API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 1st, 2016
299
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 53.82 KB | None | 0 0
raw download clone embed print report
  1. Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:29-05-2016 02
  2. Uruchomiony przez Szymon (administrator) SZYMON-KOMPUTER (01-06-2016 20:35:07)
  3. Uruchomiony z C:\Users\Szymon\Desktop\mpc\kurs_mysql1
  4. Załadowane profile: UpdatusUser & Szymon & MSSQLSERVER (Dostępne profile: Jarek & UpdatusUser & Szymon & MSSQLSERVER)
  5. Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska)
  6. Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
  7. Tryb startu: Normal
  8. Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Procesy (filtrowane) =================
  11.  
  12. (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
  13.  
  14. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  15. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
  16. (American Megatrends Inc.) C:\Program Files\AMI\DuOS\AndServMgr.exe
  17. (Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
  18. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
  19. (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
  20. (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
  21. (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.MSSQLSERVER\MSSQL\Binn\sqlservr.exe
  22. () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
  23. () C:\Program Files (x86)\00000000-1464697057-0000-0000-50E549538985\knsh681.tmp
  24. (Sage sp. z o.o.) C:\Program Files (x86)\Sage\HK\HkServer.exe
  25. (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe
  26. (Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe
  27. (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
  28. (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
  29. (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  30. (VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
  31. (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe
  32. (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe
  33. (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
  34. (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
  35. (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
  36. (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
  37. (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
  38. (Firebird Project) C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
  39. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
  40. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
  41. (Gigabyte Technology CO.) C:\Program Files\GIGABYTE\SMART6\Recovery\RPMDaemon.exe
  42. (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.309\SSScheduler.exe
  43. (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe
  44. (VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
  45. (Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
  46. (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
  47. (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
  48. (Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\AlarmClock.exe
  49. (Telegram Messenger LLP) C:\Users\Szymon\AppData\Roaming\Telegram Desktop\Telegram.exe
  50. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  51. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
  52. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
  53. () C:\Users\Szymon\AppData\Local\Temp\nstBDE7.tmp
  54. () C:\Users\Szymon\AppData\Roaming\Jyjmaknug\Jyjmaknug.exe
  55. () C:\Users\Szymon\AppData\Roaming\Jyjmaknug\Gofmosgin.exe
  56. () C:\Users\Szymon\AppData\Roaming\Jyjmaknug\Neojyjau.exe
  57. () C:\Users\Szymon\AppData\Roaming\OvinYoosaft\Buagwuqo.exe
  58. (DotC United Inc) C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe
  59. () C:\Users\Szymon\AppData\Roaming\EbavzEawos\Udysunab.exe
  60. () C:\Users\Szymon\AppData\Roaming\Gopjomn\Gopjomn.exe
  61. () C:\Users\Szymon\AppData\Roaming\Gopjomn\Hosgauguk.exe
  62. () C:\Users\Szymon\AppData\Roaming\Gopjomn\Pakja.exe
  63. (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  64. () C:\Program Files (x86)\CleanBrowser\app\bin\nw.exe
  65. () C:\Program Files (x86)\CleanBrowser\app\bin\nw.exe
  66. () C:\Program Files (x86)\CleanBrowser\app\bin\nw.exe
  67. () C:\Program Files (x86)\CleanBrowser\app\bin\nw.exe
  68. (Andrei Gourianov) C:\ProgramData\tasklist.exe
  69. () C:\Users\Szymon\AppData\Local\Temp\is-75RBF.tmp\AutoTime.exe
  70. () C:\Users\Szymon\AppData\Roaming\cpuminer\cpm.exe
  71. () C:\Users\Szymon\AppData\Local\Temp\nsx6B68.tmp
  72. () C:\ProgramData\msiql.exe
  73.  
  74.  
  75. ==================== Rejestr (filtrowane) ===========================
  76.  
  77. (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
  78.  
  79. HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1806136 2015-08-11] (NVIDIA Corporation)
  80. HKLM\...\Run: [cpuminer] => C:\Users\Szymon\AppData\Roaming\cpuminer\cpm.exe [1417216 2016-04-12] ()
  81. HKLM-x32\...\Run: [STCAgent] => C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe [776064 2011-03-04] (Splashtop Inc.)
  82. HKLM-x32\...\Run: [ZyngaGamesAgent] => C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe [841544 2010-11-15] (Splashtop Inc.)
  83. HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [3005552 2010-12-27] (VIA)
  84. HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
  85. HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
  86. HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [286720 2007-06-29] (Apple Inc.)
  87. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
  88. HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-05-06] (LogMeIn Inc.)
  89. HKLM-x32\...\Run: [Sage Komunikator] => C:\Program Files (x86)\Sage\Komunikator\SageUpdt.exe [246736 2013-01-03] ()
  90. HKLM-x32\...\Run: [svchost.exe -start] => C:\ProgramData\svchost.exe -start
  91. HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe [2552320 2011-03-30] (Gigabyte Technology CO., LTD.)
  92. HKLM\...\Winlogon: [Userinit] wscript C:\Windows\run.vbs,
  93. HKLM-x32\...\Winlogon: [Userinit] wscript C:\Windows\run.vbs, [X]
  94. HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
  95. HKU\S-1-5-21-2155012900-4155186841-2264013318-1002\...\Run: [GG] => C:\Users\Szymon\AppData\Local\GG\Application\gghub.exe [4078144 2015-06-17] (GG Network S.A.)
  96. HKU\S-1-5-21-2155012900-4155186841-2264013318-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation)
  97. HKU\S-1-5-21-2155012900-4155186841-2264013318-1002\...\Run: [AdobeBridge] => [X]
  98. HKU\S-1-5-21-2155012900-4155186841-2264013318-1002\...\Run: [msiql] => C:\ProgramData\msiql.exe [1920000 2016-05-16] ()
  99. HKU\S-1-5-21-2155012900-4155186841-2264013318-1002\...\MountPoints2: {005b5924-af16-11e5-b6e9-806e6f6e6963} - F:\HTC_Sync_Manager_PC.exe
  100. HKU\S-1-5-21-2155012900-4155186841-2264013318-1002\...\MountPoints2: {005b594a-af16-11e5-b6e9-50e549538985} - F:\HTC_Sync_Manager_PC.exe
  101. HKU\S-1-5-21-2155012900-4155186841-2264013318-1002\...\MountPoints2: {96e32697-6c4b-11e5-b09a-50e549538985} - F:\HTC_Sync_Manager_PC.exe
  102. HKU\S-1-5-21-2155012900-4155186841-2264013318-1002\...\MountPoints2: {96e3269d-6c4b-11e5-b09a-50e549538985} - F:\HTC_Sync_Manager_PC.exe
  103. ShellExecuteHooks: - {7AD1C0F5-07A2-40E5-8608-C6EAA0FF362F} - C:\Users\Szymon\AppData\Roaming\Microsoft\Windows\Cookies\x64explibss.dll [421648 2016-05-30] ()
  104. ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)
  105. ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)
  106. ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)
  107. ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.)
  108. Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-04-06]
  109. ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.309\SSScheduler.exe (McAfee, Inc.)
  110.  
  111. ==================== Internet (filtrowane) ====================
  112.  
  113. (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
  114.  
