FRST.txt

Niepożądane uruchamianie strony "Fast Start" w przeglądarce

Proszę i przepraszam za zbędne komplikacje. :)


Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja:31-10-2015
Uruchomiony przez Anita (administrator) ANITA-KOMPUTER (03-11-2015 18:20:59)
Uruchomiony z C:\Users\Anita\Desktop
Załadowane profile: Anita (Dostępne profile: Anita)
Platform: Microsoft Windows 7 Starter Service Pack 1 (X86) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Nero AG) C:\Program Files\Nero\Tools\InCD\InCDSrv.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Nero AG) C:\Program Files\Nero\Tools\InCD\NBHRegInCDSrv.exe
() C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
() C:\Windows\System32\Rezip.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Nero AG) C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe
(Nero AG) C:\Program Files\Nero\Tools\InCD\NBHGui.exe
(Nero AG) C:\Program Files\Nero\Tools\InCD\InCD.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(SEC) C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPNetworkCommunicatorCom.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe


==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [RtHDVCpl] = & gt; C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8120864 2009-12-14] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] = & gt; C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1713448 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [UCam_Menu] = & gt; C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [NBAgent] = & gt; C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1406248 2011-04-28] (Nero AG)
HKLM\...\Run: [NBHGui] = & gt; C:\Program Files\Nero\Tools\InCD\NBHGui.exe [1600816 2009-10-16] (Nero AG)
HKLM\...\Run: [InCD] = & gt; C:\Program Files\Nero\Tools\InCD\InCD.exe [1060136 2009-10-16] (Nero AG)
HKLM\...\Run: [MouseDriver] = & gt; C:\windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [GrooveMonitor] = & gt; C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [HP Software Update] = & gt; C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM\...\Run: [MSC] = & gt; c:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-29] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKU\S-1-5-21-3217695162-115095205-1628455998-1000\...\Run: [swg] = & gt; C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-12-15] (Google Inc.)
HKU\S-1-5-21-3217695162-115095205-1628455998-1000\...\Run: [DAEMON Tools Lite Automount] = & gt; C:\Program Files\DAEMON Tools Lite\DTAgent.exe [3579120 2015-06-01] (Disc Soft Ltd)
HKU\S-1-5-21-3217695162-115095205-1628455998-1000\...\MountPoints2: {e0e53b7d-a03a-11e1-a003-2c8158cb6e05} - E:\Install.exe
HKU\S-1-5-18\...\RunOnce: [panda] = & gt; reg.exe delete " HKCU\Software\AppDataLow\Software\panda " /f
HKU\S-1-5-18\...\RunOnce: [panda_XP] = & gt; reg.exe delete " HKCU\Software\panda " /f
ShellIconOverlayIdentifiers: [GGDriveOverlay1] - & gt; {E68D0A50-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll Brak pliku
ShellIconOverlayIdentifiers: [GGDriveOverlay2] - & gt; {E68D0A51-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll Brak pliku
ShellIconOverlayIdentifiers: [GGDriveOverlay3] - & gt; {E68D0A52-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll Brak pliku
ShellIconOverlayIdentifiers: [GGDriveOverlay4] - & gt; {E68D0A53-3C40-4712-B90D-DCFA93FF2534} = & gt; C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll Brak pliku
ShellIconOverlayIdentifiers: [NBHShellExt] - & gt; {8D2223A2-B3C6-4e32-B096-CDD11F628C60} = & gt; C:\Program Files\Nero\Tools\InCD\NBHshx.dll [2009-10-16] (Nero AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2012-05-17]
ShortcutTarget: Bluetooth.lnk - & gt; C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Anita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2013-07-17]
ShortcutTarget: EvernoteClipper.lnk - & gt; C:\Program Files\Evernote\Evernote\EvernoteClipper.exe (Brak pliku)
Startup: C:\Users\Anita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Powiadomienia monitorowania tuszu - HP Deskjet 2540 series (sieć).lnk [2015-11-03]
ShortcutTarget: Powiadomienia monitorowania tuszu - HP Deskjet 2540 series (sieć).lnk - & gt; C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
GroupPolicyScripts: Ograniczenia & lt; ======= UWAGA

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 217.172.224.160 89.231.1.206
Tcpip\..\Interfaces\{F30B8FA5-B26D-4F88-8636-F319F626CC3D}: [DhcpNameServer] 217.172.224.160 89.231.1.206

