Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:09-12-2015 Uruchomiony przez Mateusz (administrator) ADAMUS (10-12-2015 20:22:04) Uruchomiony z C:\Users\Mateusz\Downloads Załadowane profile: Mateusz (Dostępne profile: Mateusz) Platform: Windows 8.1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Projector\EasyMP Network Projection V2\EMP_NSWLSV.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Projector\Epson USB Display V1.6\EMP_UDSA.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe () C:\ProgramData\MobileBrServ\mbbService.exe () C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.5.5.15\nis.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe () C:\Windows\SysWOW64\PnkBstrA.exe () C:\Program Files\CyberLink\Shared files\RichVideo64.exe () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (Pokki) C:\Users\Mateusz\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe (Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.5.5.15\nis.exe () C:\Windows\SysWOW64\UMonit64.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Realtek semiconductor) C:\Windows\RTFTrack.exe (Lenovo) C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe (Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Users\Mateusz\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Mateusz\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Mateusz\AppData\Local\Google\Chrome\Application\chrome.exe (Pokki) C:\Users\Mateusz\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe (Pokki) C:\Users\Mateusz\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe (Pokki) C:\Users\Mateusz\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe (Pokki) C:\Users\Mateusz\AppData\Local\SweetLabs App Platform\Engine\ServiceStartMenuIndexer.exe (Google Inc.) C:\Users\Mateusz\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Mateusz\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Mateusz\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Mateusz\AppData\Local\Google\Chrome\Application\chrome.exe (SieloSoft International) C:\SS_AGENT\AGENCJA.EXE (Microsoft Corporation) C:\Windows\splwow64.exe (Google Inc.) C:\Users\Mateusz\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Mateusz\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Mateusz\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Mateusz\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13648600 2013-08-29] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-30] (Realtek Semiconductor) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2894664 2013-08-13] (ELAN Microelectronics Corp.) HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [6340312 2013-10-17] (Realtek semiconductor) HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-09-14] (Lenovo) HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17111056 2014-03-21] (Lenovo (Beijing) Limited) HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [193008 2014-03-21] (Lenovo(beijing) Limited) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-10-12] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [767312 2009-09-04] (CANON INC.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-10-16] (Apple Inc.) HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-06] (CyberLink Corp.) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2669568 2015-04-17] (Sony Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2013-04-08] (Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4522496 2013-03-22] (Brother Industries, Ltd.) HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1944576 2013-03-07] (Brother Industries, Ltd.) HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\Run: [Google Update] => C:\Users\Mateusz\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc.) HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-30] (Piriform Ltd) HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\Policies\system: [ConsentPromptBehaviorAdmin] 0 HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\Policies\system: [EnableLUA] 0 HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\Policies\system: [PromptOnSecureDesktop] 0 HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\Policies\Explorer: [HideClock] 0 HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\Policies\Explorer: [NoFind] 0 HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\Policies\Explorer: [NoViewContextMenu] 0 HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\Policies\Explorer: [NoFile] 0 HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\MountPoints2: {798fb405-1cb4-11e4-8259-00c2c66120f5} - "E:\AutoRun.exe" HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\MountPoints2: {a30be8d2-943f-11e4-8278-00c2c66120f1} - "F:\LGAutoRun.exe" HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\MountPoints2: {b6850f62-2562-11e4-8266-28d2446548db} - "E:\AutoRun.exe" HKU\S-1-5-21-2959243001-716245045-1533737087-1002\...