Anonim / 3 lata temu | Download | Plaintext | Odpowiedz |

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 21-02-2015
Ran by Sebastian (administrator) on BONKU87 on 22-02-2015 11:00:11
Running from C:\Users\Sebastian\Downloads
Loaded Profiles: Sebastian (Available profiles: Sebastian)
Platform: Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: Polski (Polska)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\McProxy\McProxy.exe
(McAfee, Inc.) C:\Program Files\McAfee\VirusScan\Mcshield.exe
(McAfee, Inc.) C:\Program Files\McAfee\MPF\MpfSrv.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
() C:\Program Files\Cyberlink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
() C:\Program Files\Lenovo\OnekeyDM\OnekeyDM.exe
(Lenovo) C:\Program Files\Lenovo\VeriFace\PManage.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe
(McAfee, Inc.) C:\Program Files\McAfee.com\Agent\mcagent.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
( ) C:\Program Files\ChomikBox\chomikbox.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(GG Network S.A.) C:\Users\Sebastian\AppData\Local\GG\Application\gghub.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\mcmscsvc.exe
(GG Network S.A.) C:\Users\Sebastian\AppData\Local\GG\Application\ggapp.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarDriverAdapter_550vista.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(GG Network S.A.) C:\Users\Sebastian\AppData\Local\GG\Application\ggdrive\ggdrive.exe
(GG Network S.A.) C:\Users\Sebastian\AppData\Local\GG\Application\xulrunner\gghub.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McChHost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\McAfee\VirusScan\mcsysmon.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\saUI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-08-07] (Intel Corporation)
HKLM\...\Run: [MDS_Menu] => C:\Program Files\Lenovo\MediaShow\MUITransfer\MUIStartMenu.exe [218408 2008-11-14] (CyberLink Corp.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35184 2008-12-03] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-30] (Synaptics Incorporated)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7625248 2009-07-20] (Realtek Semiconductor)
HKLM\...\Run: [OnekeyDM] => C:\Program Files\Lenovo\OnekeyDM\OnekeyDM.exe [335872 2009-03-27] ()
HKLM\...\Run: [VeriFaceManager] => C:\Program Files\Lenovo\VeriFace\PManage.exe [3122440 2009-10-30] (Lenovo)
HKLM\...\Run: [UpdateP2GShortCut] => C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [EnergyUtility] => C:\Program Files\Lenovo\Energy Management\utility.exe [4114288 2009-08-26] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] => C:\Program Files\Lenovo\Energy Management\Energy Management.exe [5064520 2009-06-25] (Lenovo (Beijing) Limited)
HKLM\...\Run: [Lenovo SlideNav] => C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNavigator.exe [839680 2009-08-19] (Lenovo)
HKLM\...\Run: [mcagent_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [645328 2009-07-14] (McAfee, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-674000167-2900416406-3849833966-1004\...\Run: [ChomikBox] => C:\Program Files\ChomikBox\chomikbox.exe [6033408 2014-03-17] ( )
HKU\S-1-5-21-674000167-2900416406-3849833966-1004\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-674000167-2900416406-3849833966-1004\...\Run: [GG] => C:\Users\Sebastian\AppData\Local\GG\Application\gghub.exe [4023872 2015-02-15] (GG Network S.A.)
HKU\S-1-5-21-674000167-2900416406-3849833966-1004\...\Run: [ALLUpdate] => C:\Program Files\ALLPlayer\ALLUpdate.exe [2765256 2015-01-24] (ALLPlayer Group Ltd.)
HKU\S-1-5-21-674000167-2900416406-3849833966-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5496600 2015-01-20] (Piriform Ltd)
HKU\S-1-5-21-674000167-2900416406-3849833966-1004\...\MountPoints2: {cad21ba4-ddf5-11e3-b4d7-0c6076a0f02f} - F:\iLinker.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\windows\System32\SPReview\SPReview.exe [280576 2014-03-01] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: [VeriFace Enc] -> {771C7324-DA80-49D3-8017-753B0AF60951} => C:\windows\system32\IcnOvrly.dll ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKU\S-1-5-21-674000167-2900416406-3849833966-1004\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=173
HKU\S-1-5-21-674000167-2900416406-3849833966-1004\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\McAfee\VirusScan\scriptsn.dll (McAfee, Inc.)
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO: No Name -> {c723a437-2eaf-466d-a95b-3fa0966bf88c} ->  No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 195.121.1.34 195.121.1.66

