Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:20-08-2015 Ran by Michasia (administrator) on MICHASIAISZYMON (20-08-2015 16:01:38) Running from C:\Users\Michasia\Downloads Loaded Profiles: Michasia (Available Profiles: Michasia) Platform: Microsoft Windows 8.1 z usługą Bing (X86) Language: Polski (Polska) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe () C:\Program Files\Realtek\REALTEK Bluetooth\BTDevMgr.exe (Acer Incorporated) C:\Program Files\Acer\AOP Framework\CCDMonitorService.exe (Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe (Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe (Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe (Acer Incorporated) C:\Program Files\Acer\Acer Touch Tools\TouchToolsLaunchSvc.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe (Acer Cloud Technology) C:\Program Files\Acer\AOP Framework\acer\ccd.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe (Acer Incorporated) C:\Program Files\Acer\Acer Hover Access\HoverAccess.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe (Acer Incorporated) C:\Program Files\Acer\Screen Grasp\GestureDetection.exe (Acer Incorporated) C:\Program Files\Acer\Screen Grasp\Launch Screen Grasp.exe (Acer) C:\Program Files\Acer\Acer Portal\AcerPortal.exe () C:\Program Files\Acer\Care Center\ACCStd.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Farbar) C:\Users\Michasia\Downloads\FRST (1).exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [BacKGround Agent] => C:\Program Files\Acer\AOP Framework\BackgroundAgent.exe [66304 2015-05-06] (Acer Incorporated) HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\windows\System32\DptfPolicyLpmServiceHelper.exe [81336 2014-05-08] (Intel Corporation) HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [4616704 2014-10-28] (Realtek Semiconductor) ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files\Acer\shellext\Win32\shellext_win.dll [2015-05-06] (Acer Incorporated) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-3069079970-3131246873-784187648-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com/?pc=ACJB HKU\S-1-5-21-3069079970-3131246873-784187648-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB SearchScopes: HKU\S-1-5-21-3069079970-3131246873-784187648-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms} SearchScopes: HKU\S-1-5-21-3069079970-3131246873-784187648-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms} Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{749C4892-DCAB-4B64-BE84-0F1F341461DE}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{B59AE42F-2698-4276-B626-C03E3685DF91}: [DhcpNameServer] 192.168.224.1 FireFox: ======== FF ProfilePath: C:\Users\Michasia\AppData\Roaming\Mozilla\Firefox\Profiles\srpb8ns7.default FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] () FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] () FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] () ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 BTDevManager; C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe [70144 2014-10-28] () [File not signed] R2 CCDMonitorService; C:\Program Files\Acer\AOP Framework\CCDMonitorService.exe [2839296 2015-05-06] (Acer Incorporated) S3 cphs; C:\windows\system32\IntelCpHeciSvc.exe [278344 2014-10-28] (Intel Corporation) R2 DptfParticipantProcessorService; C:\windows\system32\DptfParticipantProcessorService.exe [83384 2014-05-08] (Intel Corporation) R2 DptfPolicyCriticalService; C:\windows\system32\DptfPolicyCriticalService.exe [97208 2014-05-08] (Intel Corporation) R2 