FRST.txt

Programy szpiegujące - logi i ich analiza - FRST.

Wykonane. Czekam na dalsze instrukcje. Uporczywe programy dalej się pojawiają. Po wpisaniu w Uruchom: Chkdsk.exe zaczęło coś przeszukiwać. Jednak po 9%* skończyło z sekundowym zawiadomieniem o błędzie i wyłączeniem programu.


Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja:15-09-2015
Uruchomiony przez xxx (administrator) XXX-KOMPUTER (20-09-2015 22:15:58)
Uruchomiony z G:\Pobrane
Załadowane profile: xxx (Dostępne profile: xxx)
Platform: Microsoft Windows 7 Ultimate (X86) Język: Polski (Polska)
Internet Explorer Wersja 9 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(TopLang Software) C:\Windows\System32\FLK.exe
() C:\Windows\System32\LckFldService.exe
() C:\Program Files\RocketDock\RocketDock.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
() C:\Windows\System32\PnkBstrA.exe
(Skype Technologies) C:\Program Files\Skype\Updater\Updater.exe
(Disc Soft Ltd) G:\Daemon Tools\DAEMON Tools Lite\DiscSoftBusService.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe


==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [BlueStacks Agent] = & gt; C:\Program Files\BlueStacks\HD-Agent.exe
HKLM\...\Run: [SpIDerAgent] = & gt; " C:\Program Files\DrWeb\spideragent.exe "
HKU\S-1-5-19\...\Run: [Sidebar] = & gt; %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] = & gt; %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\...\Run: [RocketDock] = & gt; C:\Program Files\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\...\Run: [CCleaner Monitoring] = & gt; C:\Program Files\CCleaner\CCleaner.exe [5282584 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\...\Run: [MK LOL] = & gt; " C:\Program Files\MKJogo\MK IM\Bin\MKIM.exe " -auto
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\...\Run: [uTorrent] = & gt; " C:\Users\xxx\AppData\Roaming\uTorrent\uTorrent.exe " /MINIMIZED
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\...\Run: [DAEMON Tools Lite Automount] = & gt; G:\Daemon Tools\DAEMON Tools Lite\DTAgent.exe [3576664 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\...\Run: [Skype] = & gt; C:\Program Files\Skype\Phone\Skype.exe [53729824 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\...\Run: [IDMan] = & gt; G:\Internet Download Manager\IDMan.exe [3927632 2014-07-10] (Tonec Inc.)
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\...\MountPoints2: {ba1651fa-c641-11e4-b11d-6c626d3cf1a8} - I:\setup.exe
ShellIconOverlayIdentifiers: [GGDriveOverlay1] - & gt; {E68D0A50-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay2] - & gt; {E68D0A51-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay3] - & gt; {E68D0A52-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay4] - & gt; {E68D0A53-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2012-06-05] (GG Network S.A.)
ShellIconOverlayIdentifiers: [IDM Shell Extension] - & gt; {CDC95B92-E27C-4745-A8C5-64A52A78855D} = & gt; G:\Internet Download Manager\IDMShellExt.dll [2014-04-21] (Tonec Inc.)

==================== Internet (Wszystkie) ===========================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

