Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja:31-12-2015
Uruchomiony przez user01 (administrator)  MOBYDICK (23-03-2016 20:33:42)
Uruchomiony z z:\!!!911-windows
Załadowane profile: user01 (Dostępne profile: user01 & Administrator)
Platform: Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) Język: Polski
Internet Explorer Wersja 8 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Portrait Displays, Inc.) C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe
(Hewlett-Packard Company) C:\Program Files\HP\HPBDSService\HPBDSService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Portrait Displays, Inc.) C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
() C:\Program Files\EaseUS\Todo Backup\bin\TodoBackupService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Ruiware) C:\Program Files\Ruiware\WinPatrol\WinPatrol.exe
(Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Duality Software) C:\Program Files\DS Clock\dsclock.exe
(TC UP Team) C:\Program Files\TC UP\TC UP.exe
(Portrait Displays, Inc) C:\Program Files\Portrait Displays\HP Display Assistant\dthtml.exe
(Portrait Displays Inc.) C:\Program Files\Common Files\Portrait Displays\Shared\HookManager.exe
(Ghisler Software GmbH) C:\Program Files\TC UP\TOTALCMD.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Portrait Displays, Inc.) C:\Program Files\Common Files\Portrait Displays\Drivers\pdiSDKHelper.exe
() C:\Program Files\Common Files\Portrait Displays\Plugins\DP\DPHelper.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
(Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
(REALiX) C:\Program Files\HWiNFO32\HWiNFO32.EXE
(Adobe Systems, Incorporated) C:\Program Files\Adobe\Adobe Photoshop CS6\Photoshop.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe


==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [StartupDelayer] => C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe [1254400 2015-12-18] (r2 Studios)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7137152 2016-03-23] (AVAST Software)
HKLM\...\Policies\Explorer: [NoRemoteRecursiveEvents] 1
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\Policies\Explorer: [NoSaveSettings] 0
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\Policies\Explorer: [NoWinKeys] 1
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\Policies\Explorer: [NoSMMyDocs] 1
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\Policies\Explorer: [NoFavoritesMenu] 1
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\Policies\Explorer: [NoRecentDocsMenu] 1
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\Policies\Explorer: [NoDriveAutoRun] 0x00000000
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\Policies\Explorer: [Start_NotifyNewApps] 0
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\MountPoints2: {052e0a08-e07d-11dd-95b2-001d60356dfa} - F:\LaunchU3.exe -a
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\MountPoints2: {18f72540-579d-11e5-be9a-001d60356dfa} - F:\start.exe
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\MountPoints2: {42c7d190-cf8f-11df-97fe-001d60356dfa} - F:\APPInst.exe
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\MountPoints2: {636728c5-35d0-11e1-ad49-001d60356dfa} - H:\AutoRun.exe
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\MountPoints2: {7bf11d57-e904-11dc-94a0-001d60356dfa} - F:\xlu8a8sy.exe
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\MountPoints2: {aea988c0-a6cc-11e0-8bcd-001d60356dfa} - H:\AutoRun.exe
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\MountPoints2: {aea988c3-a6cc-11e0-8bcd-001d60356dfa} - H:\AutoRun.exe
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\MountPoints2: {b8c137d0-416f-11df-9747-001d60356dfa} - F:\AutoRun.exe
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\MountPoints2: {bc9abcc1-580a-11e1-9453-001d60356dfa} - E:\setup.exe
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\MountPoints2: {d664a515-aa1b-11dc-9459-001d60356dfa} - F:\wd_windows_tools\setup.exe
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\...\MountPoints2: {f20aa4c0-843a-11e3-ad32-001d60356dfa} - H:\iLinker.exe
HKU\S-1-5-18\...\Run: [Google Update] => C:\WINDOWS\system32\config\systemprofile\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [116648 2014-02-10] (Google Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-03-23] (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  Brak pliku
BootExecute: 쪰Ԗ
GroupPolicyScripts: Ograniczenia <======= UWAGA

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Winsock: Catalog5 02 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{ACD01730-CEC7-444B-A9D4-562F38A49364}: [DhcpNameServer] 8.8.8.8 8.8.4.4

