Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 21-08-2016 Uruchomiony przez Lenovo (administrator) DESKTOP-L4866L2 (21-08-2016 14:40:32) Uruchomiony z D:\Download Załadowane profile: Lenovo (Dostępne profile: Lenovo) Platform: Windows 10 Home Wersja 1607 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\HidMonitorSvc.exe () C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Intel(R) Corporation) C:\Program Files (x86)\Common Files\Intel\RSDCM\bin\win32\RealSenseDCM.exe (Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe (Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\Bluestacks\HD-Service.exe (BlueStack Systems) C:\Program Files (x86)\Bluestacks\HD-Network.exe (BlueStack Systems) C:\Program Files (x86)\Bluestacks\HD-BlockDevice.exe (BlueStack Systems) C:\Program Files (x86)\Bluestacks\HD-SharedFolder.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\hidfind.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3540 series\Bin\ScanToPCActivationApp.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\Bluestacks\HD-Agent.exe (Power Software Ltd) D:\Programy\PowerISO\PWRISOVM.EXE (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\cmd.exe (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (BlueStack Systems, Inc.) D:\Programy\Bluestacks\Bluestacks\BluestacksGameManager\BlueStacks.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\Bluestacks\HD-Frontend.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (McAfee, Inc.) C:\Program Files\McAfee\VirusScan\mcods.exe (Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\McClientAnalytics.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3540 series\Bin\HPNetworkCommunicatorCom.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [703272 2015-08-30] (Alps Electric Co., Ltd.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16482040 2016-03-31] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1427712 2016-03-31] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1427712 2016-03-31] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1427712 2016-03-31] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795912 2015-07-23] (NVIDIA Corporation) HKLM-x32\...\Run: [StereoLinksInstall] => "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe" /install1 HKLM-x32\...\Run: [PWRISOVM.EXE] => D:\Programy\PowerISO\PWRISOVM.EXE [406664 2016-06-07] (Power Software Ltd) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" HKU\S-1-5-21-3631965048-2141472774-541280469-1001\...\Run: [HP Deskjet 3540 series (NET)] => C:\Program Files\HP\HP Deskjet 3540 series\Bin\ScanToPCActivationApp.exe [3487240 2014-03-06] (Hewlett-Packard Co.) HKU\S-1-5-21-3631965048-2141472774-541280469-1001\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\Bluestacks\HD-Agent.exe [978456 2016-08-03] (BlueStack Systems, Inc.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{5862d1dc-55cf-42e0-9ef6-d6774340a819}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{6b06d38b-e49d-45fa-a8ac-c4b96b878e1b}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{6b06d38b-e49d-45fa-a8ac-c4b96b878e1b}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-3631965048-2141472774-541280469-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKU\S-1-5-21-3631965048-2141472774-541280469-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-07-08] (Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Programy\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-07-08] (Oracle Corporation) Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-07-29] (McAfee, Inc.) Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-07-29] (McAfee, Inc.) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-07-29] (McAfee, Inc.) Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-07-29] (McAfee, Inc.) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2016-07-07] (McAfee, Inc.) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2016-07-07] (McAfee, Inc.) FireFox: ======== FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-07-07] () FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-07-08] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-07-08] (Oracle Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-07-07] () FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:\Programy\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:\Programy\Microsoft Office\Office14\NPSPWRAP.DLL [2010-01-10] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-01] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-01] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Brak