DptfPolicyLpmService; C:\windows\system32\DptfPolicyLpmService.exe [90552 2014-05-08] (Intel Corporation) R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [1974504 2014-07-22] (Acer Incorporated) R2 igfxCUIService1.0.0.0; C:\windows\system32\igfxCUIService.exe [277320 2014-10-28] (Intel Corporation) R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [452840 2014-12-30] (Acer Incorporate) R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [451816 2014-10-28] (Acer Incorporate) R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [442088 2014-10-28] (Acer Incorporate) R2 TouchToolsLaunchService; C:\Program Files\Acer\Acer Touch Tools\TouchToolsLaunchSvc.exe [247040 2014-10-28] (Acer Incorporated) R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [238848 2014-09-09] (acer) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [284520 2015-07-07] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22224 2015-07-07] (Microsoft Corporation) S2 0252151432623429mcinstcleanup; C:\Users\Michasia\AppData\Local\Temp\025215~1.EXE -cleanup -nolog [X] ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S5 3ware; C:\windows\System32\drivers\3ware.sys [86368 2013-08-22] (LSI) S3 ACC_SensorDriver; C:\windows\System32\drivers\ACC_SensorDriver.sys [12800 2014-10-28] (Intel Corporation) R5 ACPI; C:\windows\System32\drivers\ACPI.sys [426304 2014-10-07] (Microsoft Corporation) R5 acpiex; C:\windows\System32\Drivers\acpiex.sys [61280 2013-08-22] (Microsoft Corporation) S5 ADP80XX; C:\windows\System32\drivers\ADP80XX.SYS [773472 2013-08-22] (PMC-Sierra) S5 agp440; C:\windows\System32\drivers\agp440.sys [56160 2013-08-22] (Microsoft Corporation) S3 ALS_SensorDriver; C:\windows\System32\drivers\ALS_SensorDriver.sys [11264 2014-10-28] (Intel Corporation) S5 amdagp; C:\windows\System32\drivers\amdagp.sys [56160 2013-08-22] (Microsoft Corporation) S5 amdsata; C:\windows\System32\drivers\amdsata.sys [72544 2013-08-22] (Advanced Micro Devices) S5 amdsbs; C:\windows\System32\drivers\amdsbs.sys [215392 2013-08-22] (AMD Technologies Inc.) S5 amdxata; C:\windows\System32\drivers\amdxata.sys [22880 2013-08-22] (Advanced Micro Devices) S5 arcsas; C:\windows\System32\drivers\arcsas.sys [101728 2013-08-22] (PMC-Sierra, Inc.) S5 atapi; C:\windows\System32\drivers\atapi.sys [23392 2013-08-22] (Microsoft Corporation) S3 AX88179; C:\windows\system32\DRIVERS\ax88179_178a.sys [60816 2013-07-08] (ASIX Electronics Corp.) R1 BasicRender; C:\windows\System32\drivers\BasicRender.sys [25600 2014-03-18] (Microsoft Corporation) S3 BCMSDH43XX; C:\windows\system32\DRIVERS\bcmdhd63.sys [296664 2013-08-13] (Broadcom Corp) S3 BthLEEnum; C:\windows\system32\DRIVERS\BthLEEnum.sys [186880 2014-03-18] (Microsoft Corporation) R3 BthMini; C:\windows\System32\Drivers\BTHMINI.sys [23552 2014-10-29] (Microsoft Corporation) S3 btwampfl; C:\windows\System32\drivers\btwampfl.sys [145112 2014-10-28] (Broadcom Corporation.) S3 BtwSerialBus; C:\windows\System32\drivers\BtwSerialBus.sys [132312 2014-10-28] (Broadcom Corporation.) R3 camera; C:\windows\system32\DRIVERS\camera.sys [460288 2014-10-28] (Intel Corporation) R5 CLFS; C:\windows\System32\drivers\CLFS.sys [279360 2015-03-04] (Microsoft Corporation) R3 CM3218x; C:\windows\system32\DRIVERS\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation) R5 CNG; C:\windows\System32\Drivers\cng.sys [478776 2015-03-30] (Microsoft Corporation) R3 CPLMACPI; C:\windows\system32\DRIVERS\CPLMACPI.sys [16488 2014-10-28] (Capella Microsystems, Inc.) R5 disk; C:\windows\System32\drivers\disk.sys [83808 2013-08-22] (Microsoft Corporation) S3 