  115. Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
  116. Tcpip\Parameters: [DhcpNameServer] 37.8.214.2 31.11.202.254
  117. Tcpip\..\Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}: [NameServer] 104.197.191.4
  118. Tcpip\..\Interfaces\{9091C734-DBAB-4D8A-9EAF-AA98F695A8B0}: [NameServer] 104.197.191.4
  119. Tcpip\..\Interfaces\{BC0600FE-417E-498C-A414-FC32B32C4907}: [NameServer] 104.197.191.4
  120. Tcpip\..\Interfaces\{C293288A-3495-468A-B39F-F2525D83CDEF}: [NameServer] 104.197.191.4
  121. Tcpip\..\Interfaces\{C293288A-3495-468A-B39F-F2525D83CDEF}: [DhcpNameServer] 192.168.42.129
  122. Tcpip\..\Interfaces\{FD433C75-B6A4-4451-8DC1-83DC41DAA251}: [NameServer] 104.197.191.4
  123. Tcpip\..\Interfaces\{FD433C75-B6A4-4451-8DC1-83DC41DAA251}: [DhcpNameServer] 37.8.214.2 31.11.202.254
  124.  
  125. Internet Explorer:
  126. ==================
  127. HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.globasearch.com/?serie=209&b=3&installkey=d63SsPSw2d3QI2Hrs9PB
  128. HKU\S-1-5-21-2155012900-4155186841-2264013318-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.bing.com/search?q={searchTerms}
  129. HKU\S-1-5-21-2155012900-4155186841-2264013318-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}
  130. HKU\S-1-5-21-2155012900-4155186841-2264013318-1001\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://www.bing.com/search?q={searchTerms}
  131. HKU\S-1-5-21-2155012900-4155186841-2264013318-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.globasearch.com/?serie=209&b=3&installkey=d63SsPSw2d3QI2Hrs9PB
  132. URLSearchHook: HKU\S-1-5-21-2155012900-4155186841-2264013318-1002 - Splashtop Connect SearchHook - {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} - C:\Program Files (x86)\Splashtop\Splashtop Connect IE\AddressBarSearch.dll (Splashtop Inc.)
  133. SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL = hxxp://www.globasearch.com/?serie=209&installkey=d63SsPSw2d3QI2Hrs9PB&b=3&q={searchTerms}
  134. SearchScopes: HKLM-x32 -> ielnksrch URL = hxxp://www.bing.com/search?q={searchTerms}
  135. SearchScopes: HKLM-x32 -> {ielnksrch} URL = hxxp://www.globasearch.com/?serie=209&installkey=d63SsPSw2d3QI2Hrs9PB&b=3&q={searchTerms}
  136. SearchScopes: HKU\S-1-5-21-2155012900-4155186841-2264013318-1001 -> DefaultScope {ielnksrch} URL = hxxp://www.bing.com/search?q={searchTerms}
  137. SearchScopes: HKU\S-1-5-21-2155012900-4155186841-2264013318-1001 -> {ielnksrch} URL = hxxp://www.bing.com/search?q={searchTerms}
  138. SearchScopes: HKU\S-1-5-21-2155012900-4155186841-2264013318-1002 -> DefaultScope {197B6FE3-B2ED-4e4b-BB1B-FC26C01030F9} URL = hxxp://www.globasearch.com/?serie=209&installkey=d63SsPSw2d3QI2Hrs9PB&b=3&q={searchTerms}
  139. SearchScopes: HKU\S-1-5-21-2155012900-4155186841-2264013318-1002 -> {197B6FE3-B2ED-4e4b-BB1B-FC26C01030F9} URL = hxxp://www.globasearch.com/?serie=209&installkey=d63SsPSw2d3QI2Hrs9PB&b=3&q={searchTerms}
  140. SearchScopes: HKU\S-1-5-21-2155012900-4155186841-2264013318-1002 -> {3AB094BE-F9FA-4dd8-AFFC-3E4C9237072B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=SPLBR1&pc=SPLH
  141. SearchScopes: HKU\S-1-5-21-2155012900-4155186841-2264013318-1002 -> {F6DF88E3-9CF2-436d-9632-CA9774D9EFB0} URL = hxxp://www.google.com/cse?cx=partner-pub-3794288947762788%3A7941509802&ie=UTF-8&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A7941509802&q={searchTerms}
  142. BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
  143. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-23] (Oracle Corporation)
  144. BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
  145. BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-23] (Oracle Corporation)
  146. BHO-x32: AcroIEHlprObj Class -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-03-02] ()
  147. BHO-x32: Splashtop Connect VisualBookmark -> {0E5680D1-BF44-4929-94AF-FD30D784AD1D} -> C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STC.dll [2011-03-04] (Splashtop Inc.)
  148. BHO-x32: Ó¦Óñ¦Ň»Ľü°˛×°˛ĺĽţ -> {50F4150A-48B2-417A-BE4C-C83F580FB904} -> C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll [2014-05-30] (腾讯公司)
  149. BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-23] (Oracle Corporation)
  150. BHO-x32: Pomocnik logowania za pomocą konta Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
  151. BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-23] (Oracle Corporation)
  152. Toolbar: HKLM - Smart Recovery 2 - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
  153. StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartpageing.com/?type=sc&ts=1450380643&z=7c6174169a82d13f39badabgfzew8eccfbde5q2z8b&from=cor&uid=ST31000524AS_6VPHERSNXXXX6VPHERSN
  154.  