pliku] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.) FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-08-08] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2016-08-08] [Brak podpisu cyfrowego] Chrome: ======= CHR HomePage: Profile 2 -> hxxp://www.trovi.com/?gd=&ctid=CT3321459&octid=EB_ORIGINAL_CTID&ISID=M912713C6-BD56-4712-A92D-E48D7CEADFAB&SearchSource=55&CUI=&UM=5&UP=SP6F0D90AB-2E0F-4073-8F10-C176A48C1A48&SSPV= CHR StartupUrls: Profile 2 -> "hxxp://www.google.com/","hxxp://www.trotux.com/?z=e752325d7b2f8e4522bdf75g6z7qdb2efw6bemeg5m&from=clc&uid=KINGSTONXSM2280S3120G_50026B725A01A572&type=hp","search.mpc.am" CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2 CHR Extension: (Easy Auto Refresh) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2016-07-13] CHR Extension: (Prezentacje Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-09] CHR Extension: (Dokumenty Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-09] CHR Extension: (Dysk Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-09] CHR Extension: (YouTube) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-09] CHR Extension: (Adblock Plus) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-07-09] CHR Extension: (Arkusze Google) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-09] CHR Extension: (SiteAdvisor) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2016-07-09] CHR Extension: (Facebook™ Chat Privacy) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gfpgaanechfneiboempkfjghninbibjn [2016-07-18] CHR Extension: (Dokumenty Google offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-09] CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2016-08-21] CHR Extension: (Star Wars) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\iiejcahnbfhpmpggfcabmjoifmkileib [2016-07-09] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-09] CHR Extension: (Gmail) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-09] CHR Extension: (Chrome Media Router) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-19] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-07-04] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-07-04] CHR HKLM-x32\...\Chrome\Extension: [oaocmnfllndpbbmjmniielgaanaifehp] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 0066851471460765mcinstcleanup; C:\WINDOWS\TEMP\006685~1.EXE [961888 2016-05-16] (McAfee, Inc.) R2 ApHidMonitorService; C:\Program Files\Apoint2K\HidMonitorSvc.exe [90440 2015-08-30] (Alps Electric Co., Ltd.) R3 BstHdAndroidSvc; C:\Program Files (x86)\Bluestacks\HD-Service.exe [445976 2016-08-03] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe [425496 2016-08-03] (BlueStack Systems, Inc.) S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\Bluestacks\HD-Plus-Service.exe [462360 2016-08-03] (BlueStack Systems, Inc.) S3 cplspcon; C:\Windows\system32\IntelCpHDCPSvc.exe [613352 2016-03-04] (Intel Corporation) R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [163328 2016-01-27] () [Brak podpisu cyfrowego] R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.) R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [365024 2016-03-04] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes) R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [158952 2016-07-29] (McAfee, Inc.) R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [993824 2016-07-07] (McAfee, Inc.) R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1910000 2016-05-31] (McAfee, Inc.) R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.) R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.) R3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [816128 2016-06-21] (McAfee, Inc.) R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.) R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.) R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-04-26] (McAfee, Inc.) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-06-23] (McAfee, Inc.) R3 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc.) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1454216 2016-06-17] (McAfee, Inc.) R3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.) R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1045336 2016-05-25] (Intel Security, Inc.) R2 RealSenseDCM; C:\Program Files (x86)\Common Files\Intel\RSDCM\bin\win32\RealSenseDCM.exe [3663512 2015-10-15] (Intel(R) Corporation) R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2015-10-19] (Popcorn Time) [Brak podpisu cyfrowego] S3 vmicvss; C:\Windows\System32\icsvcext.dll [349696 2016-07-16] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) S3 wisvc; C:\Windows\system32\flightsettings.dll [614912 2016-07-16] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 BstHdDrv; C:\Program Files (x86)\Bluestacks\HD-Hypervisor-amd64.sys [152672 2016-08-03] (BlueStack Systems) S3 BstkDrv; C:\Program Files (x86)\Bluestacks\BstkDrv.sys [307768 2016-07-28] (Bluestack System Inc. ) R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [78632 2016-04-27] (McAfee, Inc.) S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207968 2016-02-24] (McAfee, Inc.) R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [130816 2015-11-24] (Intel Corporation) R3 IntelDFUACPI; C:\Windows\System32\drivers\IntelDFUACPI.sys [37888 2015-12-01] (Intel(R) Corporation) R3 IXCamera; C:\Windows\system32\DRIVERS\RealSenseDCM.sys [72704 2015-10-15] (Intel(R) Corporation) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-08-21] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation) R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [419616 2016-04-27] (McAfee, Inc.) R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [349480 2016-04-27] (McAfee, Inc.) S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [83608 2016-04-27] (McAfee, Inc.) R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [493352 2016-04-27] (McAfee, Inc.) R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [843048 2016-04-27] (McAfee, Inc.) R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [519976 2016-04-27] (McAfee, Inc.) S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [100136 2016-04-27] (McAfee, Inc.) R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.) R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [243488 2016-04-27] (McAfee, Inc.) S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 Netwtw04; C:\Windows\System32\drivers\Netwtw04.sys [7116288 2016-07-16] (Intel Corporation) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek ) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-08-21 14:41 - 2016-08-21 14:41 - 00000000 ____D C:\Users\Lenovo\Desktop\Virus 2016-08-21 14:37 - 2016-08-21 14:40 - 00000000 ____D C:\FRST 2016-08-15 12:26 - 2016-08-02 10:58 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2016-08-15 12:26 - 2016-08-02 10:53 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-08-15 12:26 - 2016-08-02 10:52 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2016-08-15 12:26 - 2016-08-02 10:48 - 22219328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2016-08-15 12:26 - 2016-08-02 10:48 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll 2016-08-15 12:26 - 2016-08-02 10:44 - 00151232 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2016-08-15 12:26 - 2016-08-02 10:44 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2016-08-15 12:26 - 2016-08-02 10:23 - 22572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-08-15 12:26 - 2016-08-02 10:21 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2016-08-15 12:26 - 2016-08-02 10:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2016-08-15 12:26 - 2016-08-02 10:20 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2016-08-15 12:26 - 2016-08-02 10:20 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2016-08-15 12:26 - 2016-08-02 10:15 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll 2016-08-15 12:26 - 2016-08-02 10:15 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll 2016-08-15 12:26 - 2016-08-02 10:14 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll 2016-08-15 12:26 - 2016-08-02 10:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2016-08-15 12:26 - 2016-08-02 10:12 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-08-15 12:26 - 2016-08-02 10:11 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2016-08-15 12:26 - 2016-08-02 10:11 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-08-15 12:26 - 2016-08-02 10:10 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll 2016-08-15 12:26 - 2016-08-02 10:09 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll 2016-08-15 12:26 - 2016-08-02 10:07 - 23682048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-08-15 12:26 - 2016-08-02 10:07 - 09125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-08-15 12:26 - 2016-08-02 10:03 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2016-08-15 12:26 - 2016-08-02 10:00 - 05511168 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll 2016-08-15 12:26 - 2016-08-02 09:59 - 08124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-08-15 12:26 - 2016-08-02 09:58 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2016-08-15 12:26 - 2016-08-02 09:57 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-08-15 12:26 - 2016-08-02 09:56 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe 2016-08-15 12:26 - 2016-08-02 09:56 - 01785856 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-08-15 