\MountPoints2: {e9536d67-25ac-11e4-8267-28d2446548db} - "E:\EMP_UDSe.exe" /autorun HKU\S-1-5-18\...\RunOnce: [iCloud] => "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe" ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.5.15\buShell.dll [2015-11-05] (Symantec Corporation) Startup: C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk [2015-03-26] ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{036A8588-00AA-4478-91FE-F234A6370734}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6D5D4F31-86B1-4E85-A899-44E37D9379FF}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{CCAAEF5A-4F31-4CF4-80C9-268BDDAA22BD}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl&pid=NIS&pvid=21.7.0.11 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/ HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/ HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/ HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl&pid=NIS&pvid=21.7.0.11 HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/ HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl&pid=NIS&pvid=21.7.0.11 HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/ HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl&pid=NIS&pvid=21.7.0.11 HKU\S-1-5-21-2959243001-716245045-1533737087-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/ HKU\S-1-5-21-2959243001-716245045-1533737087-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=pl&pid=NIS&pvid=21.7.0.11 SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2959243001-716245045-1533737087-1002 -> {043377C6-6663-4017-A1EC-FB27DE062D6D} URL = BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation) BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-24] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-24] (Oracle Corporation) Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.5.5.15\coIEPlg.dll [2015-11-05] (Symantec Corporation) FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-09] () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-09] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] () FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2013-04-19] (CANON INC.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-08-08] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-08-08] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-24] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-24] (Oracle Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Brak pliku] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-07] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-07] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2959243001-716245045-1533737087-1002: @tools.google.com/Google Update;version=3 -> C:\Users\Mateusz\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin HKU\S-1-5-21-2959243001-716245045-1533737087-1002: @tools.google.com/Google Update;version=9 -> C:\Users\Mateusz\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin HKU\S-1-5-21-2959243001-716245045-1533737087-1002: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2014-09-30] () FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.0.124\coFFAddon FF Extension: Norton Identity Safe - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.0.124\coFFAddon [2015-12-10] [Brak podpisu cyfrowego] FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.5.0.124\coFFAddon Chrome: ======= CHR Profile: C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Dokumenty Google) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-04] CHR Extension: (Dysk Google) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22] CHR Extension: (YouTube) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24] CHR Extension: (Google Search) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28] CHR Extension: (Dokumenty Google offline) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18] CHR Extension: (Norton Identity Safe) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-23] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28] CHR Extension: (Gmail) - C:\Users\Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30] CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.5.5.15\Exts\Chrome.crx [2015-11-30] CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.5.5.15\Exts\Chrome.crx [2015-11-30] CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] R2 EMP_NSWLSV; C:\Program Files (x86)\EPSON Projector\EasyMP Network Projection V2\EMP_NSWLSV.exe [147968 2014-02-10] (SEIKO EPSON CORPORATION) [Brak podpisu cyfrowego] R2 EMP_UDSA; C:\Program Files (x86)\EPSON Projector\Epson USB Display V1.6\EMP_UDSA.exe [157696 2013-05-31] (SEIKO EPSON CORPORATION) [Brak podpisu cyfrowego] R2 ETDService; C:\Program Files\Elantech\ETDService.exe [92160 2013-07-28] (ELAN Microelectronics Corp.) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156384 2015-10-12] (NVIDIA Corporation) R2 Huawei E3272; C:\ProgramData\MobileBrServ\mbbservice.exe [240720 2013-12-03] () R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation) R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [101528 2007-04-14] () [Brak podpisu cyfrowego] R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Brak podpisu cyfrowego] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-08-08] (Intel Corporation) R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-08-01] (Intel Corporation) S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-08-08] (Intel Corporation) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\22.5.5.15\NIS.exe [282016 2015-11-20] (Symantec Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-10-12] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-10-12] (NVIDIA Corporation) R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [494592 2015-04-17] (Sony Corporation) R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2014-09-30] () R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] () R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2014-03-21] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.0.124\Definitions\BASHDefs\20151207.001\BHDrvx64.sys [1665608 2015-10-08] (Symantec Corporation) S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [132920 2013-04-23] (Motorola Solutions, Inc.) R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1385784 2013-06-27] (Motorola Solutions, Inc.) R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1605050.00F\ccSetx64.sys [173808 2015-07-11] (Symantec Corporation) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-11-18] (Symantec Corporation) S3 EPPVAD2_simple; C:\Windows\system32\drivers\EMP_NSAU.sys [23040 2014-02-10] (SEIKO EPSON CORPORATION) S3 eppvad_simple; C:\Windows\system32\drivers\EMP_UDAU.sys [23040 2013-05-31] (SEIKO EPSON CORPORATION) R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [157520 2015-12-09] (Symantec Corporation) R3 ETDSMBus; C:\Windows\system32\DRIVERS\ETDSMBus.sys [22280 2013-08-04] (ELAN Microelectronic Corp.) S3 GeneStor; C:\Windows\System32\drivers\GeneStor.sys [105704 2013-08-16] (GenesysLogic) R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.0.124\Definitions\IPSDefs\20151208.001\IDSvia64.sys [767224 2015-12-04] (Symantec Corporation) R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.) R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-08-08] (Intel Corporation) R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.0.124\Definitions\VirusDefs\20151209.019\ENG64.SYS [138488 2015-12-09] (Symantec Corporation) R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.0.124\Definitions\VirusDefs\20151209.019\EX64.SYS [2148080 2015-12-09] (Symantec Corporation) R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-09-04] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-10-12] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation) R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8876248 2013-10-17] (Realtek Semiconductor Corp.) R1 SRTSP; C:\Windows\System32\Drivers\NISx64\1605050.00F\SRTSP64.SYS [928496 2015-11-12] (Symantec Corporation) R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1605050.00F\SRTSPX64.SYS [50936 2015-07-11] (Symantec Corporation) S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr)) R0 SymEFASI; C:\Windows\System32\drivers\NISx64\1605050.00F\SYMEFASI64.SYS [1621232 2015-11-12] (Symantec Corporation) S0 SymELAM; C:\Windows\System32\drivers\NISx64\1605050.00F\SymELAM.sys [24192 2015-07-11] (Symantec Corporation) R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [111344 2015-07-27] (Symantec Corporation) R1 