  155. FireFox:
  156. ========
  157. FF ProfilePath: C:\Users\Szymon\AppData\Roaming\Profiles\fwleurki.default
  158. FF NewTab: hxxp://d391tbweljugwk.cloudfront.net/?ts=AHEqB3MtBXUlAk..&v=20160530&uid=A7FE077B5DF191EAE6AD16023D3766EB&ptid=ism&mode=loadm
  159. FF DefaultSearchEngine: yessearches
  160. FF SelectedSearchEngine: yessearches
  161. FF Homepage: about:home
  162. FF Keyword.URL: hxxp://d391tbweljugwk.cloudfront.net/chrome.php?uid=A7FE077B5DF191EAE6AD16023D3766EB&ptid=ism&ts=AHEqB3MtBXUlAk..&v=20160530&mode=ffexttoolbar&q=
  163. FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-12] ()
  164. FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-23] (Oracle Corporation)
  165. FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-23] (Oracle Corporation)
  166. FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
  167. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-12] ()
  168. FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-23] (Oracle Corporation)
  169. FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-23] (Oracle Corporation)
  170. FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
  171. FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
  172. FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-07] (NVIDIA Corporation)
  173. FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-07] (NVIDIA Corporation)
  174. FF Plugin-x32: @qq.com/npAndroidAssistant -> C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll [2014-05-30] (腾讯公司)
  175. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
  176. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
  177. FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
  178. FF Plugin HKU\S-1-5-21-2155012900-4155186841-2264013318-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Szymon\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-01-22] (Unity Technologies ApS)
  179. FF user.js: detected! => C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\rltpkt3y.default\user.js [2016-06-01]
  180. FF user.js: detected! => C:\Users\Szymon\AppData\Roaming\Profiles\fwleurki.default\user.js [2016-06-01]
  181. FF Extension: Greasemonkey - C:\Users\Szymon\AppData\Roaming\Profiles\fwleurki.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-04-30]
  182. FF Extension: MEGA - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\rltpkt3y.default\Extensions\firefox@mega.co.nz.xpi [2016-05-30]
  183. FF Extension: Lounge Assistant - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\rltpkt3y.default\Extensions\jid1-XA5WEMQzmYdM8A@jetpack.xpi [2016-04-28]
  184. FF Extension: YahooToolsProtected - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\rltpkt3y.default\Extensions\yahooprotected@gmail.com [2015-12-17] [Brak podpisu cyfrowego]
  185. FF Extension: Stylish - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\rltpkt3y.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2016-01-28]
  186. FF Extension: Greasemonkey - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\rltpkt3y.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-04-30]
  187. FF Extension: MEGA - C:\Users\Szymon\AppData\Roaming\Profiles\fwleurki.default\Extensions\firefox@mega.co.nz.xpi [2016-05-30]
  188. FF Extension: Lounge Assistant - C:\Users\Szymon\AppData\Roaming\Profiles\fwleurki.default\Extensions\jid1-XA5WEMQzmYdM8A@jetpack.xpi [2016-04-28]
  189. FF Extension: Stylish - C:\Users\Szymon\AppData\Roaming\Profiles\fwleurki.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2016-01-28]
  190. FF HKLM-x32\...\Firefox\Extensions: [{91c612bf-2a7a-48b8-8c8c-6de28589b7a1}] - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a1}
  191. FF Extension: Splashtop Connect Companion - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a1} [2015-09-07] [Brak podpisu cyfrowego]
  192. FF HKLM-x32\...\Firefox\Extensions: [{91c612bf-2a7a-48b8-8c8c-6de28589b7a0}] - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a0}
  193. FF Extension: Splashtop Connect - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a0} [2015-09-07] [Brak podpisu cyfrowego]
  194. FF HKLM-x32\...\Firefox\Extensions: [{d9284e50-81fc-11da-a72b-0800200c9a66}] - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{d9284e50-81fc-11da-a72b-0800200c9a66}
  195. FF Extension: Yoono - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{d9284e50-81fc-11da-a72b-0800200c9a66} [2015-09-07] [Brak podpisu cyfrowego]
  196. FF HKLM-x32\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\rltpkt3y.default\extensions\deskCutv2@gmail.com => nie znaleziono
  197. FF HKLM-x32\...\Firefox\Extensions: [yahooprotected@gmail.com] - C:\Users\Szymon\AppData\Roaming\Mozilla\Firefox\Profiles\rltpkt3y.default\extensions\yahooprotected@gmail.com
  198.  
  199. Chrome:
  200. =======
  201. CHR Profile: C:\Users\Szymon\AppData\Local\Google\Chrome\User Data\Default
  202.  
  203. ==================== Usługi (filtrowane) ========================
  204.  
  205. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  206.  
  207. R2 AndServMgr; C:\Program Files\AMI\DuOS\AndServMgr.exe [82384 2015-10-30] (American Megatrends Inc.)
  208. S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
  209. R2 Dutijetxe; C:\Users\Szymon\AppData\Roaming\Gopjomn\Gopjomn.exe [170496 2016-06-01] () [Brak podpisu cyfrowego]
  210. R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [153600 2010-09-17] (Firebird Project) [Brak podpisu cyfrowego]
  211. R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [5624320 2010-09-17] (Firebird Project) [Brak podpisu cyfrowego]
  212. S2 GoogleChromeUpService; C:\ProgramData\service.exe [1753600 2016-06-01] () [Brak podpisu cyfrowego]
  213. R2 Guhewof; C:\Users\Szymon\AppData\Roaming\Jyjmaknug\Jyjmaknug.exe [170496 2016-06-01] () [Brak podpisu cyfrowego]
  214. S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego]
  215. R2 Imoub; C:\Users\Szymon\AppData\Roaming\OvinYoosaft\Buagwuqo.exe [121344 2016-06-01] () [Brak podpisu cyfrowego]
  216. R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [419248 2016-05-06] (LogMeIn, Inc.)
  217. S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.309\McCHSvc.exe [293128 2016-03-11] (McAfee, Inc.)
  218. R2 MPCProtectService; C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe [350688 2016-06-01] (DotC United Inc)
  219. R2 MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL12.MSSQLSERVER\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation)
  220. R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [Brak podpisu cyfrowego]
  221. R2 rososewuzbt; C:\Program Files (x86)\00000000-1464697057-0000-0000-50E549538985\knsh681.tmp [229376 2016-05-31] () [Brak podpisu cyfrowego]
  222. R2 SageNetKey; C:\Program Files (x86)\Sage\HK\HkServer.exe [96408 2015-02-03] (Sage sp. z o.o.)
  223. R2 SCBackService; C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe [477000 2010-11-15] (Splashtop Inc.)
  224. R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [114688 2009-10-13] (Gigabyte Technology CO., LTD.) [Brak podpisu cyfrowego]
  225. S4 SQLSERVERAGENT; C:\Program Files\Microsoft SQL Server\MSSQL12.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation)
  226. R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
  227. R2 Tiodne; C:\Users\Szymon\AppData\Roaming\EbavzEawos\Udysunab.exe [121344 2016-06-01] () [Brak podpisu cyfrowego]
  228. R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2010-12-22] (VIA Technologies, Inc.)
  229. R2 WCUService_STC_FF; C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [493384 2011-03-24] (Splashtop Inc.)
  230. R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
  231. S2 AdobeARMservice; "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" [X]
  232. S2 CegitdzegeMppSrv; "C:\Program Files (x86)\Cegitdzege\CegitdzegeMppSrv.exe32" {79740E79-A383-47A7-B513-3DF6563D007F} {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83} [X]
  233. S2 dowidoly; Brak ImagePath
  234. S2 rijufoze; Brak ImagePath
  235. S3 SwitchBoard; "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [X]
  236.  
  237. ===================== Sterowniki (filtrowane) ==========================
  238.  
  239. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  240.  
  241. R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
  242. R1 cherimoya; C:\Windows\System32\drivers\cherimoya.sys [82240 2016-06-01] (Cherimoya Ltd)
  243. R1 DuoVMDrv; C:\Windows\System32\DRIVERS\DuoVMDrv.sys [239536 2015-09-22] (American Megatrends Inc.)
  244. S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
  245. S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2015-09-07] ()
  246. R1 MPCKpt; C:\Windows\System32\DRIVERS\MPCKpt.sys [60136 2016-06-01] (DotC United Inc)
  247. R2 PHYMEM; C:\Windows\system32\ami_ipower.sys [15992 2015-12-17] ()
  248. S4 RsFx0310; C:\Windows\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation)
  249. S3 TSSKX64; C:\Windows\System32\drivers\tsskx64.sys [54904 2016-05-31] (电脑管家)
  250. R4 bsdpf64; \??\C:\Windows\system32\Drivers\bsdpf64.sys [X]
  251. R4 bsdpr64; \??\C:\Windows\system32\Drivers\bsdpr64.sys [X]
  252. S1 QMUdisk; \??\C:\Program Files (x86)\Tencent\QQPCMgr\11.5.17490.219\QMUdisk64.sys [X]
  253. S1 softaal; \??\C:\Program Files (x86)\Tencent\QQPCMgr\11.5.17490.219\softaal64.sys [X]
  254. S1 SRepairDrv; \??\C:\Program Files (x86)\Tencent\QQPCMGR\SRepairDrv [X]
  255. S2 tsnethlpx64; \??\C:\Program Files (x86)\Tencent\QQPCMgr\11.5.17490.219\TsNetHlpX64.sys [X]
  256. S1 wfdrvr_vt_1_10_0_28; system32\drivers\wfdrvr_vt_1_10_0_28.sys [X]
  257.  