ATTENTION: There are more than 99 Catalog9 entries. Turn off the whitelisting to see all the entries. You may check Device Manager for presence of unusual amount of " Microsoft 6to4 Adapter " devices.
Winsock: Catalog5 01 C:\Windows\system32\NLAapi.dll [51712 2009-07-14] (Microsoft Corporation)
Winsock: Catalog5 02 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog5 03 C:\Windows\system32\winrnr.dll [20992 2009-07-14] (Microsoft Corporation)
Winsock: Catalog5 04 C:\Windows\system32\napinsp.dll [52224 2009-07-14] (Microsoft Corporation)
Winsock: Catalog5 05 C:\Windows\system32\pnrpnsp.dll [65024 2009-07-14] (Microsoft Corporation)
Winsock: Catalog5 06 C:\Windows\system32\pnrpnsp.dll [65024 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 01 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 02 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 03 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 04 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 05 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 06 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 07 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 08 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 09 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 10 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 11 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 12 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 13 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 14 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 15 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 16 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 17 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 18 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 19 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 20 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 21 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 22 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 23 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 24 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 25 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 26 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 27 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 28 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 29 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 30 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 31 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 32 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 33 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 34 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 35 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 36 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 37 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 38 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 39 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 40 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 41 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 42 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 43 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 44 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 45 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 46 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 47 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 48 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 49 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 50 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 51 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 52 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 53 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 54 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 55 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 56 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 57 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 58 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 59 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 60 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 61 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 62 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 63 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 64 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 65 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 66 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 67 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 68 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 69 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 70 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 71 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 72 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 73 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 74 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 75 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 76 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 77 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 78 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 79 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 80 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 81 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 82 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 83 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 84 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 85 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 86 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 87 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 88 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 89 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 90 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 91 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 92 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 93 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 94 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 95 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 96 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 97 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 98 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 99 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000100 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000101 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000102 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000103 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000104 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000105 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000106 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000107 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000108 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000109 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000110 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000111 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000112 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000113 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000114 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000115 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000116 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000117 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000118 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000119 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000120 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000121 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000122 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000123 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000124 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000125 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000126 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000127 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000128 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000129 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000130 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000131 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000132 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000133 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000134 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000135 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000136 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000137 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000138 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000139 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000140 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000141 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000142 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000143 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000144 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000145 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000146 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000147 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000148 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000149 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000150 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000151 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000152 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000153 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000154 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000155 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000156 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000157 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000158 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000159 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000160 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000161 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000162 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000163 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000164 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000165 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000166 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000167 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000168 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000169 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000170 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000171 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000172 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000173 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000174 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000175 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000176 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000177 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000178 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000179 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000180 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000181 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000182 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000183 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000184 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000185 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000186 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000187 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000188 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000189 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000190 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000191 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000192 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000193 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000194 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000195 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000196 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000197 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000198 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000199 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000200 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000201 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000202 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000203 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000204 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000205 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000206 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000207 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000208 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000209 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000210 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000211 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000212 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000213 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000214 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000215 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000216 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000217 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000218 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000219 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000220 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000221 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000222 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000223 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000224 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000225 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000226 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000227 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000228 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000229 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000230 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000231 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000232 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000233 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000234 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000235 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000236 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000237 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Winsock: Catalog9 000000000238 C:\Windows\system32\mswsock.dll [232448 2009-07-14] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0A6F305C-4D64-4569-89F0-B0F37786055E}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4ECADB92-638F-455B-841C-D34BBE40154C}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{B370349D-4F91-4548-AA60-6D0A27C80C7E}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F68BD055-A64B-4979-BFC5-483297794861}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl & pid=N360 & pvid=21.1.0.18
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl & pid=N360 & pvid=21.1.0.18
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl & pid=N360 & pvid=21.1.0.18
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKU\S-1-5-21-308330279-4049743763-3021725778-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com
URLSearchHook: HKLM - & gt; Domyślne = {3B81079D-2AC9-425f-A494-A1C7D93AFA3C}
URLSearchHook: HKU\S-1-5-21-308330279-4049743763-3021725778-1000 - & gt; Domyślne = {3B81079D-2AC9-425f-A494-A1C7D93AFA3C}
URLSearchHook: HKU\S-1-5-21-308330279-4049743763-3021725778-1000 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
SearchScopes: HKLM - & gt; DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms} & FORM=IE8SRC
SearchScopes: HKLM - & gt; {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms} & FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-308330279-4049743763-3021725778-1000 - & gt; DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms} & src=IE-SearchBox & FORM=IE8SRC
SearchScopes: HKU\S-1-5-21-308330279-4049743763-3021725778-1000 - & gt; {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms} & src=IE-SearchBox & FORM=IE8SRC
BHO: IDM integration (IDMIEHlprObj Class) - & gt; {0055C089-8582-441B-A0BF-17B458C2A3A8} - & gt; G:\Internet Download Manager\IDMIECC.dll [2014-07-10] (Internet Download Manager, Tonec Inc.)
BHO: Skype Click to Call for Internet Explorer - & gt; {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - & gt; C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2013-11-16] (Microsoft Corporation)
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\system32\urlmon.dll [2013-11-16] (Microsoft Corporation)
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll [2009-07-14] (Microsoft Corporation)
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2013-11-16] (Microsoft Corporation)
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2013-11-16] (Microsoft Corporation)
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2013-11-16] (Microsoft Corporation)
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2013-11-16] (Microsoft Corporation)
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2009-07-14] (Microsoft Corporation)
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2013-11-16] (Microsoft Corporation)
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2013-11-16] (Microsoft Corporation)
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2013-11-16] (Microsoft Corporation)
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll [2011-05-03] (Microsoft Corporation)
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2013-11-16] (Microsoft Corporation)
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2009-07-14] (Microsoft Corporation)
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2013-11-16] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll [2009-07-14] (Microsoft Corporation)
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2013-11-16] (Microsoft Corporation)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll [2009-11-25] (Microsoft Corporation)
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll [2009-11-25] (Microsoft Corporation)
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\system32\mscoree.dll [2009-11-25] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - " c:\program files\internet explorer\iexplore.exe "

