Rzeczywiście, yourserching kiedyś podczas uruchamiania programu jakiegoś mi się chyba zainstalowało. Nie mogłem usunać tegp w panelu sterowania, bo nie było tego na liście, ale pomogło chyba skanowanie programem ADWcleaner. Skany z FRST w załacznikach :)
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja:06-05-2016 03
Uruchomiony przez DOM (administrator) DOM-KOMPUTER (06-05-2016 23:24:09)
Uruchomiony z C:\Users\DOM\Downloads
Załadowane profile: DOM (Dostępne profile: DOM)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Creative Technology Ltd) C:\Program Files\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Creative Technology Ltd) C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe
(ali) C:\Program Files\USB Disk Win98 Driver\Res.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(VIA) C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
() C:\Program Files\RocketDock\RocketDock.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\Program Files\Vtune\TBPANEL.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Ovislink Corp.) C:\Program Files\Common\AirliveUI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Rejestr (filtrowane) ===========================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [Tutorials] = & gt; [X]
HKLM\...\Run: [AvastUI.exe] = & gt; C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-03-23] (AVAST Software)
HKLM\...\Run: [VolPanel] = & gt; C:\Program Files\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe [241789 2009-05-04] (Creative Technology Ltd)
HKLM\...\Run: [USB Storage Toolbox] = & gt; C:\Program Files\USB Disk Win98 Driver\Res.EXE [65536 2005-09-14] (ali)
HKLM\...\Run: [UpdReg] = & gt; C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files\Common Files\Java\Java Update\jusched.exe [596528 2015-10-06] (Oracle Corporation)
HKLM\...\Run: [ShadowPlay] = & gt; " C:\Windows\system32\rundll32.exe " C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RunDLLEntry] = & gt; C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry
HKLM\...\Run: [NvBackend] = & gt; C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [HDAudDeck] = & gt; C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [1728512 2009-12-04] (VIA)
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\Run: [ASRockOCTuner] = & gt; [X]
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\Run: [ASRockIES] = & gt; [X]
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\Run: [zASRockInstantBoot] = & gt; [X]
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\Run: [AdobeBridge] = & gt; [X]
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\Run: [RocketDock] = & gt; C:\Program Files\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\Run: [GoogleChromeAutoLaunch_68B146670E3BBDC6DD2F90BE0739375B] = & gt; C:\Program Files\Google\Chrome\Application\chrome.exe [881304 2016-04-28] (Google Inc.)
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\Run: [TBPanel] = & gt; C:\Program Files\Vtune\TBPanel.exe [2158592 2010-06-18] ()
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\Run: [CCleaner Monitoring] = & gt; C:\Program Files\CCleaner\CCleaner.exe [6405912 2015-06-01] (Piriform Ltd)
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\MountPoints2: F - F:\setup.exe
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\MountPoints2: {07c4e626-0e9f-11e6-a37b-002522777dad} - G:\setup.exe
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\MountPoints2: {8d54df27-2907-11e3-884f-83d1899a8728} - G:\LGAutoRun.exe
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\...\MountPoints2: {a7511b16-eb3f-11e3-b7f9-806e6f6e6963} - F:\setup.exe
ShellIconOverlayIdentifiers: [00avast] - & gt; {472083B0-C522-11CF-8763-00608CC02F24} = & gt; C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-03-16] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AirLive WN-200USB Wireless Utility.lnk [2010-12-25]
ShortcutTarget: AirLive WN-200USB Wireless Utility.lnk - & gt; C:\Program Files\Common\AirliveUI.exe (Ovislink Corp.)
