Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:01-12-2015
Uruchomiony przez User (administrator)  TOSHIBA (03-12-2015 23:30:26)
Uruchomiony z C:\Users\User\Desktop\Sprzątanie
Załadowane profile: User (Dostępne profile: User)
Platform: Windows 8.1 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe
(LenovoEMC Ltd.) C:\Program Files (x86)\LenovoEMC Storage Manager\pCloudd.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Clarus, Inc.) C:\Program Files (x86)\Clarus\Samsung Drive Manager\SZDrvSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TOSHIBA Corporation) C:\Windows\System32\ThpSrv.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(Toshiba Corporation) C:\Program Files\Toshiba\Teco\TecoService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe
(Clarus, Inc.) C:\Program Files (x86)\Clarus\Samsung Drive Manager\Drive Manager.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Teco\TecoResident.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Clarus, Inc.) C:\Program Files (x86)\Clarus\Samsung Drive Manager\SZDrvMon.exe
(TOSHIBA Corporation) C:\Program Files (x86)\Toshiba\System Setting\TssSrv.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe
() C:\Program Files\Toshiba\Hotkey\Hotkey\TCrdKBB.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Spotify Ltd) C:\Users\User\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\User\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Spotify Ltd) C:\Users\User\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\User\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\User\AppData\Roaming\Spotify\Spotify.exe
(LenovoEMC) C:\Program Files (x86)\LenovoEMC Storage Manager\LenovoEMCStorageManager.exe
(Clarus, Inc.) C:\Program Files (x86)\Clarus\Samsung Drive Manager\ABRTMon.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\wmi64.exe


==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [894048 2013-01-12] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [178016 2013-08-21] (TOSHIBA Corporation)
HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296520 2013-09-12] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-08-17] (TOSHIBA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2774256 2013-08-28] (Synaptics Incorporated)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] ()
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [ToshibaAppPlace] => C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe [552960 2010-09-23] (Toshiba)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3498728 2015-09-27] (Adobe Systems Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2014-02-07] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2310339651-1844684010-2764154791-1001\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564992 2014-02-07] (Samsung)
HKU\S-1-5-21-2310339651-1844684010-2764154791-1001\...\Run: [ALLUpdate] => C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [2765256 2014-11-03] (ALLPlayer Group Ltd.)
HKU\S-1-5-21-2310339651-1844684010-2764154791-1001\...\Run: [ALLPlayer WiFi Remote] => C:\Program Files (x86)\ALLPlayer Remote\ALLPlayerRemoteControl.exe [5182896 2014-07-23] (ALLPlayer Group Ltd.)
HKU\S-1-5-21-2310339651-1844684010-2764154791-1001\...\Run: [IROElauncher] => C:\Program Files (x86)\IVONA\IVONA Reader\integr\OutlookExpress\IROElauncher.exe [94720 2008-09-26] (Nektra S.A.)
HKU\S-1-5-21-2310339651-1844684010-2764154791-1001\...\Run: [Viber] => C:\Users\User\AppData\Local\Viber\Viber.exe [51519488 2015-09-24] ()
HKU\S-1-5-21-2310339651-1844684010-2764154791-1001\...\Run: [Napisy24.pl] => C:\Program Files (x86)\Napisy24\Napisy24.exe [4449736 2014-11-03] (Napisy24.pl)
HKU\S-1-5-21-2310339651-1844684010-2764154791-1001\...\Run: [Spotify Web Helper] => C:\Users\User\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2344768 2015-11-27] (Spotify Ltd)
HKU\S-1-5-21-2310339651-1844684010-2764154791-1001\...\Run: [Spotify] => C:\Users\User\AppData\Roaming\Spotify\Spotify.exe [8281920 2015-11-27] (Spotify Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Brak pliku
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\LenovoEMC Storage Manager.lnk [2015-06-11]
ShortcutTarget: LenovoEMC Storage Manager.lnk -> C:\Program Files (x86)\LenovoEMC Storage Manager\LenovoEMCStorageManager.exe (LenovoEMC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Drive Manager Real-Time.lnk [2015-07-27]
ShortcutTarget: Samsung Drive Manager Real-Time.lnk -> C:\Program Files (x86)\Clarus\Samsung Drive Manager\ABRTMon.exe (Clarus, Inc.)

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{826FB31E-0D97-43CE-908B-8AED9637627B}: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{EC96FB48-C4E3-4A79-9F17-792359050E45}: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{F5069112-707B-4944-B315-187DAE090C60}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet Explorer:
==================
HKU\S-1-5-21-2310339651-1844684010-2764154791-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2310339651-1844684010-2764154791-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://mystart.toshiba.com
SearchScopes: HKU\S-1-5-21-2310339651-1844684010-2764154791-1001 -> DefaultScope {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.pl/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2310339651-1844684010-2764154791-1001 -> {85A60A59-D3D8-468F-B598-FB4393789EF4} URL = hxxps://www.google.pl/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-10-20] (Microsoft Corporation)
BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: IVONA Reader -> {8664889D-ED18-4713-918F-E2BB69D8452B} -> C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2_x64.dll [2009-10-14] (IVO Software Sp. z o.o.)
BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-10-20] (Microsoft Corporation)
BHO-x32: Microsoft Web Test Recorder 12.0 Helper -> {432dd630-7e03-4c97-9d62-b99f52df4fc2} -> C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2013-10-05] (Microsoft Corporation)
BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: IVONA Reader -> {8664889D-ED18-4713-918F-E2BB69D8452B} -> C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2.dll [2009-10-14] (IVO Software Sp. z o.o.)
BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
Toolbar: HKLM - IVONA Reader - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2_x64.dll [2009-10-14] (IVO Software Sp. z o.o.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-09-12] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - IVONA Reader - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2.dll [2009-10-14] (IVO Software Sp. z o.o.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-03-12] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\tvhmtuwk.default
FF NewTab: about:blank
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Homepage: about:blank
FF NetworkProxy: "backup.ftp", "213.181.129.193"
FF NetworkProxy: "backup.ftp_port", 8085
FF NetworkProxy: "backup.socks", "213.181.129.193"
FF NetworkProxy: "backup.socks_port", 8085
FF NetworkProxy: "backup.ssl", "213.181.129.193"
FF NetworkProxy: "backup.ssl_port", 8085
FF NetworkProxy: "ftp", "193.219.28.144"
FF NetworkProxy: "ftp_port", 8080
FF NetworkProxy: "http", "193.219.28.144"
FF NetworkProxy: "http_port", 8080
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "193.219.28.144"
FF NetworkProxy: "socks_port", 8080
FF NetworkProxy: "ssl", "193.219.28.144"
FF NetworkProxy: "ssl_port", 8080
FF NetworkProxy: "type", 0
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-05-03] ()
FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-05-03] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-05-03] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [Brak pliku]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-05-11] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-05-03] [Brak podpisu cyfrowego]
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-05-03] [Brak podpisu cyfrowego]
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-05-03] [Brak podpisu cyfrowego]
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-12-03] [Brak podpisu cyfrowego]
FF Extension: LiveReload - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\tvhmtuwk.default\Extensions\livereload@livereload.com.xpi [2015-04-20] [Brak podpisu cyfrowego]
FF Extension: Firefox OS Simulator - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\tvhmtuwk.default\Extensions\r2d2b2g@mozilla.org [2015-08-21] [Brak podpisu cyfrowego]
FF Extension: ALLYouTubeDownloader - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\tvhmtuwk.default\Extensions\YouTubetoALL@ALLPlayer.org.xpi [2015-05-29]
FF Extension: ADB Helper - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\81f3pwwj.dev-edition-default\Extensions\adbhelper@mozilla.org [2015-11-26]
FF Extension: Valence - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\81f3pwwj.dev-edition-default\Extensions\fxdevtools-adapters@mozilla.org [2015-11-26]
FF Extension: Brak nazwy - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] [Brak podpisu cyfrowego]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\FFExt\online_banking@kaspersky.com
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Firefox Developer Edition\firefox.exe

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/ig?hl=pl&referrer=ign
CHR StartupUrls: Default -> "hxxp://www.google.com/ig?hl=pl&referrer=ign","hxxp://www.default-search.net?sid=476&aid=113&itype=n&ver=12349&tm=349&src=hmp"
CHR Session Restore: Default -> [funkcja włączona]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (SEOquake) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\akdgnmcogleenhbclghghlkkdndkjdjc [2015-11-26]
CHR Extension: (Dysk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-26]
CHR Extension: (Session Manager) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbcnbpafconjjigibnhbfmmgdbbkcjfi [2015-11-26]
CHR Extension: (Web Developer) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2015-11-26]
CHR Extension: (ColorZilla) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2015-11-26]
CHR Extension: (iPad Simulator) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\biamdeofchcbekmcakjcfnpdipmkmkbb [2015-11-26]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-26]
CHR Extension: (JSONView) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\chklaanhfefbnpoihckbnefhakgolnmc [2015-12-03]
CHR Extension: (PHP Ninja Manual) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\clbhjjdhmgeibgdccjfoliooccomjcab [2015-11-26]