DptfDevAmbient; C:\windows\System32\drivers\DptfDevAmbient.sys [44472 2014-05-08] (Intel Corporation) R3 DptfDevDBPT; C:\windows\System32\drivers\DptfDevPower.sys [25528 2014-05-08] (Intel Corporation) R3 DptfDevDisplay; C:\windows\System32\drivers\DptfDevDisplay.sys [28088 2014-05-08] (Intel Corporation) R3 DptfDevGen; C:\windows\System32\drivers\DptfDevGen.sys [36280 2014-05-08] (Intel Corporation) R3 DptfDevProc; C:\windows\System32\drivers\DptfDevProc.sys [80824 2014-05-08] (Intel Corporation) R3 DptfManager; C:\windows\System32\drivers\DptfManager.sys [182200 2014-05-08] (Intel Corporation) S5 EhStorClass; C:\windows\System32\drivers\EhStorClass.sys [73568 2013-08-22] (Microsoft Corporation) S5 EhStorTcgDrv; C:\windows\System32\drivers\EhStorTcgDrv.sys [100704 2013-08-22] (Microsoft Corporation) R5 FileInfo; C:\windows\System32\drivers\fileinfo.sys [63832 2014-03-18] (Microsoft Corporation) R5 FltMgr; C:\windows\System32\drivers\fltmgr.sys [270144 2014-08-26] (Microsoft Corporation) U5 Fs_Rec; C:\windows\system32\Drivers\Fs_Rec.sys [24928 2013-08-22] (Microsoft Corporation) R5 fvevol; C:\windows\System32\DRIVERS\fvevol.sys [502104 2014-04-08] (Microsoft Corporation) S5 gagp30kx; C:\windows\System32\drivers\gagp30kx.sys [59744 2013-08-22] (Microsoft Corporation) R3 GPIO; C:\windows\System32\drivers\iaiogpioe.sys [23552 2014-05-05] (Intel Corporation) R3 GpioVirtual; C:\windows\System32\drivers\iaiogpiovirtual.sys [16896 2014-03-22] (Intel Corporation) S3 GYRO_SensorDriver; C:\windows\System32\drivers\GYRO_SensorDriver.sys [12800 2014-10-28] (Intel Corporation) S5 HpSAMD; C:\windows\System32\drivers\HpSAMD.sys [56672 2013-08-22] (Hewlett-Packard Company) S5 hwpolicy; C:\windows\System32\drivers\hwpolicy.sys [23904 2013-08-22] (Microsoft Corporation) R3 iaioi2c; C:\windows\System32\drivers\iaioi2ce.sys [58368 2014-03-22] (Intel Corporation) R3 iaiouart; C:\windows\System32\drivers\iaiouart.sys [87552 2014-03-22] (Intel Corporation) S5 iaStorAV; C:\windows\System32\drivers\iaStorAV.sys [524784 2013-08-10] (Intel Corporation) S5 iaStorV; C:\windows\System32\drivers\iaStorV.sys [333664 2013-08-22] (Intel Corporation) S3 intaud_WaveExtensible; C:\windows\system32\drivers\intelaud.sys [32152 2014-10-28] (Intel Corporation) S5 intelide; C:\windows\System32\drivers\intelide.sys [16736 2013-08-22] (Microsoft Corporation) R5 intelpep; C:\windows\System32\drivers\intelpep.sys [36160 2014-10-13] (Microsoft Corporation) R3 IntelSST; C:\windows\system32\drivers\isstrtc.sys [257024 2014-10-28] (Intel(R) Corporation) R3 INVN_MotionApps; C:\windows\system32\DRIVERS\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation) S5 isapnp; C:\windows\System32\drivers\isapnp.sys [48480 2013-08-22] (Microsoft Corporation) R3 iwdbus; C:\windows\System32\drivers\iwdbus.sys [23448 2014-10-28] (Intel Corporation) R5 KSecDD; C:\windows\System32\Drivers\ksecdd.sys [77632 2014-10-29] (Microsoft Corporation) R5 KSecPkg; C:\windows\System32\Drivers\ksecpkg.sys [147800 2015-06-28] (Microsoft Corporation) R3 LMDriver; C:\windows\System32\drivers\LMDriver.sys [18232 2014-10-28] (Acer Incorporated) S5 LSI_SAS; C:\windows\System32\drivers\lsi_sas.sys [94048 2013-08-22] (LSI Corporation) S5 LSI_SAS2; C:\windows\System32\drivers\lsi_sas2.sys [79712 2013-08-22] (LSI Corporation) S5 LSI_SAS3; C:\windows\System32\drivers\lsi_sas3.sys [68960 2013-08-22] (LSI Corporation) S5 LSI_SSS; C:\windows\System32\drivers\lsi_sss.sys [69472 2013-08-22] (LSI Corporation) S3 MAG_SensorDriver; C:\windows\System32\drivers\MAG_SensorDriver.sys [12288 2014-10-28] (Intel Corporation) R5 