FRST.txt

Komputer cały czas coś mieli

Po uruchomieniu komputera bardzo długo coś on "mieli". Słychać że cały czas mocno pracuje i w tym czasie wolno działa. Czy to wina jakieś infekcji?


Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 10-06-2017
Uruchomiony przez Stefan (administrator) STEFAN-KOMPUTER (10-06-2017 16:16:24)
Uruchomiony z C:\Users\Stefan\Downloads
Załadowane profile: Stefan (Dostępne profile: Stefan)
Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Rejestr (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [NvBackend] = & gt; C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-01-16] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-06-07] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] = & gt; C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2015-07-07] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AsioReg] = & gt; REGSVR32 /S CTASIO.DLL
HKLM\...\Run: [Windows Mobile Device Center] = & gt; C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [AsioReg] = & gt; REGSVR32 /S CTASIO.DLL
HKLM-x32\...\Run: [AsioThk32Reg] = & gt; REGSVR32.EXE /S CTASIO.DLL
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3674691270-1203390970-1252354537-1000\...\Run: [TomTomHOME.exe] = & gt; C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [254840 2017-03-17] (TomTom)
HKU\S-1-5-18\...\RunOnce: [SPReview] = & gt; C:\Windows\System32\SPReview\SPReview.exe [301568 2015-07-07] (Microsoft Corporation)
GroupPolicyScripts: Ograniczenia & lt; ======= UWAGA

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{DD34D356-7681-4749-A446-F5F5DF4FB411}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3674691270-1203390970-1252354537-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp
BHO-x32: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-06-07] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-06-07] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: xpwlv2is.default
FF ProfilePath: C:\Users\Stefan\AppData\Roaming\TomTom\HOME\Profiles\ee424mnj.default [2017-06-07]
FF ProfilePath: C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\xpwlv2is.default [2017-06-10]
FF Homepage: Mozilla\Firefox\Profiles\xpwlv2is.default - & gt; www.google.pl
FF Extension: (Chomikuj.pl) - C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\xpwlv2is.default\Extensions\@chomikuj.xpi [2016-10-28]
FF Extension: (Follow-on Search Telemetry) - C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\xpwlv2is.default\features\{63d7db56-7fa7-4627-8ee6-991be3b3b530}\followonsearch@mozilla.com.xpi [2017-06-07]
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-06-06] ()
FF Plugin: @microsoft.com/GENUINE - & gt; disabled [Brak pliku]
FF Plugin-x32: @adobe.com/FlashPlayer - & gt; C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-06-06] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-06-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-06-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - & gt; disabled [Brak pliku]
FF Plugin-x32: @nvidia.com/3DVision - & gt; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - & gt; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader - & gt; C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems Inc.)

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2015-01-16] (NVIDIA Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-07-20] (IObit)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-01-16] (NVIDIA Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R3 AR9271; C:\Windows\System32\DRIVERS\athuwx.sys [2224160 2013-06-29] (Atheros Communications, Inc.)
S3 ctgame; C:\Windows\System32\DRIVERS\ctgame.sys [28128 2012-10-12] (Creative Technology Ltd.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2007-01-01] (REALiX(tm))
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [27648 2008-01-19] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [49208 2017-06-07] (NVIDIA Corporation)
S3 PortTalk; C:\Windows\SysWOW64\Drivers\PortTalk.sys [3567 2002-01-12] (Beyond Logic hxxp://www.beyondlogic.org) [Brak podpisu cyfrowego]

