Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 05-02-2017 Uruchomiony przez user (administrator) BOK-03 (08-02-2017 10:02:42) Uruchomiony z C:\Users\user\Downloads Załadowane profile: user (Dostępne profile: user) Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Bitsum LLC) C:\Program Files\Process Lasso\ProcessGovernor.exe (Bitsum LLC) C:\Program Files\Process Lasso\ProcessLasso.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Spotify Ltd) C:\Users\user\AppData\Roaming\Spotify\SpotifyWebHelper.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe (RescueTime, Inc.) C:\Program Files (x86)\RescueTime\RescueTime.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe (AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Google Inc.) C:\Users\user\AppData\Local\Google\Update\1.3.32.7\GoogleCrashHandler.exe (Google Inc.) C:\Users\user\AppData\Local\Google\Update\1.3.32.7\GoogleCrashHandler64.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe ==================== Rejestr (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774040 2000-01-01] (Realtek Semiconductor) HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation) HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [37232 2008-06-12] (Adobe Systems Incorporated) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640376 2008-06-11] (Adobe Systems Inc.) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [26220296 2017-02-07] (Dropbox, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation) HKLM-x32\...\RunOnce: [NSIS.Library.RegTool.v3] => C:\Program Files\FileZilla FTP Client\NSIS.Library.RegTool.v3.{A48D4F14-5875-4460-AACA-FC0EF12D645B}.exe [5120 2015-12-26] () Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-2270227710-3598119519-4052884031-1000\...\Run: [Google Update] => C:\Users\user\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-19] (Google Inc.) HKU\S-1-5-21-2270227710-3598119519-4052884031-1000\...\Run: [Toastify] => C:\Program Files (x86)\Toastify\Toastify.exe [289792 2016-03-10] (Jesper Palm) HKU\S-1-5-21-2270227710-3598119519-4052884031-1000\...\Run: [Spotify Web Helper] => C:\Users\user\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-02-03] (Spotify Ltd) HKU\S-1-5-21-2270227710-3598119519-4052884031-1000\...\Run: [Kaspersky Software Updater] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-26] (AO Kaspersky Lab) HKU\S-1-5-21-2270227710-3598119519-4052884031-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27427808 2017-01-23] (Skype Technologies S.A.) HKU\S-1-5-21-2270227710-3598119519-4052884031-1000\...\MountPoints2: F - F:\.\Driver\DriverInstaller.exe -eject HKU\S-1-5-21-2270227710-3598119519-4052884031-1000\...\MountPoints2: {bcb0190d-c821-11e6-9694-24be0521f753} - F:\.\Driver\DriverInstaller.exe -eject HKU\S-1-5-21-2270227710-3598119519-4052884031-1000\...\MountPoints2: {bcb0191c-c821-11e6-9694-24be0521f753} - E:\.\Driver\DriverInstaller.exe -eject ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.) Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RescueTime.lnk [2016-12-12] ShortcutTarget: RescueTime.lnk -> C:\Program Files (x86)\RescueTime\RescueTime.exe (RescueTime, Inc.) GroupPolicy: Ograniczenia <======= UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: 127.0.0.1 drivereasy.com Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.1.1 Tcpip\..\Interfaces\{44E9FC56-52A2-4F3D-921D-4AB28FD35B70}: [DhcpNameServer] 192.168.2.1 192.168.1.1 Tcpip\..\Interfaces\{4805D62F-0C5A-432C-A255-9C82EA558EE8}: [DhcpNameServer] 192.168.2.1 192.168.1.1 Internet Explorer: ================== BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll => Brak pliku BHO-x32: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-09-10] (Adobe Systems Incorporated.) BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated) BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated) Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-09-10] (Adobe Systems Incorporated.) FireFox: ======== FF DefaultProfile: vimhcnp7.default FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\vimhcnp7.default [2017-02-08] FF Extension: (Firebug) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\vimhcnp7.default\Extensions\firebug@software.joehewitt.com.xpi [2016-11-26] FF Extension: (Firefox Hotfix) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\vimhcnp7.