Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja:31-12-2015
Uruchomiony przez MarcinJ (administrator)  DROGOWKAMARCIN (07-01-2016 07:45:34)
Uruchomiony z C:\Users\MarcinJ\Desktop\Agmer
Załadowane profile: MarcinJ (Dostępne profile: MarcinJ)
Platform: Microsoft Windows 7 Professional  Service Pack 1 (X86) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
(Dassault Systèmes) C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Nero AG) C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
() C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.29.1\GoogleCrashHandler.exe
() C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
() C:\Program Files\Hostless Modem\CheckNDISPort.exe
() C:\Program Files\Hostless Modem\CancelAutoPlay_60.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Glarysoft Ltd) C:\Program Files\Glary Utilities 5\Integrator.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [USB3MON] => C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-07-18] (Intel Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5089480 2015-07-08] (ESET)
HKLM\...\Run: [CheckNDISPort] => C:\Program Files\Hostless Modem\CheckNDISPort.exe [441160 2012-07-06] ()
HKLM\...\Run: [CancelAutoPlay_60] => C:\Program Files\Hostless Modem\CancelAutoPlay_60.exe [440648 2012-09-18] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-2905836725-901153544-2742748582-1000\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [36776 2015-12-21] (Glarysoft Ltd)
HKU\S-1-5-21-2905836725-901153544-2742748582-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6602152 2015-12-08] (Piriform Ltd)
HKU\S-1-5-21-2905836725-901153544-2742748582-1000\...\MountPoints2: {c2520719-4245-11e5-a895-902b34aba6a5} - H:\HTC_Sync_Manager_PC.exe
BootExecute: autocheck autochk *  

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\Parameters: [DhcpNameServer] 194.204.152.34 8.8.8.8
Tcpip\..\Interfaces\{6362F27E-AF08-4E6B-9DBB-6928CCBA7A75}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9392444C-1458-4A55-86D4-A669F4698B61}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9432DD4E-8C5A-4FDF-99B9-6D2294FCA941}: [DhcpNameServer] 194.204.152.34 8.8.8.8
Tcpip\..\Interfaces\{A8623923-2C5C-42DB-81DC-528027A5F304}: [DhcpNameServer] 192.168.0.1 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2016-01-05] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2016-01-05] (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

FireFox:
========
FF ProfilePath: C:\Users\MarcinJ\AppData\Roaming\Mozilla\Firefox\Profiles\nw0bgy06.default
FF Homepage: hxxp://www.zakopane.eu/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-15] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2010-01-18] (Adobe Systems, Inc.)
FF Plugin: @DVR/npmedia,version=3.1.0.4 -> C:\Program Files\webrec\WEB30\WebPlugin\npmedia.dll [2015-05-08] ()
FF Plugin: @DVR/npTimeGrid,version=3.1.0.4 -> C:\Program Files\webrec\WEB30\WebPlugin\npTimeGrid.dll [2015-05-08] (Unauthorized copy)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2016-01-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2016-01-05] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-14] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\MarcinJ\AppData\Roaming\Mozilla\Firefox\Profiles\nw0bgy06.default\searchplugins\-.xml [2015-01-22]
FF SearchPlugin: C:\Users\MarcinJ\AppData\Roaming\Mozilla\Firefox\Profiles\nw0bgy06.default\searchplugins\entireweb.xml [2015-01-30]
FF SearchPlugin: C:\Users\MarcinJ\AppData\Roaming\Mozilla\Firefox\Profiles\nw0bgy06.default\searchplugins\olxpl.xml [2015-02-10]
FF Extension: X-notifier - C:\Users\MarcinJ\AppData\Roaming\Mozilla\Firefox\Profiles\nw0bgy06.default\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2015-10-28]
FF Extension: WOT - C:\Users\MarcinJ\AppData\Roaming\Mozilla\Firefox\Profiles\nw0bgy06.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-12-14]
FF Extension: FlashGot - C:\Users\MarcinJ\AppData\Roaming\Mozilla\Firefox\Profiles\nw0bgy06.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2015-12-31]
FF Extension: Video DownloadHelper - C:\Users\MarcinJ\AppData\Roaming\Mozilla\Firefox\Profiles\nw0bgy06.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-30]
FF Extension: Adblock Plus - C:\Users\MarcinJ\AppData\Roaming\Mozilla\Firefox\Profiles\nw0bgy06.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-16]

