Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 28.02.2018
Uruchomiony przez może interne będzie (administrator)  AGA-KOMPUTER (01-03-2018 19:05:26)
Uruchomiony z C:\Users\może interne będzie\Downloads
Załadowane profile: może interne będzie (Dostępne profile: aga & mine4444 & może interne będzie)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Język: Polski (Polska)
Internet Explorer Wersja 8 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(The Privoxy team - www.privoxy.org) C:\Program Files (x86)\AFC Secure Net\privoxy.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe
(Murray Hurps Software Pty Ltd) C:\Program Files (x86)\Ad Muncher\AdMunch.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Murray Hurps Software Pty Ltd) C:\Program Files (x86)\Ad Muncher\AdMunch64.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.110.2.31\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.110.2.31\OverwolfHelper64.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.110.2.31\OverwolfBrowser.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.110.2.31\OverwolfBrowser.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe

==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13370472 2011-11-18] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-03-13] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [STCAgent] => C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe [776064 2011-03-04] (Splashtop Inc.)
HKLM-x32\...\Run: [ZyngaGamesAgent] => C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe [841544 2010-11-15] (Splashtop Inc.)
HKLM-x32\...\Run: [Ad Muncher] => C:\Program Files (x86)\Ad Muncher\AdMunch.exe [560760 2015-02-17] (Murray Hurps Software Pty Ltd)
HKLM-x32\...\Run: [AvgUi] => "C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe" /lps=fmw
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5885352 2017-06-29] (LogMeIn Inc.)
HKU\S-1-5-21-4165614267-392999949-4015936318-1011\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd)
HKU\S-1-5-21-4165614267-392999949-4015936318-1011\...\Run: [uTorrent] => C:\Users\może interne będzie\AppData\Roaming\uTorrent\uTorrent.exe [2148024 2018-02-27] (BitTorrent Inc.)
HKU\S-1-5-21-4165614267-392999949-4015936318-1011\...\Run: [BlueStacksFriends] => C:\Users\moĹĽe interne bÄ™dzie\AppData\Local\Programs\BlueStacksFriends\BlueStacksFriends.exe --hidden
HKU\S-1-5-21-4165614267-392999949-4015936318-1011\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3100456 2018-02-16] ()
HKU\S-1-5-21-4165614267-392999949-4015936318-1011\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1206600 2018-02-18] ()
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk [2015-01-09]
ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\Windows\SysWOW64\C2MP\UpdateChecker.exe (Brak pliku)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HandyAndy.lnk [2017-09-03]
ShortcutTarget: HandyAndy.lnk -> C:\Program Files\Andy\HandyAndy.exe (Andy OS, inc.)
GroupPolicy: Ograniczenia <==== UWAGA
GroupPolicy\User: Ograniczenia <==== UWAGA

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.88.1 176.108.128.217 176.108.129.2
Tcpip\..\Interfaces\{19F4DC9F-868E-4DEA-B8FC-ABCAFE3B7E64}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{2DCC1296-E5F2-402E-8474-CEF273C89B35}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{58094C59-FB15-4E6A-B574-C402638CBA18}: [DhcpNameServer] 192.168.111.1
Tcpip\..\Interfaces\{BDEB9562-32DD-49E5-9A27-DA6EA27CA6FA}: [NameServer] 208.67.222.222,208.67.220.220
Tcpip\..\Interfaces\{BDEB9562-32DD-49E5-9A27-DA6EA27CA6FA}: [DhcpNameServer] 192.168.88.1 176.108.128.217 176.108.129.2

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131629870784583639&GUID=349B2675-FFD5-4058-A63F-9338FF4AA899
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131629870784603640&GUID=349B2675-FFD5-4058-A63F-9338FF4AA899
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1420832948&from=cor&uid=ST500DM002-1BD142_Z2AY20HEXXXXZ2AY20HE&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1420832948&from=cor&uid=ST500DM002-1BD142_Z2AY20HEXXXXZ2AY20HE&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://isearch.omiga-plus.com/?type=hppp&ts=1420833034&from=cor&uid=ST500DM002-1BD142_Z2AY20HEXXXXZ2AY20HE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://isearch.omiga-plus.com/?type=hppp&ts=1420833034&from=cor&uid=ST500DM002-1BD142_Z2AY20HEXXXXZ2AY20HE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1420832948&from=cor&uid=ST500DM002-1BD142_Z2AY20HEXXXXZ2AY20HE&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1420832948&from=cor&uid=ST500DM002-1BD142_Z2AY20HEXXXXZ2AY20HE&q={searchTerms}
HKU\S-1-5-21-4165614267-392999949-4015936318-1011\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131629870784623641&GUID=349B2675-FFD5-4058-A63F-9338FF4AA899
HKU\S-1-5-21-4165614267-392999949-4015936318-1011\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp
URLSearchHook: HKU\S-1-5-21-4165614267-392999949-4015936318-1011 - Splashtop Connect SearchHook - {0F3DC9E0-C459-4a40-BCF8-747BD9322E10} - C:\Program Files (x86)\Splashtop\Splashtop Connect IE\AddressBarSearch.dll (Splashtop Inc.)