12:26 - 2016-08-02 09:56 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll 2016-08-15 12:26 - 2016-08-02 09:55 - 03617280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-08-15 12:26 - 2016-08-02 09:55 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-08-15 12:26 - 2016-08-02 09:52 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2016-08-15 12:26 - 2016-08-02 06:56 - 02251440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2016-08-15 12:26 - 2016-08-02 06:51 - 20965240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2016-08-15 12:26 - 2016-08-02 06:47 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2016-08-15 12:26 - 2016-08-02 06:39 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2016-08-15 12:26 - 2016-08-02 06:37 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2016-08-15 12:26 - 2016-08-02 06:37 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2016-08-15 12:26 - 2016-08-02 06:36 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2016-08-15 12:26 - 2016-08-02 06:33 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll 2016-08-15 12:26 - 2016-08-02 06:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2016-08-15 12:26 - 2016-08-02 06:28 - 19423232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-08-15 12:26 - 2016-08-02 06:27 - 07623168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2016-08-15 12:26 - 2016-08-02 06:26 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-08-15 12:26 - 2016-08-02 06:26 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-08-15 12:26 - 2016-08-02 06:25 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll 2016-08-15 12:26 - 2016-08-02 06:25 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2016-08-15 12:26 - 2016-08-02 06:23 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe 2016-08-15 12:26 - 2016-08-02 06:16 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-08-15 12:26 - 2016-08-02 06:13 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-08-15 12:26 - 2016-08-02 06:13 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2016-08-15 12:26 - 2016-08-02 06:12 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2016-08-15 12:26 - 2016-08-02 06:09 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll 2016-08-15 12:23 - 2016-08-15 12:23 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2016-08-15 02:16 - 2016-08-17 18:19 - 00000000 ____D C:\Users\Lenovo\AppData\Local\ConnectedDevicesPlatform 2016-08-15 02:16 - 2016-08-15 02:16 - 00000020 ___SH C:\Users\Lenovo\ntuser.ini 2016-08-15 02:16 - 2016-08-15 02:16 - 00000000 ____D C:\ProgramData\USOShared 2016-08-15 01:56 - 2016-08-21 14:34 - 00004020 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse 2016-08-15 01:56 - 2016-08-21 14:24 - 00004208 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse 2016-08-14 23:38 - 2016-08-14 22:45 - 00000000 ___DC C:\WINDOWS\Panther 2016-08-14 23:36 - 2016-08-14 23:36 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-08-14 23:36 - 2016-08-14 23:36 - 01708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2016-08-14 23:36 - 2016-08-14 23:36 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2016-08-14 23:36 - 2016-08-14 23:36 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2016-08-14 23:36 - 2016-08-14 23:36 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2016-08-14 23:36 - 2016-08-14 23:36 - 01265424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2016-08-14 23:36 - 2016-08-14 23:36 - 01260384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2016-08-14 23:36 - 2016-08-14 23:36 - 00843104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2016-08-14 23:36 - 2016-08-14 23:36 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2016-08-14 23:36 - 2016-08-14 23:36 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2016-08-14 23:36 - 2016-08-14 23:36 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2016-08-14 23:36 - 2016-08-14 23:36 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll 2016-08-14 23:36 - 2016-08-14 23:36 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll 2016-08-14 23:36 - 2016-08-14 23:36 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2016-08-14 23:36 - 2016-08-14 23:36 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys 2016-08-14 23:36 - 2016-08-14 23:36 - 00000000 ____D C:\Windows.old 2016-08-14 23:36 - 2016-07-15 20:29 - 05739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll 2016-08-14 23:36 - 2016-07-15 20:29 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll 2016-08-14 23:36 - 2016-07-15 20:14 - 06354944 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll 2016-08-14 23:36 - 2016-07-15 19:45 