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll [2013-10-22] ()
FF Plugin: Adobe Reader - & gt; C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-12-18] (Adobe Systems Inc.)
FF HKLM\...\Mozilla Firefox 28.0\Extensions: [Components] - C:\Program Files\Mozilla Firefox\components
FF HKLM\...\Mozilla Firefox 28.0\Extensions: [Plugins] - C:\Program Files\Mozilla Firefox\plugins
FF HKU\S-1-5-21-308330279-4049743763-3021725778-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\xxx\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\xxx\AppData\Roaming\IDM\idmmzcc5 [2015-09-19]
FF HKU\S-1-5-21-308330279-4049743763-3021725778-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\xxx\AppData\Roaming\IDM\idmmzcc5
StartMenuInternet: FIREFOX.EXE - " C:\Program Files\Mozilla Firefox\firefox.exe "

Chrome:
=======
CHR StartupUrls: Default - & gt; " hxxp://www.google.com/ "
CHR Profile: C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (AdBlock) - C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-09-06]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-04]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - G:\Internet Download Manager\IDMGCExt.crx [2014-07-10]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
StartMenuInternet: Google Chrome - " C:\Program Files\Google\Chrome\Application\chrome.exe "

Opera:
=======
StartMenuInternet: (HKLM) Opera - " C:\Program Files\Opera\Opera.exe "

==================== Usługi (filtrowane) ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [276992 2013-10-08] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego]
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; G:\Daemon Tools\DAEMON Tools Lite\DiscSoftBusService.exe [1112408 2015-06-18] (Disc Soft Ltd) [Brak podpisu cyfrowego]
S3 EasyAntiCheat; C:\Windows\system32\EasyAntiCheat.exe [238376 2015-05-10] (EasyAntiCheat Ltd)
R2 FileLockService; C:\Windows\system32\FLK.exe [217360 2012-07-30] (TopLang Software)
R2 LckFldService; C:\Windows\system32\LckFldService.exe [36864 2005-06-22] () [Brak podpisu cyfrowego]
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2014-05-18] ()

