Logi FAST

Kolorwanie:
Status:
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14.03.2018
Uruchomiony przez Pawel (administrator)  PAWEL-KOMPUTER (28-03-2018 22:55:26)
Uruchomiony z C:\Users\Pawel\Downloads
Załadowane profile: Pawel (Dostępne profile: Pawel & Gość & MSSQL$SQLEXPRESS & MSSQLSERVER)
Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(National Instruments Corporation) D:\labview\ni\MAX\nimxs.exe
(National Instruments Corporation) D:\labview\ni\Shared\niauth\niauth_daemon.exe
(National Instruments Corporation) D:\labview\ni\Shared\Security\nidmsrv.exe
(National Instruments Corporation) D:\labview\ni\Shared\nisvcloc\nisvcloc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(National Instruments Corporation) D:\labview\ni\Shared\mDNS Responder\nimdnsResponder.exe
(National Instruments Corporation) D:\labview\ni\Shared\NI WebServer\SystemWebServer.exe
(National Instruments Corporation) D:\labview\ni\Shared\Tagger\tagsrv.exe
(National Instruments Corporation) D:\labview\ni\Shared\NI Network Discovery\niDiscSvc.exe
(National Instruments Corporation) D:\labview\ni\Shared\NI WebServer\ApplicationWebServer.exe
(National Instruments Corporation) D:\labview\ni\Shared\NI WebServer\NIWebServiceContainer.exe
(National Instruments Corporation) D:\labview\ni\Shared\NI WebServer\NIWebServiceContainer.exe
(National Instruments Corporation) D:\labview\ni\Shared\NI WebServer\NIWebServiceContainer.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(National Instruments Corporation) D:\labview\ni\Shared\NI WebServer\NIWebServiceContainer.exe
(National Instruments Corporation) D:\labview\ni\Shared\NI WebServer\NIWebServiceContainer.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
() C:\Program Files\Cisco Packet Tracer 7.0\bin\PacketTracer7.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\perfmon.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14021336 2015-06-18] (Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [294928 2018-03-05] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2016-12-22] (Disc Soft Ltd)
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: J - J:\setup.exe
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {37defbcc-67f8-11e7-af8a-74d4350261db} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {37defbde-67f8-11e7-af8a-74d4350261db} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {37defbfc-67f8-11e7-af8a-74d4350261db} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {41e89b9f-ad0e-11e7-bed3-74d4350261db} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {55da7b20-43b2-11e6-988b-74d4350261db} - E:\_AUTORUN\AUTORUN.EXE
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {55da7b2a-43b2-11e6-988b-74d4350261db} - E:\autorun.exe
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {67a2e68f-d406-11e6-a92d-74d4350261db} - F:\autorun.exe
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {67a2e6a4-d406-11e6-a92d-74d4350261db} - F:\SETUP.EXE
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {9cf70cd0-8727-11e7-b8c2-74d4350261db} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {b9c7ae6d-042d-11e7-b583-74d4350261db} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {c85bf4c9-e149-11e5-80ec-806e6f6e6963} - E:\Run.exe
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {e80d10f3-e17d-11e5-84d2-74d4350261db} - H:\setup.exe
HKU\S-1-5-21-537644380-1168397457-289811740-1000\...\MountPoints2: {ee54c9a6-b323-11e6-8528-74d4350261db} - G:\setup.exe

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Winsock: Catalog5 09 D:\labview\ni\Shared\mDNS Responder\nimdnsNSP.dll [35448 2017-03-08] (National Instruments Corporation)
Winsock: Catalog5-x64 09 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [38520 2017-03-08] (National Instruments Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.55.1
Tcpip\..\Interfaces\{A6C2C8F5-D6A6-4425-924B-141036C246FB}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{A6C2C8F5-D6A6-4425-924B-141036C246FB}: [DhcpNameServer] 192.168.55.1
Tcpip\..\Interfaces\{B5CD92AB-A6F6-4D53-8A65-D0B7F2B6F8F5}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131117143738240303&GUID=00000000-0000-0000-0000-000000000000
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131117143738280305&GUID=00000000-0000-0000-0000-000000000000
