Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:12-12-2015 01 Uruchomiony przez Karol (administrator) ITALMEXAN (13-12-2015 16:12:35) Uruchomiony z C:\Users\Karol\Downloads Załadowane profile: Karol (Dostępne profile: Karol) Platform: Windows 8 (X64) Język: Polski (Polska) Internet Explorer Wersja 10 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (AMD) C:\WINDOWS\System32\atiesrxx.exe (AMD) C:\WINDOWS\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Conexant Systems Inc.) C:\WINDOWS\System32\CxAudMsg64.exe () C:\WINDOWS\SysWOW64\spdsvc.exe () C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe (Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe () C:\Program Files\Sybase\Shared\Sybase Central 4.3\win32\scjview.exe (Microsoft Corporation) C:\WINDOWS\System32\StikyNot.exe (Nico Mak Computing) C:\Program Files\WinZip\FAH\FAHWindow64.exe (CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (WinZip Computing, S.L.) C:\Program Files\WinZip\WzPreloader.exe (Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe (Dropbox, Inc.) C:\Users\Karol\AppData\Roaming\Dropbox\bin\Dropbox.exe (CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (Intel Corporation) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-09-29] () HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [887968 2012-06-14] (Conexant Systems, Inc.) HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079376 2013-03-18] (Lenovo (Beijing) Limited) HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2013-03-18] (Lenovo(beijing) Limited) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-01-18] (IvoSoft) HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-07-25] (Dolby Laboratories Inc.) HKLM-x32\...\Run: [YouCam Mirage] => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink) HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.) HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.) HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.) HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6133520 2015-11-09] (AVAST Software) HKU\S-1-5-21-1826867425-3326814921-3507148508-1002\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [455392 2015-04-10] (Sony) HKU\S-1-5-21-1826867425-3326814921-3507148508-1002\...\Run: [SybaseCentral43] => C:\Program Files\Sybase\Shared\Sybase Central 4.3\win32\scjview.exe [136496 2009-12-18] () HKU\S-1-5-21-1826867425-3326814921-3507148508-1002\...\Run: [Dropbox Update] => C:\Users\Karol\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-17] (Dropbox, Inc.) HKU\S-1-5-21-1826867425-3326814921-3507148508-1002\...\Run: [RESTART_STICKY_NOTES] => C:\WINDOWS\System32\StikyNot.exe [405504 2012-07-26] (Microsoft Corporation) HKU\S-1-5-21-1826867425-3326814921-3507148508-1002\...\MountPoints2: {ee2f5312-a9dc-11e3-bea3-20898448e7c4} - "F:\Startme.exe" HKU\S-1-5-21-1826867425-3326814921-3507148508-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [11264 2012-07-26] (Microsoft Corporation) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-26] (AVAST Software) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karol\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karol\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karol\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karol\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18] (IvoSoft) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Karol\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18] (IvoSoft) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FAH.lnk [2015-10-09] ShortcutTarget: FAH.lnk -> C:\Program Files\WinZip\FAH\FAHConsole.exe (Nico Mak Computing) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2015-10-09] ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (WinZip Computing, S.L.) Startup: C:\Users\Karol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-12-11] ShortcutTarget: Dropbox.lnk -> C:\Users\Karol\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 62.179.1.63 62.179.1.62 Tcpip\..\Interfaces\{15A025BB-5241-4587-AF27-29DEC0F07ABB}: [DhcpNameServer] 10.0.1.1 Tcpip\..