CHR Extension: (Spotify - Music for every moment) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkjkdjlofllcpbemipjbcpfnglbgieh [2015-11-26]
CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-26]
CHR Extension: (Kaspersky Protection) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-11-26]
CHR Extension: (SEOrch - OnPage SEO Tool) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dofplnfijbongplmhcpoobljlfjeaank [2015-11-26]
CHR Extension: (Session Buddy) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\edacconmaakjimmfgnblocblbcdcpbko [2015-11-26]
CHR Extension: (Tabs Outliner) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggkanocgddhmamlbiijnphhppkpkmkl [2015-11-26]
CHR Extension: (SimpleUndoClose) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhohdghchmjepmigjojkehidlielknj [2015-11-26]
CHR Extension: (Google Font Previewer for Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\engndlnldodigdjamndkplafgmkkencc [2015-11-26]
CHR Extension: (Avast Online Security) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-12-03]
CHR Extension: (Wappalyzer) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gppongmhjkpfnbhagpmjfkannfbllamg [2015-11-26]
CHR Extension: (Trustwave SecureBrowsing) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcghfieafojgpngcjbkbbjfecjbahhif [2015-11-26]
CHR Extension: (META SEO inspector) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibkclpciafdglkjkcibmohobjkcfkaef [2015-11-26]
CHR Extension: (Tablica ASCII) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihnlhfijjimcoilcpfpjdiflleiplbfe [2015-11-26]
CHR Extension: (Conceptboard) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnacnlekfaehkfdbkohnhpmdagnfaeio [2015-11-26]
CHR Extension: (LiveReload) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnihajbhpnppcggbcgedagnkighmdlei [2015-11-26]
CHR Extension: (Google Analytics Debugger) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnkmfdileelhofjcijamephohjechhna [2015-11-26]
CHR Extension: (Adres IP) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpnjjlbngpejmmhgcaagljaomgnginml [2015-11-26]
CHR Extension: (TransferBigFiles.com Gmail Extension) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lajnjaghjodocddaglgghffgacnoepgf [2015-11-26]
CHR Extension: (Stop Autoplay for YouTube.) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgdfnbpkmkkdhgidgcpdkgpdlfjcgnnh [2015-11-26]
CHR Extension: (AudioSauna) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae [2015-11-26]
CHR Extension: (QR Code Generator) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nanmadekhdoofgmhichkcjlgiofmofbl [2015-11-26]
CHR Extension: (PHP Console) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfhmhhlpfleoednkpnnnkolmclajemef [2015-11-26]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-26]
CHR Extension: (Chrome Logger) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\noaneddfkdjfnfdakjjmocngnfkfehhd [2015-11-26]
CHR Extension: (Picasa) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2015-11-26]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-26]
CHR Extension: (MeasureIt) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pokhcahijjfkdccinalifdifljglhclm [2015-11-26]
CHR Extension: (SEO Analysis with Seoptimer) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pplbjgemahdghhnelnlihpflpdkkmmgj [2015-11-26]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2015-09-27]

Opera: 
=======
OPR StartupUrls: "hxxp://www.gazeta.pl/0,0.html?p=170"
OPR Session Restore: -> [funkcja włączona]

==================== Usługi (filtrowane) ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe [194000 2015-06-23] (Kaspersky Lab ZAO)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2015-09-12] (Microsoft Corporation)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19792 2013-09-10] ()
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [Brak podpisu cyfrowego]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-04] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\Bin\IpOverUsbSvc.exe [14760 2013-01-01] (Microsoft Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 PCloudd; C:\Program Files (x86)\LenovoEMC Storage Manager\pCloudd.exe [215040 2015-03-05] (LenovoEMC Ltd.) [Brak podpisu cyfrowego]
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (arvato digital services llc)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 SZDrvSvc; C:\Program Files (x86)\Clarus\Samsung Drive Manager\SZDrvSvc.exe [18432 2015-05-21] (Clarus, Inc.) [Brak podpisu cyfrowego]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Brak podpisu cyfrowego]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-04] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Sterowniki (filtrowane) ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [132608 2015-01-30] (Microsoft Corporation)