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-537644380-1168397457-289811740-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKU\S-1-5-21-537644380-1168397457-289811740-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2018-03-02] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2018-03-02] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-03-02] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2017-10-04] (Oracle Corporation)
BHO-x32: Pomocnik logowania za pomocą konta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2018-03-02] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2017-10-04] (Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-03-02] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-03-02] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-03-02] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-03-02] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-03-02] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-03-02] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2018-03-02] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2018-03-02] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF DefaultProfile: 02nsbyq7.default-1467750438881-1520289930290
FF ProfilePath: c:\programdata\kaspersky lab\safebrowser\kis\s-1-5-21-537644380-1168397457-289811740-1000\firefox [nie znaleziono] <==== UWAGA
FF ProfilePath: C:\Users\Pawel\AppData\Roaming\Mozilla\Firefox\Profiles\02nsbyq7.default-1467750438881-1520289930290 [2018-03-27]
FF Extension: (Adblock Plus) - C:\Users\Pawel\AppData\Roaming\Mozilla\Firefox\Profiles\02nsbyq7.default-1467750438881-1520289930290\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-03-06]
FF Extension: (TLS 1.3 gradual roll-out) - C:\Users\Pawel\AppData\Roaming\Mozilla\Firefox\Profiles\02nsbyq7.default-1467750438881-1520289930290\features\{301816b3-a143-40e8-a1b4-26d918943073}\tls13-rollout-bug1442042@mozilla.org.xpi [2018-03-23] [Przestarzałe]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_29_0_0_113.dll [2018-03-13] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-03-02] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_113.dll [2018-03-13] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-04-11] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-04-11] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2017-10-04] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll [Brak pliku]
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2017-10-04] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-03-02] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-03-02] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-02-12] (Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Profile: C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default [2018-03-28]
CHR Extension: (Prezentacje) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-06]
CHR Extension: (Dokumenty) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-06]
CHR Extension: (Dysk Google) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-01]
CHR Extension: (YouTube) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-01]
CHR Extension: (uBlock Origin) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2018-03-24]
CHR Extension: (Proxy SwitchySharp) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm [2017-02-05]
CHR Extension: (Arkusze) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-09]
CHR Extension: (Dark Space) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\idmnciiknelklflhdlnkokcoihkidkln [2018-03-25]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-07]
CHR Extension: (Gmail) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-01]
CHR Extension: (Chrome Media Router) - C:\Users\Pawel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-03-24]
CHR HKU\S-1-5-21-537644380-1168397457-289811740-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [304776 2018-03-05] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7607288 2018-03-05] (AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7962288 2018-03-13] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2016-12-22] (Disc Soft Ltd)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [Brak podpisu cyfrowego]
R2 hasplms; C:\Windows\system32\hasplms.exe [4608320 2014-11-27] (SafeNet Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Brak podpisu cyfrowego]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-04-11] (Intel Corporation)
R2 LkCitadelServer; C:\Windows\SysWOW64\lkcitdl.exe [704544 2017-03-13] (National Instruments, Inc.)