MBI; C:\windows\System32\drivers\MBI.sys [21968 2014-03-16] (Intel Corporation) S5 megasas; C:\windows\System32\drivers\megasas.sys [51552 2013-08-22] (LSI Corporation) S5 megasr; C:\windows\System32\drivers\megasr.sys [464736 2013-08-22] (LSI Corporation, Inc.) R5 mountmgr; C:\windows\System32\drivers\mountmgr.sys [82776 2015-07-16] (Microsoft Corporation) R5 msisadrv; C:\windows\System32\drivers\msisadrv.sys [15200 2013-08-22] (Microsoft Corporation) R5 Mup; C:\windows\System32\Drivers\mup.sys [54624 2013-08-22] (Microsoft Corporation) S5 mvumis; C:\windows\System32\drivers\mvumis.sys [58208 2013-08-22] (Marvell Semiconductor, Inc.) R5 NDIS; C:\windows\System32\drivers\ndis.sys [869720 2015-07-15] (Microsoft Corporation) S5 nvraid; C:\windows\System32\drivers\nvraid.sys [120160 2013-08-22] (NVIDIA Corporation) S5 nvstor; C:\windows\System32\drivers\nvstor.sys [141664 2013-08-22] (NVIDIA Corporation) S5 nv_agp; C:\windows\System32\drivers\nv_agp.sys [107872 2013-08-22] (Microsoft Corporation) R3 ov2722; C:\windows\System32\drivers\ov2722.sys [49152 2014-10-28] (Intel Corporation) R5 partmgr; C:\windows\System32\drivers\partmgr.sys [68416 2014-10-15] (Microsoft Corporation) R5 pci; C:\windows\System32\drivers\pci.sys [211776 2014-07-24] (Microsoft Corporation) S5 pciide; C:\windows\System32\drivers\pciide.sys [14176 2013-08-22] (Microsoft Corporation) S5 pcmcia; C:\windows\System32\drivers\pcmcia.sys [98656 2013-08-22] (Microsoft Corporation) R5 pcw; C:\windows\System32\drivers\pcw.sys [42848 2013-08-22] (Microsoft Corporation) R5 pdc; C:\windows\System32\drivers\pdc.sys [76096 2014-10-13] (Microsoft Corporation) R3 PMIC; C:\windows\System32\drivers\PMIC.sys [48128 2014-03-16] (Intel Corporation) R3 RadioShim; C:\windows\System32\drivers\RadioShim.sys [13112 2014-10-28] (Acer Incorporated) R5 rdyboost; C:\windows\System32\drivers\rdyboost.sys [198488 2014-03-18] (Microsoft Corporation) R3 rtii2sac; C:\windows\system32\DRIVERS\rtii2sac.sys [174808 2014-10-28] (Realtek Semiconductor Corp.) R3 RtkUart; C:\windows\System32\drivers\RtkUart.sys [507608 2014-10-28] (Realtek Semiconductor Corporation) R3 RtlWlans; C:\windows\system32\DRIVERS\rtwlans.sys [3094544 2015-05-13] (Realtek Semiconductor Corporation ) S5 sbp2port; C:\windows\System32\drivers\sbp2port.sys [90464 2013-08-22] (Microsoft Corporation) S3 SensorFusion; C:\windows\System32\drivers\HIDFusion.sys [52736 2014-10-28] (Intel Corporation) R3 SensorsServiceDriver; C:\windows\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation) S5 sisagp; C:\windows\System32\drivers\sisagp.sys [54624 2013-08-22] (Microsoft Corporation) S5 SiSRaid2; C:\windows\System32\drivers\SiSRaid2.sys [41312 2013-08-22] (Silicon Integrated Systems Corp.) S5 SiSRaid4; C:\windows\System32\drivers\sisraid4.sys [79200 2013-08-22] (Silicon Integrated Systems) R5 spaceport; C:\windows\System32\drivers\spaceport.sys [362304 2014-10-29] (Microsoft Corporation) S5 stexstor; C:\windows\System32\drivers\stexstor.sys [26976 2013-08-22] (Promise Technology, Inc.) S5 storahci; C:\windows\System32\drivers\storahci.sys [90976 2013-08-22] (Microsoft Corporation) S5 storflt; C:\windows\System32\drivers\vmstorfl.sys [44688 2014-10-29] (Microsoft Corporation) S5 stornvme; C:\windows\System32\drivers\stornvme.sys [47960 2014-03-18] (Microsoft Corporation) S5 storvsc; C:\windows\System32\drivers\storvsc.sys [42304 2013-08-22] (Microsoft Corporation) R3 SynRMIHID; C:\windows\System32\drivers\SynRMIHID.sys [36080 2014-02-20] (Synaptics Incorporated) R5 Tcpip; C:\windows\System32\drivers\tcpip.sys [1853272 2015-06-11] (Microsoft