FRST.txt

Re: Windows XP, antywirus Avira - Jak usunąć wirusa przy użyciu Avira?

Gotowe proszę.


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-05-2015
Ran by Maciek (administrator) on MK-0B92BF80BDDE on 13-05-2015 18:08:12
Running from C:\
Loaded Profiles: Maciek (Available profiles: Maciek)
Platform: Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polski
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Oracle Corporation) D:\Sterowniki + instalki niezbędne\bin\jqs.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(Safer-Networking Ltd.) D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(CipSoft GmbH) D:\Gry\Tibia2\Tibia.exe
(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] = & gt; C:\WINDOWS\RTHDCPL.EXE [20143688 2000-01-01] (Realtek Semiconductor Corp.)
HKLM\...\Run: [avgnt] = & gt; C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [728312 2015-05-05] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Avira Systray] = & gt; C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [129272 2015-03-16] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2007-06-26] (ATI Technologies Inc.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-299502267-1284227242-1801674531-1003\...\MountPoints2: {3aca41ac-1fb3-11e3-9ffa-0050fca68d62} - " K:\WD SmartWare.exe " autoplay=true
HKU\S-1-5-21-299502267-1284227242-1801674531-1003\...\MountPoints2: {630ff563-f573-11e3-93d1-001a4d7b5947} - E:\Nokia_Ovi_Suite_3_0_0_291_ALL.exe
HKU\S-1-5-21-299502267-1284227242-1801674531-1003\...\MountPoints2: {704059d5-6950-11e3-b636-001a4d7b5947} - K:\AutoRun.exe
HKU\S-1-5-21-299502267-1284227242-1801674531-1003\...\MountPoints2: {8c1dddbe-94b9-11e3-bdf6-001a4d7b5947} - K:\Startme.exe
HKU\S-1-5-21-299502267-1284227242-1801674531-1003\...\MountPoints2: {fb8db5d5-4552-11e3-8952-001a4d7b5947} - K:\AutoRun.exe
HKU\S-1-5-21-299502267-1284227242-1801674531-1003\...\MountPoints2: {fb8db5d8-4552-11e3-8952-001a4d7b5947} - K:\AutoRun.exe
ShellIconOverlayIdentifiers: [00avast] - & gt; {472083B0-C522-11CF-8763-00608CC02F24} = & gt; No File
ShellIconOverlayIdentifiers: [GGDriveOverlay1] - & gt; {E68D0A50-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay2] - & gt; {E68D0A51-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay3] - & gt; {E68D0A52-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay4] - & gt; {E68D0A53-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-299502267-1284227242-1801674531-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.pl/
BHO: Adobe PDF Link Helper - & gt; {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - & gt; C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; D:\Sterowniki + instalki niezbędne\bin\ssv.dll [2007-01-01] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; D:\Sterowniki + instalki niezbędne\bin\jp2ssv.dll [2007-01-01] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2009-09-10] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2009-09-10] (Microsoft Corporation)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-09-16] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-09-16] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 18 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-09-16] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 217.113.224.134 217.113.224.135

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Maciek\Dane aplikacji\Mozilla\Firefox\Profiles\gqqxxaq4.default
FF Homepage: google.pl
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll [2013-09-24] ()
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - & gt; D:\Sterowniki + instalki niezbędne\bin\plugin2\npjp2.dll [2007-01-01] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - & gt; C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @tools.bdupdater.com/BonanzaDealsLive Update;version=3 - & gt; C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll No File
FF Plugin: @tools.bdupdater.com/BonanzaDealsLive Update;version=9 - & gt; C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll No File
FF Plugin: Adobe Reader - & gt; D:\Programy\ADOBE\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Extension: NetVideoHunter - C:\Documents and Settings\Maciek\Dane aplikacji\Mozilla\Firefox\Profiles\gqqxxaq4.default\Extensions\netvideohunter@netvideohunter.com [2015-04-12]
FF Extension: Firebug - C:\Documents and Settings\Maciek\Dane aplikacji\Mozilla\Firefox\Profiles\gqqxxaq4.default\Extensions\firebug@software.joehewitt.com.xpi [2014-03-01]
FF Extension: Iplex to ALLPlayer - C:\Documents and Settings\Maciek\Dane aplikacji\Mozilla\Firefox\Profiles\gqqxxaq4.default\Extensions\IplextoALL@ALLPlayer.org.xpi [2013-12-25]
FF Extension: Adblock Plus - C:\Documents and Settings\Maciek\Dane aplikacji\Mozilla\Firefox\Profiles\gqqxxaq4.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-11-19]

