FRST.txt

Re: Woodenseal, wirusy - posiadam logi FRST

Zrobilem nowe logi FRST.


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-05-2015
Ran by MS (administrator) on BARTOSZSKOCZEK on 13-05-2015 17:42:08
Running from C:\Users\MS\Desktop
Loaded Profiles: MS (Available profiles: MS)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Polski (Polska)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files\360\Total Security\safemon\QHActiveDefense.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(National Instruments Corporation) C:\Windows\System32\lkads.exe
(Autodesk, Inc.) D:\INVENTOR2014\Inventor 2014\Moldflow\bin\mitsijm.exe
(National Instruments Corporation) C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
() C:\Windows\System32\PnkBstrA.exe
(National Instruments, Inc.) C:\Windows\System32\lkcitdl.exe
(National Instruments Corporation) C:\Windows\System32\lktsrv.exe
(Qihu Software Co. Limited) C:\Program Files\360\Total Security\safemon\QHWatchdog.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files\360\Total Security\safemon\QHSafeTray.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Dropbox, Inc.) C:\Users\MS\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Opera Software) C:\Program Files\Opera\29.0.1795.47_0\opera.exe
() C:\Program Files\Opera\29.0.1795.47_0\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\29.0.1795.47_0\opera.exe
(Opera Software) C:\Program Files\Opera\29.0.1795.47_0\opera.exe
(Opera Software) C:\Program Files\Opera\29.0.1795.47_0\opera.exe
(Opera Software) C:\Program Files\Opera\29.0.1795.47_0\opera.exe
(Opera Software) C:\Program Files\Opera\29.0.1795.47_0\opera.exe
(Opera Software) C:\Program Files\Opera\29.0.1795.47_0\opera.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Qihu 360 Software Co., Ltd.) C:\Program Files\360\Total Security\safemon\chrome\360webshield.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Opera Software) C:\Program Files\Opera\29.0.1795.47_0\opera.exe
(Opera Software) C:\Program Files\Opera\29.0.1795.47_0\opera.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [InstallValidator.exe.FA87EC44_C38F_4148_93A1_FF4A64A2B707] = & gt; C:\Program Files\National Instruments\Shared\NIUninstaller\InstallValidator.exe [263344 2013-05-06] ()
HKLM\...\Run: [StartCCC] = & gt; C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642304 2013-04-30] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [AMD AVT] = & gt; C:\Program Files\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM\...\Run: [QHSafeTray] = & gt; C:\Program Files\360\Total Security\safemon\QHSafeTray.exe [1264248 2015-05-12] (QIHU 360 SOFTWARE CO. LIMITED)
HKU\S-1-5-21-3336590126-2083561906-2081572458-1000\...\Run: [GoogleDriveSync] = & gt; C:\Program Files\Google\Drive\googledrivesync.exe [25700400 2015-04-28] (Google)
HKU\S-1-5-21-3336590126-2083561906-2081572458-1000\...\Run: [Autodesk Sync] = & gt; C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [894344 2013-02-05] (Autodesk, Inc.)
