wklejto.pl

Dodane przez: ~Anonim (2014-09-16 11:44) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-09-2014
Ran by Witek (administrator) on WITEK-KOMPUTER on 16-09-2014 11:39:23
Running from C:\Users\Witek\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 9
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Easy Support Center\SamoyedAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Samsung Electronics CO., LTD.) C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12460136 2012-03-29] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1020064 2012-02-13] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800416 2012-02-13] (Atheros Commnucations)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2816816 2012-03-12] (ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)
HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe [87336 2010-09-20] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ConvertAd] => C:\Users\Witek\AppData\Local\ConvertAd\ConvertAd.exe
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [735936 2013-10-15] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4209209786-2917733824-1122995674-1001\...\Run: [Steam] => C:\Program Files (x86)\Valve\Steam\steam.exe [1937600 2014-08-14] (Valve Corporation)
HKU\S-1-5-21-4209209786-2917733824-1122995674-1001\...\Run: [Tiny download manager] => "C:\Users\Witek\AppData\Local\DM\TinyDM.exe" /M
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [260928 2012-02-25] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [215360 2012-02-25] (NVIDIA Corporation)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe http://start.qone8.com/?type=sc&ts=1382874783&from=cor&uid=HitachiXHTS547550A9E384_J2170052D28M5CD28M5CX
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://start.qone8.com/web/?type=ds&ts=1382874783&from=cor&uid=HitachiXHTS547550A9E384_J2170052D28M5CD28M5CX&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://start.qone8.com/web/?type=ds&ts=1382874783&from=cor&uid=HitachiXHTS547550A9E384_J2170052D28M5CD28M5CX&q={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 217.113.224.36 217.113.224.134
Tcpip\..\Interfaces\{B8B7CF47-DE99-48A0-85A8-F8A9667BEEAD}: [NameServer] 194.204.159.1,194.204.152.34
 
FireFox:
========
FF ProfilePath: C:\Users\Witek\AppData\Roaming\Mozilla\Firefox\Profiles\gup2b832.default
FF Homepage: google.pl
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin-x32: @ganymede/DARTS,version=1.0 -> C:\Program Files (x86)\Ganymede\Plugins\DARTS\NPDARTS.dll (Ganymede Technologies)
FF Plugin-x32: @ganymede/GanymedeNetPlugin,version=1.0 -> C:\Program Files (x86)\Ganymede\Plugins\npganymedenet.dll ( )
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Witek\AppData\Roaming\Mozilla\Firefox\Profiles\gup2b832.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPDARTS.dll (Ganymede Technologies)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npganymedenet.dll ( )
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
 
Chrome: 
=======
CHR HomePage: Default -> D975EC715198802E685FC851EA68766EDE04FF178048B0D8681DA5BD3BF54CF0
CHR DefaultSearchKeyword: Default -> C37BB1E391E2C7577F54847A5556F298EF83DBDB122E74E23102877A76BB6178
CHR DefaultSearchProvider: Default -> 06EC12F73E6CE3FC2A3AD2F2F016D08BF9DC5210D12D2E9722787720A3647C89
CHR DefaultSearchURL: Default -> 5B05B5D4D64BA2215A8613BA69983AEA414C0CEC94513C1345D15203046C947E
CHR Profile: C:\Users\Witek\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentacje Google) - C:\Users\Witek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-08-31]
CHR Extension: (Dokumenty Google) - C:\Users\Witek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-31]
CHR Extension: (Dysk Google) - C:\Users\Witek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-31]
CHR Extension: (YouTube) - C:\Users\Witek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-31]
CHR Extension: (Szukaj w Google) - C:\Users\Witek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-31]
CHR Extension: (Arkusze Google) - C:\Users\Witek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-08-31]
CHR Extension: (Google Wallet) - C:\Users\Witek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-31]