SymIRON; C:\Windows\system32\drivers\NISx64\1605050.00F\Ironx64.SYS [297720 2015-07-11] (Symantec Corporation) R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1605050.00F\SYMNETS.SYS [577768 2015-11-12] (Symantec Corporation) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink) U0 sr; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-12-10 20:22 - 2015-12-10 20:22 - 00029750 _____ C:\Users\Mateusz\Downloads\FRST.txt 2015-12-10 20:21 - 2015-12-10 20:22 - 00000000 ____D C:\FRST 2015-12-10 20:19 - 2015-12-10 20:19 - 00380416 _____ C:\Users\Mateusz\Downloads\f08v36uo.exe 2015-12-10 20:18 - 2015-12-10 20:18 - 02369024 _____ (Farbar) C:\Users\Mateusz\Downloads\FRST64.exe 2015-12-10 19:45 - 2015-12-10 19:45 - 00069318 _____ C:\Users\Mateusz\Downloads\Robert Sak.pdf 2015-12-10 13:52 - 2015-12-10 13:52 - 00066564 _____ C:\Users\Mateusz\Documents\cc_20151210_135245.reg 2015-12-10 13:21 - 2015-12-10 13:21 - 00086258 _____ C:\Users\Mateusz\Downloads\Extras.Txt 2015-12-10 13:20 - 2015-12-10 13:20 - 00154382 _____ C:\Users\Mateusz\Downloads\OTL.Txt 2015-12-10 13:09 - 2015-12-10 13:09 - 00602112 _____ (OldTimer Tools) C:\Users\Mateusz\Downloads\OTL.exe 2015-12-10 12:49 - 2015-12-10 12:49 - 00001209 _____ C:\Users\Mateusz\Desktop\CrystalDiskInfo.lnk 2015-12-10 12:49 - 2015-12-10 12:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2015-12-10 12:49 - 2015-12-10 12:49 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo 2015-12-10 12:47 - 2015-12-10 12:47 - 04159656 _____ (Crystal Dew World ) C:\Users\Mateusz\Downloads\CrystalDiskInfo6_6_0-en.exe 2015-12-10 12:40 - 2015-12-10 19:37 - 00000000 ____D C:\WINDOWS\System32\Tasks\Remediation 2015-12-10 12:23 - 2015-12-10 12:23 - 00001056 _____ C:\Users\Mateusz\Desktop\HD Tune Pro.lnk 2015-12-10 12:23 - 2015-12-10 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro 2015-12-10 12:17 - 2015-12-10 12:17 - 02239373 _____ (EFD Software ) C:\Users\Mateusz\Downloads\hdtunepro_560_trial.exe 2015-12-10 12:01 - 2015-12-10 12:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Internet Security 2015-12-10 11:49 - 2015-12-10 11:49 - 00003234 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration 2015-12-10 10:37 - 2015-12-10 10:37 - 00000000 ____D C:\Users\Mateusz\AppData\Roaming\HD Tune Pro 2015-12-10 10:36 - 2015-12-10 12:23 - 00000000 ____D C:\Program Files (x86)\HD Tune Pro 2015-12-10 10:06 - 2015-12-10 12:36 - 00007608 _____ C:\Users\Mateusz\AppData\Local\Resmon.ResmonCfg 2015-12-09 16:25 - 2015-12-09 16:25 - 00293657 _____ C:\Users\Mateusz\Downloads\Druk przelewu (38).pdf 2015-12-09 16:24 - 2015-12-09 16:24 - 00109968 _____ C:\Users\Mateusz\Downloads\Polisa komunikacyjna (54).pdf 2015-12-09 13:57 - 2015-12-09 16:26 - 00000000 ____D C:\Users\Mateusz\Desktop\Artur FORD 2015-12-05 13:41 - 2015-12-05 13:41 - 00010800 _____ C:\Users\Mateusz\Downloads\2015-10-5971252267-GTU (2).xls 2015-12-05 13:40 - 2015-12-05 13:40 - 00011800 _____ C:\Users\Mateusz\Downloads\2015-10-5971252267-GTU (1).xls 2015-12-05 13:38 - 2015-12-05 13:38 - 00018000 _____ C:\Users\Mateusz\Downloads\2015-10-5971252267-GTU.xls 2015-12-05 13:37 - 2015-12-05 13:37 - 00074896 _____ C:\Users\Mateusz\Downloads\9011318194_2015-10_GTU LNS 1.pdf 2015-12-05 13:37 - 2015-12-05 13:37 - 00074299 _____ C:\Users\Mateusz\Downloads\9011318194_2015-11_GTU LZNS 1.pdf 2015-12-05 13:36 - 2015-12-05 13:36 - 00094339 _____ C:\Users\Mateusz\Downloads\Aneks_GTU_Reklamacje_Pelnomocnictwo of1.pdf 2015-12-05 11:40 - 2015-12-05 11:40 - 00068452 _____ C:\Users\Mateusz\Downloads\łukasz gębka.pdf 2015-12-03 15:46 - 2015-12-03 16:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2015-12-03 13:23 - 2015-12-03 13:23 - 00246111 _____ C:\Users\Mateusz\Downloads\UfgVerificationResult (9).pdf 2015-12-02 15:18 - 2015-12-03 09:14 - 00000000 ____D C:\Users\Mateusz\Desktop\szkoda PALUCH 2015-12-02 11:19 - 2015-12-02 11:19 - 00061392 _____ C:\Users\Mateusz\Downloads\oferta (9).pdf 2015-12-01 15:45 - 2015-12-01 15:45 - 00140086 _____ C:\Users\Mateusz\Downloads\polisa_70002563131.pdf 2015-12-01 15:44 - 2015-12-01 15:44 - 00099719 _____ C:\Users\Mateusz\Downloads\potwierdzenie_70002563131.pdf 2015-11-30 14:10 - 2015-11-30 14:10 - 00069998 _____ C:\Users\Mateusz\Downloads\zych.pdf 2015-11-28 13:39 - 2015-11-28 13:39 - 00051857 _____ C:\Users\Mateusz\Downloads\IncasoBill11506805532.pdf 2015-11-27 14:30 - 2015-11-27 14:30 - 00986282 _____ C:\Users\Mateusz\Downloads\owu_link4_miniflota_10_2015.pdf 2015-11-27 14:30 - 2015-11-27 