Witam. Mam problem z komputerem, ale nie znam się na tematyce zabezpieczeń. Tu prośba do ekspertów o wygenerowanie pliku fixlist do frst. Dziękuję.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 29-01-2017
Uruchomiony przez pc (administrator) KRZYSIEK-KOMP (01-02-2017 09:02:10)
Uruchomiony z C:\Users\pc\Downloads
Załadowane profile: pc (Dostępne profile: pc & DefaultAppPool)
Platform: Windows 10 Pro Wersja 1607 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Aladdin Knowledge Systems Ltd.) C:\Windows\SysWOW64\HLS32SVC.EXE
() C:\ProgramData\MobileBrServ\mbbService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\msftesql.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
() C:\Windows\SysWOW64\Portmap.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Ericsson AB) C:\Program Files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgfwsa.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Windows\SysWOW64\srvany.exe
(O2Micro.) C:\Windows\SysWOW64\SDIOAssist.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
(Huawei Technologies Co., Ltd.) C:\Users\pc\AppData\Roaming\PLAY ONLINE\ouc.exe
(TRUMPF Group) C:\TRUMPF.NET\Applications\ProgrammingSuite\bin\TruTopsTSListener.exe
(AML Software - AMLSOFT.COM) C:\Program Files (x86)\AML Products\Registry Cleaner\regclean.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1701.10102.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Rejestr (filtrowane) ====================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [Apoint] = & gt; C:\Program Files\DellTPad\Apoint.exe [727896 2014-03-13] (Alps Electric Co., Ltd.)
HKLM\...\Run: [Broadcom Wireless Manager UI] = & gt; C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [6492672 2011-01-18] (Dell Inc.)
HKLM\...\Run: [nwiz] = & gt; C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2736936 2016-12-09] ()
HKLM\...\Run: [WindowsDefender] = & gt; C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-11-29] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] = & gt; C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2012-01-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] = & gt; C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [TruTopsTSListener] = & gt; C:\TRUMPF.NET\Applications\ProgrammingSuite\Bin\TruTopsTSListener.exe [20480 2009-09-15] (TRUMPF Group)
HKLM-x32\...\Run: [] = & gt; [X]
HKLM-x32\...\Run: [AML Registry Cleaner] = & gt; C:\Program Files (x86)\AML Products\Registry Cleaner\regclean.exe [570448 2013-06-24] (AML Software - AMLSOFT.COM)
HKLM-x32\...\Run: [AvgUi] = & gt; C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] = & gt; C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-3542436794-843627941-235780381-1000\...\Run: [Autodesk Sync] = & gt; C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
HKU\S-1-5-21-3542436794-843627941-235780381-1000\...\Run: [HW_OPENEYE_OUC_PLAY ONLINE] = & gt; C:\Program Files (x86)\PLAY ONLINE\UpdateDog\ouc.exe [110592 2009-04-14] (Huawei Technologies Co., Ltd.)
HKU\S-1-5-21-3542436794-843627941-235780381-1000\...\Run: [DAEMON Tools Lite Automount] = & gt; C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd)
HKU\S-1-5-21-3542436794-843627941-235780381-1000\...\Policies\Explorer: []
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] - & gt; {36A21736-36C2-4C11-8ACB-D4136F2B57BD} = & gt; C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
GroupPolicy: Ograniczenia & lt; ======= UWAGA
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Tcpip\..\Interfaces\{0fb55e5e-888c-4887-bcab-ca462f02865e}: [NameServer] 89.108.195.20 89.108.202.20
Tcpip\..\Interfaces\{2e23e1a1-33b8-4806-84a5-0dd25779166e}: [NameServer] 192.168.0.1
Tcpip\..\Interfaces\{6d4b7df5-e751-4ef3-8ad8-39605f17dce6}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{ebc326e9-29dc-45e1-ad40-90b76308fa90}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{fe44d1cf-b7ce-4345-bac0-e6a97d201899}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-3542436794-843627941-235780381-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
BHO: Groove GFS Browser Helper - & gt; {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - & gt; C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler - & gt; {B4F3A835-0E21-4959-BA22-42B3008E02FF} - & gt; C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper - & gt; {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - & gt; Brak pliku
BHO-x32: Groove GFS Browser Helper - & gt; {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - & gt; C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: SSVHelper Class - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll [2007-09-25] (Sun Microsystems, Inc.)