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {20B9D1AE-AD1A-38B4-87FE-AF278DA9861D} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKLM-x32 -> {20B9D1AE-AD1A-38B4-87FE-AF278DA9861D} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1420832948&from=cor&uid=ST500DM002-1BD142_Z2AY20HEXXXXZ2AY20HE&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4165614267-392999949-4015936318-1011 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKU\S-1-5-21-4165614267-392999949-4015936318-1011 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4165614267-392999949-4015936318-1011 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4165614267-392999949-4015936318-1011 -> {A6AD09D4-5E52-4d5d-9D65-726DE0B1E49D} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4165614267-392999949-4015936318-1011 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4165614267-392999949-4015936318-1011 -> {EAEA5DE2-5CD3-4f6d-B177-40C04866B5D4} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4165614267-392999949-4015936318-1011 -> {F4AA6093-17C4-402e-B0F0-99384916BDFF} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4165614267-392999949-4015936318-1011 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-27] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-27] (Oracle Corporation)
BHO-x32: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Splashtop Connect VisualBookmark -> {0E5680D1-BF44-4929-94AF-FD30D784AD1D} -> C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STC.dll [2011-03-04] (Splashtop Inc.)
BHO-x32: Solution Real 1.0.0.7 -> {1bb456da-878f-44a5-b013-4bfe0ae02fce} -> C:\Program Files (x86)\Solution Real\SolutionRealBHO.dll [2015-01-27] (Solution Real)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2015-07-13] (Oracle Corporation)
BHO-x32: Search@Mail.Ru -> {8E8F97CD-60B5-456F-A201-73065652D099} -> C:\Users\może interne będzie\AppData\Local\Mail.Ru\Sputnik\ie_addon_dll.dll [2018-01-16] (Mail.Ru)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2015-07-13] (Oracle Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{91c612bf-2a7a-48b8-8c8c-6de28589b7a1}] - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a1}
FF Extension: (Splashtop Connect Companion) - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a1} [2015-01-09] [Przestarzałe] [Brak podpisu cyfrowego]
FF HKLM-x32\...\Firefox\Extensions: [{91c612bf-2a7a-48b8-8c8c-6de28589b7a0}] - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a0}
FF Extension: (Splashtop Connect) - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{91c612bf-2a7a-48b8-8c8c-6de28589b7a0} [2015-01-09] [Przestarzałe] [Brak podpisu cyfrowego]
FF HKLM-x32\...\Firefox\Extensions: [{d9284e50-81fc-11da-a72b-0800200c9a66}] - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{d9284e50-81fc-11da-a72b-0800200c9a66}
FF Extension: (Yoono) - C:\Program Files (x86)\Splashtop\Splashtop Connect for Firefox\{d9284e50-81fc-11da-a72b-0800200c9a66} [2015-01-09] [Przestarzałe] [Brak podpisu cyfrowego]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_161.dll [2018-02-06] ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-27] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_161.dll [2018-02-06] ()
FF Plugin-x32: @alawar.com/npapi -> C:\Windows\npapi.dll [2014-01-29] (Alawar)
FF Plugin-x32: @java.com/DTPlugin,version=10.10.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2015-07-13] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.10.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2015-07-13] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-10-30] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-10-30] (NVIDIA Corporation)
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [Brak pliku]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-16] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: Default -> mail.ru
CHR StartupUrls: Default -> "hxxp://runeforge.gg/"
CHR DefaultSearchURL: Default -> hxxps://inline.go.mail.ru/search?inline_comp=dse&q={searchTerms}&fr=chxtn12.0.23
CHR DefaultSearchKeyword: Default -> inline.go.mail.ru
CHR DefaultSuggestURL: Default -> hxxp://suggests.go.mail.ru/chrome?q={searchTerms}
CHR Profile: C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default [2018-03-01]
CHR Extension: (Prezentacje) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Dysk Google) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-05]
CHR Extension: (Mail.Ru) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhjhnafpiilpffhglajcaepjbnbjemci [2018-01-16]
CHR Extension: (YouTube) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-05]
CHR Extension: (Tampermonkey) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-01-24]
CHR Extension: (ScriptGate) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\eeocknbjpmfgaclencnfjfkklmmfmiie [2018-01-16]
CHR Extension: (Arkusze) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (FBDown Video Downloader) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2018-02-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-05]
CHR Extension: (Домашняя страница Mail.Ru) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcadgijmedbfgciegjomfpjcdchlhnif [2018-01-16]
CHR Extension: (Save to Facebook) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2017-08-05]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\może interne będzie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-02-24]
CHR HKLM-x32\...\Chrome\Extension: [bhjhnafpiilpffhglajcaepjbnbjemci] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccfifbojenkenpkmnbnndeadpfdiffof] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hcadgijmedbfgciegjomfpjcdchlhnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ligncphnohhjkgekjkghahajihclailj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mibfbmhijjgpkmobcfdlelpccpeafoom] - <Brak Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [oelpkepjlgmehajehfeicfbjdiobdkfj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ojlcebdkbpjdpiligkdbbkdkfjmchbfd] - hxxps://clients2.google.com/service/update2/crx

Opera: 
=======
OPR Extension: (Tampermonkey) - C:\Users\może interne będzie\AppData\Roaming\Opera Software\Opera Stable\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-01-16]
OPR Extension: (ScriptGate) - C:\Users\może interne będzie\AppData\Roaming\Opera Software\Opera Stable\Extensions\eeocknbjpmfgaclencnfjfkklmmfmiie [2018-01-16]

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7002120 2018-02-24] ()
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [369720 2017-08-16] (BlueStack Systems, Inc.)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [382504 2017-08-08] (EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (Seiko Epson Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [662600 2018-02-07] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8410184 2018-02-01] (GOG.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2015-03-13] (NVIDIA Corporation)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3418024 2017-06-29] (LogMeIn Inc.)
