Witam. Od kilku dni mam problemy z laptopem, ponieważ wyskakują mi reklamy we wszystkich przeglądarkach. Podczas grania występują liczne zacięcia, które pojawiły się kilka dni temu. Pod spodem wstawiam logi z frst i adwcleaner. Liczę na jakąkolwiek pomoc. Dziękuje i Pozdrawiam.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-05-2015 ([color=red]ATTENTION: ==== & gt; FRST version is 83 days old and could be outdated[/color])
Ran by Żołnierz (administrator) on BARTEK on 24-07-2015 14:52:07
Running from C:\Users\Żołnierz\Downloads
Loaded Profiles: Żołnierz (Available profiles: Żołnierz)
Platform: Windows 8.1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
() C:\ProgramData\f43a0a22-b5b9-43e4-9c6f-705bf4e40c7b\plugincontainer.exe
() C:\Program Files (x86)\Common Files\f43a0a22-b5b9-43e4-9c6f-705bf4e40c7b\updater.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamresearch.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Desktop.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
() C:\ProgramData\Avira\Launcher\Temp\avira_antivirus_en-us.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Windows\Temp\RarSFX0\presetup.exe
(Avira Operations GmbH & Co. KG) C:\Windows\Temp\RarSFX0\setup.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\update.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17031_none_fa50b3979b1bcb4a\TiWorker.exe
(Farbar) C:\Users\Żołnierz\Downloads\FRST64_02.5.2015.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SimplePass] = & gt; C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3962936 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBroker] = & gt; C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [OPBHOBrokerDesktop] = & gt; C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-03-28] (Hewlett-Packard)
HKLM\...\Run: [SynTPEnh] = & gt; C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2803440 2013-12-13] (Synaptics Incorporated)
HKLM\...\Run: [RTHDVCPL] = & gt; C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8466136 2015-04-30] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM-x32\...\Run: [HPMessageService] = & gt; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-10-08] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Avira Systray] = & gt; C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [134368 2015-07-02] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-96239780-3179284244-3867758875-1001\...\Run: [Skype] = & gt; C:\Program Files (x86)\Skype\Phone\Skype.exe [53753984 2015-07-18] (Skype Technologies S.A.)
HKU\S-1-5-21-96239780-3179284244-3867758875-1001\...\Run: [SlimCleaner Plus] = & gt; " C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe " /minimize /boot
GroupPolicy: Group Policy on Chrome detected & lt; ======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction & lt; ======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
SearchScopes: HKLM - & gt; {4F04CE18-EC6C-46DB-B6D4-16910555B768} URL = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8 & tag=hp-uk3-vsb-21 & link%5Fcode=qs & index=aps & field-keywords={searchTerms}
SearchScopes: HKLM-x32 - & gt; {4F04CE18-EC6C-46DB-B6D4-16910555B768} URL = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8 & tag=hp-uk3-vsb-21 & link%5Fcode=qs & index=aps & field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-96239780-3179284244-3867758875-1001 - & gt; DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-96239780-3179284244-3867758875-1001 - & gt; {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.istartsurf.com/web/?utm_source=b & utm_medium=cor & utm_campaign=install_ie & utm_content=ds & from=cor & uid=TOSHIBAXMQ01ABF050_74D9SL97SXX74D9SL97S & ts=1437651895 & type=default & q={searchTerms}
SearchScopes: HKU\S-1-5-21-96239780-3179284244-3867758875-1001 - & gt; {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = http://www.istartsurf.com/web/?utm_source=b & utm_medium=cor & utm_campaign=install_ie & utm_content=ds & from=cor & uid=TOSHIBAXMQ01ABF050_74D9SL97SXX74D9SL97S & ts=1437651895 & type=default & q={searchTerms}
SearchScopes: HKU\S-1-5-21-96239780-3179284244-3867758875-1001 - & gt; {4F04CE18-EC6C-46DB-B6D4-16910555B768} URL = http://www.istartsurf.com/web/?utm_source=b & utm_medium=cor & utm_campaign=install_ie & utm_content=ds & from=cor & uid=TOSHIBAXMQ01ABF050_74D9SL97SXX74D9SL97S & ts=1437651895 & type=default & q={searchTerms}
SearchScopes: HKU\S-1-5-21-96239780-3179284244-3867758875-1001 - & gt; {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = http://www.istartsurf.com/web/?utm_source=b & utm_medium=cor & utm_campaign=install_ie & utm_content=ds & from=cor & uid=TOSHIBAXMQ01ABF050_74D9SL97SXX74D9SL97S & ts=1437651895 & type=default & q={searchTerms}
BHO: Skype Click to Call for Internet Explorer - & gt; {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - & gt; C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: HP Network Check Helper - & gt; {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - & gt; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Skype Click to Call for Internet Explorer - & gt; {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - & gt; C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: HP Network Check Helper - & gt; {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - & gt; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Żołnierz\AppData\Roaming\Mozilla\Firefox\Profiles\n9aj1o2l.default
FF Plugin-x32: @adobe.com/ShockwavePlayer - & gt; C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - & gt; C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-23] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-23] (Google Inc.)