HKU\S-1-5-21-3336590126-2083561906-2081572458-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-3336590126-2083561906-2081572458-1000\...\MountPoints2: {4821a4de-54f6-11e4-b443-0027133da23f} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-18\...\Run: [Autodesk Sync] = & gt; C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [894344 2013-02-05] (Autodesk, Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] = & gt; C:\Windows\System32\SPReview\SPReview.exe [280576 2013-03-21] (Microsoft Corporation)
Startup: C:\Users\MS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-05-12]
ShortcutTarget: Dropbox.lnk - & gt; C:\Users\MS\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] - & gt; {36A21736-36C2-4C11-8ACB-D4136F2B57BD} = & gt; C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] - & gt; {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} = & gt; C:\Users\MS\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] - & gt; {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} = & gt; C:\Users\MS\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] - & gt; {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} = & gt; C:\Users\MS\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] - & gt; {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} = & gt; C:\Program Files\Google\Drive\googledrivesync32.dll [2015-04-28] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] - & gt; {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} = & gt; C:\Program Files\Google\Drive\googledrivesync32.dll [2015-04-28] (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] - & gt; {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} = & gt; C:\Program Files\Google\Drive\googledrivesync32.dll [2015-04-28] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] - & gt; {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} = & gt; C:\Program Files\Google\Drive\googledrivesync32.dll [2015-04-28] (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] - & gt; {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} = & gt; C:\Program Files\Google\Drive\googledrivesync32.dll [2015-04-28] (Google)
ShellIconOverlayIdentifiers: [GGDriveOverlay1] - & gt; {E68D0A50-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay2] - & gt; {E68D0A51-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay3] - & gt; {E68D0A52-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay4] - & gt; {E68D0A53-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.)
ShellIconOverlayIdentifiers: [Uchwyt nakładania ikony podpisu cyfrowego] - & gt; {36A21736-36C2-4C11-8ACB-D4136F2B57BD} = & gt; C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
BHO: HP Print Enhancer - & gt; {0347C33E-8762-4905-BF09-768834316C61} - & gt; C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Co.)
BHO: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files\Java\jre7\bin\ssv.dll [2014-05-07] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-05-07] (Oracle Corporation)
BHO: HP Smart BHO Class - & gt; {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - & gt; C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Co.)
Winsock: Catalog5 06 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 62.179.1.60 62.179.1.61

FireFox:
========
FF ProfilePath: C:\Users\MS\AppData\Roaming\Mozilla\Firefox\Profiles\nwsogp2b.default
FF Homepage: google.pl
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
FF Plugin: @Apple.com/iTunes,version=1.0 - & gt; C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2013-10-01] ()
FF Plugin: @baidu.com/BaidusdDetectNPPlugin - & gt; C:\Program Files\Baidu\BaiduSd\3.0.0.4605\explugin\npBaiduSDDetectPlug.dll No File
FF Plugin: @Google.com/GoogleEarthPlugin - & gt; C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @java.com/DTPlugin,version=10.60.2 - & gt; C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-05-07] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - & gt; C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-05-07] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - & gt; disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - & gt; c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin: Adobe Reader - & gt; C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3336590126-2083561906-2081572458-1000: @Skype Limited.com/Facebook Video Calling Plugin - & gt; C:\Users\MS\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-3336590126-2083561906-2081572458-1000: @unity3d.com/UnityPlayer,version=1.0 - & gt; C:\Users\MS\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-01-08] (Unity Technologies ApS)
FF Extension: LavaFox V2 - C:\Users\MS\AppData\Roaming\Mozilla\Firefox\Profiles\nwsogp2b.default\Extensions\info@djzig.com [2015-05-11]
