Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:07-11-2015 Uruchomiony przez media (administrator) MEDIA-HP (12-11-2015 12:44:49) Uruchomiony z C:\SpecProgram Załadowane profile: media (Dostępne profile: media) Platform: Windows 10 Home (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: FF) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (AMD) C:\Windows\System32\atiesrxx.exe (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (AMD) C:\Windows\System32\atieclxx.exe (Hewlett-Packard) C:\Windows\System32\hpservice.exe (QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe (Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe (Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe () C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe (DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe (Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.5.4.24\ns.exe (Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\obexsrv.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe () C:\Program Files (x86)\Intel iPOS v6\cadservice.exe (Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe (TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (Qihu Software Co. Limited) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe (Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.5.4.24\ns.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe (DigitalPersona, Inc.) C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (CyberLink) C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCMMirage.exe (DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpAgent.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe () C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe (FSPro Labs) C:\Program Files\My Lockbox\mylbx.exe (Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\audiosrv.exe (Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe (Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe () C:\Program Files (x86)\Verbatim GREEN BUTTON\GREEN BUTTON.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\Creativity Suite\Event Manager\EEventManager.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe (Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-06-18] (IDT, Inc.) HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files\Motorola\Bluetooth\btmshell.dll",TrayApp HKLM\...\Run: [SmartMenu] => C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [611896 2010-01-20] () HKLM\...\Run: [HPWirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe [363064 2010-06-18] (Hewlett-Packard Company) HKLM\...\Run: [mylbx] => C:\Program Files\My Lockbox\mylbx.exe [2584352 2013-02-02] (FSPro Labs) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-07-17] (Synaptics Incorporated) HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [602168 2010-06-29] (Hewlett-Packard Company) HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation) HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2010-06-02] (EasyBits Software AS) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\EPSON\Creativity Suite\Event Manager\EEventManager.exe [102400 2005-04-08] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-03] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation) HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe, Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1 HKU\S-1-5-21-3550354000-425692153-1505289350-1000\...\Run: [HPAdvisorDock] => C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [1712184 2010-02-09] () HKU\S-1-5-21-3550354000-425692153-1505289350-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2010-06-16] (Hewlett-Packard Company) HKU\S-1-5-21-3550354000-425692153-1505289350-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8322328 2015-05-08] (Piriform Ltd) HKU\S-1-5-21-3550354000-425692153-1505289350-1000\...\Policies\system: [DisableLockWorkstation] 0 HKU\S-1-5-21-3550354000-425692153-1505289350-1000\...\Policies\system: [DisableChangePassword] 0 Lsa: [Notification Packages] DPPassFilter scecli ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2010-08-17] (EasyBits Software Corp.) ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine64\22.5.4.24\buShell.dll [2015-08-27] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine64\22.5.4.24\buShell.dll [2015-08-27] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine64\22.5.4.24\buShell.dll [2015-08-27] (Symantec Corporation) Startup: C:\Users\media\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Verbatim GREEN BUTTON.lnk [2012-05-05] ShortcutTarget: Verbatim GREEN BUTTON.lnk -> C:\Program Files (x86)\Verbatim GREEN BUTTON\GREEN BUTTON.exe () ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{c6706797-16ae-4728-8312-086246297680}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl&pid=NS&pvid=22.5.4.24 HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl&pid=NS&pvid=22.5.4.24 HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl&pid=NS&pvid=22.5.4.24 HKU\S-1-5-21-3550354000-425692153-1505289350-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl&pid=NS&pvid=22.5.4.24 SearchScopes: HKLM -> {C86F85BB-7AEF-40B3-9BC3-AFF4E4E3FC11} URL = hxxp://pl.