Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja:07-02-2016 Uruchomiony przez slimosolo (administrator) NET-LAP (12-02-2016 21:28:04) Uruchomiony z C:\Users\slimosolo\Downloads Załadowane profile: slimosolo (Dostępne profile: slimosolo & PZU & DefaultAppPool) Platform: Microsoft Windows 10 Pro (X86) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe (Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe () C:\Windows\System32\FLSDEVCP.EXE (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe (Logitech Inc.) C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe () C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\hidfind.exe (Stardock) C:\Program Files\Stardock\ObjectDock\ObjectDock.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (InstallShield Software Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe (Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.19020.0_x86__8wekyb3d8bbwe\Calculator.exe () C:\Program Files\NapiProjekt\napisy.exe (VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (BitTorrent Inc.) C:\Users\slimosolo\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) C:\Users\slimosolo\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe (BitTorrent Inc.) C:\Users\slimosolo\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [237568 2009-07-22] (Alps Electric Co., Ltd.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7719456 2009-08-24] (Realtek Semiconductor) HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [803200 2015-12-01] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-16] (InstallShield Software Corporation) HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-05] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [FLSDeviceControlPanel] => C:\Windows\system32\FLSDEVCP.EXE [107816 2015-09-20] () HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [596528 2015-12-22] (Oracle Corporation) HKLM\...\Run: [LWS] => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.) HKU\S-1-5-21-1308987282-2658165060-1161248375-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-06-16] (InstallShield Software Corporation) HKU\S-1-5-21-1308987282-2658165060-1161248375-1000\...\Run: [GG] => C:\Users\slimosolo\AppData\Local\GG\Application\gghub.exe [4078144 2015-12-16] (GG Network S.A.) Startup: C:\Users\slimosolo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Rejestracja produktu.lnk [2016-02-06] ShortcutTarget: Logitech . Rejestracja produktu.lnk -> C:\Program Files\Logitech\Ereg\eReg.exe (Leader Technologies/Logitech) Startup: C:\Users\slimosolo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk [2014-04-21] ShortcutTarget: Stardock ObjectDock.lnk -> C:\Program Files\Stardock\ObjectDock\ObjectDock.exe (Stardock) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{cc7422b2-88d9-41f1-83c0-6d2210f9d529}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{d72ece48-d7ac-4edb-a97e-bcebe310dadd}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank HKU\S-1-5-21-1308987282-2658165060-1161248375-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: PDF Architect Helper -> {691B33B0-B86E-47F3-81C7-56E4FE3B929C} -> C:\Program Files\PDF Architect 2\creator-ie-helper.dll [2014-10-10] (pdfforge GmbH) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_71\bin\ssv.dll [2016-01-23] (Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-23] (Oracle Corporation) BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\PZU SA\PZU Symulator\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2013-11-18] (Sun Microsystems, Inc.) Toolbar: HKLM - PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files\PDF Architect 2\creator-ie-plugin.dll [2014-10-10] (pdfforge GmbH) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\slimosolo\AppData\Roaming\Mozilla\Firefox\Profiles\7npr8w6o.