FF Extension: FT DeepDark - C:\Users\MS\AppData\Roaming\Mozilla\Firefox\Profiles\nwsogp2b.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-04-17]
FF Extension: FoxTrick - C:\Users\MS\AppData\Roaming\Mozilla\Firefox\Profiles\nwsogp2b.default\Extensions\{9d1f059c-cada-4111-9696-41a62d64e3ba} [2015-04-20]
FF Extension: Element Hiding Helper for Adblock Plus - C:\Users\MS\AppData\Roaming\Mozilla\Firefox\Profiles\nwsogp2b.default\Extensions\elemhidehelper@adblockplus.org.xpi [2014-11-20]
FF Extension: High Definition Video - C:\Users\MS\AppData\Roaming\Mozilla\Firefox\Profiles\nwsogp2b.default\Extensions\hdv@vovcacik.addons.mozilla.org.xpi [2014-01-08]
FF Extension: Przelewy24 - C:\Users\MS\AppData\Roaming\Mozilla\Firefox\Profiles\nwsogp2b.default\Extensions\jid1-AoXeeOB4j7kFdw@jetpack.xpi [2015-02-25]
FF Extension: Stylish - C:\Users\MS\AppData\Roaming\Mozilla\Firefox\Profiles\nwsogp2b.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2014-01-08]
FF Extension: Adblock Plus - C:\Users\MS\AppData\Roaming\Mozilla\Firefox\Profiles\nwsogp2b.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-07]
FF Extension: Greasemonkey - C:\Users\MS\AppData\Roaming\Mozilla\Firefox\Profiles\nwsogp2b.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2013-02-19]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-12-03]
FF HKLM\...\Firefox\Extensions: [WebProtection@360safe.com] - C:\Program Files\360\Total Security\safemon\webprotection_firefox
FF Extension: 360 Internet Protection - C:\Program Files\360\Total Security\safemon\webprotection_firefox [2015-05-12]
FF HKU\S-1-5-21-3336590126-2083561906-2081572458-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR Profile: C:\Users\MS\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\MS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-29]
CHR Extension: (Google Drive) - C:\Users\MS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-05]
CHR Extension: (YouTube) - C:\Users\MS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-29]
CHR Extension: (Google Search) - C:\Users\MS\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-29]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\MS\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-12-02]
CHR Extension: (Google Wallet) - C:\Users\MS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-02]
CHR Extension: (Gmail) - C:\Users\MS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-29]

Opera:
=======
OPR Extension: (Stylish) - C:\Users\MS\AppData\Roaming\Opera Software\Opera Stable\Extensions\bofnhkejmonldphklejelehlhhoecceg [2014-11-20]
OPR Extension: (360 Internet Protection) - C:\Users\MS\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnpeghmjdfdmneiljeibjnemfdkojdhl [2015-05-13]
OPR Extension: (YouTube Downloader) - C:\Users\MS\AppData\Roaming\Opera Software\Opera Stable\Extensions\kclijeogghhkmenkommbnjobhnndpfba [2015-04-08]
OPR Extension: (Adblock Plus) - C:\Users\MS\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2014-11-20]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [18656 2011-02-02] ()
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 LkCitadelServer; C:\Windows\system32\lkcitdl.exe [695136 2010-10-27] (National Instruments, Inc.)
R2 lkClassAds; C:\Windows\system32\lkads.exe [53544 2013-06-12] (National Instruments Corporation)
R2 lkTimeSync; C:\Windows\system32\lktsrv.exe [63792 2013-06-12] (National Instruments Corporation)
R2 mitsijm2014; D:\INVENTOR2014\Inventor 2014\Moldflow\bin\mitsijm.exe [723744 2013-01-25] (Autodesk, Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44544 2008-12-03] (Hewlett-Packard) [File not signed]
R2 NIDomainService; C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe [380720 2013-06-12] (National Instruments Corporation)
S3 OpcEnum; C:\Windows\system32\Opcenum.exe [172832 2013-05-21] (OPC Foundation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2008-12-03] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-06-03] ()
R2 QHActiveDefense; C:\Program Files\360\Total Security\safemon\QHActiveDefense.exe [839792 2015-05-12] (QIHU 360 SOFTWARE CO. LIMITED)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 BaiduHips; " C:\Program Files\Common Files\Baidu\BaiduHips\1.2.0.751\BaiduHips.exe " [X]
S2 BDKVRTP; " C:\Program Files\Baidu\BaiduSd\3.0.0.4605\BaiduSdSvc.exe " -r [X]
S2 BDMRTP; " C:\Program Files\Baidu\BaiduAn\4.0.0.5166\BaiduAnSvc.exe " -r [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker.sys [88136 2015-05-12] (360.cn)
R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [65608 2015-05-12] (360.cn)
R1 360Box; C:\Windows\System32\DRIVERS\360Box.sys [202312 2015-05-12] (360.cn)
R1 360Camera; C:\Windows\System32\Drivers\360Camera.sys [34888 2015-05-12] (360.cn)
R1 360SelfProtection; C:\Windows\System32\drivers\360SelfProtection.sys [174536 2015-05-12] (360????)