GroupPolicy: Ograniczenia - Chrome & lt; ======= UWAGA
GroupPolicyUsers\S-1-5-21-3206427494-2321967101-612759322-1004\User: Ograniczenia & lt; ======= UWAGA
CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia & lt; ======= UWAGA
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\..\Interfaces\{C8D7BC5A-F065-4F8C-B5AD-8E5BE19E44A8}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3206427494-2321967101-612759322-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://inca.im/
URLSearchHook: HKLM - (Brak nazwy) - {8532a8b7-c06a-41bb-936a-8ce73e4711ed} - Brak pliku
URLSearchHook: HKLM - (Brak nazwy) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - Brak pliku
URLSearchHook: HKLM - (Brak nazwy) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - Brak pliku
URLSearchHook: HKU\S-1-5-21-3206427494-2321967101-612759322-1000 - (Brak nazwy) - {8532a8b7-c06a-41bb-936a-8ce73e4711ed} - Brak pliku
URLSearchHook: HKU\S-1-5-21-3206427494-2321967101-612759322-1000 - (Brak nazwy) - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - Brak pliku
URLSearchHook: HKU\S-1-5-21-3206427494-2321967101-612759322-1000 - (Brak nazwy) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - Brak pliku
SearchScopes: HKLM - & gt; {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://search.my-tools-app.com/?babsrc=home & s=web & as=0 & isid=9852 & q={searchTerms}
SearchScopes: HKU\S-1-5-21-3206427494-2321967101-612759322-1000 - & gt; {4187F0FC-AF41-4E4B-AE67-84C8FD35A0AE} URL = hxxp://inca.im/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3206427494-2321967101-612759322-1000 - & gt; {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-21-3206427494-2321967101-612759322-1000 - & gt; {F25FEADA-5FF8-46d2-B0C3-2BBCA33A0669} URL = hxxp://www.google.com/cse?cx=partner-pub-3794288947762788%3A6976579318 & ie=UTF-8 & sa=Search & siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A6976579318 & q={searchTerms}
BHO: Adobe PDF Link Helper - & gt; {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - & gt; C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-06] (Oracle Corporation)
BHO: avast! Online Security - & gt; {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - & gt; C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-03-16] (AVAST Software)
BHO: Brak nazwy - & gt; {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - & gt; Brak pliku
BHO: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-06] (Oracle Corporation)
BHO: Brak nazwy - & gt; {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - & gt; Brak pliku
Toolbar: HKLM - Brak nazwy - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Brak pliku
Toolbar: HKLM - Brak nazwy - {8532a8b7-c06a-41bb-936a-8ce73e4711ed} - Brak pliku
Toolbar: HKLM - Brak nazwy - {c86eb8a9-ccc2-4b6c-b75d-73576ed591bf} - Brak pliku
Toolbar: HKLM - Brak nazwy - {51a86bb3-6602-4c85-92a5-130ee4864f13} - Brak pliku
Toolbar: HKU\S-1-5-21-3206427494-2321967101-612759322-1000 - & gt; Brak nazwy - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Brak pliku
Toolbar: HKU\S-1-5-21-3206427494-2321967101-612759322-1000 - & gt; Brak nazwy - {8532A8B7-C06A-41BB-936A-8CE73E4711ED} - Brak pliku
Toolbar: HKU\S-1-5-21-3206427494-2321967101-612759322-1000 - & gt; Brak nazwy - {C86EB8A9-CCC2-4B6C-B75D-73576ED591BF} - Brak pliku
Toolbar: HKU\S-1-5-21-3206427494-2321967101-612759322-1000 - & gt; Brak nazwy - {51A86BB3-6602-4C85-92A5-130EE4864F13} - Brak pliku
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\DOM\AppData\Roaming\Mozilla\Firefox\Profiles\b9vcuvw7.default-1411744910165
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_203.dll [Brak pliku]
FF Plugin: @adobe.com/ShockwavePlayer - & gt; C:\Windows\system32\Adobe\Director\np32dsw.dll [2012-04-26] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.66.2 - & gt; C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 - & gt; C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-06] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - & gt; disabled [Brak pliku]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - & gt; C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-11] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-11] (Google Inc.)
