Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja: 15-11-2017 Uruchomiony przez InsideLucy (administrator) DESKTOP-7NUQO9K (15-11-2017 20:13:56) Uruchomiony z C:\Users\InsideLucy\Downloads Załadowane profile: InsideLucy (Dostępne profile: InsideLucy & Gościem bądź) Platform: Microsoft Windows 10 Pro Wersja 1703 15063.674 (X86) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe () C:\ProgramData\MobileBrServ\mbbService.exe () C:\ProgramData\DatacardService\HWDeviceService.exe () C:\ProgramData\MobileBrServ\mbbService.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe () C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe (Disc Soft Ltd) D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Digital Wave Ltd.) C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe (Electronic Arts) C:\Program Files\Origin\OriginWebHelperService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Electronic Arts) C:\Program Files\Origin\Origin.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (Disc Soft Ltd) D:\Program Files\DAEMON Tools Lite\DTAgent.exe (Digital Wave Ltd) C:\Program Files\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe () C:\Program Files\Origin\QtWebEngineProcess.exe () C:\Program Files\Origin\QtWebEngineProcess.exe (DeltaMP) D:\Users\InsideLucy\AppData\Local\DMP Services\Delta Media Player\dmplayer.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [485280 2017-03-18] (Microsoft Corporation) HKLM\...\Run: [ProductUpdater] => C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [75776 2016-10-27] () HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [1803976 2016-12-09] (NVIDIA Corporation) HKU\S-1-5-21-2175494843-2769026729-1580351534-1001\...\Run: [GG] => C:\Users\InsideLucy\AppData\Local\GG\Application\gghub.exe [4078144 2016-07-04] (GG Network S.A.) HKU\S-1-5-21-2175494843-2769026729-1580351534-1001\...\Run: [EADM] => C:\Program Files\Origin\Origin.exe [3098952 2017-11-02] (Electronic Arts) HKU\S-1-5-21-2175494843-2769026729-1580351534-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7348440 2017-03-03] (Piriform Ltd) HKU\S-1-5-21-2175494843-2769026729-1580351534-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [3777728 2017-02-06] (Disc Soft Ltd) HKU\S-1-5-21-2175494843-2769026729-1580351534-1001\...\Run: [vidnotifier.exe] => C:\Program Files\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1299944 2017-10-31] (Digital Wave Ltd) HKU\S-1-5-21-2175494843-2769026729-1580351534-1001\...\MountPoints2: {e40f492c-194f-11e7-bdc3-0c5b8f279a64} - "J:\Autorun.exe" HKU\S-1-5-21-2175494843-2769026729-1580351534-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [29184 2017-03-18] (Microsoft Corporation) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{2991544c-a35a-4045-bc52-cb3a7630584e}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{74e352ea-9297-4b54-8d00-0abc1dce65f0}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{96ef7a7d-1eef-4d2a-9cd7-3f56fb00d96f}: [DhcpNameServer] 212.2.96.51 212.2.96.52 Tcpip\..\Interfaces\{facd4ab6-d960-4617-9441-f8732e426ad5}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = FireFox: ======== FF DefaultProfile: ve6ikrfo.default FF ProfilePath: C:\Users\InsideLucy\AppData\Roaming\Mozilla\Firefox\Profiles\ve6ikrfo.default [2017-11-15] FF Extension: (Video DownloadHelper) - C:\Users\InsideLucy\AppData\Roaming\Mozilla\Firefox\Profiles\ve6ikrfo.