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-016
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-016&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-016&q={searchTerms}
HKU\S-1-5-21-1202660629-2139871995-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-016
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <======= UWAGA
SearchScopes: HKLM -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-016&q={searchTerms}
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-016&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1202660629-2139871995-839522115-1003 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-016&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1202660629-2139871995-839522115-1003 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-016&q={searchTerms}
BHO: Send to MyInfo (Attachment) -> {4DBB4D17-C65B-4868-8E9C-7779FB3DDA27} -> C:\Program Files\Milenix\MyInfo 6\SendIEToMyInfoAttachment.dll [2013-05-20] (Milenix Software Ltd.)
BHO: DebugBar BHO -> {69FC0024-10EB-480A-BBF2-3BF4E78E17B1} -> C:\Program Files\Core Services\DebugBar\DebugInfoBar.dll => Brak pliku
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-10-03] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-03-23] (AVAST Software)
BHO: Send to MyInfo -> {A1AD13F3-B8F0-4584-8088-8BCBDB42663F} -> C:\Program Files\Milenix\MyInfo 6\SendIEToMyInfo.dll [2013-05-20] (Milenix Software Ltd.)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated)
BHO: IE Developer Toolbar BHO -> {CC7E636D-39AA-49b6-B511-65413DA137A1} -> C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll => Brak pliku
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-10-03] (Oracle Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1202660629-2139871995-839522115-1003 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated)
DPF: {00000055-9980-0010-8000-00AA00389B71} hxxp://download.microsoft.com/download/A/7/D/A7D1EBE3-8E78-4CBE-B22B-EEECF9E3A1BC/fhg.CAB
DPF: {31435657-9980-0010-8000-00AA00389B71} hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab
DPF: {33564D57-0000-0010-8000-00AA00389B71} hxxp://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB
DPF: {68282C51-9459-467B-95BF-3C0E89627E55} hxxp://www.mks.com.pl/skaner/SkanerOnline.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: WSWSVCUchrome - Brak wartości CLSID - 
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_21_0_0_182.dll [2016-03-11] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-09-04] ()
FF Plugin: @cuminas.jp/DjVuPlugin -> C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll [2015-05-08] (Cuminas Corporation)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-10-03] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-10-03] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @real.com/nprjplug;version=15.0.4.53 -> d:\program files\mozilla firefox\plugins\nprjplug.dll [2012-06-25] (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll [2014-10-26] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll [2014-10-26] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2014-08-03] (Adobe Systems Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-08-03] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems)
FF Plugin HKU\.DEFAULT: @tools.google.com/Google Update;version=3 -> C:\WINDOWS\system32\config\systemprofile\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2014-02-10] (Google Inc.)
FF Plugin HKU\.DEFAULT: @tools.google.com/Google Update;version=9 -> C:\WINDOWS\system32\config\systemprofile\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2014-02-10] (Google Inc.)
FF Plugin HKU\S-1-5-21-1202660629-2139871995-839522115-1003: @adobe.com/FlashPlayer -> c:\program files\adobe\adobe extension manager cs5\npswf32.dll [Brak pliku]
FF Plugin HKU\S-1-5-21-1202660629-2139871995-839522115-1003: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.25.5\npGoogleUpdate3.dll [2014-10-24] (Google Inc.)
FF Plugin HKU\S-1-5-21-1202660629-2139871995-839522115-1003: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.25.5\npGoogleUpdate3.dll [2014-10-24] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdjvu.dll [2009-07-31] (LizardTech)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll [2009-06-25] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-08-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2015-09-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2015-09-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2015-09-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2015-09-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2015-09-25] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll [2012-06-25] (RealPlayer)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npVividasPlayer.dll [2010-07-21] ( )
FF Extension: All-in-One Sidebar - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2016-01-27]
FF Extension: Web Developer - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2016-01-27]
FF Extension: Total bookmarks - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\totalbookmarks@cs0ip.net.xpi [2016-01-27]
FF Extension: Font Finder - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\fontfinder@bendodson.com.xpi [2016-01-27]
FF Extension: FirePHP - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\FirePHPExtension-Build@firephp.org.xpi [2016-01-27]
FF Extension: Send to Kindle for Mozilla Firefox - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\sendtokindle@amazon.com.xpi [2016-01-27]
FF Extension: YSlow - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\yslow@yahoo-inc.com.xpi [2016-01-27]
FF Extension: Compact Menu 2 - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\{57068FBE-1506-42ee-AB02-BD183E7999E4}.xpi [2016-01-27]
FF Extension: Show Parent Folder - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\showParentFolder@alice.xpi [2016-01-27]
FF Extension: Google Translator for Firefox - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\translator@zoli.bod.xpi [2016-01-27]
FF Extension: Advanced Cookie Manager - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\cookiemgr@jayapal.com [2016-02-23]
FF Extension: Print Edit - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\printedit@DW-dev.xpi [2016-03-15]
FF Extension: Screengrab (fix version) - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\extensions\{02450914-cdd9-410f-b1da-db004e18c671}.xpi [2016-03-16]
FF Extension: Firebug - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\Extensions\firebug@software.joehewitt.com.xpi [2016-02-08]
FF Extension: YouTube™ Flash® Player - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\Extensions\jid1-HAV2inXAnQPIeA@jetpack.xpi [2016-01-27]
FF Extension: User-Agent Switcher - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\Extensions\jid1-kyxEAcWua7BEKq@jetpack.xpi [2016-01-27]
FF Extension: Tabs on Bottom (Australis) - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\Extensions\jid1-OesGFwaQGIBASw@jetpack.xpi [2016-01-27]
FF Extension: Squared Australis Tabs - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\Extensions\squaredaustralistabs@haven667.xpi [2016-01-27]
FF Extension: eBay for Firefox - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\Extensions\{62760FD6-B943-48C9-AB09-F99C6FE96088}.xpi [2016-03-12]
FF Extension: Adblock Plus - C:\Documents and Settings\user01\Dane aplikacji\Mozilla\Firefox\Profiles\w20ccg7d.default-1453890851885\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-24]
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-19] [Brak podpisu cyfrowego]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-02] [Brak podpisu cyfrowego]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-05-16] [Brak podpisu cyfrowego]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-03-23]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-09]