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files\McAfee\SiteAdvisor [2009-10-16]

Chrome: 
=======
CHR Profile: C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-27]
CHR Extension: (Google Drive) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-27]
CHR Extension: (YouTube) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-27]
CHR Extension: (Google Search) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-27]
CHR Extension: (SiteAdvisor) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2014-03-01]
CHR Extension: (AdBlock) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-02-27]
CHR Extension: (Google Wallet) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-27]
CHR Extension: (Strong Signal) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdidplnlbafiijjfbomlfokdppebnhpc [2015-02-20]
CHR Extension: (Gmail) - C:\Users\Sebastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-27]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - http://clients2.google.com/service/update2/crx

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [582944 2009-07-01] (Broadcom Corporation.)
R2 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [414984 2009-07-28] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [472328 2009-07-28] (Lenovo Group Limited)
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [131136 2014-12-03] (McAfee, Inc.)
R2 mcmscsvc; C:\Program Files\McAfee\MSC\mcmscsvc.exe [865832 2009-07-14] (McAfee, Inc.)
R2 McNASvc; c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe [2482848 2009-04-09] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [365072 2009-06-16] (McAfee, Inc.)
R2 McProxy; c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe [359952 2009-04-09] (McAfee, Inc.)
R2 McShield; C:\Program Files\McAfee\VirusScan\Mcshield.exe [144704 2009-06-18] (McAfee, Inc.)
R3 McSysmon; C:\Program Files\McAfee\VirusScan\mcsysmon.exe [606736 2009-06-16] (McAfee, Inc.)
R2 MpfService; C:\Program Files\McAfee\MPF\MPFSrv.exe [894136 2009-07-08] (McAfee, Inc.)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [45408 2008-11-24] (Microsoft Corporation)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)
R2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [244904 2009-07-17] () [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [21520 2009-05-19] (Lenovo Corporation)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 enecirhid; C:\windows\System32\DRIVERS\enecirhid.sys [11776 2009-05-19] (ENE TECHNOLOGY INC.)
R3 enecirhidma; C:\windows\System32\DRIVERS\enecirhidma.sys [5632 2008-04-24] (ENE TECHNOLOGY INC.)
R1 funfrm; C:\windows\system32\Drivers\funfrm.sys [54800 2009-10-30] ()
R0 LPCFilter; C:\windows\System32\DRIVERS\LPCFilter.sys [36208 2009-07-02] (COMPAL ELECTRONIC INC.)
R3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [79816 2009-06-18] (McAfee, Inc.)
R3 mfebopk; C:\windows\System32\drivers\mfebopk.sys [35272 2009-06-18] (McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-06-18] (McAfee, Inc.)
S3 mferkdk; C:\windows\System32\drivers\mferkdk.sys [34248 2009-06-18] (McAfee, Inc.)
R3 mfesmfk; C:\windows\System32\drivers\mfesmfk.sys [40552 2009-06-18] (McAfee, Inc.)
R1 MPFP; C:\windows\System32\Drivers\Mpfp.sys [130424 2009-04-09] (McAfee, Inc.)
