Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja:06-09-2015 01 Uruchomiony przez test (administrator) KATKA (07-09-2015 19:38:02) Uruchomiony z C:\Users\test\Desktop\Nowy folder Załadowane profile: test (Dostępne profile: test & Mati) Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Język: Polski (Polska) Internet Explorer Wersja 8 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Windows\System32\SLsvc.exe (Agere Systems) C:\Windows\System32\agrsmsvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (TOSHIBA CORPORATION) C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe (ESET) C:\Program Files\Eset\ESET NOD32 Antivirus\ekrn.exe (Nero AG) C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe () C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe (TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe (TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe (TOSHIBA Corporation) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe (TOSHIBA Corporation) C:\Program Files\Toshiba\SMARTLogService\TosIPCSrv.exe (Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe () C:\Program Files\HTC\HTC Sync Manager\HTC Sync\adb.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Realtek Semiconductor) C:\Windows\RtHDVCpl.exe (TOSHIBA CORPORATION) C:\Program Files\Toshiba\ConfigFree\NDSTray.exe (Chicony) C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe (TOSHIBA Corporation) C:\Program Files\Toshiba\Power Saver\TPwrMain.exe (TOSHIBA Corporation) C:\Program Files\Toshiba\SmoothView\SmoothView.exe (TOSHIBA Corporation) C:\Program Files\Toshiba\FlashCards\TCrdMain.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe () C:\Program Files\Winamp\winampa.exe (Hewlett-Packard) C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (ESET) C:\Program Files\Eset\ESET NOD32 Antivirus\egui.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) C:\Windows\ehome\ehtray.exe (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe () C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe (TOSHIBA CORPORATION) C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe (Microsoft Corporation) C:\Windows\System32\conime.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4911104 2008-01-29] (Realtek Semiconductor) HKLM\...\Run: [NDSTray.exe] => NDSTray.exe HKLM\...\Run: [Camera Assistant Software] => C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [413696 2007-10-25] (Chicony) HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [431456 2008-01-17] (TOSHIBA Corporation) HKLM\...\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [54608 2007-11-01] (TOSHIBA Corporation) HKLM\...\Run: [SmoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [509816 2008-01-25] (TOSHIBA Corporation) HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [712704 2008-01-22] (TOSHIBA Corporation) HKLM\...\Run: [Toshiba Registration] => C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe [571024 2007-05-04] (Toshiba) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [WinampAgent] => C:\Program Files\Winamp\winampa.exe [37888 2009-07-01] () HKLM\...\Run: [Skytel] => C:\Windows\Skytel.exe [1826816 2007-11-20] (Realtek Semiconductor Corp.) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-01-20] (Apple Inc.) HKLM\...\Run: [OrderReminder] => C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [98304 2006-07-21] (Hewlett-Packard) HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157480 2015-01-27] (Apple Inc.) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5089480 2015-07-08] (ESET) HKLM\...\Run: [SunJavaUpdateSched] => "C:\Program Files\Java\jre1.8.0_51\bin\jusched.exe" HKU\S-1-5-21-1277129777-1714775637-3845986818-1000\...\Run: [Google Update] => C:\Users\test\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-04] () HKU\S-1-5-21-1277129777-1714775637-3845986818-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Brak pliku ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\test\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll [2013-06-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\test\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll [2013-06-05] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\test\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll [2013-06-05] (Dropbox, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2010-01-08] ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2008-04-23] ShortcutTarget: TRDCReminder.lnk -> C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe) Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2008-04-23] ShortcutTarget: TRDCReminder.lnk -> C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe) Startup: C:\Users\Mati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk [2013-11-01] ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) Startup: C:\Users\test\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk [2009-05-18] ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) GroupPolicy: Zasady grupy Chrome wykryto <======= UWAGA GroupPolicyUsers\S-1-5-21-1277129777-1714775637-3845986818-1000\User: Ograniczenia wykryto <======= UWAGA GroupPolicyScripts: Zasady grupy wykryto <======= UWAGA CHR HKLM\SOFTWARE\Policies\Google: Zasada ograniczeń <======= UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci..) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 62.179.1.61 62.179.1.63 Tcpip\..\Interfaces\{39B41FAE-2521-4887-89EE-B333DE203E55}: [DhcpNameServer] 62.179.1.61 62.179.1.63 Tcpip\..\Interfaces\{E97717DB-696E-4937-B2A8-4B70EB52C84C}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{EE1966F1-1B7B-4B03-94AE-953F443CE78A}: [DhcpNameServer] 172.20.10.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-1277129777-1714775637-3845986818-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006 SearchScopes: HKLM -> {3ACFF09A-6519-4701-88C1-518FFCFD3D79} URL = hxxp://www.google.pl/search?q={searchTerms}&rls=com.microsoft:*:IE-SearchBox&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7; SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms} SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation) BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-09-04] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-09-04] (Oracle Corporation) BHO: Brak nazwy -> {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} -> Brak pliku Toolbar: HKU\S-1-5-21-1277129777-1714775637-3845986818-1000 -> Brak nazwy - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Brak pliku DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} hxxp://kitchenplanner.ikea.com/PL/Core/Player/2020PlayerAX_Win32.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_51-windows-i586.cab DPF: {CAFEEFAC-0018-0000-0051-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_51-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_51-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-09-03] () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin: @bittorrent.com/BitTorrentDNA -> C:\Program Files\DNA\plugins\npbtdna.dll [2009-03-22] (BitTorrent, Inc.) FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-09-04] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-09-04] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-04] () FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-04] () FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1277129777-1714775637-3845986818-1000: @bittorrent.com/BitTorrentDNA -> C:\Users\test\Program Files\DNA\plugins\npbtdna.dll Brak pliku FF Plugin HKU\S-1-5-21-1277129777-1714775637-3845986818-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\test\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] () FF Plugin HKU\S-1-5-21-1277129777-1714775637-3845986818-1000: @talk.google.com/O1DPlugin -> C:\Users\test\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] () FF Plugin HKU\S-1-5-21-1277129777-1714775637-3845986818-1000: @tools.google.com/Google Update;version=3 -> C:\Users\test\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-04] () FF Plugin HKU\S-1-5-21-1277129777-1714775637-3845986818-1000: @tools.google.com/Google Update;version=9 -> C:\Users\test\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-04] () FF Plugin ProgramFiles/Appdata: C:\Users\test\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] () FF Plugin ProgramFiles/Appdata: C:\Users\test\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] () FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-03-23] FF HKU\S-1-5-21-1277129777-1714775637-3845986818-1000\...