\Interfaces\{77313CBC-5872-4325-B133-F4BFC2DB1881}: [DhcpNameServer] 62.179.1.63 62.179.1.62 Internet Explorer: ================== HKU\S-1-5-21-1826867425-3326814921-3507148508-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://gazeta.pl/ BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-10-13] (Microsoft Corporation) BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18] (IvoSoft) BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-09-29] (Qualcomm Atheros Commnucations) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-26] (AVAST Software) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation) BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-01-18] (IvoSoft) BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18] (IvoSoft) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-20] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-26] (AVAST Software) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-20] (Oracle Corporation) BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-01-18] (IvoSoft) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-01-18] (IvoSoft) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-01-18] (IvoSoft) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Karol\AppData\Roaming\Mozilla\Firefox\Profiles\l99yzufx.default-1450018357388 FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-09] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-09] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-20] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-20] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-03-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH) FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-11] Chrome: ======= CHR HomePage: Default -> hxxp://gazeta.pl/ CHR StartupUrls: Default -> "hxxp://www.gazeta.pl/0,0.html","hxxp://fm.tuba.pl/player?id=8&type=2&artistnew&channel=4.66&appId=1000000000000002" CHR Profile: C:\Users\Karol\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Prezentacje Google) - C:\Users\Karol\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-30] CHR Extension: (Dokumenty Google) - C:\Users\Karol\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-30] CHR Extension: (Dysk Google) - C:\Users\Karol\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-30] CHR Extension: (YouTube) - C:\Users\Karol\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-30] CHR Extension: (Google Search) - C:\Users\Karol\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-30] CHR Extension: (Arkusze Google) - C:\Users\Karol\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-30] CHR Extension: (Dokumenty Google offline) - C:\Users\Karol\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18] CHR Extension: (Avast Online Security) - C:\Users\Karol\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-03] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Karol\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-30] CHR Extension: (Gmail) - C:\Users\Karol\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-30] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-03-21] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-21] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12] ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [220288 2012-09-29] (Qualcomm Atheros Commnucations) [Brak podpisu cyfrowego] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-26] (AVAST Software) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2797752 2015-10-13] (Microsoft Corporation) R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2014-04-28] (Hewlett-Packard) [Brak podpisu cyfrowego] S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH) S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH) R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2014-04-28] (Hewlett-Packard) [Brak podpisu cyfrowego] R2 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\\spdsvc.exe [491328 2015-12-05] () R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [118576 2014-11-26] () S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [Brak podpisu cyfrowego] S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2015-07-06] (Microsoft Corporation) R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-09-29] (Atheros) [Brak podpisu cyfrowego] ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-26] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-26] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-26] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-26] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-09] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-09] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-09-26] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-26] (AVAST Software) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2012-07-17] (Advanced Micro Devices) R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-09-29] (Qualcomm Atheros) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3265256 2012-09-20] (Broadcom Corporation) R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8229264 2012-09-28] (Realtek Semiconductor Corp.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-06] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [281944 2015-07-06] (Microsoft Corporation) S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink) R3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [198656 2012-07-26] (Microsoft Corporation) S2 SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys [X] U3 awlcypod; \??\C:\Users\Karol\AppData\Local\Temp\awlcypod.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-12-13 14:34 - 2015-12-13 16:12 - 00021571 _____ C:\Users\Karol\Downloads\FRST.txt 2015-12-13 14:34 - 2015-12-13 14:37 - 00021864 _____ C:\Users\Karol\Downloads\Fixlog.txt 2015-12-13 14:34 - 2015-12-10 13:53 - 01290784 _____ C:\Users\Karol\Downloads\gmer.txt 2015-12-13 14:34 - 2015-12-10 13:28 - 00051484 _____ C:\Users\Karol\Downloads\Shortcut.txt 2015-12-13 14:34 - 2015-12-10 13:28 - 00043693 _____ C:\Users\Karol\Downloads\Addition.txt 2015-12-13 14:33 - 2015-12-13 14:33 - 00000000 ____D C:\Users\Karol\Downloads\FRST-OlderVersion 2015-12-13 14:33 - 2015-12-13 14:33 - 00000000 ____D C:\MATS 2015-12-13 14:17 - 2015-12-13 14:17 - 00347816 _____ (Microsoft Corporation) C:\Users\Karol\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.Run.exe 2015-12-13 13:45 - 2015-12-13 13:45 - 00002280 _____ C:\Users\Public\Desktop\Diagnostyka drukarki Samsung.lnk 2015-12-13 13:45 - 2015-12-05 12:02 - 00491328 ____N C:\WINDOWS\SysWOW64\spdsvc.exe 2015-12-13 13:45 - 2015-12-04 10:03 - 00017831 ____N C:\WINDOWS\SysWOW64\spddata.xml 2015-12-13 13:45 - 2015-10-14 00:15 - 02073600 ____N C:\WINDOWS\SysWOW64\DlgSearchEngine.dll 2015-12-13 13:45 - 2014-09-18 07:10 - 00094208 ____N C:\WINDOWS\SysWOW64\ssdevm.dll 2015-12-13 13:45 - 2014-09-18 07:08 - 00087552 ____N C:\WINDOWS\system32\ssdevm64.dll 2015-12-13 13:44 - 2015-12-13 13:45 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers 2015-12-13 13:44 - 2015-12-13 13:44 - 00000000 ____D C:\ProgramData\Samsung 2015-12-13 13:44 - 2014-11-26 12:07 - 00118576 _____ C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe 2015-12-13 13:43 - 2015-12-13 13:44 - 00000000 ____D C:\Program Files (x86)\Samsung 2015-12-13 13:43 - 2014-12-26 05:56 - 00000357 _____ C:\WINDOWS\system32\usp02l.smt 2015-12-13 13:43 - 2014-05-22 14:22 - 02738496 ____N C:\WINDOWS\TotalUninstaller.exe 2015-12-13 13:43 - 2014-04-16 09:22 - 00029184 _____ () C:\WINDOWS\system32\usp02l.dll 2015-12-13 13:43 - 2013-05-10 10:48 - 00162136 _____ C:\WINDOWS\system32\usp02ci.exe 2015-12-13 13:43 - 2010-10-20 09:46 - 00089600 _____ (SS) C:\WINDOWS\system32\usp02ci.dll 2015-12-13 13:40 - 2015-12-13 13:40 - 03391808 _____ C:\Users\Karol\Downloads\SamsungPrinterInstaller.exe 2015-12-11 11:23 - 2015-12-11 11:23 - 00000000 ____D C:\Users\Karol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-12-11 10:32 - 2015-12-11 10:32 - 01738240 _____ C:\Users\Karol\Downloads\adwcleaner_5.024 (1).exe 2015-12-11 10:11 - 2015-12-11 10:11 - 534618585 _____ C:\WINDOWS\MEMORY.DMP 2015-12-11 10:11 - 2015-12-11 10:11 - 00291632 _____ C:\WINDOWS\Minidump\121115-36816-01.dmp 2015-12-11 10:11 - 2015-12-11 10:11 - 00000000 ____D C:\WINDOWS\Minidump 2015-12-11 09:44 - 2015-12-11 10:04 - 00000000 ____D C:\AdwCleaner 2015-12-11 09:37 - 2015-12-11 09:38 - 01738240 _____ C:\Users\Karol\Downloads\adwcleaner_5.024.exe 2015-12-10 15:14 - 2015-12-10 15:14 - 00071977 _____ C:\Users\Karol\Downloads\label (7).pdf 