Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja: 14-08-2019 Uruchomiony przez Janusz (administrator) NOWY_2 (21-08-2019 11:04:08) Uruchomiony z C:\Users\Janusz\Pulpit Załadowane profile: Janusz & UpdatusUser (Dostępne profile: Janusz & UpdatusUser & Gość) Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Opera) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files\ASUS\AASP\1.00.32\aaCenter.exe () [Brak podpisu cyfrowego] C:\Windows\Samsung\PanelMgr\SSMMgr.exe () [Brak podpisu cyfrowego] C:\Windows\System32\ASGT.exe (ActMask Group Co., Ltd -> ActMask Co.,Ltd - hxxp://WWW.ALL2PDF.COM) C:\Windows\System32\PrintCtrl.exe (ActMask Group Co., Ltd -> ActMask Co.,Ltd - hxxp://www.all2pdf.com) C:\Windows\System32\PrintDisp.exe (ActMask Group Co., Ltd -> ActMask Co.,Ltd - hxxp://www.all2pdf.com) C:\Windows\System32\PrintDisp.exe (Adobe Inc. -> Adobe Systems) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Ashampoo GmbH & Co. KG -> ) C:\Program Files\Ashampoo\Ashampoo HDD Control 3\HDDC3Service.exe (Ashampoo GmbH & Co. KG -> ) C:\Program Files\Ashampoo\Ashampoo UnInstaller 8\UI8Guard.exe (Cambridge Silicon Radio Ltd. -> ) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Origin\OriginWebHelperService.exe (Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\Janusz\AppData\Local\Microsoft\BingSvc\BingSvc.exe (Microsoft Dynamic Code Publisher -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vdsldr.exe (mst software GmbH, Germany) [Brak podpisu cyfrowego] C:\Program Files\Ashampoo\Ashampoo WinOptimizer 15\DfSdkS.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe (O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\DiskImage\oodiag.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.2.46\NortonSecurity.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.2.46\NortonSecurity.exe (TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe ==================== Rejestr (filtrowane) =========================== CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0383E728-CE3D-47B8-BC0B-014CB2A11FBE} - System32\Tasks\{FF56B78C-B9E5-4A9C-B4E3-AF63CEDBB209} => C:\Program Files\Ashampoo\Ashampoo UnInstaller 8\UI8.exe [7269272 2019-01-17] (Ashampoo GmbH & Co. KG -> ) Task: {156D4D3E-535F-411C-B02D-E3934246D124} - System32\Tasks\{90F5ABFC-25B3-4CBB-8F49-ED222779C43A} => c:\program files\opera\launcher.exe [1348120 2019-08-07] (Opera Software AS -> Opera Software) Task: {15DF9CC0-0BB7-40B1-9C9E-F1FA6ED0F505} - System32\Tasks\{1EB704F1-8C18-48BD-AF81-AC3F7DFDEE0A} => G:\Pakiety\Creative_kamera\LCVP_PCDrv_US_1_03_02.exe Task: {1B48A8FB-2021-443D-B7BA-3CE759BBF625} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2016-08-27] (Google Inc -> Google Inc.) Task: {27C7F269-832E-40E6-A651-95676CBF62F8} - System32\Tasks\{88A16E42-5493-4CAD-8330-3CEE0D4772D3} => C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe Task: {291CF6D7-A0C7-4E55-B61F-5C02B0D1ED70} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.17.2.46\WSCStub.exe [1636648 2019-05-25] (Symantec Corporation -> Symantec Corporation) Task: {2CCF70CC-4DFF-4495-A34F-5FC835B8DCC6} - System32\Tasks\{38216176-E9D1-479B-A30B-77C3B4D52B0B} => F:\Setup.exe Task: {2E99FF2B-52A7-45C1-BD29-5D8E146BE6B2} - System32\Tasks\{3DB0440C-72B3-425D-AC2C-9C74AC942A80} => C:\Program Files\Canon\ZoomBrowser EX\Program\ZoomBrowser.exe [188416 2011-06-29] () [Brak podpisu cyfrowego] Task: {3370659B-F73C-4C0F-BCDB-FE5EDE025AF1} - System32\Tasks\{58DAA029-1797-4E88-9174-07638226EE27} => C:\Program Files\ASUS\AASP\1.00.32\AsRunHelp.exe [363008 2007-03-22] () [Brak podpisu cyfrowego] Task: {394875D6-4F5E-447D-8541-BD95631FC48C} - System32\Tasks\{79F5D266-605C-48EE-BA4B-83202CA077AE} => C:\Program Files\Ashampoo\Ashampoo UnInstaller 8\UI8.exe [7269272 2019-01-17] (Ashampoo GmbH & Co. KG -> ) Task: {46BB85AD-87DB-4ABA-9BEB-27C6B8753812} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [153752 2016-08-27] (Google Inc -> Google Inc.) Task: {4B7CD804-4A63-4951-BD7D-76932A0603FF} - System32\Tasks\{09EE4117-BFDA-4C13-83CF-5E3DE4B119FF} => c:\program