Chrome: 
=======
CHR Profile: C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Profile 1
CHR Extension: (Send to MyInfo) - C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Profile 1\Extensions\fkcplcakolplbgpmchocnnnmjihgckdp [2015-09-20]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-03-01]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-20]
CHR HKLM\...\Chrome\Extension: [fkcplcakolplbgpmchocnnnmjihgckdp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-03-23]
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - <Brak Path\update_url>
StartMenuInternet: Google Chrome - Chrome.exe
StartMenuInternet: Google Chrome.V3OMWTB7PK5P2GZR7SVBHOZVXM - C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe

==================== Usługi (filtrowane) ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 6to4; C:\WINDOWS\System32\6to4svc.dll [100864 2010-02-12] (Microsoft Corporation)
R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2020056 2016-02-09] (Adobe Systems, Incorporated)
R2 Asset Management Daemon; C:\Program Files\Common Files\Portrait Displays\Plugins\AM\dtsslsrv.exe [134672 2013-10-11] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-03-23] (AVAST Software)
S4 Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-07] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-07] (Dropbox, Inc.)
R2 DTSRVC; C:\Program Files\Common Files\Portrait Displays\Shared\dtsrvc.exe [138768 2013-10-11] (Portrait Displays, Inc.)
R2 EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [36904 2015-08-01] (CHENGDU YIWO Tech Development Co., Ltd)
S4 FLSMZIM; C:\Documents and Settings\user01\Ustawienia lokalne\Temp\FLSMZIM.exe [428928 2016-03-23] (Sysinternals - www.sysinternals.com) [Brak podpisu cyfrowego]
S4 HDDlife HDD Access service; C:\Program Files\Common Files\BinarySense\hldasvc.exe [2070792 2013-10-25] (BinarySense, Inc.)
R2 HP DS Service; C:\Program Files\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [Brak podpisu cyfrowego]
S2 HP LaserJet Service; C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [Brak podpisu cyfrowego]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Brak podpisu cyfrowego]
S3 InCDsrv; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [859136 2006-11-10] (Nero AG) [Brak podpisu cyfrowego]
S4 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
S4 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [Brak podpisu cyfrowego]
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [45568 2014-04-28] (Hewlett-Packard) [Brak podpisu cyfrowego]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
S2 PCLEPCI; C:\WINDOWS\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [Brak podpisu cyfrowego]
R2 PdiService; C:\Program Files\Common Files\Portrait Displays\Drivers\pdisrvc.exe [123688 2013-06-18] (Portrait Displays, Inc.)
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [55808 2014-04-28] (Hewlett-Packard) [Brak podpisu cyfrowego]
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Brak podpisu cyfrowego]
S3 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 UserAccess; C:\WINDOWS\system32\UAService.exe [126976 2013-09-26] () [Brak podpisu cyfrowego]
S3 wampapache; c:\wamp\bin\apache\apache2.2.22\bin\httpd.exe [18432 2012-05-13] (Apache Software Foundation) [Brak podpisu cyfrowego]
S3 wampmysqld; c:\wamp\bin\mysql\mysql5.5.24\bin\mysqld.exe [8177664 2012-04-19] () [Brak podpisu cyfrowego]
S2 AirPrint; Brak ImagePath
S4 MSSQL$STUDIODB; Brak ImagePath
S4 MSSQLServerADHelper; "C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe" [X]
S4 SQLBrowser; Brak ImagePath