R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV.sys [169040 2015-05-12] (Qihu 360 Software Co., Ltd.)
R1 EfiMon; C:\Windows\System32\Drivers\Efimon.sys [23752 2015-05-12] (360????)
R0 HookPort; C:\Windows\System32\Drivers\Hookport.sys [58440 2015-05-12] (360????)
R1 qutmdserv; C:\Windows\System32\DRIVERS\qutmdrv.sys [257352 2015-05-12] (360.cn)
R1 qutmipc; C:\Windows\system32\drivers\qutmipc.sys [45896 2015-05-12] (360.cn)
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [113904 2014-10-08] (Power Software Ltd)
S3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [18944 2013-04-24] (Windows (R) Win 7 DDK provider)
S3 splitcam_hd_driver; C:\Windows\System32\DRIVERS\splitcam_hd_driver.sys [36984 2013-07-12] (Windows (R) Win 7 DDK provider)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-11-16] (Duplex Secure Ltd.)
R1 bd0001; system32\DRIVERS\bd0001.sys [X]
R1 bd0002; system32\DRIVERS\bd0002.sys [X]
R1 bd0003; system32\DRIVERS\bd0003.sys [X]
R2 BDArKit; system32\DRIVERS\BDArKit.sys [X]
R1 BDDefense; system32\drivers\BDDefense.sys [X]
R1 BDEnhanceBoost; system32\DRIVERS\BDEnhanceBoost.sys [X]
R2 BDMNetMon; system32\DRIVERS\BDMNetMon.sys [X]
R1 BDMWrench; system32\DRIVERS\BDMWrench.sys [X]
R1 BdSandBox; system32\DRIVERS\BdSandBox.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-13 16:37 - 2015-05-13 17:43 - 00018578 _____ () C:\Users\MS\Desktop\FRST.txt
2015-05-13 10:54 - 2015-05-13 10:54 - 01141248 _____ (Farbar) C:\Users\MS\Desktop\FRST.exe
2015-05-13 10:03 - 2014-05-04 17:14 - 90547776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-13 10:01 - 2015-05-13 10:01 - 00263554 _____ () C:\Windows\msxml4-KB2758694-chs.LOG
2015-05-13 09:54 - 2015-05-13 09:54 - 00162712 _____ () C:\Users\MS\AppData\Local\GDIPFONTCACHEV1.DAT
2015-05-13 09:51 - 2015-05-13 09:51 - 00537408 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-13 09:51 - 2015-05-13 09:51 - 00000000 _____ () C:\Windows\setuperr.log
2015-05-13 00:18 - 2015-05-13 00:18 - 00000000 ____D () C:\Windows\Tasks\360Disabled
2015-05-12 18:15 - 2015-05-12 18:18 - 00000000 ____D () C:\Users\MS\Desktop\elektra,warun
2015-05-12 18:14 - 2015-05-12 18:18 - 00000000 ____D () C:\Users\MS\Desktop\Semestr 6
2015-05-12 17:45 - 2015-05-12 17:45 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-BARTOSZSKOCZEK-Windows-7-Professional-(32-bit).dat
2015-05-12 17:45 - 2015-05-12 17:45 - 00000000 ____D () C:\RegBackup
2015-05-12 17:25 - 2015-05-13 10:54 - 00000000 __SHD () C:\ProgramData\360Quarant
2015-05-12 17:25 - 2015-05-13 10:53 - 00000000 __SHD () C:\$360Section
2015-05-12 17:24 - 2015-05-13 10:01 - 00000000 ____D () C:\Users\MS\AppData\Roaming\360safe
2015-05-12 17:17 - 2015-05-13 00:18 - 00000000 ____D () C:\ProgramData\360safe
2015-05-12 17:17 - 2015-05-12 17:17 - 00001111 _____ () C:\Users\Public\Desktop\360 Total Security.lnk
2015-05-12 17:17 - 2015-05-12 17:17 - 00000000 _RSHD () C:\360SANDBOX
2015-05-12 17:17 - 2015-05-12 17:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
2015-05-12 17:17 - 2015-05-12 17:17 - 00000000 ____D () C:\ProgramData\360TotalSecurity
2015-05-12 17:17 - 2015-05-12 17:17 - 00000000 ____D () C:\Program Files\Common Files\AV
2015-05-12 17:17 - 2015-05-12 07:51 - 00257352 _____ (360.cn) C:\Windows\system32\Drivers\qutmdrv.sys
2015-05-12 17:17 - 2015-05-12 07:51 - 00202312 _____ (360.cn) C:\Windows\system32\Drivers\360Box.sys
2015-05-12 17:17 - 2015-05-12 07:51 - 00174536 _____ (360????) C:\Windows\system32\Drivers\360SelfProtection.sys
2015-05-12 17:17 - 2015-05-12 07:51 - 00169040 _____ (Qihu 360 Software Co., Ltd.) C:\Windows\system32\Drivers\BAPIDRV.SYS
2015-05-12 17:17 - 2015-05-12 07:51 - 00088136 _____ (360.cn) C:\Windows\system32\Drivers\360AntiHacker.sys