R2 lkClassAds; C:\Windows\SysWOW64\lkads.exe [69096 2017-03-13] (National Instruments Corporation)
R2 lkTimeSync; C:\Windows\SysWOW64\lktsrv.exe [80880 2017-03-13] (National Instruments Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6440736 2018-03-03] (Malwarebytes)
S4 MSSQL$INSOFT2005; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S4 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [191064 2012-02-11] (Microsoft Corporation)
S4 MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL11.MSSQLSERVER\MSSQL\Binn\sqlservr.exe [191064 2012-02-11] (Microsoft Corporation)
R2 mxssvr; D:\labview\ni\MAX\nimxs.exe [103360 2017-02-17] (National Instruments Corporation)
R2 NIApplicationWebServer; D:\labview\ni\Shared\NI WebServer\ApplicationWebServer.exe [65096 2016-12-08] (National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [83528 2016-12-08] (National Instruments Corporation)
R2 niauth; D:\labview\ni\Shared\niauth\niauth_daemon.exe [594984 2017-02-16] (National Instruments Corporation)
R2 NIDomainService; D:\labview\ni\Shared\Security\nidmsrv.exe [432600 2017-03-13] (National Instruments Corporation)
R2 nimDNSResponder; D:\labview\ni\Shared\mDNS Responder\nimdnsResponder.exe [343080 2017-03-08] (National Instruments Corporation)
R2 NINetworkDiscovery; D:\labview\ni\Shared\NI Network Discovery\niDiscSvc.exe [179304 2016-05-31] (National Instruments Corporation)
R2 NiSvcLoc; D:\labview\ni\Shared\niSvcLoc\nisvcloc.exe [102512 2016-06-06] (National Instruments Corporation)
R2 NISystemWebServer; D:\labview\ni\Shared\NI WebServer\SystemWebServer.exe [65080 2016-12-08] (National Instruments Corporation)
R2 NITaggerService; D:\labview\ni\Shared\Tagger\tagsrv.exe [760280 2017-03-19] (National Instruments Corporation)
S3 PrintNotify; C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll [2896896 2017-09-29] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL11.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [597080 2012-02-11] (Microsoft Corporation)
S4 SQLSERVERAGENT; C:\Program Files\Microsoft SQL Server\MSSQL11.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE [597080 2012-02-11] (Microsoft Corporation)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-09-06] (Microsoft Corporation)
S3 wampapache64; c:\wamp64\bin\apache\apache2.4.23\bin\httpd.exe [29696 2016-07-01] (Apache Software Foundation) [Brak podpisu cyfrowego]
S3 wampmysqld64; c:\wamp64\bin\mysql\mysql5.7.14\bin\mysqld.exe [39885824 2016-07-12] () [Brak podpisu cyfrowego]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21584 2013-02-19] ()
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [189032 2018-03-05] (AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\Windows\System32\drivers\avgbdiska.sys [166552 2018-03-05] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdrivera.sys [221096 2018-03-05] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsha.sys [193024 2018-03-05] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\System32\drivers\avgbloga.sys [337344 2018-03-05] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniva.sys [51272 2018-03-05] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\System32\drivers\avgHwid.sys [39352 2018-03-05] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [139040 2018-03-05] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [102720 2018-03-05] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [76760 2018-03-05] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1019088 2018-03-05] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [452904 2018-03-05] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [198368 2018-03-05] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [372920 2018-03-05] (AVG Technologies CZ, s.r.o.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-03-03] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-03-03] (Disc Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [76200 2018-01-18] ()
S3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18944 2017-04-11] (Huawei Technologies Co., Ltd.)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [331608 2014-11-27] (SafeNet Inc.)