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKLM -> {EEED7AEF-958E-4663-9A30-49C9AE12B92B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox SearchScopes: HKLM-x32 -> DefaultScope - brak wartości SearchScopes: HKLM-x32 -> {C86F85BB-7AEF-40B3-9BC3-AFF4E4E3FC11} URL = hxxp://pl.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKLM-x32 -> {EEED7AEF-958E-4663-9A30-49C9AE12B92B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-3550354000-425692153-1505289350-1000 -> {C86F85BB-7AEF-40B3-9BC3-AFF4E4E3FC11} URL = hxxp://pl.wikipedia.org/wiki/Special:Search?search={searchTerms} SearchScopes: HKU\S-1-5-21-3550354000-425692153-1505289350-1000 -> {EEED7AEF-958E-4663-9A30-49C9AE12B92B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine64\22.5.4.24\coIEPlg.dll [2015-09-23] (Symantec Corporation) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-01-12] (Google Inc.) BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg64.dll [2013-01-12] (Google Inc.) BHO: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll [2015-09-21] (Qihu 360 Software Co., Ltd.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => Brak pliku BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard) BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.5.4.24\coIEPlg.dll [2015-09-23] (Symantec Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-09] (Oracle Corporation) BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2011-05-13] (Microsoft Corporation) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12] (Google Inc.) BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll [2013-01-12] (Google Inc.) BHO-x32: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon.dll [2015-09-06] (Qihu 360 Software Co., Ltd.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-09] (Oracle Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard) BHO-x32: IEPluginBHO Class -> {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} -> C:\Users\media\AppData\Roaming\Gadu-Gadu 10\_userdata\ggbho.2.dll [2009-12-21] (GG Network S.A.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-01-12] (Google Inc.) Toolbar: HKLM - Brak nazwy - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - Brak pliku Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.5.4.24\coIEPlg.dll [2015-09-23] (Symantec Corporation) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-01-12] (Google Inc.) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.5.4.24\coIEPlg.dll [2015-09-23] (Symantec Corporation) Toolbar: HKU\S-1-5-21-3550354000-425692153-1505289350-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-01-12] (Google Inc.) Toolbar: HKU\S-1-5-21-3550354000-425692153-1505289350-1000 -> Brak nazwy - {A13C2648-91D4-4BF3-BC6D-0079707C4389} - Brak pliku DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab FireFox: ======== FF ProfilePath: C:\Users\media\AppData\Roaming\Mozilla\Firefox\Profiles\3opvrlku.default-1396263982658 FF Homepage: about:home FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-09] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-09] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-26] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-26] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll [2012-10-12] () FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-12-18] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3550354000-425692153-1505289350-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\media\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-22] (Unity Technologies ApS) FF SearchPlugin: C:\Users\media\AppData\Roaming\Mozilla\Firefox\Profiles\3opvrlku.default-1396263982658\searchplugins\dict.xml [2014-04-26] FF SearchPlugin: C:\Users\media\AppData\Roaming\Mozilla\Firefox\Profiles\3opvrlku.default-1396263982658\searchplugins\googletranslate.xml [2015-02-28] FF Extension: FlashGot - C:\Users\media\AppData\Roaming\Mozilla\Firefox\Profiles\3opvrlku.default-1396263982658\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2015-04-25] FF Extension: Treasure Track - C:\Users\media\AppData\Roaming\Mozilla\Firefox\Profiles\3opvrlku.default-1396263982658\Extensions\{822fa02f-9d06-41e2-a825-2faced1f478e}.xpi [2015-11-03] [Brak podpisu cyfrowego] FF Extension: Video DownloadHelper - C:\Users\media\AppData\Roaming\Mozilla\Firefox\Profiles\3opvrlku.default-1396263982658\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-11-01] FF Extension: Adblock Plus - C:\Users\media\AppData\Roaming\Mozilla\Firefox\Profiles\3opvrlku.default-1396263982658\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-25] FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.0.0.110\coFFAddon FF Extension: Norton Identity Safe - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.0.0.110\coFFAddon [2015-11-09] [Brak podpisu cyfrowego] FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt FF Extension: DigitalPersona Extension - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt [2010-09-16] [Brak podpisu cyfrowego] FF HKLM-x32\...\Firefox\Extensions: [WebProtection@360safe.com] - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox FF Extension: 360 Internet Protection - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox [2015-10-30] [Brak podpisu cyfrowego] FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.0.0.110\coFFAddon Chrome: ======= CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.5.4.24\Exts\Chrome.crx [2015-10-02] CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.5.4.24\Exts\Chrome.crx [2015-10-02] CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 ABBYY.Licensing.FineReader.Professional.