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-09-14] () FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1210150.dll [2014-03-11] (Adobe Systems, Inc.) FF Plugin: @java.com/DTPlugin,version=11.71.2 -> C:\Program Files\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll [2016-01-23] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.71.2 -> C:\Program Files\Java\jre1.8.0_71\bin\plugin2\npjp2.dll [2016-01-23] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin: @Skype Technologies S.A..com/Skype Web Plugin -> C:\Program Files\SkypeWebPlugin\3.1.15602.22612\npSkypeWebPlugin.dll [2014-07-24] (Skype) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-09-19] (Adobe Systems) FF Plugin HKU\S-1-5-21-1308987282-2658165060-1161248375-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\slimosolo\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-05-07] (Unity Technologies ApS) FF user.js: detected! => C:\Users\slimosolo\AppData\Roaming\Mozilla\Firefox\Profiles\7npr8w6o.default\user.js [2014-10-19] FF HKLM\...\Firefox\Extensions: [termtutor@termtutor.com] - C:\Program Files\Mozilla Firefox\extensions\termtutor@termtutor.com => nie znaleziono FF HKLM\...\Firefox\Extensions: [pdf_architect_2_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 2\resources\pdfarchitect2firefoxextension FF Extension: PDF Architect 2 Creator - C:\Program Files\PDF Architect 2\resources\pdfarchitect2firefoxextension [2015-02-05] [Brak podpisu cyfrowego] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Plugin: (Widevine Content Decryption Module) - C:\Users\slimosolo\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.824\_platform_specific\win_x86\widevinecdmadapter.dll => Brak pliku CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\48.0.2564.103\PepperFlash\pepflashplayer.dll () CHR Profile: C:\Users\slimosolo\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Eliminator Slajdów) - C:\Users\slimosolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\eplekpmdodlgejgogbojajncdlapamff [2015-09-17] CHR Extension: (AdBlock) - C:\Users\slimosolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-02-05] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\slimosolo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-29] ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc7.exe [948392 2015-12-01] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [466408 2015-12-01] (Avira Operations GmbH & Co. KG) S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1418560 2015-12-01] (Avira Operations GmbH & Co. KG) R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [249120 2016-01-05] (Avira Operations GmbH & Co. KG) R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [1680088 2015-09-21] (Broadcom Corporation.) S4 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [409304 2014-10-07] (BlueStack Systems, Inc.) S4 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [388824 2014-10-07] (BlueStack Systems, Inc.) S4 BstHdUpdaterSvc; C:\Program Files\BlueStacks\HD-UpdaterService.exe [782040 2014-10-07] (BlueStack Systems, Inc.) S4 FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [233472 2014-04-30] (Teruten) [Brak podpisu cyfrowego] S4 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Brak podpisu cyfrowego] S4 PDF Architect 2; C:\Program Files\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH) S4 PDF Architect 2 Creator; C:\Program Files\PDF Architect 2\creator-ws.exe [738856 2014-10-10] (pdfforge GmbH) S4 pdfforge CrashHandler; C:\Program Files\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH) S4 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Brak podpisu cyfrowego] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [277760 2015-07-10] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2015-07-10] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [112184 