U2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2017-09-20] (Hi-Rez Studios) [Brak podpisu cyfrowego]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [5893272 2016-07-19] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-03-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2015-03-13] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2156864 2018-02-16] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3026760 2018-02-16] () [Brak podpisu cyfrowego]
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1452360 2018-02-18] (Overwolf LTD)
R2 PrivoxyService; C:\Program Files (x86)\AFC Secure Net\privoxy.exe [371200 2015-07-09] (The Privoxy team - www.privoxy.org) [Brak podpisu cyfrowego] <==== UWAGA
R2 SCBackService; C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe [477000 2010-11-15] (Splashtop Inc.)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [873968 2017-06-30] (Tunngle.net GmbH) [Brak podpisu cyfrowego]
R2 WCUService_STC_FF; C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [493384 2011-03-24] (Splashtop Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus64.sys [20992 2015-01-21] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (LG Electronics Inc.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-06-21] (Bluestack System Inc. )
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-12-09] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-12-09] (Disc Soft Ltd)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2015-02-10] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2015-03-13] (NVIDIA Corporation)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [47736 2015-12-21] (Tunngle.net)
S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2014-11-17] (LG Electronics Inc.)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2009-07-14] (Microsoft Corporation)
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [29320 2015-10-01] (AVSOFT Corp.)
R1 vmkbd3; C:\Windows\System32\DRIVERS\vmkbd.sys [52288 2016-11-11] (VMware, Inc.)
R0 vsock; C:\Windows\System32\DRIVERS\vsock.sys [93248 2016-09-30] (VMware, Inc.)
R1 wafd_1_10_0_19; C:\Windows\System32\drivers\wafd_1_10_0_19.sys [61312 2015-06-15] (WA)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
R1 {1d7d694e-604c-4da2-9100-b2601d3a1c57}w64; C:\Windows\System32\drivers\{1d7d694e-604c-4da2-9100-b2601d3a1c57}w64.sys [48792 2015-01-25] (StdLib)
R1 {371bcf01-e691-44bf-9345-60788e5d16a5}w64; C:\Windows\System32\drivers\{371bcf01-e691-44bf-9345-60788e5d16a5}w64.sys [48792 2015-01-28] (StdLib)
R1 {4cff408a-d9e7-47c3-a711-95133fcf7f45}w64; C:\Windows\System32\drivers\{4cff408a-d9e7-47c3-a711-95133fcf7f45}w64.sys [48792 2015-01-19] (StdLib)
R1 {5c281c6e-0132-4ac6-ad9d-d1d95d218412}w64; C:\Windows\System32\drivers\{5c281c6e-0132-4ac6-ad9d-d1d95d218412}w64.sys [48792 2015-01-23] (StdLib)
R1 {693a0a5b-aa08-4a3c-b7e8-398a93e02cf2}w64; C:\Windows\System32\drivers\{693a0a5b-aa08-4a3c-b7e8-398a93e02cf2}w64.sys [48792 2015-01-13] (StdLib)
R1 {6e9af5d3-a8f9-4461-ad38-1433888f55dc}w64; C:\Windows\System32\drivers\{6e9af5d3-a8f9-4461-ad38-1433888f55dc}w64.sys [48792 2015-01-16] (StdLib)
R1 {76eaa25f-d535-414d-8a8b-4bce0a94d247}Gw64; C:\Windows\System32\drivers\{76eaa25f-d535-414d-8a8b-4bce0a94d247}Gw64.sys [48792 2015-01-10] (StdLib)
R1 {76eaa25f-d535-414d-8a8b-4bce0a94d247}w64; C:\Windows\System32\drivers\{76eaa25f-d535-414d-8a8b-4bce0a94d247}w64.sys [48792 2015-01-12] (StdLib)
R1 {8d9c9462-4635-4cc0-ab2c-0e46af3a958b}Gw64; C:\Windows\System32\drivers\{8d9c9462-4635-4cc0-ab2c-0e46af3a958b}Gw64.sys [48792 2015-01-08] (StdLib)
S1 cnfyauco; \??\C:\Windows\system32\drivers\cnfyauco.sys [X]
S3 gkernel; \??\C:\Users\aga\AppData\Local\Temp\gkernel.sys [X] <==== UWAGA