===================== Sterowniki (filtrowane) ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2010-10-06] (Cisco Systems, Inc.) [Brak podpisu cyfrowego]
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [12400 2007-12-17] ()
S3 asusgsb; C:\WINDOWS\System32\drivers\asusgsb.sys [12416 2007-05-31] (ASUSTeK Computer Inc.) [Brak podpisu cyfrowego]
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [32792 2016-03-23] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [35096 2016-03-23] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [91168 2016-03-23] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [64272 2016-03-23] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [58776 2016-03-23] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [812720 2016-03-23] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [447848 2016-03-23] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [171608 2016-03-23] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [67088 2016-03-23] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [221240 2016-03-23] (AVAST Software)
R3 AtcL001; C:\WINDOWS\System32\DRIVERS\atl01_xp.sys [38656 2007-03-15] (Attansic Technology corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 CrystalSysInfo; C:\Program Files\MediaCoder\SysInfo.sys [15152 2007-09-25] ()
R1 EIO; C:\WINDOWS\system32\drivers\EIO.sys [12288 2007-05-31] (ASUSTeK Computer Inc.) [Brak podpisu cyfrowego]
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [52008 2014-12-14] (CHENGDU YIWO Tech Development Co., Ltd)
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [40744 2014-12-14] ()
R1 EUDSKACS; C:\WINDOWS\system32\drivers\eudskacs.sys [14888 2014-12-14] (CHENGDU YIWO Tech Development Co., Ltd)
R1 EUFDDISK; C:\WINDOWS\system32\drivers\EuFdDisk.sys [188328 2014-12-14] (CHENGDU YIWO Tech Development Co., Ltd)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2016-03-23] (REALiX(tm))
S0 iaStor; C:\WINDOWS\System32\\drivers\\iaStor.sys [330264 2009-06-04] (Intel Corporation)
R4 InCDfs; C:\WINDOWS\System32\drivers\InCDFs.sys [102912 2006-11-10] (Nero AG) [Brak podpisu cyfrowego]
R1 InCDPass; C:\WINDOWS\System32\drivers\InCDPass.sys [31360 2006-11-10] (Nero AG) [Brak podpisu cyfrowego]
U1 InCDrec; C:\WINDOWS\system32\Drivers\InCDrec.sys [10624 2006-11-10] (Nero AG) [Brak podpisu cyfrowego]
R1 incdrm; C:\WINDOWS\System32\drivers\InCDRm.sys [33792 2006-11-10] (Nero AG) [Brak podpisu cyfrowego]
R3 MarvinBus; C:\WINDOWS\System32\DRIVERS\MarvinBus.sys [171520 2007-01-04] (Pinnacle Systems GmbH) [Brak podpisu cyfrowego]
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [129312 2014-08-11] (NVIDIA Corporation)
S3 NVR0Dev; C:\WINDOWS\nvoclock.sys [36640 2008-08-18] (NVidia Corp.)
R3 PdiPorts; C:\WINDOWS\System32\Drivers\PdiPorts.sys [19368 2013-06-18] (Portrait Displays, Inc.)
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [17160 2015-03-05] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [13064 2015-03-05] ()
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2015-10-12] (Duplex Secure Ltd.)
R2 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [13120 2013-08-25] ()
R1 Tcpip6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
R3 TPLINKUDSMBus; C:\WINDOWS\System32\drivers\TplinkUDSMBus.sys [88576 2012-09-21] (Windows (R) Codename Longhorn DDK provider)
S3 TplinkUDSTcpBus; C:\WINDOWS\System32\drivers\TplinkUDSTcpBus.sys [151296 2012-09-21] (Windows (R) Codename Longhorn DDK provider)
R1 VD_FileDisk; C:\WINDOWS\system32\Drivers\VD_FileDisk.sys [24680 2011-01-26] (CaptainFlint Software)
S3 ZMHHPAudioSrv; C:\WINDOWS\System32\drivers\zmhhpau.sys [91136 2008-08-11] (ZOOM) [Brak podpisu cyfrowego]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 i1; system32\DRIVERS\i1.sys [X]
S4 IntelIde; Brak ImagePath
S3 NDSPCIIO; \??\C:\WINDOWS\system32\DRIVERS\NDSPCIIO.SYS [X]
S3 Netaapl; system32\DRIVERS\netaapl.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 taphss; system32\DRIVERS\taphss.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 VBoxUSB; System32\Drivers\VBoxUSB.sys [X]
S3 Video3D; System32\Drivers\Video3D32.sys [X]
U1 WS2IFSL; Brak ImagePath

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

NETSVC: pca -> Brak ścieżki do pliku.
NETSVC: cusrvc -> Brak ścieżki do pliku.