2015-12-01] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [146144 2015-12-01] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44208 2015-12-01] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [62736 2015-12-01] (Avira Operations GmbH & Co. KG) R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [175320 2015-09-21] (Broadcom Corporation.) R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [112344 2014-10-07] (BlueStack Systems) S3 btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [144600 2015-09-21] (Broadcom Corporation.) R2 FLE5WNNT; C:\Windows\System32\Drivers\fle5wnnt.sys [33404 2015-09-20] (Data Encryption Systems Limited) [Brak podpisu cyfrowego] R2 FLSIFACE; C:\Windows\System32\Drivers\flsiface.sys [14272 2015-09-20] (Data Encryption Systems Limited) [Brak podpisu cyfrowego] R2 FLSPAR; C:\Windows\System32\Drivers\flspar.sys [16314 2015-09-20] (Data Encryption Systems Limited) [Brak podpisu cyfrowego] R2 FLSSER; C:\Windows\System32\Drivers\flsser.sys [8344 2015-09-20] (Data Encryption Systems Limited) [Brak podpisu cyfrowego] R2 FLSVCOM; C:\Windows\System32\Drivers\flsvcom.sys [35226 2015-09-20] (Data Encryption Systems Limited) [Brak podpisu cyfrowego] S3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [37344 2014-04-30] () [Brak podpisu cyfrowego] R3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [40736 2013-11-27] (Visicom Media Inc.) R3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv.sys [29728 2013-12-06] (Visicom Media Inc.) R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7518208 2015-07-10] (Intel Corporation) R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [492032 2015-07-10] (Realtek ) R3 RTHDMIAzAudService; C:\WINDOWS\system32\drivers\RtHDMIV.sys [157536 2009-05-20] (Realtek Semiconductor Corp.) R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [31848 2015-07-04] (Avira Operations GmbH & Co. KG) R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [41584 2015-09-21] (Toshiba Corporation) S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [31744 2015-07-10] () R3 UVCFTR; C:\WINDOWS\System32\Drivers\UVCFTR_S.SYS [17960 2009-04-10] (Chicony Electronics Co., Ltd.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [245600 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [97632 2015-07-10] (Microsoft Corporation) R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161792 2015-07-10] (Microsoft Corporation) U3 idsvc; Brak ImagePath S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] U3 wpcsvc; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-02-12 21:28 - 2016-02-12 21:29 - 00018020 _____ C:\Users\slimosolo\Downloads\FRST.txt 2016-02-12 21:28 - 2016-02-12 21:28 - 00380416 _____ C:\Users\slimosolo\Downloads\0c3jl21t.exe 2016-02-12 21:27 - 2016-02-12 21:28 - 00000000 ____D C:\FRST 2016-02-12 21:26 - 2016-02-12 21:26 - 01721344 _____ (Farbar) C:\Users\slimosolo\Downloads\FRST.exe 2016-02-12 21:26 - 2016-02-12 21:26 - 01721344 _____ (Farbar) C:\Users\slimosolo\Downloads\FRST (1).exe 2016-02-12 19:19 - 2016-02-12 19:19 - 00016148 _____ C:\WINDOWS\system32\NET-LAP_slimosolo_HistoryPrediction.bin 2016-02-11 19:54 - 2016-02-12 03:30 - 00000000 ____D C:\Users\slimosolo\AppData\LocalLow\uTorrent 2016-02-11 19:54 - 2016-02-11 20:06 - 00000000 ____D C:\Users\slimosolo\Downloads\Little Boots - Working Girl [Dance] [2015] Album [iTunes Plus M4A AAC] [UJ.rip] 2016-02-10 20:43 - 2016-02-10 20:48 - 00557056 _____ C:\Users\slimosolo\Downloads\PIT11_Pszeniczko_Konrad.pdf 2016-02-10 20:36 - 2016-02-10 20:36 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{B0ACDD8A-0662-4318-9AD8-42E8E2889D8E} 2016-02-07 18:08 - 2016-02-07 18:08 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{280A27ED-5CB4-467D-B1C0-0B27FD87A4BE} 2016-02-07 18:06 - 2016-02-07 18:06 - 00040924 _____ C:\Users\slimosolo\Desktop\ujN-NOEIThyV31Aft48Ow2kCO2eripCaJGZfLQtiiKTYDvWz7-G8qXQASBUUxRmvZDknBIWumGFBmwUYnncOOdm6Rxf1LGgLTKcAQiP5zWeVWjtkfTiBnMc8yG97nNgBpfnOrD9FZOBwEOJFhb4fAjPSH1WrE_TZwwUfD8FX2HE.pdf 2016-02-07 18:06 - 2016-02-07 18:06 - 00040924 _____ C:\Users\slimosolo\Desktop\styczen_doplata (1).pdf 2016-02-07 11:30 - 2016-02-07 11:31 - 00000000 ____D C:\Users\slimosolo\Downloads\Disclosure - Caracal (Deluxe Edition) 2016-02-06 22:27 - 2016-02-06 22:27 - 00000000 ____D C:\Users\slimosolo\AppData\Local\Logitech® Webcam Software 2016-02-06 22:24 - 2016-02-06 22:24 - 00000000 ____D C:\Users\slimosolo\AppData\Roaming\Leadertech 2016-02-06 22:24 - 2016-02-06 22:24 - 00000000 ____D C:\ProgramData\LogiShrd 2016-02-06 22:23 - 2016-02-06 22:24 - 00000000 ____D C:\Program Files\Logitech 2016-02-06 22:23 - 2016-02-06 22:23 - 00001671 _____ C:\Users\Public\Desktop\Logitech Webcam Software .lnk 2016-02-06 22:23 - 2016-02-06 22:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2016-02-06 22:20 - 2016-02-06 22:22 - 74520472 _____ (Logitech, Inc.) C:\Users\slimosolo\Downloads\lws280.exe 2016-02-06 16:31 - 2016-02-06 16:31 - 00298984 _____ (Logitech Inc.) C:\WINDOWS\system32\Drivers\lvrs.sys 2016-02-06 16:31 - 2016-02-06 16:31 - 00040398 _____ C:\WINDOWS\system32\Repository.reg 2016-02-06 16:30 - 2016-02-06 22:24 - 00000000 ____D C:\Program Files\Common Files\logishrd 2016-02-06 16:29 - 2016-02-06 16:29 - 10919784 _____ C:\WINDOWS\system32\LogiDPP.dll 2016-02-06 16:29 - 2016-02-06 16:29 - 04255592 _____ (Logitech Inc.) C:\WINDOWS\system32\Drivers\lvuvc.sys 2016-02-06 16:29 - 2016-02-06 16:29 - 00542568 _____ (Logitech Inc.) C:\WINDOWS\system32\LVUI2.dll 2016-02-06 16:29 - 2016-02-06 16:29 - 00538472 _____ (Logitech Inc.) C:\WINDOWS\system32\LVUI2RC.dll 2016-02-06 16:29 - 2016-02-06 16:29 - 00336232 _____ C:\WINDOWS\system32\DevManagerCore.dll 2016-02-06 16:29 - 2016-02-06 16:29 - 00305000 _____ (Logitech Inc.) C:\WINDOWS\system32\lvcodec2.dll 2016-02-06 16:29 - 2016-02-06 16:29 - 00266828 _____ C:\WINDOWS\system32\Drivers\LVAFT.cfg 2016-02-06 16:29 - 2016-02-06 16:29 - 00194408 _____ (Logitech Inc.) C:\WINDOWS\system32\lvci1380853.dll 2016-02-06 16:29 - 2016-02-06 16:29 - 00103272 _____ C:\WINDOWS\system32\LogiDPPApp.exe 2016-02-06 16:29 - 2016-02-06 16:29 - 00029494 _____ C:\WINDOWS\system32\lvcoinst.ini 2016-02-06 10:26 - 2016-02-06 10:26 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{D130D6EF-E9AC-4B23-AF36-647DD4652424} 2016-02-06 10:25 - 2016-02-06 10:25 - 00597304 _____ C:\Users\slimosolo\Downloads\flux-setup.exe 2016-02-05 10:39 - 2016-02-05 10:39 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{EC808E65-7601-4C09-9254-D2B4679EBBB1} 2016-02-04 22:39 - 2016-02-04 22:39 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{2187A8E3-1945-4F17-9631-7D84F7C6D0F1} 2016-02-04 11:40 - 2016-02-04 11:40 - 00041665 _____ C:\Users\slimosolo\Desktop\styczen_1a.pdf 2016-02-04 11:39 - 2016-02-04 11:41 - 00041666 _____ C:\Users\slimosolo\Desktop\styczen_1.pdf 2016-02-04 10:39 - 2016-02-04 10:39 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{0AA58F6C-A430-47A0-96A8-12CB6D8845B1} 2016-02-03 22:39 - 2016-02-03 22:39 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{4991D21F-8C17-4B24-A57E-EB29BD691F8F} 2016-02-03 10:39 - 2016-02-03 10:39 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{A34823D6-B93D-4146-8C86-DA8A07B3774E} 2016-02-02 22:38 - 2016-02-02 22:38 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{2756E16D-B23A-41F1-A7F5-7B189E12524B} 2016-02-02 10:38 - 2016-02-02 10:38 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{208395BA-B1D7-4161-8D3C-ED8A6FFF2621} 2016-02-01 21:51 - 2016-02-01 21:51 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{09363BA0-2475-4670-A678-268DA38C38C9} 