FF Plugin: Adobe Reader - & gt; C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-02-16] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3206427494-2321967101-612759322-1000: @unity3d.com/UnityPlayer,version=1.0 - & gt; C:\Users\DOM\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-10-25] (Unity Technologies ApS)
FF user.js: detected! = & gt; C:\Users\DOM\AppData\Roaming\Mozilla\Firefox\Profiles\b9vcuvw7.default-1411744910165\user.js [2015-12-22]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-04-03]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-04-03]
Chrome:
=======
CHR Profile: C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentacje Google) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-22]
CHR Extension: (Dokumenty Google) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-22]
CHR Extension: (Dysk Google) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-22]
CHR Extension: (YouTube) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-22]
CHR Extension: (Adblock Plus) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-09]
CHR Extension: (Steam inventory helper) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-04-16]
CHR Extension: (Slither.io Mods) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnlenmmkifnhllnjfoangnjokeadhbbk [2016-05-06]
CHR Extension: (Google Search) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-22]
CHR Extension: (Arkusze Google) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-22]
CHR Extension: (LoungeDestroyer) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2016-04-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Avast Online Security) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-04-06]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Enhanced Steam) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2016-04-07]
CHR Extension: (Gmail) - C:\Users\DOM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-22]
CHR HKLM\...\Chrome\Extension: [dkdkpmmkgdbglmfmmmmehbkmnkopingb] - C:\Program Files\Google\Chrome\User Data\Default\Extensions\v9-toolbar.crx & lt; nie znaleziono & gt;
CHR HKLM\...\Chrome\Extension: [ebffohgmckleoaohfflmhpalofbakoii] - C:\ProgramData\SaveAs\ebffohgmckleoaohfflmhpalofbakoii.crx & lt; nie znaleziono & gt;
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-03-16]
CHR HKLM\...\Chrome\Extension: [naipdapbimiiikbbgjcpbgmfhnlbagpj] - C:\Users\DOM\AppData\Local\CRE\naipdapbimiiikbbgjcpbgmfhnlbagpj.crx & lt; nie znaleziono & gt;
CHR HKLM\...\Chrome\Extension: [nhnkmibgfijemjfljdaainjhdnimdgbc] - C:\ProgramData\ADDICT-THING\nhnkmibgfijemjfljdaainjhdnimdgbc.crx & lt; nie znaleziono & gt;
CHR HKU\S-1-5-21-3206427494-2321967101-612759322-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [naipdapbimiiikbbgjcpbgmfhnlbagpj] - C:\Users\DOM\AppData\Local\CRE\naipdapbimiiikbbgjcpbgmfhnlbagpj.crx & lt; nie znaleziono & gt;
==================== Usługi (filtrowane) ========================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S4 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-03-16] (AVAST Software)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2010-12-16] (Creative Labs) [Brak podpisu cyfrowego]
S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-12-16] (Creative Labs) [Brak podpisu cyfrowego]
R2 CTAudSvcService; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [307200 2009-02-23] (Creative Technology Ltd) [Brak podpisu cyfrowego]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1125568 2016-04-04] (Disc Soft Ltd)
S4 EPSON_EB_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [153600 2009-09-14] (SEIKO EPSON CORPORATION)
S4 EPSON_PM_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [121856 2009-09-14] (SEIKO EPSON CORPORATION)
R2 ezGOSvc; C:\Windows\system32\ezGOSvc.dll [73600 2011-05-28] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [929728 2016-01-12] (NVIDIA Corporation)
S4 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1878888 2015-07-14] (LogMeIn Inc.)
S4 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [411920 2015-07-14] (LogMeIn, Inc.)
S4 npggsvc; C:\Windows\system32\GameMon.des [4135800 2011-05-15] (INCA Internet Co., Ltd.) [Brak podpisu cyfrowego]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [5316480 2016-02-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [3996608 2016-01-12] (NVIDIA Corporation)
S4 Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2120712 2016-04-30] (Electronic Arts)
S4 OverwolfUpdater; C:\Program Files\Overwolf\OverwolfUpdater.exe [1286896 2016-04-24] (Overwolf LTD)
S4 RalinkRegistryWriter; C:\Program Files\Common\RalinkRegistryWriter.exe [75040 2008-09-05] (Ralink Technology, Corp.)