==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2016-03-23 20:27 - 2016-03-23 20:27 - 00023840 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32.SYS
2016-03-23 20:26 - 2016-03-23 20:26 - 00000000 ____D C:\Program Files\HWiNFO32
2016-03-23 20:26 - 2016-03-23 20:26 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\HWiNFO32
2016-03-23 18:28 - 2016-03-23 18:29 - 26189824 _____ C:\WINDOWS\system32\QNABCC
2016-03-23 15:41 - 2016-03-23 15:41 - 00001705 _____ C:\Documents and Settings\All Users\Pulpit\Avast Free Antivirus.lnk
2016-03-23 15:41 - 2016-03-23 15:41 - 00000478 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1458744077.job
2016-03-23 15:41 - 2016-03-23 15:41 - 00000000 ____D C:\Documents and Settings\user01\Dane aplikacji\AVAST Software
2016-03-23 15:41 - 2016-03-23 15:41 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\AVAST Software
2016-03-23 15:40 - 2016-03-23 20:10 - 00000364 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2016-03-23 15:40 - 2016-03-23 15:40 - 00812720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-03-23 15:40 - 2016-03-23 15:40 - 00447848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-03-23 15:40 - 2016-03-23 15:40 - 00334280 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-03-23 15:40 - 2016-03-23 15:40 - 00221240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-03-23 15:40 - 2016-03-23 15:40 - 00171608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2016-03-23 15:40 - 2016-03-23 15:40 - 00091168 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-03-23 15:40 - 2016-03-23 15:40 - 00067088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2016-03-23 15:40 - 2016-03-23 15:40 - 00064272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2016-03-23 15:40 - 2016-03-23 15:40 - 00058776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-03-23 15:40 - 2016-03-23 15:40 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-03-23 15:40 - 2016-03-23 15:40 - 00035096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-03-23 15:40 - 2016-03-23 15:40 - 00032792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-03-23 15:39 - 2016-03-23 15:40 - 00000000 ____D C:\Program Files\AVAST Software
2016-03-23 14:44 - 2016-03-23 14:44 - 00000000 ____D C:\Documents and Settings\user01\Dane aplikacji\Lavasoft
2016-03-23 13:29 - 2016-03-23 14:40 - 00063232 _____ C:\WINDOWS\setuplog.txt
2016-03-23 13:09 - 2016-03-23 14:49 - 00000000 ____D C:\Documents and Settings\user01\Dane aplikacji\LavasoftStatistics
2016-03-23 13:08 - 2016-03-23 13:08 - 00000000 ____D C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Lavasoft
2016-03-23 12:39 - 2016-03-23 12:39 - 00000000 ____D C:\Documents and Settings\All Users\Kaspersky Lab Setup Files
2016-03-23 11:55 - 2016-03-23 12:04 - 00000000 ____D C:\Documents and Settings\user01\Dane aplikacji\Solvusoft
2016-03-23 11:55 - 2015-11-25 13:01 - 00019576 _____ (solvusoft) C:\WINDOWS\system32\roboot.exe
2016-03-23 10:41 - 2016-03-23 19:19 - 00065578 _____ C:\net-log.txt
2016-03-23 10:01 - 2016-03-23 14:42 - 00001729 _____ C:\Documents and Settings\user01\Pulpit\problemy z siecią.txt
2016-03-23 09:28 - 2016-03-23 09:28 - 00006676 _____ C:\WINDOWS\system32\resetlog.txt
2016-03-23 07:25 - 2016-03-23 07:26 - 00152578 _____ C:\TDSSKiller.3.1.0.7_23.03.2016_07.25.53_log.txt
2016-03-23 07:08 - 2016-03-23 09:24 - 00002200 _____ C:\Documents and Settings\user01\Pulpit\RepairDNS.txt
2016-03-22 08:27 - 2016-03-22 08:27 - 00000694 _____ C:\Documents and Settings\user01\Pulpit\raport sieci afilijacyjne.lnk
2016-03-20 22:54 - 2016-03-20 22:54 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Dropbox
2016-03-19 01:17 - 2016-03-19 18:24 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-03-14 20:09 - 2016-03-14 20:09 - 00000000 ____D C:\Program Files\Cuminas
2016-03-14 20:09 - 2016-03-14 20:09 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Cuminas
2016-03-10 07:53 - 2016-03-10 07:53 - 00000000 ____D C:\Program Files\AdwCleaner
2016-03-09 19:36 - 2016-03-09 19:36 - 00001856 _____ C:\Documents and Settings\user01\Pulpit\eBay Sidebar dla Firefox.lnk
2016-03-08 07:29 - 2016-03-08 07:29 - 00000000 ____D C:\Program Files\ikony
2016-03-08 07:04 - 2016-03-08 07:04 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Ritlabs The Bat!
2016-03-07 10:17 - 2016-03-07 10:17 - 00000218 _____ C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\recently-used.xbel
2016-02-24 06:52 - 2016-02-24 07:16 - 00000000 ____D C:\Documents and Settings\user01\Menu Start\Programy\PWN
2016-02-23 20:18 - 2016-02-24 07:15 - 00000000 ____D C:\Program Files\PWN
2016-02-23 20:18 - 2016-02-23 20:18 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\PWN
2016-02-23 20:18 - 2001-04-04 14:00 - 00245760 ____N (Iterated Systems, Inc.) C:\WINDOWS\system32\DECO_32.DLL