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [660768 2007-12-06] (ABBYY (BIT Software)) S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [647680 2010-09-16] (Macrovision Europe Ltd.) [Brak podpisu cyfrowego] R3 FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [1028096 2010-09-16] (Macrovision Europe Ltd.) [Brak podpisu cyfrowego] S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-12-03] (Freemake) [Brak podpisu cyfrowego] R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [27192 2010-06-29] () R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-06-16] (Hewlett-Packard Company) [Brak podpisu cyfrowego] R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-02] (Microsoft Corporation) R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation) R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.5.4.24\NS.exe [282016 2015-09-24] (Symantec Corporation) U2 OneSyncSvc_Session19; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) U2 OneSyncSvc_Session19; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) U2 OneSyncSvc_Session39; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) U2 OneSyncSvc_Session39; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) U3 PimIndexMaintenanceSvc_Session19; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) U3 PimIndexMaintenanceSvc_Session19; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) U3 PimIndexMaintenanceSvc_Session39; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) U3 PimIndexMaintenanceSvc_Session39; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [859768 2015-09-21] (QIHU 360 SOFTWARE CO. LIMITED) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-17] (Synaptics Incorporated) R2 TCE CAD Service; C:\Program Files (x86)\Intel iPOS v6\cadservice.exe [25600 2010-10-25] () [Brak podpisu cyfrowego] R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2143552 2012-02-09] (TuneUp Software) U3 UnistoreSvc_Session19; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) U3 UnistoreSvc_Session19; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) U3 UnistoreSvc_Session39; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) U3 UnistoreSvc_Session39; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) U3 UserDataSvc_Session19; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) U3 UserDataSvc_Session19; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) U3 UserDataSvc_Session39; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) U3 UserDataSvc_Session39; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-02] (Microsoft Corporation) R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-02] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [137296 2015-09-06] (360.cn) S3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [77904 2015-09-21] (360.cn) R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [319568 2015-09-21] (360.cn) R1 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [40520 2015-09-06] (360.cn) R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [363088 2015-09-06] (360.cn) R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [73976 2015-06-04] (Advanced Micro Devices, Inc.) S3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices) R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [178768 2015-09-06] (360.cn) R1 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\BASHDefs\20151102.001\BHDrvx64.sys [1665608 2015-10-08] (Symantec Corporation) S3 btmaudio; C:\Windows\system32\drivers\btmaud.sys [42496 2010-05-20] (Motorola, Inc.) R1 ccSet_NS; C:\Windows\system32\drivers\NSx64\1605040.018\ccSetx64.sys [173808 2015-07-11] (Symantec Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-07-28] (Symantec Corporation) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [153936 2015-07-28] (Symantec Corporation) R0 FSProFilter; C:\Windows\System32\Drivers\FSPFltd.sys [54848 2010-07-22] (FSPro Labs) R1 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\IPSDefs\20151111.002\IDSvia64.sys [767224 2015-10-20] (Symantec Corporation) R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-02] (Microsoft Corporation) R3 NAVENG; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\VirusDefs\20151111.033\ENG64.SYS [138488 2015-10-27] (Symantec Corporation) R3 NAVEX15; C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\VirusDefs\20151111.033\EX64.SYS [2148080 2015-10-27] (Symantec Corporation) R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek ) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-17] (Synaptics Incorporated) R1 SRTSP; C:\Windows\System32\Drivers\NSx64\1605040.018\SRTSP64.SYS [930024 2015-09-23] (Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\NSx64\1605040.018\SRTSPX64.SYS [50936 2015-07-11] (Symantec Corporation) R0 SymEFASI; C:\Windows\System32\drivers\NSx64\1605040.018\SYMEFASI64.SYS [1620720 2015-07-11] (Symantec Corporation) S0 SymELAM; C:\Windows\System32\drivers\NSx64\1605040.018\SymELAM.sys [24192 2015-07-11] (Symantec Corporation) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [111344 2015-07-28] (Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\NSx64\1605040.018\Ironx64.SYS [297720 2015-07-11] (Symantec Corporation) R1 SymNetS; C:\Windows\System32\Drivers\NSx64\1605040.018\SYMNETS.SYS [577768 2015-09-23] (Symantec Corporation) R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [11856 2012-02-09] (TuneUp Software) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) U3 idsvc; Brak ImagePath S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] U3 wpcsvc; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-11-12 12:35 - 2015-11-12 12:44 - 00000000 ____D C:\FRST 2015-11-12 12:08 - 2015-11-12 12:08 - 00016148 _____ C:\WINDOWS\system32\MEDIA-HP_media_HistoryPrediction.bin 2015-11-12 12:06 - 2015-11-12 12:06 - 00262144 _____ C:\WINDOWS\Minidump\111215-51468-01.dmp 2015-11-12 11:12 - 2015-11-12 11:12 - 00000000 ____D C:\Users\media\AppData\Roaming\360TotalSecurity 2015-11-12 10:47 - 2015-11-12 10:56 - 00380416 _____ C:\Users\media\Downloads\evhfteic.exe 2015-11-11 13:58 - 2015-11-11 13:59 - 00262144 _____ C:\WINDOWS\Minidump\111115-92484-01.dmp 2015-11-11 13:43 - 2015-11-12 12:06 - 00000000 ____D C:\WINDOWS\Minidump 2015-11-11 13:43 - 2015-11-11 13:43 - 00262144 _____ C:\WINDOWS\Minidump\111115-52421-01.dmp 2015-11-11 13:42 - 2015-11-12 12:05 - 863788750 _____ C:\WINDOWS\MEMORY.DMP 2015-11-11 13:42 - 2015-11-11 13:42 - 00000376 _____ C:\WINDOWS\PFRO.log 2015-11-11 12:46 - 2015-11-12 12:36 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log 2015-11-09 17:27 - 2015-11-11 13:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-11-09 14:33 - 2015-11-10 21:05 - 00000000 ____D C:\AdwCleaner 2015-11-09 14:07 - 2015-11-12 12:44 - 00000000 ____D C:\SpecProgram 2015-11-09 13:55 - 2015-11-09 13:56 - 00000000 ____D C:\ProgramData\Oracle 2015-11-09 13:55 - 2015-11-09 13:55 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2015-11-09 13:55 - 2015-11-09 13:55 - 00000000 ____D C:\Users\media\AppData\Roaming\Sun 2015-11-09 13:55 - 2015-11-09 13:55 - 00000000 ____D C:\Users\media\.oracle_jre_usage 2015-11-09 13:55 - 2015-11-09 13:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-11-09 13:55 - 2015-11-09 13:55 - 00000000 ____D C:\Program Files (x86)\Java 2015-11-09 13:53 - 2015-11-09 13:53 - 00000000 ____D C:\Users\media\AppData\LocalLow\Oracle 2015-11-09 13:22 - 2015-11-09 13:59 - 00000000 ____D C:\Users\media\AppData\Local\NPE 2015-11-05 12:57 - 2015-11-05 12:57 - 00017408 _____ C:\Users\media\everest.exe 2015-11-04 15:58 - 2015-11-04 17:27 - 317058816 _____ (PortableApps.com) C:\Users\media\Downloads\OpenOfficePortable_4.1.2_MultilingualAll.paf.exe 2015-11-04 14:46 - 2015-11-04 14:46 - 00663780 _____ C:\Users\media\Documents\SynKernelDiag2015-11-04_14-46-46.log 2015-11-04 13:37 - 2015-11-04 14:46 - 00009930 _____ C:\WINDOWS\Control.KTL 2015-11-04 13:37 - 2015-11-04 13:37 - 02223574 _____ C:\Users\media\Documents\SynKernelDiag2015-11-04_13-37-17.log 2015-11-03 18:44 - 2015-11-03 18:44 - 00000000 __SHD C:\ProgramData\360Quarant 2015-11-03 18:44 - 2015-11-03 18:44 - 00000000 __SHD C:\$360Section 2015-11-03 18:42 - 2015-11-12 11:26 - 00000000 ____D C:\Users\media\AppData\Roaming\360safe 2015-11-02 18:54 - 2015-11-02 18:54 - 00000000 ____D C:\Users\media\AppData\Local\{AED8A4D7-B16B-4FEE-868A-2883DA7EAAA7} 2015-10-30 15:48 - 2015-10-30 15:48 - 00000000 ____D C:\ProgramData\1446216504_00000000_base 2015-10-30 13:21 - 2015-11-12 11:12 - 00000000 ____D C:\ProgramData\360TotalSecurity 2015-10-30 13:21 - 2015-11-12 10:29 - 00000000 ____D C:\Users\media\AppData\LocalLow\360WD 2015-10-30 13:20 - 2015-11-11 13:43 - 00000000 _RSHD C:\360SANDBOX 2015-10-30 13:20 - 2015-10-30 15:49 - 00001222 _____ C:\Users\Public\Desktop\360 Total Security.lnk 2015-10-30 13:20 - 2015-10-30 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center 2015-10-30 13:20 - 2015-10-30 13:20 - 00000000 ____D C:\Users\media\AppData\Local\Sparta 2015-10-30 13:20 - 2015-10-30 13:20 - 00000000 ____D C:\ProgramData\360safe 2015-10-30 13:20 - 2015-09-21 05:10 - 00319568 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Box64.sys 2015-10-30 13:20 - 2015-09-21 05:10 - 00077904 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AvFlt.sys 2015-10-30 13:20 - 2015-09-06 07:43 - 00363088 _____ (360.cn) C:\WINDOWS\system32\Drivers\360fsflt.sys 2015-10-30 13:20 - 2015-09-06 07:43 - 00178768 _____ (360.cn) C:\WINDOWS\system32\Drivers\BAPIDRV64.SYS 2015-10-30 13:20 - 2015-09-06 07:43 - 00137296 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AntiHacker64.sys 2015-10-30 13:20 - 2015-09-06 07:43 - 00040520 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Camera64.sys 2015-10-30 13:19 - 2015-10-30 13:19 - 00000000 ____D C:\Program Files (x86)\360 2015-10-30 11:26 - 2015-10-28 00:38 - 21871616 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-10-30 11:26 - 2015-10-21 13:00 - 24595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-10-30 11:26 - 2015-10-21 06:13 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-10-30 11:25 - 2015-10-28 00:16 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-10-30 11:25 - 2015-10-21 13:45 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll 2015-10-30 11:25 - 2015-10-21 13:44 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys 2015-10-30 11:25 - 2015-10-21 13:43 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-10-30 11:25 - 