S3 HWHandSet; C:\Windows\System32\DRIVERS\hw_quusbmdm.sys [226560 2017-04-11] (Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-04-11] (Huawei Technologies Co., Ltd.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-04-30] (Intel Corporation)
S3 ikbf5; C:\Windows\SysWOW64\DRIVERS\ikbf5.sys [14976 2015-06-02] (GE Intelligent Platforms, Inc.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193248 2018-03-22] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [109800 2018-03-28] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [45960 2018-03-28] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-03-22] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [92280 2018-03-28] (Malwarebytes)
R2 NDIS4DCP; C:\Windows\System32\DRIVERS\N4DCPx64.sys [38120 2015-11-16] (Windows (R) Win 7 DDK provider)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S4 RsFx0200; C:\Windows\System32\DRIVERS\RsFx0200.sys [334936 2012-02-11] (Microsoft Corporation)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [21584 2013-05-06] ()
R3 V0770Vid; C:\Windows\System32\DRIVERS\V0770Vid.sys [379776 2012-06-01] (Creative Technology Ltd.)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2018-03-28 22:55 - 2018-03-28 22:55 - 000029035 _____ C:\Users\Pawel\Downloads\FRST.txt
2018-03-28 22:55 - 2018-03-28 22:55 - 000000000 ____D C:\FRST
2018-03-28 22:54 - 2018-03-28 22:54 - 002403328 _____ (Farbar) C:\Users\Pawel\Downloads\FRST64.exe
2018-03-28 17:58 - 2018-03-28 17:58 - 000045960 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2018-03-27 17:51 - 2018-03-28 21:30 - 000000000 ____D C:\Users\Public\Documents\marzec2k18
2018-03-24 21:50 - 2018-03-24 21:50 - 000003769 _____ C:\Users\Pawel\AppData\Local\recently-used.xbel
2018-03-24 21:06 - 2018-03-24 21:06 - 000340932 _____ C:\Users\Pawel\Downloads\5.4.1.2 Packet Tracer - Skills Integration Challenge.pka
2018-03-23 19:36 - 2018-03-28 20:49 - 000092280 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-03-22 20:49 - 2018-03-22 20:49 - 002460326 _____ C:\Users\Pawel\Downloads\Linux - Administracja Systemem.pdf
2018-03-22 17:17 - 2018-03-24 01:40 - 000007604 _____ C:\Users\Pawel\AppData\Local\Resmon.ResmonCfg
2018-03-22 16:44 - 2018-03-22 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2018-03-22 16:44 - 2018-03-22 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\##ID_STRING16##
2018-03-22 16:43 - 2018-03-22 16:44 - 000003158 _____ C:\Windows\System32\Tasks\StartCN
2018-03-22 16:43 - 2018-03-22 16:43 - 000003072 _____ C:\Windows\System32\Tasks\StartDVR
2018-03-22 16:42 - 2018-03-22 16:42 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2018-03-22 16:41 - 2018-03-22 16:41 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-03-22 16:41 - 2017-11-02 22:15 - 000928568 _____ C:\Windows\system32\vulkan-1.dll
2018-03-22 16:41 - 2017-11-02 22:15 - 000798520 _____ C:\Windows\SysWOW64\vulkan-1.dll
2018-03-22 16:41 - 2017-11-02 22:15 - 000490808 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2018-03-22 16:41 - 2017-11-02 22:14 - 000591672 _____ C:\Windows\system32\vulkaninfo.exe
2018-03-22 15:59 - 2018-03-22 15:59 - 000000000 ____D C:\Users\Pawel\AppData\Local\RadeonInstaller
2018-03-22 15:58 - 2018-03-22 15:58 - 041036760 _____ (AMD Inc.) C:\Users\Pawel\Downloads\radeon-software-adrenalin-18.3.3-minimalsetup-180319_web.exe
2018-03-22 15:38 - 2018-03-28 17:58 - 000109800 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-03-22 15:38 - 2018-03-22 15:38 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-03-22 15:38 - 2018-03-22 15:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-03-22 15:38 - 2018-03-22 15:38 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-03-22 15:38 - 2018-01-18 10:03 - 000076200 _____ C:\Windows\system32\Drivers\mbae64.sys