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll 2016-08-14 23:36 - 2016-07-15 19:29 - 05489664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll 2016-08-14 23:33 - 2016-08-14 23:33 - 00008192 _____ C:\WINDOWS\system32\config\userdiff 2016-08-14 23:32 - 2016-08-14 23:32 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2016-08-14 23:32 - 2016-08-14 23:32 - 00000000 ____D C:\Program Files\Reference Assemblies 2016-08-14 23:32 - 2016-08-14 23:32 - 00000000 ____D C:\Program Files\MSBuild 2016-08-14 23:32 - 2016-08-14 23:32 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2016-08-14 23:32 - 2016-08-14 23:32 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-08-14 23:32 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2016-08-14 23:32 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2016-08-14 23:32 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2016-08-14 23:32 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2016-08-14 23:32 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2016-08-14 23:32 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default\Ustawienia lokalne 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default\Szablony 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default\Moje dokumenty 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default\Menu Start 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default\Documents\Moje wideo 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default\Documents\Moje obrazy 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default\Documents\Moja muzyka 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default\Dane aplikacji 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historia 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default User\Documents\Moje wideo 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default User\Documents\Moje obrazy 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default User\Documents\Moja muzyka 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historia 2016-08-14 22:45 - 2016-08-14 22:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dane aplikacji 2016-08-14 22:44 - 2016-08-14 22:44 - 00007623 _____ C:\WINDOWS\diagwrn.xml 2016-08-14 22:44 - 2016-08-14 22:44 - 00007623 _____ C:\WINDOWS\diagerr.xml 2016-08-14 22:43 - 2016-08-17 21:06 - 00003126 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon 2016-08-14 22:43 - 2016-08-17 21:06 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee 2016-08-14 22:43 - 2016-08-17 18:18 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-08-14 22:43 - 2016-08-14 22:43 - 00023044 _____ C:\WINDOWS\system32\emptyregdb.dat 2016-08-14 22:43 - 2016-08-14 22:43 - 00003600 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2016-08-14 22:43 - 2016-08-14 22:43 - 00003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2016-08-14 22:43 - 2016-08-14 22:43 - 00003448 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier 2016-08-14 22:43 - 2016-08-14 22:43 - 00003376 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2016-08-14 22:43 - 2016-08-14 22:43 - 00003144 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2016-08-14 22:43 - 2016-08-14 22:43 - 00002716 _____ C:\WINDOWS\System32\Tasks\{984A4AEB-2319-4CD9-B26A-13471F3936BF} 2016-08-14 22:43 - 2016-08-14 22:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform 2016-08-14 22:42 - 2016-08-14 22:42 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2016-08-14 22:41 - 2016-08-14 22:42 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2016-08-14 22:40 - 2016-08-17 18:18 - 00000000 ____D C:\Users\Lenovo 2016-08-14 22:40 - 2016-08-14 22:40 - 00000000 _SHDL C:\Users\Lenovo\Ustawienia lokalne 2016-08-14 22:40 - 2016-08-14 22:40 - 00000000 _SHDL C:\Users\Lenovo\Szablony 2016-08-14 22:40 - 2016-08-14 22:40 - 00000000 _SHDL C:\Users\Lenovo\Moje dokumenty 2016-08-14 22:40 - 2016-08-14 22:40 - 00000000 _SHDL C:\Users\Lenovo\Menu Start 2016-08-14 22:40 - 2016-08-14 22:40 - 00000000 _SHDL C:\Users\Lenovo\Documents\Moje wideo 2016-08-14 22:40 - 2016-08-14 22:40 - 00000000 _SHDL C:\Users\Lenovo\Documents\Moje obrazy 2016-08-14 22:40 - 2016-08-14 22:40 - 00000000 _SHDL C:\Users\Lenovo\Documents\Moja muzyka 2016-08-14 22:40 - 2016-08-14 22:40 - 00000000 _SHDL C:\Users\Lenovo\Dane aplikacji 2016-08-14 22:40 - 2016-08-14 22:40 - 00000000 _SHDL C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2016-08-14 22:40 - 2016-08-14 22:40 - 00000000 _SHDL C:\Users\Lenovo\AppData\Local\Historia 2016-08-14 22:40 - 2016-08-14 22:40 - 00000000 _SHDL C:\Users\Lenovo\AppData\Local\Dane aplikacji 2016-08-14 22:39 - 2016-08-14 22:41 - 00000000 ____D C:\ProgramData\Package Cache 2016-08-14 22:39 - 2016-08-14 22:41 - 00000000 ____D C:\ProgramData\NVIDIA 2016-08-14 22:39 - 2016-08-14 22:41 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-08-14 22:39 - 2016-08-14 22:39 - 00104188 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip 2016-08-14 22:39 - 2016-08-14 22:39 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2016-08-14 22:39 - 2016-08-14 22:39 - 00000102 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01011.Wdf 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____D C:\WINDOWS\system32\DAX2 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____D C:\ProgramData\Intel 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____D C:\ProgramData\Dolby 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____D C:\Program Files\Realtek 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____D C:\Program Files\Intel 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____D C:\Program Files\Dolby 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____D C:\Program Files\Common Files\Intel 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____D C:\Program Files\Apoint2K 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 ____D C:\Program Files (x86)\Realtek 2016-08-14 22:39 - 2016-08-14 22:39 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2016-08-14 22:39 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2016-08-14 22:39 - 2016-03-04 21:52 - 00095224 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL 2016-08-14 22:39 - 2016-03-04 21:52 - 00091128 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2016-08-14 22:39 - 2016-02-08 00:04 - 06884408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2016-08-14 22:39 - 2016-02-08 00:04 - 03505208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2016-08-14 22:39 - 2016-02-08 00:04 - 02558328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2016-08-14 22:39 - 2016-02-08 00:04 - 01255472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe 2016-08-14 22:39 - 2016-02-08 00:04 - 01060216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2016-08-14 22:39 - 2016-02-08 00:04 - 00580144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\oemdspif.dll 2016-08-14 22:39 - 2016-02-08 00:04 - 00384888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2016-08-14 22:39 - 2016-02-08 00:04 - 00074800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2016-08-14 22:39 - 2016-02-08 00:04 - 00062328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2016-08-14 22:39 - 2016-02-06 16:58 - 06154909 _____ C:\WINDOWS\system32\nvcoproc.bin 2016-08-14 22:38 - 2016-08-21 14:18 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2016-08-14 22:38 - 2016-08-17 18:18 - 00216560 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-08-14 22:38 - 2016-08-14 22:38 - 00000000 ____D C:\WINDOWS\ServiceProfiles 2016-08-09 13:17 - 2016-08-09 13:17 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Tencent 2016-08-09 13:17 - 2016-08-09 13:17 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\KingRoot 2016-08-09 13:16 - 2016-08-09 13:16 - 00000000 ____D C:\Users\Lenovo\AppData\Local\Macromedia 2016-08-09 13:10 - 2016-08-21 14:22 - 00000000 ____D C:\ProgramData\BlueStacksSetup 2016-08-09 13:09 - 2016-08-09 13:09 - 00001075 _____ C:\Users\Public\Desktop\BlueStacks.lnk 2016-08-09 13:09 - 2016-08-09 13:09 - 00001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BlueStacks.lnk 2016-08-09 13:09 - 2016-08-09 13:09 - 00000000 ____D C:\Program Files (x86)\Bluestacks 2016-08-09 13:06 - 2016-08-09 13:06 - 00000000 ____D C:\Users\Lenovo\AppData\Local\Bluestacks 2016-08-08 15:57 - 2016-08-21 14:39 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-08-08 15:57 - 2016-08-08 16:21 - 00001131 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-08-08 15:57 - 2016-08-08 15:57 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-08-08 15:57 - 2016-08-08 15:57 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2016-08-08 15:57 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2016-08-08 15:57 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2016-08-08 15:57 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-08-19 16:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-08-19 16:35 - 2016-06-09 15:26 - 00000000 __SHD C:\Users\Lenovo\IntelGraphicsProfiles 2016-08-17 21:07 - 2016-07-16 13:47 - 00000000 ___HD C:\WINDOWS\ELAMBKUP 2016-08-17 21:06 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF 2016-08-17 21:06 - 2016-07-04 17:49 - 00000000 ____D C:\Program Files (x86)\McAfee 2016-08-17 18:27 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps 2016-08-17 