szymon32332 Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Witam otóż mam problem z usuługą zasad diagnostyki,gdy próbuje ją uruchomić wyskakuje: Bład:2 niemożna odnaleźć określonego pliku. Potrzebuje to naprawić ponieważ gdy che się połączyć do routera i przez wi-fi hak i przez jabel eather pisze mi: Trwa identyfikowanie..(nazwa routera) Brak dostępnych polączeb Licze na pomoc. Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Wejdź do rejestru i znajdx klucz [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS] z prawokliku na wartość DPS > Exportuj. Przeklej zawartość klucza do posta. Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Wejdź do rejestru i znajdx klucz [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS] z prawokliku na wartość DPS > Exportuj.Przeklej zawartość klucza do posta. Mam zapisać w reg czy txt? Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 txt Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 txtSorka że tak długo to trwa ale z laptopa na telefon troche się przegrywa:Nazwa klucza: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS Nazwa klasy: <BRAK KLASY> Czas ost. zapisu: 2015-08-28 - 07:33 Wartość 0 Nazwa: DisplayName Typ: REG_SZ Dane: Usługa zasad diagnostyki Wartość 1 Nazwa: ImagePath Typ: REG_EXPAND_SZ Dane: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork Wartość 2 Nazwa: Description Typ: REG_SZ Dane: @%systemroot%\system32\dps.dll,-501 Wartość 3 Nazwa: ObjectName Typ: REG_SZ Dane: NT AUTHORITY\LocalService Wartość 4 Nazwa: ErrorControl Typ: REG_DWORD Dane: 0x1 Wartość 5 Nazwa: Start Typ: REG_DWORD Dane: 0x2 Wartość 6 Nazwa: Type Typ: REG_DWORD Dane: 0x20 Wartość 7 Nazwa: ServiceSidType Typ: REG_DWORD Dane: 0x3 Wartość 8 Nazwa: RequiredPrivileges Typ: REG_MULTI_SZ Dane: SeChangeNotifyPrivilege SeCreateGlobalPrivilege SeAssignPrimaryTokenPrivilege SeImpersonatePrivilege Wartość 9 Nazwa: FailureActions Typ: REG_BINARY Dane: 00000000 80 51 01 00 00 00 00 00 - 00 00 00 00 03 00 00 00 .Q.............. 00000010 14 00 00 00 01 00 00 00 - c0 d4 01 00 01 00 00 00 ........ÀÔ...... 00000020 e0 93 04 00 00 00 00 00 - 00 00 00 00 à........... Wartość 10 Nazwa: DelayedAutoStart Typ: REG_DWORD Dane: 0 Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Troche Cie pomęczę. Pobierz FRST i umieść na pulpicie https://www.fixitpc.pl/topic/61-diagnostyka-ogolne-raporty-systemowe/#1 2. Otwórz notatnik i wklej Reg: reg query "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\DPS"ListPermissions: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\DPS plik zapisz jako fixlist.txt i umieść na pulpicie. Uruchom FRST i kliknij Napraw. Przedstaw wynikowy raport fixlog.txt Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Troche Cie pomęczę. Pobierz FRST i umieść na pulpicie https://www.fixitpc.pl/topic/61-diagnostyka-ogolne-raporty-systemowe/#1 2. Otwórz notatnik i wklej Reg: reg query "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\DPS" ListPermissions: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\DPS plik zapisz jako fixlist.txt i umieść na pulpicie. Uruchom FRST i kliknij Napraw. Przedstaw wynikowy raport fixlog.txt Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja:27-08-2015Uruchomiony przez Paula (2015-08-28 10:31:06) Run:1 Uruchomiony z C:\Users\Paula\Desktop Załadowane profile: Paula (Dostępne profile: Paula) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** Reg: reg query "HKEY_LOCAL_MACINE\SYSTEM\ControlSet001\sevices\DPS" ListPermissions: HKEY_LOCAL_MACINE\SYSTEM\ControlSet001\sevices\DPS ***************** ========= reg query "HKEY_LOCAL_MACINE\SYSTEM\ControlSet001\sevices\DPS" ========= Bť¤D: Nieprawidowa nazwa klucza. Aby pozna† spos˘b uľycia, wpisz "REG QUERY /?". ========= Koniec Reg: ========= "HKEY_LOCAL_MACINE\SYSTEM\ControlSet001\sevices\DPS" -> Błąd poboru uprawnień. klucz nie znaleziono. ==== Koniec Fixlog 10:31:07 ==== Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Zwróc uwage na zapis w pliku fixlist.txt Reg: reg query "HKEY_LOCAL_MACINE\SYSTEM\ControlSet001\sevices\DPS"ListPermissions: HKEY_LOCAL_MACINE\SYSTEM\ControlSet001\sevices\DPS a powinno być Reg: reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS"ListPermissions: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS powtórz akcje w FRST z nowym plikiem fixlist.txt Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Zwróc uwage na zapis w pliku fixlist.txt Reg: reg query "HKEY_LOCAL_MACINE\SYSTEM\ControlSet001\sevices\DPS" ListPermissions: HKEY_LOCAL_MACINE\SYSTEM\ControlSet001\sevices\DPS a powinno być Reg: reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS" ListPermissions: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS powtórz akcje w FRST z nowym plikiem fixlist.txt Powtórzyłem:Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja:27-08-2015 Uruchomiony przez Paula (2015-08-28 13:28:05) Run:2 Uruchomiony z C:\Users\Paula\Desktop Załadowane profile: Paula (Dostępne profile: Paula) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** Reg: reg query "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\sevices\DPS" ListPermissions: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\sevices\DPS ***************** ========= reg query "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\sevices\DPS" ========= Bť¤D: System nie znalaz w rejestrze okrelonego klucza albo wartoci. ========= Koniec Reg: ========= "HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\sevices\DPS" -> Błąd poboru uprawnień. klucz nie znaleziono. ==== Koniec Fixlog 13:28:06 ==== Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Pobierz plik fixlist.txt, który podaje, umieść na pulpicie. Uruchom FRST i kliknij napraw. Przedstaw raport fixlog.txt fixlist.txt Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja:27-08-2015 Uruchomiony przez Paula (2015-08-28 13:44:30) Run:3 Uruchomiony z C:\Users\Paula\Desktop Załadowane profile: Paula (Dostępne profile: Paula) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** Reg: reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS" ListPermissions: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS ***************** ========= reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS" ========= HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS DisplayName REG_SZ Usuga zasad diagnostyki ImagePath REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork Description REG_SZ @%systemroot%\system32\dps.dll,-501 ObjectName REG_SZ NT AUTHORITY\LocalService ErrorControl REG_DWORD 0x1 Start REG_DWORD 0x2 Type REG_DWORD 0x20 ServiceSidType REG_DWORD 0x3 RequiredPrivileges REG_MULTI_SZ SeChangeNotifyPrivilege\0SeCreateGlobalPrivilege\0SeAssignPrimaryTokenPrivilege\0SeImpersonatePrivilege FailureActions REG_BINARY 805101000000000000000000030000001400000001000000C0D4010001000000E09304000000000000000000 DelayedAutoStart REG_DWORD 0x0 ========= Koniec Reg: ========= =================================== uprawnienia "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DPS": Owner: BUILTIN\Administrators DACL(PAI): NT AUTHORITY\SYSTEM ALLOW FULL (NI) NT AUTHORITY\SYSTEM ALLOW FULL (CI-IO) BUILTIN\Administrators ALLOW QUERY+EnumSubKey+NOTIFY+CreateLink+READ (NI) BUILTIN\Administrators ALLOW READ/EXECUTE (CI-IO) BUILTIN\Users ALLOW QUERY+EnumSubKey+NOTIFY+CreateLink+READ (NI) BUILTIN\Users ALLOW READ/EXECUTE (CI-IO) =================================== ==== Koniec Fixlog 13:44:30 ==== Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 klucz jest niekompletny. Pobierz plik dps.reg. Umieść na pulpicie. Z prawokliku na plik > Scal. Potwierdx komunikat OK. Uruchom ponownie system. Usługa powinna działać. http://speedy.sh/W5ewP/dps.reg Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Po naciśńęciu "tak" wyskakuje: Niemożna zaimportować (ścieżka pliku) błąd przy dostępie do rejestru Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Zrób to w trybie awaryjnym. Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Zrób to w trybie awaryjnym. To samo Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Jaki masz antywirus? UAC ochrona konta właczona? Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Ten podstawowy microaoft coś tam(jestem naradzie na dworzu) A jak sprawdzić ten uac? Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 A jak sprawdzić ten uac? panel sterowania > system i zabezpieczenia > Kontrola konta uzytkownika Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 panel sterowania > system i zabezpieczenia > Kontrola konta uzytkownikaOk mam i na którą kreseczke ustawić? Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Ok mam i na którą kreseczke ustawić? Zjedź na sam dół. Zatwierdź zmiany. Uruchom ponownie system. I ponów import pliku dps.reg Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Zjedź na sam dół. Zatwierdź zmiany. Uruchom ponownie system. I ponów import pliku dps.reg Dalej to samo,nieda się jakoś podmienić tych plików? Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Zrób logi z FRST. Zaznacz opcje Addition i Shortcut i kliknij w Skanuj. Wstaw trzy raporty. Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Zrób logi z FRST. Zaznacz opcje Addition i Shortcut i kliknij w Skanuj. Wstaw trzy raporty.[/quoteMoge zrobić zdjęcia logów telefonem? Odnośnik do komentarza
Zappa Opublikowano 28 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Moge zrobić zdjęcia logów telefonem? Nie. To muszą być pliki notatnika. Inaczej nie są przydatne. Odnośnik do komentarza