files\opera\launcher.exe [1348120 2019-08-07] (Opera Software AS -> Opera Software) Task: {61B66CB7-6166-4296-A013-F84F30E9DAC4} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [1636648 2019-05-25] (Symantec Corporation -> Symantec Corporation) Task: {66AFDEE8-ED7B-4126-A7B4-B66458D2C328} - System32\Tasks\{C79C0476-0535-41D6-B756-8409C429F676} => C:\Windows\system32\pcalua.exe -a I:\Install.exe -d I:\ Task: {6CC50897-5EF2-40A0-ACAD-EF2A81BA9532} - System32\Tasks\{DF423E33-E98E-4C3C-9E70-3B0FEFE39A5C} => C:\Windows\system32\pcalua.exe -a G:\Pakiety\ASUS\AISuite\Acpi\AsAcpiIns.exe -d G:\Pakiety\ASUS\AISuite\Acpi Task: {7AABA3A8-CC74-42DA-A8AF-7843F126AC63} - System32\Tasks\{416DB4DC-655A-4AD7-BBF6-5DF16D6B82AB} => C:\Users\Janusz\Documents\ML-1660_PrintD\Application\SPANEL\PanelMgr\SSMMgr.exe [688128 2011-07-05] () [Brak podpisu cyfrowego] Task: {87B3AAF5-E342-4C56-A4C0-3F5D82A1865F} - System32\Tasks\{E93FEC1D-EFDE-4FC6-911B-45B8EA6EF15C} => C:\Program Files\ALLPlayer\ALLPlayer.exe [15390896 2018-06-12] (ALLPlayer Group -> ALLPlayer Group Ltd.) Task: {8A48D363-46AA-4C90-B2EF-AAEB460E3047} - System32\Tasks\{D69AEB6D-C23D-457C-9D2E-29440DB29367} => C:\Program Files\ASUS\AASP\1.00.32\AsRunHelp.exe [363008 2007-03-22] () [Brak podpisu cyfrowego] Task: {8C849ABA-7562-467B-8CE1-2BC38343909A} - System32\Tasks\{723CF158-6496-4743-973D-A91F44ADEFA9} => C:\Program Files\Ashampoo\Ashampoo UnInstaller 8\UI8.exe [7269272 2019-01-17] (Ashampoo GmbH & Co. KG -> ) Task: {961A35F1-672E-45B8-ADB1-7072BD1763EA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems) Task: {9749D769-1AA7-446B-A0A8-CAED43764D78} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd) Task: {9F69D255-B619-41D4-85CC-2BD8ECAB43F2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd) Task: {B27F66AF-9231-48F6-8EB3-5646C8DF41D1} - System32\Tasks\Norton Identity Safe\Norton Error Processor => C:\Program Files\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe Task: {B65B875E-4C1A-4056-82D3-BA45F609C15C} - System32\Tasks\{D52E610D-222A-45E5-9638-D83FBFB65726} => C:\Users\Janusz\Desktop\New_PC_Studio_1.5.1.10064_2.exe Task: {B8688F81-22F0-4457-83B2-67E887F73AD5} - System32\Tasks\Opera scheduled Autoupdate 1472307468 => C:\Program Files\Opera\launcher.exe [1348120 2019-08-07] (Opera Software AS -> Opera Software) Task: {BA24D31E-CB25-490C-870C-7FFF4285D5D1} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_192_pepper.exe [1452600 2019-05-18] (Adobe Inc. -> Adobe) Task: {BE89869E-3589-4B21-AB09-557BD329611F} - System32\Tasks\{61E2C78D-780A-4DDF-B55F-6048FEBA230A} => C:\Users\Janusz\Documents\ML-1660_PrintD\Application\SPANEL\PanelMgr\SSMMgr.exe [688128 2011-07-05] () [Brak podpisu cyfrowego] Task: {C0AE6C3C-3A4E-401E-9F58-5A392F8815FC} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-08-29] (Dropbox, Inc -> Dropbox, Inc.) Task: {C4328A29-0335-40B1-94CC-C7324C03183C} - System32\Tasks\{773F0B4C-2578-4F42-AE0B-692DEFEE43B1} => C:\Program Files\ASUS\AASP\1.00.32\AsRunHelp.exe [363008 2007-03-22] () [Brak podpisu cyfrowego] Task: {D8DFD290-3516-42DD-AA00-03CFDB0D7B70} - System32\Tasks\ASUS\ASUS RegRun Loader => C:\Program Files\ASUS\AASP\1.00.32\AsLoader.exe [363008 2007-03-22] () [Brak podpisu cyfrowego] Task: {DC21C300-59C1-416E-A577-29CC104993F1} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.17.2.46\SymErr.exe [90128 2019-05-25] (Symantec Corporation -> Symantec Corporation) Task: {DCD4ED30-3696-422A-848E-22F8A4600D88} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.17.2.46\SymErr.exe [90128 2019-05-25] (Symantec Corporation -> Symantec Corporation) Task: {E26472A2-CB33-44C0-B522-72DC370B3159} - System32\Tasks\{BEA6949D-E115-4029-84B8-DCAC5CACE11C} => C:\Users\Janusz\Desktop\New_PC_Studio_1.5.1.10064_2.exe Task: {E2F2A03B-8EC4-4193-A1AE-08BB92887575} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-08-29] (Dropbox, Inc -> Dropbox, Inc.) Task: {EF2E5049-5B87-4E06-8821-8AD18B4ACCC4} - System32\Tasks\ASUS\ASUS