Eplorer.exe nie uruchamia się przy starcie systemu

[Julia221]

Od jakiegoś czasu borykam się z problemem, ktory zawarłam w temacie . Oprócz tego, przy starcie włączają się Ustawienia Hosta skryptów systemu Windows. Szukałam w internecie odpowiedzi, jak to naprawić, ale niestety nic nie pomogło. Dodam, że komputer przeskanowałam programami usuwającymi adware, więc nie wiem, czym to może być spowodowane. Dodaję logi z OTL.

Spoiler:

OTL logfile created on: 2016-06-11 13:13:43 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\julia\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18314)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

4,00 Gb Total Physical Memory | 2,35 Gb Available Physical Memory | 58,77% Memory free
7,99 Gb Paging File | 6,10 Gb Available in Paging File | 76,29% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 195,41 Gb Total Space | 86,66 Gb Free Space | 44,35% Space Free | Partition Type: NTFS
Drive D: | 270,25 Gb Total Space | 202,21 Gb Free Space | 74,82% Space Free | Partition Type: NTFS
Drive E: | 458,95 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: JULIA-KOMPUTER | User Name: julia | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2016-06-11 13:00:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\julia\Desktop\OTL.exe
PRC - [2016-06-09 19:18:12 | 000,592,424 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera_crashreporter.exe
PRC - [2016-06-09 19:18:11 | 000,710,184 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe
PRC - [2016-05-25 10:31:20 | 001,687,680 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
PRC - [2016-05-25 10:30:36 | 001,364,096 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
PRC - [2016-05-12 10:54:56 | 007,032,080 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
PRC - [2016-05-08 16:27:08 | 000,243,296 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2016-04-05 08:29:12 | 002,021,592 | ---- | M] (Adobe Systems, Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
PRC - [2016-01-19 05:02:38 | 000,388,968 | ---- | M] (Digital Wave Ltd.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe


========== Modules (No Company Name) ==========

MOD - [2016-06-09 19:18:11 | 067,942,952 | ---- | M] () -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.dll
MOD - [2016-06-09 19:17:57 | 002,203,176 | ---- | M] () -- C:\Program Files (x86)\Opera\38.0.2220.29\libglesv2.dll
MOD - [2016-06-09 19:17:56 | 000,087,080 | ---- | M] () -- C:\Program Files (x86)\Opera\38.0.2220.29\libegl.dll