R3 BthHFAud; C:\Windows\System32\drivers\BthHfAud.sys [32768 2014-10-08] (Microsoft Corporation)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-06-23] (Kaspersky Lab UK Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-23] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [64368 2015-06-23] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [159960 2015-06-23] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [226480 2015-06-30] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [817848 2015-10-06] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39792 2015-06-23] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [40304 2015-06-23] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [39792 2015-06-23] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [24944 2015-06-23] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [77680 2015-06-23] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [85360 2015-06-23] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [190648 2015-10-06] (Kaspersky Lab ZAO)
S3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [52832 2015-02-26] (hxxp://libusb-win32.sourceforge.net)
R3 mdf16; C:\Program Files (x86)\Clarus\Samsung Drive Manager\mdf16.sys [20400 2012-06-21] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R3 mvd23; C:\Program Files (x86)\Clarus\Samsung Drive Manager\mvd23.sys [99248 2012-06-21] ()
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3349984 2014-03-07] (Intel Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [290008 2013-07-05] (Realtek Semiconductor Corp.)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-08-28] (Synaptics Incorporated)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
R1 UimBus; C:\Windows\System32\drivers\UimBus.sys [102664 2013-12-16] ()
R1 Uim_DEVIM; C:\Windows\System32\drivers\uim_devim.sys [25992 2013-12-16] ()
R1 Uim_IM; C:\Windows\System32\drivers\uim_im.sys [700680 2013-12-16] ()
S3 usbrndis6; C:\Windows\system32\DRIVERS\usb80236.sys [20992 2013-08-22] (Microsoft Corporation)
R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-08-13] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146072 2015-08-13] (Oracle Corporation)
R3 vNICdrv; C:\Windows\system32\DRIVERS\vNICdrv.sys [20048 2013-05-20] (Iomega Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2015-12-03 23:24 - 2015-12-03 23:24 - 00000000 ____D C:\MATS
2015-12-03 21:06 - 2015-12-03 23:30 - 00000000 ____D C:\Users\User\Desktop\Sprzątanie
2015-12-03 20:46 - 2015-12-03 20:46 - 00097798 _____ C:\Users\User\Desktop\Shortcut.txt
2015-12-03 20:44 - 2015-12-03 20:46 - 00076633 _____ C:\Users\User\Desktop\Addition.txt
2015-12-03 20:44 - 2015-12-03 20:46 - 00070755 _____ C:\Users\User\Desktop\FRST.txt
2015-12-03 20:41 - 2015-12-03 23:30 - 00000000 ____D C:\FRST
2015-12-03 17:04 - 2015-12-03 17:56 - 00000000 ____D C:\Windows\SysWOW64\vbox
2015-12-03 17:04 - 2015-12-03 17:56 - 00000000 ____D C:\Windows\system32\vbox
2015-12-03 16:55 - 2015-12-03 16:55 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2015-12-03 16:55 - 2015-12-03 16:55 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-03 05:40 - 2015-12-03 05:40 - 00001485 _____ C:\Users\Public\Desktop\Adobe Application Manager.lnk
2015-12-03 05:39 - 2015-12-03 05:39 - 00001224 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2015-12-03 05:29 - 2015-12-03 05:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-12-03 05:29 - 2015-12-03 05:29 - 00000000 ____D C:\Program Files\7-Zip
2015-12-03 05:28 - 2015-12-03 05:28 - 00002715 _____ C:\Users\Public\Desktop\Skype.lnk
2015-12-03 05:28 - 2015-12-03 05:28 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-03 05:28 - 2015-12-03 05:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-12-03 04:57 - 2015-12-03 04:58 - 05200384 _____ (AVAST Software) C:\Users\User\Desktop\aswmbr.exe
2015-12-03 04:53 - 2015-12-03 23:20 - 00000000 ____D C:\ProgramData\AVAST Software
2015-12-03 04:52 - 2015-12-03 04:52 - 05084256 _____ (AVAST Software) C:\Users\User\Desktop\avast_free_antivirus_setup_online.exe
2015-12-03 04:50 - 2015-12-03 04:50 - 01721344 _____ (Farbar) C:\Users\User\Desktop\FRST.exe
2015-12-03 04:27 - 2015-12-03 04:43 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2015-12-03 04:04 - 2015-12-03 04:04 - 00004697 _____ C:\Users\User\Desktop\AdwCleaner[C1].txt
2015-12-03 03:57 - 2015-12-03 06:08 - 00000000 ____D C:\AdwCleaner
2015-12-03 03:56 - 2015-12-03 03:56 - 01736704 _____ C:\Users\User\Desktop\adwcleaner_5.023.exe
2015-12-01 18:04 - 2015-12-01 18:05 - 00000000 ____D C:\Users\User\AppData\Local\FreeFixer
2015-12-01 18:04 - 2015-12-01 18:04 - 00000000 ____D C:\Users\User\Desktop\freefixer_portable
2015-12-01 18:01 - 2015-12-01 18:01 - 02552029 _____ C:\Users\User\Desktop\freefixer_portable.zip