R4 sptd; \SystemRoot\System32\Drivers\sptd.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2018-03-01 19:05 - 2018-03-01 19:06 - 000028995 _____ C:\Users\może interne będzie\Downloads\FRST.txt
2018-03-01 19:05 - 2018-03-01 19:05 - 002403840 _____ (Farbar) C:\Users\może interne będzie\Downloads\FRST64.exe
2018-03-01 19:05 - 2018-03-01 19:05 - 000000000 ___DC C:\FRST
2018-03-01 18:45 - 2018-03-01 18:45 - 000262144 _____ C:\Windows\Minidump\030118-40794-01.dmp
2018-03-01 18:43 - 2018-03-01 18:43 - 000000000 ___HD C:\Users\może interne będzie\AppData\Local\Display Device
2018-02-27 15:45 - 2018-02-27 15:45 - 000262144 _____ C:\Windows\Minidump\022718-51480-01.dmp
2018-02-27 15:43 - 2018-02-27 15:44 - 000000000 ___HD C:\Users\może interne będzie\AppData\Local\DisplayDevices
2018-02-27 15:40 - 2018-02-27 15:40 - 000292648 _____ C:\Windows\Minidump\022718-55707-01.dmp
2018-02-25 15:55 - 2018-02-25 15:55 - 000006153 _____ C:\Users\może interne będzie\Downloads\LOL_OPGG_Observer_1918300167_spectate.bat
2018-02-25 15:41 - 2018-02-25 15:41 - 000292672 _____ C:\Windows\Minidump\022518-44709-01.dmp
2018-02-25 12:59 - 2018-02-25 12:59 - 000000000 _____ C:\Users\może interne będzie\Desktop\br5n48q3k.txt
2018-02-25 12:34 - 2018-02-25 12:34 - 000292664 _____ C:\Windows\Minidump\022518-50263-01.dmp
2018-02-24 20:15 - 2018-02-24 20:15 - 000000000 ___HD C:\Users\może interne będzie\AppData\Local\Google Cache
2018-02-24 17:35 - 2018-02-24 17:35 - 000597632 _____ (Duplex Secure Ltd) C:\Users\może interne będzie\Downloads\SPTDinst-v190-x64.exe
2018-02-23 10:04 - 2018-02-23 10:04 - 000292664 _____ C:\Windows\Minidump\022318-39593-01.dmp
2018-02-23 10:03 - 2018-02-26 18:48 - 000000000 ___HD C:\Users\może interne będzie\AppData\Local\File Recovery
2018-02-23 09:58 - 2018-02-23 09:58 - 000292680 _____ C:\Windows\Minidump\022318-31886-01.dmp
2018-02-22 14:16 - 2018-02-22 14:16 - 000292672 _____ C:\Windows\Minidump\022218-42947-01.dmp
2018-02-22 12:43 - 2018-02-22 12:43 - 000000222 _____ C:\Users\może interne będzie\Desktop\Unturned.url
2018-02-21 15:27 - 2018-02-21 15:27 - 000292440 _____ C:\Windows\Minidump\022118-54881-01.dmp
2018-02-19 12:31 - 2018-02-19 12:31 - 000292680 _____ C:\Windows\Minidump\021918-41106-01.dmp
2018-02-19 11:52 - 2018-02-19 11:52 - 000292208 _____ C:\Windows\Minidump\021918-56456-01.dmp
2018-02-18 16:37 - 2018-02-18 16:37 - 000292576 _____ C:\Windows\Minidump\021818-57860-01.dmp
2018-02-17 20:34 - 2018-02-17 20:34 - 000292648 _____ C:\Windows\Minidump\021718-51480-01.dmp
2018-02-17 20:25 - 2018-02-17 20:25 - 000292632 _____ C:\Windows\Minidump\021718-34320-01.dmp
2018-02-17 20:16 - 2018-02-17 20:16 - 000292632 _____ C:\Windows\Minidump\021718-36613-01.dmp
2018-02-17 15:45 - 2018-02-17 15:45 - 000292664 _____ C:\Windows\Minidump\021718-53820-01.dmp
2018-02-17 10:00 - 2018-02-17 10:00 - 000292664 _____ C:\Windows\Minidump\021718-51495-01.dmp
2018-02-16 19:04 - 2018-02-16 19:04 - 000304458 _____ C:\Users\może interne będzie\Downloads\DE_DUST2.rar
2018-02-16 18:59 - 2018-02-16 18:59 - 002595592 _____ C:\Users\może interne będzie\Downloads\Cs Dust II.zip
2018-02-16 16:44 - 2018-02-16 16:44 - 000001748 _____ C:\Users\może interne będzie\Desktop\Counter-Strike 1.6 v48.lnk
2018-02-16 14:43 - 2018-02-16 14:43 - 000292616 _____ C:\Windows\Minidump\021618-33228-01.dmp
2018-02-16 14:37 - 2018-02-16 14:37 - 000292648 _____ C:\Windows\Minidump\021618-46909-01.dmp
2018-02-16 13:56 - 2018-02-16 13:56 - 000292664 _____ C:\Windows\Minidump\021618-49545-01.dmp
2018-02-15 10:58 - 2018-02-15 10:58 - 000262144 _____ C:\Windows\Minidump\021518-55161-01.dmp
2018-02-13 10:08 - 2018-02-13 10:08 - 129365736 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-02-13 10:03 - 2018-02-13 10:05 - 040062624 _____ (Microsoft Corporation) C:\Users\może interne będzie\Downloads\windows-kb890830-x64-v5.56.exe