========== Services (SafeList) ==========

SRV:64bit: - [2016-06-11 12:51:06 | 000,370,656 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\AVAST Software\Avast\afwServ.exe -- (avast! Firewall)
SRV:64bit: - [2016-05-08 16:27:08 | 000,243,296 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2016-04-23 06:47:35 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2015-07-23 02:02:54 | 001,390,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:64bit: - [2014-09-10 01:08:15 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2012-10-19 11:01:04 | 000,581,120 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\atwtusb.exe -- (WTService)
SRV:64bit: - [2009-08-18 03:36:20 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2016-05-25 10:31:20 | 001,687,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc)
SRV - [2016-05-25 10:30:36 | 001,364,096 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc)
SRV - [2016-05-13 15:04:13 | 000,269,504 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2016-05-12 10:54:56 | 007,032,080 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe -- (TeamViewer)
SRV - [2016-04-30 02:10:40 | 000,835,664 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2016-04-05 08:29:12 | 002,021,592 | ---- | M] (Adobe Systems, Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe -- (AGSService)
SRV - [2016-03-23 19:08:24 | 000,327,808 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2016-01-19 05:02:38 | 000,388,968 | ---- | M] (Digital Wave Ltd.) [Auto | Running] -- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe -- (DigitalWave.Update.Service)
SRV - [2016-01-15 16:58:50 | 001,369,464 | ---- | M] (Disc Soft Ltd) [On_Demand | Stopped] -- D:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe -- (Disc Soft Lite Bus Service)
SRV - [2016-01-11 20:49:01 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2014-09-10 01:22:08 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2014-04-11 23:08:08 | 000,103,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2016-06-11 12:51:06 | 000,536,312 | ---- | M] (AVAST Software) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\aswNetSec.sys -- (aswNetSec)
DRV:64bit: - [2016-05-08 16:31:50 | 000,037,144 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswKbd.sys -- (aswKbd)
DRV:64bit: - [2016-05-08 16:27:15 | 000,465,792 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2016-05-08 16:27:15 | 000,287,528 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2016-05-08 16:27:15 | 000,166,432 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:64bit: - [2016-05-08 16:27:15 | 000,107,792 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2016-05-08 16:27:15 | 000,103,064 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2016-05-08 16:27:15 | 000,074,544 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2016-05-08 16:27:15 | 000,037,656 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:64bit: - [2016-05-08 16:26:57 | 001,070,904 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2016-01-24 02:19:57 | 000,047,672 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtliteusbbus.sys -- (dtliteusbbus)
DRV:64bit: - [2015-12-22 23:06:16 | 000,030,264 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtlitescsibus.sys -- (dtlitescsibus)
DRV:64bit: - [2015-06-17 18:04:24 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2014-09-10 01:16:06 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2014-09-10 01:16:06 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2014-09-10 01:15:16 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2014-09-10 01:15:16 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2014-09-10 01:12:37 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2014-09-10 01:12:37 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2014-09-10 01:00:36 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2014-09-10 01:00:08 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2014-08-16 00:13:34 | 000,023,040 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netaapl64.sys -- (Netaapl)
DRV:64bit: - [2012-06-05 07:45:16 | 000,237,968 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:64bit: - [2012-06-01 10:32:38 | 000,379,776 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\V0770Vid.sys -- (V0770Vid)
DRV:64bit: - [2011-11-03 03:01:00 | 000,056,208 | ---- | M] (Rovi Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2011-08-23 15:57:24 | 000,565,352 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010-11-21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009-08-26 14:15:10 | 000,007,552 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\walvhid.sys -- (vhidmini)
DRV:64bit: - [2009-08-18 04:48:48 | 006,037,504 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009-03-08 20:16:14 | 000,007,680 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\moufiltr.sys -- (moufiltr)
DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.interia.pl/#utm_source=instalki1&utm_medium=installer&utm_campaign=instalki1&iwa_source=installer_instalki
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pl-PL
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F5 55 E5 65 03 3C D1 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.91.2: C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2: C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll ( Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\julia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF [2016-06-11 12:51:30 | 000,000,000 | ---D | M]
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\sp@avast.com: C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\SAFEPRICE\FF [2016-06-11 12:51:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-06-11 12:51:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\sp@avast.com: C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-06-11 12:51:29 | 000,000,000 | ---D | M]

[2016-02-10 17:02:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\julia\AppData\Roaming\mozilla\Extensions

========== Chrome ==========

CHR - Extension: No name found = C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
CHR - Extension: No name found = C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
CHR - Extension: No name found = C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
CHR - Extension: No name found = C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\11.1.0.221_0\
CHR - Extension: No name found = C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
CHR - Extension: No name found = C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0\
CHR - Extension: No name found = C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\11.1.0.955_0\
CHR - Extension: No name found = C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_0\
CHR - Extension: No name found = C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\

