Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:07-11-2015 Uruchomiony przez prywal (administrator) PRYWAL-PC (08-11-2015 14:43:26) Uruchomiony z C:\Users\prywal\Downloads Załadowane profile: prywal (Dostępne profile: prywal) Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe (Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation) HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 62.179.1.63 62.179.1.62 Tcpip\..\Interfaces\{A0AE18BB-9605-43A8-ADB7-50ACB1DBC12D}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{C2AB94B6-D251-4EB9-97C5-AF786F39FC4C}: [DhcpNameServer] 62.179.1.63 62.179.1.62 Tcpip\..\Interfaces\{FFF87158-E9FA-4436-B22F-718311AAB83A}: [DhcpNameServer] 62.179.1.63 62.179.1.62 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA HKU\S-1-5-21-1016778481-4292490164-2828301055-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-1016778481-4292490164-2828301055-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch SearchScopes: HKLM-x32 -> DefaultScope - brak wartości BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-03-03] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-03-03] (Oracle Corporation) BHO-x32: IplexToALLPlayer -> {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} -> C:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll [2011-02-09] (ALLCinema Ltd.) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab FireFox: ======== FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-02-09] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @ganymede/GanymedeNetPlugin,version=1.0 -> C:\Program Files (x86)\Ganymede\Plugins\npganymedenet.dll [2013-05-14] ( ) FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-02-10] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-03-03] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.) Chrome: ======= CHR HomePage: Default -> hxxp://www.pmiska.pl/ CHR StartupUrls: Default -> "hxxp://www.pmiska.pl/" CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\PepperFlash\pepflashplayer.dll () CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\ppGoogleNaClPluginChrome.dll => Brak pliku CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\pdf.dll => Brak pliku CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll => Brak pliku CHR Plugin: (Java(TM) Platform SE 7 U13) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Brak pliku CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll => Brak pliku CHR Plugin: (Java Deployment Toolkit 7.0.130.20) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) CHR Profile: C:\Users\prywal\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\prywal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-26] ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-12-19] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Brak podpisu cyfrowego] R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation) S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation) S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation) S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation) S3 catchme; \??\C:\ComboFix\catchme.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-11-08 14:43 - 2015-11-08 14:43 - 00009723 _____ C:\Users\prywal\Downloads\FRST.txt 2015-11-08 14:42 - 2015-11-08 14:43 - 00000000 ____D C:\FRST 2015-11-08 14:40 - 2015-11-08 14:40 - 00380416 _____ C:\Users\prywal\Downloads\tddivu4v.exe 2015-11-08 14:39 - 2015-11-08 14:41 - 02198528 _____ (Farbar) C:\Users\prywal\Downloads\FRST64.exe 2015-11-08 10:04 - 2015-11-08 10:04 - 00619688 _____ (Duplex Secure Ltd) C:\Users\prywal\Downloads\SPTDinst-v187-x64.exe 2015-11-08 10:04 - 2015-11-08 10:04 - 00619688 _____ (Duplex Secure Ltd) C:\Users\prywal\Downloads\Niepotwierdzony 305263.crdownload 2015-11-08 08:57 - 2015-11-08 