2016-02-01 11:05 - 2016-02-01 11:05 - 00000000 ____D C:\Users\slimosolo\Downloads\Eminem - Phenomenal (2015) DW-darius11 2016-02-01 10:53 - 2016-02-01 10:53 - 03882828 _____ C:\Users\slimosolo\Desktop\Kelchner - Complete Compendium of Plain Practical Penmanship.pdf 2016-02-01 09:36 - 2016-02-01 09:36 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{1882E073-AB85-4A1A-B641-BEC6AF81B6DD} 2016-01-31 20:35 - 2016-02-12 17:24 - 489614403 _____ C:\Users\slimosolo\Downloads\four_ladies_in_the_medical_room_complete_hd.mp4 2016-01-31 20:29 - 2016-02-09 19:45 - 00000000 ____D C:\Users\slimosolo\Downloads\Four Rooms (1995) [1080p] 2016-01-31 20:10 - 2016-01-31 21:38 - 00000000 ____D C:\Users\slimosolo\Downloads\The Take 2009 DvdRip Edit XviD Xult 2016-01-31 15:57 - 2016-01-31 15:57 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{9B172C5A-938A-44A7-8B7E-9D17F6673B76} 2016-01-29 06:28 - 2016-01-29 06:28 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{242F8A1E-21C9-42A0-B38F-E48ADA56E24A} 2016-01-28 17:52 - 2016-01-28 17:52 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{687EACFA-AA9C-4F0F-A7A0-6722924F9F5A} 2016-01-27 21:17 - 2016-01-27 21:17 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{D990733B-CC55-47FB-8F98-801ACC2BE0E1} 2016-01-25 17:23 - 2016-01-25 17:23 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{D135C50D-569E-46F8-B11F-8EC9E7B3992B} 2016-01-24 22:30 - 2016-01-24 22:30 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{60C3A56E-DCF3-42BE-8786-004DD13E599B} 2016-01-23 22:40 - 2016-01-23 22:40 - 00000000 ____D C:\Program Files\Common Files\Java 2016-01-23 22:38 - 2016-02-12 20:25 - 00000000 ____D C:\Users\slimosolo\Desktop\aaaaa 2016-01-23 21:23 - 2016-01-23 21:23 - 00001701 _____ C:\Users\slimosolo\Desktop\GG dysk.lnk 2016-01-23 21:23 - 2016-01-23 21:23 - 00000000 ___SD C:\Users\slimosolo\GG dysk 2016-01-23 21:22 - 2016-01-23 21:22 - 00001230 _____ C:\Users\slimosolo\Desktop\GG.lnk 2016-01-23 21:21 - 2016-01-23 21:21 - 00001238 _____ C:\Users\slimosolo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk 2016-01-23 21:17 - 2016-01-23 21:17 - 00400744 _____ C:\Users\slimosolo\Downloads\gg-install.exe 2016-01-23 01:47 - 2016-01-23 01:47 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{43E702F7-8BB2-42A7-A18F-6588DD791728} 2016-01-22 11:54 - 2016-01-22 11:54 - 00147287 _____ C:\Users\slimosolo\Desktop\File0012.PDF 2016-01-22 11:41 - 2016-01-22 11:42 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{908DD474-23F0-4EB6-81E6-6252D0D73968} 2016-01-21 10:48 - 2016-01-21 10:48 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{40F64A69-570D-4F70-A98A-867681612A34} 2016-01-21 10:06 - 2016-01-21 10:06 - 00000000 ____D C:\Users\slimosolo\Downloads\Frank Medrano - Beginner Calisthenics - Superhuman Origins 2016-01-21 10:04 - 2016-01-21 10:04 - 03807232 _____ C:\Users\slimosolo\Downloads\Frank_Medrano_-_Beginner_Calisthenics_-_Superhuman_OriginsFrank_Medrano_-_Beginner_Calis.iso 2016-01-20 23:10 - 2016-01-20 23:10 - 00074999 _____ C:\Users\slimosolo\Desktop\pszeniczko_us.pdf 2016-01-20 23:03 - 2016-01-20 23:03 - 00041664 _____ C:\Users\slimosolo\Desktop\pszeniczko_zus1.pdf 2016-01-20 23:03 - 2016-01-20 23:03 - 00041659 _____ C:\Users\slimosolo\Desktop\pszeniczko_zus2.pdf 2016-01-20 22:48 - 2016-01-20 22:48 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{D00675FA-9DA3-4B73-89B4-0B09409960A6} 2016-01-20 10:47 - 2016-01-20 10:47 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{B7CEFC25-F73D-4571-A01E-FFC7CD1635E1} 2016-01-19 21:16 - 2016-01-19 21:17 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{FF1C79C3-02F8-412A-8A4B-F3FB4BAEC4DA} 2016-01-19 09:05 - 2016-01-19 09:05 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{9794F7DE-A783-4297-B313-92F82F195004} 2016-01-18 12:03 - 