BHO-x32: Office Document Cache Handler - & gt; {B4F3A835-0E21-4959-BA22-42B3008E02FF} - & gt; C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: (SmartPrintButton) - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2011-01-26] [Brak podpisu cyfrowego]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - & gt; C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - & gt; C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - & gt; C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin-x32: Adobe Reader - & gt; C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2012-01-03] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Session Restore: Profile 1 - & gt; [funkcja włączona]
CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default [2016-12-22]
CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-02-01]
CHR Extension: (Prezentacje Google) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-22]
CHR Extension: (Dokumenty Google) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-23]
CHR Extension: (Dysk Google) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-23]
CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-23]
CHR Extension: (Arkusze Google) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-23]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-01]
CHR Extension: (Gmail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-23]
CHR Extension: (Chrome Media Router) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-22]
CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\System Profile [2015-12-24]
==================== Usługi (filtrowane) ====================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [87384 2014-03-27] (Alps Electric Co., Ltd.)
S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [Brak podpisu cyfrowego]
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [971160 2016-12-15] (AVG Technologies CZ, s.r.o.)
R2 avgfws; C:\Program Files (x86)\AVG\Av\avgfwsa.exe [1824184 2016-12-15] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5337600 2016-12-15] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [725976 2016-12-15] (AVG Technologies CZ, s.r.o.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd)
R2 HLServer; C:\Windows\SysWOW64\HLS32SVC.EXE [327680 2003-12-03] (Aladdin Knowledge Systems Ltd.) [Brak podpisu cyfrowego]
S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [136704 2009-06-24] (HP) [Brak podpisu cyfrowego]
R2 Huawei E3372; C:\ProgramData\MobileBrServ\mbbservice.exe [240720 2014-03-07] ()
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [339456 2010-11-16] () [Brak podpisu cyfrowego]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego]
S2 KMService; C:\WINDOWS\SysWOW64\srvany.exe [8192 2015-11-16] () [Brak podpisu cyfrowego]
R2 msftesql$TRUMPF; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\msftesql.exe [95592 2007-06-22] (Microsoft Corporation)
R2 MSSQL$TRUMPF; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29263712 2008-11-24] (Microsoft Corporation)
R2 O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [8192 2015-11-16] () [Brak podpisu cyfrowego]
S2 Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [44496 2016-07-16] (Microsoft Corporation)
S2 Pml Driver HPZ12; C:\WINDOWS\SysWOW64\svchost.exe [38792 2016-07-16] (Microsoft Corporation)
R2 PORTMAP; C:\Windows\SysWOW64\PORTMAP.EXE [45056 2005-01-17] () [Brak podpisu cyfrowego]
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (arvato digital services llc)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-11-29] (Microsoft Corporation)
S3 SQLAgent$TRUMPF; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLAGENT90.EXE [346976 2008-11-24] (Microsoft Corporation)
S2 TruTopsTSStartServer; C:\TRUMPF.NET\Applications\ProgrammingSuite\Bin\TruTopsTSStartServer.exe [20480 2009-05-08] (TRUMPF Group) [Brak podpisu cyfrowego]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [5839872 2011-01-18] (Dell Inc.) [Brak podpisu cyfrowego]