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2016-03-23 20:33 - 2015-12-06 23:17 - 00000000 ____D C:\FRST
2016-03-23 20:33 - 2007-09-20 09:44 - 00000000 ____D C:\Documents and Settings\user01\Ustawienia lokalne\Temp
2016-03-23 20:29 - 2014-10-09 16:08 - 00020478 _____ C:\WINDOWS\system32\nvAppTimestamps
2016-03-23 20:26 - 2007-09-19 19:03 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy
2016-03-23 20:15 - 2015-12-07 07:10 - 00001140 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-03-23 20:08 - 2007-09-19 19:04 - 01420448 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-23 20:08 - 2006-03-02 13:00 - 00613644 _____ C:\WINDOWS\system32\perfh015.dat
2016-03-23 20:08 - 2006-03-02 13:00 - 00128774 _____ C:\WINDOWS\system32\perfc015.dat
2016-03-23 20:04 - 2015-12-07 07:10 - 00001136 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-03-23 20:04 - 2007-09-20 09:44 - 00000000 ___HD C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji
2016-03-23 20:04 - 2007-09-20 09:41 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-23 20:04 - 2006-03-02 13:00 - 00001316 _____ C:\WINDOWS\system32\wpa.dbl
2016-03-23 20:03 - 2007-09-20 09:44 - 00000188 ___SH C:\Documents and Settings\user01\ntuser.ini
2016-03-23 20:03 - 2007-09-20 09:41 - 00032590 _____ C:\WINDOWS\SchedLgU.Txt
2016-03-23 20:02 - 2007-09-20 09:44 - 00000000 ____D C:\Documents and Settings\user01
2016-03-23 19:49 - 2015-12-07 10:54 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-03-23 19:18 - 2007-09-19 18:54 - 00000000 ____D C:\WINDOWS\system32\ias
2016-03-23 18:58 - 2007-09-19 18:54 - 00000000 ____D C:\WINDOWS
2016-03-23 17:37 - 2007-09-19 18:54 - 00000000 RSHDC C:\WINDOWS\system32\dllcache
2016-03-23 15:41 - 2007-09-20 09:44 - 00000000 __RHD C:\Documents and Settings\user01\Dane aplikacji
2016-03-23 15:41 - 2007-09-19 19:03 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit
2016-03-23 15:40 - 2012-02-23 13:48 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software
2016-03-23 15:40 - 2007-09-19 18:54 - 00000000 ___HD C:\WINDOWS\inf
2016-03-23 15:05 - 2007-09-20 09:44 - 00000000 ___HD C:\Documents and Settings\user01\Ustawienia lokalne
2016-03-23 14:49 - 2007-09-19 19:01 - 00000000 __RHD C:\Documents and Settings\All Users\Dane aplikacji
2016-03-23 14:40 - 2007-09-25 08:15 - 00001316 ____C C:\WINDOWS\system32\wpa.bak
2016-03-23 14:10 - 2013-04-24 19:08 - 00855234 _____ C:\WINDOWS\ntbtlog.txt
2016-03-23 13:23 - 2007-09-20 09:41 - 00000000 ____D C:\Documents and Settings\LocalService\Ustawienia lokalne\Temp
2016-03-23 13:15 - 2007-09-20 09:44 - 00000000 ____D C:\Documents and Settings\user01\Pulpit
2016-03-23 13:01 - 2007-09-19 18:54 - 00000000 ____D C:\WINDOWS\security
2016-03-23 12:39 - 2007-09-19 19:00 - 00000000 ____D C:\Documents and Settings\All Users
2016-03-23 11:12 - 2014-06-11 11:19 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\CDR
2016-03-23 10:55 - 2007-11-08 09:50 - 00000000 ____D C:\Documents and Settings\user01\Dane aplikacji\Gzegzolka XP
2016-03-23 07:55 - 2014-06-12 09:36 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-03-23 07:04 - 2016-01-08 10:43 - 00000691 _____ C:\dude.conf
2016-03-23 06:32 - 2015-12-06 22:12 - 00000000 ____D C:\AdwCleaner