2015-05-12 17:17 - 2015-05-12 07:51 - 00065608 _____ (360.cn) C:\Windows\system32\Drivers\360AvFlt.sys
2015-05-12 17:17 - 2015-05-12 07:51 - 00058440 _____ (360????) C:\Windows\system32\Drivers\hookport.sys
2015-05-12 17:17 - 2015-05-12 07:51 - 00045896 _____ (360.cn) C:\Windows\system32\Drivers\qutmipc.sys
2015-05-12 17:17 - 2015-05-12 07:51 - 00034888 _____ (360.cn) C:\Windows\system32\Drivers\360Camera.sys
2015-05-12 17:17 - 2015-05-12 07:51 - 00023752 _____ (360????) C:\Windows\system32\Drivers\efimon.sys
2015-05-12 17:16 - 2015-05-12 17:16 - 00000000 ____D () C:\Program Files\360
2015-05-11 22:07 - 2015-05-13 10:53 - 00000000 ____D () C:\Users\MS\Desktop\logi
2015-05-11 21:55 - 2015-05-13 17:42 - 00000000 ____D () C:\FRST
2015-05-07 16:53 - 2015-05-07 16:53 - 00000000 ____D () C:\Program Files\Edu App
2015-04-30 16:18 - 2015-04-30 16:18 - 00000000 ____D () C:\Windows\pss
2015-04-29 21:41 - 2015-04-29 21:41 - 00000000 ____D () C:\ProgramData\Kaspersky SDK
2015-04-29 20:39 - 2015-04-29 20:39 - 00000000 ____D () C:\Program Files\PC Tools
2015-04-29 20:36 - 2015-05-12 17:38 - 00000000 ____D () C:\Program Files\Common Files\PC Tools
2015-04-29 20:36 - 2015-04-29 20:38 - 02249851 _____ () C:\Windows\system32\Drivers\Cat.DB
2015-04-29 20:36 - 2012-11-01 15:35 - 00202280 _____ (PC Tools) C:\Windows\system32\Drivers\PCTSD.sys
2015-04-29 20:35 - 2015-05-12 17:14 - 00000000 ____D () C:\ProgramData\TEMP
2015-04-29 20:35 - 2015-05-12 17:14 - 00000000 ____D () C:\ProgramData\PC Tools
2015-04-29 20:35 - 2015-04-29 20:35 - 04130384 _____ (PC Tools) C:\Users\MS\Downloads\sdsetup.exe
2015-04-29 20:35 - 2015-04-29 20:35 - 00000000 ____D () C:\Users\MS\AppData\Roaming\TestApp
2015-04-29 11:04 - 2015-04-29 11:05 - 00001121 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-04-29 11:04 - 2015-04-29 11:04 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-04-29 11:03 - 2015-04-29 11:03 - 00001097 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 29.lnk
2015-04-29 10:43 - 2015-04-29 10:43 - 04610053 _____ (FranmoSoftware ) C:\Users\MS\Downloads\odk13.5.0.1911setup.exe
2015-04-29 10:43 - 2015-04-29 10:43 - 00000000 ____D () C:\Program Files\Common Files\HP
2015-04-29 10:32 - 2015-04-29 10:32 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2015-04-29 08:57 - 2015-04-29 08:57 - 00000004 _____ () C:\Windows\system32\029B560A371F4E00AB32838EBC01B9E7
2015-04-28 16:32 - 2015-04-28 16:32 - 00000000 ____D () C:\Windows\system32\Flash
2015-04-28 16:29 - 2015-04-28 16:29 - 00613255 _____ (CMI Limited) C:\Users\MS\AppData\Local\nseE776.tmp
2015-04-28 16:24 - 2015-04-28 16:24 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webTinstMKTN84_01009.Wdf
2015-04-28 16:23 - 2015-05-12 17:25 - 00000000 ____D () C:\Program Files\CinemaPlus-3.2cV28.04
2015-04-28 16:16 - 2015-04-28 16:16 - 00000000 ____D () C:\Users\MS\AppData\Roaming\6E2933F3-1430230566-11DE-9877-44E92F030082
2015-04-28 16:07 - 2015-05-13 00:21 - 00000000 ____D () C:\Users\MS\AppData\Roaming\6E2933F3-1430230068-11DE-9877-44E92F030082
2015-04-23 16:48 - 2015-05-03 19:15 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-04-15 21:15 - 2015-04-15 21:15 - 00000165 ____H () C:\Users\MS\Desktop\~$diagnostyka,lav, opny,obręcze.xlsx