08:57 - 00012238 _____ C:\ComboFix.txt 2015-11-08 08:49 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe 2015-11-08 08:49 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe 2015-11-08 08:49 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2015-11-08 08:49 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2015-11-08 08:49 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2015-11-08 08:49 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe 2015-11-08 08:49 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe 2015-11-08 08:49 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe 2015-11-05 21:15 - 2015-11-05 21:32 - 00000000 ____D C:\Users\prywal\Downloads\The.Originals.S03E02.HDTV.x264-LOL[ettv] 2015-11-05 21:15 - 2015-11-05 21:32 - 00000000 ____D C:\Users\prywal\Downloads\The.Originals.S03E01.HDTV.x264-LOL[ettv] 2015-11-04 08:13 - 2015-11-04 08:16 - 00000000 ____D C:\Users\prywal\Desktop\ZEGARKI 2015-11-03 21:28 - 2015-11-03 21:42 - 00000000 ____D C:\Users\prywal\Downloads\The.Walking.Dead.S06E02.HDTV.x264-FUM[ettv] 2015-11-03 18:05 - 2015-11-03 21:24 - 00000000 ____D C:\Users\prywal\Downloads\Homeland.S05E05.720p.WEB-DL.DD5.1.H.264-KiNGS[ettv] 2015-11-03 18:05 - 2015-11-03 21:23 - 00000000 ____D C:\Users\prywal\Downloads\The.Walking.Dead.S06E04.HDTV.x264-KILLERS[ettv] 2015-11-01 11:41 - 2015-11-01 16:30 - 00000000 ____D C:\Users\prywal\Desktop\10.2015 ALLEGRO 2015-11-01 08:51 - 2015-11-03 21:44 - 00000000 ____D C:\Users\prywal\Downloads\Fargo.S02E03.INTERNAL.HDTV.x264-BATV[ettv] 2015-11-01 08:51 - 2015-11-01 09:24 - 00000000 ____D C:\Users\prywal\Downloads\Fargo.S02E02.HDTV.x264-2HD[ettv] 2015-11-01 08:51 - 2015-11-01 09:23 - 00000000 ____D C:\Users\prywal\Downloads\Supernatural.S11E04.HDTV.x264-LOL[ettv] 2015-11-01 08:51 - 2015-11-01 09:11 - 00000000 ____D C:\Users\prywal\Downloads\Supernatural.S11E03.HDTV.x264-LOL[rarbg] 2015-10-26 20:18 - 2015-10-27 21:35 - 00000000 ____D C:\Users\prywal\Downloads\Homeland.S05E04.720p.WEB-DL.DD5.1.H.264-KiNGS[ettv] 2015-10-26 19:33 - 2015-10-26 20:38 - 00000000 ____D C:\Users\prywal\Downloads\The.Walking.Dead.S06E03.HDTV.x264-KILLERS[ettv] 2015-10-26 16:38 - 2015-10-26 16:38 - 00000000 ____D C:\Users\prywal\Downloads\007 James Bond Quantum of Solace 2008 1080p BluRay x264 AAC - Ozlem 2015-10-26 16:37 - 2015-10-29 18:55 - 00000000 ____D C:\Users\prywal\Downloads\Skyfall.2012.1080p.BluRay.x264-DAA [PublicHD] 2015-10-26 16:36 - 2015-10-29 18:54 - 00000000 ____D C:\Users\prywal\Downloads\Casino.Royale.2006.(Bond.50).CE.Bluray.1080p.DTS-HD.x264-Grym 2015-10-21 20:50 - 2015-10-29 18:55 - 00000000 ____D C:\Users\prywal\Downloads\Takers (2010) [1080p] 2015-10-21 20:49 - 2015-11-08 14:33 - 00000000 ____D C:\Users\prywal\Downloads\The.Drop.2014.1080p.BluRay.H264.AAC.5.1.BADASSMEDIA 2015-10-21 20:46 - 2015-10-28 19:21 - 00000000 ____D C:\Users\prywal\Downloads\Supernatural.S11E02.HDTV.x264-LOL[ettv] 2015-10-21 20:46 - 2015-10-22 20:53 - 00000000 ____D C:\Users\prywal\Downloads\Narcos S01 720p WEBRip x264-TASTETV[ettv] 2015-10-17 17:23 - 2015-10-17 17:23 - 03598536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe 2015-10-17 11:46 - 2015-10-17 12:50 - 00000000 ____D C:\Users\prywal\Downloads\Fargo.S02E01.720p.HDTV.x264-KILLERS[EtHD] 2015-10-17 11:45 - 2015-10-20 21:55 - 00000000 ____D C:\Users\prywal\Downloads\Peaky.Blinders.Season.2.Complete.720p.HDTV.x264-SCENE 2015-10-16 10:27 - 2015-10-16 10:28 - 10058752 _____ C:\Users\prywal\Downloads\good quality watches.xls 2015-10-14 11:07 - 2015-10-14 11:07 - 05366272 _____ C:\Users\prywal\Downloads\Guangzhou Phero Perfume8.20.xls 2015-10-09 21:55 - 2015-10-11 16:23 - 00000000 ____D C:\Users\prywal\Downloads\Avengers.Age.of.Ultron.2015.1080p.BluRay.x264-SPARKS[hotpena] 2015-10-09 21:14 - 2015-10-09 22:00 - 00000000 ____D C:\Users\prywal\Downloads\Prisoners.2013.720p.BluRay.x264-SPARKS [PublicHD] 2015-10-09 21:12 - 2015-10-26 16:35 - 00000000 ____D C:\Users\prywal\Downloads\seriale 2015-10-09 20:58 - 2015-10-09 20:58 - 00000000 ____D C:\Users\prywal\Downloads\Spy.2015.1080p.BluRay.x264-SPARKS[hotpena] ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-11-08 14:33 - 2014-02-20 15:13 - 00213719 _____ C:\Windows\setupact.log 2015-11-08 14:23 - 2013-02-10 00:06 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-11-08 13:52 - 2013-02-11 10:14 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-11-08 09:52 - 2009-07-14 05:45 - 00019344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-11-08 09:52 - 2009-07-14 05:45 - 00019344 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-11-08 08:57 - 2014-02-26 17:44 - 00000000 ____D C:\Qoobox 2015-11-08 08:55 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini 2015-11-08 08:00 - 2009-07-14 18:55 - 00743770 _____ C:\Windows\system32\perfh015.dat 2015-11-08 08:00 - 2009-07-14 18:55 - 00157252 _____ C:\Windows\system32\perfc015.dat 2015-11-08 08:00 - 2009-07-14 06:13 - 01679266 _____ C:\Windows\system32\PerfStringBackup.INI 2015-11-08 07:58 - 2013-02-09 17:31 - 01407176 _____ C:\Windows\WindowsUpdate.log 2015-11-08 07:56 - 2013-02-11 10:14 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-11-08 07:55 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-11-05 21:47 - 2013-02-11 11:18 - 00000000 ____D C:\Users\prywal\AppData\Roaming\uTorrent 2015-11-05 21:33 - 2013-04-23 21:13 - 00000000 ____D C:\Program Files (x86)\The KMPlayer 2015-11-04 12:54 - 2015-05-05 10:25 - 00020587 _____ C:\Users\prywal\Desktop\zeg.xlsx 2015-11-01 17:30 - 2014-12-25 10:03 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2015-10-29 18:55 - 2014-02-02 07:08 - 00000000 ____D C:\Users\prywal\AppData\Roaming\EurekaLog 2015-10-27 16:02 - 2009-07-14 06:08 - 00032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-10-26 19:01 - 2014-02-04 18:37 - 00000000 ____D C:\Program Files (x86)\Steam 2015-10-25 21:40 - 2015-01-08 07:11 - 00000000 ____D C:\Users\prywal\Desktop\KAROLINA 2015-10-24 11:54 - 2013-02-11 10:15 - 00002189 _____ C:\Users\Public\Desktop\google chrome.lnk 2015-10-23 14:44 - 2014-02-26 17:03 - 00111952 _____ C:\Windows\PFRO.log 2015-10-21 20:52 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2015-10-21 20:41 - 2013-04-26 16:00 - 00000000 ____D C:\Program Files (x86)\Multiecuscan 2015-10-21 20:41 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-10-21 20:40 - 2014-12-13 17:00 - 00000000 ____D C:\ProgramData\Origin 2015-10-21 20:40 - 2014-12-13 17:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2015-10-21 20:40 - 2013-02-12 08:41 - 00000000 ____D C:\Program Files (x86)\Rockstar Games 2015-10-21 20:39 - 2013-02-12 09:22 - 00000000 ____D C:\Users\prywal\Documents\Rockstar Games 2015-10-21 20:38 - 2013-02-09 22:49 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-10-17 17:23 - 2013-02-10 00:06 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-10-17 17:23 - 2013-02-10 00:06 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-10-17 17:23 - 2013-02-10 00:06 - 00003868 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-10-17 13:04 - 2015-09-06 17:03 - 00000000 ____D C:\ProgramData\Apple Computer 2015-10-17 13:03 - 2015-09-06 17:01 - 00000000 ____D C:\Program Files\Common Files\Apple 2015-10-17 12:56 - 2015-09-06 17:01 - 00000000 ____D C:\ProgramData\Apple 2015-10-15 09:43 - 2013-02-09 23:21 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-10-09 21:13 - 2015-06-08 18:41 - 00000000 ____D C:\Users\prywal\Downloads\filmy nie obejrzane ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2015-10-31 00:26 ==================== Koniec FRST.txt ============================