2018-03-22 14:00 - 2018-03-24 21:24 - 000000000 ____D C:\Users\Pawel\Documents\piosk lab rozd 5
2018-03-18 23:35 - 2018-03-22 13:00 - 000000000 ____D C:\Users\Pawel\AppData\Roaming\discord
2018-03-18 23:35 - 2018-03-18 23:35 - 000002166 _____ C:\Users\Pawel\Desktop\Discord.lnk
2018-03-18 23:35 - 2018-03-18 23:35 - 000000000 ____D C:\Users\Pawel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2018-03-18 23:34 - 2018-03-18 23:35 - 000000000 ____D C:\Users\Pawel\AppData\Local\SquirrelTemp
2018-03-18 23:34 - 2018-03-18 23:35 - 000000000 ____D C:\Users\Pawel\AppData\Local\Discord
2018-03-18 16:16 - 2018-03-18 16:16 - 010532974 _____ C:\Users\Pawel\Downloads\2009-seat-exeo-100355.pdf
2018-03-18 16:12 - 2018-03-18 16:12 - 003022104 _____ C:\Users\Pawel\Downloads\seat_exeo.pdf
2018-03-16 21:11 - 2018-03-22 20:48 - 000000000 ____D C:\Users\Pawel\Desktop\ksiazki, materialy na dyplomowke
2018-03-16 19:32 - 2018-03-16 19:32 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2018-03-13 12:09 - 2018-03-13 12:09 - 000004574 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-03-06 19:14 - 2018-03-06 19:14 - 000000000 ____D C:\Windows\pss
2018-03-06 00:45 - 2018-03-18 15:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-03-06 00:45 - 2018-03-17 14:24 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-03-06 00:45 - 2018-03-06 00:45 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-03-06 00:45 - 2018-03-06 00:45 - 000000924 _____ C:\Users\Public\Desktop\Firefox.lnk
2018-03-06 00:45 - 2018-03-06 00:45 - 000000000 ____D C:\Users\Pawel\Desktop\Stare dane programu Firefox
2018-03-05 23:54 - 2018-03-05 23:54 - 000003164 _____ C:\Windows\System32\Tasks\NIUpdateServiceCheckTask
2018-03-05 23:37 - 2018-03-05 23:37 - 000003192 _____ C:\Windows\System32\Tasks\NIUpdateServiceStartupTask
2018-03-05 23:37 - 2018-03-05 23:37 - 000000000 ____D C:\Users\Pawel\AppData\Local\National Instruments
2018-03-05 23:35 - 2018-03-05 23:35 - 000000000 __SHD C:\ProgramData\{6A1798B4-4BC3-42D3-8545-B1A43208F7FC}
2018-03-05 23:33 - 2018-03-05 23:33 - 000004080 _____ C:\Windows\System32\Tasks\JKIUpdateTask
2018-03-05 23:33 - 2018-03-05 23:33 - 000001169 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VI Package Manager.lnk
2018-03-05 23:33 - 2018-03-05 23:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JKI
2018-03-05 23:32 - 2018-03-06 19:00 - 000000000 ____D C:\ProgramData\JKI
2018-03-05 23:32 - 2018-03-05 23:32 - 000000000 ____D C:\Program Files (x86)\JKI
2018-03-05 23:31 - 2018-03-05 23:31 - 000000000 ____D C:\Program Files\Common Files\OPC Foundation
2018-03-05 23:27 - 2018-03-05 23:27 - 000000685 _____ C:\Users\Public\Desktop\NI MAX.lnk
2018-03-05 23:27 - 2018-03-05 23:27 - 000000685 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NI MAX.lnk
2018-03-05 23:23 - 2018-03-05 23:23 - 000000614 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NI LabVIEW 2017 (32-bit).lnk
2018-03-05 23:17 - 2018-03-05 23:17 - 000000132 _____ C:\Windows\ODBC.INI
2018-03-05 23:15 - 2018-03-05 23:15 - 000000000 ____D C:\Windows\SysWOW64\cvirte
2018-03-05 23:15 - 2018-03-05 23:15 - 000000000 ____D C:\Windows\system32\cvirte
2018-03-05 23:14 - 2018-03-05 23:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\National Instruments
2018-03-05 23:14 - 2018-03-05 23:22 - 000000000 ____D C:\Program Files\National Instruments
2018-03-05 23:08 - 2018-03-05 23:08 - 001531078 _____ C:\Users\Pawel\Downloads\LabVIEW activator.zip
2018-03-05 22:43 - 2018-03-05 23:48 - 000000000 ____D C:\ProgramData\National Instruments
2018-03-05 20:50 - 2018-03-05 20:49 - 000381816 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2018-02-27 00:33 - 2018-03-22 14:46 - 000000000 ____D C:\Users\Pawel\AppData\Local\Pokemon Showdown