O1 HOSTS File: ([2016-05-23 20:04:23 | 000,001,093 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 http://www.mirillis.com
O1 - Hosts: 127.0.0.1 s0ft4pc.com
O1 - Hosts: 127.0.0.1 serwer2.paka-service.com
O1 - Hosts: 127.0.0.1 down.baidu2016.com
O1 - Hosts: 127.0.0.1 123.sogou.com
O1 - Hosts: 127.0.0.1 http://www.czzsyzgm.com
O1 - Hosts: 127.0.0.1 http://www.czzsyzxl.com
O1 - Hosts: 127.0.0.1 union.baidu2019.com
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [AtwtusbIcon] C:\Windows\SysNative\AtwtusbIcon.exe ()
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [V0770Mon.exe] C:\Windows\V0770Mon.exe (Creative Technology Ltd.)
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKCU..\Run: [DAEMON Tools Lite Automount] D:\Program Files\DAEMON Tools Lite\DTAgent.exe (Disc Soft Ltd)
O4 - HKCU..\Run: [Discord] C:\Users\julia\AppData\Local\Discord\app-0.0.291\Discord.exe (Hammer & Chisel, Inc.)
O4 - HKCU..\Run: [Steam] D:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 221
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O9:64bit: - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.61 62.179.1.63
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{81AAB8BC-A6E0-420D-9F03-96295BCE5CE6}: DhcpNameServer = 62.179.1.61 62.179.1.63
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C0F5FDB1-ECBA-425E-B40E-733B892C23AA}: DhcpNameServer = 192.168.42.129
O18:64bit: - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2015-12-28 01:25:44 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006-03-03 16:54:53 | 000,000,031 | R--- | M] () - E:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{0c9d5e4a-c9b4-11e5-9fa8-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{0c9d5e4a-c9b4-11e5-9fa8-fcaa14bb116e}\Shell\AutoRun\command - "" = J:\
O33 - MountPoints2\{0c9d5e55-c9b4-11e5-9fa8-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{0c9d5e55-c9b4-11e5-9fa8-fcaa14bb116e}\Shell\AutoRun\command - "" = K:\
O33 - MountPoints2\{4e7f5e15-c751-11e5-97e7-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{4e7f5e15-c751-11e5-97e7-fcaa14bb116e}\Shell\AutoRun\command - "" = J:\
O33 - MountPoints2\{6fc04ccc-a8aa-11e5-a78b-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{6fc04ccc-a8aa-11e5-a78b-fcaa14bb116e}\Shell\AutoRun\command - "" = H:\autorun.exe
O33 - MountPoints2\{6fc04de3-a8aa-11e5-a78b-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{6fc04de3-a8aa-11e5-a78b-fcaa14bb116e}\Shell\AutoRun\command - "" = I:\Autorun.exe
O33 - MountPoints2\{6fc04df9-a8aa-11e5-a78b-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{6fc04df9-a8aa-11e5-a78b-fcaa14bb116e}\Shell\AutoRun\command - "" = J:\Autorun.exe
O33 - MountPoints2\{6fc04dfd-a8aa-11e5-a78b-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{6fc04dfd-a8aa-11e5-a78b-fcaa14bb116e}\Shell\AutoRun\command - "" = K:\autorun.exe
O33 - MountPoints2\{6fc04e19-a8aa-11e5-a78b-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{6fc04e19-a8aa-11e5-a78b-fcaa14bb116e}\Shell\AutoRun\command - "" = H:\
O33 - MountPoints2\{6fc04e24-a8aa-11e5-a78b-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{6fc04e24-a8aa-11e5-a78b-fcaa14bb116e}\Shell\AutoRun\command - "" = I:\Autorun.exe
O33 - MountPoints2\{6fc04e38-a8aa-11e5-a78b-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{6fc04e38-a8aa-11e5-a78b-fcaa14bb116e}\Shell\AutoRun\command - "" = J:\
O33 - MountPoints2\{e5032bf7-c1f3-11e5-973c-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{e5032bf7-c1f3-11e5-973c-fcaa14bb116e}\Shell\AutoRun\command - "" = H:\startme.exe
O33 - MountPoints2\{e5032ced-c1f3-11e5-973c-fcaa14bb116e}\Shell - "" = AutoRun
O33 - MountPoints2\{e5032ced-c1f3-11e5-973c-fcaa14bb116e}\Shell\AutoRun\command - "" = H:\Launch.exe