CHR Extension: (Gmail) - C:\Users\Witek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-31]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 DokanMounter; C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [14848 2011-01-10] () [File not signed]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-08] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-08] (Intel Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2009-12-01] () [File not signed]
R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3018800 2013-10-21] (Samsung Electronics CO., LTD.)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2012-02-13] (Atheros) [File not signed]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 Dokan; C:\windows\system32\drivers\dokan.sys [120408 2011-01-10] (Windows (R) Win 7 DDK provider)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-16 11:39 - 2014-09-16 11:40 - 00016056 _____ () C:\Users\Witek\Downloads\FRST.txt
2014-09-16 11:38 - 2014-09-16 11:39 - 00000000 ____D () C:\FRST
2014-09-16 11:38 - 2014-09-16 11:38 - 02105856 _____ (Farbar) C:\Users\Witek\Downloads\FRST64.exe
2014-09-16 11:31 - 2014-09-16 11:37 - 00114296 _____ () C:\Users\Witek\Downloads\Extras.Txt
2014-09-16 11:30 - 2014-09-16 11:30 - 00079826 _____ () C:\Users\Witek\Downloads\OTL.Txt
2014-09-16 11:22 - 2014-09-16 11:22 - 00602112 _____ (OldTimer Tools) C:\Users\Witek\Downloads\OTL.exe
2014-09-16 09:01 - 2014-09-16 09:01 - 00000000 ___RD () C:\Users\Witek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-09-15 19:03 - 2014-09-15 19:03 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-09-15 19:03 - 2014-09-15 19:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-13 16:19 - 2014-09-13 16:19 - 02730033 _____ () C:\Users\Witek\Desktop\am.rar
2014-09-11 13:18 - 2014-09-11 13:21 - 02188610 _____ () C:\Users\Witek\Desktop\Fizyka Wacke Wyk11ł.rar
2014-09-07 10:03 - 2014-09-07 10:03 - 29282022 _____ () C:\Users\Witek\Desktop\oe dla witeczka.rar
2014-09-06 13:18 - 2014-09-13 16:19 - 00000000 ____D () C:\Users\Witek\Desktop\am
2014-09-05 12:48 - 2014-09-05 13:03 - 669449642 _____ () C:\Users\Witek\Downloads\etrapez równania różniczkowe cały kurs.rar
2014-09-04 12:53 - 2014-09-04 12:53 - 00000000 ____D () C:\Users\Witek\AppData\Local\Adobe
2014-09-02 12:06 - 2014-09-02 12:06 - 14946884 _____ () C:\Users\Witek\Desktop\przykładowy egzamin.rar
2014-08-31 21:07 - 2014-08-31 21:07 - 00000004 _____ () C:\windows\SysWOW64\proc1794749374.bin
2014-08-31 21:07 - 2014-08-31 21:07 - 00000004 _____ () C:\windows\datazy.log
2014-08-31 11:47 - 2014-09-12 19:55 - 00002189 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-31 11:47 - 2014-08-31 11:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-29 12:18 - 2014-08-29 12:18 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2014-08-29 12:18 - 2014-08-29 12:18 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-08-24 22:22 - 2014-08-31 21:07 - 00000000 ____D () C:\Users\Witek\AppData\Roaming\GanymedeNet
2014-08-24 22:21 - 2014-08-31 21:07 - 00000000 ____D () C:\Program Files (x86)\Ganymede
2014-08-24 22:21 - 2014-08-24 22:21 - 00000000 ____D () C:\Plugins
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-16 11:40 - 2014-09-16 11:39 - 00016056 _____ () C:\Users\Witek\Downloads\FRST.txt
2014-09-16 11:39 - 2014-09-16 11:38 - 00000000 ____D () C:\FRST
2014-09-16 11:38 - 2014-09-16 11:38 - 02105856 _____ (Farbar) C:\Users\Witek\Downloads\FRST64.exe
2014-09-16 11:37 - 2014-09-16 11:31 - 00114296 _____ () C:\Users\Witek\Downloads\Extras.Txt
2014-09-16 11:30 - 2014-09-16 11:30 - 00079826 _____ () C:\Users\Witek\Downloads\OTL.Txt
2014-09-16 11:28 - 2013-05-10 21:46 - 00127591 _____ () C:\windows\setupact.log
2014-09-16 11:22 - 2014-09-16 11:22 - 00602112 _____ (OldTimer Tools) C:\Users\Witek\Downloads\OTL.exe
2014-09-16 11:19 - 2014-02-15 18:21 - 00000000 ____D () C:\Users\Witek\AppData\Roaming\Skype
2014-09-16 10:54 - 2009-07-14 06:45 - 00021200 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-16 10:54 - 2009-07-14 06:45 - 00021200 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-16 10:53 - 2013-10-27 13:53 - 00000288 _____ () C:\windows\Tasks\FoxTab.job
