Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:14-10-2015 01 Uruchomiony przez axpl (administrator) NBAXTMA (15-10-2015 14:37:04) Uruchomiony z C:\Users\axpl\Desktop\bezp Załadowane profile: axpl (Dostępne profile: user & axpl & outlook) Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Opera) Tryb startu: Safe Mode (minimal) Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (http://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [184112 2012-09-17] (Intel Corporation) HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp HKLM\...\Run: [TpShocks] => C:\Windows\system32\TpShocks.exe [382248 2013-06-20] (Lenovo.) HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [296952 2013-07-17] (Lenovo Group Limited) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2780400 2013-10-23] (Synaptics Incorporated) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-08-15] (Intel Corporation) HKLM-x32\...\Run: [Integrated Camera_Monitor] => C:\Program Files (x86)\Integrated Camera\monitor.exe [1720184 2013-06-18] () HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [508656 2012-08-31] (Dolby Laboratories Inc.) HKLM-x32\...\Run: [PWMTRV] => rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor HKLM-x32\...\Run: [Lenovo Registration] => C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [4315872 2011-06-01] (Lenovo, Inc.) HKLM-x32\...\Run: [Fastboot] => C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [1085744 2012-11-21] (Lenovo) HKLM-x32\...\Run: [McAfeeUpdaterUI] => C:\Program Files (x86)\McAfee\Common Framework\udaterui.exe [161088 2011-01-12] (McAfee, Inc.) HKLM-x32\...\Run: [ShStatEXE] => C:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE [215360 2011-01-12] (McAfee, Inc.) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKLM-x32\...\Run: [Communicator] => C:\Program Files (x86)\Microsoft Lync\communicator.exe [12118840 2015-03-28] (Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation) HKLM-x32\...\RunOnce: [delshell] => C:\Program Files (x86)\Lenovo\SHAREit\ShellEx\ShellExt64.bak [474528 2015-09-17] (Lenovo) HKLM-x32\...\RunOnce: [delshelltmp] => cmd.exe /c del /q "C:\Program Files (x86)\Lenovo\SHAREit\ShellEx\ShellExt64tmp.bak" HKLM-x32\...\RunOnce: [rdshafolder14547] => cmd.exe /c if not exist "C:\Program Files (x86)\Lenovo\SHAREit\Shareit.exe" rd /s /q "C:\Program Files (x86)\Lenovo\SHAREit" Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKLM\...\Policies\Explorer: [NoFolderOptions] 0 HKLM\...\Policies\Explorer: [NoControlPanel] 0 HKU\S-1-5-21-2694141385-2966839441-1320738432-1001\...\RunOnce: [Report] => C:\AdwCleaner\AdwCleaner[C2].txt [4016 2015-10-15] () HKU\S-1-5-21-2694141385-2966839441-1320738432-1001\...\MountPoints2: {3ba0c8c8-5a60-11e3-96ce-806e6f6e6963} - Q:\LenovoQDrive.exe ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => Brak pliku ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => Brak pliku ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => Brak pliku ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => Brak pliku ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => Brak pliku ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => Brak pliku ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => Brak pliku ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => Brak pliku ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-09-19] (SugarSync, Inc.) ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-09-19] (SugarSync, Inc.) ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-09-19] (SugarSync, Inc.) ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-09-19] (SugarSync, Inc.) ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (http://tortoisesvn.net) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AudaUpdate.lnk [2014-06-24] ShortcutTarget: AudaUpdate.lnk -> C:\Audatex\AudaUpdate\AudaUpdt.exe (Audatex (Switzerland) GmbH, Zurich) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 12.lnk [2015-07-02] ShortcutTarget: Snagit 12.lnk -> C:\Program Files (x86)\TechSmith\Snagit 12\Snagit32.exe (TechSmith Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk [2014-01-02] ShortcutTarget: vpngui.exe.lnk -> C:\Windows\Installer\{5FDC06BF-3D3D-4367-8FFB-4FAFCB61972D}\Icon09DB8A851.exe () Startup: C:\Users\axpltma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AudaUpdate.lnk [2015-01-05] ShortcutTarget: AudaUpdate.lnk -> C:\Audatex\AudaUpdate\AudaUpdt.exe (Audatex (Switzerland) GmbH, Zurich) Startup: C:\Users\axpltma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-02-09] ShortcutTarget: Dropbox.lnk -> C:\Users\axpl\AppData\Roaming\Dropbox\bin\Dropbox.exe (Brak pliku) Startup: C:\Users\axpltma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk [2015-10-13] ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation) GroupPolicy: Ograniczenia - Chrome <======= UWAGA CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 193.43.181.62 Tcpip\..\Interfaces\{29212CEC-EA32-4F21-8E1F-30C7504C2AA0}: [DhcpNameServer] 212.2.96.51 212.2.96.52 Tcpip\..\Interfaces\{63139B3F-69EA-43EF-8EA4-DA0AC7B5DA07}: [DhcpNameServer] 8.8.8.8 193.43.181.62 Tcpip\..\Interfaces\{7B6BDB72-5D93-4E5B-8AE2-610E68FC466A}: [NameServer] 10.33.120.2,10.33.120.6 Tcpip\..\Interfaces\{7B6BDB72-5D93-4E5B-8AE2-610E68FC466A}: [DhcpNameServer] 10.33.120.2 10.33.122.6 Tcpip\..\Interfaces\{B4186DA8-D149-4379-8A54-BA5DDBDE9BCA}: [NameServer] 10.33.120.2,10.33.120.6 Tcpip\..\Interfaces\{B81EA3A9-0234-4207-8BB7-B5F38D33A590}: [NameServer] 212.2.96.53 212.2.96.54 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2694141385-2966839441-1320738432-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13-comm.msn.com/?pc=LNJB HKU\S-1-5-21-2694141385-2966839441-1320738432-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13-comm.msn.com/?pc=LNJB HKU\S-1-5-21-2694141385-2966839441-1320738432-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/welcome/thinkpad HKU\S-1-5-21-2694141385-2966839441-1320738432-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com/welcome/thinkpad SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20140102143418.dll [2014-01-02] (McAfee, Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation) BHO-x32: PDF Architect 3 Helper -> {06E08260-0695-4EC1-A74B-1310D8899D93} -> C:\Program Files (x86)\PDF Architect 3\creator-ie-helper.dll [2015-04-14] (pdfforge GmbH) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Lync\OCHelper.dll [2010-10-22] (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-16] (Oracle Corporation) BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20140102143418.dll [2014-01-02] (McAfee, Inc.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-16] (Oracle Corporation) Toolbar: HKLM-x32 - PDF Architect 3 Toolbar - {2DFF3579-5AA7-45B9-9328-1D38EA230861} - C:\Program Files (x86)\PDF Architect 3\creator-ie-plugin.dll [2015-04-14] (pdfforge GmbH) FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll [2014-04-13] () FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll [2014-04-13] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-07-26] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-07-26] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-16] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-16] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-06-25] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-06-25] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-03-20] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-03-20] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-03-20] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-03-20] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-03-20] (Apple Inc.) FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-08-26] FF Extension: Brak nazwy - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\{D19CA586-DD6C-4a0a-96F8-14644F340D60} [2015-08-26] FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_3_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 3\resources\pdfarchitect3firefoxextension FF Extension: PDF Architect 3 Creator - C:\Program Files (x86)\PDF Architect 3\resources\pdfarchitect3firefoxextension [2015-04-17] ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S4 AudaUpdate; C:\Audatex\AudaUpdate\AudaUpdt.exe [3269400 2015-04-16] (Audatex (Switzerland) GmbH, Zurich) [Brak podpisu cyfrowego] S3 DozeSvc; C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE [320576 2013-07-17] (Lenovo.) S2 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [107792 2013-07-03] (Condusiv Technologies) S2 FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [160048 2012-11-21] (Lenovo) S2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbguard.exe [81920 2009-07-22] (Firebird Project) [Brak podpisu cyfrowego] S3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_1\bin\fbserver.exe [2736128 2009-07-22] (Firebird Project) [Brak podpisu cyfrowego] S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] () S2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Brak podpisu cyfrowego] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation) S2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [182760 2013-04-15] () S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] () S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-07-26] (Intel Corporation) S2 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [199160 2013-07-17] (Lenovo Group Limited) S2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-10] (Lenovo Group Limited) S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [1674720 2013-09-25] () S2 McAfeeFramework; C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe [120128 2011-01-12] (McAfee, Inc.) S2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [190256 2014-01-02] (McAfee, Inc.) S2 McTaskManager; C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe [209760 2011-01-12] (McAfee, Inc.) S2 mfevtp; C:\Windows\system32\mfevtps.exe [156248 2014-01-02] (McAfee, Inc.) S2 Mobile Partner. RunOuc; C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe [655744 2012-09-22] () S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-02] () S2 omniserv; C:\Program Files\Lenovo\Fingerprint Manager Pro\OmniServ.exe [88064 2014-02-20] (Softex Inc.) [Brak podpisu cyfrowego] S3 PDF Architect 3; C:\Program Files (x86)\PDF Architect 3\ws.exe [2243288 2015-04-14] (pdfforge GmbH) S3 PDF Architect 3 CrashHandler; C:\Program Files (x86)\PDF Architect 3\crash-handler-ws.exe [901336 2015-04-14] (pdfforge GmbH) S2 PDF Architect 3 Creator; C:\Program Files (x86)\PDF Architect 3\creator-ws.exe [740568 2015-04-14] (pdfforge GmbH) S2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [59384 2013-07-16] (Lenovo Group Limited) S3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [138744 2013-07-16] (Lenovo Group Limited) S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [24120 2014-02-21] () S2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH) S2 TechSmith Uploader Service; C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe [3408384 2015-01-26] (TechSmith Corporation) [Brak podpisu cyfrowego] S2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [40848 2013-10-28] (Validity Sensors, Inc.) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-12-01] (Microsoft Corporation) S2 WMCoreService; C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe [689560 2012-10-18] (Ericsson AB) S2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-02] (Intel® Corporation) S2 Cachedrv server; "C:\Program Files\Lenovo\Fingerprint Manager Pro\cachesrvr.exe" [X] S2 Update Hold Page; "C:\Program Files (x86)\Hold Page\updateHoldPage.exe" [X] ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 btmaux; C:\Windows\System32\DRIVERS\btmaux.sys [132920 2013-04-23] (Motorola Solutions, Inc.) S3 btmhsf; C:\Windows\System32\DRIVERS\btmhsf.sys [1385272 2013-08-08] (Motorola Solutions, Inc.) S3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [306536 2011-03-04] () S1 DNE; C:\Windows\System32\DRIVERS\dnelwf64.sys [131920 2013-06-01] (Citrix Systems, Inc.) S3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [495888 2013-05-06] (Intel Corporation) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R3 ecnssndis; C:\Windows\System32\Drivers\wwuss64.sys [26664 2011-10-05] (Ericsson AB) R3 ecnssndisfltr; C:\Windows\System32\Drivers\wwussf64.sys [29736 2011-10-05] (Ericsson AB) S1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [25872 2013-07-03] (Condusiv Technologies) R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [112912 2013-07-03] (Condusiv Technologies) S3 Fastboot; C:\Windows\System32\DRIVERS\Fastboot.sys [71472 2012-11-21] (Windows (R) Win 7 DDK provider) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-01] (Intel Corporation) S3 ibtusb; C:\Windows\System32\DRIVERS\ibtusb.sys [113096 2013-08-07] (Intel Corporation) R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [21048 2013-04-15] () R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [21048 2013-04-15] () R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46568 2013-04-15] () S3 l36wgps; C:\Windows\System32\DRIVERS\l36wgps64.sys [103184 2012-03-01] (Ericsson AB) R3 Mbm3CBus; C:\Windows\System32\DRIVERS\Mbm3CBus.sys [443648 2013-04-22] (MCCI Corporation) S3 Mbm3DevMt; C:\Windows\System32\DRIVERS\Mbm3DevMt.sys [455936 2013-04-22] (MCCI Corporation) S3 Mbm3mdfl; C:\Windows\System32\DRIVERS\Mbm3mdfl.sys [22272 2013-04-22] (MCCI Corporation) S3 Mbm3Mdm; C:\Windows\System32\DRIVERS\Mbm3Mdm.sys [508160 2013-04-22] (MCCI Corporation) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-07-26] (Intel Corporation) S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [153952 2014-01-02] (McAfee, Inc.) S3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [217696 2014-01-02] (McAfee, Inc.) S0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [607152 2014-01-02] (McAfee, Inc.) S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [97960 2014-01-02] (McAfee, Inc.) R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [281544 2014-01-02] (McAfee, Inc.) S3 NETwNs64; C:\Windows\System32\DRIVERS\NETwsw02.sys [3584992 2013-08-01] (Intel Corporation) S1 OMNISMI; C:\Windows\SysWOW64\drivers\omnismi.sys [14776 2013-08-05] () S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [423128 2013-07-24] (Realsil Semiconductor Corporation) R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2013-10-23] (Synaptics Incorporated) S3 SPUVCbv; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [1450104 2013-03-15] (Sunplus) S3 tvtvcamd; C:\Windows\System32\DRIVERS\tvtvcamd.sys [27432 2011-12-08] (ThinkVantage Communications Utility) S3 usb3Hub; C:\Windows\System32\DRIVERS\usb3Hub.sys [206744 2013-06-20] (Windows (R) Win 7 DDK provider) S3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2015-10-15] () S3 WwanUsbServ; C:\Windows\System32\DRIVERS\WwanUsbMp64.sys [284912 2013-08-30] (Ericsson AB) U3 kgddqpod; \??\C:\Users\axpl\AppData\Local\Temp\kgddqpod.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Trzy miesiące - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-10-15 13:11 - 2015-10-15 14:37 - 00000000 ____D C:\FRST 2015-10-15 13:07 - 2015-10-15 13:56 - 00000000 ____D C:\Users\axpl\Desktop\bezp 2015-10-15 13:04 - 2015-10-15 13:04 - 00000000 ____D C:\Users\axpl\AppData\Roaming\Subversion 2015-10-15 13:04 - 2015-10-15 13:04 - 00000000 ____D C:\Users\axpl\AppData\Local\TSVNCache 2015-10-15 12:45 - 2015-10-15 12:45 - 00000000 ____D C:\Users\axplmga\AppData\Roaming\PDF Architect 3 2015-10-15 12:37 - 2015-10-15 12:37 - 00000000 ____D C:\Users\axplmga\AppData\Roaming\PwrMgr 2015-10-15 12:37 - 2015-10-09 08:26 - 06677440 _____ (Piriform Ltd) C:\Users\axplmga\Desktop\ccsetup510.exe 2015-10-15 12:37 - 2015-10-09 08:21 - 00380416 _____ C:\Users\axplmga\Desktop\hhr1nyzj.exe 2015-10-15 12:37 - 2015-10-09 08:20 - 01698304 _____ (Farbar) C:\Users\axplmga\Desktop\FRST.exe 2015-10-15 12:37 - 2015-10-09 08:17 - 01682432 _____ C:\Users\axplmga\Desktop\adwcleaner_5.012.exe 2015-10-15 12:37 - 2014-09-10 13:50 - 00602112 _____ (OldTimer Tools) C:\Users\axplmga\Desktop\OTL.exe 2015-10-15 12:37 - 2014-09-10 13:48 - 02105856 _____ (Farbar) C:\Users\axplmga\Desktop\FRST64.exe 2015-10-15 12:37 - 2013-05-29 08:24 - 00448512 _____ (OldTimer Tools) C:\Users\axplmga\Desktop\TFC.exe 2015-10-15 12:24 - 2015-10-15 13:31 - 00000000 ____D C:\Users\axplmga\Tracing 2015-10-15 12:24 - 2015-10-15 12:46 - 00000000 ____D C:\Users\axplmga\AppData\Local\TSVNCache 2015-10-15 12:24 - 2015-10-15 12:24 - 00111536 _____ C:\Users\axplmga\AppData\Local\GDIPFONTCACHEV1.DAT 2015-10-15 12:24 - 2015-10-15 12:24 - 00001952 __RSH C:\Users\axplmga\ntuser.pol 2015-10-15 12:24 - 2015-10-15 12:24 - 00001392 _____ C:\Users\axplmga\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-10-15 12:24 - 2015-10-15 12:24 - 00000020 ___SH C:\Users\axplmga\ntuser.ini 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 _SHDL C:\Users\axplmga\Ustawienia lokalne 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 _SHDL C:\Users\axplmga\Szablony 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 _SHDL C:\Users\axplmga\Moje dokumenty 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 _SHDL C:\Users\axplmga\Menu Start 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 _SHDL C:\Users\axplmga\Documents\Moje wideo 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 _SHDL C:\Users\axplmga\Documents\Moje obrazy 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 _SHDL C:\Users\axplmga\Documents\Moja muzyka 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 _SHDL C:\Users\axplmga\Dane aplikacji 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 _SHDL C:\Users\axplmga\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 _SHDL C:\Users\axplmga\AppData\Local\Historia 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 _SHDL C:\Users\axplmga\AppData\Local\Dane aplikacji 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 ____D C:\Users\axplmga\AppData\Roaming\Subversion 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 ____D C:\Users\axplmga\AppData\Roaming\McAfee 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 ____D C:\Users\axplmga\AppData\Roaming\Lenovo 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 ____D C:\Users\axplmga\AppData\Roaming\Leadertech 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 ____D C:\Users\axplmga\AppData\Roaming\Intel 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 ____D C:\Users\axplmga\AppData\Roaming\Apple Computer 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 ____D C:\Users\axplmga\AppData\Roaming\Adobe 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 ____D C:\Users\axplmga\AppData\Local\VirtualStore 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 ____D C:\Users\axplmga\AppData\Local\Lenovo 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 ____D C:\Users\axplmga\AppData\Local\Google 2015-10-15 12:24 - 2015-10-15 12:24 - 00000000 ____D C:\Users\axplmga 2015-10-15 12:24 - 2014-01-03 09:49 - 00000000 ____D C:\Users\axplmga\AppData\Local\Microsoft Help 2015-10-15 12:24 - 2013-12-01 10:41 - 00000000 ____D C:\Users\axplmga\AppData\Roaming\Macromedia 2015-10-15 12:24 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\axplmga\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-10-15 12:24 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\axplmga\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-10-13 10:33 - 2010-11-21 05:24 - 00194048 _____ (Microsoft Corporation) C:\Users\axpltma\Desktop\TrustedInstaller.exe 2015-10-13 09:57 - 2015-10-13 