O33 - MountPoints2\{fa51d0e0-a828-11e5-9068-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{fa51d0e0-a828-11e5-9068-806e6f6e6963}\Shell\AutoRun\command - "" = E:\VCD_PLAY.EXE -- [2006-03-03 16:56:01 | 000,462,848 | R--- | M] (Roxio)
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\Launch.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2016-06-11 13:06:43 | 000,000,000 | ---D | C] -- C:\FRST
[2016-06-11 13:03:43 | 002,385,408 | ---- | C] (Farbar) -- C:\Users\julia\Desktop\FRST64.exe
[2016-06-11 13:01:43 | 000,000,000 | ---D | C] -- C:\_OTL
[2016-06-11 13:00:31 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\julia\Desktop\OTL.exe
[2016-06-11 12:51:41 | 000,536,312 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswNetSec.sys
[2016-06-11 12:51:30 | 000,398,152 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2016-06-11 12:43:47 | 000,056,208 | ---- | C] (Rovi Corporation) -- C:\Windows\SysNative\drivers\PxHlpa64.sys
[2016-06-11 12:43:47 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdralw2k.sys
[2016-06-11 12:43:47 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdr4_xp.sys
[2016-06-11 12:43:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sonic Shared
[2016-06-11 12:43:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine
[2016-06-11 12:43:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\My Company Name
[2016-06-11 12:43:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2016-06-11 10:46:28 | 000,000,000 | ---D | C] -- C:\Users\julia\Desktop\dash
[2016-06-09 23:31:57 | 000,000,000 | ---D | C] -- C:\Users\julia\Desktop\cenzura!
[2016-06-09 19:30:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2016-06-09 19:30:16 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2016-06-09 19:27:47 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2016-06-09 19:27:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2016-06-09 19:23:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2016-05-28 10:44:45 | 000,000,000 | ---D | C] -- C:\Users\julia\AppData\Local\Discord
[2016-05-26 16:49:37 | 000,000,000 | ---D | C] -- C:\Users\julia\Desktop\Start
[2016-05-25 16:35:14 | 000,000,000 | ---D | C] -- C:\Users\julia\Documents\Electronic Arts
[2016-05-25 12:48:47 | 000,000,000 | ---D | C] -- C:\ProgramData\YTD Video Downloader
[2016-05-25 12:48:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader
[2016-05-25 12:48:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GreenTree Applications
[2016-05-24 19:36:25 | 000,000,000 | ---D | C] -- C:\Users\julia\Desktop\light of your cutie mark
[2016-05-23 22:19:22 | 000,000,000 | ---D | C] -- C:\Users\julia\AppData\Local\Microsoft Games
[2016-05-23 19:53:50 | 000,000,000 | ---D | C] -- C:\PaintToolSAI
[2016-05-23 19:24:07 | 000,000,000 | ---D | C] -- C:\Users\julia\Documents\ArtRage Paintings
[2016-05-23 19:11:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Caphyon
[2016-05-23 19:10:11 | 000,000,000 | ---D | C] -- C:\Users\julia\AppData\Roaming\Ambient Design
[2016-05-23 18:55:40 | 000,096,768 | ---- | C] (WALTOP International Corp.) -- C:\Windows\SysNative\WINTAB32.dll
[2016-05-16 11:25:10 | 000,000,000 | ---D | C] -- C:\Users\julia\AppData\Local\Guntony
[2016-05-16 11:05:27 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Guntony
[2016-05-16 11:05:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Guntony
[2016-05-13 14:07:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
[2016-05-13 14:04:03 | 020,381,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2016-05-13 13:45:29 | 000,000,000 | ---D | C] -- C:\Users\julia\Desktop\Projekty
[2016-05-13 13:27:52 | 000,000,000 | ---D | C] -- C:\Users\julia\Desktop\Start dash