  258. ==================== NetSvcs (filtrowane) ===================
  259.  
  260. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  261.  
  262.  
  263. ==================== Jeden miesiąc - utworzone pliki i foldery ========
  264.  
  265. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  266.  
  267. 2016-06-01 20:34 - 2016-06-01 20:35 - 00000000 ____D C:\FRST
  268. 2016-06-01 20:32 - 2016-06-01 20:32 - 00002259 _____ C:\ProgramData\webad.xml
  269. 2016-06-01 20:31 - 2016-05-16 18:19 - 01920000 _____ C:\ProgramData\msiql.exe
  270. 2016-06-01 20:29 - 2016-06-01 20:31 - 00000000 ____D C:\AdwCleaner
  271. 2016-06-01 20:29 - 2016-06-01 20:29 - 00003590 _____ C:\Windows\System32\Tasks\PPTAssistantUpdateTask_Szymon
  272. 2016-06-01 20:29 - 2016-06-01 20:29 - 00003320 _____ C:\Windows\System32\Tasks\PPTAssistantNotifyTask_Szymon
  273. 2016-06-01 20:29 - 2016-06-01 20:29 - 00000604 _____ C:\Windows\Tasks\PPTAssistantUpdateTask_Szymon.job
  274. 2016-06-01 20:29 - 2016-06-01 20:29 - 00000334 _____ C:\Windows\Tasks\PPTAssistantNotifyTask_Szymon.job
  275. 2016-06-01 20:29 - 2016-06-01 20:29 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\pptassist
  276. 2016-06-01 20:29 - 2016-06-01 20:29 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PPT美化大师
  277. 2016-06-01 20:29 - 2016-06-01 20:29 - 00000000 ____D C:\Users\Szymon\AppData\Local\PPTAssist
  278. 2016-06-01 20:29 - 2016-06-01 20:29 - 00000000 ____D C:\ProgramData\kingsoft
  279. 2016-06-01 20:29 - 2016-05-04 10:44 - 04232400 _____ (Kingsoft Corp. Ltd.) C:\ProgramData\OfficeAssist.0172.80.1384.exe
  280. 2016-06-01 20:28 - 2016-02-18 10:10 - 05267952 _____ () C:\ProgramData\ziptool_wc-9015_setup.exe
  281. 2016-06-01 20:24 - 2016-06-01 09:08 - 00343040 _____ C:\ProgramData\RandomDelJiheReg.exe
  282. 2016-06-01 20:22 - 2016-06-01 20:22 - 01753600 _____ C:\ProgramData\service.exe
  283. 2016-06-01 20:22 - 2016-06-01 20:22 - 00001056 _____ C:\Users\Szymon\Desktop\AutoTime.lnk
  284. 2016-06-01 20:22 - 2016-06-01 20:22 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\UPUpdata
  285. 2016-06-01 20:22 - 2016-05-28 16:42 - 05671936 _____ (Andrei Gourianov) C:\ProgramData\tasklist.exe
  286. 2016-06-01 20:22 - 2016-05-16 18:17 - 00114176 _____ C:\ProgramData\hp.exe
  287. 2016-06-01 20:21 - 2016-06-01 20:22 - 00000000 ____D C:\Users\Szymon\AppData\Local\app
  288. 2016-06-01 20:21 - 2016-06-01 20:21 - 00000000 ____D C:\Program Files (x86)\CleanBrowser
  289. 2016-06-01 20:13 - 2016-06-01 20:13 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\Gopjomn
  290. 2016-06-01 20:13 - 2016-06-01 20:13 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\EbavzEawos
  291. 2016-06-01 20:12 - 2016-06-01 20:12 - 00060136 _____ (DotC United Inc) C:\Windows\system32\Drivers\MPCKpt.sys
  292. 2016-06-01 20:11 - 2016-06-01 20:17 - 00000000 ____D C:\Program Files\Apeyggekl
  293. 2016-06-01 20:11 - 2016-06-01 20:13 - 00000000 ____D C:\Users\Szymon\AppData\Local\Tempfolder
  294. 2016-06-01 20:11 - 2016-06-01 20:11 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\OvinYoosaft
  295. 2016-06-01 20:11 - 2016-06-01 20:11 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\Jyjmaknug
  296. 2016-06-01 20:11 - 2016-06-01 20:11 - 00000000 ____D C:\Users\Szymon\AppData\LocalLow\Company
  297. 2016-06-01 20:11 - 2016-06-01 20:11 - 00000000 ____D C:\Users\Szymon\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}
  298. 2016-06-01 20:11 - 2016-06-01 20:11 - 00000000 ____D C:\uninst
  299. 2016-06-01 19:49 - 2016-06-01 20:13 - 00082240 _____ (Cherimoya Ltd) C:\Windows\system32\Drivers\cherimoya.sys
  300. 2016-05-31 21:32 - 2016-05-31 21:32 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\MCorp
  301. 2016-05-31 16:53 - 2016-05-31 20:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯软件
  302. 2016-05-31 14:20 - 2016-05-31 20:31 - 00000000 ____D C:\ProgramData\TXQMPC
  303. 2016-05-31 14:20 - 2016-05-31 14:20 - 00000000 ____D C:\Program Files\Common Files\Tencent
  304. 2016-05-31 14:20 - 2016-05-31 14:17 - 00054904 _____ (电脑管家) C:\Windows\system32\Drivers\TSSKX64.sys
  305. 2016-05-31 14:19 - 2016-05-31 20:37 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
  306. 2016-05-31 14:19 - 2016-05-31 14:17 - 00097400 _____ (电脑管家) C:\Windows\system32\Drivers\TFsFltX64.sys
  307. 2016-05-31 14:18 - 2016-05-31 14:18 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\SYSTEMAX Software Development
  308. 2016-05-31 14:18 - 2016-05-31 14:18 - 00000000 ____D C:\ProgramData\SYSTEMAX Software Development
  309. 2016-05-31 14:18 - 2016-05-31 14:16 - 00001041 _____ C:\Windows\system32\Drivers\etc\hp.bak
  310. 2016-05-31 14:17 - 2016-06-01 20:11 - 00000000 ____D C:\Program Files (x86)\00000000-1464697057-0000-0000-50E549538985
  311. 2016-05-31 14:17 - 2016-05-31 20:37 - 00000000 ____D C:\ProgramData\Tencent
  312. 2016-05-31 14:17 - 2016-05-31 14:43 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\Tencent
  313. 2016-05-31 14:17 - 2016-05-31 14:17 - 00000000 ____D C:\Program Files (x86)\Tencent
  314. 2016-05-31 14:16 - 2016-06-01 20:23 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\cpuminer
  315. 2016-05-31 14:16 - 2016-06-01 20:22 - 00293320 _____ (深圳市迅雷网络技术有限公司) C:\ProgramData\xldl.dll
  316. 2016-05-31 14:16 - 2016-06-01 20:22 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\gplyra