szymon32332 Opublikowano 28 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 28 Sierpnia 2015 Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:27-08-2015 Uruchomiony przez Paula (administrator) PAULA-KOMPUTER (28-08-2015 15:18:50) Uruchomiony z C:\Users\Paula\Desktop Załadowane profile: Paula (Dostępne profile: Paula) Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: FF) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Mindspark) C:\Program Files (x86)\InternetSpeedTracker_9t\bar\3.bin\9tbarsvc.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe () C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe () C:\Program Files (x86)\Skype\Updater\Updater.exe (Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe (Skype Technologies) C:\Windows\Temp\3582-490\Updater.exe () C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe (WA) C:\Program Files (x86)\WordAnchor_1.10.0.20\Service\wasvc.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.149\SSScheduler.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation) HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [290688 2012-10-24] (Intel Corporation) HKLM-x32\...\Run: [startCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [808648 2015-08-28] () HKU\S-1-5-21-3774040562-339156155-1705587160-1000\...\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2015-08-28] (Nero AG) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-07-03] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.149\SSScheduler.exe (McAfee, Inc.) Startup: C:\Users\Paula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2015-08-19] ShortcutTarget: MEGAsync.lnk -> C:\Users\Paula\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited) ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Paula\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Paula\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Paula\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Paula\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Paula\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Paula\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] () GroupPolicy: Zasady grupy Chrome wykryto <======= UWAGA CHR HKLM\SOFTWARE\Policies\Google: Zasada ograniczeń <======= UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci..) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=ds&ts=1438636017&z=34cd48566dfb8d0ad546a1ag2z5c9bcqacdwct9w3z&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=ds&ts=1438636017&z=34cd48566dfb8d0ad546a1ag2z5c9bcqacdwct9w3z&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hp&ts=1438636017&z=34cd48566dfb8d0ad546a1ag2z5c9bcqacdwct9w3z&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hp&ts=1438636017&z=34cd48566dfb8d0ad546a1ag2z5c9bcqacdwct9w3z&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1438636017&z=34cd48566dfb8d0ad546a1ag2z5c9bcqacdwct9w3z&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1438636017&z=34cd48566dfb8d0ad546a1ag2z5c9bcqacdwct9w3z&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT&q={searchTerms} HKU\S-1-5-21-3774040562-339156155-1705587160-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=dspp&ts=1436792546&z=8bfdf5c6d464d777eddc00eg2z3c5qfmet1ocw1z9q&from=cor&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT&q={searchTerms} HKU\S-1-5-21-3774040562-339156155-1705587160-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE HKU\S-1-5-21-3774040562-339156155-1705587160-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp HKU\S-1-5-21-3774040562-339156155-1705587160-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hp&ts=1438636017&z=34cd48566dfb8d0ad546a1ag2z5c9bcqacdwct9w3z&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT HKU\S-1-5-21-3774040562-339156155-1705587160-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=dspp&ts=1436792546&z=8bfdf5c6d464d777eddc00eg2z3c5qfmet1ocw1z9q&from=cor&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT&q={searchTerms} HKU\S-1-5-21-3774040562-339156155-1705587160-1000\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://go.microsoft.com/fwlink/?LinkID=226786&Mkt=pl-PL&Src=MSE&Tid=0003446E&OHP=http%3A%2F%2Fwww.mystartsearch.com%2F%3Ftype%3Dhp%26ts%3D1438636017%26z%3D34cd48566dfb8d0ad546a1ag2z5c9bcqacdwct9w3z%26from%3Dcornl%26uid%3DTOSHIBAXMK5059GSXP%5F42NEC4SVTXX42NEC4SVT&OSP=http%3A%2F%2Fwww.mystartsearch.com%2Fweb%2F%3Futm%5Fsource%3Db%26utm%5Fmedium%3Dcornl%26utm%5Fcampaign%3Dinstall%5Fie%26utm%5Fcontent%3Dds%26from%3Dcornl%26uid%3DTOSHIBAXMK5059GSXP%5F42NEC4SVTXX42NEC4SVT%26ts%3D1438636127%26type%3Ddefault%26q%3D%7BsearchTerms%7D URLSearchHook: HKU\S-1-5-21-3774040562-339156155-1705587160-1000 - (Brak nazwy) - {b287e6b2-868b-4ac1-acce-c69eb5fd29d1} - C:\Program Files (x86)\InternetSpeedTracker_9t\bar\3.bin\9tSrcAs.dll (Mindspark) SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKLM-x32 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKU\S-1-5-21-3774040562-339156155-1705587160-1000 -> DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKU\S-1-5-21-3774040562-339156155-1705587160-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cornl&utm_campaign=install_ie&utm_content=ds&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT&ts=1438636127&type=default&q={searchTerms} SearchScopes: HKU\S-1-5-21-3774040562-339156155-1705587160-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKU\S-1-5-21-3774040562-339156155-1705587160-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cornl&utm_campaign=install_ie&utm_content=ds&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT&ts=1438636127&type=default&q={searchTerms} SearchScopes: HKU\S-1-5-21-3774040562-339156155-1705587160-1000 -> {940D47DF-1E71-4C74-9F51-DDF0AF0763BB} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cornl&utm_campaign=install_ie&utm_content=ds&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT&ts=1438636127&type=default&q={searchTerms} SearchScopes: HKU\S-1-5-21-3774040562-339156155-1705587160-1000 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cornl&utm_campaign=install_ie&utm_content=ds&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT&ts=1438636127&type=default&q={searchTerms} SearchScopes: HKU\S-1-5-21-3774040562-339156155-1705587160-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=cornl&utm_campaign=install_ie&utm_content=ds&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT&ts=1438636127&type=default&q={searchTerms} BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2015-07-27] (Oracle Corporation) BHO: ExStrASavings -> {81F1E4D9-CB47-4F93-BE5A-423167C9E865} -> C:\Program Files (x86)\ExStrASavings\vzcaAJ0cXMEaO9.x64.dll [2015-08-17] () BHO: ExstrauSaviNggs -> {82E52E0E-0227-4779-BA86-042B1238CAC5} -> C:\Program Files (x86)\ExstrauSaviNggs\k13vIEcLdR3OVO.x64.dll [2015-08-17] () BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-07-27] (Oracle Corporation) BHO-x32: ExStrASavings -> {81F1E4D9-CB47-4F93-BE5A-423167C9E865} -> C:\Program Files (x86)\ExStrASavings\vzcaAJ0cXMEaO9.dll [2015-08-17] () BHO-x32: ExstrauSaviNggs -> {82E52E0E-0227-4779-BA86-042B1238CAC5} -> C:\Program Files (x86)\ExstrauSaviNggs\k13vIEcLdR3OVO.dll [2015-08-17] () DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1438636017&z=34cd48566dfb8d0ad546a1ag2z5c9bcqacdwct9w3z&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT FireFox: ======== FF ProfilePath: C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891 FF NewTab: chrome://quick_start/content/index.html FF DefaultSearchEngine: webssearches FF SelectedSearchEngine: webssearches FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-16] () FF Plugin: @java.com/DTPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-07-27] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.80.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-07-27] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [brak pliku] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-16] () FF Plugin-x32: @alawar.com/npapi -> C:\Windows\npapi.dll [2014-01-29] (Alawar) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [brak pliku] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-07-27] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-07-27] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3774040562-339156155-1705587160-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Paula\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS) FF user.js: detected! => C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\user.js [2015-08-14] FF SearchPlugin: C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\searchplugins\ask-web-search.xml [2015-06-15] FF SearchPlugin: C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\searchplugins\sweet-page.xml [2015-07-21] FF SearchPlugin: C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\searchplugins\WebSearch.xml [2015-07-17] FF SearchPlugin: C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\searchplugins\webssearches.xml [2015-08-27] FF Extension: Default SearchProtected - C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\Extensions\defsearchp@gmail.com [2015-08-03] FF Extension: deskCut - C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\Extensions\deskCutv2@gmail.com [2015-08-03] FF Extension: ALlDealApp - C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\Extensions\J@nu.org [2015-07-22] FF Extension: ExsttraSaovIngs - C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\Extensions\r@q8U.org [2015-07-29] FF Extension: The AdBlocker - C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\Extensions\sahgijandtfpyyx@nnulrtinhuusiesltdf.net [2015-07-28] FF Extension: DiscountBomb - C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\Extensions\zgcajtnmohsualphkn@njewwuajbroybbz.org [2015-07-22] FF Extension: Great Find - C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\Extensions\{992cd662-eda8-4827-aa8e-aba08a61ba86}.xpi [2015-07-21] FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-08-18] FF HKLM-x32\...