===================== Sterowniki (filtrowane) ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [48808 2012-11-20] (Advanced Micro Devices)
S3 AR5211; C:\Windows\System32\DRIVERS\ar5211.sys [543712 2007-03-27] (Atheros Communications, Inc.) [Brak podpisu cyfrowego]
R1 cFosSpeed; C:\Windows\System32\DRIVERS\cfosspeed6.sys [1280352 2013-02-14] (cFos Software GmbH)
S3 DFX11_1; C:\Windows\System32\drivers\dfx11_1.sys [24424 2012-12-13] (Windows (R) Win 7 DDK provider)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [25104 2015-03-09] (Disc Soft Ltd)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-06-23] (Disc Soft Ltd)
R0 FLockXP; C:\Windows\System32\DRIVERS\FLockXP.sys [29968 2012-07-30] (TopLang Software)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2015-08-06] (LogMeIn, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [99400 2012-05-12] (MotioninJoy)
R2 nxsIO32; C:\Windows\System32\DRIVERS\nxsIO32.sys [2208 2015-09-01] () [Brak podpisu cyfrowego]
S3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [263464 2010-11-23] (Realtek Semiconductor Corp.)
R3 SCREAMINGBDRIVER; C:\Windows\System32\drivers\ScreamingBAudio.sys [34896 2010-07-01] (Screaming Bee LLC)
S0 sfdrv01a; C:\Windows\System32\drivers\sfdrv01a.sys [63352 2006-07-05] (Protection Technology (StarForce))
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [329384 2015-03-09] (Duplex Secure Ltd.)
S3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [27136 2009-09-16] (Tunngle.net) [Brak podpisu cyfrowego]
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [17792 2008-12-26] (Avnex)
U5 UnlockerDriver5; D:\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Brak podpisu cyfrowego]
U3 ahtalifc; Brak ImagePath

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2015-09-20 22:12 - 2015-09-20 22:12 - 00000000 ____D C:\ProgramData\IDM
2015-09-20 22:12 - 2015-09-20 22:12 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2015-09-20 17:32 - 2015-09-20 22:16 - 00000000 ___DC C:\FRST
2015-09-20 17:14 - 2015-09-20 17:14 - 00000000 ____D C:\Users\xxx\AppData\Local\CEF
2015-09-20 16:32 - 2015-09-20 22:11 - 00103140 ____C C:\gswq.exe
2015-09-20 13:07 - 2015-09-20 13:07 - 00000000 ____D C:\Users\xxx\AppData\Local\Steam
2015-09-20 10:25 - 2015-09-20 10:25 - 00000000 ____D C:\Users\xxx\AppData\Roaming\Macromedia
2015-09-20 10:25 - 2015-09-20 10:25 - 00000000 ____D C:\Users\xxx\AppData\Roaming\LolClient
2015-09-20 08:53 - 2015-09-20 08:53 - 00000000 ____D C:\Users\xxx\AppData\Roaming\Adobe
2015-09-20 08:52 - 2015-09-20 08:52 - 00000000 ____D C:\Users\xxx\AppData\Roaming\DAEMON Tools Lite
2015-09-19 23:53 - 2015-09-19 23:53 - 00000000 ____D C:\Users\xxx\AppData\Roaming\Publish Providers
2015-09-19 23:52 - 2015-09-20 10:06 - 00000000 ____D C:\Users\xxx\AppData\Roaming\Sony
2015-09-19 23:52 - 2015-09-19 23:52 - 00000000 ____D C:\Users\xxx\AppData\Local\Sony
2015-09-19 23:49 - 2015-09-19 23:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vegas Pro 11.0
2015-09-19 23:47 - 2015-09-19 23:47 - 00000000 ____D C:\Users\xxx\AppData\Roaming\WinRAR
2015-09-19 23:08 - 2015-09-20 22:08 - 00000000 ____D C:\Users\xxx\AppData\Roaming\DMCache
2015-09-19 23:08 - 2015-09-19 23:09 - 00000000 ____D C:\Users\xxx\AppData\Roaming\IDM
2015-09-19 22:47 - 2015-09-19 22:48 - 00000000 ____D C:\Users\xxx\AppData\Roaming\Winamp
2015-09-15 16:03 - 2015-09-15 16:03 - 00002687 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-15 16:03 - 2015-09-15 16:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-15 16:03 - 2015-09-15 16:03 - 00000000 ____D C:\Program Files\Common Files\Skype
2015-09-14 19:58 - 2015-09-14 19:58 - 00000000 ____D C:\Users\xxx\AppData\Local\Ahri.tw
2015-09-04 15:59 - 2015-09-04 15:59 - 00000000 ____D C:\Users\xxx\AppData\Local\LogMeIn
2015-09-04 15:54 - 2015-09-04 15:54 - 00000000 ____D C:\Users\xxx\AppData\Local\Skype
2015-09-04 15:51 - 2015-09-19 22:38 - 00000000 ____D C:\Users\xxx\AppData\Local\Google
2015-09-01 16:26 - 2015-09-01 16:26 - 00002208 _____ C:\Windows\system32\Drivers\nxsIO32.sys
2015-08-31 15:07 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-08-21 17:33 - 2004-02-23 00:00 - 00323584 _____ (Microsoft Corporation) C:\Users\xxx\SETUP1.EXE