2016-03-23 06:29 - 2015-12-07 07:15 - 00000000 ___RD C:\Dropbox
2016-03-23 06:29 - 2015-12-07 07:10 - 00000000 ____D C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Dropbox
2016-03-23 06:27 - 2012-12-05 00:44 - 07444022 _____ C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-1202660629-2139871995-839522115-1003-0.dat
2016-03-23 06:27 - 2012-10-27 19:27 - 00636422 _____ C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat
2016-03-23 02:00 - 2014-08-15 19:10 - 00000000 ____D C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Adobe
2016-03-23 02:00 - 2010-10-19 21:43 - 00000344 _____ C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-MOBYDICK-user01.job
2016-03-22 21:55 - 2014-06-09 18:01 - 00000000 ____D C:\WINDOWS\system32\NtmsData
2016-03-22 21:55 - 2007-09-19 17:08 - 00000000 ____D C:\WINDOWS\Registration
2016-03-22 20:40 - 2014-10-19 19:24 - 00000000 __SHD C:\Documents and Settings\user01\wc
2016-03-22 16:41 - 2012-08-20 11:22 - 00001496 _____ C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Adobe Zapisz dla Internetu 13.0 Prefs
2016-03-22 16:09 - 2009-10-12 07:45 - 00000000 ____D C:\Program Files\XnView
2016-03-22 16:00 - 2007-09-25 11:59 - 00000116 _____ C:\WINDOWS\NeroDigital.ini
2016-03-22 14:12 - 2012-11-08 21:10 - 00000132 _____ C:\Documents and Settings\user01\Dane aplikacji\Preferencje formatu PNG CS6 firmy Adobe
2016-03-21 06:24 - 2007-09-24 12:43 - 00000000 ___RD C:\Moje dokumenty
2016-03-20 22:54 - 2013-04-10 19:20 - 00000000 ____D C:\Program Files\Dropbox
2016-03-20 08:35 - 2012-09-13 11:50 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-03-18 09:25 - 2007-11-08 09:54 - 00000000 ____D C:\Documents and Settings\user01\Dane aplikacji\Poliszynel
2016-03-17 00:19 - 2013-12-05 20:30 - 01738520 _____ C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
2016-03-17 00:19 - 2007-09-20 09:41 - 00000000 ___HD C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji
2016-03-16 14:02 - 2010-10-06 10:36 - 00000000 ____D C:\tmp
2016-03-15 07:25 - 2013-08-29 21:34 - 00000000 ____D C:\Documents and Settings\user01\Dane aplikacji\vlc
2016-03-12 18:11 - 2015-09-25 13:21 - 00000284 _____ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2016-03-11 16:49 - 2015-12-30 21:49 - 11035328 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2016-03-11 16:49 - 2015-12-07 10:54 - 00797376 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-03-11 16:49 - 2015-12-07 10:54 - 00142528 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-03-08 07:04 - 2014-11-05 08:34 - 00000000 ____D C:\Program Files\The Bat!
2016-03-05 23:14 - 2008-05-04 09:28 - 00000000 ____D C:\Documents and Settings\user01\Dane aplikacji\Skype
2016-03-05 22:50 - 2007-12-12 08:32 - 00000000 ____D C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Google
2016-03-04 17:27 - 2014-03-24 09:42 - 00000000 ____D C:\Documents and Settings\user01\Dane aplikacji\TeamViewer
2016-03-03 07:08 - 2007-09-19 19:03 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2016-02-24 06:52 - 2007-09-20 09:44 - 00000000 ___RD C:\Documents and Settings\user01\Menu Start\Programy
2016-02-23 20:17 - 2007-09-25 07:33 - 00327168 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUn0415.exe