2015-12-01 17:34 - 2015-12-01 17:34 - 01988928 _____ (Kaspersky Lab) C:\Users\User\Desktop\kss15.0.0.737en_ru_de_fr_es_it_zh-hans_pl_tr_nl_cs_7726.exe
2015-12-01 17:28 - 2015-12-01 17:29 - 00256558 _____ C:\TDSSKiller.3.1.0.7_01.12.2015_17.28.19_log.txt
2015-12-01 17:28 - 2015-11-29 22:38 - 04398264 _____ (Kaspersky Lab ZAO) C:\Users\User\Desktop\TDSSKiller.exe
2015-12-01 17:27 - 2015-12-01 17:27 - 04376463 _____ C:\Users\User\Desktop\tdsskiller.zip
2015-12-01 17:26 - 2015-12-01 17:27 - 00169578 _____ C:\TDSSKiller.2.8.15.0_01.12.2015_17.26.57_log.txt
2015-12-01 17:25 - 2015-12-01 17:25 - 00004473 _____ C:\$tmplistd.txt
2015-12-01 17:25 - 2015-12-01 17:25 - 00001317 _____ C:\$tmplistf.txt
2015-11-30 22:19 - 2015-11-30 22:19 - 00137138 _____ C:\Users\User\Documents\Syllabus.pdf
2015-11-27 14:32 - 2015-11-27 14:32 - 00001857 _____ C:\Users\User\Desktop\Spotify.lnk
2015-11-27 14:30 - 2015-12-03 23:28 - 00000000 ____D C:\Users\User\AppData\Roaming\Spotify
2015-11-27 14:29 - 2015-11-27 14:29 - 00232872 _____ (Spotify Ltd) C:\Users\User\Desktop\SpotifySetup.exe
2015-11-27 11:37 - 2015-11-27 11:54 - 131422152 _____ C:\Users\User\Desktop\Apache_OpenOffice_4.1.2_Win_x86_install_pl.exe
2015-11-26 16:03 - 2015-12-03 03:52 - 00000000 ____D C:\Users\User\AppData\Roaming\FileZilla
2015-11-26 14:43 - 2015-11-26 14:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-11-26 14:38 - 2015-11-26 14:38 - 02012464 _____ C:\Users\User\Downloads\Adaware_Installer.exe
2015-11-26 14:13 - 2015-12-03 22:48 - 00002220 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-11-26 14:13 - 2015-11-26 14:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-26 14:12 - 2015-11-26 14:12 - 00929872 _____ (Google Inc.) C:\Users\User\Desktop\ChromeSetup.exe
2015-11-26 12:22 - 2015-12-01 17:26 - 00000002 _____ C:\Users\User\Desktop\Rkill.txt
2015-11-26 11:53 - 2015-11-26 11:53 - 04431176 _____ (Google) C:\Users\User\Desktop\chrome_cleanup_tool.exe
2015-11-25 14:34 - 2015-11-25 14:34 - 00000000 ____D C:\Windows\Downloaded Installations
2015-11-25 14:32 - 2015-11-25 14:32 - 32611248 _____ (DVDVideoSoft Ltd. ) C:\Users\User\Desktop\FreeHTML5VideoPlayerAndConverter.exe
2015-11-25 14:31 - 2015-11-25 14:31 - 32611248 _____ (DVDVideoSoft Ltd. ) C:\Users\User\Downloads\Free HTML5 Video Player And Converter 5.0.31.1125.exe
2015-11-24 12:15 - 2015-11-24 12:15 - 04446721 _____ C:\Users\User\Desktop\torba 24x33x94 wer9 (11).eps
2015-11-23 09:36 - 2015-11-23 09:36 - 00089062 _____ C:\Users\User\Desktop\Adam Dolata.pdf
2015-11-20 21:07 - 2011-02-08 19:07 - 00038096 _____ (TOSHIBA Corporation) C:\Windows\system32\Drivers\PGEffect.sys
2015-11-20 20:56 - 2015-11-20 21:06 - 90650928 _____ C:\Users\User\Desktop\TC30499000A.exe
2015-11-16 16:49 - 2015-11-16 16:49 - 00001285 _____ C:\Users\User\Desktop\Thecus Setup Wizard.lnk
2015-11-16 16:49 - 2015-11-16 16:49 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Thecus
2015-11-16 16:49 - 2015-11-16 16:49 - 00000000 ____D C:\Program Files (x86)\Thecus
2015-11-16 16:48 - 2015-11-16 16:48 - 00000000 ____D C:\Users\User\Desktop\Setup-Wizard_v204_Windows
2015-11-16 16:45 - 2015-11-16 16:45 - 01995365 _____ C:\Users\User\Desktop\Setup-Wizard_v204_Windows.zip
2015-11-13 15:47 - 2015-11-13 15:59 - 828560384 _____ C:\Users\User\Desktop\PS4UPDATE.PUP
2015-11-13 12:22 - 2015-11-13 12:22 - 00000000 ____D C:\Windows\LastGood.Tmp
2015-11-13 02:23 - 2015-11-13 02:23 - 00000073 _____ C:\Users\User\Desktop\zwot dysku.txt
2015-11-12 16:42 - 2015-11-12 16:43 - 00000000 ____D C:\Users\User\Desktop\Playstation Updates
2015-11-11 11:40 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-11 11:40 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-11 11:40 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-11 11:40 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-11 11:40 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-11 11:40 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-11 11:40 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-11 11:40 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-11 11:40 - 2015-10-30 23:39 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-11-11 11:40 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-11 11:40 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-11-11 11:40 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-11-11 11:40 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-11 11:40 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-11 11:40 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-11 11:40 - 2015-10-30 23:14 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-11-11 11:40 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-11-11 11:40 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-11 11:40 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-11 