\Firefox\Extensions: [defsearchp@gmail.com] - C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\extensions\defsearchp@gmail.com FF HKLM-x32\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Users\Paula\AppData\Roaming\Mozilla\Firefox\Profiles\u8z1hc1y.default-1432210268891\extensions\deskCutv2@gmail.com Chrome: ======= CHR dev: Chrome dev build wykryto! <======= UWAGA CHR Profile: C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (YouTube) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-27] CHR Extension: (Google Search) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-27] CHR Extension: (Chrome Web Store Payments) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28] CHR Extension: (Gmail) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-27] CHR Extension: (Browse Faster) - C:\Users\Paula\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponhjlldbpnmeieenmaacddmlfpdielh [2015-08-17] CHR HKLM-x32\...\Chrome\Extension: [mibfbmhijjgpkmobcfdlelpccpeafoom] - <Brak Path/update_url> StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1438636017&z=34cd48566dfb8d0ad546a1ag2z5c9bcqacdwct9w3z&from=cornl&uid=TOSHIBAXMK5059GSXP_42NEC4SVTXX42NEC4SVT Opera: ======= OPR Extension: (Digital More) - C:\Users\Paula\AppData\Roaming\Opera Software\Opera Stable\Extensions\idipklkclglaeaidmeedenepljfnfbfn [2015-07-13] ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation) S2 DPS; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) S2 DPS; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Corporation) R2 InternetSpeedTracker_9tService; C:\Program Files (x86)\InternetSpeedTracker_9t\bar\3.bin\9tbarsvc.exe [90648 2015-07-03] (Mindspark) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.149\McCHSvc.exe [289256 2015-06-26] (McAfee, Inc.) R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [brak podpisu cyfrowego] S3 MozillaMaintenance; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [190632 2015-08-28] () [brak podpisu cyfrowego] R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation) S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation) S3 odserv; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [482168 2015-08-28] () [brak podpisu cyfrowego] S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2048520 2015-08-28] () [brak podpisu cyfrowego] S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [186656 2015-08-28] () [brak podpisu cyfrowego] R2 Service Mgr GreatFind; C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\plugincontainer.exe [1195744 2015-08-25] () S2 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [368768 2015-08-28] () [brak podpisu cyfrowego] S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [879808 2015-08-28] () [brak podpisu cyfrowego] R2 Update Mgr GreatFind; C:\Program Files (x86)\Common Files\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc\updater.exe [707808 2015-08-25] () R2 wasvc_1.10.0.20; C:\Program Files (x86)\WordAnchor_1.10.0.20\Service\wasvc.exe [300120 2015-07-06] (WA) S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X] S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X] ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) U5 crcdisk; C:\Windows\System32\Drivers\crcdisk.sys [24144 2009-07-14] (Microsoft Corporation) R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation) R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation) S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2015-05-15] (TuneUp Software) S3 gdrv; \??\C:\Windows\gdrv.sys [X] S1 wafd_vt_1_10_0_20; sxstel32\erivdrs\vafd^vt_1_10^0_21.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-08-28 15:18 - 2015-08-28 15:20 - 00021669 _____ C:\Users\Paula\Desktop\FRST.txt 2015-08-28 15:03 - 2015-08-28 15:03 - 00274664 _____ C:\Windows\Minidump\082815-19874-01.dmp 2015-08-28 14:54 - 2015-08-28 14:54 - 00274664 _____ C:\Windows\Minidump\082815-18298-01.dmp 2015-08-28 14:40 - 2015-08-28 14:40 - 00274608 _____ C:\Windows\Minidump\082815-18111-01.dmp 2015-08-28 14:34 - 2015-08-28 14:33 - 00005198 _____ C:\Users\Paula\Desktop\dps.reg 2015-08-28 10:25 - 2015-08-28 15:18 - 00000000 ____D C:\FRST 2015-08-28 10:25 - 2015-08-28 10:24 - 02186752 _____ (Farbar) C:\Users\Paula\Desktop\FRST64.exe 2015-08-28 09:56 - 2015-08-28 09:56 - 00003526 _____ C:\Users\Paula\Desktop\hvj.txt 2015-08-28 01:24 - 2015-08-28 15:18 - 00000154 _____ C:\Windows\directx.sys 2015-08-28 01:24 - 2015-08-28 01:24 - 00274608 _____ C:\Windows\Minidump\082815-20451-01.dmp 2015-08-28 01:13 - 2015-08-28 01:13 - 00000000 ____D C:\Users\Paula\Desktop\Nowy folder (2) 2015-08-28 01:12 - 2015-08-28 01:11 - 02336018 _____ C:\Users\Paula\Desktop\20462436_6144b4a49714d85f0b7a9095bf8750e6e7334992.cab 2015-08-28 01:00 - 2015-08-28 01:00 - 00041472 _____ C:\Windows\svchost.com 2015-08-28 00:29 - 2015-08-28 01:06 - 00141312 _____ C:\Users\Paula\Desktop\KeyGen.exe 2015-08-28 00:27 - 2015-08-28 00:27 - 00274664 _____ C:\Windows\Minidump\082815-19640-01.dmp 2015-08-28 00:26 - 2015-08-28 00:30 - 00001011 _____ C:\Users\Public\Desktop\UltraISO.lnk 2015-08-28 00:26 - 2015-08-28 00:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO 2015-08-28 00:26 - 2015-08-28 00:30 - 00000000 ____D C:\Program Files (x86)\UltraISO 2015-08-28 00:26 - 2015-08-28 00:26 - 00000000 ____D C:\Users\Paula\Documents\My ISO Files 2015-08-27 22:43 - 2015-08-27 22:43 - 00274608 _____ C:\Windows\Minidump\082715-20997-01.dmp 2015-08-27 22:11 - 2015-08-27 22:11 - 00274608 _____ C:\Windows\Minidump\082715-22557-01.dmp 2015-08-27 22:08 - 2015-08-27 22:08 - 00274608 _____ C:\Windows\Minidump\082715-19593-01.dmp 2015-08-27 21:53 - 2015-08-27 21:53 - 00274608 _____ C:\Windows\Minidump\082715-19234-01.dmp 2015-08-27 21:47 - 2015-08-27 21:47 - 00274608 _____ C:\Windows\Minidump\082715-20514-01.dmp 2015-08-27 21:18 - 2015-08-27 21:18 - 00000000 __SHD C:\found.009 2015-08-27 17:37 - 2015-08-27 17:37 - 00274552 _____ C:\Windows\Minidump\082715-21138-01.dmp 2015-08-27 17:33 - 2015-08-27 17:33 - 00010016 ____N C:\bootsqm.dat 2015-08-27 16:46 - 2015-08-27 15:31 - 3218941952 _____ C:\Users\Paula\Desktop\Windows 7 Home Premium 64-bit.iso 2015-08-27 16:38 - 2015-08-27 16:38 - 00000000 ____D C:\ProgramData\Philips Intelligent Agent 2015-08-27 16:32 - 2015-08-27 16:33 - 00000000 ____D C:\Users\Paula\AppData\Local\Ahead 2015-08-27 16:32 - 2015-08-27 16:32 - 00002770 _____ C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk 2015-08-27 16:32 - 2015-08-27 16:32 - 00002690 _____ C:\Users\Public\Desktop\Nero Home Essentials SE.lnk 2015-08-27 16:32 - 2015-08-27 16:32 - 00002286 _____ C:\Users\Public\Desktop\Uaktualnienie online pakietu Nero.lnk 2015-08-27 16:32 - 2015-08-27 16:32 - 00001183 _____ C:\Users\Public\Desktop\Philips Intelligent Agent.lnk 2015-08-27 16:32 - 2015-08-27 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Philips 2015-08-27 16:32 - 2015-08-27 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Essentials 2015-08-27 16:32 - 2015-08-27 16:32 - 00000000 ____D C:\Program Files (x86)\Philips 2015-08-27 16:31 - 2015-08-27 16:33 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Ahead 2015-08-27 16:31 - 2015-08-27 16:31 - 00000000 ____D C:\ProgramData\Ahead 2015-08-27 16:27 - 2015-08-27 16:27 - 00000000 ____D C:\ProgramData\Nero 2015-08-27 16:27 - 2015-08-27 16:27 - 00000000 ____D C:\Program Files (x86)\Nero 2015-08-27 07:46 - 2015-08-27 07:48 - 00001837 _____ C:\Users\Paula\Desktop\Tytus, Romek i A'tomek.lnk 2015-08-27 07:46 - 2015-08-27 07:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tytus, Romek i A'tomek 2015-08-27 07:46 - 2015-08-27 07:48 - 00000000 ____D C:\Program Files (x86)\Tytus 2015-08-27 07:43 - 2015-08-27 07:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kurczaki Armageddon 2015-08-27 07:43 - 2015-08-27 07:43 - 00000000 ____D C:\Program Files (x86)\KurczakiArmageddon 2015-08-27 00:36 - 2015-08-27 00:36 - 00274552 _____ C:\Windows\Minidump\082715-20763-01.dmp 2015-08-26 22:38 - 2015-08-26 22:38 - 00004881 _____ C:\Users\Paula\AppData\Local\recently-used.xbel 2015-08-26 18:27 - 2015-08-26 18:27 - 00274552 _____ C:\Windows\Minidump\082615-26410-01.dmp 2015-08-26 18:16 - 2015-08-26 18:19 - 00000000 ___DC C:\Users\Paula\AppData\Local\MigWiz 2015-08-26 17:57 - 2015-08-26 17:57 - 00274552 _____ C:\Windows\Minidump\082615-22713-01.dmp 2015-08-26 17:55 - 2015-08-26 17:55 - 00274552 _____ C:\Windows\Minidump\082615-22276-01.dmp 2015-08-26 17:45 - 2015-08-26 17:45 - 00274552 _____ C:\Windows\Minidump\082615-22152-01.dmp 2015-08-26 15:15 - 2015-08-26 15:41 - 00052051 _____ C:\Users\Paula\raztone.xcf 2015-08-26 13:23 - 2015-08-26 13:25 - 00000000 ____D C:\Program Files (x86)\Hotel dla zwierzaków 2015-08-26 13:23 - 2015-08-26 13:23 - 00001760 _____ C:\Users\Public\Desktop\Hotel dla zwierzaków.lnk 2015-08-26 13:23 - 2015-08-26 13:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotel dla zwierzaków 2015-08-26 13:10 - 2015-08-26 13:10 - 00000000 ____D C:\Program Files (x86)\Ubisoft 2015-08-26 13:09 - 2015-08-26 13:09 - 00001973 _____ C:\Users\Public\Desktop\Doggies.lnk 2015-08-26 13:04 - 2015-08-26 13:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Play 2015-08-26 13:04 - 2015-08-26 13:04 - 00000000 ____D C:\Program Files (x86)\Play 2015-08-26 11:16 - 2015-08-26 11:16 - 00052938 _____ C:\Users\Paula\Desktop\e.txt 2015-08-26 11:09 - 2015-08-26 11:09 - 00274552 _____ C:\Windows\Minidump\082615-20280-01.dmp 2015-08-25 18:57 - 2015-08-25 18:57 - 00273536 _____ C:\Windows\Minidump\082515-68219-01.dmp 2015-08-25 18:35 - 2015-08-25 18:35 - 00000000 _____ C:\Windows\Minidump\082515-68858-01.dmp 2015-08-25 18:11 - 2015-08-25 18:15 - 00000000 ____D C:\Users\Paula\Downloads\Counter-Strike Global Offensive v1.34.9.4 2015-08-25 16:59 - 2015-08-25 16:59 - 00000000 ____D C:\Users\Paula\AppData\Roaming\AMD 2015-08-25 16:45 - 2015-08-25 17:17 - 00000000 ____D C:\Program Files\Counter-Strike Global Offensive 2015-08-25 16:30 - 2015-08-25 16:40 - 00000000 ____D C:\Games 2015-08-25 15:57 - 2015-08-25 15:57 - 00000000 ____D C:\ProgramData\ATI 2015-08-25 15:56 - 2015-08-25 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2015-08-25 15:55 - 2015-08-25 15:55 - 00000000 ____D C:\Program Files (x86)\AMD 2015-08-25 15:46 - 2015-08-25 15:46 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2015-08-25 15:45 - 2015-08-25 15:49 - 00000000 ____D C:\Program Files\AMD 2015-08-25 15:35 - 2015-08-25 15:35 - 00000000 ____D C:\AMD 2015-08-25 15:25 - 2015-08-25 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Raptr 2015-08-25 15:24 - 2015-08-25 15:26 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Raptr 2015-08-25 15:24 - 2015-08-25 15:25 - 00000000 ____D C:\Program Files (x86)\Raptr 2015-08-25 15:24 - 2015-08-25 15:24 - 00000000 ____D C:\Users\Paula\AppData\Roaming\library_dir 2015-08-25 14:24 - 2015-08-25 14:24 - 00000861 _____ C:\Users\Paula\Desktop\µTorrent.lnk 2015-08-25 14:24 - 2015-08-25 14:24 - 00000841 _____ C:\Users\Paula\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2015-08-25 13:02 - 2015-08-25 13:02 - 00000000 ____D C:\Users\Paula\AppData\Local\Ahri.tw 2015-08-25 12:52 - 2015-08-25 12:53 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Transformice 2015-08-25 12:52 - 2015-08-25 12:52 - 00000927 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transformice.lnk 2015-08-25 12:52 - 2015-08-25 12:52 - 00000915 _____ C:\Users\Public\Desktop\Transformice.lnk 2015-08-25 12:52 - 2015-08-25 12:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia 2015-08-25 12:52 - 2015-08-25 12:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia 2015-08-25 12:52 - 2015-08-25 12:52 - 00000000 ____D C:\Program Files (x86)\Transformice 2015-08-25 12:46 - 2015-08-25 12:46 - 00274664 _____ C:\Windows\Minidump\082515-22245-01.dmp 2015-08-25 12:42 - 2015-08-25 12:43 - 00000000 ____D C:\Users\Paula\AppData\Roaming\LS8DE53686 2015-08-25 11:19 - 2015-08-25 11:19 - 00274608 _____ C:\Windows\Minidump\082515-18501-01.dmp 2015-08-24 22:32 - 2015-08-24 22:32 - 00274664 _____ C:\Windows\Minidump\082415-27846-01.dmp 2015-08-24 22:29 - 2015-08-24 22:29 - 00000000 __SHD C:\found.008 2015-08-24 19:42 - 2015-08-24 19:42 - 00274608 _____ C:\Windows\Minidump\082415-24476-01.dmp 2015-08-23 22:17 - 2015-08-23 22:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Syntezator mowy DANT FREE 2015-08-23 22:17 - 2015-08-23 22:17 - 00000000 ____D C:\Program Files (x86)\DANT 2015-08-23 22:13 - 2015-08-23 22:13 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Screaming Bee 2015-08-23 22:10 - 2015-08-23 22:10 - 00003043 _____ C:\Users\Paula\Desktop\MorphVOX Junior.lnk 2015-08-23 22:10 - 2015-08-23 22:10 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screaming Bee 2015-08-23 22:10 - 2015-08-23 22:10 - 00000000 ____D C:\Program Files (x86)\Screaming Bee 2015-08-23 17:35 - 2015-08-28 01:06 - 00782336 _____ C:\Users\Paula\Desktop\CSGO-Multihack-by szymon32332 and Anime Girl.exe 2015-08-23 15:48 - 2015-08-23 15:48 - 00000000 __SHD C:\found.007 2015-08-23 15:41 - 2015-08-23 15:41 - 00274608 _____ C:\Windows\Minidump\082315-23587-01.dmp 2015-08-23 15:38 - 2015-08-23 15:38 - 00274664 _____ C:\Windows\Minidump\082315-24835-01.dmp 2015-08-23 10:56 - 2015-08-23 10:57 - 00274552 _____ C:\Windows\Minidump\082315-26052-01.dmp 2015-08-22 18:23 - 2015-08-22 18:23 - 00274608 _____ C:\Windows\Minidump\082215-21356-01.dmp 2015-08-22 16:50 - 2015-08-22 16:50 - 00274664 _____ C:\Windows\Minidump\082215-21325-01.dmp 2015-08-22 16:48 - 2015-08-22 16:48 - 00274664 _____ C:\Windows\Minidump\082215-22838-01.dmp 2015-08-22 12:01 - 2015-08-22 12:01 - 00274664 _____ C:\Windows\Minidump\082215-20248-01.dmp 2015-08-22 07:59 - 2015-08-22 07:59 - 00274664 _____ C:\Windows\Minidump\082215-19094-01.dmp 2015-08-21 23:03 - 2015-08-21 23:03 - 00274664 _____ C:\Windows\Minidump\082115-21559-01.dmp 2015-08-21 18:53 - 2015-08-21 18:53 - 00274608 _____ C:\Windows\Minidump\082115-19188-01.dmp 2015-08-21 18:50 - 2015-08-21 18:51 - 00274664 _____ C:\Windows\Minidump\082115-22136-01.dmp 2015-08-21 15:17 - 2015-08-21 15:17 - 00274664 _____ C:\Windows\Minidump\082115-29718-01.dmp 2015-08-21 10:53 - 2015-08-11 03:20 - 25191936 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-08-21 10:53 - 2015-08-11 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-08-21 10:53 - 2015-08-11 02:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-08-21 10:53 - 2015-08-11 02:20 - 19871232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-08-21 10:46 - 2015-08-21 10:46 - 00274608 _____ C:\Windows\Minidump\082115-18876-01.dmp 2015-08-20 19:00 - 2015-08-20 19:00 - 00000000 ____D C:\Users\Paula\AppData\Local\Vitalwerks 2015-08-20 18:59 - 2015-08-20 18:59 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No-IP DUC 2015-08-20 18:59 - 2015-08-20 18:59 - 00000000 ____D C:\Program Files (x86)\No-IP 2015-08-20 15:21 - 2015-08-20 15:21 - 00274664 _____ C:\Windows\Minidump\082015-48329-01.dmp 2015-08-20 13:23 - 2015-08-20 13:23 - 00274664 _____ C:\Windows\Minidump\082015-19656-01.dmp 2015-08-20 13:14 - 2015-08-20 13:14 - 00274664 _____ C:\Windows\Minidump\082015-22245-01.dmp 2015-08-20 12:09 - 2015-08-20 12:09 - 00274664 _____ C:\Windows\Minidump\082015-33384-01.dmp 2015-08-20 11:58 - 2015-08-20 11:58 - 00274664 _____ C:\Windows\Minidump\082015-28470-01.dmp 2015-08-20 11:56 - 2015-08-20 11:56 - 00274664 _____ C:\Windows\Minidump\082015-29936-01.dmp 2015-08-20 11:24 - 2015-08-20 11:24 - 00274664 _____ C:\Windows\Minidump\082015-26988-01.dmp 2015-08-20 11:14 - 2015-08-20 11:15 - 00274664 _____ C:\Windows\Minidump\082015-25521-01.dmp 2015-08-20 11:08 - 2015-08-20 11:08 - 00274664 _____ C:\Windows\Minidump\082015-25942-01.dmp 2015-08-20 10:38 - 2015-08-20 10:38 - 00274608 _____ C:\Windows\Minidump\082015-23041-01.dmp 2015-08-19 23:11 - 2015-08-19 23:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-08-19 20:02 - 2015-08-19 20:02 - 00000000 ___RD C:\Users\Paula\Documents\MEGAsync 2015-08-19 14:41 - 2015-08-19 14:41 - 00274664 _____ C:\Windows\Minidump\081915-21855-01.dmp 2015-08-19 14:36 - 2015-08-19 14:36 - 00001062 _____ C:\Users\Paula\Desktop\MEGAsync.lnk 2015-08-19 14:36 - 2015-08-19 14:36 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEGAsync 2015-08-19 14:36 - 2015-08-19 14:36 - 00000000 ____D C:\Users\Paula\AppData\Local\MEGAsync 2015-08-19 12:57 - 2015-08-25 14:39 - 00000000 ____D C:\Users\Paula\AppData\Roaming\BoL 2015-08-19 10:10 - 2015-08-19 10:10 - 00000000 ____D C:\Users\Paula\AppData\Local\Script_Manager 2015-08-19 09:18 - 2015-08-19 09:18 - 00274608 _____ C:\Windows\Minidump\081915-19328-01.dmp 2015-08-19 09:17 - 2015-08-19 09:17 - 00000000 _____ C:\Windows\Minidump\081915-19078-01.dmp 2015-08-19 08:59 - 2015-08-19 08:59 - 00274608 _____ C:\Windows\Minidump\081915-19531-01.dmp 2015-08-18 18:42 - 2015-08-18 21:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-08-18 15:18 - 2015-08-18 15:18 - 00000000 __SHD C:\found.006 2015-08-17 18:40 - 2015-08-17 18:40 - 00000885 _____ C:\Users\Public\Desktop\NosTale.lnk 2015-08-17 18:40 - 2015-08-17 18:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nostale(PL) 2015-08-17 17:49 - 2015-08-17 17:49 - 00000000 ____D C:\Program Files (x86)\GameforgeLive 2015-08-17 16:54 - 2015-08-17 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live 2015-08-17 16:54 - 2015-08-17 16:54 - 00000756 _____ C:\Users\Public\Desktop\Gameforge Live.lnk 2015-08-17 16:54 - 2015-08-17 16:54 - 00000000 ____D C:\Users\Paula\AppData\Local\Gameforge4d 2015-08-17 16:47 - 2015-08-17 16:47 - 00000000 ____D C:\Program Files (x86)\ExstrauSaviNggs 2015-08-17 16:46 - 2015-08-17 16:46 - 00000000 ____D C:\Program Files (x86)\ExStrASavings 2015-08-17 16:45 - 2015-08-17 16:45 - 00000000 ____D C:\Program Files (x86)\EExsitraSavvings 2015-08-17 16:45 - 2015-08-17 16:45 - 00000000 ____D C:\Program Files (x86)\Browse Faster 2015-08-17 08:46 - 2015-08-26 18:15 - 00003260 _____ C:\Windows\System32\Tasks\Super Optimizer Schedule 2015-08-17 08:46 - 2015-08-17 08:46 - 00000000 ____D C:\Users\Paula\Documents\Super Optimizer 2015-08-17 08:46 - 2015-08-17 08:46 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Super Optimizer 2015-08-17 08:40 - 2015-08-28 08:40 - 00000340 _____ C:\Windows\Tasks\Superclean.job 2015-08-17 08:40 - 2015-08-22 