==================== Pliki w katalogu głównym wybranych folderów =======

2016-02-13 12:26 - 2016-02-13 20:50 - 0002622 _____ () C:\Documents and Settings\user01\Dane aplikacji\.thetimelineproj.cfg
2012-10-21 20:33 - 2012-10-21 21:02 - 0010824 _____ () C:\Documents and Settings\user01\Dane aplikacji\ContactSheetII.log
2011-12-31 17:45 - 2011-12-31 17:45 - 0000268 ___RH () C:\Documents and Settings\user01\Dane aplikacji\docInfo
2015-11-20 15:26 - 2015-11-20 15:32 - 0002805 _____ () C:\Documents and Settings\user01\Dane aplikacji\droid4xinstaller.log
2011-12-31 17:45 - 2011-12-31 17:45 - 0000268 ___RH () C:\Documents and Settings\user01\Dane aplikacji\filter
2011-12-31 17:45 - 2011-12-31 17:45 - 0000268 ___RH () C:\Documents and Settings\user01\Dane aplikacji\grep
2010-11-13 09:02 - 2012-07-10 14:19 - 0000132 _____ () C:\Documents and Settings\user01\Dane aplikacji\Preferencje Adobe CS5 dla formatu PNG
2012-09-20 14:10 - 2012-12-04 09:51 - 0000132 _____ () C:\Documents and Settings\user01\Dane aplikacji\Preferencje filtra IllExport CS6 firmy Adobe
2012-01-19 20:05 - 2012-01-26 10:41 - 0000132 _____ () C:\Documents and Settings\user01\Dane aplikacji\Preferencje filtru IllExport CS5 firmy Adobe
2012-11-08 21:10 - 2016-03-22 14:12 - 0000132 _____ () C:\Documents and Settings\user01\Dane aplikacji\Preferencje formatu PNG CS6 firmy Adobe
2013-02-08 11:40 - 2014-11-10 09:20 - 0000718 _____ () C:\Documents and Settings\user01\Dane aplikacji\ru.colorbox.trista-dpi.txt
2012-10-21 20:33 - 2012-10-21 21:01 - 0000649 _____ () C:\Documents and Settings\user01\Dane aplikacji\Stykówka II.xml
2013-02-08 15:18 - 2013-09-24 12:48 - 0000600 _____ () C:\Documents and Settings\user01\Dane aplikacji\winscp.rnd
2010-10-29 08:33 - 2013-02-27 13:15 - 0001496 _____ () C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Adobe Zapisz dla Internetu 12.0 Prefs
2012-08-20 11:22 - 2016-03-22 16:41 - 0001496 _____ () C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\Adobe Zapisz dla Internetu 13.0 Prefs
2007-10-24 12:26 - 2016-01-31 20:47 - 0152576 _____ () C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2007-12-11 13:45 - 2007-12-11 13:45 - 0000131 _____ () C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
2012-12-13 20:56 - 2016-01-29 15:49 - 0000600 _____ () C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\PUTTY.RND
2016-03-07 10:17 - 2016-03-07 10:17 - 0000218 _____ () C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\recently-used.xbel
2014-09-03 07:48 - 2015-12-14 17:56 - 0001763 _____ () C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\recently-used.xbel.bak
2010-03-24 12:31 - 2010-03-24 12:31 - 0000032 RSHOT () C:\Documents and Settings\user01\Ustawienia lokalne\Dane aplikacji\t56.dat
2011-12-31 17:45 - 2011-12-31 17:45 - 0000268 ___RH () C:\Documents and Settings\All Users\Dane aplikacji\images
2011-12-31 17:45 - 2011-12-31 17:45 - 0000268 ___RH () C:\Documents and Settings\All Users\Dane aplikacji\laserjet
2011-12-31 17:45 - 2011-12-31 17:45 - 0000268 ___RH () C:\Documents and Settings\All Users\Dane aplikacji\libiconv
2011-12-31 17:45 - 2011-12-31 17:45 - 0000020 ____H () C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLes.DAT
2011-12-31 17:45 - 2014-06-11 11:57 - 0000020 ____H () C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLet.DAT
2011-12-31 17:45 - 2013-11-05 11:24 - 0000020 ____H () C:\Documents and Settings\All Users\Dane aplikacji\PKP_DLev.DAT
2015-05-26 20:19 - 2015-05-26 20:19 - 0001742 _____ () C:\Documents and Settings\All Users\Dane aplikacji\QTSBandwidthCache
2007-12-11 13:55 - 2010-09-09 12:21 - 0000024 _____ () C:\Documents and Settings\All Users\Dane aplikacji\__FileUploader.log
2012-04-12 10:54 - 2012-04-12 10:54 - 0000120 _____ () C:\Documents and Settings\All Users\Dane aplikacji\{B767A324-C670-EA9A-27D2-89FF-A2FE5630}.ini

Niektóre pliki w TEMP:
====================
C:\Documents and Settings\user01\Ustawienia lokalne\Temp\FLSMZIM.exe


==================== Bamital & volsnap =================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo

==================== Koniec  FRST.txt ============================