11:40 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-11-11 11:40 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-11 11:40 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-11 11:40 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-11-11 11:40 - 2015-10-20 22:54 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-11-11 11:40 - 2015-10-20 15:53 - 03705856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-11 11:40 - 2015-10-20 15:36 - 02243072 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-11-11 11:40 - 2015-10-20 15:35 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-11-11 11:40 - 2015-10-20 15:34 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-11-11 11:40 - 2015-10-20 15:34 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-11-11 11:40 - 2015-10-20 15:34 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-11-11 11:40 - 2015-10-20 15:33 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-11-11 11:40 - 2015-10-20 15:14 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-11-11 11:40 - 2015-10-20 15:13 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-11-11 11:40 - 2015-10-20 15:13 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-11-11 11:40 - 2015-10-20 15:13 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-11-11 11:40 - 2015-10-17 15:19 - 04176384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-11-11 11:40 - 2015-10-15 17:08 - 00990208 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-11 11:40 - 2015-10-15 16:46 - 00803328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-11 11:40 - 2015-10-15 00:02 - 07455064 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-11 11:40 - 2015-10-15 00:02 - 01659560 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-11-11 11:40 - 2015-10-15 00:02 - 01519592 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-11-11 11:40 - 2015-10-15 00:02 - 01487008 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-11-11 11:40 - 2015-10-15 00:02 - 01355848 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-11-11 11:40 - 2015-10-13 18:10 - 00559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-11 11:40 - 2015-10-13 18:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-11 11:40 - 2015-10-13 16:59 - 00397224 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-11-11 11:40 - 2015-10-13 16:59 - 00340872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-11-11 11:40 - 2015-10-13 16:59 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-11 11:40 - 2015-10-13 16:59 - 00120376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-11 11:40 - 2015-10-13 16:59 - 00106952 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-11-11 11:40 - 2015-10-13 16:59 - 00091416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-11-11 11:40 - 2015-10-11 07:36 - 00561952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-11-11 11:40 - 2015-10-11 07:36 - 00177496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-11-11 11:40 - 2015-10-10 19:40 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-11-11 11:40 - 2015-10-10 19:39 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-11-11 11:40 - 2015-10-10 19:07 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-11-11 11:40 - 2015-10-10 18:33 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-11-11 11:40 - 2015-10-10 18:27 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-11 11:40 - 2015-10-10 18:11 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-11-11 11:40 - 2015-10-10 17:45 - 00359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-11 11:40 - 2015-10-08 17:08 - 01083904 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-11-11 11:40 - 2015-09-29 13:24 - 00155480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2015-11-11 11:40 - 2015-09-12 14:47 - 00414559 _____ C:\Windows\system32\ApnDatabase.xml
2015-11-11 11:40 - 2015-09-07 17:22 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-11-11 11:40 - 2015-09-07 16:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-11-11 11:40 - 2015-09-07 16:30 - 01091584 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-11-11 11:40 - 2015-09-04 20:24 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2015-11-11 11:40 - 2015-08-28 23:20 - 00183368 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2015-11-11 11:40 - 2015-08-20 21:45 - 01380048 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-11-11 11:40 - 2015-08-20 18:48 - 01096704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-11-11 11:40 - 2015-08-10 19:15 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-11-11 11:40 - 2015-08-10 19:06 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-11-11 11:40 - 2015-08-10 18:49 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-11-11 11:40 - 2015-08-10 17:56 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-11-11 11:40 - 2015-08-10 17:46 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-11-11 11:40 - 2014-11-10 19:06 - 00136512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-11-11 11:40 - 2014-11-05 02:41 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-11-11 11:40 - 2014-11-05 02:18 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-11-10 15:16 - 2015-11-10 15:50 - 00000000 ____D C:\Users\User\Desktop\zwierzaki