\Firefox\Extensions: [{d5bc46d8-67c7-11dc-8c1d-0097498c2b7a}] - C:\Users\test\Program Files\DNA Chrome: ======= CHR Plugin: (Widevine Content Decryption Module) - C:\Users\test\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.4.600\_platform_specific\win_x86\widevinecdmadapter.dll Brak pliku CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\45.0.2454.85\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\45.0.2454.85\ppGoogleNaClPluginChrome.dll Brak pliku CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\45.0.2454.85\pdf.dll Brak pliku CHR Plugin: (QuickTime Plug-in 7.7.6) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.6) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.6) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.6) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.6) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.) CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (DNA Plug-in) - C:\Program Files\DNA\plugins\npbtdna.dll (BitTorrent, Inc.) CHR Plugin: (Java Deployment Toolkit 7.0.450.18) - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll Brak pliku CHR Plugin: (Java(TM) Platform SE 7 U45) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll Brak pliku CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll Brak pliku CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () CHR Plugin: (Google Update) - C:\Users\test\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll Brak pliku CHR Plugin: (Google Talk Plugin) - C:\Users\test\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll () CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\test\AppData\Roaming\Mozilla\plugins\npo1d.dll () CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll Brak pliku CHR Profile: C:\Users\test\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-24] CHR Extension: (Google Drive) - C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-24] CHR Extension: (YouTube) - C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-24] CHR Extension: (Adblock Plus) - C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-09-04] CHR Extension: (Google Search) - C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-24] CHR Extension: (Google Docs Offline) - C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-04] CHR Extension: (Chrome Web Store Payments) - C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-24] CHR Extension: (Gmail) - C:\Users\test\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-24] ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2007-12-25] (TOSHIBA CORPORATION) [Brak podpisu cyfrowego] R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [1353720 2015-07-08] (ESET) S2 gupdate; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-04] () [Brak podpisu cyfrowego] S3 gupdatem; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-04] () [Brak podpisu cyfrowego] R2 HTCMonitorService; C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-04-12] (Nero AG) S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego] S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [Brak podpisu cyfrowego] S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [632832 2011-03-21] (Nokia) [Brak podpisu cyfrowego] R2 TOSHIBA SMART Log Service; C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [126976 2007-12-03] (TOSHIBA Corporation) [Brak podpisu cyfrowego] R2 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.) [Brak podpisu cyfrowego] S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation) S3 GDUpdateSvc; C:\Program Files\G Data\InternetSecurity\AVK\UpdatePGM\IUpdateAVK.exe [X] S2 TOSHIBA Bluetooth Service; c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [X] ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [202704 2015-07-14] (ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [144536 2015-07-14] (ESET) R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [132152 2015-07-14] (ESET) S3 GTFFBUS; C:\Windows\System32\DRIVERS\gtffbus.sys [17152 2007-01-19] (Option N.V.) S3 GTMMDMUSB; C:\Windows\System32\DRIVERS\gtmmdmusb.sys [25472 2007-01-19] (Option N.V.) S3 GTMNDISIRPXP; C:\Windows\System32\DRIVERS\Gtm51Irp.sys [122240 2007-01-19] (Option NV) S3 GTMSERUSB; C:\Windows\System32\DRIVERS\gtmserusb.sys [21888 2007-01-19] (Option N.V.) S3 GTPTSER; C:\Windows\System32\DRIVERS\gtptser.sys [8064 2007-01-19] (Option N.V.) S3 GTSCSER; C:\Windows\System32\DRIVERS\gtscser.sys [21248 2007-04-04] (Option N.V.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation) S3 mr7910; C:\Windows\System32\DRIVERS\mr7910.sys [46848 2007-03-20] (Mars Semiconductor Corp.) S3 PCAMp50; C:\Windows\System32\Drivers\PCAMp50.sys [28224 2008-01-21] (Printing Communications Assoc., Inc. (PCAUSA)) S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [27072 2008-01-21] (Printing Communications Assoc., Inc. (PCAUSA)) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [721904 2010-08-25] () [Brak podpisu cyfrowego] R3 UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [18432 2007-12-17] (Chicony Electronics Co., Ltd.) S3 whfltr2k; C:\Windows\System32\DRIVERS\whfltr2k.sys [6784 2007-01-25] () S3 EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys [X] S3 eapihdrv; \??