2015-10-21 13:39 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-10-30 11:25 - 2015-10-21 13:00 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2015-10-30 11:25 - 2015-10-21 12:59 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2015-10-30 11:25 - 2015-10-21 12:57 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-10-30 11:25 - 2015-10-21 12:52 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2015-10-30 11:25 - 2015-10-21 12:50 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2015-10-30 11:25 - 2015-10-21 12:48 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-10-30 11:25 - 2015-10-21 12:47 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll 2015-10-30 11:25 - 2015-10-21 12:46 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-10-30 11:25 - 2015-10-21 12:46 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-10-30 11:25 - 2015-10-21 12:44 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2015-10-30 11:25 - 2015-10-21 12:44 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-10-30 11:25 - 2015-10-21 12:43 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll 2015-10-30 11:25 - 2015-10-21 12:42 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2015-10-30 11:25 - 2015-10-21 12:41 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-10-30 11:25 - 2015-10-21 12:40 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll 2015-10-30 11:25 - 2015-10-21 12:38 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll 2015-10-30 11:25 - 2015-10-21 06:53 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-10-30 11:25 - 2015-10-21 06:49 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-10-30 11:25 - 2015-10-21 06:11 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2015-10-30 11:25 - 2015-10-21 06:08 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-10-30 11:25 - 2015-10-21 06:05 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2015-10-30 11:25 - 2015-10-21 06:03 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-10-30 11:25 - 2015-10-21 06:03 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll 2015-10-30 11:25 - 2015-10-21 05:58 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll 2015-10-30 11:25 - 2015-10-21 05:58 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2015-10-30 11:25 - 2015-10-21 05:55 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll 2015-10-29 20:49 - 2015-10-29 20:49 - 00000000 ____D C:\Users\media\AppData\Roaming\OpenOffice 2015-10-29 20:43 - 2015-10-29 20:44 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2 2015-10-29 20:43 - 2015-10-29 20:43 - 00001158 _____ C:\Users\Public\Desktop\OpenOffice 4.1.2.lnk 2015-10-29 20:43 - 2015-10-29 20:43 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4 2015-10-29 20:35 - 2015-10-29 20:35 - 00000000 ____D C:\Users\media\Desktop\OpenOffice 4.1.2 (pl) Installation Files 2015-10-27 20:57 - 2015-10-27 20:57 - 00243696 _____ C:\WINDOWS\system32\clinfo.exe 2015-10-27 20:57 - 2015-10-27 20:57 - 00136176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll 2015-10-27 20:57 - 2015-10-27 20:57 - 00122352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll 2015-10-27 20:57 - 2015-10-27 20:57 - 00111600 _____ C:\WINDOWS\system32\hsa-thunk64.dll 2015-10-27 20:57 - 2015-10-27 20:57 - 00111088 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll 2015-10-27 20:57 - 2015-10-27 20:57 - 00103408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll 2015-10-27 20:57 - 2015-10-27 20:57 - 00096752 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll 2015-10-27 20:57 - 2015-10-27 20:57 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll 2015-10-27 20:57 - 2015-10-27 20:57 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 47794160 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 39712768 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 30776304 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 27544560 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 25320432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 22327280 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 15725552 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 14310896 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 09355016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 08982440 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 08009360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 07683096 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 06686192 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 05216240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap 2015-10-27 20:56 - 2015-10-27 20:56 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap 2015-10-27 20:56 - 2015-10-27 20:56 - 01196032 _____ C:\WINDOWS\system32\amdocl_as64.exe 2015-10-27 20:56 - 2015-10-27 20:56 - 01070592 _____ C:\WINDOWS\system32\amdocl_ld64.exe 2015-10-27 20:56 - 2015-10-27 20:56 - 01004032 _____ C:\WINDOWS\SysWOW64\amdocl_as32.exe 2015-10-27 20:56 - 2015-10-27 20:56 - 00935408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00935408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00833800 _____ C:\WINDOWS\system32\amdicdxx.dat 2015-10-27 20:56 - 2015-10-27 20:56 - 00807424 _____ C:\WINDOWS\SysWOW64\amdocl_ld32.exe 2015-10-27 20:56 - 2015-10-27 20:56 - 00662392 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb 2015-10-27 20:56 - 2015-10-27 20:56 - 00662392 _____ C:\WINDOWS\system32\atiapfxx.blb 2015-10-27 20:56 - 2015-10-27 20:56 - 00631280 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00524272 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00471312 _____ C:\WINDOWS\system32\amdmiracast.