2015-11-10 14:57 - 2015-11-10 14:57 - 01515094 _____ C:\Users\User\Desktop\Cute-forest-animals.zip
2015-11-10 14:57 - 2015-11-10 14:57 - 00000000 ____D C:\Users\User\Desktop\Cute-forest-animals
2015-11-10 12:55 - 2015-11-10 12:55 - 00127905 _____ C:\Users\User\Desktop\przesylki.pdf
2015-11-08 12:09 - 2015-12-03 23:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-06 23:46 - 2015-11-06 23:46 - 01257472 _____ C:\Users\User\Desktop\rozpiska_formularz_strony.indd
2015-11-06 21:23 - 2015-11-06 21:23 - 00006321 _____ C:\Users\User\Desktop\Formularz zamówień POLBRAND.xlsx
2015-11-06 15:04 - 2015-11-06 15:04 - 00359041 _____ C:\Users\User\Desktop\POL_Faktura_indywidualna_522-592-2567-5057_15_11_F011_Z.pdf
2015-11-06 00:13 - 2015-11-06 00:13 - 08025069 _____ C:\Users\User\Desktop\TD-W9980_V1_150507.zip
2015-11-05 12:55 - 2015-11-05 12:55 - 00001949 _____ C:\Users\User\Desktop\Undelete.exe — skrót.lnk
2015-11-05 06:29 - 2015-11-05 06:29 - 00000000 ____D C:\Users\User\AppData\Local\Clarus
2015-11-03 00:20 - 2015-11-03 00:21 - 00089042 _____ C:\Users\User\Desktop\000005.pdf

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2015-12-03 23:28 - 2015-05-03 14:24 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-12-03 23:28 - 2014-05-14 19:08 - 00000000 __RDO C:\Users\User\OneDrive
2015-12-03 23:28 - 2014-05-12 12:45 - 00000000 ____D C:\Users\User\AppData\Local\Spotify
2015-12-03 23:28 - 2014-05-12 11:55 - 01347584 ___SH C:\Users\User\Desktop\Thumbs.db
2015-12-03 23:28 - 2013-11-26 15:28 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-03 23:28 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-03 23:27 - 2014-07-22 12:56 - 00000000 ____D C:\Users\User\AppData\LocalLow\Temp
2015-12-03 23:27 - 2013-11-05 11:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-12-03 23:27 - 2013-08-22 14:36 - 00000000 ____D C:\Windows
2015-12-03 23:26 - 2014-05-12 21:52 - 00000000 ____D C:\Users\User\AppData\Local\CrashDumps
2015-12-03 23:26 - 2014-05-12 13:07 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2310339651-1844684010-2764154791-1001
2015-12-03 23:25 - 2015-08-05 11:57 - 00000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics
2015-12-03 23:25 - 2014-05-09 15:18 - 00845736 _____ C:\Windows\system32\perfh015.dat
2015-12-03 23:25 - 2014-05-09 15:18 - 00182176 _____ C:\Windows\system32\perfc015.dat
2015-12-03 23:25 - 2013-11-05 10:53 - 01933330 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-03 23:25 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf
2015-12-03 23:20 - 2014-05-12 22:50 - 00000000 ____D C:\Users\User\Documents\Pliki programu Outlook
2015-12-03 23:01 - 2014-05-12 13:09 - 00003976 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E7DA6594-7B5A-4884-A9CA-0D497D6B551A}
2015-12-03 22:48 - 2013-11-26 15:28 - 00001072 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-03 21:53 - 2014-05-19 11:57 - 00001496 _____ C:\Users\User\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs
2015-12-03 21:05 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-12-03 20:52 - 2014-05-12 11:50 - 00000000 ____D C:\Users\User\AppData\Roaming\Skype
2015-12-03 18:01 - 2014-05-12 12:02 - 00000000 ____D C:\Users\User\AppData\Roaming\Kadu
2015-12-03 17:06 - 2014-05-09 15:28 - 00000000 ____D C:\Users\User\AppData\Local\Packages
2015-12-03 05:40 - 2014-05-13 04:15 - 00001497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2015-12-03 05:40 - 2014-05-13 04:09 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2015-12-03 05:40 - 2014-05-13 04:09 - 00002241 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2015-12-03 05:40 - 2014-05-13 04:09 - 00002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2015-12-03 05:39 - 2014-09-10 19:59 - 00001236 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2015-12-03 05:39 - 2014-09-10 19:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-12-03 05:39 - 2014-05-12 12:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-03 05:29 - 2015-09-15 19:34 - 00003858 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1442342054
2015-12-03 05:29 - 2015-09-15 19:34 - 00001162 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-12-03 05:29 - 2014-05-12 12:09 - 00000000 ____D C:\Program Files (x86)\Opera
2015-12-03 05:28 - 2014-05-12 11:50 - 00000000 ____D C:\ProgramData\Skype
