976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2018-01-25 13:57 - 2018-01-12 08:27 - 001025176 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2018-01-25 13:57 - 2018-01-12 08:27 - 000343768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbloga.sys 2018-01-25 13:57 - 2018-01-12 08:27 - 000321512 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdrivera.sys 2018-01-25 13:57 - 2018-01-12 08:27 - 000199448 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsha.sys 2018-01-25 13:57 - 2018-01-12 08:27 - 000149344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys 2018-01-25 13:57 - 2018-01-12 08:27 - 000057696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniva.sys 2018-01-23 07:35 - 2018-02-05 22:22 - 000000000 ____D C:\Users\jakub\Documents\4A Games 2018-01-23 07:35 - 2018-02-05 21:51 - 000000000 ____D C:\Users\jakub\AppData\Local\4A Games ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2018-02-18 17:38 - 2017-04-21 19:40 - 000000000 ____D C:\Users\jakub\AppData\LocalLow\Mozilla 2018-02-18 17:27 - 2017-02-27 21:58 - 000000000 __SHD C:\Users\jakub\IntelGraphicsProfiles 2018-02-18 17:08 - 2017-09-11 11:18 - 000003176 _____ C:\Windows\System32\Tasks\SmartDefrag_AutoDefrag 2018-02-18 17:08 - 2017-09-11 11:17 - 000003178 _____ C:\Windows\System32\Tasks\SmartDefrag_AutoAnalyze 2018-02-18 17:08 - 2017-09-10 17:21 - 000003730 _____ C:\Windows\System32\Tasks\KMSAutoNet 2018-02-18 17:08 - 2017-02-22 18:49 - 000003026 _____ C:\Windows\System32\Tasks\SmartDefrag_Startup 2018-02-18 17:08 - 2017-02-22 18:49 - 000003024 _____ C:\Windows\System32\Tasks\SmartDefrag_Update 2018-02-18 17:08 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-02-18 15:19 - 2017-03-20 07:37 - 000000000 ____D C:\Windows\System32\Tasks\AVAST Software 2018-02-18 13:50 - 2014-06-03 05:09 - 000000000 ____D C:\Users\jakub 2018-02-18 12:23 - 2017-06-30 19:35 - 000000000 ____D C:\Users\jakub\Documents\My Games 2018-02-18 12:20 - 2014-06-03 05:15 - 000003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-242199268-3129651509-2813359090-1001 2018-02-17 19:01 - 2013-08-22 16:36 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2018-02-17 16:12 - 2014-04-23 22:03 - 001827818 _____ C:\Windows\system32\PerfStringBackup.INI 2018-02-17 16:12 - 2013-08-28 15:28 - 000808058 _____ C:\Windows\system32\perfh015.dat 2018-02-17 16:12 - 2013-08-28 15:28 - 000163816 _____ C:\Windows\system32\perfc015.dat 2018-02-17 16:12 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf 2018-02-17 04:37 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache 2018-02-16 19:45 - 2013-08-22 15:44 - 000496760 _____ C:\Windows\system32\FNTCACHE.DAT 2018-02-16 19:37 - 2017-02-27 21:39 - 000000000 ____D C:\Windows\system32\appraiser 2018-02-16 19:35 - 2017-05-12 12:38 - 106598400 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak 2018-02-16 19:35 - 2017-05-12 12:38 - 001572864 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak 2018-02-16 19:35 - 2017-05-12 12:38 - 000028672 _____ C:\Windows\system32\config\SAM.iodefrag.bak 2018-02-16 19:35 - 2017-05-12 12:38 - 000024576 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak 2018-02-16 17:59 - 2017-11-07 17:39 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks 2018-02-16 17:59 - 2017-11-06 17:19 - 000000000 ____D C:\Users\jakub\Desktop\Komunikacyjne 2018-02-16 17:58 - 2017-02-22 20:52 - 000000000 ____D C:\Users\jakub\AppData\Roaming\BitTorrent 2018-02-16 17:53 - 2017-02-22 17:45 - 000000000 ____D C:\Users\jakub\AppData\Roaming\TeamViewer 2018-02-16 10:12 - 2017-02-23 00:28 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2018-02-15 03:50 - 2017-06-05 17:35 - 000000000 ____D C:\Windows\CbsTemp 2018-02-15 03:49 - 2017-02-23 21:01 - 000000000 ____D C:\Windows\system32\MRT 2018-02-15 03:46 - 2017-10-11 02:02 - 130067560 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe 2018-02-15 03:45 - 2017-02-23 21:01 - 130067560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2018-02-10 21:19 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI 2018-02-10 21:10 - 2017-06-02 19:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2018-02-10 21:10 - 2017-06-02 19:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2018-02-10 14:23 - 2017-02-22 21:56 - 000000000 ____D C:\Users\jakub\AppData\Roaming\TS3Client 2018-02-09 23:05 - 2017-07-02 14:53 - 000000000 ____D C:\Users\jakub\AppData\Roaming\vlc 2018-02-06 19:47 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\NDF 2018-02-06 07:01 - 2017-09-10 17:02 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2018-02-05 08:01 - 2017-09-14 21:28 - 000000000 ____D C:\Windows\SysWOW64\directx 2018-01-30 16:22 - 2017-02-22 19:29 - 000000000 ____D C:\Program Files (x86)\Java 2018-01-30 15:15 - 2017-12-17 20:41 - 000000000 ____D C:\Users\jakub\AppData\Roaming\DAEMON Tools Lite 2018-01-30 15:14 - 2017-12-29 16:33 - 000002760 _____ C:\Windows\System32\Tasks\FreeDownloadManagerNetworkMonitor 2018-01-30 12:06 - 2017-12-29 16:33 - 000000000 ____D C:\Users\jakub\AppData\Local\Free Download Manager 2018-01-28 22:48 - 2017-07-06 18:39 - 000000000 _____ C:\Windows\SysWOW64\last.dump Niektóre pliki w TEMP: ==================== 2018-02-17 19:08 - 2018-02-18 17:27 - 000046534 _____ () C:\Users\jakub\AppData\Local\Temp\KERNEL.DLL ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2018-02-10 02:48 ==================== Koniec FRST.txt ============================