2018-02-13 09:48 - 2018-02-13 09:48 - 000292656 _____ C:\Windows\Minidump\021318-47861-01.dmp
2018-02-12 15:36 - 2018-02-12 15:36 - 000292648 _____ C:\Windows\Minidump\021218-60855-01.dmp
2018-02-12 10:27 - 2018-02-12 10:31 - 017748014 _____ C:\Users\może interne będzie\Desktop\Bez tytułu.avi
2018-02-11 16:58 - 2018-02-11 16:58 - 001608681 _____ C:\Users\może interne będzie\Downloads\Flans Mod 5.3 for MC 1.8   FM Apocalypse 1.0.zip
2018-02-10 20:33 - 2018-02-09 14:44 - 010970042 _____ C:\Users\może interne będzie\Desktop\Custom-NPCs-Mod-1.8.9.jar
2018-02-10 20:32 - 2018-02-11 17:31 - 000000000 ____D C:\Users\może interne będzie\Desktop\kukiz
2018-02-10 20:32 - 2018-02-10 20:32 - 000000000 ____D C:\Users\może interne będzie\Desktop\1.6.4
2018-02-10 20:32 - 2018-02-09 14:41 - 024136415 _____ C:\Users\może interne będzie\Desktop\mw-1.10.3_mc1.8.9.jar
2018-02-09 14:15 - 2018-02-22 14:15 - 000000000 ___HD C:\Users\może interne będzie\AppData\Local\Local Recovery
2018-02-08 15:55 - 2018-02-08 15:55 - 000000000 ___DC C:\AVG_Remover
2018-02-08 15:54 - 2018-02-08 15:54 - 007986864 _____ ( ) C:\Users\może interne będzie\Downloads\AVG_Remover.exe
2018-02-04 15:35 - 2018-02-04 15:41 - 134935616 _____ C:\Users\może interne będzie\Downloads\DBPolskaSubs - DBS126 HD (1).mp4
2018-02-03 15:10 - 2018-02-03 16:13 - 000000000 ____D C:\Users\może interne będzie\AppData\Local\HyperLightDrifter
2018-02-03 15:07 - 2018-02-03 15:07 - 000000720 _____ C:\Users\Public\Desktop\Hyper Light Drifter.lnk
2018-02-03 14:02 - 2018-02-03 14:02 - 000000000 ____D C:\Users\może interne będzie\Downloads\Hyper Light Drifter (Heart Machine) (ENG) [L] - GOG
2018-02-03 14:01 - 2018-02-03 14:01 - 000017121 _____ C:\Users\może interne będzie\Downloads\Hyper.Light.Drifter-GOG.torrent
2018-02-03 12:50 - 2018-03-01 15:57 - 000000000 ____D C:\Users\może interne będzie\Desktop\legion zdjęć
2018-01-31 19:19 - 2018-02-16 16:22 - 000000000 ____D C:\Users\może interne będzie\AppData\LocalLow\VRChat
2018-01-31 17:06 - 2018-01-31 18:54 - 000000222 _____ C:\Users\może interne będzie\Desktop\VRChat.url

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2018-03-01 19:04 - 2015-01-09 20:35 - 000000000 ____D C:\Program Files (x86)\Opera
2018-03-01 19:01 - 2017-09-02 14:21 - 000000000 ____D C:\Users\może interne będzie\AppData\Local\LogMeIn Hamachi
2018-03-01 19:01 - 2017-08-08 10:17 - 000000000 ____D C:\Users\może interne będzie\AppData\Roaming\uTorrent
2018-03-01 19:00 - 2017-12-15 17:02 - 000000000 ____D C:\Users\może interne będzie\AppData\Local\Overwolf
2018-03-01 18:59 - 2017-09-03 15:04 - 000000000 ____D C:\ProgramData\VMware
2018-03-01 18:59 - 2015-01-09 20:31 - 000000000 ____D C:\ProgramData\NVIDIA
2018-03-01 18:59 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-03-01 18:58 - 2009-07-14 05:45 - 000009904 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-03-01 18:58 - 2009-07-14 05:45 - 000009904 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-03-01 18:54 - 2015-01-09 20:40 - 000003896 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1420832443
2018-03-01 18:45 - 2015-01-12 18:15 - 000000000 ____D C:\Windows\Minidump
2018-03-01 18:43 - 2018-01-23 18:54 - 000153088 _____ C:\Windows\SysWOW64\conhost64.exe
2018-03-01 18:43 - 2018-01-16 14:15 - 000003360 _____ C:\Windows\System32\Tasks\uiTYUOU
2018-03-01 18:20 - 2017-04-26 16:20 - 000000911 _____ C:\Windows\Tasks\EPSON XP-332 335 Series Update {A8C7A89C-ED1A-4FA6-B61C-37873499F19F}.job
2018-03-01 17:30 - 2015-01-10 19:41 - 000000000 ____D C:\Program Files (x86)\Steam
2018-03-01 15:43 - 2018-01-16 14:15 - 000003522 _____ C:\Windows\System32\Tasks\ioGnqeSwAAn
2018-02-28 16:07 - 2017-11-05 10:37 - 000000000 ____D C:\Users\może interne będzie\AppData\Local\osu!