Corporation) R3 TXEI; C:\windows\System32\drivers\TXEI.sys [75792 2014-01-10] (Intel Corporation) S5 uagp35; C:\windows\System32\drivers\uagp35.sys [58720 2013-08-22] (Microsoft Corporation) S5 uliagpkx; C:\windows\System32\drivers\uliagpkx.sys [59744 2013-08-22] (Microsoft Corporation) R5 vdrvroot; C:\windows\System32\drivers\vdrvroot.sys [34656 2013-08-22] (Microsoft Corporation) S5 viaagp; C:\windows\System32\drivers\viaagp.sys [56160 2013-08-22] (Microsoft Corporation) S5 viaide; C:\windows\System32\drivers\viaide.sys [18272 2013-08-22] (VIA Technologies, Inc.) S5 vmbus; C:\windows\System32\drivers\vmbus.sys [91792 2014-10-29] (Microsoft Corporation) R5 volmgr; C:\windows\System32\drivers\volmgr.sys [58720 2013-08-22] (Microsoft Corporation) R5 volmgrx; C:\windows\System32\drivers\volmgrx.sys [311136 2013-08-22] (Microsoft Corporation) R5 volsnap; C:\windows\System32\drivers\volsnap.sys [264512 2014-06-19] (Microsoft Corporation) S5 vsmraid; C:\windows\System32\drivers\vsmraid.sys [148832 2013-08-22] (VIA Technologies Inc.,Ltd) S5 VSTXRAID; C:\windows\System32\drivers\vstxraid.sys [276832 2013-08-22] (VIA Corporation) S5 WdBoot; C:\windows\System32\drivers\WdBoot.sys [38928 2015-07-07] (Microsoft Corporation) R5 Wdf01000; C:\windows\System32\drivers\Wdf01000.sys [614720 2013-08-22] (Microsoft Corporation) R5 WdFilter; C:\windows\System32\drivers\WdFilter.sys [233304 2015-07-07] (Microsoft Corporation) R2 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [84824 2015-07-07] (Microsoft Corporation) R5 WFPLWFS; C:\windows\System32\DRIVERS\wfplwfs.sys [69440 2014-10-29] (Microsoft Corporation) R5 Wof; C:\windows\system32\Drivers\Wof.sys [138584 2014-03-13] (Microsoft Corporation) R3 WUDFSensorLP; C:\windows\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation) R3 WUDFWpdMtp; C:\windows\system32\DRIVERS\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-08-20 16:01 - 2015-08-20 16:01 - 00000000 ____D C:\FRST 2015-08-20 16:00 - 2015-08-20 16:01 - 01677312 _____ (Farbar) C:\Users\Michasia\Downloads\FRST (1).exe 2015-08-20 15:55 - 2015-08-20 15:55 - 00001133 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-08-20 15:55 - 2015-08-20 15:55 - 00001121 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-08-20 15:54 - 2015-08-20 15:55 - 00000000 ____D C:\Program Files\Mozilla Firefox 2015-08-20 13:49 - 2015-08-11 02:20 - 19871232 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll 2015-08-19 17:18 - 2015-08-19 17:18 - 48265157 _____ C:\Users\Michasia\Downloads\WLAN_Broadcom_32bit_5.100.82.95.ZIP 2015-08-19 17:06 - 2015-08-19 17:06 - 77761996 _____ C:\Users\Michasia\Downloads\QCA_WLAN_Driver_1.0.0.1.ZIP 2015-08-18 20:40 - 2015-08-18 21:06 - 00033545 _____ C:\Users\Michasia\Desktop\adopcja aaa.odt 2015-08-12 21:25 - 2015-07-15 00:04 - 00869720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys 2015-08-12 21:25 - 2015-07-14 23:59 - 00393560 _____ (Microsoft Corporation) C:\windows\system32\netcfgx.dll 2015-08-12 21:25 - 2015-06-12 18:36 - 15159296 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.dll 2015-08-12 21:24 - 2015-07-29 01:28 - 00024240 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe 2015-08-12 21:24 - 2015-07-28 16:26 - 00952320 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll 2015-08-12 21:24 - 2015-07-28 16:26 - 00934400 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll 2015-08-12 21:24 - 2015-07-28 16:26 - 00635392 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll 2015-08-12 21:24 - 2015-07-28 16:26 - 00598528 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll 2015-08-12 21:24 - 2015-07-28 16:26 - 00345600 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll 2015-08-12 21:24 - 2015-07-28 16:26 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll 2015-08-12 21:24 - 2015-07-07 11:45 - 00233304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdFilter.sys 2015-08-12 21:24 - 2015-07-07 11:45 - 00084824 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdNisDrv.sys 2015-08-12 21:24 - 2015-07-07 11:45 - 00038928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdBoot.sys 2015-08-12 21:24 - 2015-06-11 21:26 - 01853272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys 2015-08-12 21:24 - 2015-06-09 20:17 - 00411133 _____ C:\windows\system32\ApnDatabase.xml 2015-08-12 21:24 - 2014-11-10 19:47 - 00286528 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS 2015-08-11 20:43 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-08-11 20:21 - 2015-07-29 16:23 - 01559552 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll 2015-08-11 20:21 - 2015-07-29 16:20 - 01088000 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll 2015-08-11 20:21 - 2015-07-24 19:27 - 03527680 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys 2015-08-11 20:21 - 2015-07-24 19:27 - 00301568 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll 2015-08-11 20:21 - 2015-07-24 19:23 - 00035840 _____ (Adobe Systems) C:\windows\system32\atmlib.dll 2015-08-11 20:21 - 2015-07-16 02:34 - 01469456 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll 2015-08-11 20:21 - 2015-07-16 02:33 - 05767000 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe 2015-08-11 20:21 - 2015-07-16 02:33 - 00082776 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys 2015-08-11 20:21 - 2015-07-10 18:53 - 00909824 _____ (Microsoft Corporation) C:\windows\system32\sysmain.dll 2015-08-11 20:21 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll 2015-08-11 20:21 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll 2015-08-11 20:20 - 2015-07-19 04:03 - 00128568 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe 2015-08-11 20:20 - 2015-07-18 20:37 - 03065856 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll 2015-08-11 20:20 - 2015-07-18 20:29 - 00124928 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll 2015-08-11 20:20 - 2015-07-18 20:29 - 00029696 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe 2015-08-11 20:20 - 2015-07-18 20:28 - 00081920 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll 2015-08-11 20:20 - 2015-07-18 20:27 - 00334336 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll 2015-08-11 20:20 - 2015-07-18 20:10 - 02162176 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll 2015-08-11 20:20 - 2015-07-18 20:09 - 00721920 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll 2015-08-11 20:20 - 2015-07-14 05:21 - 01901776 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll 2015-08-11 20:20 - 2015-07-13 21:27 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\basesrv.dll 2015-08-11 20:20 - 2015-07-13 21:27 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll 2015-08-11 20:20 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll 2015-08-11 20:20 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll 2015-08-11 20:20 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\windows\system32\notepad.exe 2015-08-11 20:20 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\windows\notepad.exe 2015-08-11 20:19 - 2015-07-16 21:51 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll 2015-08-11 20:19 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\windows\system32\html.iec 