20:40 - 00000000 ____D C:\ProgramData\{592c2465-7205-754b-592c-c24657209195} 2015-08-17 08:40 - 2015-08-17 08:40 - 00003252 _____ C:\Windows\System32\Tasks\Superclean 2015-08-17 08:40 - 2015-08-17 08:40 - 00001090 _____ C:\Users\Paula\Desktop\Super Optimizer.lnk 2015-08-17 08:40 - 2015-08-17 08:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Optimizer 2015-08-17 08:40 - 2015-08-17 08:40 - 00000000 ____D C:\Program Files (x86)\Super Optimizer 2015-08-16 22:35 - 2015-08-16 22:35 - 00000000 _____ C:\Windows\SysWOW64\㩃啜敳獲停畡慬䅜灰慄慴剜慯業杮䵜穯汩慬䙜物晥硯停潲楦敬屳㡵ㅺ捨礱搮晥畡瑬ㄭ㌴㈲〱㘲㠸ㄹ捜潯楫獥献汱瑩e慴2 2015-08-16 09:34 - 2015-08-28 07:41 - 00000000 ____D C:\Users\Paula\Documents\Optimizer Pro 2015-08-16 09:34 - 2015-08-28 07:41 - 00000000 ____D C:\ProgramData\TEMP 2015-08-16 09:34 - 2015-08-16 09:34 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Optimizer Pro 2015-08-16 09:33 - 2015-08-25 23:02 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro 2015-08-16 09:33 - 2015-08-16 09:33 - 00001066 _____ C:\Users\Paula\Desktop\Optimizer Pro.lnk 2015-08-16 09:33 - 2015-08-16 09:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro 2015-08-16 08:38 - 2015-07-15 05:19 - 02004992 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2015-08-16 08:38 - 2015-07-15 05:19 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2015-08-16 08:38 - 2015-07-15 05:14 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2015-08-16 08:38 - 2015-07-15 05:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2015-08-16 08:38 - 2015-07-15 04:55 - 01390592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2015-08-16 08:38 - 2015-07-15 04:55 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2015-08-16 08:38 - 2015-07-15 04:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll 2015-08-16 08:38 - 2015-07-15 04:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2015-08-15 08:38 - 2015-08-28 09:57 - 00000340 _____ C:\Windows\Tasks\Bidaily Synchronize Task[8da6].job 2015-08-15 08:38 - 2015-08-21 14:38 - 00000000 ____D C:\ProgramData\{78b70fd9-e562-8c40-78b7-70fd9e563f67} 2015-08-15 08:38 - 2015-08-15 08:38 - 00003252 _____ C:\Windows\System32\Tasks\Bidaily Synchronize Task[8da6] 2015-08-14 15:44 - 2015-08-17 23:02 - 00000000 ____D C:\Users\Paula\Desktop\Nowy folder 2015-08-14 09:09 - 2015-07-21 02:39 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-08-14 09:09 - 2015-07-21 02:12 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-08-14 09:09 - 2015-07-16 22:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-08-14 09:09 - 2015-07-16 22:35 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-08-14 09:09 - 2015-07-16 22:26 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-08-14 09:09 - 2015-07-16 22:21 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-08-14 09:09 - 2015-07-16 22:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-08-14 09:09 - 2015-07-16 21:51 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-08-14 09:09 - 2015-07-16 21:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-08-14 09:09 - 2015-07-16 21:50 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-08-14 09:09 - 2015-07-16 21:45 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-08-14 09:09 - 2015-07-16 21:43 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-08-14 09:09 - 2015-07-16 21:35 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-08-14 09:09 - 2015-07-16 21:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-08-14 09:09 - 2015-07-16 21:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-08-14 09:09 - 2015-07-16 21:17 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-08-14 09:09 - 2015-07-16 21:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-08-14 09:09 - 2015-07-16 20:38 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-08-14 09:09 - 2015-07-16 20:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-08-14 09:08 - 2015-07-16 22:54 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-08-14 09:08 - 2015-07-16 22:37 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-08-14 09:08 - 2015-07-16 22:36 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-08-14 09:08 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-08-14 09:08 - 2015-07-16 22:35 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-08-14 09:08 - 2015-07-16 22:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-08-14 09:08 - 2015-07-16 22:26 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-08-14 09:08 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-08-14 09:08 - 2015-07-16 22:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-08-14 09:08 - 2015-07-16 22:21 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-08-14 09:08 - 2015-07-16 22:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-08-14 09:08 - 2015-07-16 22:12 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-08-14 09:08 - 2015-07-16 22:08 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-08-14 09:08 - 2015-07-16 21:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-08-14 09:08 - 2015-07-16 21:54 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-08-14 09:08 - 2015-07-16 21:51 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-08-14 09:08 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-08-14 09:08 - 2015-07-16 21:49 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-08-14 09:08 - 2015-07-16 21:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-08-14 09:08 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-08-14 09:08 - 2015-07-16 21:39 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-08-14 09:08 - 2015-07-16 21:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-08-14 09:08 - 2015-07-16 21:38 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-08-14 09:08 - 2015-07-16 21:36 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-08-14 09:08 - 2015-07-16 21:34 - 14451200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-08-14 09:08 - 2015-07-16 21:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-08-14 09:08 - 2015-07-16 21:32 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-08-14 09:08 - 2015-07-16 21:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-08-14 09:08 - 2015-07-16 21:20 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-08-14 09:08 - 2015-07-16 21:12 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-08-14 09:08 - 2015-07-16 21:12 - 02427904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-08-14 09:08 - 2015-07-16 21:10 - 12856832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-08-14 09:08 - 2015-07-16 21:06 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-08-14 09:08 - 2015-07-16 21:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-08-14 09:08 - 2015-07-16 21:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-08-14 09:08 - 2015-07-16 20:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-08-14 09:08 - 2015-07-16 20:42 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-08-14 09:07 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2015-08-14 09:07 - 2015-07-30 20:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-08-14 09:07 - 2015-07-30 20:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-08-14 09:07 - 2015-07-30 20:06 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2015-08-14 09:07 - 2015-07-30 20:06 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-08-14 09:07 - 2015-07-30 20:06 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2015-08-14 09:07 - 2015-07-30 20:06 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2015-08-14 09:07 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2015-08-14 09:07 - 2015-07-30 19:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2015-08-14 09:07 - 2015-07-30 19:57 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2015-08-14 09:07 - 2015-07-30 19:57 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2015-08-14 09:07 - 2015-07-30 19:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2015-08-14 09:07 - 2015-07-30 19:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2015-08-14 09:07 - 2015-07-30 18:56 - 03208192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-08-14 09:07 - 2015-07-30 18:52 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-08-14 09:07 - 2015-07-30 18:49 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2015-08-14 09:07 - 2015-07-20 20:12 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-08-14 09:07 - 2015-07-20 20:12 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-08-14 09:07 - 2015-07-20 20:12 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-08-14 09:07 - 2015-07-20 20:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-08-14 09:07 - 2015-07-20 20:12 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-08-14 09:07 - 2015-07-20 20:12 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-08-14 09:07 - 2015-07-20 20:12 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-08-14 09:07 - 2015-07-20 20:12 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-08-14 09:07 - 2015-07-20 20:12 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-08-14 09:07 - 2015-07-20 20:12 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-08-14 09:07 - 2015-07-20 20:12 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-08-14 09:07 - 2015-07-20 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-08-14 09:07 - 2015-07-20 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-08-14 09:07 - 2015-07-20 