2018-02-28 16:00 - 2015-06-24 15:05 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-02-27 19:28 - 2015-07-04 18:28 - 000000362 _____ C:\Windows\Tasks\LiveBlog.job
2018-02-24 18:09 - 2017-12-15 17:02 - 000000000 ____D C:\Users\może interne będzie\AppData\Roaming\TS3Client
2018-02-24 17:33 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2018-02-23 10:21 - 2015-03-07 16:32 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-02-22 16:27 - 2017-06-10 09:49 - 000000000 ____D C:\Users\może interne będzie\Documents\Stronghold Crusader
2018-02-22 12:43 - 2017-06-23 12:49 - 000000000 ____D C:\Users\może interne będzie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-02-21 15:20 - 2017-12-15 17:05 - 000000000 ____D C:\Program Files (x86)\Overwolf
2018-02-18 16:36 - 2009-07-14 06:08 - 000032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-02-17 17:44 - 2017-05-05 14:57 - 000000000 ____D C:\Users\może interne będzie\AppData\Roaming\Skype
2018-02-16 19:04 - 2017-05-06 08:02 - 000000000 ____D C:\Users\może interne będzie\AppData\Roaming\DAEMON Tools Lite
2018-02-16 17:23 - 2017-09-30 14:38 - 000001353 _____ C:\Users\Public\Desktop\Gwent.lnk
2018-02-16 14:36 - 2015-02-24 14:51 - 000000000 ____D C:\Program Files (x86)\Origin
2018-02-16 14:02 - 2015-02-24 14:51 - 000000000 ____D C:\ProgramData\Origin
2018-02-15 14:19 - 2017-07-01 13:44 - 000000000 ____D C:\Users\może interne będzie\AppData\Roaming\.minecraft
2018-02-15 11:01 - 2017-06-24 09:02 - 000000000 ____D C:\Users\może interne będzie\AppData\Roaming\Origin
2018-02-14 12:31 - 2017-08-24 10:46 - 000000000 ____D C:\Users\może interne będzie\AppData\Local\The Witcher
2018-02-13 10:18 - 2017-05-05 14:56 - 000001144 _____ C:\Users\może interne będzie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2018-02-13 10:18 - 2017-05-05 14:56 - 000001114 _____ C:\Users\może interne będzie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2018-02-13 10:18 - 2016-05-14 08:20 - 000001114 _____ C:\Users\mine4444\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2018-02-13 10:18 - 2016-05-14 08:19 - 000001144 _____ C:\Users\mine4444\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2018-02-13 10:18 - 2015-10-16 11:39 - 000001144 _____ C:\Users\mine 2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2018-02-13 10:18 - 2015-10-16 11:39 - 000001114 _____ C:\Users\mine 2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2018-02-13 10:18 - 2015-01-09 20:09 - 000001144 _____ C:\Users\aga\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2018-02-13 10:18 - 2015-01-09 20:09 - 000001114 _____ C:\Users\aga\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2018-02-13 10:17 - 2015-06-12 13:10 - 000000000 ____D C:\Program Files (x86)\MiuiTab
2018-02-13 10:17 - 2015-01-09 20:49 - 000000000 ____D C:\Users\aga\AppData\Roaming\omiga-plus
2018-02-13 10:08 - 2016-12-25 13:01 - 129365736 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-02-11 17:29 - 2009-07-14 18:55 - 000034798 _____ C:\Windows\system32\perfh015.dat
2018-02-11 17:29 - 2009-07-14 18:55 - 000015138 _____ C:\Windows\system32\perfc015.dat
2018-02-11 17:29 - 2009-07-14 06:13 - 000819916 _____ C:\Windows\system32\PerfStringBackup.INI
2018-02-08 15:56 - 2015-12-14 14:43 - 000000000 ____D C:\ProgramData\Avg
2018-02-08 15:56 - 2015-06-17 10:34 - 000000000 ____D C:\Program Files\Common Files\AV
2018-02-08 15:56 - 2015-04-25 07:39 - 000000000 ____D C:\Users\aga\AppData\Local\Avg
2018-02-08 15:27 - 2015-01-12 19:53 - 000000266 __RSH C:\ProgramData\ntuser.pol
2018-02-07 15:49 - 2017-03-11 13:40 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2018-02-06 17:44 - 2015-01-09 21:36 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-02-06 17:44 - 2015-01-09 21:36 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-02-06 17:44 - 2015-01-09 21:36 - 000004486 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-02-06 17:44 - 2015-01-09 21:36 - 000004412 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-02-06 17:44 - 2015-01-09 21:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-02-06 17:44 - 2015-01-09 21:36 - 000000000 ____D C:\Windows\system32\Macromed
2018-02-03 15:09 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2018-02-03 15:07 - 2015-09-18 17:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2018-02-03 14:36 - 2016-05-01 17:53 - 000000000 ____D C:\Users\Maciej
2018-02-03 14:36 - 2015-03-25 15:59 - 000000000 ____D C:\Windows\System32\Tasks\Games
2018-02-03 14:32 - 2009-07-14 04:20 - 000000000 ___HD C:\Windows\system32\GroupPolicyUsers
2018-02-03 14:11 - 2015-07-02 09:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2018-02-02 11:08 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF

==================== Pliki w katalogu głównym wybranych folderów =======

2009-07-14 02:14 - 2009-07-14 02:14 - 000001154 _____ () C:\Users\może interne będzie\SfuzYxVmcvjTV.bat
2018-01-16 14:15 - 2009-07-14 02:14 - 000000085 _____ () C:\Program Files (x86)\stYym
2009-07-14 02:14 - 2009-07-14 02:14 - 000000085 _____ () C:\Program Files (x86)\stYym.bat
2018-01-16 14:15 - 2010-11-20 13:16 - 000186368 _____ (Microsoft Corporation) C:\Program Files (x86)\Common Files\hoJxYOBOMB.exe
2018-01-16 14:15 - 2009-07-14 02:14 - 000000072 _____ () C:\Program Files (x86)\Common Files\YoAEUYFTuOEN
2009-07-14 02:14 - 2009-07-14 02:14 - 000000072 _____ () C:\Program Files (x86)\Common Files\YoAEUYFTuOEN.bat
2018-01-16 14:15 - 2010-11-20 13:17 - 000073216 _____ (Microsoft Corporation) C:\Users\może interne będzie\AppData\Roaming\aaaOgd.exe
2018-01-16 15:56 - 2018-01-16 15:56 - 000005569 _____ () C:\Users\może interne będzie\AppData\Local\recently-used.xbel