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2015-09-20 22:18 - 2015-07-13 14:07 - 00000000 ____D C:\Users\xxx\AppData\Roaming\Skype
2015-09-20 22:14 - 2015-07-22 08:46 - 00012464 _____ C:\Windows\setupact.log
2015-09-20 22:14 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-20 22:11 - 2015-07-18 20:29 - 00540328 _____ C:\Windows\WindowsUpdate.log
2015-09-20 22:11 - 2013-12-29 13:13 - 00000033 _____ C:\Windows\system32\FileLock.dat
2015-09-20 22:00 - 2014-08-31 17:10 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-09-20 21:56 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2015-09-20 21:55 - 2009-07-14 04:37 - 00000000 __RHD C:\Users\Public\Libraries
2015-09-20 21:37 - 2015-07-18 22:26 - 00001036 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-20 18:30 - 2009-07-14 06:34 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-20 18:30 - 2009-07-14 06:34 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-20 18:22 - 2015-07-18 22:26 - 00001032 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-20 17:02 - 2015-07-22 08:46 - 00014932 _____ C:\Windows\PFRO.log
2015-09-20 15:41 - 2012-01-07 16:29 - 01668226 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-20 15:41 - 2009-07-14 10:07 - 00739694 _____ C:\Windows\system32\perfh015.dat
2015-09-20 15:41 - 2009-07-14 10:07 - 00155268 _____ C:\Windows\system32\perfc015.dat
2015-09-20 12:24 - 2015-06-25 12:01 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-20 11:39 - 2009-07-14 06:52 - 00000000 ____D C:\Windows\twain_32
2015-09-20 00:25 - 2015-06-11 18:10 - 00000992 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-09-19 23:42 - 2015-05-17 22:05 - 00000000 ____D C:\Users\xxx\Desktop\Epickie rozmowy Bartusia i Dawidka
2015-09-19 23:19 - 2015-07-04 21:09 - 00000000 ____D C:\Users\xxx\Desktop\Muzyka taka że ci ryj rozjebie
2015-09-19 19:35 - 2009-07-14 04:37 - 00000000 ___RD C:\Users\Public
2015-09-15 16:04 - 2012-01-10 15:08 - 00000000 ____D C:\ProgramData\Skype
2015-09-15 16:03 - 2015-08-07 23:51 - 00000000 ___RD C:\Program Files\Skype
2015-09-09 18:59 - 2014-10-04 13:32 - 00000271 _____ C:\Windows\game.ini
2015-09-04 18:01 - 2014-06-28 12:02 - 00000000 ____D C:\Program Files\Common Files\Steam
2015-08-29 18:25 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF
2015-08-21 17:33 - 2012-01-07 16:26 - 00000000 _RSHD C:\Users\xxx
2015-08-21 17:31 - 2013-04-07 11:18 - 00249856 ____N (Microsoft Corporation) C:\Windows\Setup1.exe
2015-08-21 17:31 - 2013-04-07 11:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\ST6UNST.EXE

Niektóre pliki w TEMP:
====================
C:\Users\xxx\AppData\Local\Temp\nikkg.exe
C:\Users\xxx\AppData\Local\Temp\winmjghcy.exe
C:\Users\xxx\AppData\Local\Temp\wintgepa.exe


==================== Bamital & volsnap =================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\Windows\explorer.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo


LastRegBack: 2015-09-17 21:15

==================== Koniec FRST.txt ============================


Download file - link to post
  Search 5 million + Products