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.wp.pl/?src01=dp220141012
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKU\S-1-5-21-3217695162-115095205-1628455998-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.pl/
SearchScopes: HKLM - & gt; {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7 & q={searchTerms} & rls=com.microsoft:{language}:{referrer:source?} & ie={inputEncoding} & oe={outputEncoding} & rlz=1I7SMSN
SearchScopes: HKU\S-1-5-21-3217695162-115095205-1628455998-1000 - & gt; DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=U220DF & PC=U220 & q={searchTerms} & src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3217695162-115095205-1628455998-1000 - & gt; {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=U220DF & PC=U220 & q={searchTerms} & src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3217695162-115095205-1628455998-1000 - & gt; {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7 & q={searchTerms} & rls=com.microsoft:{language}:{referrer:source?} & ie={inputEncoding} & oe={outputEncoding} & rlz=1I7SMSN
SearchScopes: HKU\S-1-5-21-3217695162-115095205-1628455998-1000 - & gt; {75F9FB4B-04D5-4D1C-856A-48446E2CFB7C} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper - & gt; {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - & gt; C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-30] (Oracle Corporation)
BHO: Pomocnik rejestracji usługi Windows Live - & gt; {9030D464-4C02-4ABF-8ECC-5164760863C6} - & gt; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: Google Toolbar Helper - & gt; {AA58ED58-01DD-4d91-8333-CF10577473F7} - & gt; C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24] (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-30] (Oracle Corporation)
BHO: IplexToALLPlayer - & gt; {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - & gt; C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll [2013-11-01] (ALLCinema Ltd.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24] (Google Inc.)
Toolbar: HKU\S-1-5-21-3217695162-115095205-1628455998-1000 - & gt; Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-24] (Google Inc.)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-09] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Anita\AppData\Roaming\Mozilla\Firefox\Profiles\88kqus9q.default
FF DefaultSearchEngine: istartsurf
FF SelectedSearchEngine: istartsurf
FF Homepage: hxxps://www.google.pl/
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\windows\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()
FF Plugin: @Google.com/GoogleEarthPlugin - & gt; C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - & gt; D:\Picasa3\npPicasa3.dll [2014-06-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.65.2 - & gt; C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 - & gt; C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-30] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - & gt; c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 - & gt; C:\Program Files\Microsoft\Office Live\npOLW.dll [2008-11-13] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 - & gt; C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - & gt; C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2011-09-20] (RocketLife, LLP)
FF Plugin: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: Adobe Reader - & gt; C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Extension: ADB Helper - C:\Users\Anita\AppData\Roaming\Mozilla\Firefox\Profiles\88kqus9q.default\Extensions\adbhelper@mozilla.org [2015-10-21]
FF Extension: Valence - C:\Users\Anita\AppData\Roaming\Mozilla\Firefox\Profiles\88kqus9q.default\Extensions\fxdevtools-adapters@mozilla.org [2015-10-21]
FF Extension: High Stairs - C:\Users\Anita\AppData\Roaming\Mozilla\Firefox\Profiles\88kqus9q.default\Extensions\{2ce8b7c0-2a6f-47f5-9da0-56bbcad6e11c}.xpi [2015-10-03] [Brak podpisu cyfrowego]
FF Extension: Adblock Plus - C:\Users\Anita\AppData\Roaming\Mozilla\Firefox\Profiles\88kqus9q.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-24]

Chrome:
=======
CHR HomePage: Default - & gt; hxxps://www.google.pl/
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\46.0.2490.80\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\46.0.2490.80\ppGoogleNaClPluginChrome.dll = & gt; Brak pliku
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\46.0.2490.80\pdf.dll = & gt; Brak pliku
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll = & gt; Brak pliku
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll = & gt; Brak pliku
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll = & gt; Brak pliku
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (Windows Live00AE Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll = & gt; Brak pliku
CHR Plugin: (Picasa) - D:\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Profile: C:\Users\Anita\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Anita\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-02]
CHR Extension: (Adblock Plus) - C:\Users\Anita\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-02]
CHR Extension: (Google Search) - C:\Users\Anita\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-02]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Anita\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-25]
CHR Extension: (Gmail) - C:\Users\Anita\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]