18:23 - 2016-07-17 00:05 - 00481672 _____ C:\WINDOWS\system32\perfh015.dat 2016-08-17 18:23 - 2016-07-17 00:05 - 00081624 _____ C:\WINDOWS\system32\perfc015.dat 2016-08-17 18:23 - 2016-06-09 15:06 - 01471540 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-08-17 18:19 - 2016-06-09 15:03 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-08-17 17:46 - 2016-07-16 08:04 - 00262144 _____ C:\WINDOWS\system32\config\BBI 2016-08-17 17:45 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2016-08-17 17:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV 2016-08-17 17:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT 2016-08-17 17:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE 2016-08-17 17:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX 2016-08-17 17:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB 2016-08-17 17:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser 2016-08-17 17:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences 2016-08-15 12:57 - 2016-06-09 15:03 - 00000000 ____D C:\Users\Lenovo\AppData\Local\Packages 2016-08-15 12:26 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-08-15 12:24 - 2016-06-09 15:04 - 00002410 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-08-15 12:24 - 2016-06-09 15:04 - 00000000 ___RD C:\Users\Lenovo\OneDrive 2016-08-15 12:23 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat 2016-08-15 02:16 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate 2016-08-14 23:38 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template 2016-08-14 23:36 - 2016-07-17 00:05 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm 2016-08-14 23:36 - 2016-07-17 00:05 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN 2016-08-14 23:36 - 2016-07-17 00:05 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr 2016-08-14 23:36 - 2016-07-17 00:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2016-08-14 23:36 - 2016-07-17 00:05 - 00000000 ____D C:\WINDOWS\system32\winrm 2016-08-14 23:36 - 2016-07-17 00:05 - 00000000 ____D C:\WINDOWS\system32\WCN 2016-08-14 23:36 - 2016-07-17 00:05 - 00000000 ____D C:\WINDOWS\system32\slmgr 2016-08-14 23:36 - 2016-07-17 00:05 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2016-08-14 23:36 - 2016-07-17 00:05 - 00000000 ____D C:\WINDOWS\OCR 2016-08-14 23:36 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12 2016-08-14 23:36 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2016-08-14 23:36 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12 2016-08-14 23:36 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs 2016-08-14 23:36 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender 2016-08-14 23:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2016-08-14 23:36 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\migwiz 2016-08-14 23:36 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2016-08-14 23:36 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2016-08-14 23:36 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2016-08-14 23:36 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\servicing 2016-08-14 23:32 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2016-08-14 23:32 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI 2016-08-14 22:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration 2016-08-14 22:45 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT 2016-08-14 22:44 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2016-08-14 22:44 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2016-08-14 22:43 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries 2016-08-14 22:42 - 2016-07-16 08:04 - 00008192 _____ C:\WINDOWS\system32\config\ELAM 2016-08-14 22:42 - 2016-07-08 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-08-14 22:42 - 2016-07-01 16:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2016-08-14 22:42 - 2016-07-01 15:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-08-14 22:42 - 2016-07-01 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO 2016-08-14 22:42 - 2016-06-26 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ipla 2016-08-14 22:42 - 2016-06-20 12:54 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi 2016-08-14 22:42 - 2016-06-10 16:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft 2016-08-14 22:42 - 2016-06-10 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2016-08-14 22:42 - 2015-10-30 21:23 - 00000000 ____D C:\WINDOWS\ShellNew 2016-08-14 22:42 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated 2016-08-14 22:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2016-08-14 22:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool 2016-08-14 22:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF 2016-08-14 22:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed 2016-08-14 22:41 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2016-08-14 22:41 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-08-14 22:41 - 2016-07-06 15:29 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe 2016-08-14 22:41 - 2016-07-04 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2016-08-14 22:41 - 2016-06-13 22:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2016-08-14 22:40 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog 2016-08-14 22:40 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView 2016-08-14 22:40 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2016-08-14 22:40 - 2016-06-12 14:06 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2016-08-14 22:40 - 2016-06-09 15:26 - 00000000 ____D C:\Intel 2016-08-14 22:39 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Help 2016-08-14 22:30 - 2016-07-06 15:29 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2016-08-14 22:27 - 2016-07-17 00:43 - 00000000 ___HD C:\$WINDOWS.~BT 2016-08-14 21:40 - 2016-06-10 16:24 - 00001088 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-08-14 20:03 - 2016-07-06 18:18 - 00000000 ____D C:\Users\Lenovo\Documents\Outlook Files 2016-08-14 00:43 - 2016-07-06 15:29 - 00000992 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job 2016-08-13 19:26 - 2016-06-10 16:24 - 00001084 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-08-11 16:23 - 2016-06-09 15:27 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-08-11 16:20 - 2016-06-09 15:27 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-08-11 01:43 - 2016-06-29 17:23 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\MusicBee 2016-08-10 18:44 - 2016-07-09 11:36 - 00000000 ____D C:\Users\Lenovo\AppData\LocalLow\uTorrent 2016-08-10 18:44 - 2016-06-10 16:05 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\uTorrent 2016-08-10 18:31 - 2016-06-13 22:34 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\vlc 2016-08-08 16:21 - 2016-07-19 23:49 - 00001226 _____ C:\Users\Public\Desktop\Popcorn Time.lnk 2016-08-08 16:21 - 2016-07-06 15:27 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-08-08 16:21 - 2016-07-06 15:27 - 00002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2016-08-08 16:21 - 2016-07-04 17:54 - 00002003 _____ C:\Users\Public\Desktop\McAfee Internet Security.lnk 2016-08-08 16:21 - 2016-07-01 16:49 - 00002289 _____ C:\Users\Public\Desktop\HP Deskjet 3540 series.lnk 2016-08-08 16:21 - 2016-07-01 16:49 - 00001236 _____ C:\Users\Public\Desktop\Zakup materiałów eksploatacyjnych - HP Deskjet 3540 series.lnk 2016-08-08 16:21 - 2016-07-01 15:30 - 00000702 _____ C:\Users\Public\Desktop\PowerISO.lnk 2016-08-08 16:21 - 2016-06-29 17:03 - 00000839 _____ C:\Users\Lenovo\Desktop\MusicBee.lnk 2016-08-08 16:21 - 2016-06-12 12:49 - 00001047 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Funkcje opcjonalne.lnk 2016-08-08 16:21 - 2016-06-10 22:29 - 00000872 _____ C:\Users\Lenovo\Desktop\NapiProjekt.lnk 2016-08-08 16:21 - 2016-06-10 16:39 - 00001030 _____ C:\Users\Public\Desktop\Minecraft.lnk 2016-08-08 16:21 - 2016-06-10 16:24 - 00002238 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-08-08 16:18 - 2016-07-13 20:33 - 00000000 ____D C:\Program Files\KhmogejaygcotriUn 2016-08-08 16:18 - 2016-07-13 20:33 - 00000000 ____D C:\Program Files\Khmogejaygcotri 2016-08-01 16:15 - 2016-07-04 17:46 - 00000000 ____D C:\ProgramData\McAfee 2016-08-01 16:15 - 2016-07-04 17:46 - 00000000 ____D C:\Program Files\Common Files\McAfee 2016-08-01 15:56 - 2016-07-13 20:33 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\GeedceCagj ==================== Pliki w katalogu głównym wybranych folderów ======= 2016-07-09 12:05 - 2016-07-09 12:05 - 7101952 _____ () C:\Users\Lenovo\AppData\Roaming\agent.dat 2016-07-09 12:05 - 2016-07-09 12:05 - 0128512 _____ () C:\Users\Lenovo\AppData\Roaming\Installer.dat 2016-07-09 12:05 - 2016-07-09 12:05 - 0018432 _____ () C:\Users\Lenovo\AppData\Roaming\Main.dat 2016-07-09 12:00 - 2016-07-09 01:44 - 0856080 ___SH () C:\Users\Lenovo\AppData\Roaming\PXbbKHHaYOYL 2016-07-09 12:00 - 2016-07-09 01:44 - 0936960 ___SH (AutoIt Team) C:\Users\Lenovo\AppData\Roaming\ZNUEUTQagZdSGAfYeEYJd.exe 2016-07-01 16:48 - 2016-07-01 16:48 - 0000057 _____ () C:\ProgramData\Ament.ini 2016-08-14 22:39 - 2016-08-14 22:39 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2016-08-14 22:39 - 2016-08-14 22:39 - 0000102 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2016-08-14 22:38 ==================== Koniec FRST.txt ============================