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-01-31] [Legacy] FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation) FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.2.4 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.6 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN) Chrome: ======= CHR Profile: C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default [2017-11-15] CHR Extension: (Tłumacz Google) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-10-20] CHR Extension: (Prezentacje) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13] CHR Extension: (Dokumenty) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Dysk Google) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-28] CHR Extension: (YouTube) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-28] CHR Extension: (Adblock Plus) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-10-05] CHR Extension: (Wikiwand: Wikipedia Modernized) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\emffkefkbkpkgpdeeooapgaicgmcbolj [2016-07-28] CHR Extension: (Eliminator Slajdów) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\eplekpmdodlgejgogbojajncdlapamff [2017-09-17] CHR Extension: (Arkusze) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13] CHR Extension: (Word Online) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2016-09-11] CHR Extension: (Dokumenty Google offline) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-28] CHR Extension: (Planner 5D) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjfkgdpkecnmfcgfpfibpcnkeakahllc [2017-04-14] CHR Extension: (VoiceNote II - Speech to text) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfknjgplnkgjihghcidajejfmldhibfm [2017-02-08] CHR Extension: (Last.fm Scrobbler) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhinaapppaileiechjoiifaancjggfjm [2017-11-15] CHR Extension: (Google Keep – notatki i listy) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2017-11-14] CHR Extension: (Save to Facebook) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2017-01-09] CHR Extension: (Blur) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmlijodakjghbhlfbecbpilfdacmlim [2017-09-10] CHR Extension: (Video DownloadHelper) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2017-01-09] CHR Extension: (Rozszerzenie Google Keep do Chrome) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2016-08-08] CHR Extension: (Video Search) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\mafmbfcmgifkdahieiddfiebgaabkdpd [2017-11-03] CHR Extension: (Office Online) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2017-09-13] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22] CHR Extension: (Mój motyw Chrome) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2017-04-03] CHR Extension: (Gmail) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-28] CHR Extension: (Chrome Media Router) - C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-05] CHR Profile: C:\Users\InsideLucy\AppData\Local\Google\Chrome\User Data\System Profile [2017-07-23] ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 DigitalWave.Update.Service; C:\Program Files\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-10-31] (Digital Wave Ltd.) R3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1142464 2017-02-06] (Disc Soft Ltd) R2 Huawei E3372; C:\ProgramData\MobileBrServ\mbbservice.exe [242264 2015-09-23] () R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] () R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [242264 2015-09-23] () S2 Mobile Partner. RunOuc; D:\Program Files\Mobile Partner\UpdateDog\ouc.exe [655712 2017-01-09] () S3 Origin Client Service; C:\Program Files\Origin\OriginClientService.exe [2123104 2017-11-02] (Electronic Arts) R2 Origin Web Helper Service; C:\Program Files\Origin\OriginWebHelperService.exe [3002728 2017-11-02] (Electronic Arts) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2545848 2017-03-19] (Microsoft Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [265352 2017-03-18] (Microsoft Corporation) S3 wifimansvc; D:\Program Files\Mobile Partner\eap\wifimansvc.exe [598528 2017-01-09] () [Brak podpisu cyfrowego] R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [82488 