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00375792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe 2015-10-27 20:56 - 2015-10-27 20:56 - 00341488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe 2015-10-27 20:56 - 2015-10-27 20:56 - 00213488 _____ C:\WINDOWS\system32\amdgfxinfo64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00199664 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00198640 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00177344 _____ C:\WINDOWS\system32\ativce03.dat 2015-10-27 20:56 - 2015-10-27 20:56 - 00175648 _____ C:\WINDOWS\system32\amde31a.dat 2015-10-27 20:56 - 2015-10-27 20:56 - 00168944 _____ C:\WINDOWS\system32\atieah64.exe 2015-10-27 20:56 - 2015-10-27 20:56 - 00165360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00152560 _____ C:\WINDOWS\SysWOW64\atieah32.exe 2015-10-27 20:56 - 2015-10-27 20:56 - 00150512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00143344 _____ C:\WINDOWS\system32\amdhdl64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00132080 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00100816 _____ C:\WINDOWS\system32\ativce02.dat 2015-10-27 20:56 - 2015-10-27 20:56 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00087992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00083952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00081168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00073712 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00071152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00068080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00064496 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00060912 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00059888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe 2015-10-27 20:56 - 2015-10-27 20:56 - 00059376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00057840 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00052208 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00048112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll 2015-10-27 20:56 - 2015-10-27 20:56 - 00038384 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll 2015-10-27 11:15 - 2015-11-09 10:45 - 00000350 _____ C:\WINDOWS\Tasks\HPCeeScheduleFormedia.job 2015-10-27 11:15 - 2015-11-06 17:30 - 00003242 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleFormedia 2015-10-24 12:05 - 2015-10-24 12:05 - 00000983 _____ C:\Users\media\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MTSMerger.lnk 2015-10-20 14:13 - 2015-10-20 14:13 - 00000000 ____D C:\diagraad 2015-10-20 14:12 - 2015-10-20 14:13 - 00000000 ____D C:\Users\media\.diagraad 2015-10-16 20:29 - 2015-10-16 20:29 - 00000000 ____D C:\Users\media\AppData\Local\{4CD9AEF6-351E-4CBD-AFEA-79F0896C3209} 2015-10-16 09:49 - 2015-11-12 11:06 - 00000000 ___RD C:\Users\media\Downloads-old 2015-10-16 09:49 - 2015-10-16 04:10 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-10-16 09:49 - 2015-10-16 04:10 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-10-16 09:45 - 2015-11-12 12:12 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Security 2015-10-15 09:48 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-10-15 09:48 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-10-15 09:48 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2015-10-15 09:48 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2015-10-15 09:48 - 2015-10-01 05:00 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-10-15 09:48 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2015-10-15 09:48 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-10-15 09:48 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2015-10-15 09:48 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-10-15 09:48 - 2015-09-25 04:09 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-10-15 09:48 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2015-10-15 09:48 - 2015-09-25 04:04 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-10-15 09:48 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2015-10-15 09:48 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2015-10-15 09:48 - 2015-09-25 04:02 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2015-10-15 09:48 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-10-15 09:48 - 2015-09-25 04:01 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-10-15 09:48 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll 2015-10-15 09:48 - 2015-09-25 04:00 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-10-15 09:48 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll 2015-10-15 09:48 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll 2015-10-15 09:48 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2015-10-15 09:48 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll 2015-10-15 09:48 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-10-15 09:48 - 2015-09-25 03:38 