==================== Usługi (filtrowane) ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-08-13] (SUPERAntiSpyware.com)
S3 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe [818952 2011-12-22] (ABBYY)
R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [95232 2015-05-30] (Dassault Systèmes) [Brak podpisu cyfrowego]
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [1353720 2015-07-08] (ESET)
S3 FlexNet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe [1074480 2015-08-17] (Flexera Software LLC)
R2 hasplms; C:\Windows\system32\hasplms.exe [4889032 2011-12-30] (SafeNet Inc.)
R2 HTCMonitorService; C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [595968 2013-08-27] (Intel(R) Corporation) [Brak podpisu cyfrowego]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [642520 2013-08-27] (Intel(R) Corporation)
S2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Brak podpisu cyfrowego]
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-12-11] (VIA Technologies, Inc.)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Sterowniki (filtrowane) ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 aksfridge; C:\Windows\system32\drivers\aksfridge.sys [367560 2011-10-04] (SafeNet Inc.)
S3 DrvAgent32; C:\Windows\system32\Drivers\DrvAgent32.sys [23456 2015-03-05] (Phoenix Technologies) [Brak podpisu cyfrowego]
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [202704 2015-07-14] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [144536 2015-07-14] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [132152 2015-07-14] (ESET)
R0 FantomDVDBus; C:\Windows\System32\DRIVERS\FantomDVDBus.sys [130232 2009-03-23] (An Chen Computer Co., Ltd.)
R3 FantomDVDPort; C:\Windows\System32\DRIVERS\FantomDVDPort.sys [10552 2009-03-23] (An Chen Computer Co., Ltd.)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [17472 2015-04-29] (Glarysoft Ltd)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [596424 2011-08-10] (SafeNet Inc.)
R2 Haspnt; C:\Windows\system32\drivers\Haspnt.sys [47616 2014-05-14] (Aladdin Knowledge Systems) [Brak podpisu cyfrowego]
S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV32.sys [105984 2009-10-27] (QUALCOMM Incorporated)
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [521576 2014-05-28] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [24424 2014-05-28] (Intel Corporation)
R3 ICCWDT; C:\Windows\System32\DRIVERS\ICCWDT.sys [22040 2012-05-17] (Intel Corporation)
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16880 2013-07-18] (Intel Corporation)
R3 iusb3hub; C:\Windows\System32\DRIVERS\iusb3hub.sys [352752 2013-07-18] (Intel Corporation)
R3 iusb3xhc; C:\Windows\System32\DRIVERS\iusb3xhc.sys [801776 2013-07-18] (Intel Corporation)
R3 KMM4xUSB; C:\Windows\System32\Drivers\KMM4xUSB.sys [40256 2010-01-05] ( MM Electronics,  DATOM) [Brak podpisu cyfrowego]
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x86.sys [99992 2012-07-19] (Qualcomm Atheros Co., Ltd.)
R3 MEI; C:\Windows\System32\DRIVERS\TeeDriver.sys [85464 2013-09-16] (Intel Corporation)
R1 networx; C:\Windows\System32\drivers\networx.sys [65256 2015-10-02] (NetFilterSDK.com)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [565424 2013-12-16] (VIA Technologies, Inc.)
S3 XXLHASP; c:\windows\system32\drivers\XXLHASP.sys [821248 2014-05-12] () [Brak podpisu cyfrowego]
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [302656 2015-05-19] (Realsil Semiconductor Corporation)
S4 sptd; \SystemRoot\System32\Drivers\sptd.sys [X]