ACPI Service Provider => C:\Program Files\ASUS\AASP\1.00.32\aaCenter.exe [603648 2007-05-09] () [Brak podpisu cyfrowego] Task: {EFB553E9-069F-41DE-85AB-AC631F5E363F} - System32\Tasks\{3374D2A0-7EA8-45C4-8063-97638B4CD89C} => C:\Windows\system32\pcalua.exe -a D:\Zawór\bl\Launcher.exe -d D:\Zawór\bl Task: {F19820FD-9FF0-469E-831E-C902E151F777} - System32\Tasks\{D700CD71-87C5-4241-9F60-EF4F1606F684} => C:\Program Files\Opera\launcher.exe [1348120 2019-08-07] (Opera Software AS -> Opera Software) Task: {F58D455C-5A0F-44E7-ABBC-CF815E64406A} - System32\Tasks\Norton Identity Safe\Norton Error Analyzer => C:\Program Files\Norton Identity Safe\Engine\2014.7.11.42\SymErr.exe Task: {F936BEBD-7DA8-4C49-B6F7-194B25031B07} - System32\Tasks\{BDF4CC23-7CB2-4977-856D-91D3B394E0D4} => G:\Pakiety\Creative_kamera\LCVP_PCDrv_US_1_03_02.exe Task: {FA403A29-08C9-4972-8207-380C35E1D62A} - System32\Tasks\One-Click Optimizer WO12 => C:\Program Files\Ashampoo\Ashampoo WinOptimizer 12\WO12.exe [8352592 2016-01-20] (Ashampoo GmbH & Co. KG -> Ashampoo Development GmbH & Co. KG) Task: {FC0E1D64-6081-4134-8EB1-298CE36573F8} - System32\Tasks\{F6F7ABD0-D8DE-457E-AD36-4EE889A97E40} => G:\Pakiety\Creative_kamera\LCVP_PCDrv_US_1_03_02.exe Task: {FCAFE0F8-2DF4-4506-BAA9-C7B5BA5ED4BE} - System32\Tasks\{A00D79B6-2A64-4FBF-B49D-0F45BB7CB8EB} => C:\Windows\system32\pcalua.exe -a F:\Software\ProbeII\Acpi\AsACPIIns.exe -d F:\Software\ProbeII\Acpi -c -nr (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\One-Click Optimizer WO12.job => C:\Program Files\Ashampoo\Ashampoo WinOptimizer 12\WO12.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 62.21.99.94 62.21.99.95 Tcpip\..\Interfaces\{0E947091-5783-474B-B3B0-13E363D9358E}: [DhcpNameServer] 62.21.99.94 62.21.99.95 Tcpip\..\Interfaces\{3125FDA1-AA98-4558-8C45-CD66F4B31507}: [DhcpNameServer] 62.21.99.95 Tcpip\..\Interfaces\{6B5474C1-17E9-4308-A8C1-85CC3E67471D}: [DhcpNameServer] 62.21.99.95 Tcpip\..\Interfaces\{975F14FC-7EFA-4F14-B2BC-FA5E79132178}: [DhcpNameServer] 62.21.99.95 Tcpip\..\Interfaces\{CC7591BB-23E4-41EA-AAAB-4A174976B169}: [DhcpNameServer] 77.65.29.50 62.21.99.95 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <==== UWAGA HKU\S-1-5-21-4020636225-3277912118-1193113064-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com HKU\S-1-5-21-4020636225-3277912118-1193113064-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.norton.com/?prt=ns&chn=1000&geo=us&ver=22.9.3.13&locale=pl_us&guid=f1aac4b3-3fbf-4e71-a805-4e93695ac335&doi=2017-05-22&o=APN11915 HKU\S-1-5-21-4020636225-3277912118-1193113064-1006\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com SearchScopes: HKU\S-1-5-21-4020636225-3277912118-1193113064-1000 -> DefaultScope {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NS&chn=1000&geo=US&ver=22.9.3.13&locale=pl_US&guid=F1AAC4B3-3FBF-4E71-A805-4E93695AC335&doi=2017-05-22&gct=kwd&qsrc=2869 SearchScopes: HKU\S-1-5-21-4020636225-3277912118-1193113064-1000 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11913&l=dis&prt=NS&chn=1000&geo=US&ver=22.9.3.13&locale=pl_US&guid=F1AAC4B3-3FBF-4E71-A805-4E93695AC335&doi=2017-05-22&gct=kwd&qsrc=2869 SearchScopes: HKU\S-1-5-21-4020636225-3277912118-1193113064-1000 -> {szukaj.gazeta.pl} URL = hxxp://szukaj.gazeta.pl/internet/0,0.html?slowo={searchTerms} BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.17.2.46\coIEPlg.dll [2019-05-25] (Symantec Corporation -> Symantec Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-21] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-21] (Oracle America, Inc. -> Oracle Corporation) BHO: IplexToALLPlayer -> {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} -> C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll [2013-11-01] (ALLPlayer Group -> ALLCinema Ltd.) BHO: Download Accelerator Plus Integration -> {FF6C3CF0-4B15-11D1-ABED-709549C10000} -> C:\Program Files\DAP\dapieloader.dll [2014-07-05] (Speed-Bit LTD -> SpeedBit Ltd.) FireFox: ======== FF HKLM\...