S3 netr28u; C:\windows\System32\DRIVERS\netr28u.sys [657408 2009-07-13] (Ralink Technology Corp.)
R3 usbsmi; C:\windows\System32\DRIVERS\SMIksdrv.sys [171520 2009-08-21] (SMI)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-22 11:00 - 2015-02-22 11:00 - 00017271 _____ () C:\Users\Sebastian\Downloads\FRST.txt
2015-02-22 10:59 - 2015-02-22 11:00 - 00000000 ____D () C:\FRST
2015-02-22 10:59 - 2015-02-22 10:59 - 01126400 _____ (Farbar) C:\Users\Sebastian\Downloads\FRST.exe
2015-02-22 10:50 - 2015-02-22 10:56 - 00000112 _____ () C:\windows\setupact.log
2015-02-22 10:50 - 2015-02-22 10:50 - 00000000 _____ () C:\windows\setuperr.log
2015-02-22 10:49 - 2015-02-22 10:49 - 00000586 _____ () C:\windows\PFRO.log
2015-02-22 10:44 - 2015-02-22 10:55 - 00000000 ____D () C:\AdwCleaner
2015-02-22 10:44 - 2015-02-22 10:44 - 02126848 _____ () C:\Users\Sebastian\Downloads\AdwCleaner.exe
2015-02-22 10:39 - 2015-02-22 10:39 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-02-22 10:39 - 2015-02-22 10:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-02-22 10:39 - 2015-02-22 10:39 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-22 10:38 - 2015-02-22 10:38 - 05325208 _____ (Piriform Ltd) C:\Users\Sebastian\Downloads\ccsetup502.exe
2015-02-19 20:29 - 2015-02-19 20:29 - 00001871 _____ () C:\Users\Sebastian\Desktop\ALLPlayer.Radio.lnk
2015-02-19 20:29 - 2015-02-19 20:29 - 00001863 _____ () C:\Users\Sebastian\Desktop\ALLPlayer.VOD.lnk
2015-02-19 20:29 - 2015-02-19 20:29 - 00000977 _____ () C:\Users\Sebastian\Desktop\ALLPlayer.lnk
2015-02-19 20:29 - 2015-02-19 20:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer
2015-02-19 20:29 - 2015-02-19 20:29 - 00000000 ____D () C:\ProgramData\ALLPlayerRemote
2015-02-19 20:29 - 2013-04-05 20:26 - 02106368 _____ () C:\windows\system32\ac3filter.ax
2015-02-19 20:29 - 2013-04-05 20:26 - 00276992 _____ (IntelleSoft) C:\windows\system32\BugTrap.dll
2015-02-19 20:29 - 2011-06-02 01:10 - 00644608 _____ () C:\windows\system32\xvidcore.dll
2015-02-19 20:29 - 2007-10-07 14:36 - 00258048 _____ () C:\windows\system32\libFLAC.dll
2015-02-19 20:28 - 2015-02-19 20:29 - 00000000 ____D () C:\ProgramData\ALLPlayer
2015-02-19 20:28 - 2015-02-19 20:29 - 00000000 ____D () C:\Program Files\ALLPlayer
2015-02-19 20:28 - 2015-02-19 20:28 - 42833056 _____ (ALLPlayer ) C:\Users\Sebastian\Downloads\ALLPlayerPL.exe
2015-02-19 20:27 - 2015-02-20 19:10 - 00000000 ____D () C:\ProgramData\{9869f0b5-5fc6-9dc9-9869-9f0b55fcc2d5}
2015-02-19 20:27 - 2015-02-19 20:27 - 00717216 _____ (Web Generic ) C:\Users\Sebastian\Downloads\ALLPlayer(13217)-dp.exe
2015-02-19 20:23 - 2015-02-21 10:39 - 00000000 ____D () C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce
2015-02-19 20:23 - 2015-02-19 20:23 - 29949352 _____ (Media Freeware ) C:\Users\Sebastian\Downloads\Free RMVB Player 1.0.2 [1].exe
2015-02-19 20:22 - 2015-02-19 20:22 - 00700120 _____ (Web Software Generic ) C:\Users\Sebastian\Downloads\Free RMVB Player 1.0.2.exe
2015-02-16 19:29 - 2015-02-16 19:29 - 00000394 _____ () C:\Users\Sebastian\Downloads\MTB Action Ouddorp.kmz
2015-02-16 10:03 - 2015-02-16 10:03 - 00196439 _____ () C:\Users\Sebastian\Downloads\dowˇd osobisty str 1.jpeg
2015-02-16 10:03 - 2015-02-16 10:03 - 00176154 _____ () C:\Users\Sebastian\Downloads\dowˇd osobisty str 2.jpeg