FF Extension: Sale Clipper - C:\Users\Żołnierz\AppData\Roaming\Mozilla\Firefox\Profiles\n9aj1o2l.default\Extensions\{4f0e5fbd-22db-4514-b224-98fb1a61b808}.xpi [2015-07-23]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-05-01]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
Chrome:
=======
CHR Profile: C:\Users\Żołnierz\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Żołnierz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-23]
CHR Extension: (Google Docs) - C:\Users\Żołnierz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-23]
CHR Extension: (Google Drive) - C:\Users\Żołnierz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-23]
CHR Extension: (YouTube) - C:\Users\Żołnierz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-23]
CHR Extension: (Google Search) - C:\Users\Żołnierz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-23]
CHR Extension: (Google Sheets) - C:\Users\Żołnierz\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-23]
CHR Extension: (Sale Clipper) - C:\Users\Żołnierz\AppData\Local\Google\Chrome\User Data\Default\Extensions\odlhikpaegeblidjhkeefjdjegganhpg [2015-07-23]
CHR Extension: (Gmail) - C:\Users\Żołnierz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-23]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [218816 2015-07-02] (Avira Operations GmbH & Co. KG)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2014-01-13] (Hewlett-Packard Company) [File not signed]
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-10-08] (Hewlett-Packard Development Company, L.P.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R4 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-03-28] (Softex Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [295128 2015-05-04] (Realtek Semiconductor)
R4 Service Mgr SaleClipper; C:\ProgramData\f43a0a22-b5b9-43e4-9c6f-705bf4e40c7b\plugincontainer.exe [1086688 2015-07-24] ()
R4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
R4 Update Mgr SaleClipper; C:\Program Files (x86)\Common Files\f43a0a22-b5b9-43e4-9c6f-705bf4e40c7b\updater.exe [1029344 2015-07-24] ()
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-04-02] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-09-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-09-16] (Microsoft Corporation)
S2 SlimService; " C:\Program Files\SlimService\SlimServiceFactory.exe " [X]
S2 wasvc_1.10.0.20; " C:\Program Files (x86)\WordAnchor_1.10.0.20\Service\wasvc.exe " [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-11] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-07-24] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2014-01-23] (Intel Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [301784 2015-01-22] (Realtek Semiconductor Corp.)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1204424 2013-12-25] (Ralink Technology, Corp.)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [827096 2015-02-06] (Realsil Semiconductor Corporation)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [391896 2015-02-06] (Realsil Semiconductor Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29936 2013-12-13] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2013-12-13] (Synaptics Incorporated)
S3 SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [16056 2015-07-24] (SlimWare Utilities, Inc.)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
R1 wafd_vw_1_10_0_20; C:\Windows\System32\drivers\wafd_vw_1_10_0_20.sys [57728 2015-07-06] (WA)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-09-16] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2013-07-22] (Hewlett-Packard Development Company, L.P.)