2015-12-10 15:14 - 2015-12-10 15:14 - 00061100 _____ C:\Users\Karol\Downloads\protocol (4).pdf 2015-12-10 13:53 - 2015-12-13 14:31 - 00000000 ____D C:\Users\Karol\Desktop\123 2015-12-10 13:21 - 2015-12-13 16:12 - 00000000 ____D C:\FRST 2015-12-10 13:16 - 2015-12-10 13:16 - 00380416 _____ C:\Users\Karol\Downloads\uvvrvjk5.exe 2015-12-10 13:15 - 2015-12-13 14:33 - 02369536 _____ (Farbar) C:\Users\Karol\Downloads\FRST64.exe 2015-12-10 12:15 - 2015-12-10 12:15 - 00000000 ____D C:\Users\Karol\AppData\Local\CEF 2015-12-10 12:04 - 2015-12-10 12:04 - 00061594 _____ C:\Users\Karol\Downloads\protocol (3).pdf 2015-12-10 12:02 - 2015-12-10 12:02 - 00073013 _____ C:\Users\Karol\Downloads\label (6).pdf 2015-12-10 11:16 - 2015-12-10 11:16 - 00061400 _____ C:\Users\Karol\Downloads\protocol (2).pdf 2015-12-10 11:14 - 2015-12-10 11:15 - 00072176 _____ C:\Users\Karol\Downloads\label (5).pdf 2015-12-10 10:00 - 2015-12-10 10:00 - 00000000 ____D C:\Users\Karol\AppData\Local\Apps\2.0 2015-12-10 09:28 - 2015-12-10 09:28 - 00434920 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-12-10 09:06 - 2015-12-13 13:25 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2015-12-10 09:06 - 2015-12-10 09:06 - 00002058 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2015-12-10 08:43 - 2015-12-01 02:11 - 00826336 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-12-10 08:43 - 2015-12-01 02:11 - 00176096 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-12-09 12:05 - 2015-12-09 12:05 - 00057260 _____ C:\Users\Karol\Downloads\PocztaFirmowa_20151209120534.pdf 2015-12-09 12:04 - 2015-12-09 12:05 - 00078255 _____ C:\Users\Karol\Downloads\ZestawienieIlosciowePrzesylek_20151209120456.pdf 2015-12-09 11:05 - 2015-11-16 17:17 - 06970712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-12-09 11:05 - 2015-11-16 17:10 - 01821192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2015-12-09 11:05 - 2015-11-16 15:55 - 01410000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2015-12-09 11:05 - 2015-11-16 15:42 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2015-12-09 11:05 - 2015-11-16 15:29 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll 2015-12-09 11:05 - 2015-11-16 15:29 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2015-12-09 11:05 - 2015-11-16 15:29 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2015-12-09 11:05 - 2015-11-16 15:29 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll 2015-12-09 11:05 - 2015-11-16 15:29 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll 2015-12-09 11:05 - 2015-11-16 15:28 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll 2015-12-09 11:05 - 2015-11-16 15:28 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2015-12-09 11:05 - 2015-11-16 15:28 - 00384512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll 2015-12-09 11:05 - 2015-11-16 15:28 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll 2015-12-09 11:05 - 2015-11-16 15:27 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-12-09 11:05 - 2015-11-16 15:26 - 01637376 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll 2015-12-09 11:05 - 2015-11-16 15:26 - 01282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-12-09 11:05 - 2015-11-16 15:26 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll 2015-12-09 11:05 - 2015-11-16 15:26 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2015-12-09 11:05 - 2015-11-16 15:26 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2015-12-09 11:05 - 2015-11-16 15:26 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll 2015-12-09 11:05 - 2015-11-16 15:26 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll 2015-12-09 11:05 - 2015-11-16 15:26 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2015-12-09 11:05 - 2015-11-16 15:26 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll 2015-12-09 11:05 - 2015-11-16 15:26 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll 2015-12-09 11:05 - 2015-11-16 15:26 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll 2015-12-09 11:05 - 2015-11-16 15:26 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll 2015-12-09 10:49 - 2015-10-24 06:28 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll 2015-12-09 10:49 - 2015-10-24 