09:57 - 00000000 ____D C:\Users\axpltma\Documents\Notesy programu OneNote 2015-10-12 15:37 - 2015-10-12 15:36 - 01682432 _____ C:\Users\axpltma\Desktop\AdwCleaner.exe 2015-10-12 13:55 - 2015-10-12 13:55 - 00002952 _____ C:\Windows\System32\Tasks\{6FC81E67-8027-4680-A369-F33CDF972234} 2015-10-12 13:55 - 2015-10-12 13:55 - 00002952 _____ C:\Windows\System32\Tasks\{35931A43-17B5-44F8-9652-1700FCF77856} 2015-10-09 13:59 - 2015-10-12 08:36 - 00033796 _____ C:\Users\axpltma\Desktop\AZ_ do_19.10.2015 .xlsx 2015-10-09 09:54 - 2015-10-14 12:03 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7 2015-10-09 09:54 - 2015-10-09 09:55 - 00000000 ____D C:\Program Files (x86)\d46f2515-1760-4bcd-b829-6334878567cb 2015-10-09 09:52 - 2015-10-09 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pazera Free MKV to AVI Converter 2015-10-09 09:52 - 2015-10-09 09:52 - 00000000 ____D C:\Program Files (x86)\pazera-software 2015-10-07 14:06 - 2015-10-07 14:06 - 04407265 _____ C:\Users\axpltma\Documents\GTD_Hestia.2015 (2).pptx 2015-10-05 11:22 - 2015-10-05 11:22 - 00003306 _____ C:\Windows\System32\Tasks\{7084FDD2-BA7F-48FF-89A5-93C282715734} 2015-10-04 19:22 - 2015-10-04 19:22 - 00000000 ____D C:\Users\axpltma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-09-17 10:11 - 2015-09-17 10:11 - 00000000 ____D C:\Users\axpltma\AppData\Local\Intel_Corporation 2015-09-15 14:11 - 2015-10-01 14:17 - 00003868 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1442319082 2015-09-15 14:11 - 2015-09-15 14:11 - 00001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2015-09-14 16:01 - 2015-09-14 16:01 - 00001054 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk 2015-09-14 16:01 - 2015-09-14 16:01 - 00001042 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk 2015-09-11 12:47 - 2015-09-11 15:29 - 00024747 _____ C:\Users\axpltma\Desktop\Allianz_właczone_ PSH .xlsx 2015-09-02 08:44 - 2015-09-14 13:53 - 00041182 _____ C:\Users\axpltma\Desktop\Warta warsztaty komunikacja.xlsx 2015-08-26 10:36 - 2015-10-13 12:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-08-25 08:00 - 2015-08-25 08:00 - 00000000 ____D C:\Users\axpltma\AppData\Local\CEF ==================== Trzy miesiące - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-10-15 14:36 - 2014-05-20 10:34 - 00000000 ____D C:\Users\axpltma\AppData\OICE_15_974FA576_32C1D314_2E74 2015-10-15 13:33 - 2013-12-01 10:14 - 01542435 _____ C:\Windows\WindowsUpdate.log 2015-10-15 13:33 - 2010-11-21 05:47 - 02169454 _____ C:\Windows\PFRO.log 2015-10-15 13:33 - 2009-07-14 06:45 - 00034432 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-10-15 13:33 - 2009-07-14 06:45 - 00034432 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-10-15 13:31 - 2014-01-24 12:29 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-10-15 13:30 - 2013-12-20 19:50 - 00034752 _____ C:\Windows\system32\Drivers\WPRO_41_2001.sys 2015-10-15 13:29 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-10-15 13:29 - 2009-07-14 06:51 - 00227290 _____ C:\Windows\setupact.log 2015-10-15 13:28 - 2015-07-01 15:01 - 00000000 ____D C:\AdwCleaner 2015-10-15 13:03 - 2014-04-11 14:30 - 00111536 _____ C:\Users\axpl\AppData\Local\GDIPFONTCACHEV1.DAT 2015-10-15 12:24 - 2014-01-02 11:39 - 00000000 ____D C:\Windows\system32\appmgmt 2015-10-15 12:24 - 2013-12-20 15:06 - 00012418 __RSH C:\ProgramData\ntuser.pol 2015-10-15 12:23 - 2013-12-20 15:03 - 00000144 _____ C:\Windows\system32\config\netlogon.ftl 2015-10-14 13:09 - 2014-04-11 15:20 - 00000000 ____D C:\Users\axpltma\Documents\Pliki programu Outlook 2015-10-14 13:08 - 2015-06-19 07:57 - 00001170 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2025429265-1409082233-725345543-3699UA.job 2015-10-14 12:45 - 2014-01-24 12:29 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-10-14 12:13 - 2014-12-15 10:28 - 00000000 ____D C:\Users\axpltma\AppData\Roaming\Spotify 2015-10-14 12:05 - 2015-02-09 12:11 - 