2015-08-11 20:19 - 2015-07-16 21:45 - 02279424 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll 2015-08-11 20:19 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll 2015-08-11 20:19 - 2015-07-16 21:39 - 00664064 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll 2015-08-11 20:19 - 2015-07-16 21:13 - 00880128 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll 2015-08-11 20:19 - 2015-07-16 21:12 - 04520448 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll 2015-08-11 20:19 - 2015-07-16 21:10 - 12856832 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll 2015-08-11 20:19 - 2015-07-16 21:06 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll 2015-08-11 20:19 - 2015-07-16 20:52 - 01048576 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll 2015-08-11 20:19 - 2015-07-16 20:42 - 01951232 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll 2015-08-11 20:19 - 2015-07-16 20:38 - 01310720 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll 2015-08-11 20:19 - 2015-07-16 20:37 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll 2015-08-11 20:19 - 2015-07-10 18:47 - 01556992 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll 2015-08-10 21:15 - 2015-08-10 21:15 - 19648448 _____ (Microsoft Corporation) C:\Users\Michasia\Downloads\MediaCreationToolx64.exe 2015-08-09 15:05 - 2015-08-09 15:05 - 00146224 _____ C:\windows\Minidump\080915-18093-01.dmp 2015-08-09 13:55 - 2015-08-09 13:55 - 00146224 _____ C:\windows\Minidump\080915-17203-01.dmp 2015-08-09 09:23 - 2015-08-09 09:23 - 00146224 _____ C:\windows\Minidump\080915-25296-01.dmp 2015-08-07 18:28 - 2015-08-07 18:28 - 00000000 ____D C:\Users\Michasia\AppData\Local\CareCenter 2015-08-07 18:27 - 2015-08-07 18:27 - 00001768 _____ C:\Users\Public\Desktop\Acer Care Center.lnk 2015-08-06 18:55 - 2015-08-06 18:55 - 00000000 ____D C:\Users\Michasia\AppData\Roaming\LibreOffice 2015-08-06 18:54 - 2015-08-06 18:54 - 00001450 _____ C:\Users\Public\Desktop\LibreOffice 5.0.lnk 2015-08-06 18:54 - 2015-08-06 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0 2015-08-06 18:51 - 2015-08-06 18:54 - 00000000 ____D C:\Program Files\LibreOffice 5 2015-08-06 18:44 - 2015-08-06 18:49 - 220827648 _____ C:\Users\Michasia\Downloads\LibreOffice_5.0.0_Win_x86.msi 2015-08-06 08:19 - 2015-08-06 08:19 - 00146176 _____ C:\windows\Minidump\080615-17531-01.dmp 2015-07-31 15:06 - 2015-07-31 15:06 - 00970912 _____ (Microsoft Corporation) C:\windows\system32\msvcr120.dll 2015-07-31 15:06 - 2015-07-31 15:06 - 00455328 _____ (Microsoft Corporation) C:\windows\system32\msvcp120.dll 2015-07-31 15:06 - 2015-07-31 15:06 - 00247984 _____ (Microsoft Corporation) C:\windows\system32\vccorlib120.dll 2015-07-25 12:04 - 2015-07-25 12:04 - 00797434 _____ (2048 Desktop, Inc. ) C:\Users\Michasia\Downloads\2048-desktop-installer.exe 2015-07-25 08:47 - 2015-07-25 08:47 - 00146224 _____ C:\windows\Minidump\072515-18343-01.dmp ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-08-20 16:02 - 2013-08-22 10:17 - 00000000 ____D C:\windows\system32\sru 2015-08-20 16:01 - 2015-05-24 21:06 - 00020867 _____ C:\Users\Michasia\Downloads\FRST.txt 2015-08-20 15:58 - 2014-10-28 16:01 - 01944135 _____ C:\windows\WindowsUpdate.log 2015-08-20 15:57 - 2015-05-14 22:24 - 00000930 _____ C:\windows\Tasks\Adobe Flash Player Updater.job 2015-08-20 15:55 - 2015-05-13 19:48 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2015-08-20 13:56 - 2014-10-28 15:37 - 00808708 _____ C:\windows\system32\perfh015.dat 2015-08-20 13:56 - 2014-10-28 15:37 - 00164328 _____ C:\windows\system32\perfc015.dat 