2018-01-28 14:41 - 2018-01-28 14:41 - 000007602 _____ () C:\Users\może interne będzie\AppData\Local\Resmon.ResmonCfg
2018-01-16 14:15 - 2009-07-14 02:14 - 000001219 _____ () C:\Users\może interne będzie\AppData\Local\WiYMBioDgxna
2009-07-14 02:14 - 2009-07-14 02:14 - 000001219 _____ () C:\Users\może interne będzie\AppData\Local\WiYMBioDgxna.bat
2018-01-16 14:15 - 2018-01-16 14:15 - 000000001 _____ () C:\Users\może interne będzie\AppData\Local\WMI.ini

Niektóre pliki w TEMP:
====================
2017-06-28 11:14 - 2017-06-28 11:16 - 005727232 _____ () C:\Users\aga\AppData\Local\Temp\SkypeSetup.exe
2017-05-04 14:49 - 2017-05-04 15:12 - 000000000 _____ () C:\Users\aga\AppData\Local\Temp\{119F2CBD-840F-4397-898C-F6A34A8EC3E3}-58.0.3029.96_chrome_installer.exe
2017-05-06 07:50 - 2017-05-06 07:50 - 000000000 _____ () C:\Users\aga\AppData\Local\Temp\{84291963-7EA1-403B-B82B-4825370A32CE}-58.0.3029.96_chrome_installer.exe
2017-05-05 19:49 - 2017-05-05 19:49 - 000000000 _____ () C:\Users\aga\AppData\Local\Temp\{A5906E7E-1B7E-44E8-973A-AFD062BBAAC7}-58.0.3029.96_chrome_installer.exe
2017-05-03 10:49 - 2017-05-03 11:38 - 000000000 _____ () C:\Users\aga\AppData\Local\Temp\{E7E7F1AF-5F88-4CED-BC31-90FF66BC3CBC}-58.0.3029.96_chrome_installer.exe
1999-09-14 17:47 - 1999-09-14 17:47 - 000585790 ____N (Microsoft Corporation) C:\Users\mine4444\AppData\Local\Temp\EBU5287.EXE
1999-12-13 12:37 - 1999-12-13 12:37 - 002211840 ____N (Microsoft Corporation) C:\Users\mine4444\AppData\Local\Temp\EBU56DA.DLL
2017-02-16 18:55 - 2017-02-16 18:55 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-1317927597872495755.dll
2017-04-01 16:40 - 2017-04-01 16:40 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-1394033617815124136.dll
2017-04-29 13:33 - 2017-04-29 13:33 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-1497527068996715580.dll
2017-02-16 18:37 - 2017-02-16 18:37 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-1754030743688973903.dll
2017-02-09 10:34 - 2017-02-09 10:34 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-1775317078954349303.dll
2017-03-13 17:51 - 2017-03-13 17:51 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-1853147897792925684.dll
2017-04-13 11:09 - 2017-04-13 11:09 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-1940442594129932192.dll
2017-04-08 13:30 - 2017-04-08 13:30 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-2018800183078650143.dll
2017-04-08 13:25 - 2017-04-08 13:25 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-2113976585476457354.dll
2017-04-16 18:56 - 2017-04-16 18:56 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-2298364775085039774.dll
2017-03-18 14:35 - 2017-03-18 14:35 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-2298386690216183336.dll
2017-04-29 17:18 - 2017-04-29 17:18 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-2447751492729291225.dll
2017-04-05 18:00 - 2017-04-05 18:00 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-2463856588238211384.dll
2017-04-04 14:13 - 2017-04-04 14:13 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-249211012276085404.dll
2017-04-29 16:16 - 2017-04-29 16:16 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-249224682408722280.dll
2017-03-07 17:13 - 2017-03-07 17:13 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-2664746278103430645.dll
2017-04-30 13:18 - 2017-04-30 13:18 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-2990219127128040862.dll
2017-02-27 15:05 - 2017-02-27 15:05 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-3023970432305731839.dll
2017-04-10 19:23 - 2017-04-10 19:23 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-3656291619354845064.dll
2017-04-08 13:35 - 2017-04-08 13:35 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-3921496725546530144.dll
2017-02-09 17:07 - 2017-02-09 17:07 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-4238426178162722916.dll
2017-04-05 17:57 - 2017-04-05 17:57 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-4318685079626246986.dll
2017-02-11 12:42 - 2017-02-11 12:42 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-4332013088822065418.dll
2017-03-18 17:15 - 2017-03-18 17:15 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-4474541090165556469.dll
2017-03-08 15:37 - 2017-03-08 15:37 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-4684470655353841271.dll
2017-04-16 18:50 - 2017-04-16 18:50 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-5004338222646327107.dll
2017-02-11 14:22 - 2017-02-11 14:22 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-5015946198107138901.dll
2017-04-16 18:26 - 2017-04-16 18:26 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-5066678371976722276.dll
2017-03-13 18:11 - 2017-03-13 18:11 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-5152718648853756207.dll
2017-02-08 15:27 - 2017-02-08 15:27 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-5443139308557460398.dll
2017-04-13 12:10 - 2017-04-13 12:10 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-5679073681411843729.dll
2017-04-28 14:07 - 2017-04-28 14:07 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-5857134915385608176.dll
2017-02-07 17:43 - 2017-02-07 17:43 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-6076800214551815306.dll
2017-02-11 12:29 - 2017-02-11 12:29 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-6090685723024427013.dll
2017-02-07 18:51 - 2017-02-07 18:51 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-619082103513764326.dll
2016-09-13 10:24 - 2016-09-13 10:24 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-6340477309022868813.dll
2017-04-08 13:28 - 2017-04-08 13:28 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-64985801696954130.dll