Chrome:
=======
CHR Profile: C:\Documents and Settings\Maciek\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [825856 2015-05-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [434424 2015-05-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [434424 2015-05-05] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1186040 2015-05-05] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [201008 2015-03-16] (Avira Operations GmbH & Co. KG)
R2 JavaQuickStarterService; D:\Sterowniki + instalki niezbędne\bin\jqs.exe [182696 2007-01-01] (Oracle Corporation)
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S3 MSSQL$SONY_MEDIAMGR; D:\Programy\Sony\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [7520337 2002-12-17] (Microsoft Corporation) [File not signed]
S3 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [66112 2002-12-17] (Microsoft Corporation) [File not signed]
R2 SDScannerService; D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
S3 SQLAgent$SONY_MEDIAMGR; D:\Programy\Sony\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [311872 2002-12-17] (Microsoft Corporation) [File not signed]
S2 bonanzadealslive; C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe /svc [X]
S3 bonanzadealslivem; C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe /medsvc [X]
S3 IDriverT; " C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe " [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2000-01-01] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43520 2006-07-01] (Advanced Micro Devices)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [107400 2015-05-05] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [136216 2015-05-05] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37896 2015-05-05] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2007-01-01] (Disc Soft Ltd)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2000-01-01] (Creative Technology Ltd.)
R0 nvatabus; C:\WINDOWS\system32\Drivers\nvatabus.sys [100736 2009-09-10] (NVIDIA Corporation) [File not signed]
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [70912 2000-01-01] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [168040 2000-01-01] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2000-01-01] (NVIDIA Corporation)
R3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
R0 Si3112; C:\WINDOWS\system32\Drivers\Si3112.sys [62336 2009-09-10] (Silicon Image, Inc.) [File not signed]
S0 Si3114r5; C:\WINDOWS\system32\Drivers\Si3114r5.sys [195072 2009-09-10] (Silicon Image, Inc)
R0 Si3124; C:\WINDOWS\system32\Drivers\Si3124.sys [69248 2009-09-10] (Silicon Image, Inc.) [File not signed]
R0 Si3132; C:\WINDOWS\system32\Drivers\Si3132.sys [74672 2009-09-10] (Silicon Image, Inc.)
R0 Si3132r5; C:\WINDOWS\system32\Drivers\Si3132r5.sys [215856 2009-09-10] (Silicon Image, Inc)
R0 Si3531; C:\WINDOWS\system32\Drivers\Si3531.sys [212520 2009-09-10] (Silicon Image, Inc)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2014-08-15] (Avira GmbH)
S3 ssudserd; C:\WINDOWS\System32\DRIVERS\ssudserd.sys [181912 2013-06-05] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 EverestDriver; \??\C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 FIXUSTOR; system32\DRIVERS\fixustor.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S4 IntelIde; No ImagePath
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-13 18:08 - 2015-05-13 18:08 - 00012749 _____ () C:\FRST.txt
2015-05-13 18:08 - 2015-05-13 18:08 - 00000000 ____D () C:\FRST
2015-05-13 18:07 - 2015-05-13 18:07 - 02102784 _____ (Farbar) C:\FRST64.exe
2015-05-13 18:07 - 2015-05-13 18:07 - 01141248 _____ (Farbar) C:\FRST.exe
2015-05-12 18:45 - 2015-05-13 15:46 - 00000140 _____ () C:\moduleName.txt
2015-05-12 14:22 - 2015-05-12 18:16 - 00000000 ____D () C:\Documents and Settings\Maciek\Pulpit\Licencjat
2015-05-05 17:31 - 2015-05-05 17:31 - 00000000 ____D () C:\Documents and Settings\LocalService\Menu Start\Programy
2015-05-05 17:31 - 2015-05-05 17:31 - 00000000 ____D () C:\Documents and Settings\LocalService\Menu Start
2015-04-27 17:17 - 2015-05-12 21:06 - 00000000 ____D () C:\Documents and Settings\Maciek\Pulpit\Agata
2015-04-22 21:12 - 2015-04-23 09:14 - 00000000 ____D () C:\Program Files\Mozilla Firefox