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-08-14 09:07 - 2015-07-20 19:56 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-08-14 09:07 - 2015-07-20 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-08-14 09:07 - 2015-07-10 19:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-08-14 09:07 - 2015-07-10 19:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2015-08-14 09:07 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe 2015-08-14 09:07 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe 2015-08-14 09:07 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe 2015-08-14 09:07 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2015-08-14 09:07 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll 2015-08-14 09:07 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2015-08-14 09:07 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll 2015-08-13 16:50 - 2015-08-13 22:12 - 00000000 ____D C:\League of Legends 2015-08-13 16:35 - 2015-08-13 16:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends 2015-08-13 13:43 - 2015-08-13 13:43 - 00000971 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2015-08-13 13:43 - 2015-08-13 13:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2015-08-13 11:25 - 2015-08-22 16:56 - 00000878 _____ C:\Users\Paula\Desktop\Counter Strike 1.6.lnk 2015-08-13 08:36 - 2015-08-13 08:36 - 00000000 ____D C:\Program Files (x86)\RegularDEaiLs 2015-08-13 08:34 - 2015-08-13 08:34 - 00000000 ____D C:\ProgramData\mlnogonfabbdccpgllhhkgdcfabgmehh 2015-08-11 18:00 - 2015-08-13 13:43 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client 2015-08-11 10:42 - 2015-08-25 18:10 - 00000000 ____D C:\Users\Paula\AppData\Roaming\TS3Client 2015-08-10 22:54 - 2015-08-10 22:54 - 00000000 ____D C:\AeriaGames 2015-08-10 12:25 - 2015-08-11 17:53 - 00000000 ____D C:\Program Files\dBpoweramp 2015-08-10 12:03 - 2015-08-10 12:03 - 00000000 ____D C:\Users\Paula\SupTab 2015-08-07 12:05 - 2015-08-28 01:06 - 00345088 _____ C:\Users\Paula\Desktop\Google Chrome.exe.exe 2015-08-04 14:34 - 2015-08-04 14:34 - 00000000 __SHD C:\found.005 2015-08-04 10:20 - 2015-08-13 16:50 - 00000000 __SHD C:\AI_RecycleBin 2015-08-04 08:25 - 2015-08-04 08:25 - 00297672 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys 2015-08-04 08:19 - 2015-08-04 08:19 - 01187342 _____ C:\Windows\system32\amdocl_as64.exe 2015-08-04 08:19 - 2015-08-04 08:19 - 01061902 _____ C:\Windows\system32\amdocl_ld64.exe 2015-08-04 08:19 - 2015-08-04 08:19 - 00995342 _____ C:\Windows\SysWOW64\amdocl_as32.exe 2015-08-04 08:19 - 2015-08-04 08:19 - 00798734 _____ C:\Windows\SysWOW64\amdocl_ld32.exe 2015-08-04 08:19 - 2015-08-04 08:19 - 00235008 _____ C:\Windows\system32\clinfo.exe 2015-08-04 08:18 - 2015-08-04 08:18 - 47785472 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll 2015-08-04 08:09 - 2015-08-04 08:09 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2015-08-04 08:09 - 2015-08-04 08:09 - 00059392 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2015-08-04 07:58 - 2015-08-04 07:58 - 27535872 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll 2015-08-04 07:57 - 2015-08-04 07:57 - 22318592 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll 2015-08-04 06:12 - 2015-08-04 06:12 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll 2015-08-04 06:12 - 2015-08-04 06:12 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll 2015-08-04 06:11 - 2015-08-04 06:11 - 06477312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll 2015-08-04 05:43 - 2015-08-04 05:43 - 05068288 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll 2015-08-04 05:21 - 2015-08-04 05:21 - 00093696 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll 2015-08-04 05:21 - 2015-08-04 05:21 - 00086528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll 2015-08-04 04:21 - 2015-08-04 04:21 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll 2015-08-04 04:21 - 2015-08-04 04:21 - 00039424 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll 2015-08-04 04:07 - 2015-08-04 04:07 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2015-08-04 04:07 - 2015-08-04 04:07 - 00204800 _____ C:\Windows\system32\amdgfxinfo64.dll 2015-08-04 04:07 - 2015-08-04 04:07 - 00189952 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll 2015-08-04 04:07 - 2015-08-04 04:07 - 00160256 _____ C:\Windows\system32\atieah64.exe 2015-08-04 04:07 - 2015-08-04 04:07 - 00143872 _____ C:\Windows\SysWOW64\atieah32.exe 2015-08-04 04:07 - 2012-04-03 05:08 - 00494592 _____ (AMD) C:\Windows\system32\atieclxx.exe 2015-08-04 04:06 - 2012-04-03 05:08 - 00235520 _____ (AMD) C:\Windows\system32\atiesrxx.exe 2015-08-04 03:48 - 2015-08-04 03:48 - 00865792 _____ (AMD) C:\Windows\system32\coinst_15.20.dll 2015-08-04 03:43 - 2015-08-04 03:43 - 00926720 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll 2015-08-04 03:37 - 2015-08-04 03:37 - 00102912 _____ C:\Windows\system32\hsa-thunk64.dll 2015-08-04 03:37 - 2015-08-04 03:37 - 00102400 _____ C:\Windows\SysWOW64\hsa-thunk.dll 2015-08-04 00:32 - 2015-08-03 22:03 - 00262144 _____ C:\Windows\system32\config\sam.trk 2015-08-03 23:08 - 2015-08-20 12:33 - 00000000 ____D C:\ProgramData\XWinManProX 2015-08-03 23:08 - 2015-08-12 23:41 - 00000000 ____D C:\Program Files (x86)\Resource Hacker 2015-08-03 23:08 - 2015-08-03 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resource Hacker 2015-08-01 16:28 - 2015-08-22 16:56 - 00000878 _____ C:\Users\Paula\AppData\Roaming\Microsoft\Windows\Start Menu\Counter Strike 1.6.lnk 2015-08-01 16:28 - 2015-08-12 23:41 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter Strike 1.6 2015-08-01 16:12 - 2015-08-22 16:53 - 00000000 ____D C:\Gry 2015-08-01 14:26 - 2015-08-01 14:26 - 00000000 ____D C:\Users\Paula\AppData\Local\Trove 2015-08-01 11:54 - 2015-08-01 11:54 - 00001938 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk 2015-08-01 11:54 - 2015-08-01 11:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus 2015-08-01 11:54 - 2015-08-01 11:54 - 00000000 ____D C:\Program Files\McAfee Security Scan 2015-07-31 12:19 - 2015-07-31 12:19 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Trove 2015-07-31 11:49 - 2015-08-06 07:24 - 00000000 ____D C:\Users\Paula\AppData\Local\Glyph 2015-07-31 11:49 - 2015-08-06 07:23 - 00000000 ____D C:\Program Files (x86)\Glyph 2015-07-31 11:49 - 2015-08-01 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glyph 2015-07-31 11:49 - 2015-07-31 12:01 - 00000000 ____D C:\ProgramData\Glyph 2015-07-31 10:40 - 2015-07-31 10:50 - 00000000 ____D C:\Wooxy 2015-07-31 10:40 - 2015-07-31 10:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wooxy 2015-07-31 10:27 - 2015-08-24 12:37 - 00000000 ____D C:\Users\Paula\AppData\Roaming\.minecraft 2015-07-30 19:54 - 2015-07-30 19:54 - 00000000 ____D C:\Users\Paula\AppData\Local\Email_Account_Creator_Ext 2015-07-30 19:34 - 2015-07-30 19:34 - 00140569 _____ C:\Users\Paula\Desktop\proxy.txt 2015-07-30 18:54 - 2015-07-30 19:01 - 00000000 ____D C:\Users\Paula\AppData\Roaming\UBot Studio 2015-07-30 14:19 - 2015-08-19 11:57 - 00000024 _____ C:\Users\Paula\AppData\Roaming\appdataFr25.bin 2015-07-30 08:53 - 2015-07-30 08:53 - 00000000 ____D C:\Users\Paula\Deskopt 2015-07-29 15:24 - 2015-07-29 15:24 - 00000000 ____D C:\Users\Paula\.thumbnails 2015-07-29 08:11 - 2015-07-29 08:11 - 00000000 ____D C:\Program Files (x86)\Looper for YouTube 2015-07-29 08:10 - 2015-07-29 08:10 - 00000000 ____D C:\Program Files (x86)\ExsttraSaovIngs ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-08-28 15:19 - 2015-02-27 16:50 - 01768667 _____ C:\Windows\WindowsUpdate.log 2015-08-28 15:17 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-08-28 15:17 - 2009-07-14 06:51 - 00067625 _____ C:\Windows\setupact.log 2015-08-28 15:03 - 2015-02-27 18:17 - 379808362 _____ C:\Windows\MEMORY.DMP 2015-08-28 15:03 - 2015-02-27 18:17 - 00000000 ____D C:\Windows\Minidump 2015-08-28 14:53 - 2009-07-14 06:45 - 00019328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-08-28 14:53 - 2009-07-14 06:45 - 00019328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-08-28 14:51 - 2015-02-28 12:27 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-08-28 13:00 - 2015-07-21 10:21 - 00000000 ____D C:\Users\Paula\.gimp-2.8 2015-08-28 10:41 - 2015-02-27 20:44 - 00108840 _____ C:\Users\Paula\AppData\Local\GDIPFONTCACHEV1.DAT 2015-08-28 10:40 - 2009-07-14 06:45 - 00410520 _____ C:\Windows\system32\FNTCACHE.DAT 2015-08-28 01:06 - 2015-07-25 11:44 - 00774656 _____ C:\Users\Paula\Desktop\LAP.exe 2015-08-28 00:32 - 2009-07-14 19:55 - 02838208 _____ C:\Windows\system32\perfh015.dat 2015-08-28 00:32 - 2009-07-14 19:55 - 00887902 _____ C:\Windows\system32\perfc015.dat 2015-08-28 00:32 - 2009-07-14 07:13 - 00006208 _____ C:\Windows\system32\PerfStringBackup.INI 2015-08-27 21:53 - 2009-07-14 07:08 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-08-27 21:32 - 2015-05-31 10:04 - 00000000 ____D C:\Users\Paula\AppData\Roaming\uTorrent 2015-08-26 22:38 - 2015-07-21 10:34 - 00000000 ____D C:\Users\Paula\AppData\Local\gtk-2.0 2015-08-26 16:44 - 2015-02-28 14:15 - 00047718 _____ C:\Windows\PFRO.log 2015-08-26 15:15 - 2015-02-27 16:58 - 00000000 ____D C:\Users\Paula 2015-08-26 13:29 - 2015-02-28 16:04 - 00000000 ____D C:\Users\Paula\AppData\Local\Adobe 2015-08-26 13:28 - 2015-05-14 19:28 - 00325205 _____ C:\Windows\DirectX.log 2015-08-26 13:23 - 2015-02-27 18:21 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-08-25 