\Firefox\Extensions: [{40211632-250D-4B8C-B04E-DA45BAE6DF8C}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn => nie znaleziono FF HKU\S-1-5-21-4020636225-3277912118-1193113064-1000\...\Firefox\Extensions: [{F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}] - C:\Program Files\DAP\DAPFireFox FF Extension: (Download Accelerator Plus (DAP) extension) - C:\Program Files\DAP\DAPFireFox [2014-07-05] [Przestarzałe] [Brak podpisu cyfrowego] FF HKU\S-1-5-21-4020636225-3277912118-1193113064-1006\...\Firefox\Extensions: [{F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}] - C:\Program Files\DAP\DAPFireFox FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-21] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] (Nokia -> ) FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-03-14] (NVIDIA CORPORATION -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-03-14] (NVIDIA CORPORATION -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [Brak pliku] FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader 2015\Reader\AIR\nppdf32.dll [2019-05-01] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=pl-pl CHR StartupUrls: Default -> "hxxp://www.facebook.pl/" CHR NewTab: Default -> Active:"chrome-extension://mhffmephdchhhbfjmdpoaldedhhdanbn/homePageRedirect.html", Active:"chrome-extension://celnhlejgkfdfcnodbkmkhddghoiniig/ntp.html", Not-active:"chrome-extension://gfoabcdjalmeenbjjngidappmppchblc/homePageRedirect.html", Not-active:"chrome-extension://ejbdobdndcjhdmljipngpeoekdinlohe/homePageRedirect.html" CHR DefaultSearchURL: Default -> hxxps://search.tb.ask.com/search/GGmain.jhtml?searchfor={searchTerms}&enableSearch=true&rdrct=no&redirect=CPC CHR DefaultSearchKeyword: Default -> askweb CHR DefaultSuggestURL: Default -> hxxps://ss.search.ask.com/ss?li=ff&sstype=prefix&limit=10&hl=en&q={searchTerms}&enableSearch=true&rdrct=no CHR Profile: C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default [2019-06-12] CHR Extension: (Prezentacje) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14] CHR Extension: (Norton Password Manager) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\admmjipmmciaobhojoghlmleefbicajg [2019-05-28] CHR Extension: (Dokumenty) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14] CHR Extension: (Dysk Google) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-27] CHR Extension: (YouTube) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-27] CHR Extension: (ProductManualsGuide) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\celnhlejgkfdfcnodbkmkhddghoiniig [2019-06-08] CHR Extension: (Norton Home Page for Chrome) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbdobdndcjhdmljipngpeoekdinlohe [2018-09-21] CHR Extension: (Ask Web Search) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\eocnnoackodjagdbaoddhjbkpjabimed [2019-06-12] CHR Extension: (Norton Safe Search) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\eogpedgkejfmehnklhahflpmplhiceal [2019-03-31] CHR Extension: (Arkusze) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14] CHR Extension: (Norton Safe Web) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnpbeacklnhmkkilekogeiekaglbmmka [2019-06-05] CHR Extension: (Norton Home Page for Chrome) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfoabcdjalmeenbjjngidappmppchblc [2017-05-06] CHR Extension: (Dokumenty Google offline) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15] CHR Extension: (Norton Safe) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmobhkkblcgdifigjglcjneplefbkmh [2017-05-06] CHR Extension: (Norton Identity Safe) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2016-08-27] CHR Extension: (DA Friends 2) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijihfmdfcepacepmdfabfkocoeogilpn [2019-06-09] CHR Extension: (Linkclump) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfpjkncokllnfokkgpkobnkbkmelfefj [2019-05-13] CHR Extension: (Norton Home Page) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhffmephdchhhbfjmdpoaldedhhdanbn [2019-05-28] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-07] CHR Extension: (Gmail) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-13] CHR Extension: (Chrome Media Router) - C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-05] CHR Profile: C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-04-11] CHR Profile: C:\Users\Janusz\AppData\Local\Google\Chrome\User Data\System Profile [2019-04-11] CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.2.46\Exts\Chrome.crx CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-4020636225-3277912118-1193113064-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx Opera: ======= OPR DownloadDir: D:\Pobrane_z_sieci OPR StartupUrls: "hxxps://www.onet.pl/" ==================== Usługi (filtrowane) ==================== ===================== Sterowniki (filtrowane) ====================== ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-08-21 11:04 - 2019-08-21 11:04 - 000024777 _____ C:\Users\Janusz\Pulpit\FRST.txt 2019-08-21 11:03 - 2019-08-21 11:04 - 000000000 ____D C:\FRST 2019-08-21 11:03 - 2019-08-21 10:49 - 001448960 _____ (Farbar) C:\Users\Janusz\Pulpit\FRST.exe 2019-08-21 09:38 - 2019-08-21 09:49 - 000281670 _____ C:\Windows\ntbtlog.txt 2019-08-21 00:39 - 2019-08-21 00:39 - 000000000 ____D C:\b9a735003514114d732e 2019-08-21 00:16 - 2019-08-21 00:16 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security 2019-08-21 00:10 - 2019-06-28 07:23 - 000829440 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2019-08-21 00:10 - 2019-06-28 07:23 - 000428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll 2019-08-21 00:10 - 2019-06-28 07:23 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll 2019-08-21 00:10 - 2019-06-28 07:23 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll 2019-08-21 00:10 - 2019-06-28 07:23 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll 2019-08-21 00:10 - 2019-06-21 05:05 - 000628224 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll 2019-08-21 00:10 - 2019-06-21 04:44 - 002406912 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2019-08-21 00:10 - 2019-06-21 03:41 - 001251840 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2019-08-21 00:10 - 2019-06-20 10:15 - 000348976 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2019-08-21 00:10 - 2019-06-19 05:06 - 006135296 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2019-08-21 00:10 - 2019-06-18 05:56 - 020274688 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2019-08-21 00:10 - 2019-06-18 05:51 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2019-08-21 00:10 - 2019-06-18 05:50 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2019-08-21 00:10 - 2019-06-18 05:39 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2019-08-21 00:10 - 2019-06-18 05:39 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2019-08-21 00:10 - 2019-06-18 05:38 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2019-08-21 00:10 - 2019-06-18 05:38 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2019-08-21 00:10 - 2019-06-18 05:37 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2019-08-21 00:10 - 2019-06-18 05:35 - 002297344 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2019-08-21 00:10 - 2019-06-18 05:32 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2019-08-21 00:10 - 2019-06-18 05:32 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2019-08-21 00:10 - 2019-06-18 05:30 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2019-08-21 00:10 - 2019-06-18 05:29 - 000663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2019-08-21 00:10 - 2019-06-18 05:29 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2019-08-21 00:10 - 2019-06-18 05:29 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2019-08-21 00:10 - 2019-06-18 05:29 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2019-08-21 00:10 - 2019-06-18 05:23 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2019-08-21 00:10 - 2019-06-18 05:21 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2019-08-21 