\C:\Users\test\AppData\Local\Temp\ehdrv.sys [X] S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X] S3 IpInIp; system32\DRIVERS\ipinip.sys [X] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X] S3 SymIMMP; system32\DRIVERS\SymIM.sys [X] S3 Tosrfcom; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-09-07 14:43 - 2015-09-07 19:38 - 00000000 ____D C:\Users\test\Desktop\Nowy folder 2015-09-07 14:36 - 2015-09-07 14:40 - 00068835 _____ C:\Users\test\Downloads\Addition.txt 2015-09-07 14:35 - 2015-09-07 14:40 - 00043697 _____ C:\Users\test\Downloads\FRST.txt 2015-09-07 14:34 - 2015-09-07 19:38 - 00000000 ____D C:\FRST 2015-09-07 14:34 - 2015-09-07 14:34 - 01692160 _____ (Farbar) C:\Users\test\Downloads\FRST.exe 2015-09-07 13:40 - 2015-09-07 13:40 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\test\Downloads\SpyHunter-Installer.exe 2015-09-07 09:36 - 2015-02-09 22:33 - 02112512 _____ C:\Users\test\Desktop\AdwCleaner.exe 2015-09-04 21:35 - 2015-08-13 11:09 - 06010880 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-09-04 21:35 - 2015-08-13 10:24 - 01638912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-09-04 21:30 - 2015-09-04 21:30 - 00448512 _____ (OldTimer Tools) C:\Users\test\Desktop\TFC (1).exe 2015-09-04 21:29 - 2015-09-04 21:30 - 00448512 _____ (OldTimer Tools) C:\Users\test\Downloads\TFC.exe 2015-09-04 19:41 - 2015-09-07 09:41 - 00000000 ____D C:\AdwCleaner 2015-09-04 19:41 - 2015-09-04 19:41 - 01654272 _____ C:\Users\test\Downloads\AdwCleaner (2).exe 2015-09-04 19:39 - 2015-09-04 19:39 - 01654272 _____ C:\Users\test\Downloads\AdwCleaner (1).exe 2015-09-04 19:11 - 2015-09-04 19:05 - 00146432 _____ (Oracle Corporation) C:\Windows\system32\javacpl.cpl 2015-09-04 19:09 - 2015-09-04 19:05 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2015-09-04 18:52 - 2015-09-04 18:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2015-09-04 18:52 - 2015-09-04 18:52 - 00000000 ____D C:\ProgramData\ESET 2015-09-04 18:48 - 2015-09-04 18:48 - 01761992 _____ (ESET) C:\Users\test\Downloads\eset_nod32_antivirus_live_installer_ (1).exe 2015-09-04 17:53 - 2015-09-07 14:54 - 00000821 _____ C:\Windows\setupact.log 2015-09-04 17:53 - 2015-09-04 17:53 - 00000000 _____ C:\Windows\setuperr.log 2015-09-04 17:49 - 2015-09-04 17:49 - 01761992 _____ (ESET) C:\Users\test\Downloads\eset_nod32_antivirus_live_installer_.exe 2015-09-04 04:33 - 2015-07-21 22:55 - 01206192 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-09-04 04:33 - 2015-07-21 18:07 - 03605440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2015-09-04 04:33 - 2015-07-21 18:07 - 03553216 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-09-04 04:33 - 2015-07-21 18:07 - 00140224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys 2015-09-04 04:33 - 2015-07-21 18:07 - 00056256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys 2015-09-04 04:33 - 2015-07-21 18:03 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\emdmgmt.dll 2015-09-04 04:33 - 2015-07-21 18:03 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-09-04 04:33 - 2015-07-21 18:03 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll 2015-09-04 04:33 - 2015-07-03 18:04 - 01316864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2015-09-04 04:23 - 2015-07-31 21:27 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-09-04 04:20 - 2015-06-17 18:50 - 02264576 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2015-09-04 04:20 - 2015-06-17 17:09 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2015-09-04 04:20 - 2015-06-12 18:01 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2015-09-04 04:19 - 2015-07-09 16:20 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2015-09-04 04:14 - 2015-07-10 21:37 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2015-09-04 03:58 - 2015-07-11 17:56 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-09-04 03:34 - 2015-07-18 18:03 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll 2015-09-04 03:24 - 2015-07-10 21:37 - 01402368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2015-09-04 03:24 - 2015-07-10 21:37 - 01253376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2015-09-04 03:19 - 2015-05-31 10:11 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll 2015-09-04 03:16 - 2015-08-01 00:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-09-04 03:16 - 2015-07-31 23:46 