  317. 2016-05-31 14:16 - 2016-06-01 20:13 - 00000000 ____D C:\Program Files (x86)\MPC Cleaner
  318. 2016-05-31 14:16 - 2016-05-31 14:16 - 00000000 ____D C:\Users\Public\Thunder Network
  319. 2016-05-31 14:16 - 2016-05-31 14:16 - 00000000 ____D C:\ProgramData\Thunder Network
  320. 2016-05-31 14:16 - 2016-05-31 14:16 - 00000000 ____D C:\ProgramData\download
  321. 2016-05-31 14:15 - 2016-05-31 14:30 - 00000000 ____D C:\PaintToolSAI
  322. 2016-05-31 14:15 - 2016-05-31 14:15 - 00000000 _____ C:\Windows\SysWOW64\track
  323. 2016-05-31 14:14 - 2016-05-31 14:17 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\systweak
  324. 2016-05-31 14:14 - 2016-05-31 14:14 - 00009012 _____ C:\Windows\System32\Tasks\Cegitdzege Mapper
  325. 2016-05-31 14:14 - 2016-03-17 13:54 - 00019888 _____ () C:\Windows\system32\roboot64.exe
  326. 2016-05-31 14:13 - 2016-05-31 14:25 - 00000000 ____D C:\Program Files (x86)\Plewught
  327. 2016-05-31 14:13 - 2016-05-31 14:14 - 00000000 ____D C:\Program Files (x86)\Cegitdzege
  328. 2016-05-31 14:13 - 2016-05-31 14:14 - 00000000 ____D C:\Program Files (x86)\Arerugh
  329. 2016-05-31 14:13 - 2016-05-31 14:13 - 00000000 ____D C:\Users\Szymon\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
  330. 2016-05-30 22:22 - 2016-05-30 22:22 - 00003346 _____ C:\Windows\System32\Tasks\PaintTool SAI
  331. 2016-05-29 15:52 - 2016-05-29 15:52 - 00000000 ____D C:\Users\Szymon\AppData\LocalLow\Smartly Dressed Games
  332. 2016-05-21 20:27 - 2016-05-21 20:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
  333. 2016-05-21 20:23 - 2016-05-23 17:33 - 00000000 ____D C:\xampp
  334. 2016-05-19 19:43 - 2016-05-19 19:43 - 00001738 _____ C:\Users\Szymon\Desktop\GG dysk (szymo02@interia.pl).lnk
  335. 2016-05-19 19:43 - 2016-05-19 19:43 - 00000000 ___SD C:\Users\Szymon\GG dysk (szymo02@interia.pl)
  336. 2016-05-19 19:14 - 2016-05-19 19:15 - 00000000 ____D C:\Users\Szymon\Desktop\do przeniesina
  337. 2016-05-17 17:08 - 2016-05-17 17:08 - 00071400 _____ C:\Users\Szymon\Downloads\cheap_diagonal_fabric.zip
  338. 2016-05-15 20:33 - 2016-04-06 17:27 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
  339. 2016-05-15 19:29 - 2016-05-15 19:29 - 00000490 _____ C:\Users\Jarek\Desktop\lista.csv
  340. 2016-05-15 19:23 - 2016-05-15 19:23 - 00000081 _____ C:\Windows\lacznik.INI
  341. 2016-05-15 19:13 - 2016-05-15 19:17 - 00000000 ____D C:\Users\Jarek\Desktop\111
  342. 2016-05-15 19:06 - 2016-05-15 19:06 - 00002240 _____ C:\Users\Public\Desktop\WF-Analizy.lnk
  343. 2016-05-15 19:05 - 2016-05-15 19:08 - 00000000 ____D C:\Users\Jarek\AppData\Roaming\WA-PRO
  344. 2016-05-15 19:05 - 2016-05-15 19:08 - 00000000 ____D C:\ProgramData\WA-PRO
  345. 2016-05-15 19:05 - 2016-05-15 19:06 - 00001130 _____ C:\Users\Public\Desktop\Asseco WAPRO Start.lnk
  346. 2016-05-15 19:05 - 2016-05-15 19:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WA-PRO
  347. 2016-05-15 19:05 - 2016-05-15 19:05 - 00002011 _____ C:\Users\Public\Desktop\WF-FaKir dla Windows.lnk
  348. 2016-05-15 19:05 - 2016-05-15 19:05 - 00000000 ____D C:\Program Files (x86)\WA-PRO
  349. 2016-05-15 19:02 - 2016-05-22 12:44 - 00000000 ____D C:\Users\MSSQLSERVER
  350. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000020 ___SH C:\Users\MSSQLSERVER\ntuser.ini
  351. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000000 _SHDL C:\Users\MSSQLSERVER\Ustawienia lokalne
  352. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000000 _SHDL C:\Users\MSSQLSERVER\Szablony
  353. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000000 _SHDL C:\Users\MSSQLSERVER\Moje dokumenty
  354. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000000 _SHDL C:\Users\MSSQLSERVER\Menu Start
  355. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000000 _SHDL C:\Users\MSSQLSERVER\Documents\Moje wideo
  356. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000000 _SHDL C:\Users\MSSQLSERVER\Documents\Moje obrazy
  357. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000000 _SHDL C:\Users\MSSQLSERVER\Documents\Moja muzyka
  358. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000000 _SHDL C:\Users\MSSQLSERVER\Dane aplikacji
  359. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000000 _SHDL C:\Users\MSSQLSERVER\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
  360. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000000 _SHDL C:\Users\MSSQLSERVER\AppData\Local\Historia
  361. 2016-05-15 19:02 - 2016-05-15 19:02 - 00000000 _SHDL C:\Users\MSSQLSERVER\AppData\Local\Dane aplikacji
  362. 2016-05-15 19:02 - 2011-04-12 15:32 - 00000000 ____D C:\Users\MSSQLSERVER\AppData\Roaming\Media Center Programs
  363. 2016-05-15 19:01 - 2014-02-21 06:27 - 00172224 _____ (Microsoft Corporation) C:\Windows\system32\hadrres.dll
  364. 2016-05-15 19:01 - 2014-02-21 06:27 - 00081088 _____ (Microsoft Corporation) C:\Windows\system32\fssres.dll
  365. 2016-05-15 19:01 - 2014-02-21 06:20 - 00103104 _____ (Microsoft Corporation) C:\Windows\system32\perf-MSSQLSERVER-sqlctr12.1.4100.1.dll
  366. 2016-05-15 19:01 - 2014-02-21 06:20 - 00088768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf-MSSQLSERVER-sqlctr12.1.4100.1.dll
  367. 2016-05-15 19:01 - 2014-02-21 06:20 - 00056000 _____ (Microsoft Corporation) C:\Windows\system32\perf-MSSQL12.MSSQLSERVER-sqlagtctr.dll