U3 McAPExe; No ImagePath
U3 McMPFSvc; No ImagePath
U3 McNaiAnn; No ImagePath
U3 mfecore; No ImagePath
U3 MSK80Service; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-07-24 14:52 - 2015-07-24 14:53 - 00018211 _____ () C:\Users\Żołnierz\Downloads\FRST.txt
2015-07-24 14:52 - 2015-07-24 14:52 - 00602112 _____ (OldTimer Tools) C:\Users\Żołnierz\Downloads\OTL.exe
2015-07-24 14:51 - 2015-07-24 14:52 - 00000000 ____D () C:\FRST
2015-07-24 14:50 - 2015-07-24 14:50 - 02101248 _____ (Farbar) C:\Users\Żołnierz\Downloads\FRST64_02.5.2015.exe
2015-07-24 14:50 - 2015-07-24 14:50 - 02101248 _____ (Farbar) C:\Users\Żołnierz\Downloads\FRST64_02.5.2015 (1).exe
2015-07-24 14:50 - 2015-07-15 08:37 - 00148632 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2015-07-24 14:50 - 2015-07-15 08:37 - 00137288 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-07-24 14:50 - 2015-07-15 08:37 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2015-07-24 14:50 - 2015-07-15 08:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2015-07-24 14:45 - 2015-07-24 14:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-07-24 14:45 - 2015-07-24 14:45 - 00001211 _____ () C:\Users\Public\Desktop\Avira.lnk
2015-07-24 14:44 - 2015-07-24 14:50 - 00000000 ____D () C:\ProgramData\Avira
2015-07-24 14:44 - 2015-07-24 14:50 - 00000000 ____D () C:\Program Files (x86)\Avira
2015-07-24 14:44 - 2015-07-24 14:44 - 04721376 _____ (Avira Operations GmbH & Co. KG) C:\Users\Żołnierz\Downloads\avira_en_av_55b2330f997c9__ws.exe
2015-07-24 14:37 - 2015-07-24 14:37 - 00001062 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-07-24 14:37 - 2015-07-24 14:37 - 00001050 _____ () C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-07-24 14:36 - 2015-07-24 14:37 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2015-07-24 14:35 - 2015-07-24 14:35 - 08053272 _____ (TeamViewer GmbH) C:\Users\Żołnierz\Downloads\TeamViewer_Setup_pl.exe
2015-07-24 13:02 - 2015-07-24 14:17 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-24 13:01 - 2015-07-24 13:57 - 00001121 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-07-24 13:01 - 2015-07-24 13:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-07-24 13:01 - 2015-07-24 13:57 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-07-24 13:01 - 2015-07-24 13:01 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-07-24 13:01 - 2015-06-18 09:48 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-07-24 13:01 - 2015-06-18 09:47 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-07-24 13:01 - 2015-06-18 09:47 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-07-24 13:00 - 2015-07-24 13:00 - 21545336 _____ (Malwarebytes Corporation ) C:\Users\Żołnierz\Downloads\mbam-setup-sem-2.1.6.1022.exe
2015-07-24 11:31 - 2015-07-24 14:44 - 00000000 ____D () C:\ProgramData\Package Cache
2015-07-24 11:25 - 2015-02-06 02:21 - 00391896 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsUer.sys
2015-07-24 11:25 - 2015-02-06 02:05 - 00827096 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsPer.sys
2015-07-24 11:25 - 2015-01-22 00:51 - 00301784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsP2Stor.sys
2015-07-24 11:25 - 2014-11-06 03:57 - 00359128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys
2015-07-24 11:25 - 2014-11-06 03:54 - 00313048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsBaStor.sys
2015-07-24 11:25 - 2014-10-20 04:50 - 00083160 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll
2015-07-24 11:25 - 2014-01-27 00:39 - 09890008 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2015-07-24 11:23 - 2015-07-24 11:56 - 00000000 ____D () C:\Windows\LastGood.Tmp
2015-07-24 11:22 - 2015-05-05 19:24 - 04467928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-07-24 11:22 - 2015-05-05 18:11 - 02014958 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-07-24 11:22 - 2015-05-05 18:02 - 01739992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-07-24 11:22 - 2015-04-30 16:39 - 01316056 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-07-24 11:22 - 2015-04-15 18:43 - 02846424 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-07-24 11:22 - 2015-04-13 19:14 - 00168816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-07-24 11:22 - 2015-04-09 15:23 - 01559744 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2015-07-24 11:22 - 2015-03-19 13:20 - 02907864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-07-24 11:22 - 2015-03-10 18:04 