2015-04-14 20:33 - 2015-03-23 05:06 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-14 20:33 - 2015-03-23 05:06 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-14 20:33 - 2015-03-23 05:06 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-14 20:33 - 2015-03-23 05:06 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-14 20:33 - 2015-03-23 05:06 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-14 20:33 - 2015-03-23 05:06 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-14 20:33 - 2015-03-23 05:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-14 20:33 - 2015-03-23 04:59 - 00896000 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-14 20:33 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-14 20:33 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-14 20:32 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-14 20:32 - 2015-03-25 05:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-14 20:32 - 2015-03-25 05:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-14 20:32 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-14 20:32 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-14 20:32 - 2015-03-25 05:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-14 20:32 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-14 20:32 - 2015-03-25 05:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-14 20:32 - 2015-03-25 05:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-14 20:32 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-14 20:32 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-14 20:32 - 2015-03-25 05:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-14 20:32 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-04-14 20:32 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-14 20:32 - 2015-03-17 07:01 - 00137656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-14 20:32 - 2015-03-17 07:01 - 00067512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-14 20:32 - 2015-03-17 06:59 - 01306112 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-14 20:32 - 2015-03-17 06:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-14 20:32 - 2015-03-17 06:56 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-14 20:32 - 2015-03-17 06:56 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-14 20:32 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-14 20:32 - 2015-03-17 06:56 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-14 20:32 - 2015-03-17 06:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-14 20:32 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-14 20:32 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-14 20:32 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-14 20:32 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-14 20:32 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-14 20:32 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-14 20:32 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-14 20:32 - 2015-03-13 05:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-04-14 20:32 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-14 20:32 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-14 20:32 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-14 20:32 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-04-14 20:32 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-04-14 20:32 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-14 20:32 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-14 20:32 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-14 20:32 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-14 20:32 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-14 20:32 - 2015-03-13 05:16 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-04-14 20:32 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-04-14 20:32 - 2015-03-13 05:09 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-04-14 20:32 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-14 20:32 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-04-14 20:32 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-14 20:32 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-14 20:32 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-14 