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-31] FF Extension: (HttpRequester) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\vimhcnp7.default\Extensions\{ea4637dc-e014-4c17-9c2c-879322d23268} [2016-11-26] FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2270227710-3598119519-4052884031-1000: @tools.google.com/Google Update;version=3 -> C:\Users\user\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.) FF Plugin HKU\S-1-5-21-2270227710-3598119519-4052884031-1000: @tools.google.com/Google Update;version=9 -> C:\Users\user\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.) Chrome: ======= CHR DefaultProfile: Profile 2 CHR StartupUrls: Profile 2 -> "hxxps://calendar.google.com//","hxxps://inbox.google.com/u/0/","hxxps://app.asana.com/0/215336736996157/list" CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2016-12-16] CHR Extension: (Prezentacje Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-14] CHR Extension: (Dokumenty Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-27] CHR Extension: (Dysk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-27] CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-27] CHR Extension: (Arkusze Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-14] CHR Extension: (Sprout Social) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffiilepjogcpodmgneknklaecmeoenbc [2016-08-01] CHR Extension: (Dokumenty Google offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-27] CHR Extension: (Shareaholic for Pinterest) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfjkehmceppcpjoaoegdmffmkdhiegmc [2016-08-01] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-14] CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-27] CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-01-11] CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1 [2016-12-16] CHR Extension: (Web Developer) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2016-11-17] CHR Extension: (Sketchboard.io) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bgafhjpdkfjfmmjbebbdckolonomaoil [2016-11-17] CHR Extension: (ColorZilla) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2016-11-17] CHR Extension: (Coursera Downloader) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blbnibajlpdhhicnnhgpfkganncmghmk [2016-11-17] CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-15] CHR Extension: (uBlock Origin) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-11-17] CHR Extension: (Recently Closed Tabs [FVD]) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ckdmacmopjaoijgapmfhbggpijooeadm [2016-11-17] CHR Extension: (Image Downloader) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cnpniohnfphhjihaiiggeabnkjhpaldj [2016-11-17] CHR Extension: (Story Wars) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coadbejlmmejdkpdcnbikfcplabhgmpo [2016-11-17] CHR Extension: (Mailto: for Gmail™) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dgkkmcknielgdhebimdnfahpipajcpjn [2016-11-17] CHR Extension: (PerfectPixel by WellDoneCode) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dkaagdgjmgdmbnecmcefdhjekcoceebi [2016-11-17] CHR Extension: (MindMup (legacy version)) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dnenaecjcgeppfpaokiifokeieopppej [2016-11-17] CHR Extension: (Session Buddy) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2016-11-17] CHR Extension: (Gmail offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2016-11-17] CHR Extension: (Google Font Previewer for Chrome) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\engndlnldodigdjamndkplafgmkkencc [2016-11-17] CHR Extension: (Arkusze Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-15] CHR Extension: (Dodatek Google Analytics Opt-out firmy Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fllaojicojecljbmefodhfapmkghcbnh [2016-11-17] CHR Extension: (Pulpit zdalny Chrome) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2016-11-17] CHR Extension: (Dokumenty Google offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-16] CHR Extension: (Bookmark Manager) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2016-11-17] CHR Extension: (Przycisk Pin It) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2016-11-17] CHR Extension: (LastPass: Free Password Manager) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2016-11-17] CHR Extension: (Google Keep – notatki i listy) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2016-11-17] CHR Extension: (Panel View for Keep) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb [2016-11-17] CHR Extension: (Wypełniacz loterii paragonowej) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jheghjhekamfaapalhjciimpegfohfnm [2016-11-17] CHR Extension: (TrackingTime Time Tracker) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\knailkjkjcfegledhjhcfacdngnicimb [2016-11-17] CHR Extension: (StayFocusd) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\laankejkbhbdhmipfmgcngdelahlfoji [2016-11-17] CHR Extension: (User-Agent Switcher) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lkmofgnohbedopheiphabfhfjgkhfcgf [2016-11-17] CHR Extension: (drumbit) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mplpmdejoamenolpcojgegminhcnmibo [2016-11-17] CHR Extension: (Video Speed Controller) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nffaoalbilbmmfgbnbgppjihopabppdk [2016-11-17] CHR Extension: (Awesome Screenshot: Screen capture, Annotate) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nlipoenfbbikpbjkfpfillcgkoblgpmj [2016-11-17] CHR Extension: (Chrome Tabs - fast access [FVD]) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nlmjcfadckpgbkpjnkdedeamecbjogal [2016-11-17] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-15] CHR Extension: (Picasa) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2016-11-17] CHR Extension: (Habitica) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pidkmpibnnnhneohdgjclfdjpijggmjj [2016-11-17] CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-15] CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-17] CHR Extension: (Secure Shell) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pnhechapfaindjhompbnflcldabbghjo [2016-11-17] CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-02-08] CHR Extension: (Prezentacje Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-17] CHR Extension: (Postman Interceptor) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aicmkgpgakddgnaphhhpliifpcfhicfo [2017-01-05] CHR Extension: (Dokumenty Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-17] CHR Extension: (Dysk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-17] CHR Extension: (RescueTime for Chrome™ & ChromeOS™) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bdakmnplckeopfghnlpocafcepegjeap [2016-12-12] CHR Extension: (Web Developer) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2016-11-28] CHR Extension: (Earth View from Google Earth) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bhloflhklmhfpedakmangadcdofhnnoh [2017-02-03] CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-17] CHR Extension: (Firebug Lite for Google Chrome™) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bmagokdooijbeehmkpknfglimnifench [2016-11-26] CHR Extension: (TrafficLight) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfnpidifppmenkapgihekkeednfoenal [2017-02-01] CHR Extension: (uBlock Origin) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2016-12-21] CHR Extension: (PerfectPixel by WellDoneCode) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dkaagdgjmgdmbnecmcefdhjekcoceebi [2017-02-08] CHR Extension: (Gmail offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2016-11-18] CHR Extension: (Arkusze Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-17] CHR Extension: (Postman) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fhbjgbiflinjbdggehcddcbncdddomop [2017-01-05] CHR Extension: (EditThisCookie) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fngmhnnpilhplaeedifhccceomclgfbg [2016-11-26] CHR Extension: (Dokumenty Google offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-18] CHR Extension: (Inbox by Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gkljgfmjocfalijkgoogmfffkhmkbgol [2016-11-23] CHR Extension: (LastPass: Free Password Manager) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2017-01-31] CHR Extension: (Eye Dropper) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hmdcmlfkchdmnmnmheododdhjedfccka [2016-11-30] CHR Extension: (Extensity) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jjmflmamggggndanpgfnpelongoepncg [2016-12-27] CHR Extension: (Page Ruler) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jlpkojjdgbllmedoapgfodplfhcbnbpn [2016-12-22] CHR Extension: (Loom - Video Recorder: Screen, Webcam and Mic) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2017-02-08] CHR Extension: (Lightshot (narzędzie do zrzutów ekranu)) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2016-11-25] CHR Extension: (Screencastify (Screen Video Recorder)) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\mmeijimgabbpbgpdklnllpncmdofkcpn [2017-02-08] CHR Extension: (Save to Pocket) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2017-02-03] CHR Extension: (Awesome Screenshot: Screen capture, Annotate) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nlipoenfbbikpbjkfpfillcgkoblgpmj [2016-11-18] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19] CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-17] CHR Extension: (Inbox by Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkclgpgponpjmpfokoepglboejdobkpl [2016-11-18] CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08] CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3 [2016-12-16] CHR Extension: (Prezentacje Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-17] CHR Extension: (Dokumenty Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-17] CHR Extension: (Dysk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-17] CHR Extension: (Sketchboard.io) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\bgafhjpdkfjfmmjbebbdckolonomaoil [2016-11-17] CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-17] CHR Extension: (Recently Closed Tabs [FVD]) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ckdmacmopjaoijgapmfhbggpijooeadm [2016-11-17] CHR Extension: (MindMup (legacy version)) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\dnenaecjcgeppfpaokiifokeieopppej [2016-11-17] CHR Extension: (Session Buddy) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2016-11-17] CHR Extension: (Arkusze Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-17] CHR Extension: (Dokumenty Google offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-17] CHR Extension: (Google Keep – notatki i listy) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2016-11-17] CHR Extension: (Panel View for Keep) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\jccocffecajimkdjgfpjhlpiimcnadhb [2016-11-17] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-17] CHR Extension: (Picasa) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2016-11-17] CHR Extension: (Habitica) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pidkmpibnnnhneohdgjclfdjpijggmjj [2016-11-17] CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-17] CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-17] CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 4 [2017-01-05] CHR Extension: (Prezentacje Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-05] CHR Extension: (Dokumenty Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-05] CHR Extension: (Dysk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-05] CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-05] CHR Extension: (Arkusze Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-05] CHR Extension: (Dokumenty Google offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-05] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-05] CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-05] CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-05] CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\System Profile [2017-01-05] StartMenuInternet: Google Chrome.NXHUQEX7LE3HUC35NGFJJZMJH4 - C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe Opera: ======= OPR Extension: (Download Chrome Extension) - C:\Users\user\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2017-02-08] StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-17] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-17] (Dropbox, Inc.) R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [46400 2017-02-07] (Dropbox, Inc.) S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-08] (Intel Corporation) R3 ksu; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-26] (AO Kaspersky Lab) R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation) R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [292568 2000-01-01] (Realtek Semiconductor) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28008 2013-11-08] (Intel Corporation) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [125952 2014-07-03] (Intel Corporation) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation) S3 netr28ux; C:\Windows\System32\DRIVERS\netr28ux.sys [2212496 2014-07-04] (MediaTek Inc.) R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation) U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [476888 2014-03-21] (Realsil Semiconductor Corporation) S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-12-23] () U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] () U0 aswVmm; Brak ImagePath S3 dbx; system32\DRIVERS\dbx.