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-07-24 11:22 - 2015-02-04 00:38 - 01413776 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2015-07-24 11:22 - 2015-02-04 00:38 - 00454288 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2015-07-24 11:22 - 2015-02-04 00:38 - 00369296 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2015-07-24 11:22 - 2015-02-04 00:38 - 00329360 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2015-07-24 11:22 - 2015-01-19 18:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-07-24 11:22 - 2014-12-11 08:10 - 01104040 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2015-07-24 11:22 - 2014-12-11 08:10 - 00943784 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2015-07-24 11:22 - 2014-12-11 08:10 - 00734376 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2015-07-24 11:22 - 2014-12-11 08:10 - 00250536 _____ (TODO: & lt; Company name & gt; ) C:\Windows\system32\slprp64.dll
2015-07-24 11:22 - 2014-12-02 18:42 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-07-24 11:22 - 2014-11-11 13:44 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-07-24 11:22 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-07-24 11:17 - 2015-07-24 11:17 - 00000000 ____D () C:\Program Files (x86)\Sale Clipper
2015-07-24 11:15 - 2015-07-24 13:35 - 00016056 _____ (SlimWare Utilities, Inc.) C:\Windows\system32\Drivers\SWDUMon.sys
2015-07-24 11:15 - 2015-07-24 11:15 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\SlimWare Utilities Inc
2015-07-24 11:14 - 2015-07-24 11:14 - 00524488 _____ () C:\Windows\Minidump\072415-22359-01.dmp
2015-07-24 11:06 - 2015-07-24 11:08 - 00000000 ____D () C:\AdwCleaner
2015-07-24 11:06 - 2015-07-24 11:06 - 02248704 _____ () C:\Users\Żołnierz\Downloads\AdwCleaner.exe
2015-07-24 00:48 - 2015-07-24 11:14 - 00000372 _____ () C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - Żołnierz).job
2015-07-24 00:48 - 2015-07-24 00:48 - 00003020 _____ () C:\Windows\System32\Tasks\SlimCleaner Plus (Scheduled Scan - Żołnierz)
2015-07-24 00:47 - 2015-07-24 11:14 - 423853918 _____ () C:\Windows\MEMORY.DMP
2015-07-24 00:47 - 2015-07-24 11:14 - 00000000 ____D () C:\Windows\Minidump
2015-07-24 00:47 - 2015-07-24 00:47 - 00499424 _____ () C:\Windows\Minidump\072415-24359-01.dmp
2015-07-24 00:00 - 2015-07-24 00:00 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\InstallShield
2015-07-23 23:10 - 2015-07-23 23:10 - 00000000 ____D () C:\ProgramData\SlimWare Utilities, Inc
2015-07-23 23:04 - 2015-07-23 23:04 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\Downloaded Installers
2015-07-23 23:03 - 2015-07-24 13:35 - 00000430 _____ () C:\Windows\Tasks\SlimDrivers Startup.job
2015-07-23 23:03 - 2015-07-23 23:03 - 00981728 _____ (SlimWare Utilities, Inc.) C:\Users\Żołnierz\Downloads\SlimDrivers-setup.exe
2015-07-23 23:03 - 2015-07-23 23:03 - 00002842 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup
2015-07-23 23:03 - 2015-07-23 23:03 - 00002483 _____ () C:\Users\Public\Desktop\SlimDrivers.lnk
2015-07-23 23:03 - 2015-07-23 23:03 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2015-07-23 22:41 - 2015-07-23 22:41 - 00000000 _____ () C:\Recovery.txt
2015-07-23 21:56 - 2015-07-23 21:56 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-07-23 16:05 - 2015-07-23 16:05 - 00000266 __RSH () C:\ProgramData\ntuser.pol
2015-07-23 16:00 - 2015-07-23 16:00 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\LolClient
2015-07-23 14:17 - 2015-07-23 14:17 - 00002288 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-23 14:17 - 2015-07-23 14:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-23 14:13 - 2015-07-24 14:48 - 00001084 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-23 14:13 - 2015-07-23 14:43 - 00004060 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-23 14:13 - 2015-07-23 14:43 - 00003824 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-23 14:13 - 2015-07-23 14:43 - 00001088 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-23 14:13 - 2015-07-23 14:17 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\Google
2015-07-23 14:13 - 2015-07-23 14:15 - 00000000 ____D () C:\Program Files (x86)\Google
2015-07-23 14:11 - 2015-07-23 14:12 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\Deployment
2015-07-23 14:11 - 2015-07-23 14:11 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\Apps\2.0
2015-07-23 13:44 - 2015-07-24 13:34 - 00000000 ____D () C:\ProgramData\gWinManProg
