Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:10-01-2015 01 Uruchomiony przez Tomek (administrator) TOMEK-PC (14-01-2016 23:41:22) Uruchomiony z C:\Users\Tomek\Desktop Załadowane profile: UpdatusUser & Tomek (Dostępne profile: UpdatusUser & Tomek) Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 8 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe () C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\BEWConfigSrv.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (SafeNet Inc.) C:\Windows\System32\hasplms.exe () C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe (ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe (ASUS) C:\Program Files\P4G\BatteryLife.exe (Phase Five Systems) C:\Program Files (x86)\Phase Five Systems\Jump Desktop Connect\4.8.7.0\JumpConnect.exe (Phase Five Systems) C:\Program Files (x86)\Jump Desktop\JumpService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe (GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe () C:\ExpressGateUtil\VAWinService.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe (ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe (Boingo Wireless, Inc.) C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe () C:\ExpressGateUtil\VAWinAgent.exe (ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-06-10] (ELAN Microelectronic Corp.) HKLM\...\Run: [IntelWireless] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1928976 2010-03-05] (Intel(R) Corporation) HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" HKLM\...\Run: [COMODO Internet Security] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1427648 2015-08-06] (COMODO) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12480616 2012-05-24] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-05-24] (Realtek Semiconductor) HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [2179056 2014-12-24] (GlavSoft LLC.) HKLM-x32\...\Run: [Boingo Wi-Fi] => C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2429 2010-10-09] () HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) HKLM-x32\...\Run: [VAWinAgent] => C:\ExpressGateUtil\VAWinAgent.exe [21504 2010-08-13] () HKLM-x32\...\Run: [SonicMasterTray] => C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe [984400 2010-07-09] (Virage Logic Corporation / Sonic Focus) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2016-01-14] (Oracle Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-678976739-802269570-2217661800-1000\...\MountPoints2: {5e807f14-41a4-11e3-aa83-74f06db04531} - F:\AutoRun.exe HKU\S-1-5-21-678976739-802269570-2217661800-1000\...\MountPoints2: {5e807f21-41a4-11e3-aa83-74f06db04531} - F:\AutoRun.exe HKU\S-1-5-21-678976739-802269570-2217661800-1001\...\Run: [Jump Desktop] => C:\Program Files (x86)\Jump Desktop\JumpDesktop.exe [469544 2014-12-24] (Phase Five Systems) HKU\S-1-5-21-678976739-802269570-2217661800-1001\...\Run: [GoogleChromeAutoLaunch_372810264BD4A4849177548403D0A9CA] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [799560 2015-12-17] (Google Inc.) HKU\S-1-5-21-678976739-802269570-2217661800-1001\...\Run: [Jump Connect] => C:\Program Files (x86)\Phase Five Systems\Jump Desktop Connect\4.8.7.0\JumpConnect.exe [7662272 2015-10-27] (Phase Five Systems) HKU\S-1-5-21-678976739-802269570-2217661800-1001\...\MountPoints2: F - F:\Setup.exe HKU\S-1-5-21-678976739-802269570-2217661800-1001\...\MountPoints2: {5e807f14-41a4-11e3-aa83-74f06db04531} - F:\AutoRun.exe HKU\S-1-5-21-678976739-802269570-2217661800-1001\...\MountPoints2: {5e807f21-41a4-11e3-aa83-74f06db04531} - F:\AutoRun.exe HKU\S-1-5-21-678976739-802269570-2217661800-1001\...\MountPoints2: {74ccad20-1344-11e4-89b6-74f06db04531} - F:\Setup.exe HKU\S-1-5-21-678976739-802269570-2217661800-1001\...\MountPoints2: {c985b4c2-caed-11e4-b336-74f06db04531} - F:\LG_PC_Programs.exe AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [166568 2014-04-11] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2014-04-11] (NVIDIA Corporation) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll [2009-11-26] (eCareme Technologies, Inc.) ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll [2009-11-26] (eCareme Technologies, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2010-10-10] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk [2013-10-31] ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe () ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: Nie znaleziono pliku Hosts w domyślnym katalogu Tcpip\..