==================== Usługi (filtrowane) ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1026288 2015-06-01] (Disc Soft Ltd)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Brak podpisu cyfrowego]
R2 InCDSrv; C:\Program Files\Nero\Tools\InCD\InCDSrv.exe [1420592 2009-10-16] (Nero AG)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [786256 2014-07-15] (Nero AG)
R2 NeroRegInCDSrv; C:\Program Files\Nero\Tools\InCD\NBHRegInCDSrv.exe [53560 2009-10-16] (Nero AG)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 OberonGameConsoleService; C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [44312 2009-08-13] ()
R2 Rezip; C:\windows\SYSTEM32\Rezip.exe [311296 2009-03-05] () [Brak podpisu cyfrowego]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Sterowniki (filtrowane) ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 athur; C:\windows\System32\DRIVERS\athur.sys [1500160 2010-01-05] (Atheros Communications, Inc.)
R3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [25016 2015-06-01] (Disc Soft Ltd)
S3 HPMo4DE3; C:\windows\System32\DRIVERS\HPMo4DE3.sys [20992 2011-03-09] (TPMX Electronics Ltd.)
S3 HPub4DE3; C:\windows\System32\Drivers\HPub4DE3.sys [13824 2011-04-12] (TPMX Electronics Ltd.)
R3 InCDFs; C:\windows\System32\DRIVERS\InCDFs.sys [130200 2009-10-16] (Nero AG)
S3 InCDPass; C:\windows\System32\DRIVERS\InCDPass.sys [48280 2009-10-16] (Nero AG)
R1 InCDRec; C:\windows\System32\DRIVERS\InCDRec.sys [19096 2009-10-16] (Nero AG)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
S3 t_mouse.sys; C:\windows\System32\DRIVERS\t_mouse.sys [5120 2012-12-19] ()
R3 yukonw7; C:\windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()
S3 MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2015-11-03 18:20 - 2015-11-03 18:22 - 00018594 _____ C:\Users\Anita\Desktop\FRST.txt
2015-11-03 18:20 - 2015-11-03 18:21 - 00000000 ____D C:\FRST
2015-11-03 18:04 - 2015-11-03 18:04 - 01701888 _____ (Farbar) C:\Users\Anita\Desktop\FRST.exe
2015-11-03 11:54 - 2015-11-03 11:54 - 00267405 _____ C:\Users\Anita\Desktop\prezentacja-marketing.pptx
2015-11-02 19:19 - 2015-11-02 19:25 - 00000000 ____D C:\AdwCleaner
2015-11-02 19:17 - 2015-11-02 19:17 - 01708032 _____ C:\Users\Anita\Desktop\adwcleaner_5.016.exe
2015-11-02 16:45 - 2015-11-03 12:31 - 01179853 _____ C:\Users\Anita\Desktop\Teoria Mc Gregora i Maslowa.pptx
2015-10-31 21:18 - 2015-10-31 21:26 - 00000000 ____D C:\Program Files\Common Files\AV
2015-10-31 21:13 - 2015-10-31 21:14 - 00000000 ____D C:\ProgramData\rWMiniPror
2015-10-31 21:12 - 2015-10-31 21:13 - 00000000 ___HD C:\Users\Anita\AppData\Roaming\GoldenGate
2015-10-31 21:10 - 2015-10-31 21:31 - 00000000 ____D C:\Program Files\360
2015-10-31 21:10 - 2015-10-31 21:10 - 29727656 _____ (Oracle Corporation) C:\Users\Anita\Downloads\setup [1].exe
2015-10-31 21:10 - 2015-10-31 21:10 - 00017902 _____ C:\Users\Anita\AppData\Roaming\ICSW_0P1F1E1T0J1T1CtJ1V0R1P1T1R1M0I2Z.txt
2015-10-30 22:30 - 2015-10-30 22:30 - 00000000 ____D C:\Program Files\Common Files\Java
2015-10-30 22:25 - 2015-10-30 22:25 - 00000000 ____D C:\Users\Anita\Desktop\Wydrukować
2015-10-15 22:13 - 2015-10-18 17:46 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-10-13 21:35 - 2015-09-29 04:05 - 03990976 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2015-10-13 21:35 - 2015-09-29 04:05 - 03936192 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-10-13 21:35 - 2015-09-29 04:02 - 01308160 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2015-10-13 21:35 - 2015-09-29 03:59 - 00655360 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2015-10-13 21:35 - 2015-09-29 03:59 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-10-13 21:35 - 2015-09-29 03:59 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-10-13 21:35 - 2015-09-29 03:59 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2015-10-13 21:35 - 2015-09-29 03:59 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-10-13 21:35 - 2015-09-29 03:59 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2015-10-13 21:35 - 2015-09-29 03:59 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-10-13 21:35 - 2015-09-29 03:58 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-10-13 21:35 - 2015-09-29 03:58 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2015-10-13 21:35 - 2015-09-29 03:58 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2015-10-13 21:35 - 2015-09-29 03:58 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2015-10-13 21:35 - 2015-09-29 03:58 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2015-10-13 21:35 - 2015-09-29 03:58 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2015-10-13 21:35 - 2015-09-29 03:53 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-10-13 21:35 - 2015-09-29 03:53 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2015-10-13 21:35 - 2015-09-29 03:49 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-10-13 21:35 - 2015-09-29 03:49 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2015-10-13 21:35 - 2015-09-29 02:43 - 00225792 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2015-10-13 21:35 - 2015-09-29 02:43 - 00124416 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2015-10-13 21:35 - 2015-09-29 02:43 - 00098304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2015-10-13 21:35 - 2015-09-15 18:42 - 00139096 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-10-13 21:35 - 2015-09-15 18:42 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-10-13 21:35 - 2015-09-15 18:36 - 01061376 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-10-13 21:35 - 2015-09-15 18:36 - 00248832 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-10-13 21:35 - 2015-09-15 18:36 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2015-10-13 21:35 - 2015-09-15 18:36 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-10-13 21:35 - 2015-09-15 18:36 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2015-10-13 21:35 - 2015-09-15 18:36 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2015-10-13 21:35 - 2015-09-15 18:35 - 00022528 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2015-10-13 21:34 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2015-10-13 21:34 