2015-07-23 13:43 - 2015-07-24 11:21 - 00000000 ____D () C:\ProgramData\f43a0a22-b5b9-43e4-9c6f-705bf4e40c7b
2015-07-23 13:29 - 2015-07-23 13:29 - 00000000 ____D () C:\Program Files\Common Files\AV
2015-07-23 13:27 - 2015-07-23 13:27 - 00000000 ____D () C:\Users\Żołnierz\Tracing
2015-07-23 13:26 - 2015-07-24 14:51 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\Skype
2015-07-23 13:26 - 2015-07-23 13:26 - 00002715 _____ () C:\Users\Public\Desktop\Skype.lnk
2015-07-23 13:26 - 2015-07-23 13:26 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-07-23 13:26 - 2015-07-23 13:26 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\Skype
2015-07-23 13:26 - 2015-07-23 13:26 - 00000000 ____D () C:\ProgramData\Skype
2015-07-23 13:26 - 2015-07-23 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-07-23 13:25 - 2015-07-23 13:31 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\Opera Software
2015-07-23 13:25 - 2015-07-23 13:31 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\Opera Software
2015-07-23 13:25 - 2015-07-23 13:25 - 00003256 _____ () C:\Windows\System32\Tasks\Opera N Sunday
2015-07-23 13:25 - 2015-07-23 13:25 - 00003256 _____ () C:\Windows\System32\Tasks\Opera N Saturday
2015-07-23 13:25 - 2015-07-23 13:25 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\Shortcut
2015-07-23 13:23 - 2015-07-23 13:31 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-07-23 13:19 - 2015-07-23 13:19 - 00004026 _____ () C:\Windows\System32\Tasks\HPGenoobeReminder
2015-07-23 13:07 - 2015-07-23 13:07 - 00000000 ____D () C:\ProgramData\Riot Games
2015-07-23 13:04 - 2015-07-23 13:04 - 00001625 _____ () C:\Users\Public\Desktop\League of Legends.lnk
2015-07-23 13:04 - 2015-07-23 13:04 - 00000000 ____D () C:\Riot Games
2015-07-23 13:04 - 2015-07-23 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2015-07-23 13:04 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-07-23 13:04 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-07-23 13:04 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-07-23 13:04 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-07-23 13:04 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-07-23 13:03 - 2015-07-23 13:04 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\Riot Games
2015-07-23 13:00 - 2015-07-23 14:07 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-07-23 13:00 - 2015-07-23 13:06 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\Mozilla
2015-07-23 13:00 - 2015-07-23 13:00 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\Mozilla
2015-07-23 13:00 - 2015-07-23 13:00 - 00000000 ____D () C:\ProgramData\Mozilla
2015-07-23 12:58 - 2015-07-24 14:43 - 00003988 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{41754364-69AA-41B8-8CEB-7795107E9B32}
2015-07-23 12:58 - 2015-07-23 12:58 - 00000000 __SHD () C:\Users\Żołnierz\AppData\Local\EmieUserList
2015-07-23 12:58 - 2015-07-23 12:58 - 00000000 __SHD () C:\Users\Żołnierz\AppData\Local\EmieSiteList
2015-07-23 12:58 - 2015-07-23 12:58 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\Macromedia
2015-07-23 12:56 - 2015-07-24 14:03 - 00003594 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-96239780-3179284244-3867758875-1001
2015-07-23 12:55 - 2015-07-23 12:55 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\hpqlog
2015-07-23 12:55 - 2015-07-23 12:55 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\Hewlett-Packard
2015-07-23 12:54 - 2015-07-23 13:19 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\Hewlett-Packard
2015-07-23 12:53 - 2015-07-24 13:37 - 00000000 ____D () C:\Users\Żołnierz\Documents\Youcam
2015-07-23 12:53 - 2015-07-23 12:53 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\CyberLink
2015-07-23 12:52 - 2015-07-23 12:52 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\Synaptics
2015-07-23 12:52 - 2015-07-23 12:52 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\Power2Go8
2015-07-23 12:52 - 2015-07-23 12:52 - 00000000 ____D () C:\ProgramData\Synaptics
2015-07-23 12:51 - 2015-07-23 12:51 - 00001457 _____ () C:\Users\Żołnierz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-07-23 12:51 - 2015-07-23 12:51 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\Adobe
2015-07-23 12:51 - 2015-07-23 12:51 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\VirtualStore
2015-07-23 12:50 - 2015-07-24 14:45 - 00794733 _____ () C:\Windows\WindowsUpdate.log
2015-07-23 12:50 - 2015-07-24 11:58 - 00000000 ____D () C:\Users\Żołnierz