2015-02-15 09:40 - 2015-02-15 09:40 - 00000000 ____D () C:\ProgramData\GG
2015-02-08 21:48 - 2015-02-08 21:48 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Urządzenia interfejsu Bluetooth
2015-02-04 08:47 - 2015-02-04 08:47 - 00000000 ____D () C:\Users\Sebastian\Downloads\dokumenty
2015-02-04 08:46 - 2015-02-04 08:46 - 02278989 _____ () C:\Users\Sebastian\Downloads\dokumenty.zip
2015-02-04 08:20 - 2015-02-04 08:20 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2015-01-29 21:14 - 2015-01-29 21:14 - 00001635 _____ () C:\Users\Sebastian\Desktop\GG dysk.lnk
2015-01-29 21:14 - 2015-01-29 21:14 - 00000000 ___SD () C:\Users\Sebastian\GG dysk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-22 10:59 - 2009-10-30 07:11 - 01116093 _____ () C:\windows\WindowsUpdate.log
2015-02-22 10:57 - 2014-03-16 10:17 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\Skype
2015-02-22 10:56 - 2014-03-16 15:55 - 00000000 ____D () C:\Users\Sebastian\.gstreamer-0.10
2015-02-22 10:56 - 2014-02-27 21:12 - 00001032 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-22 10:56 - 2009-10-30 07:34 - 02751176 _____ () C:\FaceProv.log
2015-02-22 10:56 - 2009-10-30 07:28 - 00000000 ____D () C:\ProgramData\VeriFace
2015-02-22 10:56 - 2009-07-14 05:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-02-22 10:55 - 2009-10-16 08:06 - 00001427 _____ () C:\windows\system32\Config.MPF
2015-02-22 10:55 - 2009-07-14 05:34 - 00009920 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-22 10:55 - 2009-07-14 05:34 - 00009920 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-22 10:51 - 2014-02-27 21:12 - 00001036 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-22 10:50 - 2014-03-16 15:55 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\ChomikBox
2015-02-22 10:40 - 2009-07-29 11:27 - 00000000 ____D () C:\windows\Panther
2015-02-22 10:01 - 2015-01-21 23:52 - 00000000 ____D () C:\Users\Sebastian\AppData\Roaming\GG
2015-02-22 10:01 - 2015-01-13 16:39 - 00000266 __RSH () C:\ProgramData\ntuser.pol
2015-02-21 11:13 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\Microsoft.NET
2015-02-20 20:10 - 2014-03-29 07:17 - 00000000 ____D () C:\Users\Sebastian\Downloads\ChomikBox
2015-02-20 20:01 - 2009-10-16 15:38 - 00742878 _____ () C:\windows\system32\perfh015.dat
2015-02-20 20:01 - 2009-10-16 15:38 - 00151456 _____ () C:\windows\system32\perfc015.dat
2015-02-20 19:55 - 2014-02-27 21:14 - 00002135 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-19 20:26 - 2009-10-16 08:01 - 01768672 _____ () C:\windows\system32\PerfStringBackup.INI
2015-02-15 09:41 - 2015-01-21 23:52 - 00000000 ____D () C:\Users\Sebastian\AppData\Local\GG
2015-02-08 21:47 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\NDF
2015-02-03 00:01 - 2015-01-10 21:38 - 00000000 ____D () C:\Users\Sebastian\Downloads\DSJ-wersja-na-Vista-i-7
2015-01-29 21:14 - 2014-02-27 21:08 - 00000000 ____D () C:\Users\Sebastian

==================== Files in the root of some directories =======

2014-03-26 16:02 - 2014-11-17 14:42 - 0000146 _____ () C:\Users\Sebastian\AppData\Roaming\WB.CFG

Some content of TEMP:
====================
C:\Users\Sebastian\AppData\Local\Temp\Quarantine.exe
C:\Users\Sebastian\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-15 10:19

==================== End Of Log ============================