R2 WMCoreService; C:\Program Files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe [688024 2012-05-31] (Ericsson AB)
S2 HPSIService; Brak ImagePath
S2 nvsvc; Brak ImagePath
===================== Sterowniki (filtrowane) ======================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S0 Avgboota; C:\WINDOWS\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\WINDOWS\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\WINDOWS\system32\DRIVERS\avgfwd6a.sys [73992 2016-10-23] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdrivera.sys [312576 2016-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\WINDOWS\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\WINDOWS\System32\DRIVERS\avgldx64.sys [298240 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\WINDOWS\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\WINDOWS\System32\DRIVERS\avgmfx64.sys [254208 2016-09-26] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\WINDOWS\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\WINDOWS\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\WINDOWS\system32\DRIVERS\avgwfpa.sys [313096 2016-08-04] (AVG Technologies CZ, s.r.o.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [146856 2013-06-04] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928 2013-06-04] (Windows (R) Win 7 DDK provider)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-12-21] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [46392 2015-12-21] (Disc Soft Ltd)
S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [20480 2012-09-26] (Marvell Semiconductor, Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; Brak ImagePath
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc - utworzone pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2017-02-01 08:46 - 2017-02-01 09:02 - 00000000 ____D C:\FRST
2017-02-01 08:45 - 2017-02-01 08:46 - 02420736 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe
2017-01-31 16:02 - 2017-01-31 16:02 - 00000000 ____D C:\WINDOWS\PCHEALTH
2017-01-25 10:33 - 2016-12-21 08:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-01-25 10:33 - 2016-12-21 05:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-01-17 07:31 - 2017-01-17 07:31 - 00001822 _____ C:\Users\pc\Desktop\hp LaserJet 3015 PCL 5 — skrót.lnk
2017-01-16 10:26 - 2017-01-16 10:26 - 00000000 ____D C:\Users\pc\AppData\Roaming\AVG
2017-01-16 10:16 - 2017-01-16 10:16 - 00000000 ____D C:\Users\pc\AppData\Roaming\TuneUp Software
2017-01-16 10:16 - 2017-01-16 10:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-01-16 10:10 - 2017-01-16 10:10 - 00000000 ___HD C:\$AVG
2017-01-16 09:10 - 2017-02-01 08:45 - 00000000 ____D C:\ProgramData\MFAData
2017-01-16 09:10 - 2017-01-16 09:10 - 00000000 ____D C:\Users\pc\AppData\Local\MFAData
2017-01-16 09:05 - 2017-01-16 09:05 - 00000943 _____ C:\Users\Public\Desktop\AVG.lnk
2017-01-16 09:05 - 2017-01-16 09:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2017-01-16 09:03 - 2017-01-31 01:20 - 00003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-01-16 09:03 - 2017-01-16 09:17 - 00000000 ____D C:\Program Files (x86)\AVG
2017-01-16 08:45 - 2017-01-17 07:02 - 00000000 ____D C:\AdwCleaner
2017-01-16 08:44 - 2017-01-16 08:44 - 03988944 _____ C:\Users\pc\Downloads\adwcleaner_6.042.exe
2017-01-16 07:46 - 2017-01-16 07:49 - 05659349 _____ (Swearware) C:\Users\pc\Downloads\ComboFix (1).exe
2017-01-16 07:44 - 2017-01-16 08:02 - 04841875 _____ (Swearware) C:\Users\pc\Downloads\Niepotwierdzony 160589.crdownload
2017-01-16 07:41 - 2017-01-16 07:41 - 00001295 _____ C:\Users\pc\Desktop\AML Free Registry Cleaner.lnk
2017-01-16 07:41 - 2017-01-16 07:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AML Free Registry Cleaner
2017-01-16 07:41 - 2017-01-16 07:41 - 00000000 ____D C:\Program Files (x86)\AML Products