00:10 - 2019-06-18 05:16 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2019-08-21 00:10 - 2019-06-18 05:16 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2019-08-21 00:10 - 2019-06-18 05:16 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2019-08-21 00:10 - 2019-06-18 05:13 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2019-08-21 00:10 - 2019-06-18 05:13 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2019-08-21 00:10 - 2019-06-18 05:11 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2019-08-21 00:10 - 2019-06-18 05:10 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2019-08-21 00:10 - 2019-06-18 05:07 - 004494336 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2019-08-21 00:10 - 2019-06-18 05:04 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2019-08-21 00:10 - 2019-06-18 05:03 - 013706752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2019-08-21 00:10 - 2019-06-18 05:03 - 002060288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2019-08-21 00:10 - 2019-06-18 05:03 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2019-08-21 00:10 - 2019-06-18 05:03 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2019-08-21 00:10 - 2019-06-18 05:02 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2019-08-21 00:10 - 2019-06-18 04:44 - 004386304 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2019-08-21 00:10 - 2019-06-18 04:41 - 001323008 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2019-08-21 00:10 - 2019-06-18 04:39 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2019-08-21 00:10 - 2019-06-13 05:23 - 000135400 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2019-08-21 00:10 - 2019-06-13 05:17 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2019-08-21 00:10 - 2019-06-12 17:25 - 001310520 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2019-08-21 00:10 - 2019-06-12 17:24 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll 2019-08-21 00:10 - 2019-06-12 17:24 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2019-08-21 00:10 - 2019-06-12 17:24 - 000135912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2019-08-21 00:10 - 2019-06-12 17:24 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2019-08-21 00:10 - 2019-06-12 17:23 - 004057320 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2019-08-21 00:10 - 2019-06-12 17:23 - 003964136 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2019-08-21 00:10 - 2019-06-12 17:23 - 000136424 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll 2019-08-21 00:10 - 2019-06-12 17:23 - 000078568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys 2019-08-21 00:10 - 2019-06-12 17:21 - 012574208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2019-08-21 00:10 - 2019-06-12 17:21 - 011411968 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2019-08-21 00:10 - 2019-06-12 17:21 - 000617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2019-08-21 00:10 - 2019-06-12 17:21 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2019-08-21 00:10 - 2019-06-12 17:21 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2019-08-21 00:10 - 2019-06-12 17:21 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 003207168 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 001329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 001072640 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000555520 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000276480 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll 2019-08-21 00:10 - 2019-06-12 17:20 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 001177088 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 001005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000474624 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000373248 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000195072 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 17:16 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2019-08-21 00:10 - 2019-06-12 17:06 