14:30 - 00124234 _____ C:\Users\Mateusz\Desktop\Oferta_Mini_Flota.pdf 2015-11-27 14:30 - 2015-11-27 14:30 - 00117569 _____ C:\Users\Mateusz\Desktop\Podsumowanie.pdf 2015-11-27 09:30 - 2015-11-27 09:30 - 00081596 _____ C:\Users\Mateusz\Downloads\Kalkulacja_Adam_Kaczmarek_na_ubezpieczenie_mieszkaniowe.pdf 2015-11-27 09:24 - 2015-11-27 09:24 - 00108595 _____ C:\Users\Mateusz\Downloads\kalkulacja_Kalkulacja_20151127_0924.pdf 2015-11-26 12:59 - 2015-11-26 12:59 - 00296460 _____ C:\Users\Mateusz\Downloads\Druk przelewu (37).pdf 2015-11-26 12:16 - 2015-11-26 12:16 - 00370121 _____ C:\Users\Mateusz\Downloads\CCF26112015.pdf 2015-11-25 17:21 - 2015-11-25 17:21 - 02845529 _____ C:\Users\Mateusz\Desktop\POLISA 908536320549.pdf 2015-11-25 13:21 - 2015-11-25 13:21 - 00061392 _____ C:\Users\Mateusz\Downloads\oferta (8).pdf 2015-11-25 12:57 - 2015-11-25 12:57 - 00061392 _____ C:\Users\Mateusz\Downloads\oferta (7).pdf 2015-11-25 09:57 - 2015-11-25 09:57 - 02675520 _____ C:\Users\Mateusz\Downloads\CCF30092015_0002 (1).pdf 2015-11-25 09:17 - 2015-11-25 09:17 - 00099383 _____ C:\Users\Mateusz\Downloads\potwierdzenie_70001828420 (1).pdf 2015-11-24 16:31 - 2015-11-24 16:31 - 00074061 _____ C:\Users\Mateusz\Downloads\steblewski.pdf 2015-11-24 14:27 - 2015-11-24 14:27 - 02449210 _____ C:\Users\Mateusz\Desktop\artur.pdf 2015-11-23 15:49 - 2015-11-23 15:49 - 00578802 _____ C:\Users\Mateusz\Downloads\1448290178057.zip 2015-11-23 14:46 - 2015-11-23 14:46 - 00384260 _____ C:\Users\Mateusz\Downloads\1448286403352.zip 2015-11-23 10:19 - 2015-11-23 10:19 - 00068501 _____ C:\Users\Mateusz\Downloads\zurawicki.pdf 2015-11-23 10:19 - 2015-11-23 10:19 - 00067155 _____ C:\Users\Mateusz\Downloads\ziemichód.pdf 2015-11-20 13:27 - 2015-11-20 13:27 - 00140022 _____ C:\Users\Mateusz\Downloads\polisa_70002518309.pdf 2015-11-20 13:27 - 2015-11-20 13:27 - 00099704 _____ C:\Users\Mateusz\Downloads\potwierdzenie_70002518309.pdf 2015-11-20 12:23 - 2015-11-20 12:23 - 00068609 _____ C:\Users\Mateusz\Downloads\Eron Felicja.pdf 2015-11-20 12:20 - 2015-11-20 12:20 - 00068435 _____ C:\Users\Mateusz\Downloads\Koc.pdf 2015-11-20 12:17 - 2015-11-20 12:17 - 00069687 _____ C:\Users\Mateusz\Downloads\Kaczmarek.pdf 2015-11-20 12:16 - 2015-11-20 12:16 - 00066397 _____ C:\Users\Mateusz\Downloads\Eron Sylwia.pdf 2015-11-20 12:14 - 2015-11-20 12:14 - 00067526 _____ C:\Users\Mateusz\Downloads\Cybułka.pdf 2015-11-20 12:09 - 2015-11-20 12:09 - 00069072 _____ C:\Users\Mateusz\Downloads\Buczkowska.pdf 2015-11-20 12:06 - 2015-11-20 12:06 - 00071336 _____ C:\Users\Mateusz\Downloads\Bazan.pdf 2015-11-20 12:04 - 2015-11-20 12:04 - 00068946 _____ C:\Users\Mateusz\Downloads\krzysztof antczak.pdf 2015-11-20 12:01 - 2015-11-20 12:01 - 00068912 _____ C:\Users\Mateusz\Downloads\Chwyć.pdf 2015-11-20 09:37 - 2015-11-20 09:37 - 00000000 ____D C:\Users\Mateusz\AppData\Local\CEF 2015-11-20 09:29 - 2015-11-26 12:40 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2015-11-19 10:14 - 2015-11-19 10:14 - 00001074 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2015-11-16 12:58 - 2015-11-16 12:58 - 00160040 _____ C:\Users\Mateusz\Downloads\polisa_70002023647 (2).pdf 2015-11-13 14:09 - 2015-11-13 14:09 - 00320032 _____ C:\Users\Mateusz\Desktop\Faktura.PDF 2015-11-13 09:20 - 2015-11-13 09:20 - 00443214 _____ C:\Users\Mateusz\Downloads\plik (4).pdf 2015-11-12 11:40 - 2015-11-12 11:40 - 00068809 _____ C:\Users\Mateusz\Downloads\banaś.pdf 2015-11-12 09:38 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-11-12 09:38 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-11-12 09:38 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-11-12 09:38 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-11-12 09:38 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-11-12 09:38 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-11-12 09:38 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-11-12 09:38 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-11-12 09:38 - 2015-10-30 23:39 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2015-11-12 09:38 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-11-12 09:38 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2015-11-12 09:38 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-11-12 09:38 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-11-12 09:38 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-11-12 09:38 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-11-12 09:38 - 2015-10-30 23:14 