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-02-08 10:02 - 2017-02-08 10:02 - 00000000 ____D C:\FRST 2017-02-08 09:59 - 2017-02-08 09:59 - 02421248 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe 2017-02-08 09:37 - 2017-02-08 09:37 - 00003860 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1486543017 2017-02-08 09:37 - 2017-02-08 09:37 - 00000000 ____D C:\Users\user\AppData\Roaming\Opera Software 2017-02-08 09:37 - 2017-02-08 09:37 - 00000000 ____D C:\Users\user\AppData\Local\Opera Software 2017-02-08 09:37 - 2017-02-08 09:36 - 00001097 _____ C:\Users\Public\Desktop\Opera.lnk 2017-02-08 09:37 - 2017-02-08 09:36 - 00001097 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2017-02-08 09:36 - 2017-02-08 09:37 - 00000000 ____D C:\Program Files\Opera 2017-02-08 09:32 - 2017-02-08 09:32 - 00001476 _____ C:\Users\Public\Desktop\LibreOffice 5.2.lnk 2017-02-08 09:32 - 2017-02-08 09:32 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.2 2017-02-08 09:31 - 2017-02-08 09:32 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5 2017-02-08 09:28 - 2017-02-08 09:28 - 00000000 ___RD C:\Program Files (x86)\Skype 2017-02-08 09:28 - 2017-02-08 09:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2017-02-08 09:27 - 2017-02-08 09:27 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia 2017-02-08 09:27 - 2017-02-08 09:27 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia 2017-02-08 09:23 - 2017-02-08 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2017-02-07 14:20 - 2017-02-07 14:21 - 00000000 ____D C:\Users\user\Desktop\Nowy folder 2017-02-07 10:58 - 2017-02-07 10:58 - 00000000 ____D C:\Users\user\Desktop\baner 2017-02-07 05:38 - 2017-02-07 05:38 - 00046400 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe 2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys 2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys 2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys 2017-02-03 14:39 - 2017-02-03 14:39 - 13821549 _____ C:\Users\user\Downloads\Oreilly.JavaScript.The.Definitive.Guide.6th.Edition.Apr.2011.pdf 2017-02-03 14:10 - 2017-02-03 14:10 - 06975096 _____ (Tim Kosse) C:\Users\user\Downloads\FileZilla_3.24.0_win64-setup.exe 2017-02-03 09:01 - 2017-02-03 09:06 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2017-02-03 09:01 - 2017-02-03 09:01 - 00001237 _____ C:\Users\Public\Desktop\Kaspersky Software Updater.lnk 2017-02-03 09:01 - 2017-02-03 09:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Software Updater 2017-02-03 09:01 - 2017-02-03 09:01 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab 2017-02-03 09:00 - 2017-02-03 09:00 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2017-02-03 08:35 - 2017-02-03 08:35 - 02418208 _____ (Kaspersky Lab) C:\Users\user\Downloads\ksu2.0.0.623en_ru_de_pl_es_cs_nl_it_fr_zh-hans_pt_ko_zh-hant_tr_ar_vi_id_fa_hi_11843.exe 2017-02-01 13:13 - 2017-02-01 13:13 - 00001912 _____ C:\Windows\epplauncher.mif 2017-02-01 13:11 - 2017-02-01 13:11 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk 2017-02-01 13:11 - 2017-02-01 13:11 - 00000000 ____D C:\Program Files\Microsoft Security Client 2017-02-01 13:11 - 2017-02-01 13:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client 2017-02-01 13:09 - 2017-02-01 13:10 - 15087296 _____ (Microsoft Corporation) C:\Users\user\Downloads\MSEInstall.exe 2017-01-31 16:25 - 2017-01-31 16:25 - 00000000 ____D C:\Users\user\.config 2017-01-31 12:07 - 2017-01-31 12:08 - 00266202 _____ C:\Users\user\Downloads\php-graph-sdk-5.0.0.zip 2017-01-30 11:57 - 2017-02-08 10:03 - 00032928 _____ C:\Users\user\Downloads\FRST.txt 2017-01-27 15:40 - 2017-01-27 15:40 - 00087004 _____ C:\Users\user\Desktop\calculate.php 2017-01-26 11:07 - 2017-01-26 11:07 - 00405301 _____ C:\Users\user\Downloads\pliczek.pdf 2017-01-25 11:48 - 2017-01-25 11:48 - 00382271 _____ C:\Users\user\Downloads\kotowski_pp_kolo_1.pdf 2017-01-19 09:05 - 2017-01-19 09:06 - 00000000 ____D C:\Users\user\Downloads\miernictwo 2017-01-19 08:58 - 2017-01-19 08:58 - 00020478 _____ C:\Users\user\Downloads\grafika formatka (Grunwald 24, papier 250 mg).pdf 2017-01-12 09:25 - 2017-01-12 09:25 - 00001919 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toastify.lnk 2017-01-12 09:25 - 2017-01-12 09:25 - 00001889 _____ C:\Users\user\Desktop\Toastify.lnk 2017-01-12 09:25 - 2017-01-12 09:25 - 00000000 ____D C:\Users\user\AppData\Roaming\Toastify 2017-01-12 09:25 - 2017-01-12 09:25 - 00000000 ____D C:\Program Files (x86)\Toastify 2017-01-11 09:08 - 2017-01-05 19:55 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2017-01-11 09:08 - 2017-01-05 19:55 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2017-01-11 09:08 - 2017-01-05 19:52 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2017-01-11 09:08 - 2017-01-05 19:52 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2017-01-11 09:08 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2017-01-11 09:08 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2017-01-11 09:08 - 2017-01-05 18:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2017-01-11 09:08 - 2017-01-05 18:25 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2017-01-11 09:08 - 2017-01-05 18:24 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2017-01-11 