2014-09-16 10:51 - 2013-12-25 18:08 - 00001046 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-16 09:04 - 2012-05-12 06:57 - 01877810 _____ () C:\windows\WindowsUpdate.log
2014-09-16 09:01 - 2014-09-16 09:01 - 00000000 ___RD () C:\Users\Witek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-09-16 09:01 - 2013-12-25 18:08 - 00001042 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-16 09:01 - 2009-07-14 07:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-09-16 00:00 - 2013-12-04 11:36 - 00000000 ____D () C:\Users\Witek\Documents\Youcam
2014-09-15 22:14 - 2009-07-14 05:20 - 00000000 ____D () C:\windows\system32\NDF
2014-09-15 19:47 - 2013-05-10 13:44 - 00000000 ____D () C:\Users\Witek\AppData\Roaming\TS3Client
2014-09-15 19:03 - 2014-09-15 19:03 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-09-15 19:03 - 2014-09-15 19:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-09-15 19:03 - 2013-05-10 10:47 - 00000000 ____D () C:\ProgramData\Skype
2014-09-14 09:55 - 2012-05-12 06:29 - 04058364 _____ () C:\windows\system32\perfh015.dat
2014-09-14 09:55 - 2012-05-12 06:29 - 01316186 _____ () C:\windows\system32\perfc015.dat
2014-09-14 09:55 - 2009-07-14 07:13 - 00006248 _____ () C:\windows\system32\PerfStringBackup.INI
2014-09-13 16:19 - 2014-09-13 16:19 - 02730033 _____ () C:\Users\Witek\Desktop\am.rar
2014-09-13 16:19 - 2014-09-06 13:18 - 00000000 ____D () C:\Users\Witek\Desktop\am
2014-09-12 19:55 - 2014-08-31 11:47 - 00002189 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-12 09:09 - 2013-05-10 10:50 - 00000000 ____D () C:\Users\Witek\AppData\Roaming\Atheros
2014-09-11 17:13 - 2014-07-17 22:11 - 00000000 ___HD () C:\Users\Witek\KS
2014-09-11 13:49 - 2013-05-10 10:51 - 00000000 ____D () C:\Users\Witek\Documents\Bluetooth Folder
2014-09-11 13:21 - 2014-09-11 13:18 - 02188610 _____ () C:\Users\Witek\Desktop\Fizyka Wacke Wyk11ł.rar
2014-09-10 11:13 - 2013-05-10 11:02 - 00701104 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-09-10 11:13 - 2013-05-10 11:02 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-07 10:03 - 2014-09-07 10:03 - 29282022 _____ () C:\Users\Witek\Desktop\oe dla witeczka.rar
2014-09-05 13:03 - 2014-09-05 12:48 - 669449642 _____ () C:\Users\Witek\Downloads\etrapez równania różniczkowe cały kurs.rar
2014-09-04 12:53 - 2014-09-04 12:53 - 00000000 ____D () C:\Users\Witek\AppData\Local\Adobe
2014-09-04 10:00 - 2013-10-26 11:22 - 00000000 ____D () C:\Users\Witek\AppData\Local\Spotify
2014-09-04 10:00 - 2013-10-26 11:21 - 00000000 ____D () C:\Users\Witek\AppData\Roaming\Spotify
2014-09-02 12:06 - 2014-09-02 12:06 - 14946884 _____ () C:\Users\Witek\Desktop\przykładowy egzamin.rar
2014-08-31 21:07 - 2014-08-31 21:07 - 00000004 _____ () C:\windows\SysWOW64\proc1794749374.bin
2014-08-31 21:07 - 2014-08-31 21:07 - 00000004 _____ () C:\windows\datazy.log
2014-08-31 21:07 - 2014-08-24 22:22 - 00000000 ____D () C:\Users\Witek\AppData\Roaming\GanymedeNet
2014-08-31 21:07 - 2014-08-24 22:21 - 00000000 ____D () C:\Program Files (x86)\Ganymede
2014-08-31 21:07 - 2009-07-14 04:34 - 00000513 _____ () C:\windows\win.ini
2014-08-31 20:08 - 2013-05-10 21:46 - 00504742 _____ () C:\windows\PFRO.log
2014-08-31 11:47 - 2014-08-31 11:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-31 11:47 - 2013-05-10 17:18 - 00000000 ____D () C:\Users\Witek\AppData\Local\Google
2014-08-31 11:47 - 2013-05-10 17:18 - 00000000 ____D () C:\Program Files (x86)\Google
2014-08-29 12:18 - 2014-08-29 12:18 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2014-08-29 12:18 - 2014-08-29 12:18 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-08-26 22:10 - 2013-06-25 21:44 - 00000000 ____D () C:\Users\Witek\AppData\Local\PokerStars.EU
2014-08-26 22:10 - 2013-06-25 21:44 - 00000000 ____D () C:\Program Files (x86)\PokerStars.EU
2014-08-24 22:21 - 2014-08-24 22:21 - 00000000 ____D () C:\Plugins
2014-08-19 20:41 - 2012-05-11 16:26 - 00000000 ____D () C:\ProgramData\CyberLink
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-09-07 23:11
 
==================== End Of Log ============================
Wygenerowano w 0.032s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!