S4 Razer Game Scanner Service; C:\Program Files\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-05-29] ()
S4 RzKLService; D:\Razer Cortex\RzKLService.exe [129168 2015-06-05] (Razer Inc.)
S4 Sound Blaster X-Fi MB Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe [79360 2010-12-16] (Creative Labs) [Brak podpisu cyfrowego]
S4 WCUService_STC_IE; C:\Program Files\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [497480 2011-03-22] (Splashtop Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Sterowniki (filtrowane) ==========================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [32792 2016-03-16] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [35096 2016-03-16] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [91168 2016-03-16] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [91232 2016-03-16] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [58776 2016-03-16] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [816304 2016-03-16] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447848 2016-03-16] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [127432 2016-03-16] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [221240 2016-03-16] (AVAST Software)
S3 Cardex; C:\Windows\system32\drivers\TBPANEL.SYS [12256 2007-03-16] (Windows (R) 2000 DDK provider)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [26168 2016-04-30] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [40504 2016-04-30] (Disc Soft Ltd)
R3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
S3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [655872 2008-10-29] (Ralink Technology Corp.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27008 2016-02-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [42128 2015-12-18] (NVIDIA Corporation)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [20416 2014-11-07] (Razer, Inc.)
R2 TBPanel; C:\Windows\system32\Drivers\TBPanel.sys [12256 2007-03-16] (Windows (R) 2000 DDK provider)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1108480 2009-11-25] (VIA Technologies, Inc.)
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-14] (Microsoft Corporation)
S3 WinRing0_1_2_0; \??\D:\Razer Game Booster\Driver\WinRing0.sys [X]
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
NETSVC: ezGOSvc - & gt; C:\Windows\system32\ezGOSvc.dll ()
==================== Jeden miesiąc - utworzone pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2016-05-06 23:24 - 2016-05-06 23:26 - 00022633 _____ C:\Users\DOM\Downloads\FRST.txt
2016-05-06 23:23 - 2016-05-06 23:24 - 00000000 ____D C:\FRST
2016-05-06 23:23 - 2016-05-06 23:23 - 01730048 _____ (Farbar) C:\Users\DOM\Downloads\FRST.exe
2016-05-06 23:10 - 2016-05-06 23:14 - 00000000 ____D C:\AdwCleaner
2016-05-06 23:09 - 2016-05-06 23:09 - 03615296 _____ C:\Users\DOM\Downloads\AdwCleaner.exe
2016-05-06 21:55 - 2016-05-06 21:56 - 02284066 _____ C:\Users\DOM\Downloads\hw32_524.zip
2016-05-06 14:53 - 2016-05-06 14:53 - 00001042 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-05-06 14:50 - 2016-05-06 14:51 - 29439032 _____ (TeamSpeak Systems GmbH) C:\Users\DOM\Downloads\TeamSpeak3-Client-win32-3.0.19.1.exe
2016-05-04 16:14 - 2016-05-04 16:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ROCCAT
2016-05-04 16:14 - 2016-05-04 16:14 - 00000000 ____D C:\Program Files\ROCCAT
2016-05-04 16:11 - 2016-05-04 16:13 - 17109714 _____ C:\Users\DOM\Downloads\ROCCAT_Lua_DRV1.14.zip
2016-05-03 18:52 - 2016-05-03 18:52 - 00098432 _____ C:\Users\DOM\AppData\Local\GDIPFONTCACHEV1.DAT
2016-05-03 18:51 - 2016-05-03 18:51 - 02624368 _____ C:\Windows\system32\FNTCACHE.DAT
2016-04-30 18:31 - 2016-04-30 18:31 - 00000000 ____D C:\Program Files\Origin Games
2016-04-30 16:18 - 2016-04-30 16:18 - 00000000 ____D C:\Users\DOM\Documents\Criterion Games
2016-04-30 16:18 - 2016-04-30 16:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted 2012