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2015-10-13 21:33 - 2015-10-01 18:50 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2015-10-13 21:33 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2015-10-13 21:33 - 2015-10-01 18:50 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2015-10-13 21:33 - 2015-10-01 18:50 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2015-10-13 21:33 - 2015-10-01 18:50 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2015-10-13 21:33 - 2015-10-01 17:53 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2015-10-13 21:32 - 2015-09-18 19:58 - 00345688 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-10-13 21:32 - 2015-09-16 04:58 - 20357632 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-10-13 21:32 - 2015-09-16 04:45 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-10-13 21:32 - 2015-09-16 04:45 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-10-13 21:32 - 2015-09-16 04:33 - 00504832 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-10-13 21:32 - 2015-09-16 04:33 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-10-13 21:32 - 2015-09-16 04:32 - 00341504 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2015-10-13 21:32 - 2015-09-16 04:32 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-10-13 21:32 - 2015-09-16 04:31 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-10-13 21:32 - 2015-09-16 04:28 - 02279936 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-10-13 21:32 - 2015-09-16 04:26 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-10-13 21:32 - 2015-09-16 04:26 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-10-13 21:32 - 2015-09-16 04:24 - 00480256 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-10-13 21:32 - 2015-09-16 04:23 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-10-13 21:32 - 2015-09-16 04:23 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-10-13 21:32 - 2015-09-16 04:22 - 00663552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-10-13 21:32 - 2015-09-16 04:22 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-10-13 21:32 - 2015-09-16 04:18 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2015-10-13 21:32 - 2015-09-16 04:15 - 00416256 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-10-13 21:32 - 2015-09-16 04:10 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-10-13 21:32 - 2015-09-16 04:07 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-10-13 21:32 - 2015-09-16 04:06 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-10-13 21:32 - 2015-09-16 04:05 - 04527616 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-10-13 21:32 - 2015-09-16 04:05 - 00279040 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-10-13 21:32 - 2015-09-16 04:04 - 00130048 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2015-10-13 21:32 - 2015-09-16 03:58 - 12853760 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-10-13 21:32 - 2015-09-16 03:58 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2015-10-13 21:32 - 2015-09-16 03:56 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-10-13 21:32 - 2015-09-16 03:56 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-10-13 21:32 - 2015-09-16 03:55 - 02052608 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-10-13 21:32 - 2015-09-16 03:55 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2015-10-13 21:32 - 2015-09-16 03:37 - 02011136 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-10-13 21:32 - 2015-09-16 03:34 - 01311232 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-10-13 21:32 - 2015-09-16 03:32 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-08 09:14 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-08 09:13 - 2015-09-25 18:59 - 02955776 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2015-10-08 09:13 - 2015-09-25 18:59 - 02061824 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2015-10-08 09:13 - 2015-09-25 18:59 - 00566784 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2015-10-08 09:13 - 2015-09-25 18:59 - 00174080 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2015-10-08 09:13 - 2015-09-25 18:59 - 00093696 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2015-10-08 09:13 - 2015-09-25 18:59 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2015-10-08 09:13 - 2015-09-25 18:59 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2015-10-08 09:13 - 2015-09-25 18:58 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2015-10-08 09:13 - 2015-09-25 18:58 - 00073728 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2015-10-08 09:13 - 2015-09-25 18:58 - 00035328 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2015-10-08 09:13 - 2015-09-25 18:58 - 00011776 _____ (Microsoft Corporation) C:\windows\system32\wu.upgrade.ps.dll
2015-10-08 09:13 - 2015-08-05 18:40 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\icaapi.dll
2015-10-08 09:13 - 2015-08-05 17:58 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tssecsrv.sys
2015-10-08 09:11 - 2015-09-18 18:47 - 00023384 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2015-10-08 09:11 - 2015-09-18 18:44 - 01120768 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2015-10-08 09:11 - 2015-09-18 18:44 - 00615936 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-10-08 09:11 - 2015-09-18 18:44 - 00587776 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2015-10-08 09:11 - 2015-09-18 18:44 - 00423936 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-10-08 09:11 - 2015-09-18 18:44 - 00062976 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2015-10-08 09:11 - 2015-09-18 18:35 - 00999936 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-10-08 07:52 - 2015-10-08 07:52 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2015-10-08 07:52 - 2015-10-08 07:52 - 00000000 ____D C:\Program Files\Microsoft Security Client
2015-10-06 21:49 - 2015-10-06 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-10-06 21:49 - 2015-10-06 21:49 - 00000000 ____D C:\Program Files\Common Files\Skype
2015-10-04 21:45 - 2015-10-31 21:13 - 00000098 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-10-04 21:43 - 2015-10-04 23:00 - 00000000 ____D C:\ProgramData\b4bc9939-75e9-422b-af5c-653de35c4f4b