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2016-01-05 15:00 - 2016-01-07 07:45 - 00000000 ____D C:\Users\MarcinJ\Desktop\Agmer
2016-01-05 14:36 - 2016-01-05 14:36 - 00380416 _____ C:\Users\MarcinJ\Downloads\qq2g6bn7.exe
2016-01-05 14:14 - 2016-01-05 14:14 - 00010417 _____ C:\Users\MarcinJ\wfs.rps
2016-01-05 07:47 - 2016-01-05 07:47 - 00000000 ____D C:\Users\MarcinJ\AppData\Roaming\Sun
2016-01-05 07:47 - 2016-01-05 07:47 - 00000000 ____D C:\Users\MarcinJ\.oracle_jre_usage
2016-01-05 07:47 - 2016-01-05 07:47 - 00000000 ____D C:\Program Files\Common Files\Java
2016-01-04 13:49 - 2016-01-04 13:49 - 00164038 _____ C:\Users\MarcinJ\Downloads\xposedinstall-2.1.4.zip
2015-12-31 10:10 - 2015-12-31 10:10 - 01500928 _____ (SpeedyFox) C:\Users\MarcinJ\Downloads\speedyfox.exe
2015-12-31 08:26 - 2016-01-04 08:23 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-12-30 10:08 - 2015-12-30 10:09 - 06805328 _____ (Piriform Ltd) C:\Users\MarcinJ\Downloads\ccsetup513.exe
2015-12-30 07:50 - 2015-12-30 07:50 - 00000989 _____ C:\Users\MarcinJ\Desktop\WinDirStat.lnk
2015-12-30 07:50 - 2015-12-30 07:50 - 00000000 ____D C:\Users\MarcinJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat
2015-12-30 07:50 - 2015-12-30 07:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat
2015-12-30 07:50 - 2015-12-30 07:50 - 00000000 ____D C:\Program Files\WinDirStat
2015-12-29 11:33 - 2015-12-29 12:22 - 00000000 ____D C:\Users\MarcinJ\Documents\Dziennki objazdów RoudMan
2015-12-29 11:24 - 2015-12-29 11:24 - 00015629 _____ C:\Users\MarcinJ\Documents\Wykaz ulic - zakopane.xlsx
2015-12-29 11:03 - 2015-12-30 08:21 - 00000000 ____D C:\Users\MarcinJ\Documents\Dziennki wzory RoudMan
2015-12-29 10:23 - 2015-12-29 10:23 - 00000929 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2015-12-29 10:23 - 2015-12-29 10:23 - 00000917 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2015-12-29 09:13 - 2015-12-29 09:13 - 00000000 ____D C:\ProgramData\IsolatedStorage
2015-12-29 09:11 - 2015-09-16 08:44 - 05413888 _____ (Michał Jankowski) C:\Users\MarcinJ\Downloads\PDFCombiner.exe
2015-12-29 09:10 - 2015-12-29 09:10 - 01525241 _____ (Igor Pavlov) C:\Users\MarcinJ\Downloads\PDFCombiner-Standalone.exe
2015-12-28 09:53 - 2015-12-28 10:39 - 00000000 ____D C:\ProgramData\HitmanPro
2015-12-28 09:48 - 2015-12-28 09:53 - 10344184 _____ (SurfRight B.V.) C:\Users\MarcinJ\Downloads\HitmanPro.exe
2015-12-28 08:51 - 2015-12-28 16:46 - 00000000 ____D C:\Users\MarcinJ\Documents\Remonty 2017
2015-12-28 08:33 - 2016-01-05 07:55 - 15269608 _____ C:\Users\MarcinJ\Downloads\Glary_Utilities_v5.41.0.61.exe
2015-12-22 08:46 - 2015-12-22 08:46 - 00000000 ____D C:\Windows\system32\directx
2015-12-22 08:44 - 2015-12-22 08:44 - 00000000 ____D C:\Users\MarcinJ\Downloads\MSIAfterburner_[www.programosy.pl]
2015-12-22 08:43 - 2015-12-22 08:43 - 37696116 _____ C:\Users\MarcinJ\Downloads\MSIAfterburner_[www.programosy.pl].zip
2015-12-22 08:35 - 2015-12-22 08:35 - 00007609 _____ C:\Users\MarcinJ\AppData\Local\Resmon.ResmonCfg
2015-12-21 16:47 - 2015-12-21 16:47 - 00002001 _____ C:\Users\Public\Desktop\HTC Sync Manager.lnk
2015-12-21 15:56 - 2015-12-21 15:56 - 00000000 ____D C:\Users\MarcinJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WebPlugin
2015-12-17 14:16 - 2015-12-17 14:16 - 00027648 _____ C:\Users\MarcinJ\Desktop\Oznakowanie poziome na ulicach.xls
2015-12-17 14:15 - 2015-12-17 14:15 - 00050304 _____ C:\Users\MarcinJ\Documents\Podsumowanie aktywnych filtrów.pdf
2015-12-15 09:52 - 2015-12-15 09:52 - 00000000 ____D C:\Users\MarcinJ\Downloads\S-DCDATA-002009WF-ALLIN-32BIT_
2015-12-14 16:50 - 2015-12-14 16:50 - 00000000 ____D C:\Users\Public\Desktop\Nikon
2015-12-14 15:39 - 2015-12-14 15:39 - 00103253 _____ C:\Users\MarcinJ\Desktop\mapdata.xml