22:55 - 2015-05-14 19:13 - 00000000 ____D C:\Program Files (x86)\Steam 2015-08-25 22:55 - 2015-04-16 19:12 - 00000000 ____D C:\ProgramData\Origin 2015-08-25 18:59 - 2015-03-09 16:09 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Skype 2015-08-25 16:54 - 2015-07-27 18:22 - 00000000 ____D C:\Users\Paula\Desktop\LeagueSharp_514 2015-08-25 15:54 - 2015-02-27 18:16 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2015-08-25 13:51 - 2015-07-18 22:02 - 00000000 ____D C:\ProgramData\d64c6aa4-9b30-4b06-8859-0cfa31bd50dc 2015-08-25 12:52 - 2015-07-25 11:31 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Adobe 2015-08-25 12:52 - 2015-02-28 14:18 - 00000000 ____D C:\Program Files (x86)\Adobe 2015-08-25 12:52 - 2015-02-28 14:17 - 00000000 ____D C:\ProgramData\Adobe 2015-08-25 12:41 - 2015-03-05 13:00 - 00000000 ____D C:\Users\Paula\AppData\Local\LeagueSharp 2015-08-23 22:09 - 2015-02-27 16:59 - 00000000 ____D C:\Users\Paula\AppData\Local\VirtualStore 2015-08-22 19:49 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2015-08-19 23:11 - 2015-03-09 16:09 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk 2015-08-19 23:11 - 2015-03-09 16:09 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-08-19 23:11 - 2015-03-09 16:08 - 00000000 ____D C:\ProgramData\Skype 2015-08-18 23:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2015-08-18 21:11 - 2015-07-18 21:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-08-18 20:57 - 2015-07-12 17:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox.bak 2015-08-18 13:04 - 2015-07-13 16:35 - 00000266 __RSH C:\ProgramData\ntuser.pol 2015-08-18 11:08 - 2015-07-21 10:28 - 00000000 ____D C:\Program Files (x86)\RelayDouble 2015-08-17 16:47 - 2015-07-13 16:28 - 00000000 ____D C:\ProgramData\4250433472026679958 2015-08-16 15:51 - 2015-02-28 12:27 - 00003868 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-08-16 15:03 - 2015-02-28 12:27 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-08-16 15:03 - 2015-02-28 12:27 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-08-16 09:38 - 2015-05-31 12:08 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-08-16 08:37 - 2015-02-28 14:22 - 00000000 ____D C:\ProgramData\Microsoft Help 2015-08-15 10:25 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2015-08-13 16:34 - 2015-03-04 15:29 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Riot Games 2015-08-12 23:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat 2015-08-12 23:41 - 2015-07-13 16:28 - 00000000 ____D C:\Program Files (x86)\CutTehePrice 2015-08-12 23:41 - 2015-07-03 11:53 - 00000000 ____D C:\ProgramData\McAfee Security Scan 2015-08-12 23:41 - 2015-05-14 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2015-08-06 11:50 - 2015-07-27 11:42 - 00000020 _____ C:\Users\Paula\AppData\Roaming\appdataFr2.bin 2015-08-04 17:43 - 2015-04-17 18:22 - 00000000 ____D C:\Users\Paula\AppData\Roaming\Origin 2015-08-04 17:40 - 2015-05-14 19:13 - 00000967 _____ C:\Users\Public\Desktop\Steam.lnk 2015-08-04 08:14 - 2012-02-09 23:59 - 39714304 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll 2015-08-03 23:07 - 2015-07-27 11:42 - 00002497 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-08-03 23:07 - 2015-07-18 21:57 - 00001467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-08-03 23:07 - 2015-07-18 21:57 - 00001455 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-08-03 23:07 - 2015-07-13 15:00 - 00002275 _____ C:\Users\Paula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder.lnk 2015-08-03 23:07 - 2015-02-27 17:00 - 00001741 _____ C:\Users\Paula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-08-01 10:30 - 2015-04-16 19:12 - 00000000 ____D C:\Program Files (x86)\Origin 2015-08-01 10:19 - 2015-07-13 16:28 - 00000000 ____D C:\Program Files (x86)\bestadblocker 2015-08-01 10:17 - 2015-07-21 10:27 - 00000000 ____D C:\Program Files (x86)\ALlDealApp 2015-08-01 10:16 - 2015-07-25 08:32 - 00000000 ____D C:\ProgramData\{7c81591f-51c6-f63b-7c81-1591f51c647d} 2015-08-01 10:16 - 2015-07-24 16:27 - 00000000 ____D C:\ProgramData\{5b94689c-2395-4296-5b94-4689c239a270} 2015-08-01 10:16 - 2015-07-22 22:27 - 00000000 ____D C:\ProgramData\{284bcad1-e386-342b-284b-bcad1e382b47} 2015-08-01 10:16 - 2015-07-21 10:27 - 00000000 ____D C:\ProgramData\{0ef61d47-2b10-2bf2-0ef6-61d472b1751c} 2015-08-01 10:16 - 2015-07-13 16:28 - 00000000 ____D C:\Program Files (x86)\CutThePricce 2015-08-01 10:15 - 2015-07-13 16:27 - 00000000 ____D C:\ProgramData\{d8a2a5dc-dd12-1808-d8a2-2a5dcdd19773} 2015-07-31 14:27 - 2015-06-01 12:37 - 00000000 ____D C:\Users\Paula\Desktop\GTA San Andreas 2015-07-30 12:18 - 2015-07-25 14:02 - 00000000 ____D C:\Minecraft Pingwin Pack 5 2015-07-29 17:10 - 2015-07-21 10:37 - 00130048 ___SH C:\Users\Paula\Thumbs.db ==================== Pliki w katalogu głównym wybranych folderów ======= 2015-07-28 08:01 - 2015-07-28 08:01 - 0000079 _____ () C:\Program Files (x86)\prefs.js 2015-07-27 11:42 - 2015-08-06 11:50 - 0000020 _____ () C:\Users\Paula\AppData\Roaming\appdataFr2.bin 2015-07-30 14:19 - 2015-08-19 11:57 - 0000024 _____ () C:\Users\Paula\AppData\Roaming\appdataFr25.bin 2015-07-14 17:20 - 2015-07-14 17:20 - 0000000 ___SH () C:\Users\Paula\AppData\Local\LumaEmu 2015-08-26 22:38 - 2015-08-26 22:38 - 0004881 _____ () C:\Users\Paula\AppData\Local\recently-used.xbel 2015-07-27 08:45 - 2015-07-27 08:45 - 0000017 _____ () C:\Users\Paula\AppData\Local\resmon.resmoncfg Niektóre pliki w TEMP: ==================== C:\Users\Paula\AppData\Local\Temp\309754-instalator_sciagnij.exe C:\Users\Paula\AppData\Local\Temp\gamebox.exe C:\Users\Paula\AppData\Local\Temp\GLF3C59.EXE C:\Users\Paula\AppData\Local\Temp\GLF4031.EXE C:\Users\Paula\AppData\Local\Temp\GLF481B.EXE C:\Users\Paula\AppData\Local\Temp\GLF4935.EXE C:\Users\Paula\AppData\Local\Temp\GLF6B45.EXE C:\Users\Paula\AppData\Local\Temp\GLF6EA0.EXE C:\Users\Paula\AppData\Local\Temp\GLF71EC.EXE C:\Users\Paula\AppData\Local\Temp\GLF7351.EXE C:\Users\Paula\AppData\Local\Temp\GLF984F.EXE C:\Users\Paula\AppData\Local\Temp\GLF9A62.EXE C:\Users\Paula\AppData\Local\Temp\GLFA623.EXE C:\Users\Paula\AppData\Local\Temp\GLFAA49.EXE C:\Users\Paula\AppData\Local\Temp\GLFD3E7.EXE C:\Users\Paula\AppData\Local\Temp\GLFD5AD.EXE C:\Users\Paula\AppData\Local\Temp\GLFF1C2.EXE C:\Users\Paula\AppData\Local\Temp\GLFFC6D.EXE C:\Users\Paula\AppData\Local\Temp\ICReinstall_Audacity-11826-dp.exe C:\Users\Paula\AppData\Local\Temp\jre-8u45-windows-au.exe C:\Users\Paula\AppData\Local\Temp\supoptsetup.exe C:\Users\Paula\AppData\Local\Temp\{07B64C48-1B72-4EF6-A4E6-BF1E60387DDE}.dll C:\Users\Paula\AppData\Local\Temp\{09050738-E990-481B-BF12-F03E9298C14C}.dll C:\Users\Paula\AppData\Local\Temp\{0C0806F1-514F-4347-853C-5FB6D5997BBB}.dll C:\Users\Paula\AppData\Local\Temp\{0D981DF8-F1CD-4E43-8229-3AF6BC8649E9}.dll C:\Users\Paula\AppData\Local\Temp\{0FD595AB-32E1-4CF9-9A90-64EE69969D88}.dll C:\Users\Paula\AppData\Local\Temp\{10DA4C2B-70F2-49B1-943D-98E7A86A6425}.dll C:\Users\Paula\AppData\Local\Temp\{11D6A270-37D3-45A4-8AC4-097A0134A2A9}.dll C:\Users\Paula\AppData\Local\Temp\{123CF12A-97E2-49B8-9BD5-CEF350DEB0EE}.dll C:\Users\Paula\AppData\Local\Temp\{13D99ABE-D131-4BF8-A7C3-3F5BB6DD2FBA}.dll C:\Users\Paula\AppData\Local\Temp\{147B60DA-7470-43BD-A59C-30BC6F96F0A6}.dll C:\Users\Paula\AppData\Local\Temp\{17BFC989-104E-4AAB-ACF2-B28D2FF8758B}.dll C:\Users\Paula\AppData\Local\Temp\{202786C3-D20C-4C98-8E7A-135EB1DF9F2D}.dll C:\Users\Paula\AppData\Local\Temp\{2063CACC-E69B-49EE-8AE8-B11F6E6D67D0}.dll C:\Users\Paula\AppData\Local\Temp\{2305FC37-47A2-4F18-BF11-2769687EC0B7}.dll C:\Users\Paula\AppData\Local\Temp\{2712477D-BFE6-445E-98DF-D8778A32BD41}.dll C:\Users\Paula\AppData\Local\Temp\{273E5E58-7D64-4F61-A8F7-CB34C01D7412}.dll C:\Users\Paula\AppData\Local\Temp\{27665C5E-7921-47A0-A6B7-5F1DEA963DFD}.dll C:\Users\Paula\AppData\Local\Temp\{2872E932-3A81-4CE0-A968-31781E552063}.dll C:\Users\Paula\AppData\Local\Temp\{2A4D74AB-3313-4391-8C64-F0654AB4CDE7}.dll C:\Users\Paula\AppData\Local\Temp\{2D117162-6796-45DC-926B-A38278554446}.dll C:\Users\Paula\AppData\Local\Temp\{2E7D0D82-2256-4A2E-BF38-2F54BD8D2DAC}.dll C:\Users\Paula\AppData\Local\Temp\{3227FC2E-D79D-4F09-909D-4FD9CD271090}.dll C:\Users\Paula\AppData\Local\Temp\{341F4419-49F3-46FB-AE8E-1A992020BADE}.dll C:\Users\Paula\AppData\Local\Temp\{378FF3C4-396C-4C6F-8C31-E1A0C946902B}.dll C:\Users\Paula\AppData\Local\Temp\{3A5B340C-71BA-4251-B0D5-77AA3479E7B5}.dll C:\Users\Paula\AppData\Local\Temp\{3A8BA4AB-E765-47F1-BEB6-A4FB47CCE2ED}.dll C:\Users\Paula\AppData\Local\Temp\{3F5F39D3-BBA0-4A43-8EC7-59A152FB91AB}.dll C:\Users\Paula\AppData\Local\Temp\{43AD3A33-3DA5-40C1-92E8-9FD34156D1BE}.dll C:\Users\Paula\AppData\Local\Temp\{44332C5F-952A-4929-B229-9040EEF080FD}.dll C:\Users\Paula\AppData\Local\Temp\{47F5CFDE-292A-46FF-BF31-201AF72D55E6}.dll C:\Users\Paula\AppData\Local\Temp\{482E7E0E-D1C6-4F73-812F-B812DC7174A6}.dll C:\Users\Paula\AppData\Local\Temp\{48AD95F8-CBD8-427D-9581-411C611FBFCD}.dll C:\Users\Paula\AppData\Local\Temp\{48BD2789-1719-4002-909B-1B2D31B5CA91}.dll C:\Users\Paula\AppData\Local\Temp\{4BF892FA-A725-45F8-A947-3ECF8D1FBF7F}.dll C:\Users\Paula\AppData\Local\Temp\{4C3A40FE-0A85-480A-8A83-3F43B19302FA}.dll C:\Users\Paula\AppData\Local\Temp\{4C815318-43BC-447D-9E6D-548BD9AABE9B}.dll C:\Users\Paula\AppData\Local\Temp\{4F54598D-8BE9-4986-B4EF-98F11E9AD83B}.dll C:\Users\Paula\AppData\Local\Temp\{51E822E0-7421-4F64-BC3F-BCC553C35CAB}.dll