06:24 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll 2015-12-09 10:49 - 2015-10-22 20:01 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll 2015-12-09 10:49 - 2015-10-22 20:01 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL 2015-12-09 10:49 - 2015-10-22 20:01 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL 2015-12-09 10:49 - 2015-10-22 20:01 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll 2015-12-09 10:49 - 2015-10-22 20:00 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL 2015-12-09 10:49 - 2015-10-22 20:00 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL 2015-12-09 10:49 - 2015-10-22 14:43 - 00478280 _____ C:\WINDOWS\SysWOW64\locale.nls 2015-12-09 10:49 - 2015-10-22 14:42 - 00478280 _____ C:\WINDOWS\system32\locale.nls 2015-12-09 10:48 - 2015-11-07 13:45 - 19349504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-12-09 10:48 - 2015-11-07 10:33 - 14269440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-12-09 10:47 - 2015-11-07 13:46 - 02238976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-12-09 10:47 - 2015-11-07 13:46 - 01408512 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-12-09 10:47 - 2015-11-07 13:46 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll 2015-12-09 10:47 - 2015-11-07 13:46 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-12-09 10:47 - 2015-11-07 13:46 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll 2015-12-09 10:47 - 2015-11-07 13:45 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-12-09 10:47 - 2015-11-07 13:45 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2015-12-09 10:47 - 2015-11-07 13:44 - 15423488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-12-09 10:47 - 2015-11-07 13:44 - 03806208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-12-09 10:47 - 2015-11-07 13:44 - 02657280 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-12-09 10:47 - 2015-11-07 13:44 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2015-12-09 10:47 - 2015-11-07 13:44 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2015-12-09 10:47 - 2015-11-07 13:44 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-12-09 10:47 - 2015-11-07 13:44 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2015-12-09 10:47 - 2015-11-07 13:44 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2015-12-09 10:47 - 2015-11-07 10:34 - 01763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-12-09 10:47 - 2015-11-07 10:34 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-12-09 10:47 - 2015-11-07 10:34 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-12-09 10:47 - 2015-11-07 10:34 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll 2015-12-09 10:47 - 2015-11-07 10:33 - 13723136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-12-09 10:47 - 2015-11-07 10:33 - 02793984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-12-09 10:47 - 2015-11-07 10:33 - 02057216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-12-09 10:47 - 2015-11-07 10:33 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2015-12-09 10:47 - 2015-11-07 10:33 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-12-09 10:47 - 2015-11-07 10:33 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-12-09 10:47 - 2015-11-07 10:33 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-12-09 10:47 - 2015-11-07 10:33 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2015-12-09 10:47 - 2015-11-07 10:33 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2015-12-09 10:47 - 2015-11-07 06:29 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll 2015-12-09 10:44 - 2015-10-31 09:14 - 02038784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2015-12-09 10:44 - 2015-10-31 08:33 - 02308096 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2015-12-09 10:35 - 2015-11-05 10:55 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys 2015-12-09 10:32 - 2015-12-09 10:32 - 00061964 _____ C:\Users\Karol\Downloads\protocol (1).pdf 2015-12-09 10:32 - 2015-11-07 13:46 - 01341952 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2015-12-09 10:32 - 2015-11-07 13:44 - 01840640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2015-12-09 10:32 - 2015-11-07 13:44 - 