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll 2015-09-04 03:16 - 2015-07-31 23:46 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2015-09-04 03:16 - 2015-07-31 23:46 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll 2015-09-04 03:16 - 2015-07-31 23:46 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2015-09-04 03:16 - 2015-07-31 22:41 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2015-09-04 03:16 - 2015-07-31 22:40 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2015-09-04 03:16 - 2015-07-31 22:35 - 00682496 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2015-09-04 03:16 - 2015-07-31 22:33 - 02066944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-09-04 03:16 - 2015-07-31 22:33 - 01072640 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-09-04 03:16 - 2015-07-31 22:33 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-09-04 03:16 - 2015-07-31 22:33 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-09-04 03:07 - 2015-06-27 18:03 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-09-04 03:07 - 2015-06-27 18:02 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-09-04 03:07 - 2015-06-27 18:02 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-09-04 03:07 - 2015-06-27 18:01 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-09-04 03:07 - 2015-06-27 16:21 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-09-04 03:07 - 2015-06-27 16:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2015-09-04 03:07 - 2015-06-12 15:13 - 00440768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-09-04 03:07 - 2015-01-09 02:17 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2015-09-04 03:06 - 2015-07-01 17:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2015-09-04 03:04 - 2015-07-09 16:25 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe 2015-09-04 03:04 - 2015-07-09 16:25 - 00151040 _____ (Microsoft Corporation) C:\Windows\notepad.exe 2015-09-04 02:47 - 2015-07-16 11:19 - 00916992 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-09-04 02:47 - 2015-07-16 11:18 - 01214976 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-09-04 02:47 - 2015-07-16 11:14 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-09-04 02:47 - 2015-07-16 11:13 - 00630272 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-09-04 02:47 - 2015-07-16 11:13 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2015-09-04 02:47 - 2015-07-16 11:12 - 02006016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-09-04 02:47 - 2015-07-16 11:12 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-09-04 02:47 - 2015-07-16 11:12 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-09-04 02:47 - 2015-07-16 11:12 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-09-04 02:47 - 2015-07-16 08:48 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-09-04 02:47 - 2015-07-16 08:47 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2015-09-04 02:46 - 2015-07-16 11:19 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-09-04 02:46 - 2015-07-16 11:19 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2015-09-04 02:46 - 2015-07-16 11:18 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2015-09-04 02:46 - 2015-07-16 11:16 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2015-09-04 02:46 - 2015-07-16 11:14 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll 2015-09-04 02:46 - 2015-07-16 11:13 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-09-04 02:46 - 2015-07-16 11:12 - 11085824 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-09-04 02:46 - 2015-07-16 11:12 - 01469440 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-09-04 02:46 - 2015-07-16 11:12 - 00727552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-09-04 02:46 - 2015-07-16 11:12 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2015-09-04 02:46 - 2015-07-16 11:12 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-09-04 02:46 - 2015-07-16 11:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2015-09-04 02:46 - 2015-07-16 11:12 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-09-04 02:46 - 2015-07-16 11:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2015-09-04 02:46 - 2015-07-16 11:10 - 00348160 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-09-04 02:46 - 2015-07-16 11:10 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-09-04 02:46 - 2015-07-16 11:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\corpol.dll 2015-09-04 02:46 - 2015-07-16 10:00 - 00385024 