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2015-11-12 09:38 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-11-12 09:38 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-11-12 09:38 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-11-12 09:38 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2015-11-12 09:38 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-11-12 09:38 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-11-12 09:38 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2015-11-12 09:38 - 2015-10-20 22:54 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2015-11-12 09:38 - 2015-10-20 15:53 - 03705856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-11-12 09:38 - 2015-10-20 15:36 - 02243072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll 2015-11-12 09:38 - 2015-10-20 15:35 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2015-11-12 09:38 - 2015-10-20 15:34 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll 2015-11-12 09:38 - 2015-10-20 15:34 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll 2015-11-12 09:38 - 2015-10-20 15:34 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe 2015-11-12 09:38 - 2015-10-20 15:33 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2015-11-12 09:38 - 2015-10-20 15:14 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2015-11-12 09:38 - 2015-10-20 15:13 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll 2015-11-12 09:38 - 2015-10-20 15:13 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2015-11-12 09:38 - 2015-10-20 15:13 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe 2015-11-12 09:38 - 2015-10-17 15:19 - 04176384 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-11-12 09:38 - 2015-10-15 17:08 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2015-11-12 09:38 - 2015-10-15 16:46 - 00803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2015-11-12 09:38 - 2015-10-15 00:02 - 07455064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-11-12 09:38 - 2015-10-15 00:02 - 01659560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2015-11-12 09:38 - 2015-10-15 00:02 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2015-11-12 09:38 - 2015-10-15 00:02 - 01487008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2015-11-12 09:38 - 2015-10-15 00:02 - 01355848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2015-11-12 09:38 - 2015-10-13 18:10 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2015-11-12 09:38 - 2015-10-13 18:10 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys 2015-11-12 09:38 - 2015-10-13 16:59 - 00397224 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll 2015-11-12 09:38 - 2015-10-13 16:59 - 00340872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2015-11-12 09:38 - 2015-10-13 16:59 - 00137960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll 2015-11-12 09:38 - 2015-10-13 16:59 - 00120376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll 2015-11-12 09:38 - 2015-10-13 16:59 - 00106952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll 2015-11-12 09:38 - 2015-10-13 16:59 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll 2015-11-12 09:38 - 2015-10-11 07:36 - 00561952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2015-11-12 09:38 - 2015-10-11 07:36 - 00177496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2015-11-12 09:38 - 2015-10-10 19:40 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2015-11-12 09:38 - 2015-10-10 19:39 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2015-11-12 09:38 - 2015-10-10 19:07 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll 2015-11-12 09:38 - 2015-10-10 18:33 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-11-12 09:38 - 2015-10-10 18:27 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2015-11-12 09:38 - 2015-10-10 18:11 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll 2015-11-12 09:38 - 2015-10-10 17:45 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2015-11-12 09:38 - 2015-10-08 17:08 - 01083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2015-11-12 09:38 - 2015-09-29 13:24 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys 2015-11-12 09:38 - 2015-09-12 14:47 - 00414559 _____ C:\WINDOWS\system32\ApnDatabase.xml 2015-11-12 09:38 - 2015-09-07 17:22 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll 2015-11-12 09:38 - 2015-09-07 16:54 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll 2015-11-12 09:38 - 