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2015-11-03 18:20 - 2009-12-16 04:14 - 01276497 _____ C:\windows\WindowsUpdate.log
2015-11-03 18:02 - 2012-05-17 20:41 - 00001036 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-03 17:30 - 2013-09-13 17:15 - 00000930 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-11-03 16:28 - 2009-07-14 05:34 - 00016752 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-03 16:28 - 2009-07-14 05:34 - 00016752 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-03 16:23 - 2012-09-03 13:08 - 00262123 _____ C:\Users\Anita\AppData\Roaming\Error.log
2015-11-03 16:22 - 2012-05-17 20:41 - 00001032 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-03 16:22 - 2009-12-16 04:49 - 00822684 _____ C:\windows\system32\perfh015.dat
2015-11-03 16:22 - 2009-12-16 04:49 - 00211910 _____ C:\windows\system32\perfc015.dat
2015-11-03 16:22 - 2009-07-26 21:06 - 01810098 _____ C:\windows\system32\PerfStringBackup.INI
2015-11-03 16:17 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-11-03 16:17 - 2009-07-14 05:39 - 00181349 _____ C:\windows\setupact.log
2015-11-03 12:37 - 2012-05-23 15:21 - 00000000 ____D C:\Users\Anita\AppData\Roaming\Skype
2015-11-03 12:34 - 2013-12-19 02:07 - 08082944 ___SH C:\Users\Anita\Desktop\Thumbs.db
2015-11-02 19:26 - 2012-05-17 16:09 - 00000000 ____D C:\Users\Anita
2015-11-02 18:32 - 2009-12-15 23:00 - 00858742 _____ C:\windows\PFRO.log
2015-11-01 22:38 - 2015-10-02 15:35 - 00000000 ____D C:\Users\Anita\Desktop\III Rok Kosmetologia
2015-10-31 21:25 - 2015-04-22 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-31 21:11 - 2015-04-22 09:38 - 00001423 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-10-30 22:59 - 2013-10-23 11:52 - 00000000 ____D C:\ProgramData\Oracle
2015-10-30 22:31 - 2014-10-16 08:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-30 22:29 - 2015-09-03 13:32 - 00000000 ____D C:\Users\Anita\.oracle_jre_usage
2015-10-30 22:28 - 2015-01-23 09:59 - 00097888 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2015-10-30 22:26 - 2014-10-16 08:21 - 00000000 ____D C:\Program Files\Java
2015-10-19 22:47 - 2009-07-14 03:37 - 00000000 ____D C:\windows\system32\NDF
2015-10-18 23:53 - 2013-12-19 10:53 - 00000000 ____D C:\Users\Anita\AppData\Roaming\HpUpdate
2015-10-18 23:44 - 2009-07-14 03:37 - 00000000 ____D C:\windows\rescache
2015-10-18 17:46 - 2015-04-22 09:38 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-10-17 17:31 - 2012-05-18 21:53 - 00780488 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-10-17 17:31 - 2012-05-18 21:53 - 00142536 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-10-15 21:06 - 2014-11-08 20:42 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-14 20:55 - 2009-07-14 03:37 - 00000000 ____D C:\windows\system32\pl-PL
2015-10-14 07:20 - 2012-05-17 16:25 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-14 07:15 - 2013-07-14 15:55 - 00000000 ____D C:\windows\system32\MRT
2015-10-14 06:51 - 2012-05-17 22:13 - 141105520 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-10-08 21:00 - 2015-04-10 02:08 - 00000000 ___SD C:\windows\system32\GWX
2015-10-08 09:15 - 2014-04-27 10:20 - 00000000 ___SD C:\windows\system32\CompatTel
2015-10-08 09:14 - 2014-12-10 14:24 - 00000000 ____D C:\windows\system32\appraiser
2015-10-08 07:52 - 2012-05-24 20:52 - 00002154 _____ C:\windows\epplauncher.mif
2015-10-06 21:49 - 2015-02-26 12:18 - 00000000 ___RD C:\Program Files\Skype
2015-10-06 21:49 - 2012-05-23 15:20 - 00000000 ____D C:\ProgramData\Skype
2015-10-05 14:59 - 2015-03-22 22:08 - 00000000 ____D C:\Users\Anita\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Urządzenia interfejsu Bluetooth
2015-10-04 23:00 - 2009-07-14 03:37 - 00000000 ____D C:\windows\system32\wfp
2015-10-04 22:59 - 2012-06-04 16:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2015-10-04 22:59 - 2009-12-15 11:32 - 00000000 ____D C:\ProgramData\WinClon
2015-10-04 22:58 - 2009-07-14 03:37 - 00000000 ____D C:\windows\registration