2017-04-04 17:55 - 2017-04-04 17:55 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-6715577248754917056.dll
2017-04-08 13:26 - 2017-04-08 13:26 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-693400160290652867.dll
2017-02-08 08:13 - 2017-02-08 08:13 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7135271639895172815.dll
2017-02-12 16:58 - 2017-02-12 16:58 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7146063871494639195.dll
2017-02-07 17:30 - 2017-02-07 17:30 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7276464829498875421.dll
2017-02-17 15:49 - 2017-02-17 15:49 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-744419901710800528.dll
2017-02-08 15:40 - 2017-02-08 15:40 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7470665012353497261.dll
2017-04-08 13:25 - 2017-04-08 13:25 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7667498384200620522.dll
2017-02-10 11:23 - 2017-02-10 11:23 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7684001358288295242.dll
2017-02-07 17:26 - 2017-02-07 17:26 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7691836605803392136.dll
2017-04-30 13:24 - 2017-04-30 13:24 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7722205489189357896.dll
2017-02-08 18:51 - 2017-02-08 18:51 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7786763463405015460.dll
2017-02-08 08:12 - 2017-02-08 08:12 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7817271770459904247.dll
2017-04-13 12:00 - 2017-04-13 12:00 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7860230120042905256.dll
2017-02-07 18:05 - 2017-02-07 18:05 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-7919523959118177532.dll
2017-03-13 17:44 - 2017-03-13 17:44 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-8046930442415541337.dll
2017-02-11 16:02 - 2017-02-11 16:02 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-8057907452064408184.dll
2017-04-01 11:00 - 2017-04-01 11:00 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-808581667025973000.dll
2017-02-11 15:58 - 2017-02-11 15:58 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-8174071327469195895.dll
2017-02-17 15:22 - 2017-02-17 15:22 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-8194605697320653475.dll
2017-02-11 14:20 - 2017-02-11 14:20 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-8412287847732619718.dll
2017-02-11 16:08 - 2017-02-11 16:08 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-8441767532952438150.dll
2017-02-12 16:56 - 2017-02-12 16:56 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-8696146550719411009.dll
2017-04-29 09:56 - 2017-04-29 09:56 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-8929185948095200063.dll
2017-02-08 18:00 - 2017-02-08 18:00 - 000019968 _____ (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-9097471293007477473.dll
2017-03-13 18:08 - 2017-03-13 18:08 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-959536860885619496.dll
2017-05-01 09:21 - 2017-05-01 09:21 - 000019968 ____N (Red Hat®, Inc.) C:\Users\mine4444\AppData\Local\Temp\jansi-64-967701676826146253.dll
2017-02-07 13:44 - 2017-03-13 19:28 - 044048864 _____ (Skype Technologies S.A.) C:\Users\mine4444\AppData\Local\Temp\SkypeSetup.exe
2017-05-05 14:38 - 2017-05-05 14:49 - 012208714 _____ () C:\Users\mine4444\AppData\Local\Temp\{D008C860-5C04-421B-AE38-45B6FF7472A1}-58.0.3029.96_chrome_installer.exe
2018-03-01 15:43 - 2018-03-01 15:43 - 000389138 _____ (                                                            ) C:\Users\może interne będzie\AppData\Local\Temp\247828781.exe
2018-02-27 18:48 - 2018-02-27 18:48 - 000389142 _____ (                                                            ) C:\Users\może interne będzie\AppData\Local\Temp\316059166.exe
2018-02-11 17:37 - 2018-02-11 17:37 - 000019968 _____ (Red Hat®, Inc.) C:\Users\może interne będzie\AppData\Local\Temp\jansi-64-3890336819452599401.dll
2018-02-13 16:29 - 2018-02-13 16:29 - 000019968 ____N (Red Hat®, Inc.) C:\Users\może interne będzie\AppData\Local\Temp\jansi-64-5082671913023787221.dll
2018-02-11 17:32 - 2018-02-11 17:32 - 000019968 ____N (Red Hat®, Inc.) C:\Users\może interne będzie\AppData\Local\Temp\jansi-64-5520713838160643655.dll
2018-02-15 17:11 - 2018-02-15 17:11 - 000019968 ____N (Red Hat®, Inc.) C:\Users\może interne będzie\AppData\Local\Temp\jansi-64-5656461945094799962.dll
2018-02-15 14:16 - 2018-02-15 14:16 - 000019968 ____N (Red Hat®, Inc.) C:\Users\może interne będzie\AppData\Local\Temp\jansi-64-7540908151836369554.dll
2018-02-13 15:45 - 2018-02-13 15:45 - 000019968 ____N (Red Hat®, Inc.) C:\Users\może interne będzie\AppData\Local\Temp\jansi-64-7575292358393065809.dll
2018-02-11 17:01 - 2018-02-11 17:01 - 000019968 ____N (Red Hat®, Inc.) C:\Users\może interne będzie\AppData\Local\Temp\jansi-64-8485689225813596152.dll
2018-02-16 19:00 - 2018-02-16 19:00 - 000019968 ____N (Red Hat®, Inc.) C:\Users\może interne będzie\AppData\Local\Temp\jansi-64-8573092115055732352.dll

==================== Bamital & volsnap ======================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo
C:\Windows\explorer.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\Windows\system32\services.exe => Plik podpisany cyfrowo
C:\Windows\system32\User32.dll
[2016-12-27 13:19] - [2010-11-20 14:27] - 001008640 _____ (Microsoft Corporation) E573BD9AB55C8E333C202B9E255F972E

C:\Windows\SysWOW64\User32.dll
[2017-05-25 19:40] - [2017-05-25 19:40] - 000833024 _____ (Microsoft Corporation) 2C9CC9F492CA596B1B9FC1AE5E916356

C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo

LastRegBack: 2018-02-21 15:57

==================== Koniec  FRST.txt ============================