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-10-15 09:48 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2015-10-15 09:48 - 2015-09-25 03:36 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-10-15 09:48 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2015-10-15 09:48 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2015-10-15 09:48 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll 2015-10-15 09:48 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll 2015-10-15 09:48 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll 2015-10-15 09:48 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll 2015-10-15 09:47 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-10-15 09:47 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2015-10-15 09:47 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2015-10-15 09:47 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2015-10-15 09:47 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys 2015-10-15 09:47 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2015-10-15 09:47 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll 2015-10-15 09:47 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll 2015-10-15 09:47 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2015-10-15 09:47 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-10-15 09:47 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2015-10-15 09:47 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll 2015-10-15 09:47 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll 2015-10-15 09:47 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll 2015-10-15 09:47 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll 2015-10-15 09:47 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll 2015-10-15 09:47 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll 2015-10-15 09:47 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll 2015-10-15 09:47 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2015-10-15 09:47 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-10-15 09:47 - 2015-09-25 03:37 - 00766976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2015-10-15 09:47 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2015-10-15 09:47 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll 2015-10-15 09:47 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll 2015-10-15 09:47 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-11-12 12:34 - 2011-03-19 22:25 - 00001074 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-11-12 12:27 - 2014-12-11 18:30 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-11-12 12:13 - 2011-06-21 08:11 - 00004192 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1A7344AC-ABDF-4346-9C5B-5B205C557F4A} 2015-11-12 12:09 - 2011-03-19 22:25 - 00001070 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-11-12 12:08 - 2015-08-02 14:56 - 00000000 ____D C:\Users\media 2015-11-12 12:06 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-11-12 11:34 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-11-12 11:18 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru 2015-11-11 14:10 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-11-11 13:42 - 2012-04-25 11:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-11-11 13:18 - 2015-08-02 14:55 - 02120794 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-11-11 13:18 - 2015-07-10 17:30 - 00918804 _____ C:\WINDOWS\system32\perfh015.dat 2015-11-11 13:18 - 2015-07-10 17:30 - 00202422 _____ C:\WINDOWS\system32\perfc015.dat 2015-11-11 12:11 - 2011-04-21 18:00 - 00000000 ____D C:\Users\media\Documents\B-Dokumenty 2015-11-10 20:34 - 2011-02-27 13:20 - 00000000 ____D C:\Users\media\AppData\Roaming\SoftGrid Client 2015-11-10 20:04 - 2013-02-07 18:37 - 00000000 ____D C:\Program Files (x86)\Free PDF Solutions 2015-11-10 13:10 - 2014-03-23 18:14 - 00000000 ____D C:\Users\media\AppData\Local\CrashDumps 2015-11-10 12:43 - 2011-04-03 21:36 - 00000000 ____D C:\Users\media\AppData\Roaming\vlc 2015-11-09 14:37 - 2015-07-10 10:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2015-11-09 14:00 - 2015-08-02 15:44 - 00000000 ____D C:\Users\media\AppData\Local\MicrosoftEdge 2015-11-09 13:23 - 2010-09-16 01:10 - 00000000 ____D C:\ProgramData\Norton 2015-11-09 10:46 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM 2015-11-09 10:39 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-11-06 10:19 - 2011-02-10 11:51 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log 2015-11-01 16:42 - 2015-08-02 15:42 - 00002416 _____ C:\Users\media\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-11-01 16:42 - 2015-08-02 15:42 - 00000000 ___RD C:\Users\media\OneDrive 2015-10-30 11:04 - 2015-07-10 13:20 - 00225712 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-10-27 20:57 - 2015-07-16 00:12 - 00874480 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll 2015-10-27 20:56 - 2015-07-16 01:12 - 00162232 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll 2015-10-27 20:56 - 2015-07-16 01:11 - 12088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll 2015-10-27 20:56 - 2015-07-16 01:11 - 10211008 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll 2015-10-27 20:56 - 2015-07-16 01:11 - 08864920 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll 2015-10-27 20:56 - 2015-07-16 01:11 - 07482552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll 2015-10-27 20:56 - 2015-07-16 01:11 - 01479808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll 2015-10-27 20:56 - 2015-07-16 01:11 - 01223552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll 2015-10-27 20:56 - 2015-07-16 01:11 - 00143048 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll 2015-10-27 20:56 - 2015-07-16 01:11 - 00130072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll 2015-10-27 20:56 - 2015-07-16 01:11 - 00112360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll 2015-10-27 20:56 - 2015-07-16 01:06 - 21648880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys 2015-10-27 20:56 - 2015-07-16 00:17 - 00683504 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2015-10-27 20:56 - 2015-07-16 00:17 - 00451056 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2015-10-27 20:56 - 2015-07-16 00:17 - 00255472 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe 2015-10-27 20:56 - 2015-07-16 00:13 - 01256432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll 2015-10-27 20:56 - 2015-07-16 00:13 - 00674288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys 2015-10-25 18:31 - 2011-03-20 15:03 - 00000000 ____D C:\Pliki progr nie instalowanych 2015-10-22 15:56 - 2011-05-03 13:22 - 00000000 ____D C:\Users\media\dwhelper 2015-10-20 15:07 - 2011-04-07 16:41 - 00001760 _____ C:\Users\media\Desktop\MS Excel 97.exe — skrót.lnk 2015-10-20 13:59 - 2013-07-06 12:10 - 00001827 _____ C:\Users\media\Desktop\NeroStartSmart.exe — skrót.lnk 2015-10-17 12:03 - 2015-08-09 14:42 - 00000000 ____D C:\Users\media\Documents\Nagrania dźwiękowe 2015-10-17 08:09 - 2013-09-22 23:25 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-10-17 07:59 - 2011-03-25 07:54 - 143481208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-10-16 14:12 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache 2015-10-16 09:43 - 2015-07-10 12:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12 2015-10-16 09:43 - 2015-07-10 12:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-10-16 09:43 - 2015-07-10 12:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-10-16 09:43 - 2015-07-10 12:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-10-16 09:42 - 2015-07-10 17:34 - 00000000 ____D C:\Program Files\Windows Journal 2015-10-16 09:42 - 2015-07-10 12:04 - 00000000 ___SD C:\WINDOWS\system32\F12 2015-10-16 09:42 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2015-10-16 09:42 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2015-10-16 09:42 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-10-16 09:42 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-10-16 09:42 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Provisioning 2015-10-16 09:42 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\L2Schemas 2015-10-16 09:40 - 2015-05-18 13:03 - 00003386 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration 2015-10-16 09:40 - 2015-05-18 13:03 - 00002381 _____ C:\Users\Public\Desktop\Norton Security.LNK 2015-10-16 09:40 - 2015-05-18 12:59 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security 2015-10-16 09:40 - 2015-05-18 12:59 - 00000000 ____D C:\WINDOWS\system32\Drivers\NSx64 2015-10-15 19:06 - 2011-12-21 20:13 - 00000000 ____D C:\Users\media\Moje filmy 2015-10-15 17:27 - 2014-12-11 18:30 - 00003904 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater ==================== Pliki w katalogu głównym wybranych folderów ======= 2013-05-07 11:04 - 2013-05-07 11:04 - 0628743 _____ () C:\Program Files\adwcleaner.exe 2015-08-03 10:48 - 2015-08-03 10:48 - 0000000 _____ () C:\Program Files (x86)\Common Files\AMD 2011-03-31 18:39 - 2011-05-02 07:49 - 0001854 _____ () C:\Users\media\AppData\Roaming\GhostObjGAFix.xml 2011-03-16 19:29 - 2015-02-26 21:28 - 0030720 _____ () C:\Users\media\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2011-04-13 08:09 - 2011-04-13 08:09 - 0001576 _____ () C:\Users\media\AppData\Local\mbt-actwiz.log 2015-08-03 12:12 - 2015-08-03 12:12 - 0000017 _____ () C:\Users\media\AppData\Local\resmon.resmoncfg 2015-03-04 13:00 - 2015-03-04 13:03 - 0877747 _____ () C:\Users\media\AppData\Local\Tempmusic.ogg 2010-09-16 01:09 - 2010-09-16 01:09 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log 2010-08-17 17:10 - 2010-08-17 17:10 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log 2010-09-16 01:08 - 2010-09-16 01:08 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log 2010-08-17 17:04 - 2010-08-17 17:05 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log 2010-09-16 01:08 - 2010-09-16 01:08 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log 2010-09-16 01:09 - 2010-09-16 01:09 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log 2010-08-17 17:03 - 2010-08-17 17:04 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log 2010-08-17 17:05 - 2010-08-17 17:10 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log 2010-09-16 01:09 - 2010-09-16 01:09 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log Pliki do przeniesienia lub usunięcia: ==================== C:\Users\media\everest.exe ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2015-11-10 11:59 ==================== Koniec FRST.txt ============================