2015-07-23 12:50 - 2015-07-23 16:06 - 00000000 ____D () C:\Users\Żołnierz\AppData\Local\Packages
2015-07-23 12:50 - 2015-07-23 12:50 - 00000020 ___SH () C:\Users\Żołnierz\ntuser.ini
2015-07-23 12:50 - 2015-07-23 12:50 - 00000000 _SHDL () C:\Users\Żołnierz\Ustawienia lokalne
2015-07-23 12:50 - 2015-07-23 12:50 - 00000000 _SHDL () C:\Users\Żołnierz\Szablony
2015-07-23 12:50 - 2015-07-23 12:50 - 00000000 _SHDL () C:\Users\Żołnierz\Moje dokumenty
2015-07-23 12:50 - 2015-07-23 12:50 - 00000000 _SHDL () C:\Users\Żołnierz\Menu Start
2015-07-23 12:50 - 2015-07-23 12:50 - 00000000 _SHDL () C:\Users\Żołnierz\Documents\Moje wideo
2015-07-23 12:50 - 2015-07-23 12:50 - 00000000 _SHDL () C:\Users\Żołnierz\Documents\Moje obrazy
2015-07-23 12:50 - 2015-07-23 12:50 - 00000000 _SHDL () C:\Users\Żołnierz\Documents\Moja muzyka
2015-07-23 12:50 - 2015-07-23 12:50 - 00000000 _SHDL () C:\Users\Żołnierz\Dane aplikacji
2015-07-23 12:50 - 2015-07-23 12:50 - 00000000 _SHDL () C:\Users\Żołnierz\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-07-23 12:50 - 2015-07-23 12:50 - 00000000 _SHDL () C:\Users\Żołnierz\AppData\Local\Historia
2015-07-23 12:50 - 2015-07-23 12:50 - 00000000 _SHDL () C:\Users\Żołnierz\AppData\Local\Dane aplikacji
2015-07-23 12:50 - 2014-09-16 01:48 - 00000000 ___RD () C:\Users\Żołnierz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-07-23 12:50 - 2014-04-25 04:25 - 00000000 ___HD () C:\Users\Żołnierz\Documents\hp.system.package.metadata
2015-07-23 12:50 - 2014-03-18 12:06 - 00000000 ___RD () C:\Users\Żołnierz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-07-23 12:50 - 2014-03-18 11:54 - 00000369 _____ () C:\Users\Żołnierz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-07-23 12:50 - 2014-03-18 11:54 - 00000369 _____ () C:\Users\Żołnierz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-07-23 12:50 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Żołnierz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-23 12:50 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Żołnierz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Public\Documents\Moje wideo
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Public\Documents\Moje obrazy
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Public\Documents\Moja muzyka
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default\Ustawienia lokalne
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default\Szablony
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default\Moje dokumenty
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default\Menu Start
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default\Documents\Moje wideo
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default\Documents\Moje obrazy
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default\Documents\Moja muzyka
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default\Dane aplikacji
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historia
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Dane aplikacji
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default User\Documents\Moje wideo
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default User\Documents\Moje obrazy
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default User\Documents\Moja muzyka
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Historia
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Dane aplikacji
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\ProgramData\Szablony
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\ProgramData\Pulpit
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\ProgramData\Menu Start
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\ProgramData\Dokumenty
2015-07-23 12:47 - 2015-07-23 12:47 - 00000000 _SHDL () C:\ProgramData\Dane aplikacji
2015-07-23 12:42 - 2015-07-23 12:42 - 00002324 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-96239780-3179284244-3867758875-500
2015-07-06 21:04 - 2015-07-06 21:04 - 00061312 _____ (WA) C:\Windows\system32\Drivers\wafd_vt_1_10_0_20.sys
2015-07-06 21:04 - 2015-07-06 21:04 - 00057728 _____ (WA) C:\Windows\system32\Drivers\wafd_vw_1_10_0_20.sys
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-07-24 14:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-07-24 13:35 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-07-24 13:34 - 2014-03-18 11:44 - 00007168 _____ () C:\Windows\PFRO.log
2015-07-24 13:33 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Branding