09:08 - 2017-01-05 18:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2017-01-11 09:08 - 2017-01-05 18:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2017-01-11 09:08 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2017-01-11 09:08 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2017-01-10 10:34 - 2017-01-10 10:34 - 00000000 ____D C:\Users\user\Desktop\strona kalkulacji 2017-01-09 08:54 - 2017-01-09 08:54 - 00349272 _____ C:\Users\user\Downloads\Informacje wstępne 2016.pdf ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-02-08 10:02 - 2016-11-24 09:02 - 00000000 ____D C:\Users\user\AppData\LocalLow\Mozilla 2017-02-08 09:28 - 2016-11-22 11:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-02-08 09:28 - 2016-11-16 10:52 - 00002697 _____ C:\Users\Public\Desktop\Skype.lnk 2017-02-08 09:28 - 2016-11-16 10:52 - 00000000 ____D C:\ProgramData\Skype 2017-02-08 09:28 - 2016-07-14 16:23 - 00001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2017-02-08 09:28 - 2016-07-14 16:23 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2017-02-08 09:28 - 2016-07-14 16:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-02-08 09:27 - 2016-11-16 17:35 - 00001858 _____ C:\Users\Public\Desktop\FileZilla Client.lnk 2017-02-08 09:27 - 2016-11-16 17:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client 2017-02-08 09:27 - 2016-11-16 17:35 - 00000000 ____D C:\Program Files\FileZilla FTP Client 2017-02-08 09:27 - 2016-07-14 16:27 - 00000000 ____D C:\Users\user\AppData\Local\Adobe 2017-02-08 09:27 - 2016-07-14 16:21 - 00000000 ____D C:\Program Files (x86)\Adobe 2017-02-08 09:25 - 2016-11-17 12:07 - 00001148 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2017-02-08 09:24 - 2016-11-17 12:07 - 00000000 ____D C:\Program Files (x86)\Dropbox 2017-02-08 09:20 - 2009-07-14 05:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-02-08 09:20 - 2009-07-14 05:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-02-08 09:13 - 2016-12-05 12:12 - 00000000 ____D C:\Users\user\AppData\Local\Spotify 2017-02-08 09:11 - 2016-11-17 12:07 - 00001144 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2017-02-08 09:11 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-02-07 17:55 - 2016-07-14 16:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-02-07 17:55 - 2016-07-14 16:24 - 00000000 ____D C:\Program Files (x86)\Java 2017-02-07 17:53 - 2016-07-14 16:25 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2017-02-07 15:22 - 2016-11-16 17:52 - 00000600 _____ C:\Users\user\AppData\Local\PUTTY.RND 2017-02-07 13:55 - 2016-12-05 12:11 - 00000000 ____D C:\Users\user\AppData\Roaming\Spotify 2017-02-07 11:14 - 2016-11-16 17:35 - 00000000 ____D C:\Users\user\AppData\Roaming\FileZilla 2017-02-07 10:22 - 2016-11-17 19:48 - 00002331 _____ C:\Users\user\Desktop\Google Chrome.lnk 2017-02-07 10:22 - 2016-07-14 16:22 - 00002339 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-01-31 13:50 - 2016-11-16 18:33 - 00000397 _____ C:\Users\user\.bash_history 2017-01-30 09:04 - 2011-06-08 05:49 - 00740732 _____ C:\Windows\system32\perfh015.dat 2017-01-30 09:04 - 2011-06-08 05:49 - 00155804 _____ C:\Windows\system32\perfc015.dat 2017-01-30 09:04 - 2009-07-14 06:13 - 01671648 _____ C:\Windows\system32\PerfStringBackup.INI 2017-01-30 09:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2017-01-26 16:16 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache 2017-01-18 08:43 - 2016-11-30 09:43 - 00000000 ____D C:\ProgramData\AVAST Software 2017-01-17 15:02 - 2017-01-05 10:36 - 00003000 _____ C:\Windows\System32\Tasks\Process Lasso Core Engine Only 2017-01-17 15:02 - 2017-01-05 10:36 - 00002994 _____ C:\Windows\System32\Tasks\Process Lasso Management Console (GUI) 2017-01-12 09:06 - 2016-07-15 11:08 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2017-01-12 09:06 - 2016-07-14 16:22 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2017-01-11 16:04 - 2016-07-15 10:10 - 00000000 ____D C:\Windows\system32\MRT 2017-01-11 16:01 - 2016-07-15 10:10 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2017-01-11 13:55 - 2016-11-17 09:24 - 00000000 ____D C:\Users\user\AppData\Roaming\npm-cache ==================== Pliki w katalogu głównym wybranych folderów ======= 2016-11-16 17:52 - 2017-02-07 15:22 - 0000600 _____ () C:\Users\user\AppData\Local\PUTTY.RND Niektóre pliki w TEMP: ==================== 2017-02-07 17:52 - 2017-02-07 17:52 - 0739904 _____ (Oracle Corporation) C:\Users\user\AppData\Local\Temp\jre-8u121-windows-au.exe ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2017-02-02 12:50 ==================== Koniec FRST.txt ============================