  368. 2016-05-15 19:01 - 2014-02-21 06:20 - 00046784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perf-MSSQL12.MSSQLSERVER-sqlagtctr.dll
  369. 2016-05-15 18:59 - 2016-05-15 18:59 - 00000000 ____D C:\Windows\system32\RsFx
  370. 2016-05-15 18:59 - 2016-05-15 18:59 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 10.0
  371. 2016-05-15 18:58 - 2016-05-15 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
  372. 2016-05-15 18:54 - 2016-05-15 19:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2014
  373. 2016-05-15 18:45 - 2016-05-15 18:56 - 00000000 ____D C:\Windows\SysWOW64\1033
  374. 2016-05-15 18:45 - 2016-05-15 18:56 - 00000000 ____D C:\Windows\system32\1033
  375. 2016-05-15 18:45 - 2016-05-15 18:45 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
  376. 2016-05-15 18:45 - 2016-05-15 18:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
  377. 2016-05-15 18:45 - 2016-05-15 18:45 - 00000000 ____D C:\Program Files (x86)\Business Objects
  378. 2016-05-15 18:44 - 2016-05-15 19:00 - 00000000 ____D C:\Program Files\Microsoft SQL Server
  379. 2016-05-15 18:44 - 2016-05-15 18:57 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
  380. 2016-05-15 18:28 - 2001-07-30 18:40 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
  381. 2016-05-15 18:27 - 2016-05-15 18:27 - 00000582 _____ C:\Users\Public\Desktop\Sage Symfonia Finanse i Księgowość.lnk
  382. 2016-05-15 18:27 - 2016-05-15 18:27 - 00000000 ____D C:\ProgramData\Symfonia
  383. 2016-05-15 18:26 - 2016-05-15 19:05 - 00000000 ____D C:\Users\Jarek\Downloads\Pobrane AssecoWAPRO
  384. 2016-05-15 18:26 - 2016-05-15 18:26 - 00637936 _____ (Asseco Business Solutions) C:\Users\Jarek\Desktop\PobieranieWAPRO.exe
  385. 2016-05-15 18:26 - 2016-05-15 18:26 - 00000000 ____D C:\Windows\Symfonia
  386. 2016-05-15 18:24 - 2016-05-15 19:25 - 00000000 ____D C:\Symfonia
  387. 2016-05-15 18:11 - 2016-05-15 18:11 - 00000000 ____D C:\Users\Jarek\AppData\Roaming\LibreOffice
  388. 2016-05-15 18:10 - 2016-05-15 18:10 - 00001476 _____ C:\Users\Public\Desktop\LibreOffice 5.1.lnk
  389. 2016-05-15 18:10 - 2016-05-15 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.1
  390. 2016-05-15 18:09 - 2016-05-15 18:10 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
  391. 2016-05-15 18:05 - 2016-05-15 18:07 - 221622272 _____ C:\Users\Jarek\Desktop\LibreOffice_5.1.3_Win_x86.msi
  392. 2016-05-15 18:04 - 2016-05-15 18:04 - 00000000 ____D C:\Users\Jarek\AppData\Local\Google
  393. 2016-05-15 15:21 - 2016-05-15 15:21 - 00002277 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  394. 2016-05-15 15:21 - 2016-05-15 15:21 - 00002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  395. 2016-05-15 15:13 - 2016-05-16 20:52 - 00000000 ____D C:\Users\Szymon\Desktop\PLIKI_SFGAME_ZEUSXP[6.1]
  396. 2016-05-15 15:13 - 2016-05-15 15:13 - 00000000 ____D C:\Users\Szymon\Desktop\instal
  397. 2016-05-15 15:13 - 2016-05-15 15:13 - 00000000 ____D C:\Users\Szymon\Desktop\img
  398. 2016-05-15 15:13 - 2016-01-06 15:18 - 00005131 _____ C:\Users\Szymon\Desktop\index.php
  399. 2016-05-15 15:13 - 2016-01-06 15:18 - 00000000 _____ C:\Users\Szymon\Desktop\connect.php
  400. 2016-05-15 15:13 - 2016-01-06 15:18 - 00000000 _____ C:\Users\Szymon\Desktop\client_cfg.php
  401. 2016-05-15 15:13 - 2015-12-20 00:45 - 00529071 _____ C:\Users\Szymon\Desktop\request.php
  402. 2016-05-15 15:13 - 2015-08-20 14:46 - 00000155 _____ C:\Users\Szymon\Desktop\crossdomain.xml
  403. 2016-05-15 15:11 - 2016-05-15 15:11 - 06513888 _____ (Tim Kosse) C:\Users\Szymon\Downloads\FileZilla_3.17.0.1_win64-setup.exe
  404. 2016-05-15 15:06 - 2016-05-08 20:15 - 00000000 ____D C:\Users\Szymon\Desktop\itemshop
  405. 2016-05-15 15:05 - 2016-05-15 15:05 - 01190945 _____ C:\Users\Szymon\Desktop\itemshop.rar
  406. 2016-05-14 21:46 - 2016-05-14 21:46 - 00096141 _____ C:\Users\Szymon\Desktop\sf2.0.zip
  407. 2016-05-14 21:29 - 2016-05-14 21:29 - 03731141 _____ C:\Users\Szymon\Desktop\PLIKI_SFGAME_ZEUSXP[6.1].rar
  408. 2016-05-14 21:22 - 2016-05-14 21:22 - 07303720 _____ C:\Users\Szymon\Desktop\pliki by blaze.rar
  409. 2016-05-14 21:01 - 2016-05-14 21:01 - 03516282 _____ C:\Users\Szymon\Desktop\Pliki serwerowe by Gilu [1.0.3].rar
  410. 2016-05-14 20:57 - 2016-05-14 20:57 - 00000590 _____ C:\Users\Szymon\Desktop\WebServ.lnk
  411. 2016-05-14 20:57 - 2016-05-14 20:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebServ
  412. 2016-05-14 20:57 - 2004-06-16 14:39 - 00000007 _____ C:\Windows\my.ini
  413. 2016-05-14 20:57 - 2004-06-16 14:39 - 00000005 _____ C:\Windows\php.ini
  414. 2016-05-14 20:56 - 2016-05-14 20:56 - 34934739 _____ (WebsSrv.PL ) C:\Users\Szymon\WebServ-2.1.exe
  415. 2016-05-12 21:07 - 2016-05-12 21:07 - 05995712 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
  416. 2016-05-11 15:55 - 2016-05-11 15:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
  417. 2016-05-11 15:55 - 2016-05-11 15:55 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
  418. 2016-05-04 21:26 - 2016-05-05 20:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
  419. 2016-05-03 22:06 - 2016-05-03 22:06 - 00000070 _____ C:\Users\Szymon\Documents\link.txt
  420.  
  421. ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
  422.  
  423. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  424.  