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2017-06-10 16:16 - 2017-06-10 16:16 - 00007791 _____ C:\Users\Stefan\Downloads\FRST.txt
2017-06-10 16:16 - 2017-06-10 16:16 - 00000000 ____D C:\FRST
2017-06-10 16:15 - 2017-06-10 16:15 - 02437120 _____ (Farbar) C:\Users\Stefan\Downloads\FRST64.exe
2017-06-10 14:08 - 2017-06-10 14:08 - 07445736 _____ C:\Users\Stefan\Downloads\699603.rar
2017-06-10 13:22 - 2017-06-10 13:23 - 00000000 ____D C:\Users\Stefan\Downloads\npp.7.3.3.bin.x64
2017-06-10 13:22 - 2017-06-10 13:22 - 03073434 _____ C:\Users\Stefan\Downloads\npp.7.3.3.bin.x64.zip
2017-06-10 13:13 - 2017-06-10 13:15 - 151673477 _____ C:\Users\Stefan\Downloads\Navigator.zip
2017-06-10 13:06 - 2017-06-10 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2017-06-10 13:06 - 2017-06-10 13:06 - 03886512 _____ (Martin Malík - REALiX ) C:\Users\Stefan\Downloads\hw64_552.exe
2017-06-10 13:06 - 2017-06-10 13:06 - 00000000 ____D C:\Program Files\HWiNFO64
2017-06-07 19:33 - 2017-06-07 19:33 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2017-06-07 19:27 - 2017-06-07 19:27 - 00000000 ____D C:\Users\Stefan\Downloads\aAM_Europe_1704_6.946_Final
2017-06-07 18:40 - 2017-06-07 19:27 - 3642400663 _____ C:\Users\Stefan\Downloads\aAM_Europe_1704_6.946_Final.rar
2017-06-07 15:43 - 2017-06-07 15:43 - 00000000 ____D C:\Users\Stefan\Downloads\aAM.4.3.0.1428.www.Patched
2017-06-07 11:43 - 2017-06-07 11:43 - 00000000 ____D C:\Users\Stefan\Downloads\Europe_Central_990_8365
2017-06-07 11:37 - 2017-06-07 11:37 - 01057296 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2017-06-07 11:37 - 2017-06-07 11:37 - 00131592 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2017-06-07 11:36 - 2017-06-07 11:36 - 00155192 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2017-06-07 11:36 - 2017-06-07 11:36 - 00129080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2017-06-07 11:36 - 2017-06-07 11:36 - 00049208 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-06-07 11:35 - 2017-06-07 11:35 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-06-07 11:34 - 2017-06-07 11:34 - 00000000 ____D C:\Windows\system32\DAX3
2017-06-07 11:34 - 2017-06-07 11:34 - 00000000 ____D C:\Windows\system32\DAX2
2017-06-07 11:34 - 2017-06-07 11:34 - 00000000 ____D C:\ProgramData\Audyssey Labs
2017-06-07 11:33 - 2017-06-07 11:33 - 15202032 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE3.dll
2017-06-07 11:33 - 2017-06-07 11:33 - 03299816 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2017-06-07 11:32 - 2017-06-07 11:33 - 02190976 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 72520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2017-06-07 11:32 - 2017-06-07 11:32 - 09124224 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-06-07 11:32 - 2017-06-07 11:32 - 07172912 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 07096184 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 06264632 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2017-06-07 11:32 - 2017-06-07 11:32 - 05545512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2017-06-07 11:32 - 2017-06-07 11:32 - 05347000 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 03503048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 03410832 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 03203584 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 03203424 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 03122656 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 03014144 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2017-06-07 11:32 - 2017-06-07 11:32 - 02993720 _____ (Audyssey Labs) C:\Windows\system32\AudysseyEfx.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 02830480 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 02444688 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 02201600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01965808 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01959600 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01780616 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01591056 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01516896 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOProp.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01508928 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01435136 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01382232 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01363096 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOv251.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01353824 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01337640 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01133584 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 01003504 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00984912 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00965024 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00962128 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00873456 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00866088 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00859912 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00854208 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00785608 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOvlldp.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00743960 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00727432 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00726120 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00689880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00601136 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00588032 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00532376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00514872 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00504304 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00467152 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00447720 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00447176 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00445400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00441264 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00426568 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2APIPCLL.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00416504 _____ (Harman) C:\Windows\system32\HMUI.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00387312 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00381400 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00378384 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00366120 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00362048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00360344 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00343704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00341144 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00327456 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00310416 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00272712 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00258864 _____ (TODO: & lt; Company name & gt; ) C:\Windows\system32\slprp64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00253896 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00253864 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00252872 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00231912 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00221960 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00209528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00203840 _____ (Harman) C:\Windows\system32\HMHVS.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00192976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00190928 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00190928 _____ (Harman) C:\Windows\system32\HMEQ.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00179592 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00166200 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00158688 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00154360 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00151784 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00134200 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00110984 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00105304 _____ C:\Windows\system32\audioLibVc.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00090912 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00088344 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00088320 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00083624 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00075536 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2017-06-07 11:32 - 2017-06-07 11:32 - 00023688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2017-06-07 11:10 - 2017-06-10 16:15 - 00000000 ____D C:\Users\Stefan\AppData\LocalLow\Mozilla
2017-06-07 11:10 - 2017-06-07 11:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-06-06 21:12 - 2017-06-10 14:46 - 00002290 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk
2017-06-06 21:12 - 2017-06-06 21:12 - 00003270 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler
2017-06-06 21:11 - 2017-06-06 21:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2017-06-06 21:05 - 2017-06-06 21:06 - 15721672 _____ (IObit ) C:\Users\Stefan\Downloads\driver_booster_setup(2).exe
2017-06-06 19:01 - 2017-06-06 19:01 - 00000000 ____D C:\Users\Stefan\Downloads\Radars_TomTom_01.06.2017
2017-06-06 19:01 - 2017-06-06 19:01 - 00000000 ____D C:\Users\Stefan\Downloads\Autobana-05
2017-06-06 18:59 - 2017-06-06 18:59 - 00000000 ____D C:\Users\Stefan\AppData\Local\Downloaded Installations
2017-06-06 18:56 - 2017-06-06 18:56 - 00000000 ____D C:\Users\Stefan\Documents\TomTom
2017-06-06 18:56 - 2017-06-06 18:56 - 00000000 ____D C:\Users\Stefan\AppData\Roaming\TomTom
2017-06-06 18:56 - 2017-06-06 18:56 - 00000000 ____D C:\Users\Stefan\AppData\Local\TomTom
2017-06-06 18:54 - 2017-06-06 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2017-06-06 18:54 - 2017-06-06 18:54 - 00000000 ____D C:\Program Files (x86)\TomTom HOME 2