2018-02-27 00:33 - 2018-02-27 00:33 - 000000709 _____ C:\Users\Pawel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokemon Showdown.lnk
2018-02-27 00:33 - 2018-02-27 00:33 - 000000000 ____D C:\Users\Pawel\Documents\My Games

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2018-03-28 22:09 - 2017-11-13 21:51 - 000000344 _____ C:\Users\Pawel\.packettracer
2018-03-28 21:59 - 2009-07-14 06:45 - 000022096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-03-28 21:59 - 2009-07-14 06:45 - 000022096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-03-28 17:57 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-03-28 00:42 - 2016-09-25 13:26 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2018-03-27 18:22 - 2016-11-16 18:05 - 000000000 ____D C:\Users\Pawel\AppData\LocalLow\Mozilla
2018-03-27 18:17 - 2017-02-27 18:09 - 000000000 ____D C:\Users\Pawel\Desktop\sklep strona www
2018-03-27 11:51 - 2011-04-12 15:21 - 000972388 _____ C:\Windows\system32\perfh015.dat
2018-03-27 11:51 - 2011-04-12 15:21 - 000247496 _____ C:\Windows\system32\perfc015.dat
2018-03-27 11:51 - 2009-07-14 07:13 - 002328256 _____ C:\Windows\system32\PerfStringBackup.INI
2018-03-27 11:51 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-03-25 22:33 - 2016-06-28 20:40 - 000000000 ____D C:\Users\Pawel\AppData\Roaming\FileZilla
2018-03-25 13:57 - 2016-03-05 19:35 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-03-24 21:54 - 2017-04-28 00:21 - 001181696 ___SH C:\Users\Pawel\Downloads\Thumbs.db
2018-03-24 21:50 - 2017-12-11 13:28 - 000000000 ____D C:\Users\Pawel\AppData\Local\gtk-2.0
2018-03-24 21:50 - 2016-03-14 19:43 - 000000000 ____D C:\Users\Pawel\.gimp-2.8
2018-03-24 21:24 - 2017-11-13 22:50 - 000000000 ____D C:\Users\Pawel\Cisco Packet Tracer 7.0
2018-03-24 16:09 - 2016-10-20 21:44 - 000000000 ____D C:\Users\Pawel\AppData\LocalLow\AMD
2018-03-22 17:05 - 2016-03-03 17:33 - 000000000 ____D C:\Users\Pawel\AppData\Local\AMD
2018-03-22 17:01 - 2017-10-28 13:09 - 000115520 _____ C:\Users\Pawel\AppData\Local\GDIPFONTCACHEV1.DAT
2018-03-22 17:00 - 2009-07-14 06:45 - 000442000 _____ C:\Windows\system32\FNTCACHE.DAT
2018-03-22 16:43 - 2016-03-03 17:25 - 000000000 ____D C:\Program Files\AMD
2018-03-22 16:39 - 2016-03-03 17:25 - 000000000 ____D C:\AMD
2018-03-22 16:37 - 2017-12-01 01:28 - 000000000 ____D C:\Users\Pawel\AppData\Local\CrashDumps
2018-03-22 16:30 - 2016-07-08 21:01 - 000000000 ____D C:\Users\Pawel\AppData\Roaming\uTorrent
2018-03-22 16:05 - 2016-03-03 16:22 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-03-22 16:00 - 2016-08-31 13:50 - 000000000 ____D C:\ProgramData\Origin
2018-03-22 15:38 - 2017-10-26 23:12 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-03-22 15:38 - 2017-10-26 23:12 - 000193248 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2018-03-22 13:04 - 2016-05-01 20:45 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-03-22 13:04 - 2016-05-01 20:45 - 000002189 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-03-20 17:02 - 2017-07-27 12:23 - 000003184 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-537644380-1168397457-289811740-1000
2018-03-20 17:02 - 2017-05-15 21:32 - 000002206 _____ C:\Users\Pawel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2018-03-20 17:02 - 2017-05-15 21:32 - 000000000 ___RD C:\Users\Pawel\OneDrive
2018-03-17 15:20 - 2017-03-07 23:52 - 000605696 ___SH C:\Users\Pawel\Documents\Thumbs.db
2018-03-16 19:33 - 2016-10-05 18:20 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-03-16 19:32 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2018-03-16 19:30 - 2017-05-15 20:50 - 000000000 ____D C:\Program Files\Microsoft Office
2018-03-14 01:16 - 2018-01-08 19:24 - 000000000 ____D C:\Users\Public\Documents\styczen2k18