2015-07-24 11:56 - 2014-09-15 16:13 - 00002740 _____ () C:\Windows\system32\RaCoInst.log
2015-07-24 11:33 - 2014-09-15 16:09 - 00000000 ____D () C:\Program Files\Intel
2015-07-24 11:27 - 2014-04-01 03:07 - 00000000 ____D () C:\SWSetup
2015-07-24 11:25 - 2014-09-15 16:15 - 00000000 ____D () C:\Windows\SysWOW64\sda
2015-07-24 11:25 - 2014-09-15 16:14 - 00000000 ____D () C:\Program Files (x86)\Realtek
2015-07-24 11:23 - 2014-09-15 16:17 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2015-07-24 11:23 - 2014-09-15 16:16 - 00000000 ___HD () C:\Program Files (x86)\Temp
2015-07-24 11:23 - 2013-08-22 16:46 - 00023637 _____ () C:\Windows\setupact.log
2015-07-24 10:44 - 2014-04-25 13:24 - 00000000 ___HD () C:\HP
2015-07-24 00:58 - 2014-09-15 16:31 - 00000000 ____D () C:\Users\Public\CyberLink
2015-07-23 22:41 - 2013-08-22 17:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template
2015-07-23 19:58 - 2014-04-25 04:30 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2015-07-23 16:11 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-07-23 16:05 - 2014-09-15 16:21 - 00000000 ____D () C:\ProgramData\McAfee
2015-07-23 16:05 - 2014-09-15 16:21 - 00000000 ____D () C:\Program Files\mcafee
2015-07-23 16:05 - 2014-09-15 16:21 - 00000000 ____D () C:\Program Files\Common Files\mcafee
2015-07-23 16:05 - 2014-09-15 16:21 - 00000000 ____D () C:\Program Files (x86)\McAfee
2015-07-23 16:04 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-07-23 15:52 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\GroupPolicy
2015-07-23 14:02 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-07-23 13:59 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-07-23 13:03 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\restore
2015-07-23 12:58 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-07-23 12:54 - 2014-04-25 13:46 - 00839840 _____ () C:\Windows\system32\perfh015.dat
2015-07-23 12:54 - 2014-04-25 13:46 - 00179982 _____ () C:\Windows\system32\perfc015.dat
2015-07-23 12:54 - 2014-03-18 11:53 - 01967902 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-07-23 12:51 - 2014-09-15 16:29 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat
2015-07-23 12:51 - 2014-04-25 04:47 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2015-07-23 12:51 - 2014-04-25 04:44 - 00000000 ___RD () C:\Program Files (x86)\Online Services
2015-07-23 12:51 - 2014-04-25 04:30 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2015-07-23 12:51 - 2014-04-25 04:28 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2015-07-23 12:50 - 2014-04-02 12:25 - 00000000 ____D () C:\Windows\Panther
2015-07-23 12:50 - 2014-04-01 03:07 - 00000000 ___HD () C:\SYSTEM.SAV
2015-07-23 12:49 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\rescache
2015-07-23 12:47 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows NT
2015-07-23 12:47 - 2013-08-22 15:36 - 00000000 __RHD () C:\Users\Default
2015-07-23 12:46 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\Recovery
2015-07-23 12:45 - 2014-04-02 11:52 - 00010342 _____ () C:\Windows\iis.log
2015-07-23 12:45 - 2013-08-22 17:37 - 00005496 _____ () C:\Windows\DtcInstall.log
2015-07-23 12:42 - 2013-08-22 16:44 - 00337952 _____ () C:\Windows\system32\FNTCACHE.DAT
Some content of TEMP:
====================
C:\Users\Żołnierz\AppData\Local\Temp\ICReinstall_Adobe-Reader(12627)-dp.exe
C:\Users\Żołnierz\AppData\Local\Temp\Quarantine.exe
C:\Users\Żołnierz\AppData\Local\Temp\scp172B.tmp.exe
C:\Users\Żołnierz\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe = & gt; File is digitally signed
C:\Windows\System32\wininit.exe = & gt; File is digitally signed
C:\Windows\explorer.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\explorer.exe = & gt; File is digitally signed
C:\Windows\System32\svchost.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\svchost.exe = & gt; File is digitally signed
C:\Windows\System32\services.exe = & gt; File is digitally signed
C:\Windows\System32\User32.dll = & gt; File is digitally signed
C:\Windows\SysWOW64\User32.dll = & gt; File is digitally signed
C:\Windows\System32\userinit.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\userinit.exe = & gt; File is digitally signed
C:\Windows\System32\rpcss.dll = & gt; File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys = & gt; File is digitally signed
LastRegBack: 2014-04-02 11:25
==================== End Of Log ============================