\Interfaces\{195CF9A9-EE5C-471E-830C-147A251100C1}: [NameServer] 217.116.100.100 217.116.104.104 Tcpip\..\Interfaces\{62ADF8EB-78E3-4857-827F-D86F6D0A940B}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{89FCD67A-D804-4E03-A390-705C625411F0}: [DhcpNameServer] 192.168.0.1 0.0.0.0 Tcpip\..\Interfaces\{8E4951FD-A3C3-47CA-ABE8-194DECE58D85}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{D25A0E2E-C878-4484-826B-D54B650322A8}: [DhcpNameServer] 217.113.224.134 217.113.224.135 Internet Explorer: ================== HKU\S-1-5-21-678976739-802269570-2217661800-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com HKU\S-1-5-21-678976739-802269570-2217661800-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com HKU\S-1-5-21-678976739-802269570-2217661800-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com SearchScopes: HKLM -> DefaultScope - brak wartości SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=MAAU&src=IE-SearchBox SearchScopes: HKLM-x32 -> DefaultScope - brak wartości SearchScopes: HKU\S-1-5-21-678976739-802269570-2217661800-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-678976739-802269570-2217661800-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT SearchScopes: HKU\S-1-5-21-678976739-802269570-2217661800-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-678976739-802269570-2217661800-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = BHO: Windows Live Family Safety Browser Helper Class -> {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} -> C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08] (Microsoft Corporation) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-03-09] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2016-01-14] (Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2016-01-14] (Oracle Corporation) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-03-09] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2016-01-14] (Oracle Corporation) BHO-x32: Pomocnik rejestracji usługi Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2016-01-14] (Oracle Corporation) DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation) Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll [2013-09-24] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2013-09-24] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll [2013-09-24] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2013-09-24] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Tomek\AppData\Roaming\Mozilla\Firefox\Profiles\xbawurd8.default FF Session Restore: -> [funkcja włączona] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2016-01-14] () FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2016-01-14] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2016-01-14] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2016-01-14] () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2016-01-14] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2016-01-14] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2008-12-04] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2010-08-17] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2010-08-17] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-678976739-802269570-2217661800-1001: @Google.com/GoogleEarthPlugin -> C:\Users\Tomek\AppData\Local\Google\Google Earth\plugin\npgeplugin.dll [2012-04-14] (Google) StartMenuInternet: FIREFOX.EXE - D:\Programy\Firefox\firefox.exe Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ig/redirectdomain?brand=ASUT&bmod=ASUT CHR StartupUrls: Default -> "hxxp://www.google.com/ig/redirectdomain?brand=ASUT&bmod=ASUT" CHR Session Restore: Default -> [funkcja włączona] CHR Profile: C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Prezentacje Google) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-03] CHR Extension: (Dokumenty Google) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-03] CHR Extension: (Dysk Google) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21] CHR Extension: (Turn Off the Lights) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2015-09-03] CHR Extension: (MEGA) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2016-01-13] CHR Extension: (YouTube) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24] CHR Extension: (Pushbullet) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd [2016-01-13] CHR Extension: (Google Search) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26] CHR Extension: (Box) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2015-09-03] CHR Extension: (Arkusze Google) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-03] CHR Extension: (Dokumenty Google offline) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18] CHR Extension: (AdBlock) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-01-08] CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2016-01-02] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-09-03] CHR Extension: (Mapy Google) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-09-18] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-03] CHR Extension: (Picasa) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2015-09-03] CHR Extension: (Gmail) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-03] CHR HKU\S-1-5-21-678976739-802269570-2217661800-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Tomek\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-10-31] CHR HKU\S-1-5-21-678976739-802269570-2217661800-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2255064 2013-10-28] (Broadcom Corporation.) R2 BEWConfigSrv; C:\Program Files (x86)\OrangeBusinessServices\Manager polaczen\{ad30a369-08e3-414c-9d2c-7f47dbe748da}\BEWConfigSrv.exe [195536 2013-04-15] () [Brak podpisu cyfrowego] R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5542472 2015-09-08] (COMODO) R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2265792 2015-08-06] (COMODO) R2 hasplms; C:\Windows\system32\hasplms.exe [3750400 2009-12-16] (SafeNet Inc.) R2 JumpConnect; C:\Program Files (x86)\Phase Five Systems\Jump Desktop Connect\4.8.7.0\JumpConnect.exe [7662272 2015-10-27] (Phase Five Systems) R2 JumpDesktop; C:\Program Files (x86)\Jump Desktop\JumpService.exe [7680 2014-12-24] (Phase Five Systems) [Brak podpisu cyfrowego] R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-10-01] (Intel Corporation) [Brak podpisu cyfrowego] S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-03-05] () S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-17] (Electronic Arts) S3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-04-06] () [Brak podpisu cyfrowego] R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [2179056 2014-12-24] (GlavSoft LLC.) R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-10-01] (Intel Corporation) [Brak podpisu cyfrowego] R2 VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [77312 2010-08-21] () [Brak podpisu cyfrowego] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S0 amdkmafd; C:\Windows\System32\DRIVERS\amdkmafd.sys [21600 2013-03-14] (Advanced Micro Devices, Inc.) S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus64.sys [20992 2015-05-19] (LG Electronics Inc.) S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2015-05-19] (LG Electronics Inc.) S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2015-05-19] (LG Electronics Inc.) R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [170712 2013-10-28] (Broadcom Corporation.) R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [21184 2015-11-18] (COMODO) R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [806032 2015-11-18] (COMODO) R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [45856 2015-08-05] (COMODO) S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) S3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [65536 2012-03-02] (Fresco Logic) [Brak podpisu cyfrowego] S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [244736 2013-04-15] (Huawei Technologies Co., Ltd.) R3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [17920 2010-06-19] (Siliten) R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105096 2015-08-05] (COMODO) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [129224 2013-08-22] (Qualcomm Atheros Co., Ltd.) R0 MxEFUF; C:\Windows\System32\DRIVERS\MxEFUF64.sys [157696 2011-10-20] (Matrox Graphics Inc.) S3 pimou; C:\Windows\System32\DRIVERS\pimou.sys [22456 2013-10-01] (Christian Gulden) R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit) R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800832 2010-09-07] (Sonix Technology Co., Ltd.) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2015-01-26] (Duplex Secure Ltd.) R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] () S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2015-09-28] (Microsoft Corporation) S3 XHCIdrv; C:\Windows\System32\DRIVERS\XHCIdrv.sys [119720 2013-08-08] (Windows (R) Win 7 DDK provider) S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [X] U3 tmlwf; Brak ImagePath U3 tmwfp; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-01-14 23:41 - 2016-01-14 23:42 - 00025677 _____ C:\Users\Tomek\Desktop\FRST.txt 2016-01-14 22:16 - 2016-01-14 22:16 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2016-01-14 22:16 - 2016-01-14 21:43 - 00110176 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll 2016-01-14 22:15 - 2016-01-14 22:15 - 00000000 ____D C:\Program Files (x86)\Java 2016-01-14 22:13 - 2016-01-14 22:13 - 00584288 _____ (Oracle Corporation) C:\Users\Tomek\Downloads\jxpiinstall.exe 2016-01-14 21:43 - 2016-01-14 22:16 - 00000000 ____D C:\Users\Tomek\.oracle_jre_usage 2016-01-14 21:43 - 2016-01-14 22:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-01-14 21:43 - 2016-01-14 21:43 - 00110176 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2016-01-14 21:43 - 2016-01-14 21:43 - 00000000 ____D C:\Users\Tomek\AppData\Roaming\Sun 2016-01-14 21:43 - 2016-01-14 21:43 - 00000000 ____D C:\Users\Tomek\AppData\LocalLow\Sun 2016-01-14 21:42 - 2016-01-14 22:17 - 00000000 ____D C:\ProgramData\Oracle 2016-01-14 21:42 - 2016-01-14 21:42 - 00000000 ____D C:\Program Files\Java 2016-01-14 21:41 - 2016-01-14 21:41 - 00000000 ____D C:\Users\Tomek\AppData\LocalLow\Oracle 2016-01-14 21:39 - 2016-01-14 21:41 - 57017440 _____ (Oracle Corporation) C:\Users\Tomek\Downloads\jre-8u66-windows-x64.exe 2016-01-14 21:18 - 2016-01-14 23:08 - 00000000 ____D C:\Users\Tomek\Desktop\FixItpc 2016-01-14 21:06 - 2016-01-14 20:52 - 00215040 _____ C:\Users\Tomek\Desktop\net-log.exe 2016-01-14 21:06 - 2016-01-14 20:42 - 00380416 _____ C:\Users\Tomek\Desktop\rj478fcl.exe 2016-01-14 21:06 - 2016-01-14 20:28 - 02370560 _____ (Farbar) C:\Users\Tomek\Desktop\FRST64.exe 2016-01-14 20:04 - 2016-01-14 20:04 - 00091366 _____ C:\Windows\ntbtlog.txt 2016-01-14 19:56 - 2016-01-14 19:56 - 00001051 _____ C:\AdwCleaner[S1].txt 2016-01-14 19:56 - 2016-01-14 19:56 - 00000994 _____ C:\AdwCleaner[R1].txt 2016-01-12 19:17 - 2016-01-12 20:34 - 00000503 _____ C:\Windows\system32\Drivers\etc\hosts.ics 2016-01-11 23:40 - 2016-01-11 23:40 - 00715890 _____ C:\Users\Tomek\Downloads\Faktura_6V_11548_01_2016_03112426.pdf 2016-01-10 13:27 - 2016-01-10 13:28 - 13847824 _____ C:\Users\Tomek\Downloads\toshiba-PogoplugPCSetup1.2.0.13 (2).exe 2016-01-08 22:07 - 2016-01-08 22:07 - 00000000 ____D C:\Users\Tomek\Downloads\AutoMapa 6.19 (1512) Polska - Gotowa SD 2016-01-08 22:01 - 2016-01-08 22:04 - 296439546 _____ C:\Users\Tomek\Downloads\AutoMapa 6.19 (1512) Polska - Gotowa SD.rar 2016-01-08 19:58 - 2016-01-08 20:01 - 13847824 _____ C:\Users\Tomek\Downloads\toshiba-PogoplugPCSetup1.2.0.13 (1).exe 2016-01-07 23:13 - 2016-01-07 23:13 - 00000000 ____D C:\Users\Tomek\AppData\Local\e-file_sp._z_o.o 2016-01-07 22:13 - 2016-01-07 22:14 - 13847824 _____ C:\Users\Tomek\Downloads\toshiba-PogoplugPCSetup1.2.0.13.exe 2016-01-07 22:09 - 2016-01-14 19:43 - 00000000 ____D C:\Users\Tomek\AppData\Local\Pogoplug 2016-01-07 21:36 - 2016-01-07 21:36 - 00937027 _____ C:\Users\Tomek\Downloads\toshiba_translations_pc_PL.pdf 2016-01-07 21:35 - 2016-01-07 21:35 - 00169945 _____ C:\Users\Tomek\Downloads\Uprawnienia - Wykaz aktów prawnych.pdf 2016-01-06 18:46 - 2010-07-01 19:53 - 03392000 _____ C:\Users\Tomek\Downloads\install64.msi 2016-01-06 18:44 - 2016-01-06 18:45 - 02376458 _____ C:\Users\Tomek\Downloads\USB3_Fresco_Win7_64_z309811.zip 2015-12-31 12:01 - 2015-12-31 12:01 - 00000000 ____D C:\PCShareManagerUpload 2015-12-31 01:21 - 2015-12-31 01:21 - 00000000 ____D C:\Users\Tomek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Urządzenia interfejsu Bluetooth 2015-12-29 21:22 - 2016-01-10 14:07 - 00000000 ____D C:\Windows\Minidump 2015-12-29 20:56 - 2015-12-29 20:56 - 00000000 ____D C:\Users\Tomek\Desktop\Plener 2015-12-29 