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2016-01-07 07:45 - 2015-09-30 11:27 - 00000000 ____D C:\FRST
2016-01-07 07:44 - 2015-08-20 08:48 - 00000000 ____D C:\Users\MarcinJ\AppData\Local\HTC MediaHub
2016-01-07 07:44 - 2015-08-13 06:48 - 00001032 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-07 07:44 - 2014-05-30 06:16 - 00000000 ____D C:\Program Files\Glary Utilities 5
2016-01-07 07:44 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-07 07:43 - 2014-02-20 12:30 - 00000000 ____D C:\Users\MarcinJ\Documents\Pliki programu Outlook
2016-01-07 07:43 - 2011-04-12 06:08 - 00744538 _____ C:\Windows\system32\perfh015.dat
2016-01-07 07:43 - 2011-04-12 06:08 - 00157518 _____ C:\Windows\system32\perfc015.dat
2016-01-07 07:43 - 2010-11-20 22:01 - 01681528 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-07 07:43 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2016-01-07 07:41 - 2009-07-14 05:34 - 00031904 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-01-07 07:41 - 2009-07-14 05:34 - 00031904 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-01-05 14:51 - 2015-08-13 06:48 - 00001036 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-05 14:34 - 2014-07-30 08:24 - 00000000 ____D C:\AdwCleaner
2016-01-05 14:16 - 2014-02-20 12:31 - 00000000 ____D C:\Users\MarcinJ\Documents\Remonty 2012
2016-01-05 14:16 - 2014-02-20 12:31 - 00000000 ____D C:\Users\MarcinJ\Documents\Remonty 2011
2016-01-05 14:16 - 2014-02-20 12:31 - 00000000 ____D C:\Users\MarcinJ\Documents\Remonty 2010
2016-01-05 14:14 - 2014-02-20 10:35 - 00000000 ____D C:\Users\MarcinJ
2016-01-05 13:46 - 2014-06-30 09:13 - 00000000 ____D C:\Program Files\TeamViewer
2016-01-05 11:14 - 2014-02-24 11:30 - 00000000 ____D C:\Users\MarcinJ\AppData\Roaming\TeamViewer
2016-01-05 09:42 - 2014-05-19 13:19 - 00011711 _____ C:\Users\MarcinJ\sv6config
2016-01-05 08:03 - 2014-05-30 06:16 - 00001050 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2016-01-05 08:03 - 2014-05-30 06:16 - 00001038 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2016-01-05 08:03 - 2014-02-24 10:34 - 00000000 ____D C:\Users\MarcinJ\AppData\Roaming\GlarySoft
2016-01-05 07:48 - 2014-02-20 14:11 - 00000000 ____D C:\ProgramData\Oracle
2016-01-05 07:47 - 2015-11-26 14:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-01-05 07:47 - 2015-11-26 14:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2016-01-05 07:47 - 2014-02-20 14:10 - 00000000 ____D C:\Program Files\Java
2016-01-05 07:46 - 2014-05-19 13:24 - 00095840 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2016-01-04 16:59 - 2015-09-21 14:41 - 00000000 ____D C:\Users\MarcinJ\Documents\Remonty 2016
2016-01-04 15:55 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF
2016-01-04 13:47 - 2015-01-19 13:13 - 00000000 ____D C:\Users\MarcinJ\Downloads\Antonin
2016-01-04 13:16 - 2015-01-05 11:58 - 00000000 ____D C:\Users\MarcinJ\Documents\Remonty 2015
2016-01-04 12:09 - 2015-04-21 10:46 - 00000000 ____D C:\Users\MarcinJ\Downloads\Kochłowy
2016-01-04 08:23 - 2014-02-20 13:54 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-01-04 08:23 - 2009-07-14 03:37 - 00000000 ____D C:\Windows
2015-12-31 10:39 - 2014-03-07 15:23 - 00000000 ____D C:\Users\MarcinJ\dwhelper
2015-12-30 10:10 - 2014-04-15 08:17 - 00000965 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-12-30 09:18 - 2014-02-26 13:21 - 00001289 _____ C:\Users\MarcinJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2015-12-30 07:37 - 2009-07-14 05:33 - 00478856 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-29 14:49 - 2014-07-28 15:03 - 00142008 _____ C:\Users\MarcinJ\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-28 14:43 - 2014-02-20 12:32 - 00000000 ____D C:\Users\MarcinJ\Documents\Remonty 2013
2015-12-22 09:08 - 2014-02-20 12:27 - 00000000 ____D C:\Users\MarcinJ\Documents\CCleaner
2015-12-22 09:07 - 2014-03-17 14:51 - 00000000 ____D C:\Windows\Minidump
2015-12-21 16:47 - 2014-06-12 13:51 - 00000000 ____D C:\Users\MarcinJ\AppData\Local\Downloaded Installations
2015-12-21 16:39 - 2014-03-03 12:04 - 00000000 ____D C:\Temp
2015-12-21 16:31 - 2014-03-26 12:04 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-12-21 16:30 - 2014-02-24 10:40 - 00000000 ____D C:\Users\MarcinJ\AppData\Local\Google
2015-12-21 16:30 - 2014-02-24 10:40 - 00000000 ____D C:\Program Files\Google
2015-12-21 16:30 - 2014-02-20 11:24 - 00000000 ____D C:\Users\MarcinJ\AppData\Roaming\Adobe
2015-12-21 09:34 - 2015-09-10 08:55 - 00000000 ____D C:\Users\MarcinJ\AppData\Local\PDFCreator
2015-12-17 15:29 - 2014-02-20 12:30 - 00000000 ____D C:\Users\MarcinJ\Documents\Polisy ubezpieczeniowe
2015-12-17 15:28 - 2014-02-20 12:32 - 00000000 ____D C:\Users\MarcinJ\Documents\Remonty 2014
2015-12-17 07:42 - 2014-02-24 11:42 - 00000362 _____ C:\Users\MarcinJ\ezConfig
2015-12-17 07:31 - 2015-11-26 14:57 - 00010417 _____ C:\Users\MarcinJ\wfsez.rps
2015-12-16 15:28 - 2014-02-20 12:32 - 00000000 ____D C:\Users\MarcinJ\Documents\Uchwały
2015-12-16 09:30 - 2014-02-20 12:32 - 00000000 ____D C:\Users\MarcinJ\Documents\WZORY PISM
2015-12-16 07:32 - 2014-02-20 11:24 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-15 07:35 - 2014-02-20 11:24 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-12-15 07:35 - 2014-02-20 11:24 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-12-14 12:50 - 2015-11-20 07:55 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Pliki w katalogu głównym wybranych folderów =======

2003-07-08 13:56 - 2003-07-08 13:56 - 0047250 _____ () C:\Program Files\Img2Ozf.chm
2003-06-16 14:35 - 2003-06-16 14:35 - 1216512 _____ () C:\Program Files\Img2ozf.exe
2014-04-01 07:44 - 2014-04-01 07:44 - 0000980 _____ () C:\Program Files\unins000.dat
2003-02-01 23:00 - 2003-02-01 23:00 - 0086356 _____ (Jordan Russell) C:\Program Files\unins000.exe
2015-11-05 09:03 - 2015-11-05 09:03 - 0000834 _____ () C:\Users\MarcinJ\AppData\Local\recently-used.xbel
2015-12-22 08:35 - 2015-12-22 08:35 - 0007609 _____ () C:\Users\MarcinJ\AppData\Local\Resmon.ResmonCfg
2014-12-30 09:37 - 2014-12-30 09:37 - 0003072 _____ () C:\ProgramData\wtwLicensing.db

==================== Bamital & volsnap =================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\Windows\explorer.exe => Plik podpisany cyfrowo
C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
C:\Windows\system32\services.exe => Plik podpisany cyfrowo
C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo


LastRegBack: 2015-12-31 14:23

==================== Koniec  FRST.txt ============================