  425. 2016-06-01 20:17 - 2016-04-22 20:40 - 00000000 ____D C:\Users\Jarek\AppData\Roaming\.minecraft
  426. 2016-06-01 20:14 - 2015-09-09 20:42 - 00000390 _____ C:\Windows\Tasks\update-S-1-5-21-2155012900-4155186841-2264013318-1002.job
  427. 2016-06-01 20:07 - 2015-09-16 15:58 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
  428. 2016-06-01 19:59 - 2016-02-18 18:48 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
  429. 2016-06-01 19:24 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  430. 2016-06-01 19:24 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  431. 2016-06-01 19:11 - 2016-03-26 15:40 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\Telegram Desktop
  432. 2016-06-01 19:10 - 2015-09-08 15:05 - 00000000 ____D C:\Program Files (x86)\Steam
  433. 2016-06-01 19:10 - 2015-09-07 20:06 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\GG
  434. 2016-06-01 19:09 - 2016-02-18 18:48 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
  435. 2016-06-01 19:09 - 2016-02-02 23:07 - 00000000 ____D C:\Users\Szymon\AppData\Local\LogMeIn Hamachi
  436. 2016-06-01 19:09 - 2015-09-07 17:59 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
  437. 2016-06-01 19:08 - 2015-09-07 18:05 - 00000000 ____D C:\ProgramData\NVIDIA
  438. 2016-06-01 19:08 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
  439. 2016-05-31 21:44 - 2015-09-09 20:42 - 00000390 _____ C:\Windows\Tasks\update-sys.job
  440. 2016-05-31 20:30 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
  441. 2016-05-31 20:28 - 2009-07-14 06:45 - 04986376 _____ C:\Windows\system32\FNTCACHE.DAT
  442. 2016-05-31 15:00 - 2015-09-18 18:34 - 139319312 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
  443. 2016-05-31 14:28 - 2015-09-08 17:16 - 00082784 _____ C:\Users\Szymon\AppData\Local\GDIPFONTCACHEV1.DAT
  444. 2016-05-31 14:25 - 2016-02-03 11:48 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\FileZilla
  445. 2016-05-31 14:20 - 2015-09-07 19:54 - 00000000 ____D C:\Users\Szymon\AppData\Local\VirtualStore
  446. 2016-05-29 22:08 - 2016-03-26 22:02 - 00000000 ____D C:\Users\Szymon\Downloads\Telegram Desktop
  447. 2016-05-29 15:39 - 2016-02-18 18:48 - 00000000 ____D C:\Program Files (x86)\Google
  448. 2016-05-29 15:37 - 2015-12-30 19:04 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\Dev-Cpp
  449. 2016-05-29 15:37 - 2015-12-30 19:04 - 00000000 ____D C:\Dev-Cpp
  450. 2016-05-29 15:36 - 2015-09-07 19:54 - 00000000 ____D C:\Users\Szymon
  451. 2016-05-29 15:25 - 2016-01-30 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
  452. 2016-05-29 15:25 - 2016-01-30 19:16 - 00000000 ____D C:\Program Files (x86)\Sony
  453. 2016-05-22 12:48 - 2015-09-07 18:05 - 00000000 ____D C:\Users\UpdatusUser
  454. 2016-05-21 22:34 - 2015-10-19 20:44 - 00000000 ____D C:\Users\Szymon\AppData\Roaming\Adobe
  455. 2016-05-21 22:04 - 2015-09-10 20:23 - 00000132 _____ C:\Users\Szymon\AppData\Roaming\Preferencje formatu PNG CS6 firmy Adobe
  456. 2016-05-21 20:27 - 2015-10-26 10:31 - 00000000 ____D C:\ProgramData\Package Cache
  457. 2016-05-18 18:41 - 2015-10-03 14:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
  458. 2016-05-16 21:35 - 2011-04-12 15:32 - 00000000 ____D C:\Program Files\Windows Journal
  459. 2016-05-16 19:16 - 2015-09-17 17:18 - 00000000 ____D C:\Users\Szymon\Desktop\mpc
  460. 2016-05-15 19:29 - 2009-07-14 04:34 - 00000435 _____ C:\Windows\win.ini
  461. 2016-05-15 19:08 - 2016-02-03 12:27 - 00000000 ____D C:\Users\Jarek\AppData\Local\LogMeIn Hamachi
  462. 2016-05-15 19:02 - 2011-04-12 15:21 - 00839196 _____ C:\Windows\system32\perfh015.dat
  463. 2016-05-15 19:02 - 2011-04-12 15:21 - 00194830 _____ C:\Windows\system32\perfc015.dat
  464. 2016-05-15 19:02 - 2009-07-14 07:13 - 01969964 _____ C:\Windows\system32\PerfStringBackup.INI
  465. 2016-05-15 19:02 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
  466. 2016-05-15 18:59 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
  467. 2016-05-15 18:49 - 2015-09-07 18:06 - 00081968 _____ C:\Users\Jarek\AppData\Local\GDIPFONTCACHEV1.DAT
  468. 2016-05-15 18:46 - 2009-07-14 04:34 - 00017486 _____ C:\Windows\system32\Drivers\etc\services
  469. 2016-05-15 18:28 - 2015-10-26 10:37 - 00000000 ____D C:\Users\Jarek\AppData\Roaming\Sage
  470. 2016-05-15 18:28 - 2015-10-26 10:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sage
  471. 2016-05-15 18:27 - 2015-10-26 10:32 - 00002055 ____R C:\Windows\BTI.INI
  472. 2016-05-15 18:27 - 2015-10-26 10:32 - 00000000 ____D C:\Program Files (x86)\Sage
  473. 2016-05-15 18:14 - 2015-11-01 18:24 - 00000000 ____D C:\Users\Jarek\Desktop\iza
  474. 2016-05-15 15:21 - 2016-02-18 18:48 - 00000000 ____D C:\Users\Szymon\AppData\Local\Google
  475. 2016-05-12 21:07 - 2015-09-16 15:58 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
  476. 2016-05-12 21:07 - 2015-09-16 15:58 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
  477. 2016-05-12 21:07 - 2015-09-16 15:58 - 00003868 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
  478. 2016-05-11 16:54 - 2016-02-18 18:48 - 00004044 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
  479. 2016-05-11 16:54 - 2016-02-18 18:48 - 00003792 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
  480. 2016-05-08 18:23 - 2016-02-21 17:18 - 00000000 ____D C:\Users\Szymon\AppData\Local\CrashDumps
  481. 2016-05-08 14:00 - 2015-11-08 15:51 - 00000000 ____D C:\Users\Szymon\.oracle_jre_usage
  482. 2016-05-06 16:29 - 2016-03-24 16:37 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
  483. 2016-05-05 20:58 - 2015-09-07 19:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
  484. 2016-05-05 20:58 - 2009-07-14 07:08 - 00032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT
  485.  
  486. ==================== Pliki w katalogu głównym wybranych folderów =======
  487.  
  488. 2015-09-10 20:23 - 2016-05-21 22:04 - 0000132 _____ () C:\Users\Szymon\AppData\Roaming\Preferencje formatu PNG CS6 firmy Adobe
  489. 2016-02-03 13:23 - 2016-02-07 18:12 - 0000600 _____ () C:\Users\Szymon\AppData\Local\PUTTY.RND
  490. 2015-09-09 20:42 - 2015-09-09 20:42 - 0000003 _____ () C:\Users\Szymon\AppData\Local\updater.log
  491. 2015-09-09 20:42 - 2015-10-03 20:52 - 0000424 _____ () C:\Users\Szymon\AppData\Local\UserProducts.xml
  492. 2016-06-01 20:22 - 2016-05-16 18:17 - 0114176 _____ () C:\ProgramData\hp.exe
  493. 2016-06-01 20:31 - 2016-05-16 18:19 - 1920000 _____ () C:\ProgramData\msiql.exe
  494. 2016-06-01 20:29 - 2016-05-04 10:44 - 4232400 _____ (Kingsoft Corp. Ltd.) C:\ProgramData\OfficeAssist.0172.80.1384.exe
  495. 2016-06-01 20:24 - 2016-06-01 09:08 - 0343040 _____ () C:\ProgramData\RandomDelJiheReg.exe
  496. 2016-06-01 20:22 - 2016-06-01 20:22 - 1753600 _____ () C:\ProgramData\service.exe
  497. 2016-06-01 20:22 - 2016-05-28 16:42 - 5671936 _____ (Andrei Gourianov) C:\ProgramData\tasklist.exe
  498. 2016-06-01 20:32 - 2016-06-01 20:32 - 0002259 _____ () C:\ProgramData\webad.xml
  499. 2016-05-31 14:16 - 2016-06-01 20:22 - 0293320 _____ (深圳市迅雷网络技术有限公司) C:\ProgramData\xldl.dll
  500. 2016-06-01 20:28 - 2016-02-18 10:10 - 5267952 _____ () C:\ProgramData\ziptool_wc-9015_setup.exe
  501.  