01280000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2015-12-09 10:32 - 2015-11-07 10:32 - 01412608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2015-12-09 10:32 - 2015-11-07 08:52 - 04063232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-12-09 10:32 - 2015-11-07 06:53 - 01126912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2015-12-09 10:32 - 2015-11-07 06:52 - 01680384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2015-12-09 10:32 - 2015-11-07 06:46 - 01426944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2015-12-09 10:31 - 2015-12-09 10:31 - 00073708 _____ C:\Users\Karol\Downloads\label (4).pdf 2015-12-09 10:30 - 2015-12-09 10:30 - 00072910 _____ C:\Users\Karol\Downloads\label (3).pdf 2015-12-09 10:29 - 2015-12-09 10:29 - 00080924 _____ C:\Users\Karol\Downloads\label (2).pdf 2015-12-08 11:05 - 2015-12-11 12:41 - 00063978 _____ C:\Users\Karol\Desktop\NOWY CENNIK IDELIKATESY.xlsx 2015-12-07 15:03 - 2015-12-07 15:03 - 00033614 _____ C:\Users\Karol\Downloads\img317.pdf 2015-12-07 11:25 - 2015-12-07 11:25 - 00061507 _____ C:\Users\Karol\Downloads\protocol.pdf 2015-12-07 11:24 - 2015-12-07 11:24 - 00070870 _____ C:\Users\Karol\Downloads\label (1).pdf 2015-12-07 09:57 - 2015-12-07 09:57 - 00070771 _____ C:\Users\Karol\Downloads\label.pdf 2015-12-04 10:22 - 2015-12-04 10:22 - 00035990 _____ C:\Users\Karol\Downloads\1Z06525R6897207815.pdf 2015-12-04 08:54 - 2015-12-04 08:54 - 00124993 _____ C:\Users\Karol\Downloads\Polski_Koncern_Naftowy_ORLEN_Spółka_Akcyjna_0462374248.pdf 2015-12-04 08:39 - 2015-12-04 08:39 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software 2015-12-04 08:39 - 2015-12-04 08:39 - 00000000 ____D C:\Program Files\Common Files\AV 2015-12-02 16:19 - 2015-12-02 16:19 - 00058832 _____ C:\Users\Karol\Downloads\195820868014-1.pdf 2015-12-02 13:16 - 2015-12-02 13:16 - 00023040 _____ C:\Users\Karol\Downloads\limity-70891809-001.xls 2015-12-02 13:14 - 2015-12-02 13:14 - 00066185 _____ C:\Users\Karol\Downloads\faktura (1).pdf 2015-12-02 11:43 - 2015-12-02 11:43 - 00074133 _____ C:\Users\Karol\Downloads\KsiazkaNadawcza_20151202114301.pdf 2015-12-02 11:42 - 2015-12-02 11:42 - 00075149 _____ C:\Users\Karol\Downloads\ZestawienieIlosciowePrzesylek_20151202114203.pdf 2015-12-01 15:59 - 2015-12-01 15:59 - 00375950 _____ C:\Users\Karol\Downloads\3048607_100011751141.pdf 2015-12-01 14:45 - 2015-12-01 14:45 - 00058712 _____ C:\Users\Karol\Downloads\1897762.pdf 2015-12-01 12:25 - 2015-12-01 12:25 - 00058921 _____ C:\Users\Karol\Downloads\1896978.pdf 2015-12-01 12:25 - 2015-12-01 12:25 - 00041747 _____ C:\Users\Karol\Downloads\20151201122532779.pdf 2015-12-01 09:26 - 2015-12-01 09:26 - 00497642 _____ C:\Users\Karol\Downloads\207926576-204154105.pdf 2015-11-27 15:33 - 2015-11-27 15:33 - 00202561 _____ C:\Users\Karol\Downloads\PRO_973697_2015.pdf 2015-11-25 15:01 - 2015-11-25 15:01 - 00058713 _____ C:\Users\Karol\Downloads\1884743.pdf 2015-11-25 11:24 - 2015-11-25 11:24 - 00078185 _____ C:\Users\Karol\Downloads\KsiazkaNadawcza_20151125112450.pdf 2015-11-25 11:24 - 2015-11-25 11:24 - 00075149 _____ C:\Users\Karol\Downloads\ZestawienieIlosciowePrzesylek_20151125112412.pdf 2015-11-25 09:48 - 2015-11-25 09:48 - 00041804 _____ C:\Users\Karol\Downloads\20151125094804419.pdf 2015-11-25 09:47 - 2015-11-25 09:47 - 00059016 _____ C:\Users\Karol\Downloads\1882533.pdf 2015-11-24 12:58 - 2015-11-24 12:58 - 00035732 _____ C:\Users\Karol\Downloads\1Z06525R6894545161.pdf 2015-11-23 11:31 - 2015-11-23 11:31 - 00041668 _____ C:\Users\Karol\Downloads\20151123113115836.pdf 2015-11-23 11:30 - 2015-11-23 11:30 - 00058749 _____ C:\Users\Karol\Downloads\1876707.pdf 2015-11-22 18:48 - 2015-11-22 18:48 - 00191488 _____ C:\Users\Karol\Downloads\_Thumbs.db 2015-11-20 15:11 - 2015-11-20 15:11 - 00124053 _____ C:\Users\Karol\Downloads\Polski_Koncern_Naftowy_ORLEN_Spółka_Akcyjna_0462339910.pdf 2015-11-20 11:49 - 2015-11-20 11:49 - 00041736 _____ C:\Users\Karol\Downloads\20151120114910602.pdf 2015-11-20 11:48 - 2015-11-20 11:48 - 00058916 _____ C:\Users\Karol\Downloads\1873782.pdf 2015-11-19 12:58 - 2015-11-19 12:58 - 00058867 _____ C:\Users\Karol\Downloads\1871364.pdf 2015-11-19 10:41 - 2015-11-19 10:41 - 00041633 _____ C:\Users\Karol\Downloads\20151119104100826.pdf 2015-11-19 10:40 - 2015-11-19 10:40 - 00058736 _____ C:\Users\Karol\Downloads\1870145.pdf 2015-11-19 08:42 - 2015-11-19 08:42 - 00115655 _____ C:\Users\Karol\Downloads\Polski_Koncern_Naftowy_ORLEN_Spółka_Akcyjna_0462356552.pdf 2015-11-18 13:14 - 2015-11-18 13:14 - 00041747 _____ C:\Users\Karol\Downloads\20151118011408831.pdf 2015-11-18 13:13 - 2015-11-18 13:13 - 00058935 _____ C:\Users\Karol\Downloads\1868101.pdf 2015-11-18 13:02 - 2015-11-18 13:02 - 00046368 _____ C:\Users\Karol\Downloads\dpd-Potwierdzenie realizacji transakcji.pdf 2015-11-18 12:23 - 2015-11-18 12:23 - 00075146 _____ C:\Users\Karol\Downloads\ZestawienieIlosciowePrzesylek_20151118122309.pdf 2015-11-18 12:23 - 2015-11-18 12:23 - 00074947 _____ C:\Users\Karol\Downloads\KsiazkaNadawcza_20151118122348.pdf 2015-11-18 12:22 - 2015-11-18 12:22 - 00032752 _____ C:\Users\Karol\Downloads\ZestawienieIlosciowePrzesylek_20151118122240.pdf 2015-11-17 12:32 - 2015-11-17 12:33 - 00004608 _____ C:\Users\Karol\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-11-17 11:46 - 2015-11-17 11:46 - 01297772 _____ C:\Users\Karol\Desktop\oleje ryzowe Italmex Mira.pdf 2015-11-17 11:37 - 2015-11-17 11:37 - 00058720 _____ C:\Users\Karol\Downloads\1864141.pdf 2015-11-17 11:37 - 2015-11-17 11:37 - 00041636 _____ C:\Users\Karol\Downloads\20151117113723342.pdf 2015-11-17 09:35 - 2015-11-17 09:35 - 00000165 ____H C:\Users\Karol\Desktop\~$Kopia ZAMÓWIENIE ITALMEX (002).xlsx 2015-11-16 14:46 - 2015-11-16 14:46 - 08223627 _____ C:\Users\Karol\Desktop\iDelikatesy A5 druk.pdf 2015-11-16 12:34 - 2015-11-16 12:34 - 00059012 _____ C:\Users\Karol\Downloads\1861058.pdf 2015-11-16 11:57 - 2015-11-16 11:57 - 00058751 _____ C:\Users\Karol\Downloads\1860829.pdf 2015-11-16 11:42 - 2015-11-16 11:42 - 00058880 _____ C:\Users\Karol\Downloads\1860618.pdf 2015-11-16 10:14 - 2015-11-16 10:14 - 00041710 _____ C:\Users\Karol\Downloads\20151116101432063.pdf 2015-11-16 10:14 - 2015-11-16 10:14 - 00017347 _____ C:\Users\Karol\Downloads\20151116101416402.pdf 2015-11-13 15:02 - 2015-11-16 10:08 - 00049256 _____ C:\Users\Karol\Desktop\Kopia ZAMÓWIENIE ITALMEX (002).xlsx 2015-11-13 13:45 - 2015-11-13 13:45 - 00075052 _____ C:\Users\Karol\Downloads\20151113014537747.pdf 2015-11-13 11:58 - 2015-11-13 11:58 - 00058961 _____ C:\Users\Karol\Downloads\20151113115810971.pdf 2015-11-13 11:57 - 2015-11-13 11:57 - 00041760 _____ C:\Users\Karol\Downloads\20151113115722826.pdf 2015-11-13 10:46 - 2015-11-13 10:46 - 00144896 _____ C:\Users\Karol\Downloads\price_list (1).xls 2015-11-13 10:20 - 2015-11-13 10:20 - 00144896 _____ C:\Users\Karol\Downloads\price_list.xls 2015-11-13 09:13 - 2015-11-13 09:13 - 00042285 _____ C:\Users\Karol\Desktop\Kopia zamówienie Italmex final.xlsx ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-12-13 16:12 - 2014-03-10 15:38 - 00000000 ____D C:\Users\Karol\AppData\Roaming\ClassicShell 2015-12-13 15:57 - 2015-06-17 14:47 - 00001182 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1826867425-3326814921-3507148508-1002UA.job 2015-12-13 15:51 - 2014-05-07 08:16 - 00001076 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-12-13 15:50 - 2013-07-16 13:59 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-12-13 15:33 - 2013-07-19 08:39 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1826867425-3326814921-3507148508-1002 2015-12-13 15:10 - 2014-07-01 11:15 - 00000000 ___RD C:\Users\Karol\Dropbox 2015-12-13 15:10 - 2014-07-01 11:03 - 00000000 ____D C:\Users\Karol\AppData\Roaming\Dropbox 2015-12-13 15:08 - 2013-07-24 12:07 - 00940032 ___SH C:\Users\Karol\Desktop\Thumbs.db 2015-12-13 15:00 - 2015-06-02 07:52 - 00000008 __RSH C:\ProgramData\ntuser.pol 2015-12-13 15:00 - 2012-07-26 08:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-12-13 15:00 - 2012-07-26 06:37 - 00000000 ____D C:\WINDOWS\Inf 2015-12-13 14:59 - 2012-07-26 06:26 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2015-12-13 14:45 - 2012-07-26 08:28 - 00019456 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-12-13 14:35 - 2014-07-07 19:54 - 00000000 ____D C:\Users\Karol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-12-13 14:35 - 2014-05-07 08:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-12-13 