20:53 - 2015-12-29 20:54 - 00000000 ____D C:\Users\Tomek\Desktop\Ślub 2015-12-29 20:53 - 2015-12-29 20:53 - 00000000 ____D C:\Users\Tomek\Desktop\wesele Rafała i Kasi 2015-12-29 20:51 - 2015-12-29 20:53 - 00000000 ____D C:\Users\Tomek\Desktop\Wesele 2015-12-21 21:32 - 2015-12-21 21:32 - 00000000 ____D C:\DISC 2015-12-21 21:31 - 2015-12-21 21:31 - 00000000 ____D C:\Nowy folder ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-01-14 23:41 - 2013-11-26 21:43 - 00000000 ____D C:\FRST 2016-01-14 23:37 - 2013-12-06 22:05 - 00022590 _____ C:\Windows\system32\Drivers\fvstore.dat 2016-01-14 23:33 - 2013-12-06 20:53 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat 2016-01-14 23:12 - 2010-10-09 23:39 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-01-14 22:01 - 2009-07-14 05:45 - 00010240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-01-14 22:01 - 2009-07-14 05:45 - 00010240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-01-14 21:57 - 2013-11-08 18:34 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-01-14 21:57 - 2013-11-08 18:34 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-01-14 21:53 - 2010-10-10 00:08 - 00000000 ____D C:\Program Files\P4G 2016-01-14 21:53 - 2010-10-09 23:57 - 00000000 ____D C:\ProgramData\NVIDIA 2016-01-14 21:53 - 2010-10-09 23:39 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-01-14 21:53 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-01-14 21:43 - 2013-10-30 21:49 - 00000000 ____D C:\Users\Tomek 2016-01-14 21:39 - 2013-11-10 19:54 - 00003966 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{02EC779B-4BB2-4949-A9E4-E38B78FCB26E} 2016-01-14 21:16 - 2009-08-03 20:55 - 00844396 _____ C:\Windows\system32\perfh015.dat 2016-01-14 21:16 - 2009-08-03 20:55 - 00206722 _____ C:\Windows\system32\perfc015.dat 2016-01-14 21:16 - 2009-07-14 06:13 - 01822964 _____ C:\Windows\system32\PerfStringBackup.INI 2016-01-14 21:16 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2016-01-14 20:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows 2016-01-14 18:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF 2016-01-10 14:08 - 2015-03-14 21:19 - 00000000 ____D C:\Users\Tomek\AppData\Roaming\AIMP3 2016-01-07 23:13 - 2013-10-30 23:26 - 00000000 ____D C:\Users\Tomek\Documents\efile 2016-01-06 22:03 - 2013-10-31 01:10 - 00000000 ___RD C:\Users\Tomek\Dysk Google 2016-01-06 18:49 - 2010-06-27 23:27 - 00206848 _____ (Fresco Logic) C:\Windows\system32\Drivers\FLxHCIc.sys 2016-01-04 22:18 - 2013-11-11 13:49 - 00001068 _____ C:\Windows\WinKalk.ini 2016-01-04 22:18 - 2013-11-10 01:30 - 00013030 _____ C:\PDOXUSRS.NET 2015-12-31 12:09 - 2010-10-09 23:24 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-12-30 17:19 - 2010-10-09 23:57 - 00000000 ____D C:\Users\UpdatusUser 2015-12-30 14:28 - 2014-07-24 19:20 - 00000600 _____ C:\Users\Tomek\AppData\Local\PUTTY.RND 2015-12-21 13:44 - 2014-05-09 19:05 - 00000000 ____D C:\Users\Tomek\Documents\FIFA 13 2015-12-21 13:44 - 2014-05-09 17:43 - 00000000 ____D C:\ProgramData\Origin 2015-12-17 19:42 - 2015-09-28 09:21 - 00000000 ____D C:\Program Files (x86)\Origin ==================== Pliki w katalogu głównym wybranych folderów ======= 2014-07-24 19:20 - 2015-12-30 14:28 - 0000600 _____ () C:\Users\Tomek\AppData\Local\PUTTY.RND 2013-11-08 19:02 - 2014-03-16 19:12 - 0007620 _____ () C:\Users\Tomek\AppData\Local\Resmon.ResmonCfg 2010-10-09 23:39 - 2009-12-24 13:38 - 0131368 _____ () C:\ProgramData\FullRemove.exe 2010-10-09 23:28 - 2010-10-09 23:29 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log 2010-10-09 23:29 - 2010-10-09 23:30 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log 2010-10-09 23:27 - 2010-10-09 23:28 - 0000106 _____ () C:\ProgramData\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}.log 2010-10-09 23:29 - 2010-10-09 23:29 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log 2010-10-09 23:25 - 2010-10-09 23:27 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log 2010-10-09 23:29 - 2010-10-09 23:29 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log 2010-10-09 23:24 - 2010-10-09 23:25 - 0000115 _____ () C:\ProgramData\{E3739848-5329-48E3-8D28-5BBD6E8BE384}.log ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2016-01-11 20:23 ==================== Koniec FRST.txt ============================