2017-07-14] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [26168 2017-04-07] (Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [40504 2017-04-07] (Disc Soft Ltd) R1 MpKsl4f67d0b6; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{09A9696B-51C1-4C1E-80A3-E4547A0112E6}\MpKsl4f67d0b6.sys [49504 2017-11-15] (Microsoft Corporation) R1 MpKsld32c2812; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F376F792-75B4-4B54-9550-7845CB2886FA}\MpKsld32c2812.sys [49504 2017-10-11] (Microsoft Corporation) S3 NvStUSB; C:\WINDOWS\System32\drivers\nvstusb.sys [444128 2015-11-19] (NVIDIA Corporation) R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [504832 2017-03-18] (Realtek ) S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37464 2017-03-18] (Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [243104 2017-03-18] (Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [96672 2017-03-18] (Microsoft Corporation) R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [160256 2017-03-18] (Microsoft Corporation) S3 xhunter1; C:\WINDOWS\xhunter1.sys [31128 2017-03-25] (Wellbia.com Co., Ltd.) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-11-15 20:13 - 2017-11-15 20:15 - 000015022 _____ C:\Users\InsideLucy\Downloads\FRST.txt 2017-11-15 20:10 - 2017-11-15 20:13 - 000000000 ____D C:\FRST 2017-11-15 20:09 - 2017-11-15 20:09 - 001788928 _____ (Farbar) C:\Users\InsideLucy\Downloads\FRST.exe 2017-11-14 06:26 - 2017-11-14 06:26 - 000000000 ____D C:\Users\InsideLucy\AppData\Roaming\LibreOffice 2017-11-14 06:25 - 2017-11-14 06:25 - 000000826 _____ C:\Users\Public\Desktop\LibreOffice 5.4.lnk 2017-11-14 06:25 - 2017-11-14 06:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.4 2017-11-14 06:16 - 2017-11-14 06:16 - 000018751 _____ C:\Users\InsideLucy\Downloads\LibreOffice_5.4.3_Win_x86.msi.torrent 2017-11-14 06:14 - 2017-11-14 06:14 - 000344357 _____ C:\Users\InsideLucy\Downloads\ERGONOMIA.odt 2017-11-09 18:18 - 2017-11-09 18:19 - 000153673 _____ C:\Users\InsideLucy\Downloads\ALLEGRO00123817CHA (1).pdf 2017-11-09 17:43 - 2017-11-09 17:49 - 000000000 ____D C:\Users\InsideLucy\Desktop\Nowy folder (2) 2017-11-08 08:28 - 2017-11-15 20:10 - 000000000 ____D C:\Users\InsideLucy\AppData\Roaming\Delta Media Player 2017-11-08 08:27 - 2017-11-08 08:27 - 000001217 _____ C:\Users\InsideLucy\Desktop\Delta Media Player.lnk 2017-11-08 08:27 - 2017-11-08 08:27 - 000000000 ____D C:\Users\InsideLucy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Delta Media Player 2017-11-08 08:25 - 2017-11-08 08:25 - 040134073 _____ (Delta Media Team (DMT)) C:\Users\InsideLucy\Downloads\DeltaMediaPlayer-1.17.exe 2017-11-06 18:14 - 2017-11-06 18:14 - 000153673 _____ C:\Users\InsideLucy\Downloads\ALLEGRO00123817CHA.pdf 2017-11-04 20:06 - 2017-11-04 20:06 - 000000123 _____ C:\Users\InsideLucy\Desktop\Xiaomi Redmi Note 4 - etui na telefon, pokrowiec z klapką - łapacz snów etno - etuo.pl.url 2017-11-04 18:51 - 2017-11-04 18:51 - 000955848 _____ C:\Users\InsideLucy\Downloads\Aktualna lista leków refundowanych z 01.11.2017.pdf.pdf 2017-11-04 12:29 - 2017-11-04 12:29 - 000440120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll 2017-11-04 12:29 - 2017-11-04 12:29 - 000267592 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll 2017-11-04 12:29 - 2017-11-04 12:29 - 000244032 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll 2017-11-04 12:29 - 2017-11-04 12:29 - 000083792 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll 2017-11-03 18:44 - 2017-11-03 18:57 - 000000000 ____D C:\Users\InsideLucy\Desktop\Nowy folder 2017-11-02 21:01 - 2017-11-02 21:01 - 000000000 ____D C:\Users\InsideLucy\Desktop\Karaoke 2017-11-02 20:51 - 2017-11-02 20:51 - 000001370 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2017-11-02 20:51 - 2017-11-02 20:51 - 000001060 _____ C:\Users\Public\Desktop\Free YouTube To MP3 Converter.lnk 2017-10-29 14:35 - 2017-10-29 15:24 - 977929580 _____ C:\Users\InsideLucy\Desktop\Auta 3 HD Cars 3 (2017) online - eKino-tv.pl.mp4 2017-10-28 10:13 - 2017-10-28 10:15 - 052344137 _____ C:\Users\InsideLucy\Downloads\Kwieciński, Śliwierski - Pedagogika.pdf 2017-10-28 10:10 - 2017-10-28 10:10 - 000053269 _____ C:\Users\InsideLucy\Downloads\racjonalista_3200.pdf 2017-10-28 10:07 - 2017-10-28 10:07 - 000376444 _____ C:\Users\InsideLucy\Downloads\Szyszkowska Maria - W opozycji do przeciętności, czyli własna droga ku wolności.pdf 2017-10-28 10:07 - 2017-10-28 10:07 - 000376444 _____ C:\Users\InsideLucy\Desktop\Maria Szyszkowska - W opozycji do przeciętności, czyli własna droga ku wolności.pdf 2017-10-28 10:04 - 2017-10-28 10:04 - 007648086 _____ C:\Users\InsideLucy\Desktop\Maria Szyszkowska - Dzieje filozofii.pdf 2017-10-28 10:01 - 2017-10-28 10:01 - 000008040 _____ C:\Users\InsideLucy\Downloads\dzieje filozofii maria szyszkowska chomikuj.zip 2017-10-23 16:41 - 2017-10-22 10:24 - 016470466 _____ C:\Users\InsideLucy\Desktop\B.N.WPs- BHPiERG.( PAK- I.B+II.E ) W+pyt. pol. 2017.pptx ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-11-15 19:16 - 2017-03-18 19:23 - 000000000 ____D C:\WINDOWS\rescache 2017-11-15 18:35 - 2017-03-18 19:14 - 000000000 ____D C:\WINDOWS\CbsTemp 2017-11-15 17:53 - 2017-07-14 17:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2017-11-15 17:53 - 2017-03-18 19:23 - 000000000 ____D C:\WINDOWS\AppReadiness 2017-11-15 17:50 - 2017-02-08 13:44 - 000000000 ____D C:\Users\InsideLucy\AppData\Roaming\Origin 2017-11-15 17:49 - 2017-02-08 13:38 - 000000000 ____D C:\ProgramData\Origin 2017-11-14 18:02 - 2017-03-18 19:23 - 000000000 ___HD C:\Program Files\WindowsApps 2017-11-14 07:25 - 2017-04-07 20:58 - 000000000 ____D C:\Users\InsideLucy\AppData\Roaming\uTorrent 2017-11-14 06:17 - 2017-04-07 20:59 - 000000000 ____D C:\Users\InsideLucy\AppData\LocalLow\uTorrent 2017-11-12 21:00 - 2017-07-14 17:20 - 000000000 ____D C:\Users\InsideLucy 2017-11-09 17:41 - 2017-03-18 19:21 - 000000000 ____D C:\WINDOWS\INF 2017-11-09 06:22 - 2016-07-28 03:46 - 000002426 _____ C:\Users\InsideLucy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-11-09 06:22 - 2016-07-28 03:46 - 000000000 ___RD C:\Users\InsideLucy\OneDrive 2017-11-07 22:03 - 2017-02-08 13:43 - 000000000 ____D C:\Program Files\Origin 2017-11-05 02:40 - 2017-03-18 19:25 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2017-11-05 02:40 - 2017-03-18 19:25 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2017-11-03 19:07 - 2017-03-25 16:01 - 000000000 ____D C:\Users\InsideLucy\Desktop\Wszystko 2017-11-02 20:53 - 2016-07-28 18:55 - 000000000 ____D C:\Users\InsideLucy\AppData\Roaming\DVDVideoSoft 2017-11-02 20:51 - 2016-07-28 22:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft 2017-11-02 20:51 - 2016-07-28 22:00 - 000000000 ____D C:\Program Files\Common Files\DVDVideoSoft 2017-11-02 20:50 - 2017-02-21 23:00 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files 2017-10-29 17:19 - 2017-07-14 17:33 - 002127188 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-10-29 17:19 - 2017-03-19 10:34 - 000959102 _____ C:\WINDOWS\system32\perfh015.dat 2017-10-29 17:19 - 2017-03-19 10:34 - 000200402 _____ C:\WINDOWS\system32\perfc015.dat 2017-10-23 16:44 - 2016-07-28 03:43 - 000000000 ____D C:\Users\InsideLucy\AppData\Local\Packages 2017-10-20 04:34 - 2017-01-31 11:36 - 000000000 ____D C:\Users\InsideLucy\AppData\LocalLow\Mozilla Niektóre pliki w TEMP: ==================== 2017-09-23 07:34 - 2017-09-23 07:34 - 030950664 _____ () C:\Users\InsideLucy\AppData\Local\Temp\vlc-2.2.6-win32.exe ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2017-11-11 21:57 ==================== Koniec FRST.txt ============================