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-13 18:08 - 2013-09-17 13:28 - 00000000 ____D () C:\Documents and Settings\Maciek\Ustawienia lokalne\Temp
2015-05-13 18:02 - 2013-09-17 13:28 - 00000000 ____D () C:\Documents and Settings\Maciek
2015-05-13 17:59 - 2014-09-16 19:56 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2015-05-13 17:42 - 2013-09-17 18:37 - 00000914 _____ () C:\WINDOWS\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job
2015-05-13 17:18 - 2013-09-17 13:12 - 00000000 ____D () C:\WINDOWS\Registration
2015-05-13 14:38 - 2013-09-17 13:13 - 00387617 ____N () C:\WINDOWS\WindowsUpdate.log
2015-05-13 14:31 - 2013-09-17 18:37 - 00000910 _____ () C:\WINDOWS\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job
2015-05-13 14:31 - 2013-09-17 15:06 - 00000159 ____N () C:\WINDOWS\wiadebug.log
2015-05-13 14:31 - 2013-09-17 15:06 - 00000050 ____N () C:\WINDOWS\wiaservc.log
2015-05-13 14:31 - 2013-09-17 13:23 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-13 13:44 - 2014-04-04 20:03 - 00524288 _____ () C:\WINDOWS\system32\config\SpybotSD.evt
2015-05-13 13:44 - 2013-09-17 13:28 - 00000188 ___SH () C:\Documents and Settings\Maciek\ntuser.ini
2015-05-13 13:44 - 2013-09-17 13:23 - 00032270 ____N () C:\WINDOWS\SchedLgU.Txt
2015-05-13 11:31 - 2007-01-01 05:08 - 00000000 ____D () C:\Documents and Settings\Maciek\Dane aplikacji\GG
2015-05-13 10:34 - 2013-09-17 13:28 - 00000000 ____D () C:\Documents and Settings\Maciek\Pulpit
2015-05-12 23:10 - 2014-09-17 17:33 - 01028594 _____ () C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-299502267-1284227242-1801674531-1003-0.dat
2015-05-12 23:10 - 2014-09-16 15:40 - 00389018 _____ () C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat
2015-05-12 19:43 - 2015-02-10 21:45 - 00002513 _____ () C:\Documents and Settings\Maciek\Pulpit\Microsoft Office Word 2007.lnk
2015-05-12 18:58 - 2013-09-17 15:02 - 00000000 __RHD () C:\Documents and Settings\All Users\Dane aplikacji
2015-05-12 18:40 - 2014-08-03 22:06 - 00000000 ___RD () C:\Documents and Settings\Maciek\Pulpit\Programy
2015-05-12 15:14 - 2014-07-26 21:47 - 00000000 ____D () C:\Mp3 do segregacji
2015-05-12 14:05 - 2014-08-27 00:55 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Skype
2015-05-12 14:05 - 2013-09-17 15:04 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy
2015-05-12 14:01 - 2013-09-17 15:04 - 00000000 ___RD () C:\Documents and Settings\All Users\Dokumenty
2015-05-12 14:01 - 2013-09-17 13:28 - 00000000 ___HD () C:\Documents and Settings\Maciek\Szablony
2015-05-12 13:58 - 2007-01-01 05:51 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-05-12 13:38 - 2007-01-01 05:49 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Adobe
2015-05-09 12:48 - 2014-05-18 16:37 - 00000000 ____D () C:\Documents and Settings\Maciek\Ustawienia lokalne\Dane aplikacji\ChomikBox
2015-05-09 12:48 - 2013-09-17 15:01 - 00000332 __RSH () C:\boot.ini
2015-05-09 12:48 - 2009-09-10 15:45 - 00000603 _____ () C:\WINDOWS\win.ini
2015-05-09 12:48 - 2009-09-10 15:45 - 00000227 _____ () C:\WINDOWS\system.ini
2015-05-09 12:40 - 2014-05-18 16:38 - 00000000 ____D () C:\Documents and Settings\Maciek\.gstreamer-0.10
2015-05-08 12:17 - 2014-05-18 16:37 - 00000000 ____D () C:\Documents and Settings\Maciek\Ustawienia lokalne\Dane aplikacji\Temp
2015-05-05 17:31 - 2014-09-16 19:01 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Avira
2015-05-05 17:31 - 2013-09-17 13:23 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-05-05 17:23 - 2014-09-16 19:12 - 00136216 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-05-05 17:23 - 2014-09-16 19:12 - 00107400 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-05-05 17:23 - 2014-09-16 19:12 - 00037896 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-05-03 11:57 - 2009-09-10 15:45 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-04-28 17:22 - 2014-03-07 10:32 - 00000000 ____D () C:\Documents and Settings\Maciek\Dane aplikacji\FileZilla
2015-04-22 21:03 - 2007-01-01 05:08 - 00000000 ____D () C:\Documents and Settings\Maciek\Ustawienia lokalne\Dane aplikacji\GG
2015-04-21 18:04 - 2013-09-25 08:45 - 00000000 ____D () C:\Documents and Settings\Maciek\Dane aplikacji\Adobe
2015-04-21 18:04 - 2007-01-01 05:52 - 00000000 ____D () C:\Documents and Settings\Maciek\Ustawienia lokalne\Dane aplikacji\Adobe
2015-04-14 18:24 - 2013-11-12 21:38 - 00707072 ___SH () C:\Documents and Settings\Maciek\Pulpit\Thumbs.db

==================== Files in the root of some directories =======

2014-02-07 10:53 - 2014-04-15 21:33 - 0006656 _____ () C:\Documents and Settings\Maciek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-26 12:43 - 2015-03-26 12:43 - 0008534 _____ () C:\Documents and Settings\Maciek\Ustawienia lokalne\Dane aplikacji\recently-used.xbel

Some content of TEMP:
====================
C:\Documents and Settings\Maciek\Ustawienia lokalne\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe = & gt; File is digitally signed
C:\WINDOWS\system32\winlogon.exe = & gt; File is digitally signed
C:\WINDOWS\system32\svchost.exe = & gt; File is digitally signed
C:\WINDOWS\system32\services.exe = & gt; File is digitally signed
C:\WINDOWS\system32\User32.dll = & gt; File is digitally signed
C:\WINDOWS\system32\userinit.exe = & gt; File is digitally signed
C:\WINDOWS\system32\rpcss.dll = & gt; File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys = & gt; File is digitally signed

==================== End Of Log ============================


Pobierz plik - link do postu
TME logo Szukaj w ofercie
Zamknij 
Wyszukaj w ofercie 200 tys. produktów TME
TME Logo