20:32 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-14 20:32 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-14 20:32 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-14 20:32 - 2015-03-13 04:43 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-14 20:32 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-04-14 20:32 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-14 20:32 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-14 20:32 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-14 20:32 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-04-14 20:32 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-14 20:32 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-14 20:32 - 2015-03-05 06:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-14 20:32 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-14 20:02 - 2015-04-14 20:04 - 00000083 _____ () C:\Users\MS\Desktop\nuertel, faurecia.txt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-13 17:42 - 2012-11-11 16:03 - 01911750 _____ () C:\Windows\WindowsUpdate.log
2015-05-13 17:40 - 2014-05-11 18:29 - 00000000 ___RD () C:\Users\MS\Desktop\Dropbox
2015-05-13 17:40 - 2014-05-11 18:26 - 00000000 ____D () C:\Users\MS\AppData\Roaming\Dropbox
2015-05-13 17:39 - 2014-04-04 18:05 - 00000000 ___RD () C:\Users\MS\Dysk Google
2015-05-13 17:38 - 2013-03-19 15:01 - 00001032 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-13 17:38 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-13 17:38 - 2009-07-14 06:39 - 00069943 _____ () C:\Windows\setupact.log
2015-05-13 17:37 - 2012-11-15 20:52 - 00254396 _____ () C:\Windows\PFRO.log
2015-05-13 17:31 - 2012-11-18 11:57 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-13 17:14 - 2013-03-19 15:01 - 00001036 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-13 11:10 - 2009-07-14 06:34 - 00026208 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-13 11:10 - 2009-07-14 06:34 - 00026208 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-13 11:01 - 2014-11-17 21:14 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-05-13 10:55 - 2009-07-14 04:37 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-05-13 10:01 - 2012-11-18 23:02 - 00000000 ____D () C:\Program Files\MSXML 4.0
2015-05-13 00:22 - 2014-12-04 00:52 - 00000000 ____D () C:\Users\MS\AppData\Roaming\uTorrent
2015-05-13 00:22 - 2013-01-17 02:22 - 00000000 ____D () C:\Users\MS\AppData\Roaming\Skype
2015-05-13 00:22 - 2012-11-11 15:59 - 00000000 ____D () C:\Windows\Panther
2015-05-13 00:21 - 2014-01-22 16:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java(TM) ME Platform SDK 3.4
2015-05-12 18:19 - 2014-01-29 12:58 - 00000000 ____D () C:\Users\MS\Desktop\mat
2015-05-12 18:18 - 2013-01-17 19:17 - 00000000 ____D () C:\Users\MS\Desktop\smieci
2015-05-12 18:18 - 2012-11-19 20:23 - 00000000 ___RD () C:\Users\MS\Desktop\STUDIA
2015-05-12 18:17 - 2014-10-08 20:56 - 00000000 ____D () C:\Users\MS\Desktop\Semestr 5
2015-05-12 18:17 - 2013-02-03 21:03 - 00000000 ___RD () C:\Users\MS\Desktop\zdjęcia
2015-05-12 18:16 - 2014-03-05 21:20 - 00000000 ____D () C:\Users\MS\Desktop\PULPIT
2015-05-12 17:13 - 2014-05-11 18:29 - 00001014 _____ () C:\Users\MS\Desktop\Dropbox.lnk
2015-05-12 17:13 - 2014-05-11 18:27 - 00000000 ____D () C:\Users\MS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-05-12 16:55 - 2013-02-03 19:19 - 00000000 ____D () C:\Program Files\Opera
2015-05-11 10:54 - 2009-07-14 04:04 - 00000782 _____ () C:\Windows\win.ini
2015-05-11 10:43 - 2012-11-11 17:58 - 00000000 ____D () C:\Users\MS
2015-05-11 09:53 - 2014-04-04 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-05-07 17:03 - 2012-11-11 18:01 - 01670518 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-07 17:03 - 2009-07-14 10:07 - 00740672 _____ () C:\Windows\system32\perfh015.dat