00000000 ___RD C:\Users\axpltma\Dropbox 2015-10-14 12:04 - 2015-02-09 12:10 - 00000000 ____D C:\Users\axpltma\AppData\Roaming\Dropbox 2015-10-14 12:04 - 2014-12-15 10:28 - 00000000 ____D C:\Users\axpltma\AppData\Local\Spotify 2015-10-12 15:44 - 2015-04-07 22:01 - 00000000 ____D C:\Users\axpltma\Tracing 2015-10-12 13:57 - 2014-06-18 07:55 - 00000000 ____D C:\Users\axpltma\AppData\Local\TSVNCache 2015-10-12 13:45 - 2014-04-14 08:23 - 00002236 ____H C:\Users\axpltma\Documents\Default.rdp 2015-10-12 08:09 - 2014-06-24 12:20 - 00000000 ____D C:\Audatex 2015-10-09 16:00 - 2014-06-24 13:42 - 00000000 ____D C:\Users\axpltma\AppData\Roaming\EurekaLog 2015-10-09 12:55 - 2013-12-01 10:39 - 00000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools 2015-10-09 10:47 - 2014-04-11 14:59 - 00000000 ____D C:\Users\axpltma\AppData\Local\Lenovo 2015-10-09 10:47 - 2013-12-01 10:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo 2015-10-09 10:47 - 2013-12-01 10:27 - 00000000 ____D C:\Program Files (x86)\Lenovo 2015-10-09 10:00 - 2014-01-16 11:24 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2015-10-09 09:56 - 2014-07-18 09:30 - 00000000 ____D C:\QUARANTINE 2015-10-09 09:55 - 2013-12-01 10:41 - 00000000 ____D C:\Program Files (x86)\Adobe 2015-10-09 09:51 - 2013-12-01 10:41 - 00000000 ____D C:\Windows\System32\Tasks\Lenovo 2015-10-09 09:51 - 2013-12-01 10:40 - 00000000 ____D C:\Windows\Downloaded Installations 2015-10-09 08:32 - 2014-06-24 12:55 - 00000402 _____ C:\Users\axpltma\AudaShareUser.ini 2015-10-09 08:08 - 2015-06-19 07:57 - 00001118 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2025429265-1409082233-725345543-3699Core.job 2015-10-08 14:44 - 2015-06-25 22:14 - 00000000 ____D C:\Program Files (x86)\Opera 2015-10-08 14:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2015-10-08 13:57 - 2015-03-20 13:20 - 00000000 ____D C:\Users\axpltma\AppData\Roaming\vlc 2015-10-05 15:35 - 2014-04-22 08:28 - 00003718 _____ C:\Windows\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 2015-10-05 13:15 - 2014-01-02 10:15 - 00000000 ____D C:\ldiag 2015-10-05 11:22 - 2014-06-24 12:20 - 00000751 _____ C:\Users\Public\Desktop\AudaShare.lnk 2015-10-04 19:23 - 2014-04-13 21:09 - 00000000 ____D C:\Users\axpltma\AppData\Local\CrashDumps 2015-10-02 10:36 - 2015-03-20 13:10 - 00000000 ____D C:\Program Files (x86)\Icecream Screen Recorder 2015-09-29 08:21 - 2014-04-11 14:59 - 00001952 __RSH C:\Users\axpltma\ntuser.pol 2015-09-29 08:21 - 2014-04-11 14:59 - 00000000 ____D C:\Users\axpltma 2015-09-28 14:47 - 2014-01-24 12:29 - 00002200 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-09-25 11:51 - 2014-06-24 13:02 - 00000009 _____ C:\Users\axpltma\b2b.flt 2015-09-25 11:13 - 2014-04-11 15:01 - 00000000 ____D C:\Users\axpltma\AppData\Roaming\GHISLER 2015-09-25 08:08 - 2014-04-02 09:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-09-18 08:23 - 2014-04-11 14:59 - 00000000 ____D C:\Users\axpltma\AppData\Local\Microsoft Help 2015-09-17 10:01 - 2015-03-20 12:53 - 00000000 ____D C:\ProgramData\Apple Computer 2015-09-17 08:40 - 2014-01-24 12:29 - 00004044 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-17 08:40 - 2014-01-24 12:29 - 00003792 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-09-15 14:11 - 2015-06-25 22:15 - 00000000 ____D C:\Users\axpltma\AppData\Roaming\Opera Software 2015-09-15 14:11 - 2015-06-25 22:15 - 00000000 ____D C:\Users\axpltma\AppData\Local\Opera Software 2015-09-15 07:59 - 2014-04-11 14:59 - 00111536 _____ C:\Users\axpltma\AppData\Local\GDIPFONTCACHEV1.DAT 2015-09-15 07:59 - 2009-07-14 06:45 - 00434800 _____ C:\Windows\system32\FNTCACHE.DAT ==================== Pliki w katalogu głównym wybranych folderów ======= 2013-12-01 10:33 - 2013-12-01 10:33 - 0000000 ____H () C:\ProgramData\DP45977C.lfl ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2015-10-12 09:14 ==================== Koniec FRST.txt ============================