2015-12-03 05:27 - 2014-08-20 14:35 - 00000000 ____D C:\Users\User\AppData\Local\Adobe
2015-12-03 04:43 - 2014-08-19 23:27 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-12-03 03:52 - 2014-05-09 15:31 - 00000000 ____D C:\Users\User\AppData\Local\Google
2015-12-03 03:52 - 2013-11-26 15:28 - 00000000 ____D C:\Program Files (x86)\Google
2015-12-02 22:33 - 2015-07-06 17:59 - 00018350 _____ C:\Users\User\Desktop\kosztorys lipiec 2015.xlsx
2015-12-01 17:04 - 2015-08-18 21:57 - 00033792 ___SH C:\Users\User\Thumbs.db
2015-11-30 12:37 - 2013-08-22 15:44 - 05317360 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-27 14:32 - 2014-05-12 12:45 - 00001843 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2015-11-27 12:04 - 2014-05-12 18:41 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-11-26 15:15 - 2015-10-15 09:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-11-26 15:14 - 2015-10-15 09:44 - 00000000 ____D C:\Program Files\Java
2015-11-26 01:52 - 2015-09-14 13:18 - 00000000 ____D C:\Program Files (x86)\Firefox Developer Edition
2015-11-25 15:02 - 2014-05-12 20:23 - 00000000 ____D C:\Users\User\AppData\Local\Downloaded Installations
2015-11-25 13:56 - 2015-08-21 19:22 - 00000000 ____D C:\Users\User\.VirtualBox
2015-11-24 15:05 - 2014-05-12 13:13 - 00000000 ____D C:\ProgramData\Oracle
2015-11-24 14:15 - 2015-10-15 09:44 - 00000000 ____D C:\Users\User\.oracle_jre_usage
2015-11-23 14:41 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\NDF
2015-11-22 20:24 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2015-11-20 21:07 - 2013-11-05 11:31 - 00000000 ____D C:\Program Files (x86)\Toshiba
2015-11-20 21:07 - 2013-11-05 11:30 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-11-20 20:52 - 2015-10-19 21:54 - 00004536 _____ C:\Users\User\AppData\Roaming\CamStudio.cfg
2015-11-20 20:52 - 2015-10-19 21:54 - 00000408 _____ C:\Users\User\AppData\Roaming\CamShapes.ini
2015-11-20 20:52 - 2015-10-19 21:54 - 00000408 _____ C:\Users\User\AppData\Roaming\CamLayout.ini
2015-11-20 20:52 - 2015-10-19 21:54 - 00000096 _____ C:\Users\User\AppData\Roaming\Camdata.ini
2015-11-20 20:51 - 2015-10-19 20:48 - 00000096 _____ C:\Users\User\AppData\Roaming\version2.xml
2015-11-19 04:02 - 2014-05-12 10:16 - 00000000 ____D C:\Windows\system32\MRT
2015-11-19 03:57 - 2014-05-12 10:15 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-18 16:37 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2015-11-16 18:32 - 2015-09-07 12:42 - 00000000 ____D C:\Users\User\Desktop\+KURSY
2015-11-13 12:15 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache
2015-11-13 02:25 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData
2015-11-12 01:43 - 2014-05-12 22:45 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-11-12 01:43 - 2014-05-12 22:40 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-12 01:43 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2015-11-12 01:33 - 2013-08-22 14:25 - 00000167 _____ C:\Windows\win.ini
2015-11-07 12:46 - 2015-09-12 10:58 - 00000000 ____D C:\Users\User\Documents\Visual Studio 2013
2015-11-05 12:54 - 2015-02-23 13:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Active@ UNDELETE Professional
2015-11-04 23:40 - 2015-05-03 14:40 - 00000000 ____D C:\Windows\LOG
2015-11-03 01:23 - 2014-05-14 12:21 - 00810488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-03 01:23 - 2014-05-14 12:21 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

==================== Pliki w katalogu głównym wybranych folderów =======

2015-10-19 21:54 - 2015-11-20 20:52 - 0000096 _____ () C:\Users\User\AppData\Roaming\Camdata.ini
2015-10-19 21:54 - 2015-11-20 20:52 - 0000408 _____ () C:\Users\User\AppData\Roaming\CamLayout.ini
2015-10-19 21:54 - 2015-11-20 20:52 - 0000408 _____ () C:\Users\User\AppData\Roaming\CamShapes.ini
2015-10-19 21:54 - 2015-11-20 20:52 - 0004536 _____ () C:\Users\User\AppData\Roaming\CamStudio.cfg
2014-08-27 04:14 - 2014-12-21 15:43 - 0000132 _____ () C:\Users\User\AppData\Roaming\Preferencje CC formatu PNG firmy Adobe
2015-10-19 20:48 - 2015-11-20 20:51 - 0000096 _____ () C:\Users\User\AppData\Roaming\version2.xml
2014-05-19 11:57 - 2015-12-03 21:53 - 0001496 _____ () C:\Users\User\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs
2014-12-08 19:46 - 2015-06-29 19:17 - 0004608 _____ () C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-10-03 23:34 - 2015-10-03 23:49 - 0000600 _____ () C:\Users\User\AppData\Local\PUTTY.RND

==================== Bamital & volsnap =================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
C:\Windows\explorer.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\Windows\system32\services.exe => Plik podpisany cyfrowo
C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo


LastRegBack: 2015-12-03 05:51

==================== Koniec  FRST.txt ============================