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2019-08-21 00:10 - 2019-06-12 17:06 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2019-08-21 00:10 - 2019-06-12 17:06 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2019-08-21 00:10 - 2019-06-12 17:05 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2019-08-21 00:10 - 2019-06-12 17:04 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2019-08-21 00:10 - 2019-06-12 17:04 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2019-08-21 00:10 - 2019-06-12 16:58 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll 2019-08-21 00:10 - 2019-06-12 16:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2019-08-21 00:10 - 2019-06-12 16:55 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2019-08-21 00:10 - 2019-06-12 16:55 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2019-08-21 00:10 - 2019-06-12 16:55 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2019-08-21 00:10 - 2019-06-12 16:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll 2019-08-21 00:10 - 2019-06-12 16:54 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2019-08-21 00:10 - 2019-06-12 16:52 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2019-08-21 00:10 - 2019-06-12 16:51 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2019-08-21 00:10 - 2019-06-12 16:51 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys 2019-08-21 00:10 - 2019-06-12 16:50 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll 2019-08-21 00:10 - 2019-06-12 16:50 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe 2019-08-21 00:10 - 2019-06-12 16:50 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe 2019-08-21 00:10 - 2019-06-12 16:49 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\Dism.exe 2019-08-21 00:10 - 2019-06-12 16:48 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2019-08-21 00:10 - 2019-06-12 16:48 - 000314880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2019-08-21 00:10 - 2019-06-12 16:48 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2019-08-21 00:10 - 2019-06-12 16:48 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2019-08-21 00:10 - 2019-06-12 16:48 - 000116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2019-08-21 00:10 - 2019-06-12 16:48 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2019-08-21 00:10 - 2019-06-12 16:47 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2019-08-21 00:10 - 2019-06-12 16:47 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys 2019-08-21 00:10 - 2019-06-12 16:47 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys 2019-08-21 00:10 - 2019-06-12 16:47 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\viac7.sys 2019-08-21 00:10 - 2019-06-12 16:47 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys 2019-08-21 00:10 - 2019-06-12 16:47 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys 2019-08-21 00:10 - 2019-06-12 16:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2019-08-21 00:10 - 2019-06-12 16:47 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys 2019-08-21 00:10 - 2019-06-12 16:47 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2019-08-21 00:10 - 2019-06-12 16:47 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2019-08-21 00:10 - 2019-06-12 16:46 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 16:46 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 16:46 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2019-08-21 00:10 - 2019-06-12 16:46 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2019-08-21 00:10 - 2019-06-11 04:59 - 002703360 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2019-08-21 00:10 - 2019-06-11 04:59 - 001460224 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2019-08-21 00:10 - 2019-06-11 04:59 - 000617984 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2019-08-21 00:10 - 2019-06-11 04:59 - 000535040 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2019-08-21 00:10 - 2019-06-11 04:59 - 000378368 