==================== Pliki w katalogu głównym wybranych folderów =======

2012-09-03 13:08 - 2015-11-03 16:23 - 0262123 _____ () C:\Users\Anita\AppData\Roaming\Error.log
2015-10-31 21:10 - 2015-10-31 21:10 - 0017902 _____ () C:\Users\Anita\AppData\Roaming\ICSW_0P1F1E1T0J1T1CtJ1V0R1P1T1R1M0I2Z.txt
2013-09-22 13:52 - 2013-09-22 13:52 - 0004096 ____H () C:\Users\Anita\AppData\Local\keyfile3.drm
2015-03-22 21:53 - 2015-03-22 21:53 - 0000017 _____ () C:\Users\Anita\AppData\Local\resmon.resmoncfg
2013-12-19 10:51 - 2013-12-19 10:51 - 0000057 _____ () C:\ProgramData\Ament.ini
2012-05-17 16:16 - 2009-08-17 04:16 - 0131368 _____ () C:\ProgramData\FullRemove.exe
2015-10-04 21:45 - 2015-10-31 21:13 - 0000098 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Pliki do przeniesienia lub usunięcia:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat


Niektóre pliki w TEMP:
====================
C:\Users\Anita\AppData\Local\Temp\ggdrive-menu.exe
C:\Users\Anita\AppData\Local\Temp\ggdrive-overlay.exe
C:\Users\Anita\AppData\Local\Temp\ICReinstall_setup.exe
C:\Users\Anita\AppData\Local\Temp\ICSW1.14_0P1F1E1T0J1T1C1.14.exe
C:\Users\Anita\AppData\Local\Temp\installstats.exe
C:\Users\Anita\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\Anita\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\Anita\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Anita\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\windows\explorer.exe = & gt; Plik podpisany cyfrowo
C:\windows\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\windows\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\windows\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\windows\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\windows\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\windows\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\windows\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\windows\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\windows\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo


LastRegBack: 2015-10-24 00:05

==================== Koniec FRST.txt ============================


Download file - link to post