2016-04-30 15:13 - 2016-04-30 15:13 - 00040504 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2016-04-30 15:11 - 2016-04-30 15:15 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-04-30 15:11 - 2016-04-30 15:11 - 00026168 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-04-30 15:00 - 2016-04-30 15:00 - 00000000 ____D C:\Users\DOM\Desktop\Need for Speed Most Wanted 2012 1.5
2016-04-20 13:24 - 2016-04-20 13:28 - 00000000 ____D C:\ProgramData\Adobe
2016-04-17 20:17 - 2014-11-14 13:13 - 08203264 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Windows\system32\QtGui4.dll
2016-04-16 13:58 - 2016-03-16 20:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2016-04-16 13:58 - 2016-03-16 20:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-04-16 13:58 - 2016-02-02 20:48 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-04-16 13:57 - 2016-03-31 20:41 - 00346320 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-04-16 13:57 - 2016-03-31 02:03 - 20352512 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-04-16 13:57 - 2016-03-31 02:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-04-16 13:57 - 2016-03-31 02:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-04-16 13:57 - 2016-03-31 01:52 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-04-16 13:57 - 2016-03-31 01:52 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-04-16 13:57 - 2016-03-31 01:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-04-16 13:57 - 2016-03-31 01:52 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-04-16 13:57 - 2016-03-31 01:51 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-04-16 13:57 - 2016-03-31 01:48 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-04-16 13:57 - 2016-03-31 01:48 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-04-16 13:57 - 2016-03-31 01:46 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-04-16 13:57 - 2016-03-31 01:45 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-04-16 13:57 - 2016-03-31 01:45 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-04-16 13:57 - 2016-03-31 01:45 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-04-16 13:57 - 2016-03-31 01:41 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-04-16 13:57 - 2016-03-31 01:38 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-04-16 13:57 - 2016-03-31 01:34 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-04-16 13:57 - 2016-03-31 01:33 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-04-16 13:57 - 2016-03-31 01:31 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-04-16 13:57 - 2016-03-31 01:31 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-04-16 13:57 - 2016-03-31 01:30 - 04611072 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-04-16 13:57 - 2016-03-31 01:30 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-04-16 13:57 - 2016-03-31 01:29 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-04-16 13:57 - 2016-03-31 01:24 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-04-16 13:57 - 2016-03-31 01:23 - 02056192 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-04-16 13:57 - 2016-03-31 01:23 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-04-16 13:57 - 2016-03-31 01:23 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-04-16 13:57 - 2016-03-31 01:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-04-16 13:57 - 2016-03-31 01:21 - 13811712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-04-16 13:57 - 2016-03-31 01:05 - 02121216 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-04-16 13:57 - 2016-03-31 01:02 - 01311744 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-04-16 13:57 - 2016-03-31 01:00 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-04-16 13:57 - 2016-03-18 00:36 - 03998952 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-04-16 13:57 - 2016-03-18 00:36 - 03943144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-04-16 13:57 - 2016-03-18 00:36 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-04-16 13:57 - 2016-03-18 00:36 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-04-16 