14:35 - 2013-07-16 13:52 - 00001076 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-12-13 14:35 - 2013-07-16 13:33 - 00001179 _____ C:\Users\Karol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-12-13 14:35 - 2013-03-18 11:50 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo 2015-12-13 14:35 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy 2015-12-13 14:33 - 2014-11-17 13:04 - 00000000 ____D C:\Users\Karol\AppData\Local\ElevatedDiagnostics 2015-12-13 14:33 - 2013-03-18 11:37 - 00000000 ____D C:\Program Files (x86)\Lenovo 2015-12-13 14:18 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-12-13 13:43 - 2012-07-26 06:37 - 00000000 ____D C:\WINDOWS 2015-12-13 13:28 - 2014-06-27 13:44 - 00000000 ____D C:\Users\Karol\Documents\Wiolka 2015-12-11 16:25 - 2014-06-23 10:06 - 00000000 ____D C:\Users\Karol\Documents\Pliki programu Outlook 2015-12-11 10:04 - 2013-03-18 11:51 - 00000000 ____D C:\Program Files (x86)\Amazon 2015-12-11 09:57 - 2015-06-17 14:47 - 00001130 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1826867425-3326814921-3507148508-1002Core.job 2015-12-11 08:38 - 2013-07-28 12:21 - 00000000 ____D C:\Users\Karol\AppData\Local\CrashDumps 2015-12-10 12:48 - 2013-07-16 13:31 - 00000000 ____D C:\Users\Karol\AppData\Local\Packages 2015-12-10 12:15 - 2013-07-16 13:41 - 00000000 ____D C:\Users\Karol\AppData\Local\Adobe 2015-12-10 09:07 - 2014-12-28 17:42 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2015-12-10 09:05 - 2013-03-18 11:50 - 00000000 ____D C:\Program Files (x86)\Adobe 2015-12-10 09:04 - 2013-03-18 11:50 - 00000000 ____D C:\ProgramData\Adobe 2015-12-10 08:39 - 2013-07-24 07:31 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2015-12-10 08:39 - 2013-07-24 07:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2015-12-09 16:25 - 2012-07-26 09:12 - 00000000 ___RD C:\WINDOWS\ToastData 2015-12-09 11:45 - 2013-07-24 07:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-12-09 11:40 - 2013-08-14 08:58 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-12-09 11:25 - 2013-07-19 11:10 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-12-09 09:50 - 2013-07-16 13:59 - 00003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2015-12-08 14:15 - 2014-07-07 13:47 - 00000000 ____D C:\Users\Karol\Desktop\karta produktu 2015-12-08 13:28 - 2014-08-25 10:40 - 00000000 ____D C:\Users\Karol\AppData\Roaming\Skype 2015-12-04 08:46 - 2014-05-07 08:16 - 00004048 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-12-04 08:46 - 2014-05-07 08:16 - 00003812 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-12-04 08:46 - 2014-05-07 08:16 - 00001072 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-12-01 08:46 - 2012-07-26 09:12 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2015-12-01 08:44 - 2014-03-24 12:11 - 00000000 ____D C:\Program Files\Microsoft Office 15 2015-11-30 09:57 - 2015-01-02 09:47 - 00000028 _____ C:\Users\Karol\Desktop\numer licencji.txt 2015-11-24 14:13 - 2014-07-25 08:21 - 00093696 ___SH C:\Users\Karol\Documents\Thumbs.db 2015-11-20 15:12 - 2014-05-20 07:30 - 00274432 ___SH C:\Users\Karol\Downloads\Thumbs.db 2015-11-17 11:09 - 2015-02-20 10:09 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2015-11-15 20:17 - 2015-11-10 16:09 - 00027894 _____ C:\Users\Karol\Desktop\stan magazynowy deli. 6-11-2015.xlsx 2015-11-13 15:36 - 2014-10-06 14:30 - 00000000 ____D C:\Users\Karol\Downloads\Fotolia 2015-11-13 12:36 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\rescache ==================== Pliki w katalogu głównym wybranych folderów ======= 2015-11-17 12:32 - 2015-11-17 12:33 - 0004608 _____ () C:\Users\Karol\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-09-25 16:01 - 2014-09-25 16:01 - 0002845 _____ () C:\Users\Karol\AppData\Local\recently-used.xbel 2013-09-25 14:09 - 2013-09-25 14:09 - 0000017 _____ () C:\Users\Karol\AppData\Local\resmon.resmoncfg 2014-06-20 12:54 - 2014-06-20 12:54 - 0000986 _____ () C:\ProgramData\.scRepository 2013-03-18 11:28 - 2013-03-18 11:28 - 0000000 ____H () C:\ProgramData\DP45977C.lfl ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2015-12-09 11:13 ==================== Koniec FRST.txt ============================