C:\Users\Paula\AppData\Local\Temp\{52281386-F24A-432B-91B0-6A5CB7B768EA}.dll C:\Users\Paula\AppData\Local\Temp\{522A2A1C-08D5-4365-AA38-6374189B340F}.dll C:\Users\Paula\AppData\Local\Temp\{54347F71-8F32-422C-AF75-5A8892D40589}.dll C:\Users\Paula\AppData\Local\Temp\{545E9412-BAC9-4B0B-9531-6F56C035EEBC}.dll C:\Users\Paula\AppData\Local\Temp\{549B0839-0393-4C4D-83F6-A69E9C3D915F}.dll C:\Users\Paula\AppData\Local\Temp\{54C8EF27-2EF3-4440-BFD5-5349EB96D439}.dll C:\Users\Paula\AppData\Local\Temp\{55DB365F-6E37-47BB-86FA-DBB41A97E5D6}.dll C:\Users\Paula\AppData\Local\Temp\{56B1D98E-9587-4E9B-8FD7-5946EF4BDCEE}.dll C:\Users\Paula\AppData\Local\Temp\{58336825-9FC6-4DDC-A523-E82BFC71B170}.dll C:\Users\Paula\AppData\Local\Temp\{58EE8A30-2286-4145-B543-2877BE1FF6B2}.dll C:\Users\Paula\AppData\Local\Temp\{5A17F5B7-250E-4F73-90C2-A0B4E8BF371A}.dll C:\Users\Paula\AppData\Local\Temp\{5D848F91-18E2-43AF-B6F2-D5DD37B95305}.dll C:\Users\Paula\AppData\Local\Temp\{5DD18A52-08BA-47C4-9039-5C2C0DE7602B}.dll C:\Users\Paula\AppData\Local\Temp\{5E34DE74-37D1-4242-821A-0506EE46ADB8}.dll C:\Users\Paula\AppData\Local\Temp\{5F1A3865-560E-4154-924C-CFD2076CBF7F}.dll C:\Users\Paula\AppData\Local\Temp\{60C7E9DB-A987-4A55-8387-C13A1636B120}.dll C:\Users\Paula\AppData\Local\Temp\{623931BD-D9B2-44DF-BDA3-1E774C308CE8}.dll C:\Users\Paula\AppData\Local\Temp\{626C6950-62E3-43BF-84F0-2F50635C70D8}.dll C:\Users\Paula\AppData\Local\Temp\{62775C67-590E-4F3F-A16D-F98C206F1FCC}.dll C:\Users\Paula\AppData\Local\Temp\{6293C289-C3CA-411B-BEE3-9327E96D5D80}.dll C:\Users\Paula\AppData\Local\Temp\{62FE7F30-9FAE-485B-B023-B56A20783ABB}.dll C:\Users\Paula\AppData\Local\Temp\{63810EE2-10F6-4BC3-ABEA-1DC34A6CE130}.dll C:\Users\Paula\AppData\Local\Temp\{63E7431A-9EA0-4D53-9093-2DA4D2564F6E}.dll C:\Users\Paula\AppData\Local\Temp\{658BA787-E490-4853-BC77-4BA9D64ED745}.dll C:\Users\Paula\AppData\Local\Temp\{65B5CC5B-D652-4DDD-AAD6-439385C6E05E}.dll C:\Users\Paula\AppData\Local\Temp\{669B4D2E-88E3-4E4C-82F9-056D629CD77D}.dll C:\Users\Paula\AppData\Local\Temp\{689319CC-3527-45B7-A347-6FE5AC856999}.dll C:\Users\Paula\AppData\Local\Temp\{69B1C37D-6515-417F-A1E5-BF300D33441F}.dll C:\Users\Paula\AppData\Local\Temp\{6AD2A2A0-8FCB-47B0-8F29-80357157B658}.dll C:\Users\Paula\AppData\Local\Temp\{72F11995-DDA9-4C9C-9E3B-924354B31938}.dll C:\Users\Paula\AppData\Local\Temp\{730731E5-252D-45B9-B957-35553C70E386}.dll C:\Users\Paula\AppData\Local\Temp\{753E7F77-2969-4739-B3BA-F2CB2896958C}.dll C:\Users\Paula\AppData\Local\Temp\{779F73A7-0964-4682-8109-B796569D3971}.dll C:\Users\Paula\AppData\Local\Temp\{79E6C5C0-0940-4C61-AF08-D8C2D3115530}.dll C:\Users\Paula\AppData\Local\Temp\{7A038410-4A24-46AA-B3B9-EC2CEDF12005}.dll C:\Users\Paula\AppData\Local\Temp\{7C02E6EA-03DA-4656-9D71-46E8C13D5355}.dll C:\Users\Paula\AppData\Local\Temp\{7C352D61-CAAA-46F2-AD0A-0D6E99BEDFC9}.dll C:\Users\Paula\AppData\Local\Temp\{7C5BFED8-384A-49EE-98CC-0C7FF63B8D03}.dll C:\Users\Paula\AppData\Local\Temp\{7E0D8678-B035-4467-B31E-8EE16D6D103A}.dll C:\Users\Paula\AppData\Local\Temp\{7F62E1C7-FAD3-468B-854A-CD43BAA17F94}.dll C:\Users\Paula\AppData\Local\Temp\{8131A1C1-F254-4F2B-BB51-8E1278B52D43}.dll C:\Users\Paula\AppData\Local\Temp\{81B61312-0FDD-4DBF-A81B-6DDC85F7E515}.dll C:\Users\Paula\AppData\Local\Temp\{82D2C3BD-5A41-4F03-87F8-1BF55160A114}.dll C:\Users\Paula\AppData\Local\Temp\{833C18FD-F886-4C04-8A35-850E7A760A61}.dll C:\Users\Paula\AppData\Local\Temp\{8BF8734F-A81F-4A14-AF5D-6AB9880060C9}.dll C:\Users\Paula\AppData\Local\Temp\{8F6389E0-0401-44A8-90F4-5DB967BA5313}.dll C:\Users\Paula\AppData\Local\Temp\{9140C01B-371D-43D5-9456-AB12F0BF49CF}.dll C:\Users\Paula\AppData\Local\Temp\{9223F066-68A3-42E8-AF38-BDC327560D99}.dll C:\Users\Paula\AppData\Local\Temp\{93E0C630-FA47-446B-BF7E-D1F6EC961C35}.dll C:\Users\Paula\AppData\Local\Temp\{955E6C2C-4D1E-4F0B-9772-6C5BE1B34094}.dll C:\Users\Paula\AppData\Local\Temp\{98FD30A9-12DF-4C63-BFA7-772F8C908C70}.dll C:\Users\Paula\AppData\Local\Temp\{99B5C00D-14D0-4AF4-B668-22C434B4D38E}.dll C:\Users\Paula\AppData\Local\Temp\{99CE45B1-F562-4FCE-92B0-A1AB1A0A5659}.dll C:\Users\Paula\AppData\Local\Temp\{9B4EB6FC-D972-40F2-928A-6613169467AA}.dll C:\Users\Paula\AppData\Local\Temp\{9BBC1604-2507-4512-9D74-FF6BA2062CAB}.dll C:\Users\Paula\AppData\Local\Temp\{9CB01E2A-0074-42E9-9BCD-7240C0B6CB28}.dll C:\Users\Paula\AppData\Local\Temp\{9D5F07E1-DB09-4D88-900F-E9D9D3024053}.dll C:\Users\Paula\AppData\Local\Temp\{9DC4A281-CA55-4137-AC50-CA866A287371}.dll C:\Users\Paula\AppData\Local\Temp\{9EDAA306-625D-4F16-B644-D07F84342748}.dll C:\Users\Paula\AppData\Local\Temp\{A1A30E87-1510-4794-8AB5-7D82410A82E5}.dll C:\Users\Paula\AppData\Local\Temp\{A5FC2BA6-98AE-44C9-9F9A-D4FAC017F697}.dll C:\Users\Paula\AppData\Local\Temp\{A6B429A2-FB35-4A0F-8F7D-E895156FCFD3}.dll C:\Users\Paula\AppData\Local\Temp\{A8E0E6FF-6F7E-4B95-AAD0-A3AF596F2343}.dll C:\Users\Paula\AppData\Local\Temp\{A991EF6A-6B55-44DB-89DB-526AF3844527}.dll C:\Users\Paula\AppData\Local\Temp\{AB10645A-D575-45BC-90C2-522F13025121}.dll C:\Users\Paula\AppData\Local\Temp\{ABF3C4E7-5F8E-4B14-9680-1D72902C513E}.dll C:\Users\Paula\AppData\Local\Temp\{AD7421E3-E7F4-4474-BF42-AB746C457519}.dll C:\Users\Paula\AppData\Local\Temp\{AF46C7F9-F341-4179-AE75-787D14DA8048}.dll C:\Users\Paula\AppData\Local\Temp\{AF53BB31-4887-4F70-8748-184627956CC8}.dll C:\Users\Paula\AppData\Local\Temp\{AFA05801-B7FC-45B6-8377-2042597AC491}.dll C:\Users\Paula\AppData\Local\Temp\{B2906E23-7D1E-46E8-B4F5-85EA24278D36}.dll C:\Users\Paula\AppData\Local\Temp\{BC2CF021-EA2B-403C-8867-CD770BBD8640}.dll C:\Users\Paula\AppData\Local\Temp\{BE07BAA8-9939-4A3A-9F31-913362D7F9FE}.dll C:\Users\Paula\AppData\Local\Temp\{C1CA6970-A6C5-4B9D-9E3F-5E7096BA00FD}.dll C:\Users\Paula\AppData\Local\Temp\{C28D143E-4354-401C-BAC8-842C57F6A362}.dll C:\Users\Paula\AppData\Local\Temp\{C863FEBD-1F33-406C-9A8D-10AACE37F734}.dll C:\Users\Paula\AppData\Local\Temp\{C9DDB64A-007F-4973-81FE-BE081868DBD4}.dll C:\Users\Paula\AppData\Local\Temp\{CBD1244D-5844-47D8-A2B3-74349F1FAA30}.dll C:\Users\Paula\AppData\Local\Temp\{CC4870C4-FADC-4246-A27E-D942D96BC7EE}.dll C:\Users\Paula\AppData\Local\Temp\{CDC4FDA8-CE1D-4435-80FC-E0374438D4C6}.dll C:\Users\Paula\AppData\Local\Temp\{CE958F8D-8749-42F8-A3B8-D6026D7DF93B}.dll C:\Users\Paula\AppData\Local\Temp\{CFD2C098-E110-4B5D-816C-98E0366212B9}.dll C:\Users\Paula\AppData\Local\Temp\{D28EB800-9A26-4571-B44F-EC4AFA1DA2BA}.dll C:\Users\Paula\AppData\Local\Temp\{D54FD015-2FE5-415A-99C6-0FDA50C1E600}.dll C:\Users\Paula\AppData\Local\Temp\{D69BEDC6-AA3A-4FD4-800D-78BBB62AE75C}.dll C:\Users\Paula\AppData\Local\Temp\{D738BE1D-D330-4CCE-9352-C34AA1B429F6}.dll C:\Users\Paula\AppData\Local\Temp\{D826BF3F-01B4-42FD-A9E0-860F2FE9B5E5}.dll C:\Users\Paula\AppData\Local\Temp\{DC04671D-F02F-4B53-9598-5144D211A24E}.dll C:\Users\Paula\AppData\Local\Temp\{E02E4D15-CB13-4B7A-AE0F-61ACAF25762F}.dll C:\Users\Paula\AppData\Local\Temp\{E18EEB69-41BB-4344-8EC1-DB99577455AF}.dll C:\Users\Paula\AppData\Local\Temp\{E1A57194-1AC2-494F-996C-39D9C0A92031}.dll C:\Users\Paula\AppData\Local\Temp\{E1C4EA7A-9EF7-493F-A139-9AC9BBE860F9}.dll C:\Users\Paula\AppData\Local\Temp\{E2179341-8062-448D-9B67-F3839DDD7702}.dll C:\Users\Paula\AppData\Local\Temp\{E2DDB58A-9A86-4AC4-B6D2-040CB9085E75}.dll C:\Users\Paula\AppData\Local\Temp\{E3D5725A-73B0-4F62-8CD6-000F4F7104E6}.dll C:\Users\Paula\AppData\Local\Temp\{E5271488-6C54-476C-958B-BC7B2B3CC566}.dll C:\Users\Paula\AppData\Local\Temp\{E5D5B913-4A67-4A97-B28C-66A5B65129F1}.dll C:\Users\Paula\AppData\Local\Temp\{E83032B3-1952-46C5-96C0-933EBCEADF78}.dll C:\Users\Paula\AppData\Local\Temp\{E908741A-CE8C-45B9-AD2C-ACE182757D19}.dll C:\Users\Paula\AppData\Local\Temp\{E9BC0F39-926C-479E-9357-0B4D1A5BDF80}.dll C:\Users\Paula\AppData\Local\Temp\{EA47190D-EE0B-4FA5-8A15-6ED56B941F25}.dll C:\Users\Paula\AppData\Local\Temp\{EB4BA7F6-D429-4AD8-8BA2-4ADE1E3F19FF}.dll C:\Users\Paula\AppData\Local\Temp\{EBE00146-89FC-4FAA-8C39-6D40C2E67331}.dll C:\Users\Paula\AppData\Local\Temp\{ED001844-1365-4FB4-AF74-F0FC03FBB330}.dll C:\Users\Paula\AppData\Local\Temp\{EE53C60F-5345-49D4-A89C-9865AD44C450}.dll C:\Users\Paula\AppData\Local\Temp\{EE931F1F-93C0-487E-928A-5652C925A233}.dll C:\Users\Paula\AppData\Local\Temp\{F0700CEB-3852-46B3-BCF6-953EDED8A3ED}.dll C:\Users\Paula\AppData\Local\Temp\{F1086FBA-06C3-4870-99C2-9B2F64D8C118}.dll C:\Users\Paula\AppData\Local\Temp\{F147925D-B27C-4313-9775-D8B6865DAF8B}.dll C:\Users\Paula\AppData\Local\Temp\{F235E039-3C69-48A9-BED9-62FDC71AEE49}.dll C:\Users\Paula\AppData\Local\Temp\{F798B4E2-32BB-45BD-A941-165D88CD3DBC}.dll C:\Users\Paula\AppData\Local\Temp\{F7E3D937-C865-4787-B601-DC06E7979126}.dll C:\Users\Paula\AppData\Local\Temp\{F8105374-3E14-4920-B3F8-49DF99626DAE}.dll C:\Users\Paula\AppData\Local\Temp\{F972FFB0-B5C5-44D3-BD3B-3CF8E29CD31F}.dll C:\Users\Paula\AppData\Local\Temp\{F996F857-55C0-4F82-BF59-EFB9EDDDE51D}.dll C:\Users\Paula\AppData\Local\Temp\{FACD7ACA-BB9B-400F-89A6-96BD3FFE6A90}.dll ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2015-08-26 19:34 ==================== Koniec FRST.txt ============================ Odnośnik do komentarza
Rekomendowane odpowiedzi
Jeśli chcesz dodać odpowiedź, zaloguj się lub zarejestruj nowe konto
Jedynie zarejestrowani użytkownicy mogą komentować zawartość tej strony.
Zarejestruj nowe konto
Załóż nowe konto. To bardzo proste!
Zarejestruj sięZaloguj się
Posiadasz już konto? Zaloguj się poniżej.
Zaloguj się