2015-09-07 16:30 - 01091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2015-11-12 09:38 - 2015-09-04 20:24 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys 2015-11-12 09:38 - 2015-08-28 23:20 - 00183368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe 2015-11-12 09:38 - 2015-08-20 21:45 - 01380048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2015-11-12 09:38 - 2015-08-20 18:48 - 01096704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2015-11-12 09:38 - 2015-08-10 19:15 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL 2015-11-12 09:38 - 2015-08-10 19:06 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL 2015-11-12 09:38 - 2015-08-10 18:49 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2015-11-12 09:38 - 2015-08-10 17:56 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL 2015-11-12 09:38 - 2015-08-10 17:46 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2015-11-12 09:38 - 2014-11-10 19:06 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys 2015-11-12 09:38 - 2014-11-05 02:41 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll 2015-11-12 09:38 - 2014-11-05 02:18 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll 2015-11-10 10:02 - 2015-11-10 10:02 - 00062242 _____ C:\Users\Mateusz\Downloads\pko_trans_details_151110_100215.pdf 2015-11-10 10:01 - 2015-11-10 10:01 - 00062249 _____ C:\Users\Mateusz\Downloads\pko_trans_details_151110_100122.pdf 2015-11-10 09:59 - 2015-11-10 09:59 - 00062230 _____ C:\Users\Mateusz\Downloads\pko_trans_details_151110_095859.pdf 2015-11-10 09:57 - 2015-11-10 09:57 - 00062249 _____ C:\Users\Mateusz\Downloads\pko_trans_details_151110_095748.pdf ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-12-10 20:22 - 2014-08-13 13:03 - 00000000 ____D C:\SS_AGENT 2015-12-10 20:21 - 2013-08-22 14:36 - 00000000 ____D C:\Windows 2015-12-10 19:57 - 2014-08-04 23:06 - 00001080 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2959243001-716245045-1533737087-1002UA.job 2015-12-10 19:53 - 2014-08-25 10:21 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-12-10 19:38 - 2014-12-09 13:07 - 00000000 ____D C:\Program Files (x86)\Opera 2015-12-10 19:34 - 2015-05-18 14:05 - 00001066 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-12-10 19:33 - 2014-03-21 21:54 - 00000000 ____D C:\ProgramData\NVIDIA 2015-12-10 19:33 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-12-10 18:19 - 2014-03-21 22:25 - 00012800 _____ C:\WINDOWS\system32\VfService.trf 2015-12-10 16:58 - 2014-08-06 02:41 - 00028757 _____ C:\WINDOWS\BRRBCOM.INI 2015-12-10 16:09 - 2014-08-04 23:03 - 00003984 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{CD0C7D13-062C-47A1-B826-CAC07B2553F9} 2015-12-10 15:49 - 2015-03-10 12:10 - 00000000 ____D C:\Users\Mateusz\AppData\Local\NPE 2015-12-10 15:16 - 2015-08-07 15:47 - 00000000 ____D C:\Program Files (x86)\SpeedFan 2015-12-10 15:02 - 2014-08-04 23:00 - 00000000 ____D C:\Users\Mateusz\AppData\Local\SweetLabs App Platform 2015-12-10 14:58 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2015-12-10 14:30 - 2015-08-26 09:20 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-12-10 14:22 - 2015-08-04 11:48 - 00735744 ___SH C:\Users\Mateusz\Desktop\Thumbs.db 2015-12-10 14:08 - 2014-08-04 23:07 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2959243001-716245045-1533737087-1002 2015-12-10 14:02 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf 2015-12-10 13:57 - 2015-10-21 14:43 - 00000000 ____D C:\Users\Mateusz\AppData\Local\Apple Inc 2015-12-10 13:57 - 2014-08-25 10:25 - 00000000 ____D C:\Users\Mateusz\AppData\Roaming\Apple Computer 2015-12-10 13:57 - 2014-08-25 10:24 - 00000000 ____D C:\Users\Mateusz\AppData\Local\Apple 2015-12-10 13:57 - 2014-08-25 10:24 - 00000000 ____D C:\Program Files\Common Files\Apple 2015-12-10 13:57 - 2014-08-04 23:00 - 00000000 ____D C:\Users\Mateusz 2015-12-10 12:11 - 2014-03-22 06:28 - 00808198 _____ C:\WINDOWS\system32\perfh015.dat 2015-12-10 12:11 - 2014-03-22 06:28 - 00164014 _____ C:\WINDOWS\system32\perfc015.dat 2015-12-10 12:11 - 2013-10-07 19:27 - 01828496 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-12-10 11:54 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-12-10 11:49 - 2014-08-23 10:31 - 00000000 ____D C:\WINDOWS\system32\Drivers\NISx64 2015-12-10 11:38 - 2015-07-10 15:15 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security 2015-12-10 11:38 - 2014-08-23 10:32 - 00002450 _____ C:\Users\Public\Desktop\Norton Internet Security.LNK 