  502. Pliki do przeniesienia lub usunięcia:
  503. ====================
  504. C:\ProgramData\hp.exe
  505. C:\ProgramData\msiql.exe
  506. C:\ProgramData\OfficeAssist.0172.80.1384.exe
  507. C:\ProgramData\RandomDelJiheReg.exe
  508. C:\ProgramData\service.exe
  509. C:\ProgramData\tasklist.exe
  510. C:\ProgramData\xldl.dll
  511. C:\ProgramData\ziptool_wc-9015_setup.exe
  512. C:\Users\Szymon\WebServ-2.1.exe
  513.  
  514.  
  515. Niektóre pliki w TEMP:
  516. ====================
  517. C:\Users\Jarek\AppData\Local\Temp\i4jdel0.exe
  518. C:\Users\Jarek\AppData\Local\Temp\jre-8u91-windows-au.exe
  519. C:\Users\Szymon\AppData\Local\Temp\13C1.tmp.exe
  520. C:\Users\Szymon\AppData\Local\Temp\23333.exe
  521. C:\Users\Szymon\AppData\Local\Temp\2414.tmp.exe
  522. C:\Users\Szymon\AppData\Local\Temp\2857.tmp.exe
  523. C:\Users\Szymon\AppData\Local\Temp\29DA.tmp.exe
  524. C:\Users\Szymon\AppData\Local\Temp\2B69.tmp.exe
  525. C:\Users\Szymon\AppData\Local\Temp\321B.tmp.exe
  526. C:\Users\Szymon\AppData\Local\Temp\56EC.tmp.exe
  527. C:\Users\Szymon\AppData\Local\Temp\60DA.tmp.exe
  528. C:\Users\Szymon\AppData\Local\Temp\692E.tmp.exe
  529. C:\Users\Szymon\AppData\Local\Temp\6AB8.tmp.exe
  530. C:\Users\Szymon\AppData\Local\Temp\7496.tmp.exe
  531. C:\Users\Szymon\AppData\Local\Temp\7768.tmp.exe
  532. C:\Users\Szymon\AppData\Local\Temp\7889.tmp.exe
  533. C:\Users\Szymon\AppData\Local\Temp\7AAE.tmp.exe
  534. C:\Users\Szymon\AppData\Local\Temp\7E65.tmp.exe
  535. C:\Users\Szymon\AppData\Local\Temp\8CA5.tmp.exe
  536. C:\Users\Szymon\AppData\Local\Temp\A1B5.tmp.exe
  537. C:\Users\Szymon\AppData\Local\Temp\A259.tmp.exe
  538. C:\Users\Szymon\AppData\Local\Temp\AB93.tmp.exe
  539. C:\Users\Szymon\AppData\Local\Temp\BAD7.tmp.exe
  540. C:\Users\Szymon\AppData\Local\Temp\BDB4.tmp.exe
  541. C:\Users\Szymon\AppData\Local\Temp\D38E.tmp.exe
  542. C:\Users\Szymon\AppData\Local\Temp\DE7D.tmp.exe
  543. C:\Users\Szymon\AppData\Local\Temp\E041.tmp.exe
  544. C:\Users\Szymon\AppData\Local\Temp\E3DF.tmp.exe
  545. C:\Users\Szymon\AppData\Local\Temp\E74C.tmp.exe
  546. C:\Users\Szymon\AppData\Local\Temp\E9A7.tmp.exe
  547. C:\Users\Szymon\AppData\Local\Temp\F0DC.tmp.exe
  548. C:\Users\Szymon\AppData\Local\Temp\F28.tmp.exe
  549. C:\Users\Szymon\AppData\Local\Temp\FABA.tmp.exe
  550. C:\Users\Szymon\AppData\Local\Temp\FB11.tmp.exe
  551. C:\Users\Szymon\AppData\Local\Temp\FCC7.tmp.exe
  552. C:\Users\Szymon\AppData\Local\Temp\fsd5D0D.exe
  553. C:\Users\Szymon\AppData\Local\Temp\ggdrive-menu.exe
  554. C:\Users\Szymon\AppData\Local\Temp\ggdrive-overlay.exe
  555. C:\Users\Szymon\AppData\Local\Temp\installstats.exe
  556. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-Bukkit-1.7.2-R0.3-b3020jnks.dll
  557. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-1289908071705091340.dll
  558. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-1478712864575937329.dll
  559. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-1715568543195785214.dll
  560. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-2065386115846719385.dll
  561. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-2304951200885895980.dll
  562. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-2352038795609490930.dll
  563. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-292012664243645996.dll
  564. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-3486858337994520706.dll
  565. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-5656454696629377901.dll
  566. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-5916019327221258605.dll
  567. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-5958497737636368560.dll
  568. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-5973477337891661635.dll
  569. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-6792076785189270479.dll
  570. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-698214329249204529.dll
  571. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-7095820095433612767.dll
  572. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-7559642882565971017.dll
  573. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-8489158378926436300.dll
  574. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-8657465433140185700.dll
  575. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-8839504466871924298.dll
  576. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-9145237348068829000.dll
  577. C:\Users\Szymon\AppData\Local\Temp\jansi-64-git-PaperSpigot-978982e-12698ea-9149207136030093076.dll
  578. C:\Users\Szymon\AppData\Local\Temp\jline_git-Bukkit-1_2_5-R1_0-b2149jnks.dll
  579. C:\Users\Szymon\AppData\Local\Temp\jline_git-Bukkit-1_2_5-R1_3-4-gd219ca1-b2182jnks.dll
  580. C:\Users\Szymon\AppData\Local\Temp\nshD51B.tmp.exe
  581. C:\Users\Szymon\AppData\Local\Temp\qqpcmgr_v11.5.17490.219_45533_Silence.exe
  582. C:\Users\Szymon\AppData\Local\Temp\setup_758.exe
  583. C:\Users\Szymon\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll
  584. C:\Users\Szymon\AppData\Local\Temp\ui.dll
  585. C:\Users\Szymon\AppData\Local\Temp\Uninstall.exe
  586. C:\Users\Szymon\AppData\Local\Temp\xmlUpdater.exe
  587.  
  588.  
  589. ==================== Bamital & volsnap =================
  590.  
  591. (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
  592.  
  593. C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
  594. C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
  595. C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo
  596. C:\Windows\explorer.exe => Plik podpisany cyfrowo
  597. C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
  598. C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
  599. C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
  600. C:\Windows\system32\services.exe => Plik podpisany cyfrowo
  601. C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
  602. C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo
  603. C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
  604. C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
  605. C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
  606. C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
  607. C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
  608. C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
  609.  
  610.  
  611. LastRegBack: 2016-05-30 21:46
  612.  
  613. ==================== Koniec FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!