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2017-06-10 16:15 - 2009-07-14 06:45 - 00013792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-06-10 16:15 - 2009-07-14 06:45 - 00013792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-06-10 16:14 - 2009-07-14 19:55 - 02498246 _____ C:\Windows\system32\perfh015.dat
2017-06-10 16:14 - 2009-07-14 19:55 - 00751102 _____ C:\Windows\system32\perfc015.dat
2017-06-10 16:14 - 2009-07-14 07:13 - 00006248 _____ C:\Windows\system32\PerfStringBackup.INI
2017-06-10 16:13 - 2007-01-01 01:08 - 00002902 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Stefan)
2017-06-10 16:08 - 2007-01-01 01:09 - 00000000 ____D C:\ProgramData\ProductData
2017-06-10 16:07 - 2015-07-07 18:01 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-10 16:07 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-06-10 14:46 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-06-07 16:05 - 2015-08-11 10:18 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2017-06-07 16:04 - 2015-08-11 18:20 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-06-07 11:41 - 2015-07-07 18:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-06-07 11:37 - 2016-08-01 19:53 - 00127536 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2017-06-07 11:34 - 2015-07-07 19:35 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2017-06-07 11:14 - 2015-07-07 18:14 - 00000000 ____D C:\ProgramData\Oracle
2017-06-07 11:13 - 2015-07-07 18:15 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2017-06-07 11:13 - 2015-07-07 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-06-07 11:13 - 2015-07-07 18:14 - 00000000 ____D C:\Program Files (x86)\Java
2017-06-06 21:11 - 2007-01-01 01:08 - 00000000 ____D C:\Program Files (x86)\IObit
2017-06-06 21:10 - 2007-01-01 01:08 - 00000000 ____D C:\ProgramData\IObit
2017-06-06 19:04 - 2015-07-07 18:12 - 00803320 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-06-06 19:04 - 2015-07-07 18:12 - 00144888 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-06 19:04 - 2015-07-07 18:12 - 00004412 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-06-06 19:04 - 2015-07-07 18:12 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-06-06 19:04 - 2015-07-07 18:12 - 00000000 ____D C:\Windows\system32\Macromed

==================== Pliki w katalogu głównym wybranych folderów =======

2007-01-01 01:17 - 2007-01-01 01:17 - 0000001 _____ () C:\Users\Stefan\AppData\Local\llftool.4.40.agreement
2017-06-07 11:35 - 2017-06-07 11:35 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Niektóre pliki w TEMP:
====================
2016-10-28 19:56 - 2016-10-28 19:56 - 0737856 _____ (Oracle Corporation) C:\Users\Stefan\AppData\Local\Temp\jre-8u111-windows-au.exe
2017-06-07 11:12 - 2017-06-07 11:12 - 0739904 _____ (Oracle Corporation) C:\Users\Stefan\AppData\Local\Temp\jre-8u131-windows-au.exe
2015-07-25 09:54 - 2015-07-25 09:54 - 0563808 _____ (Oracle Corporation) C:\Users\Stefan\AppData\Local\Temp\jre-8u51-windows-au.exe

==================== Bamital & volsnap ======================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\Windows\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\wininit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\explorer.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\explorer.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\svchost.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\User32.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\userinit.exe = & gt; Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\Windows\SysWOW64\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo

LastRegBack: 2016-02-04 12:32

==================== Koniec FRST.txt ============================


Pobierz plik - link do postu