2017-01-16 07:41 - 2002-01-05 11:37 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2017-01-16 07:41 - 2002-01-05 06:48 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll
2017-01-16 07:41 - 2002-01-05 05:40 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp70.dll
2017-01-16 07:40 - 2017-01-16 07:40 - 02885600 _____ (AML SOFTWARE ) C:\Users\pc\Downloads\regcleaner.exe
2017-01-16 07:23 - 2017-01-16 07:24 - 25581663 _____ C:\Users\pc\Downloads\park-v1.8.1 (2).zip
2017-01-16 07:14 - 2017-01-16 07:15 - 19786968 _____ C:\Users\pc\Downloads\upd-pcl5-x64-6.1.0.20062.exe
2017-01-16 07:07 - 2017-01-16 07:07 - 02895464 _____ (AVG Technologies) C:\Users\pc\Downloads\AVG_Protection_Free_1144 (1).exe
2017-01-13 14:36 - 2017-01-13 14:36 - 00000000 ____D C:\Users\pc\AppData\Local\CEF
2017-01-13 14:35 - 2017-01-16 10:24 - 00000000 ____D C:\Users\pc\AppData\Local\Avg
2017-01-13 14:35 - 2017-01-16 10:10 - 00000000 ____D C:\ProgramData\Avg
2017-01-13 14:35 - 2017-01-16 10:09 - 00000000 ____D C:\Users\pc\AppData\Local\AvgSetupLog
2017-01-13 14:34 - 2017-01-13 14:35 - 02895464 _____ (AVG Technologies) C:\Users\pc\Downloads\AVG_Protection_Free_1144.exe
2017-01-13 07:06 - 2017-01-13 07:06 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01007.Wdf
2017-01-13 07:02 - 2017-01-13 07:02 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2017-01-12 11:54 - 2017-01-12 11:54 - 00000000 ____D C:\Users\pc\Documents\AutoCAD Zestawy arkuszy
2017-01-09 08:34 - 2016-08-26 09:42 - 00604584 _____ (HP Inc.) C:\WINDOWS\SysWOW64\hpcdmc32.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00484776 _____ (HP Inc.) C:\WINDOWS\system32\hpcpn190.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00453544 _____ (HP Inc.) C:\WINDOWS\SysWOW64\hpcc3190.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00310512 _____ (HP Inc.) C:\WINDOWS\system32\hpmlm190.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00264944 _____ (HP Inc.) C:\WINDOWS\system32\hpmml190.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00241904 _____ (HP Inc.) C:\WINDOWS\system32\hpmja190.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00229800 _____ (HP Inc.) C:\WINDOWS\system32\hpmpm081.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00204200 _____ (HP Inc.) C:\WINDOWS\system32\hpmtp190.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00195496 _____ (Hewlett-Packard) C:\WINDOWS\system32\hppdcompio.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00178088 _____ (HP Inc.) C:\WINDOWS\system32\hpcjpm.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00169384 _____ (Hewlett-Packard) C:\WINDOWS\SysWOW64\hppccompio.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00127912 _____ (HP Inc.) C:\WINDOWS\system32\hpmpw081.dll
2017-01-09 08:34 - 2016-08-26 09:42 - 00061168 _____ (Hewlett-Packard) C:\WINDOWS\system32\FxCompChannel_x64.dll
2017-01-09 07:16 - 2017-01-09 07:16 - 02297116 _____ C:\Users\pc\Downloads\Dokumentacja MB_01 (1).pdf
2017-01-07 09:51 - 2017-01-07 09:51 - 00001134 _____ C:\Users\pc\Desktop\MAGAZYN Lakom-Stal.xlsx — skrót.lnk
2017-01-07 07:52 - 2017-01-07 07:52 - 25581663 _____ C:\Users\pc\Downloads\park-v1.8.1 (1).zip
2017-01-07 07:25 - 2017-01-07 07:28 - 20345696 _____ C:\Users\pc\Downloads\upd-pcl6-x64-6.3.0.21178.exe
2017-01-07 07:22 - 2017-01-16 07:16 - 00000000 ____D C:\HP Universal Print Driver
2017-01-07 07:17 - 2017-01-07 07:18 - 25581663 _____ C:\Users\pc\Downloads\park-v1.8.1.zip
2017-01-04 12:47 - 2017-01-04 12:47 - 02297116 _____ C:\Users\pc\Downloads\Dokumentacja MB_01.pdf
2017-01-04 09:54 - 2017-01-04 09:54 - 00000700 _____ C:\Users\pc\Desktop\User1 (Krzysiek-komptrumpf.netWorkfiles) (U) — skrót.lnk
2017-01-03 11:48 - 2017-01-03 11:48 - 00000445 _____ C:\Users\pc\Desktop\LAKOM (Lasertopsmanu.dir) (V) — skrót.lnk
2017-01-03 10:58 - 2017-01-03 10:59 - 00000756 _____ C:\Users\pc\Desktop\Siec.lnk
2017-01-03 10:33 - 2017-01-31 17:40 - 00000000 ____D C:\Siec
2017-01-03 09:18 - 2017-01-03 09:21 - 00001361 _____ C:\Users\pc\Desktop\laser programy.lnk