2015-12-10 11:30 - 2015-08-26 09:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-12-10 11:30 - 2015-08-26 09:20 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2015-12-10 11:30 - 2015-04-07 09:46 - 00000000 ___SD C:\WINDOWS\system32\GWX 2015-12-10 11:30 - 2015-03-25 13:57 - 00000000 ____D C:\ProgramData\Microsoft Help 2015-12-10 11:30 - 2014-08-23 10:23 - 00000000 ____D C:\ProgramData\Norton 2015-12-10 11:30 - 2014-08-07 08:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-12-10 11:30 - 2014-08-04 23:09 - 00000000 ____D C:\Users\Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-12-10 11:30 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media 2015-12-10 11:30 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\ELAMBKUP 2015-12-10 11:30 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SystemResources 2015-12-10 11:30 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2015-12-10 11:30 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Globalization 2015-12-10 11:30 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-12-10 11:30 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2015-12-10 11:27 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps 2015-12-10 11:22 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\registration 2015-12-10 09:54 - 2014-09-29 14:52 - 00000000 ____D C:\Users\Mateusz\AppData\Local\CrashDumps 2015-12-10 09:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ModemLogs 2015-12-10 09:15 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM 2015-12-09 16:08 - 2013-08-22 16:20 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-12-09 16:07 - 2014-08-06 17:59 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-12-09 11:53 - 2014-08-25 10:21 - 00003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2015-12-09 09:57 - 2014-08-04 23:06 - 00001028 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2959243001-716245045-1533737087-1002Core.job 2015-12-08 17:42 - 2015-04-03 10:57 - 00000000 ____D C:\Users\Mateusz\Desktop\PRACA 2015-12-07 09:31 - 2015-05-18 14:05 - 00004042 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-12-07 09:31 - 2015-05-18 14:05 - 00003806 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-12-07 09:31 - 2015-05-18 14:05 - 00001070 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-12-07 09:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-12-04 09:41 - 2015-08-11 12:22 - 01549312 ___SH C:\Users\Mateusz\Downloads\Thumbs.db 2015-12-02 09:52 - 2014-08-04 23:06 - 00004030 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2959243001-716245045-1533737087-1002UA 2015-12-02 09:52 - 2014-08-04 23:06 - 00003650 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2959243001-716245045-1533737087-1002Core 2015-12-02 09:32 - 2015-05-18 14:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2015-12-02 09:13 - 2014-03-21 21:53 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-11-25 09:32 - 2014-09-24 11:08 - 00000000 ____D C:\Users\Mateusz\AppData\Local\Canon Easy-PhotoPrint EX 2015-11-25 09:32 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\FxsTmp 2015-11-20 09:37 - 2014-08-08 12:59 - 00000000 ____D C:\Users\Mateusz\AppData\Local\Adobe 2015-11-20 09:30 - 2015-01-03 10:22 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2015-11-20 09:29 - 2014-08-08 12:59 - 00000000 ____D C:\ProgramData\Adobe 2015-11-20 09:29 - 2014-08-08 12:59 - 00000000 ____D C:\Program Files (x86)\Adobe 2015-11-19 10:14 - 2014-12-09 13:08 - 00003868 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1418126874 2015-11-17 10:52 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache 2015-11-14 10:10 - 2013-08-22 15:44 - 00524304 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-11-13 16:49 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData 2015-11-13 12:03 - 2014-08-06 17:59 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Pliki w katalogu głównym wybranych folderów ======= 2015-07-12 11:23 - 2015-07-12 11:23 - 0022579 _____ () C:\Users\Mateusz\AppData\Local\recently-used.xbel 2015-12-10 10:06 - 2015-12-10 12:36 - 0007608 _____ () C:\Users\Mateusz\AppData\Local\Resmon.ResmonCfg 2014-03-21 22:04 - 2014-03-21 22:04 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Niektóre pliki w TEMP: ==================== C:\Users\Mateusz\AppData\Local\Temp\sfamcc00001.dll ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2015-12-03 11:22 ==================== Koniec FRST.txt ============================