2016-01-18 12:03 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{5CDB0E6B-703B-474D-994A-979688AD7B4E} 2016-01-17 11:05 - 2016-01-17 11:05 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{CE65C122-ED7F-4854-BC81-9D5A56CBC267} 2016-01-16 08:55 - 2016-01-16 08:56 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{C8994806-9A51-487B-AFAC-6762F4F6871E} 2016-01-15 16:39 - 2016-01-15 16:39 - 00019595 _____ C:\Users\slimosolo\Downloads\RZA styczeń.xlsx 2016-01-15 16:29 - 2016-01-15 16:30 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{6B07777D-9A23-40CE-9420-9B232883F2C3} 2016-01-14 21:12 - 2016-01-14 21:12 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{66AE3A1B-D729-4970-B556-B4D61C4563D8} 2016-01-13 19:13 - 2016-01-05 03:30 - 02459096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL 2016-01-13 19:13 - 2016-01-05 03:30 - 02162064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL 2016-01-13 19:13 - 2016-01-05 03:30 - 00882208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll 2016-01-13 19:13 - 2016-01-05 03:30 - 00368776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL 2016-01-13 19:13 - 2016-01-05 03:28 - 00696192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL 2016-01-13 19:13 - 2016-01-05 03:28 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL 2016-01-13 19:13 - 2016-01-05 03:28 - 00107952 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL 2016-01-13 19:13 - 2016-01-05 03:28 - 00072808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll 2016-01-13 19:13 - 2016-01-05 03:10 - 00305776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL 2016-01-13 19:13 - 2016-01-05 03:10 - 00188032 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL 2016-01-13 19:13 - 2016-01-05 02:43 - 19324928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-01-13 19:13 - 2016-01-05 02:38 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll 2016-01-13 19:13 - 2016-01-05 02:32 - 01541632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll 2016-01-13 19:13 - 2016-01-05 02:31 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll 2016-01-13 19:13 - 2016-01-05 02:30 - 18802176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-01-13 19:13 - 2016-01-05 02:26 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2016-01-13 19:13 - 2016-01-05 02:19 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL 2016-01-13 19:13 - 2016-01-05 02:19 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL 2016-01-13 19:13 - 2016-01-05 02:19 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL 2016-01-13 19:12 - 2016-01-05 03:30 - 06266208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-01-13 19:12 - 2016-01-05 03:30 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2016-01-13 19:12 - 2016-01-05 03:30 - 01106872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll 2016-01-13 19:12 - 2016-01-05 03:30 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL 2016-01-13 19:12 - 2016-01-05 03:30 - 00100712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL 2016-01-13 19:12 - 2016-01-05 03:29 - 00208688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll 2016-01-13 19:12 - 2016-01-05 03:28 - 02445128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2016-01-13 19:12 - 2016-01-05 03:28 - 01395560 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2016-01-13 19:12 - 2016-01-05 03:28 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2016-01-13 19:12 - 2016-01-05 03:28 - 00714808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll 2016-01-13 19:12 - 2016-01-05 03:28 - 00645144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2016-01-13 19:12 - 2016-01-05 03:28 - 00637272 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2016-01-13 19:12 - 2016-01-05 03:28 - 00635312 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll 2016-01-13 19:12 - 2016-01-05 03:28 - 00497896 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll 2016-01-13 19:12 - 2016-01-05 03:28 - 00277400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL 2016-01-13 19:12 - 2016-01-05 03:28 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2016-01-13 19:12 - 2016-01-05 03:28 - 00082096 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll 2016-01-13 19:12 - 2016-01-05 03:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll 2016-01-13 19:12 - 2016-01-05 03:14 - 00350560 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2016-01-13 19:12 - 2016-01-05 03:12 - 00586432 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2016-01-13 19:12 - 2016-01-05 03:10 - 01707544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll 2016-01-13 19:12 - 2016-01-05 03:10 - 00923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-01-13 19:12 - 2016-01-05 03:10 - 00278424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL 2016-01-13 19:12 - 2016-01-05 02:44 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll 2016-01-13 19:12 - 2016-01-05 02:44 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll 2016-01-13 19:12 - 2016-01-05 02:42 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL 2016-01-13 19:12 - 2016-01-05 02:39 - 01161216 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2016-01-13 19:12 - 2016-01-05 02:39 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2016-01-13 19:12 - 2016-01-05 02:32 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2016-01-13 19:12 - 2016-01-05 02:31 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax 2016-01-13 19:12 - 2016-01-05 02:29 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2016-01-13 19:12 - 2016-01-05 02:29 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-01-13 19:12 - 2016-01-05 02:26 - 00546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2016-01-13 19:12 - 2016-01-05 02:26 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2016-01-13 19:12 - 2016-01-05 02:24 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-01-13 19:12 - 2016-01-05 02:20 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL 2016-01-13 19:12 - 2016-01-05 02:19 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL 2016-01-13 18:35 - 2016-01-13 18:35 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{04141F71-0D0F-41C6-B2FC-3D37809BFADE} 2016-01-13 16:56 - 2016-01-13 16:57 - 12396532 _____ C:\Users\slimosolo\Downloads\Premium CANAL+.pptx 2016-01-13 06:35 - 2016-01-13 06:35 - 00000000 ____D C:\Users\slimosolo\AppData\Local\{E7CDA1EC-AB20-45D3-B0FB-EB9BF93CEEFC} ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-02-12 21:29 - 2014-04-21 10:01 - 00000000 ____D C:\Users\slimosolo\AppData\Roaming\Skype 2016-02-12 21:28 - 2014-05-09 21:07 - 00000000 ____D C:\Users\slimosolo\AppData\Roaming\uTorrent 2016-02-12 21:03 - 2014-04-21 09:44 - 00001060 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-02-12 16:25 - 2015-07-10 09:28 - 00000000 ___HD C:\Program Files\WindowsApps 2016-02-12 16:25 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-02-11 18:51 - 2015-12-31 19:28 - 00000000 ____D C:\Users\slimosolo\Downloads\The.Revenant.2015.DVDScr.XviD.AC3-ETRG 2016-02-11 06:48 - 2009-07-14 03:04 - 00000580 _____ C:\WINDOWS\win.ini 2016-02-11 06:47 - 2015-07-10 09:20 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-02-11 06:29 - 2014-08-15 02:15 - 00000000 ____D C:\Users\slimosolo\AppData\Local\Adobe 2016-02-10 21:05 - 2014-04-21 09:44 - 00002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-02-10 20:58 - 2015-09-21 12:20 - 02072766 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-02-10 20:58 - 2015-09-10 05:01 - 00901910 _____ C:\WINDOWS\system32\perfh015.dat 2016-02-10 20:58 - 2015-09-10 05:01 - 00193874 _____ C:\WINDOWS\system32\perfc015.dat 2016-02-10 20:58 - 2015-07-10 09:27 - 00000000 ____D C:\WINDOWS\INF 2016-02-10 20:52 - 2014-04-21 09:44 - 00001056 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-02-10 20:51 - 2015-07-21 00:18 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-02-10 20:51 - 2014-04-21 14:10 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2016-02-10 20:50 - 2015-07-10 07:59 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2016-02-09 21:31 - 2014-05-03 13:17 - 00000000 ____D C:\Users\slimosolo\AppData\Roaming\vlc 2016-02-06 23:01 - 2014-07-25 15:36 - 00000000 ____D C:\Users\slimosolo\AppData\Roaming\GG 2016-02-06 23:01 - 2014-07-25 15:35 - 00000000 ____D C:\Users\slimosolo\AppData\Local\GG 2016-02-06 22:46 - 2014-04-21 10:01 - 00000000 ____D C:\ProgramData\Skype 2016-02-06 22:35 - 2014-04-21 14:10 - 00000000 ____D C:\Program Files\Mozilla Firefox 2016-02-06 22:04 - 2015-11-29 23:28 - 00000000 ____D C:\Users\DefaultAppPool 2016-02-06 22:04 - 2015-09-21 12:22 - 00000000 ____D C:\Users\PZU 2016-02-05 21:55 - 2014-04-21 10:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2016-02-05 21:55 - 2014-04-21 10:47 - 00000000 ____D C:\ProgramData\Package Cache 2016-02-05 12:18 - 2015-09-21 12:22 - 00000000 ____D C:\Users\slimosolo 2016-02-02 23:47 - 2015-07-10 09:29 - 00828920 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2016-02-02 23:47 - 2015-07-10 09:29 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2016-01-23 22:41 - 2014-05-29 06:42 - 00000000 __SHD C:\Users\slimosolo\AppData\LocalLow\EmieUserList 2016-01-23 22:41 - 2014-05-28 15:40 - 00000000 __SHD C:\Users\slimosolo\AppData\Local\EmieUserList 2016-01-23 22:41 - 2014-05-28 15:40 - 00000000 __SHD C:\Users\slimosolo\AppData\Local\EmieSiteList 2016-01-23 22:41 - 2014-05-28 15:39 - 00000000 __SHD C:\Users\slimosolo\AppData\LocalLow\EmieSiteList 2016-01-23 22:40 - 2015-09-11 21:34 - 00000000 ____D C:\Users\slimosolo\.oracle_jre_usage 2016-01-23 22:40 - 2015-09-11 21:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-01-23 22:40 - 2014-04-21 13:50 - 00000000 ____D C:\ProgramData\Oracle 2016-01-23 22:39 - 2014-10-16 12:59 - 00095840 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2016-01-23 22:39 - 2014-10-16 12:59 - 00000000 ____D C:\Program Files\Java 2016-01-21 10:32 - 2014-06-14 10:59 - 00000000 ____D C:\Users\slimosolo\AppData\Local\JDownloader 0.9 2016-01-17 18:41 - 2015-12-24 12:33 - 00000000 ____D C:\Users\slimosolo\Downloads\Oldboy (2013) [1080p] 2016-01-14 06:40 - 2014-04-24 18:58 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2016-01-13 20:32 - 2014-04-24 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2016-01-13 20:28 - 2014-04-21 10:13 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-01-13 20:19 - 2014-04-21 10:12 - 141317472 ____N (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Pliki w katalogu głównym wybranych folderów ======= 2014-05-04 09:33 - 2014-12-23 22:59 - 0000132 _____ () C:\Users\slimosolo\AppData\Roaming\Adobe PNG Format CS5 Prefs Niektóre pliki w TEMP: ==================== C:\Users\slimosolo\AppData\Local\Temp\avgnt.exe C:\Users\slimosolo\AppData\Local\Temp\ggdrive-menu.exe C:\Users\slimosolo\AppData\Local\Temp\ggdrive-overlay.exe C:\Users\slimosolo\AppData\Local\Temp\i4jdel0.exe C:\Users\slimosolo\AppData\Local\Temp\installstats.exe C:\Users\slimosolo\AppData\Local\Temp\proxy_vole1051833317108812829.dll C:\Users\slimosolo\AppData\Local\Temp\proxy_vole1224930794575805084.dll C:\Users\slimosolo\AppData\Local\Temp\proxy_vole4200587605968524591.dll C:\Users\slimosolo\AppData\Local\Temp\sharepod-eject.exe C:\Users\slimosolo\AppData\Local\Temp\SkypeSetup.exe ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2016-02-08 06:38 ==================== Koniec FRST.txt ============================