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-09-04 02:46 - 2015-07-16 08:48 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-09-04 01:16 - 2015-09-04 01:16 - 00000000 ____D C:\Users\test\AppData\Roaming\Mozilla 2015-09-03 21:39 - 2015-09-03 21:39 - 02870984 _____ (ESET) C:\Users\test\Downloads\esetsmartinstaller_plk.exe 2015-09-03 19:51 - 2015-09-07 09:46 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-09-03 19:51 - 2015-09-04 02:59 - 00000864 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-09-03 19:51 - 2015-09-03 19:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-09-03 19:51 - 2015-09-03 19:51 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-09-03 19:51 - 2015-09-03 19:51 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2015-09-03 19:51 - 2015-06-18 08:41 - 00094936 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-09-03 19:51 - 2015-06-18 08:41 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-09-03 19:51 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-09-03 19:50 - 2015-09-03 19:51 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\test\Downloads\mbam-setup-2.1.8.1057.exe 2015-09-03 19:33 - 2015-09-07 19:23 - 07909106 _____ C:\Windows\PFRO.log ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2060-08-18 19:02 - 2011-09-11 23:29 - 02023424 ____N (Inprise Corporation) C:\Windows\system32\Vcl50.bpl 2060-08-18 19:02 - 2011-09-11 23:29 - 01496064 ____N (Inprise Corporation) C:\Windows\system32\Cc3250mt.dll 2060-08-18 19:02 - 2011-09-11 23:29 - 00248832 ____N (Inprise Corporation) C:\Windows\system32\Vclx50.bpl 2060-08-18 18:40 - 2011-09-11 23:29 - 00909824 ____N (Inprise Corporation) C:\Windows\system32\Cp3245mt.dll 2060-08-18 18:40 - 2011-09-11 23:29 - 00024064 ____N (Inprise Corporation) C:\Windows\system32\Borlndmm.dll 2015-09-07 19:35 - 2012-04-28 12:51 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-09-07 19:32 - 2009-03-12 15:07 - 01156320 _____ C:\Windows\WindowsUpdate.log 2015-09-07 19:23 - 2013-11-21 19:07 - 00001032 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-09-07 19:23 - 2013-06-12 15:14 - 00000000 ____D C:\Users\test\AppData\Local\HTC MediaHub 2015-09-07 19:23 - 2009-07-20 21:58 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2015-09-07 19:23 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-09-07 19:23 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2015-09-07 19:23 - 2006-11-02 14:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2015-09-07 15:26 - 2006-11-02 15:01 - 00032548 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-09-07 15:14 - 2010-03-29 20:12 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1277129777-1714775637-3845986818-1000UA.job 2015-09-07 15:13 - 2013-11-21 19:07 - 00001036 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-09-07 14:55 - 2008-01-21 08:24 - 01624842 _____ C:\Windows\system32\PerfStringBackup.INI 2015-09-07 14:55 - 2008-01-21 08:24 - 00718280 _____ C:\Windows\system32\perfh015.dat 2015-09-07 14:55 - 2008-01-21 08:24 - 00153028 _____ C:\Windows\system32\perfc015.dat 2015-09-07 14:25 - 2009-07-20 21:58 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy 2015-09-04 19:45 - 2013-11-11 12:39 - 00001046 _____ C:\Users\Mati\Desktop\Przeglądarka.lnk 2015-09-04 19:12 - 2013-12-23 11:36 - 00000000 ____D C:\ProgramData\Oracle 2015-09-04 19:11 - 2008-04-23 09:39 - 00000000 ____D C:\Program Files\Common Files\Java 2015-09-04 19:10 - 2008-04-23 09:39 - 00000000 ____D C:\Program Files\Java 2015-09-04 18:55 - 2009-03-12 15:17 - 00000000 ____D C:\Users\test 2015-09-04 18:52 - 2009-05-05 21:12 - 00000000 ____D C:\Program Files\Eset 2015-09-04 17:58 - 2015-01-06 09:59 - 00000000 ____D C:\ProgramData\AVAST Software 2015-09-04 06:15 - 2014-01-27 21:29 - 00001942 _____ C:\Users\test\Desktop\Google Chrome.lnk 2015-09-04 05:09 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET 2015-09-04 05:01 - 2006-11-02 14:47 - 00484592 _____ C:\Windows\system32\FNTCACHE.DAT 2015-09-04 04:58 - 2010-02-14 11:24 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2015-09-04 04:57 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages 2015-09-04 04:56 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer 2015-09-04 04:44 - 2014-04-23 10:48 - 00000000 ____D C:\Users\Public\Util 2015-09-04 04:44 - 2009-07-29 12:11 - 00000000 ____D C:\Program Files\SIW 2015-09-04 04:40 - 2008-05-13 08:24 - 00000000 ____D C:\ProgramData\Microsoft Help 2015-09-04 04:28 - 2010-06-05 07:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-09-04 03:55 - 2013-08-01 