13:57 - 2016-03-18 00:33 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-04-16 13:57 - 2016-03-18 00:30 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-04-16 13:57 - 2016-03-18 00:30 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-04-16 13:57 - 2016-03-18 00:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-04-16 13:57 - 2016-03-18 00:30 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-04-16 13:57 - 2016-03-18 00:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-04-16 13:57 - 2016-03-18 00:30 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-04-16 13:57 - 2016-03-18 00:29 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-04-16 13:57 - 2016-03-18 00:29 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-04-16 13:57 - 2016-03-18 00:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-04-16 13:57 - 2016-03-18 00:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-04-16 13:57 - 2016-03-18 00:29 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-04-16 13:57 - 2016-03-18 00:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-04-16 13:57 - 2016-03-18 00:27 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-04-16 13:57 - 2016-03-18 00:27 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-04-16 13:57 - 2016-03-18 00:27 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-04-16 13:57 - 2016-03-18 00:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-04-16 13:57 - 2016-03-18 00:26 - 01062400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-04-16 13:57 - 2016-03-18 00:26 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-04-16 13:57 - 2016-03-18 00:26 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-04-16 13:57 - 2016-03-18 00:26 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-04-16 13:57 - 2016-03-18 00:25 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-04-16 13:57 - 2016-03-18 00:25 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-04-16 13:57 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-04-16 13:57 - 2016-03-17 23:42 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-04-16 13:57 - 2016-03-17 23:42 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-04-16 13:57 - 2016-03-17 23:42 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-04-16 13:57 - 2016-03-17 23:42 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-04-16 13:57 - 2016-03-17 23:41 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-04-16 13:57 - 2016-03-17 23:36 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-04-16 13:57 - 2016-03-17 23:35 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-04-16 13:57 - 2016-03-17 23:30 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-04-16 13:57 - 2016-03-17 23:30 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-04-16 13:57 - 2016-03-17 23:30 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-04-16 13:57 - 2016-03-17 23:29 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-04-16 13:57 - 2016-03-17 23:29 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-04-16 13:57 - 2016-03-17 23:29 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-04-16 13:57 - 2016-03-17 23:29 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-04-16 13:57 - 2016-03-17 23:29 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-04-16 13:57 - 2016-03-17 23:29 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-16 13:57 - 2016-03-17 23:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-04-16 13:57 - 2016-03-17 23:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-04-16 13:56 - 2016-03-31 01:53 - 00496640 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-04-16 13:56 - 2016-03-31 01:45 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-04-16 13:56 - 2016-03-16 01:53 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-04-16 13:56 - 2016-03-16 01:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-04-16 13:56 - 2016-03-11 20:35 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-04-16 13:56 - 2016-01-21 02:51 - 00057280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-04-16 13:55 - 2016-04-04 19:54 - 00034024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-04-16 13:55 - 2016-04-04 19:42 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-04-16 13:55 - 2016-04-02 15:07 - 01218048 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-04-16 13:55 - 2016-03-29 19:35 - 02397184 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-04-16 13:55 - 2016-03-23 16:02 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-04-16 13:55 - 2016-03-17 20:04 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-04-16 13:55 - 2016-03-17 20:04 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-04-16 13:55 - 2016-03-17 20:04 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-04-16 13:55 - 2016-03-17 20:04 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-04-16 13:55 - 2016-03-06 20:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-04-16 13:55 - 2016-03-06 20:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-04-16 13:55 - 2016-02-05 20:44 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-04-16 13:55 - 2016-02-05 19:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2016-04-16 13:55 - 2015-06-03 22:22 - 00355456 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-04-06 18:16 - 2016-04-06 18:16 - 00000000 ____D C:\Users\DOM\AppData\Local\GWX
==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2016-05-06 23:26 - 2010-12-25 09:58 - 00001036 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-06 23:18 - 2013-09-02 18:07 - 00000380 _____ C:\Windows\Tasks\SLOW-PCfighter-DOM-Notification.job
2016-05-06 23:18 - 2013-09-02 18:07 - 00000374 _____ C:\Windows\Tasks\SLOW-PCfighter-DOM-Startup.job
2016-05-06 23:18 - 2010-12-25 09:58 - 00001032 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-06 23:18 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-06 23:16 - 2009-07-14 06:34 - 00014416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-05-06 23:16 - 2009-07-14 06:34 - 00014416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-05-06 23:15 - 2010-12-16 01:29 - 00000000 ____D C:\Users\DOM
2016-05-06 23:01 - 2012-06-01 07:20 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-05-06 22:50 - 2012-11-24 11:50 - 00000000 ____D C:\Users\DOM\AppData\Roaming\TS3Client
2016-05-06 21:05 - 2015-07-10 22:07 - 00000000 ____D C:\Windows\pss
2016-05-06 17:21 - 2015-06-29 22:24 - 00000000 ____D C:\Users\DOM\AppData\Local\Overwolf
2016-05-06 17:20 - 2011-09-22 17:03 - 00000005 _____ C:\Windows\Twain001.Mtx
2016-05-06 17:19 - 2011-09-22 17:03 - 00000156 _____ C:\Windows\Twunk001.MTX
2016-05-06 14:53 - 2012-11-24 11:50 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-05-05 21:20 - 2010-12-25 11:37 - 00000000 ____D C:\Users\DOM\AppData\Roaming\Skype
2016-05-05 20:35 - 2014-07-11 20:09 - 00000000 ____D C:\ProgramData\Origin
2016-05-04 20:01 - 2010-12-16 01:33 - 01699290 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-04 20:01 - 2009-07-14 10:07 - 00750048 _____ C:\Windows\system32\perfh015.dat
2016-05-04 20:01 - 2009-07-14 10:07 - 00161526 _____ C:\Windows\system32\perfc015.dat
2016-05-04 20:01 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2016-05-04 19:41 - 2012-06-02 12:00 - 00000000 ____D C:\Users\DOM\AppData\Roaming\DAEMON Tools Lite
2016-05-04 16:14 - 2010-12-16 01:38 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-05-03 14:17 - 2013-02-22 09:16 - 00000000 ____D C:\Users\DOM\AppData\Roaming\uTorrent
2016-05-03 14:17 - 2012-08-15 10:20 - 00000000 ____D C:\Users\DOM\AppData\Local\CrashDumps
2016-05-03 10:06 - 2015-06-29 22:26 - 00000000 ____D C:\Program Files\Common Files\Overwolf
2016-05-03 10:06 - 2015-06-29 22:25 - 00000000 ____D C:\Program Files\Overwolf
2016-04-30 18:20 - 2015-03-27 15:34 - 00000000 ____D C:\Program Files\Origin
2016-04-30 11:47 - 2015-07-21 00:08 - 00000132 _____ C:\Users\DOM\AppData\Roaming\Preferencje formatu PNG CS6 firmy Adobe