2017-01-03 09:04 - 2017-01-03 09:04 - 00000000 ____D C:\prog
2017-01-03 07:24 - 2012-08-31 15:10 - 00350720 _____ C:\WINDOWS\system32\mvhlewsi.DLL
2017-01-03 07:24 - 2012-08-31 15:03 - 01696256 _____ C:\WINDOWS\system32\HP1100SM.EXE
2017-01-02 16:04 - 2017-01-02 16:04 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2017-01-02 13:47 - 2017-01-10 05:59 - 00102400 ___SH C:\Users\pc\Desktop\Thumbs.db
2017-01-02 11:42 - 2017-01-02 11:55 - 150179344 _____ C:\Users\pc\Downloads\hp_LJP1100_P1560_P1600_Full_Solution-v20120831-50157036_SMO.exe
2017-01-02 11:34 - 2017-01-03 18:56 - 00000000 ____D C:\PROGRAMY
2017-01-02 11:15 - 2017-01-02 11:15 - 00000000 __SHD C:\found.000
2017-01-02 08:09 - 2017-01-03 15:11 - 00017409 _____ C:\Users\pc\Desktop\Spis telefonów.xlsx
==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2017-02-01 08:21 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-01 08:21 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-02-01 07:52 - 2016-11-29 08:09 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-01-31 22:12 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-31 21:31 - 2016-11-29 08:42 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-31 21:30 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-01-31 16:10 - 2015-11-15 19:07 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-31 16:06 - 2015-11-15 19:07 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-31 14:46 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-01-31 13:10 - 2015-12-24 11:28 - 00000702 __RSH C:\ProgramData\ntuser.pol
2017-01-31 13:06 - 2016-11-29 08:08 - 00515016 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-01-17 07:24 - 2015-12-23 19:56 - 00000000 ____D C:\Users\pc\AppData\Local\Packages
2017-01-16 10:50 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-01-16 10:14 - 2016-07-16 12:47 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-01-16 08:39 - 2016-03-25 07:28 - 05611903 _____ (Swearware) C:\Users\pc\Downloads\setup.exe
2017-01-13 12:05 - 2015-11-15 13:09 - 00000000 ____D C:\Users\pc\AppData\Local\cache
2017-01-13 07:20 - 2016-12-09 07:03 - 00003280 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-01-13 07:20 - 2015-12-23 20:01 - 00002441 _____ C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-01-13 07:20 - 2015-12-23 20:01 - 00000000 ___RD C:\Users\pc\OneDrive
2017-01-12 07:22 - 2016-04-29 13:51 - 00000000 ____D C:\Users\pc\Desktop\Urlopy
2017-01-05 07:09 - 2016-11-24 08:30 - 03858432 _____ C:\Users\pc\Downloads\msodbcsql (1).msi
2017-01-04 20:34 - 2016-11-29 08:18 - 00000000 ____D C:\Users\pc
2017-01-03 12:38 - 2015-09-17 11:16 - 00000000 ____D C:\Users\pc\AppData\Local\VirtualStore
2017-01-03 07:23 - 2015-12-28 12:36 - 00000000 ____D C:\LJP1100_P1560_P1600_Full_Solution
2017-01-02 16:04 - 2016-11-29 08:18 - 00000000 ____D C:\Users\DefaultAppPool
2017-01-02 14:57 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-01-02 13:39 - 2016-11-29 08:17 - 01922806 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-02 13:39 - 2016-07-16 23:05 - 00638744 _____ C:\WINDOWS\system32\perfh015.dat
2017-01-02 13:39 - 2016-07-16 23:05 - 00147100 _____ C:\WINDOWS\system32\perfc015.dat
2017-01-02 13:35 - 2016-11-29 08:12 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-02 13:31 - 2015-12-28 08:12 - 00000000 ____D C:\temp
2017-01-02 13:29 - 2016-11-29 08:12 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-01-02 13:07 - 2015-11-16 11:11 - 00000000 ____D C:\Users\pc\AppData\Local\ElevatedDiagnostics
==================== Pliki w katalogu głównym wybranych folderów =======
2008-02-05 13:28 - 2008-02-05 13:28 - 0000051 _____ () C:\Users\pc\AppData\Local\setup.txt
2015-11-15 13:03 - 2015-11-15 13:03 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
==================== Bamital & volsnap ======================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
C:\WINDOWS\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo