Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja:16-04-2016 01
Uruchomiony przez Maciej (administrator)  MACIEK (22-04-2016 22:23:09)
Uruchomiony z C:\Users\Maciej\Downloads
Załadowane profile: Maciej (Dostępne profile: Maciej)
Platform: Microsoft Windows 7 Home Premium  (X86) Język: Polski (Polska)
Internet Explorer Wersja 8 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
() D:\Riot games\RADS\system\rads_user_kernel.exe
() D:\Riot games\RADS\projects\lol_launcher\releases\0.0.1.15\deploy\LoLLauncher.exe
() D:\Riot games\RADS\projects\lol_patcher\releases\0.0.0.55\deploy\LoLPatcher.exe
() D:\Riot games\RADS\projects\lol_patcher\releases\0.0.0.55\deploy\LoLPatcherUx.exe
() D:\Riot games\RADS\projects\lol_patcher\releases\0.0.0.55\deploy\LoLPatcherUx.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe


==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-10-13] (NVIDIA Corporation)
HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [2159216 2011-05-06] (VIA)
HKU\S-1-5-21-1244865762-4093500767-1752695092-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6602152 2015-11-16] (Piriform Ltd)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => D:\MIC\Office15\GROOVEEX.DLL [2014-01-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => D:\MIC\Office15\GROOVEEX.DLL [2014-01-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => D:\MIC\Office15\GROOVEEX.DLL [2014-01-23] (Microsoft Corporation)

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 213.172.186.4 8.8.8.8
Tcpip\..\Interfaces\{67E2473B-86A1-42E0-9E16-B7C692C18A9F}: [DhcpNameServer] 213.172.186.4 8.8.8.8

Internet Explorer:
==================
HKU\S-1-5-21-1244865762-4093500767-1752695092-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> D:\MIC\Office15\OCHelper.dll [2014-01-23] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-12-20] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\MIC\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> D:\MIC\Office15\GROOVEEX.DLL [2014-01-23] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-20] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - D:\MIC\Office15\MSOSB.DLL [2014-01-23] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Maciej\AppData\Roaming\Mozilla\Firefox\Profiles\knge6m3m.default-1460831162307
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-20] (Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2014-01-23] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> D:\MIC\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-10-13] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-10-13] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-10] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2014-01-23] (Microsoft Corporation)

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://google.pl/"
CHR Profile: C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentacje Google) - C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-20]
CHR Extension: (Dokumenty Google) - C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-20]
CHR Extension: (Dysk Google) - C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-20]
CHR Extension: (YouTube) - C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-20]
CHR Extension: (Adblock Plus) - C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-09]
CHR Extension: (Google Search) - C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-20]
CHR Extension: (imgur Extension by Metronomik) - C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehoopddfhgaehhmphfcooacjdpmbjlao [2016-04-22]
CHR Extension: (Arkusze Google) - C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\Maciej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-20]

==================== Usługi (filtrowane) ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600 2015-10-13] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-10-13] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2119688 2016-03-31] (Electronic Arts)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-03-29] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)

===================== Sterowniki (filtrowane) ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [26168 2016-03-12] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [40504 2016-03-12] (Disc Soft Ltd)
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [47104 2009-07-14] (Atheros Communications, Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [32912 2015-10-13] (NVIDIA Corporation)
S3 snpstd; C:\Windows\System32\DRIVERS\snpstd.sys [390784 2006-05-03] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [477240 2016-04-11] (Duplex Secure Ltd.)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1804400 2011-03-29] (VIA Technologies, Inc.)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2016-04-22 22:23 - 2016-04-22 22:23 - 00010614 _____ C:\Users\Maciej\Downloads\FRST.txt
2016-04-22 22:22 - 2016-04-22 22:23 - 00000000 ____D C:\FRST
2016-04-20 14:47 - 2016-04-20 14:47 - 00010646 _____ C:\Users\Maciej\AppData\Local\recently-used.xbel
2016-04-17 04:58 - 2016-04-17 04:58 - 00000243 _____ C:\Users\Maciej\Desktop\tratwa.txt
2016-04-17 04:07 - 2016-04-17 04:07 - 00000287 _____ C:\Users\Maciej\Desktop\taa.txt
2016-04-16 23:16 - 2016-04-16 23:16 - 00003642 _____ C:\Users\Maciej\Downloads\Fixlog.txt
2016-04-16 20:46 - 2016-04-16 20:46 - 01726464 _____ (Farbar) C:\Users\Maciej\Downloads\FRST.exe
2016-04-16 13:00 - 2016-04-16 13:00 - 03677760 _____ C:\Users\Maciej\Downloads\adwcleaner_5.111.exe
2016-04-16 12:58 - 2016-04-16 13:19 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-04-16 12:58 - 2016-04-16 13:04 - 00001058 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-04-16 12:58 - 2016-04-16 12:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-04-16 12:58 - 2016-04-16 12:58 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-04-16 12:58 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-04-16 12:58 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-04-16 12:58 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-04-16 12:56 - 2016-04-16 12:56 - 00000000 ____D C:\Users\Maciej\Downloads\Malwarebytes.AntiMalware.Premium.2.0.4.1028.PL (1)
2016-04-16 00:18 - 2016-04-16 00:18 - 00000000 ____D C:\Users\Maciej\Downloads\WIKING 1 do 2
2016-04-15 16:56 - 2016-04-16 23:17 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-04-11 16:45 - 2016-04-11 16:45 - 57182136 _____ C:\Users\Maciej\Downloads\Nero Free 9.4.12.3d [1].exe
2016-04-11 16:35 - 2016-04-11 16:40 - 00000000 ____D C:\Program Files\DAEMON Tools Pro
2016-04-11 16:35 - 2016-04-11 16:39 - 00000000 ____D C:\Users\Maciej\AppData\Roaming\DAEMON Tools Pro
2016-04-11 16:35 - 2016-04-11 16:35 - 00477240 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys
2016-04-11 16:35 - 2016-04-11 16:35 - 00000000 ____D C:\ProgramData\DAEMON Tools Pro
2016-04-11 16:29 - 2016-04-11 16:32 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-04-11 16:29 - 2016-04-11 16:29 - 00000000 ____D C:\Program Files\Disc Soft
2016-04-09 21:37 - 2016-04-17 21:27 - 00000000 ____D C:\Users\Maciej\Desktop\fwf
2016-04-02 00:57 - 2016-04-02 00:57 - 00000000 ____D C:\Users\Maciej\AppData\Local\Nvidia Corporation
2016-03-31 17:20 - 2016-03-31 17:22 - 32772454 _____ C:\Users\Maciej\Downloads\kołysanki i wyliczanki.Sims3Pack
2016-03-29 10:47 - 2016-03-29 11:16 - 01294336 _____ C:\Users\Maciej\Desktop\Maciej.accdb
2016-03-28 19:30 - 2016-03-28 19:30 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-03-28 19:29 - 2016-03-28 19:29 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-03-28 19:28 - 2016-03-28 19:28 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-03-28 19:27 - 2016-03-28 19:28 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-03-28 19:27 - 2016-03-28 19:27 - 00000000 ____D C:\Windows\PCHEALTH
2016-03-28 19:26 - 2016-03-28 19:26 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2016-03-28 19:25 - 2016-03-28 19:25 - 00000000 ____D C:\Users\Maciej\AppData\Local\Microsoft Help
2016-03-28 07:55 - 2016-03-28 07:55 - 00000000 ____D C:\Users\Maciej\AppData\Roaming\HD Tune Pro
2016-03-28 07:55 - 2016-03-28 07:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
2016-03-28 07:55 - 2016-03-28 07:55 - 00000000 ____D C:\Program Files\HD Tune Pro
2016-03-28 00:12 - 2016-03-28 00:27 - 00000000 ____D C:\Users\Maciej\otclient
2016-03-27 18:18 - 2016-04-16 13:03 - 00002127 _____ C:\Users\Maciej\Desktop\Minecraft.lnk
2016-03-27 18:18 - 2016-03-28 16:51 - 00000000 ____D C:\Users\Maciej\AppData\Roaming\.minecraft
2016-03-27 18:18 - 2016-03-27 18:18 - 00000000 ____D C:\Users\Maciej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2016-03-27 18:18 - 2016-03-27 18:18 - 00000000 ____D C:\Users\Maciej\AppData\Roaming\java
2016-03-27 18:04 - 2016-03-27 18:04 - 00000000 ____D C:\ProgramData\Steam
2016-03-27 18:03 - 2016-03-27 18:03 - 00000000 ____D C:\Users\Maciej\Documents\Telltale Games
2016-03-27 17:54 - 2016-04-11 16:27 - 00690448 _____ (Disc Soft Ltd.) C:\Users\Maciej\Downloads\DTLiteInstaller.exe

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2016-04-22 16:51 - 2015-12-23 16:32 - 00000000 ____D C:\Users\Maciej\AppData\Roaming\Skype
2016-04-22 15:37 - 2015-12-20 18:13 - 01661232 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-22 15:37 - 2009-07-14 10:07 - 00737242 _____ C:\Windows\system32\perfh015.dat
2016-04-22 15:37 - 2009-07-14 10:07 - 00153930 _____ C:\Windows\system32\perfc015.dat
2016-04-22 15:37 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2016-04-22 09:11 - 2009-07-14 06:34 - 00019312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-22 09:11 - 2009-07-14 06:34 - 00019312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-22 09:04 - 2015-12-20 18:30 - 00000000 ____D C:\ProgramData\NVIDIA
2016-04-22 09:04 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-21 12:29 - 2015-12-26 22:05 - 00000000 ____D C:\ProgramData\Origin
2016-04-21 12:29 - 2015-12-22 22:55 - 00000000 ____D C:\Users\Maciej\Desktop\MILENA
2016-04-20 14:47 - 2016-02-24 12:49 - 00000000 ____D C:\Users\Maciej\AppData\Local\gtk-2.0
2016-04-20 14:47 - 2016-02-24 12:37 - 00000000 ____D C:\Users\Maciej\.gimp-2.8
2016-04-20 14:35 - 2016-01-02 00:15 - 00018432 ____H C:\Users\Maciej\Desktop\photothumb.db
2016-04-17 21:13 - 2016-01-02 00:10 - 00000000 ____D C:\Users\Maciej\AppData\Roaming\PhotoScape
2016-04-16 23:16 - 2016-01-03 15:02 - 00000000 ____D C:\Users\Maciej\AppData\LocalLow\Temp
2016-04-16 13:04 - 2016-03-15 17:03 - 00002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker 2.6.lnk
2016-04-16 13:04 - 2016-02-24 12:37 - 00001039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2016-04-16 13:04 - 2016-01-18 12:16 - 00002676 _____ C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk
2016-04-16 13:04 - 2016-01-12 13:42 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-04-16 13:04 - 2016-01-05 12:09 - 00001823 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-04-16 13:04 - 2015-12-26 23:21 - 00001350 _____ C:\Users\Public\Desktop\The Sims 3.lnk
2016-04-16 13:04 - 2015-12-26 22:05 - 00000935 _____ C:\Users\Public\Desktop\Origin.lnk
2016-04-16 13:04 - 2015-12-24 00:21 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2016-04-16 13:04 - 2015-12-24 00:21 - 00001082 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2016-04-16 13:04 - 2015-12-23 21:47 - 00000512 _____ C:\Users\Public\Desktop\Steam.lnk
2016-04-16 13:04 - 2015-12-23 21:10 - 00001118 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2016-04-16 13:04 - 2015-12-23 16:32 - 00002681 _____ C:\Users\Public\Desktop\Skype.lnk
2016-04-16 13:04 - 2015-12-22 10:56 - 00002094 _____ C:\Users\Public\Desktop\Angry Birds.lnk
2016-04-16 13:04 - 2015-12-20 18:59 - 00000963 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-04-16 13:04 - 2015-12-20 18:13 - 00002135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-16 13:04 - 2015-12-20 18:13 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-16 13:04 - 2015-12-20 18:05 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-04-16 13:04 - 2015-12-20 18:04 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-04-16 13:04 - 2009-07-14 06:46 - 00001503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-04-16 13:04 - 2009-07-14 06:42 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-04-16 13:04 - 2009-07-14 06:42 - 00001318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-04-16 13:04 - 2009-07-14 06:42 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-04-16 13:04 - 2009-07-14 06:42 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-04-16 13:03 - 2016-03-15 17:03 - 00002483 _____ C:\Users\Maciej\Desktop\Windows Movie Maker 2.6.lnk
2016-04-16 13:03 - 2016-03-03 23:56 - 00001974 _____ C:\Users\Maciej\AppData\Roaming\Microsoft\Windows\Start Menu\Mixcraft 7 (32-bit).lnk
2016-04-16 13:03 - 2016-02-13 17:39 - 00000550 _____ C:\Users\Maciej\Desktop\Little Inferno.lnk
2016-04-16 13:03 - 2016-01-05 23:09 - 00002656 _____ C:\Users\Maciej\Desktop\BitTorrent.lnk
2016-04-16 13:03 - 2016-01-05 23:09 - 00002636 _____ C:\Users\Maciej\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2016-04-16 13:03 - 2015-12-24 02:38 - 00002134 _____ C:\Users\Maciej\Desktop\PXG Client.lnk
2016-04-16 13:03 - 2015-12-24 02:38 - 00002120 _____ C:\Users\Maciej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PXG Client.lnk
2016-04-16 13:03 - 2015-12-20 18:58 - 00001087 _____ C:\Users\Maciej\Desktop\AngryBirdsStarWarsII.lnk
2016-04-16 13:03 - 2015-12-20 18:58 - 00001046 _____ C:\Users\Maciej\Desktop\AngryBirdsStarWars.lnk
2016-04-16 13:03 - 2015-12-20 18:58 - 00000957 _____ C:\Users\Maciej\Desktop\AngryBirdsRio.lnk
2016-04-16 13:03 - 2015-12-20 18:10 - 00001425 _____ C:\Users\Maciej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-04-16 13:03 - 2009-07-14 06:46 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-04-16 13:03 - 2009-07-14 06:37 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-04-16 12:55 - 2009-07-14 06:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-04-16 12:39 - 2016-03-12 01:18 - 00000000 ____D C:\Users\Maciej\AppData\Roaming\DAEMON Tools Lite
2016-04-16 12:39 - 2015-12-23 21:10 - 00000000 ____D C:\Users\Maciej\AppData\Roaming\TS3Client
2016-04-09 12:58 - 2016-02-28 20:53 - 00000000 ____D C:\Users\Maciej\Desktop\Na torg
2016-04-06 10:14 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF
2016-04-04 10:08 - 2015-12-26 00:41 - 00000000 ____D C:\Users\Maciej\Desktop\Steam gry
2016-04-02 21:28 - 2015-12-23 21:47 - 00000000 ____D C:\Program Files\Common Files\Steam
2016-04-02 00:53 - 2015-12-20 18:34 - 00000000 ____D C:\Users\Maciej\AppData\Local\NVIDIA
2016-04-02 00:52 - 2015-12-20 18:29 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-03-31 16:46 - 2015-12-26 22:05 - 00000000 ____D C:\Program Files\Origin
2016-03-29 10:45 - 2009-07-14 06:33 - 01780016 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-28 20:59 - 2015-12-20 18:12 - 00111520 _____ C:\Users\Maciej\AppData\Local\GDIPFONTCACHEV1.DAT
2016-03-28 19:29 - 2009-07-14 10:28 - 00000000 ____D C:\Windows\ShellNew
2016-03-28 19:29 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-03-28 19:27 - 2016-02-14 12:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-03-28 19:26 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\System
2016-03-28 19:26 - 2009-07-14 04:04 - 00000478 _____ C:\Windows\win.ini
2016-03-28 00:12 - 2015-12-20 18:09 - 00000000 ____D C:\Users\Maciej
2016-03-25 20:31 - 2009-07-14 06:53 - 00032590 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Pliki w katalogu głównym wybranych folderów =======

2016-01-02 01:09 - 2016-02-25 10:33 - 0000094 _____ () C:\Users\Maciej\AppData\Roaming\WB.CFG
2016-03-15 17:04 - 2016-03-15 17:23 - 0005632 _____ () C:\Users\Maciej\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-04-20 14:47 - 2016-04-20 14:47 - 0010646 _____ () C:\Users\Maciej\AppData\Local\recently-used.xbel

Niektóre pliki w TEMP:
====================
C:\Users\Maciej\AppData\Local\Temp\libeay32.dll
C:\Users\Maciej\AppData\Local\Temp\msvcr120.dll
C:\Users\Maciej\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\Windows\explorer.exe => Plik podpisany cyfrowo
C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
C:\Windows\system32\services.exe => Plik podpisany cyfrowo
C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo


LastRegBack: 2016-04-18 11:12

==================== Koniec  FRST.txt ============================