2015-08-20 13:56 - 2014-03-18 09:40 - 01825074 _____ C:\windows\system32\PerfStringBackup.INI 2015-08-20 13:50 - 2014-03-18 09:32 - 00011526 _____ C:\windows\PFRO.log 2015-08-20 13:50 - 2013-08-22 10:05 - 00000000 ____D C:\windows\CbsTemp 2015-08-20 13:50 - 2013-08-22 09:23 - 00026688 _____ C:\windows\setupact.log 2015-08-20 13:50 - 2013-08-22 09:23 - 00000006 ____H C:\windows\Tasks\SA.DAT 2015-08-18 21:58 - 2013-08-22 10:17 - 00000000 ____D C:\windows\Microsoft.NET 2015-08-18 21:06 - 2015-05-16 21:56 - 00108032 ___SH C:\Users\Michasia\Desktop\Thumbs.db 2015-08-18 19:43 - 2013-08-22 10:17 - 00000000 ____D C:\windows\AppReadiness 2015-08-18 19:34 - 2013-08-22 10:17 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-08-18 19:34 - 2013-08-22 10:17 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-08-18 19:34 - 2013-08-22 10:17 - 00000000 ____D C:\Program Files\Windows Defender 2015-08-18 19:33 - 2015-05-14 12:12 - 00000000 ____D C:\windows\system32\appraiser 2015-08-18 19:33 - 2015-05-14 12:11 - 00000000 ___SD C:\windows\system32\CompatTel 2015-08-15 11:43 - 2014-07-31 05:27 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer 2015-08-15 11:41 - 2013-08-22 08:13 - 00262144 ___SH C:\windows\system32\config\BBI 2015-08-13 14:44 - 2013-08-22 09:22 - 00401008 _____ C:\windows\system32\FNTCACHE.DAT 2015-08-12 22:01 - 2015-05-14 08:31 - 00000000 ____D C:\windows\system32\MRT 2015-08-12 22:01 - 2014-10-28 15:36 - 00000000 ____D C:\windows\system32\Drivers\pl-PL 2015-08-12 22:01 - 2013-08-22 10:17 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-12 22:01 - 2013-08-22 10:17 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-12 21:56 - 2015-05-14 08:31 - 129304528 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe 2015-08-09 16:02 - 2015-05-13 19:07 - 00000000 ____D C:\Users\Michasia 2015-08-09 15:05 - 2015-05-14 08:19 - 00000000 ____D C:\windows\Minidump 2015-08-09 11:47 - 2013-08-22 10:17 - 00000000 ____D C:\windows\system32\NDF 2015-08-09 09:39 - 2015-05-14 13:20 - 00000000 ____D C:\Users\Michasia\AppData\Local\CrashDumps 2015-08-08 15:55 - 2015-05-14 12:19 - 00794088 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe 2015-08-08 15:55 - 2015-05-14 12:19 - 00179688 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl 2015-08-07 18:28 - 2014-07-31 05:47 - 00000000 ___HD C:\OEM 2015-08-07 18:27 - 2014-07-31 05:27 - 00000000 ____D C:\ProgramData\acer 2015-08-07 18:27 - 2014-07-31 05:27 - 00000000 ____D C:\Program Files\Acer 2015-07-25 12:10 - 2015-05-24 22:52 - 00060416 ___SH C:\Users\Michasia\Downloads\Thumbs.db 2015-07-25 08:50 - 2015-05-14 12:12 - 00000000 ___SD C:\windows\system32\GWX 2015-07-24 20:32 - 2015-06-21 16:15 - 00000000 ____D C:\Users\Michasia\AppData\Roaming\Foxit Software Some files in TEMP: ==================== C:\Users\Michasia\AppData\Local\Temp\Foxit PhantomPDF Updater.exe ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\windows\explorer.exe => File is digitally signed C:\windows\system32\winlogon.exe => File is digitally signed C:\windows\system32\wininit.exe => File is digitally signed C:\windows\system32\svchost.exe => File is digitally signed C:\windows\system32\services.exe => File is digitally signed C:\windows\system32\User32.dll => File is digitally signed C:\windows\system32\userinit.exe => File is digitally signed C:\windows\system32\rpcss.dll => File is digitally signed C:\windows\system32\dnsapi.dll => File is digitally signed C:\windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-08-18 21:56 ==================== End of log ============================