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2019-08-21 00:10 - 2019-06-11 04:59 - 000366080 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2019-08-21 00:10 - 2019-06-11 04:59 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2019-08-21 00:10 - 2019-06-11 04:59 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2019-08-21 00:10 - 2019-06-07 17:18 - 001425920 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2019-08-21 00:10 - 2019-06-07 17:18 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll 2019-08-21 00:10 - 2019-06-07 17:18 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll 2019-08-21 00:10 - 2019-06-07 16:55 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll 2019-08-21 00:10 - 2019-06-02 06:07 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe 2019-08-21 00:02 - 2019-08-21 00:39 - 000000000 ____D C:\TEMP 2019-08-20 23:56 - 2019-08-20 23:56 - 000001008 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-08-21 11:04 - 2014-01-31 20:42 - 000740098 _____ C:\Windows\system32\perfh015.dat 2019-08-21 11:04 - 2014-01-31 20:42 - 000155672 _____ C:\Windows\system32\perfc015.dat 2019-08-21 11:04 - 2014-01-31 12:57 - 000000000 ___RD C:\Users\Janusz\Pulpit 2019-08-21 11:04 - 2010-11-20 23:01 - 001669190 _____ C:\Windows\system32\PerfStringBackup.INI 2019-08-21 11:04 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf 2019-08-21 11:00 - 2016-08-29 17:53 - 000001136 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2019-08-21 11:00 - 2016-08-29 17:21 - 000000000 ____D C:\Program Files\TeamViewer 2019-08-21 11:00 - 2014-02-13 19:40 - 000000000 ____D C:\ProgramData\NVIDIA 2019-08-21 11:00 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-08-21 10:55 - 2009-07-14 06:34 - 000035312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-08-21 10:55 - 2009-07-14 06:34 - 000035312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-08-21 10:51 - 2016-08-29 17:53 - 000001140 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2019-08-21 10:38 - 2014-03-03 10:21 - 000000000 ____D C:\Users\Janusz\AppData\Roaming\KeePass 2019-08-21 08:50 - 2009-07-14 06:46 - 000001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2019-08-21 00:46 - 2014-09-18 12:24 - 000000000 ____D C:\Program Files\Origin 2019-08-21 00:41 - 2019-06-09 23:16 - 000287032 _____ C:\Windows\system32\FNTCACHE.DAT 2019-08-21 00:40 - 2014-12-10 19:35 - 000000000 ____D C:\Windows\system32\appraiser 2019-08-21 00:40 - 2014-05-06 09:43 - 000000000 ___SD C:\Windows\system32\CompatTel 2019-08-21 00:40 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system32\Dism 2019-08-21 00:38 - 2014-02-02 13:35 - 000000000 ____D C:\Windows\system32\MRT 2019-08-21 00:28 - 2014-02-02 13:35 - 131096328 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2019-08-21 00:16 - 2014-02-19 23:27 - 000000000 ____D C:\Windows\system32\Macromed 2019-08-20 23:56 - 2016-08-27 16:17 - 000000000 ____D C:\Program Files\Opera 2019-08-20 23:52 - 2014-02-13 19:40 - 000000000 ____D C:\Users\UpdatusUser 2019-08-20 23:48 - 2014-01-31 12:57 - 000000000 ____D C:\Users\Janusz ==================== Pliki w katalogu głównym wybranych folderów ================ 2014-04-01 16:35 - 2014-04-01 16:35 - 000002528 _____ () C:\Users\Janusz\AppData\Roaming\$_hpcst$.hpc 2017-09-14 17:11 - 2019-06-03 03:26 - 000004780 _____ () C:\Users\Janusz\AppData\Roaming\ex_log.txt 2018-02-02 10:54 - 2015-05-28 09:55 - 000000031 _____ () C:\Users\Janusz\AppData\Roaming\pdfdrawcodec.dll 2014-07-07 23:34 - 2019-05-28 23:29 - 000014336 _____ () C:\Users\Janusz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-11-16 20:25 - 2018-08-09 11:39 - 000007609 _____ () C:\Users\Janusz\AppData\Local\resmon.resmoncfg 2017-12-19 22:14 - 2017-12-19 22:14 - 000000000 _____ () C:\Users\Janusz\AppData\Local\{9BCAA896-4845-4209-BAEB-77B86D12A574} ==================== SigCheck =============================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) LastRegBack: 2019-06-04 16:18 ==================== Koniec FRST.txt ============================