2016-04-23 13:59 - 2015-08-24 00:20 - 00000000 ____D C:\Users\DOM\Documents\Euro Truck Simulator 2
2016-04-22 18:28 - 2014-01-14 19:24 - 00000000 ____D C:\Program Files\CeWe Color
2016-04-22 18:27 - 2010-12-25 10:11 - 00000000 ____D C:\Users\DOM\AppData\Roaming\IrfanView
2016-04-21 15:05 - 2010-12-16 18:38 - 00374944 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-04-20 20:39 - 2015-04-10 20:37 - 00000000 ____D C:\Program Files\SystemRequirementsLab
2016-04-20 20:31 - 2012-04-03 17:55 - 00000000 ____D C:\Users\DOM\AppData\Local\LogMeIn Hamachi
2016-04-20 13:48 - 2012-02-03 13:38 - 00000000 ____D C:\Users\DOM\AppData\Local\GHISLER
2016-04-20 13:48 - 2012-02-03 13:29 - 00000000 ____D C:\totalcmd
2016-04-20 13:48 - 2011-06-13 13:24 - 00000000 ____D C:\Users\DOM\AppData\Roaming\GHISLER
2016-04-20 13:48 - 2010-12-25 10:03 - 00000000 ____D C:\Windows\system32\Macromed
2016-04-20 13:46 - 2012-02-06 18:49 - 00000000 ____D C:\ProgramData\InstallMate
2016-04-20 13:45 - 2015-02-18 18:46 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-04-20 13:44 - 2009-07-14 06:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-04-20 13:40 - 2009-07-14 04:37 - 00000000 __RHD C:\Users\Public\Libraries
2016-04-20 13:34 - 2010-12-16 01:39 - 00000000 ____D C:\Program Files\Adobe
2016-04-18 14:21 - 2014-07-02 20:45 - 00000000 ____D C:\Users\DOM\AppData\Roaming\AIMP3
2016-04-17 14:10 - 2015-01-16 23:38 - 00000000 ____D C:\Windows\system32\appraiser
2016-04-16 19:19 - 2013-08-14 21:42 - 00000000 ____D C:\Windows\system32\MRT
2016-04-16 19:12 - 2015-07-24 20:39 - 132539272 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-04-09 20:43 - 2016-03-04 15:31 - 00000000 ____D C:\Users\DOM\Documents\Bandicam
==================== Pliki w katalogu głównym wybranych folderów =======
2013-02-24 13:15 - 2013-02-24 20:31 - 0000525 _____ () C:\Users\DOM\AppData\Roaming\KosztKonfig.xml
2013-02-24 17:18 - 2013-02-24 20:20 - 0000525 _____ () C:\Users\DOM\AppData\Roaming\KosztKonfig.xml.bak
2011-03-19 17:11 - 2011-03-23 15:19 - 0139152 _____ () C:\Users\DOM\AppData\Roaming\PnkBstrK.sys
2015-07-21 00:08 - 2016-04-30 11:47 - 0000132 _____ () C:\Users\DOM\AppData\Roaming\Preferencje formatu PNG CS6 firmy Adobe
2013-07-05 10:23 - 2013-07-05 10:25 - 0001473 _____ () C:\Users\DOM\AppData\Roaming\zapamietaj31.ini
2013-07-05 10:24 - 2013-07-05 10:24 - 0000064 _____ () C:\Users\DOM\AppData\Roaming\zapamietaj31.ini7
2014-02-07 15:00 - 2014-02-07 15:01 - 0001943 _____ () C:\Users\DOM\AppData\Local\ACCCx2_4_0_348.zip.aamdownload.aamd
2012-06-03 18:56 - 2015-10-21 18:57 - 0024064 _____ () C:\Users\DOM\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-05-31 18:38 - 2012-05-31 18:38 - 0000091 _____ () C:\Users\DOM\AppData\Local\fusioncache.dat
2015-02-11 23:20 - 2015-02-11 23:20 - 0001485 _____ () C:\Users\DOM\AppData\Local\recently-used.xbel
2013-09-18 19:34 - 2015-07-16 00:12 - 0007605 _____ () C:\Users\DOM\AppData\Local\Resmon.ResmonCfg
2015-04-06 14:21 - 2015-04-06 14:21 - 0000000 _____ () C:\Users\DOM\AppData\Local\{8DFC7EC8-50AC-4515-9110-219602E39FA7}
2014-08-01 10:33 - 2014-08-01 10:33 - 0000000 _____ () C:\Users\DOM\AppData\Local\{EBF3C474-C519-4031-957C-F94DAC500534}
2012-02-11 15:28 - 2012-02-11 15:28 - 0000000 _____ () C:\ProgramData\b9ce93f79d5f6a0890b553408302dbc3_c
Pliki do przeniesienia lub usunięcia:
====================
C:\Users\DOM\autorun.dat
C:\Users\DOM\AutoRun.exe
C:\Users\DOM\config.dat
C:\Users\DOM\dirtysock.dll
C:\Users\DOM\EASetup.exe
C:\Users\DOM\GDFBinary.dll
C:\Users\DOM\msvcr71.dll
C:\Users\DOM\msvcr71d.dll
C:\Users\DOM\Setup.exe
Niektóre pliki w TEMP:
====================
C:\Users\DOM\AppData\Local\Temp\libeay32.dll
C:\Users\DOM\AppData\Local\Temp\msvcr120.dll
C:\Users\DOM\AppData\Local\Temp\SkypeSetup.exe
C:\Users\DOM\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
C:\Windows\explorer.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo
LastRegBack: 2016-05-04 17:15
==================== Koniec FRST.txt ============================