2018-03-13 12:09 - 2016-03-05 19:35 - 000804352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-03-13 12:09 - 2016-03-05 19:35 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-03-13 12:09 - 2016-03-05 19:35 - 000004412 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-03-13 12:09 - 2016-03-05 19:35 - 000000000 ____D C:\Windows\system32\Macromed
2018-03-12 01:43 - 2018-02-07 13:59 - 000000000 ____D C:\Users\Public\Documents\luty2k18
2018-03-09 23:23 - 2017-03-23 21:38 - 000004174 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update
2018-03-06 23:04 - 2018-01-23 00:16 - 000000000 ____D C:\Users\Pawel\Desktop\Rajba
2018-03-06 19:14 - 2016-03-03 17:33 - 000000000 ____D C:\Users\Pawel\AppData\Roaming\Skype
2018-03-06 19:13 - 2016-03-04 21:01 - 000000000 ____D C:\Users\Pawel\AppData\Roaming\GG
2018-03-06 19:12 - 2017-05-04 22:02 - 000000000 ____D C:\Program Files (x86)\Steam
2018-03-06 00:16 - 2017-08-17 00:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-03-05 22:53 - 2016-03-03 16:29 - 002291280 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-03-05 22:41 - 2017-04-18 00:00 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2018-03-05 20:49 - 2017-11-27 16:56 - 000189032 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 001019088 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000452904 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000372920 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000337344 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000221096 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000198368 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000193024 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000166552 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiska.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000139040 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000102720 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000076760 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000051272 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys
2018-03-05 20:49 - 2017-03-23 21:38 - 000039352 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys
2018-03-05 20:35 - 2017-11-27 16:56 - 000001968 _____ C:\Users\Public\Desktop\AVG AntiVirus FREE.lnk
2018-03-05 20:32 - 2017-03-19 19:36 - 000000000 ____D C:\Users\MSSQLSERVER
2018-03-05 20:31 - 2017-03-19 19:57 - 000000000 ____D C:\Users\MSSQL$SQLEXPRESS
2018-03-05 20:31 - 2016-03-03 16:18 - 000000000 ____D C:\Users\Pawel
2018-03-05 20:30 - 2017-03-07 23:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2018-03-05 20:30 - 2016-07-25 21:44 - 000000000 ____D C:\Users\Gość
2018-03-05 20:30 - 2011-04-12 15:32 - 000000000 ___RD C:\Users\Public\Recorded TV
2018-03-05 20:30 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2018-02-28 21:47 - 2016-05-10 20:45 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

==================== Pliki w katalogu głównym wybranych folderów =======

2018-03-24 21:50 - 2018-03-24 21:50 - 000003769 _____ () C:\Users\Pawel\AppData\Local\recently-used.xbel
2018-03-22 17:17 - 2018-03-24 01:40 - 000007604 _____ () C:\Users\Pawel\AppData\Local\Resmon.ResmonCfg
2017-11-13 22:50 - 2017-11-13 22:51 - 000019456 _____ () C:\Users\Pawel\AppData\Local\WebpageIcons.db

==================== Bamital & volsnap ======================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo
C:\Windows\explorer.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\Windows\system32\services.exe => Plik podpisany cyfrowo
C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo

LastRegBack: 2018-03-19 23:41

==================== Koniec  FRST.txt ============================

Copyrights 2014-2021 © Wklejaj.pl Wszelkie prawa zastrzeżone.