07:48 - 00000000 ____D C:\Windows\system32\MRT 2015-09-04 03:01 - 2014-03-12 14:22 - 00002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk 2015-09-04 03:01 - 2012-01-29 17:14 - 00002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2015-09-04 03:01 - 2011-11-23 22:19 - 00001936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Digital Editions.lnk 2015-09-04 03:01 - 2010-01-08 12:50 - 00001844 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS.lnk 2015-09-04 03:01 - 2008-05-13 08:49 - 00002585 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2007.lnk 2015-09-04 03:01 - 2008-04-23 09:22 - 00000604 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live.lnk 2015-09-04 03:01 - 2006-11-02 14:56 - 00001910 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Photo Gallery.lnk 2015-09-04 03:01 - 2006-11-02 14:56 - 00001763 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2015-09-04 03:01 - 2006-11-02 14:56 - 00001730 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Calendar.lnk 2015-09-04 03:01 - 2006-11-02 14:56 - 00001717 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Defender.lnk 2015-09-04 03:01 - 2006-11-02 14:55 - 00001812 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Collaboration.lnk 2015-09-04 03:01 - 2006-11-02 14:55 - 00001728 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker.lnk 2015-09-04 03:01 - 2006-11-02 14:55 - 00001703 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk 2015-09-04 03:01 - 2006-11-02 14:55 - 00001630 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2015-09-04 03:01 - 2006-11-02 14:53 - 00001663 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Contacts.lnk 2015-09-04 02:59 - 2015-02-10 11:55 - 00001629 _____ C:\Users\Public\Desktop\iTunes.lnk 2015-09-04 02:59 - 2014-03-12 14:22 - 00001857 _____ C:\Users\Public\Desktop\Adobe Reader X.lnk 2015-09-04 02:59 - 2013-06-24 08:04 - 00000000 ____D C:\Users\test\Desktop\Mateusz 2015-09-04 02:59 - 2009-06-04 20:50 - 00000104 _____ C:\Users\Public\Desktop\Komputer.lnk 2015-09-04 02:59 - 2009-03-12 15:22 - 00000925 _____ C:\Users\test\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-09-04 02:59 - 2009-03-12 15:22 - 00000920 _____ C:\Users\test\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk 2015-09-04 02:59 - 2006-11-02 14:56 - 00001613 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk 2015-09-04 02:59 - 2006-11-02 14:50 - 00001641 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk 2015-09-04 02:09 - 2009-03-23 13:38 - 00000000 _RSHD C:\Recycle 2015-09-04 01:15 - 2010-03-29 20:12 - 00001002 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1277129777-1714775637-3845986818-1000Core.job 2015-09-03 23:35 - 2012-04-28 12:51 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-09-03 23:35 - 2011-06-21 07:31 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-09-03 20:45 - 2009-11-27 18:31 - 00000000 ____D C:\Program Files\Opera ==================== Pliki w katalogu głównym wybranych folderów ======= 2014-02-02 13:26 - 2014-02-02 13:26 - 0000604 ____H () C:\Program Files\_Z2 2009-06-29 12:55 - 2009-06-29 12:55 - 0000268 ___RH () C:\Users\test\AppData\Roaming\AccountTypes 2009-06-29 12:55 - 2009-06-29 12:55 - 0000268 ___RH () C:\Users\test\AppData\Roaming\Action 2011-08-30 16:50 - 2011-08-30 16:50 - 0000090 _____ () C:\Users\test\AppData\Roaming\XTDocSettings.ini 2010-08-25 17:22 - 2015-04-07 17:17 - 0000680 _____ () C:\Users\test\AppData\Local\d3d9caps.dat 2009-03-20 22:57 - 2015-02-10 10:56 - 0035840 _____ () C:\Users\test\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2012-04-28 12:56 - 2015-04-26 11:09 - 0012965 _____ () C:\Users\test\AppData\Local\unins000.dat 2015-04-26 11:09 - 2015-04-26 11:09 - 0707504 _____ () C:\Users\test\AppData\Local\unins000.exe 2012-04-28 12:56 - 2015-04-26 11:09 - 0011761 _____ () C:\Users\test\AppData\Local\unins000.msg 2009-06-29 12:55 - 2009-06-29 12:55 - 0000268 ___RH () C:\ProgramData\Ambience 2009-06-29 12:55 - 2009-06-29 12:55 - 0000268 ___RH () C:\ProgramData\Ambient 2009-03-22 21:45 - 2009-03-22 21:45 - 0000056 ____H () C:\ProgramData\ezsidmv.dat 2009-06-29 12:52 - 2009-06-29 19:46 - 0000020 ____H () C:\ProgramData\PKP_DLbx.DAT 2009-06-29 12:55 - 2009-06-29 12:56 - 0000020 ____H () C:\ProgramData\PKP_DLck.DAT Niektóre pliki w TEMP: ==================== C:\Users\test\AppData\Local\Temp\Quarantine.exe C:\Users\test\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2015-09-07 19:34 ==================== Koniec FRST.txt ============================