2015-05-07 17:03 - 2009-07-14 10:07 - 00156214 _____ () C:\Windows\system32\perfc015.dat
2015-05-07 07:27 - 2012-11-18 11:57 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-05-07 07:27 - 2012-11-18 11:57 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-04-30 16:13 - 2014-11-16 19:51 - 00000000 ____D () C:\ProgramData\e25f457c-9287-4f2d-b5a8-8cd714c55009
2015-04-29 22:09 - 2014-05-12 11:28 - 00000000 ____D () C:\Users\MS\AppData\Local\Akamai
2015-04-29 20:39 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-29 10:51 - 2012-11-19 20:23 - 00000000 ____D () C:\Program Files\WinRAR
2015-04-29 10:49 - 2013-10-27 19:35 - 00000000 ____D () C:\Windows\Minidump
2015-04-29 10:32 - 2012-11-15 20:06 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-04-29 10:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-29 09:25 - 2013-02-03 19:19 - 00001791 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-04-29 09:25 - 2012-11-11 18:00 - 00001425 _____ () C:\Users\MS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-04-29 09:14 - 2012-11-15 20:30 - 00000000 ____D () C:\Program Files\Common Files\Nero
2015-04-29 09:13 - 2013-03-10 21:16 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2015-04-29 09:13 - 2012-11-18 22:12 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-04-29 09:13 - 2012-11-15 20:02 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-04-29 08:56 - 2009-07-14 06:53 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-04-22 08:22 - 2015-04-07 18:36 - 00000000 ____D () C:\Users\MS\AppData\Roaming\HpUpdate
2015-04-19 18:54 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat
2015-04-15 22:10 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2015-04-15 21:31 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-04-15 21:11 - 2014-12-14 19:55 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-15 21:11 - 2014-05-07 08:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-15 21:11 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2015-04-15 16:37 - 2013-03-10 19:36 - 00000000 ____D () C:\Users\MS\AppData\Roaming\Autodesk
2015-04-15 16:37 - 2013-03-10 19:36 - 00000000 ____D () C:\ProgramData\Autodesk

==================== Files in the root of some directories =======

2013-06-03 23:11 - 2013-06-03 23:11 - 0138904 _____ () C:\Users\MS\AppData\Roaming\PnkBstrK.sys
2015-04-08 13:21 - 2015-04-08 13:21 - 0003584 _____ () C:\Users\MS\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-04-28 16:29 - 2015-04-28 16:29 - 0613255 _____ (CMI Limited) C:\Users\MS\AppData\Local\nseE776.tmp
2013-12-03 01:19 - 2013-12-03 01:32 - 0001221 _____ () C:\ProgramData\hpzinstall.log
2013-03-10 21:19 - 2013-03-10 21:19 - 0000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some content of TEMP:
====================
C:\Users\MS\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpee5alr.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe = & gt; File is digitally signed
C:\Windows\system32\winlogon.exe = & gt; File is digitally signed
C:\Windows\system32\wininit.exe = & gt; File is digitally signed
C:\Windows\system32\svchost.exe = & gt; File is digitally signed
C:\Windows\system32\services.exe = & gt; File is digitally signed
C:\Windows\system32\User32.dll = & gt; File is digitally signed
C:\Windows\system32\userinit.exe = & gt; File is digitally signed
C:\Windows\system32\rpcss.dll = & gt; File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys = & gt; File is digitally signed


LastRegBack: 2015-05-12 22:36

==================== End Of Log ============================


Download file - link to post
 Search on offer
Close 
Search 200 000 TME products