========== Files - Modified Within 30 Days ==========

[2016-06-11 13:13:24 | 000,028,352 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016-06-11 13:13:24 | 000,028,352 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016-06-11 13:05:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2016-06-11 13:04:58 | 3219,300,352 | -HS- | M] () -- C:\hiberfil.sys
[2016-06-11 13:04:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2016-06-11 13:03:45 | 002,385,408 | ---- | M] (Farbar) -- C:\Users\julia\Desktop\FRST64.exe
[2016-06-11 13:00:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\julia\Desktop\OTL.exe
[2016-06-11 12:52:11 | 000,151,707 | ---- | M] () -- C:\Users\julia\Desktop\cenzura!.aup
[2016-06-11 12:51:06 | 000,536,312 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswNetSec.sys
[2016-06-11 12:47:01 | 000,000,992 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job
[2016-06-11 12:33:26 | 000,634,332 | ---- | M] () -- C:\Users\julia\Desktop\cenzura!.wav
[2016-06-09 21:51:07 | 004,230,311 | ---- | M] () -- C:\Users\julia\Desktop\Start-Dash!!_(Off_Vocal).ogg
[2016-06-09 19:30:25 | 000,001,550 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2016-06-09 19:22:42 | 000,097,856 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2016-06-07 20:33:43 | 003,655,050 | ---- | M] () -- C:\Users\julia\Desktop\_Under Our Spell_ (Acapella) 90% CLEAR [Rainbow Rocks] (HD) Best Version MLP_ FIM HD.mp3
[2016-06-07 16:41:50 | 000,006,795 | ---- | M] () -- C:\Users\julia\.recently-used.xbel
[2016-06-07 16:36:25 | 000,049,152 | -H-- | M] () -- C:\Users\julia\Desktop\photothumb.db
[2016-06-05 21:07:04 | 000,035,251 | ---- | M] () -- C:\Users\julia\Desktop\0b8234004985bcd7a163593d267573d0.jpg
[2016-06-05 10:40:42 | 000,002,170 | ---- | M] () -- C:\Users\julia\Desktop\Discord.lnk
[2016-05-27 23:16:09 | 000,001,303 | ---- | M] () -- C:\Users\Public\Desktop\YTD Video Downloader.lnk
[2016-05-27 23:16:09 | 000,000,571 | ---- | M] () -- C:\Users\Public\Desktop\PaintTool SAI Ver.1.lnk
[2016-05-27 23:16:08 | 000,001,503 | ---- | M] () -- C:\Users\julia\Desktop\Sosnowiec.lnk
[2016-05-27 23:16:08 | 000,001,052 | ---- | M] () -- C:\Users\julia\Desktop\The Sims 3.lnk
[2016-05-26 22:31:09 | 008,282,250 | ---- | M] () -- C:\Users\julia\Documents\START - DASH hanayo mix.mp3
[2016-05-26 22:30:38 | 012,774,686 | ---- | M] () -- C:\Users\julia\Documents\START - DASH hanayo mix.mp4
[2016-05-25 11:36:11 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2016-05-25 11:32:55 | 000,000,001 | ---- | M] () -- C:\Windows\SysWow64\pl.html
[2016-05-19 20:29:38 | 005,487,532 | ---- | M] () -- C:\Users\julia\Desktop\wyzszy.wav
[2016-05-13 15:04:12 | 000,797,376 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2016-05-13 15:04:12 | 000,142,528 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2016-05-13 15:04:06 | 020,381,888 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe

========== Files Created - No Company Name ==========

[2016-06-11 12:43:20 | 000,001,007 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
[2016-06-11 12:33:26 | 000,634,332 | ---- | C] () -- C:\Users\julia\Desktop\cenzura!.wav
[2016-06-09 23:32:00 | 000,151,707 | ---- | C] () -- C:\Users\julia\Desktop\cenzura!.aup
[2016-06-09 21:51:07 | 004,230,311 | ---- | C] () -- C:\Users\julia\Desktop\Start-Dash!!_(Off_Vocal).ogg
[2016-06-09 19:30:25 | 000,001,550 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2016-06-07 20:33:37 | 003,655,050 | ---- | C] () -- C:\Users\julia\Desktop\_Under Our Spell_ (Acapella) 90% CLEAR [Rainbow Rocks] (HD) Best Version MLP_ FIM HD.mp3
[2016-06-07 16:41:50 | 000,006,795 | ---- | C] () -- C:\Users\julia\.recently-used.xbel
[2016-06-05 21:07:04 | 000,035,251 | ---- | C] () -- C:\Users\julia\Desktop\0b8234004985bcd7a163593d267573d0.jpg
[2016-05-28 10:45:00 | 000,002,170 | ---- | C] () -- C:\Users\julia\Desktop\Discord.lnk
[2016-05-26 22:30:55 | 008,282,250 | ---- | C] () -- C:\Users\julia\Documents\START - DASH hanayo mix.mp3
[2016-05-26 22:30:38 | 012,774,686 | ---- | C] () -- C:\Users\julia\Documents\START - DASH hanayo mix.mp4
[2016-05-25 16:35:19 | 000,001,052 | ---- | C] () -- C:\Users\julia\Desktop\The Sims 3.lnk
[2016-05-25 12:48:45 | 000,001,303 | ---- | C] () -- C:\Users\Public\Desktop\YTD Video Downloader.lnk
[2016-05-23 19:53:50 | 000,000,571 | ---- | C] () -- C:\Users\Public\Desktop\PaintTool SAI Ver.1.lnk
[2016-05-23 18:55:40 | 003,593,728 | ---- | C] () -- C:\Windows\SysNative\AtwtusbIcon.exe
[2016-05-23 18:55:40 | 000,559,104 | ---- | C] () -- C:\Windows\RmTablet.exe
[2016-05-19 20:29:38 | 005,487,532 | ---- | C] () -- C:\Users\julia\Desktop\wyzszy.wav
[2016-05-16 11:05:30 | 000,002,118 | ---- | C] () -- C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
[2016-05-13 14:06:46 | 000,000,001 | ---- | C] () -- C:\Windows\SysWow64\pl.html
[2016-05-08 16:09:00 | 001,443,152 | ---- | C] ( ) -- C:\Users\julia\AppData\Roaming\AutoTime_51477.exe
[2016-03-28 21:33:33 | 000,000,000 | ---- | C] () -- C:\Windows\PowerReg.dat
[2016-01-31 04:00:43 | 000,122,884 | ---- | C] () -- C:\Windows\UnGins.exe
[2016-01-23 18:18:42 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll
[2016-01-11 22:30:33 | 000,000,105 | R--- | C] () -- C:\ProgramData\Ppster.ini
[2016-01-02 16:56:05 | 000,000,632 | ---- | C] () -- C:\Windows\CoD.INI
[2015-12-26 01:33:47 | 000,641,024 | ---- | C] () -- C:\Windows\SysWow64\ficvdec_x86.dll
[2015-12-21 23:31:51 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2015-12-21 23:24:58 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2014-09-10 11:23:34 | 001,640,128 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI

========== ZeroAccess Check ==========

[2009-07-14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2016-01-22 08:19:58 | 014,179,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2016-01-22 08:05:58 | 012,877,824 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >

[ordynat]

Eplorer.exe nie uruchamia się przy starcie systemu

To nie do tego działu forum.

[2016-05-16 11:05:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Guntony

Zrób logi z FRST > http://forum.programosy.pl/frst-otl-zoek-vt139692.html
Przed skanem zaznacz "Addition.txt" oraz "Shortcut.txt"
.

[Julia221]

Nie wiedziałam pod co to podpiąć, przepraszam ;-;

Spoiler:

Rezultat skanowania skrótów użytkowników (x64) Wersja:10-06-2016
Uruchomiony przez julia (2016-06-11 16:44:38)
Uruchomiony z C:\Users\julia\Desktop
Tryb startu: Normal

==================== Skróty =============================

(Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)





Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk -> C:\Windows\System32\wuapp.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk -> D:\Program Files (x86)\Adobe\Adobe Bridge CS3\Bridge.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk -> D:\Program Files (x86)\Adobe\Adobe Device Central CS3\DeviceCentral.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk -> C:\Program Files (x86)\Adobe\Adobe Utilities\ExtendScript Toolkit 2\ExtendScript Toolkit 2.exe (Adobe Systems, Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk -> C:\Program Files (x86)\Adobe\Adobe Help\Adobe Help.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS3.lnk -> D:\Program Files (x86)\Adobe\Adobe Photoshop CS3\Photoshop.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-A93000000001}\SC_Reader.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Stock Photos CS3.lnk -> D:\Program Files (x86)\Adobe\Adobe Stock Photos CS3\Adobe Stock Photos CS3.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aegisub.lnk -> D:\Program Files (x86)\Aegisub\aegisub32.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk -> C:\Windows\Installer\{56EC47AA-5813-4FF6-8E75-544026FBEA83}\AppleSoftwareUpdateIco.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk -> D:\Program Files (x86)\Audacity\audacity.exe (The Audacity Team)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk -> C:\Windows\ehome\ehshell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Excel Viewer.lnk -> C:\Windows\Installer\{95120000-003F-0409-0000-0000000FF1CE}\xlvwicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk -> C:\Program Files (x86)\Opera\launcher.exe (Opera Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia.lnk -> C:\Program Files (x86)\Synthesia\Synthesia.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk -> C:\Windows\System32\WindowsAnytimeUpgradeUI.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk -> C:\Program Files\DVD Maker\DVDMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader\Uninstall.lnk -> C:\Program Files (x86)\GreenTree Applications\YTD Video Downloader\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader\YTD Video Downloader.lnk -> C:\Program Files (x86)\GreenTree Applications\YTD Video Downloader\ytd.exe (GreenTree Applications SRL)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\Uninstall.lnk -> C:\Program Files (x86)\WinZipper\wzUninstall.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Co nowego w ostatniej wersji.lnk -> D:\Program Files\WinRAR\CoNowego.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Podręcznik RARa dla konsoli.lnk -> D:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Pomoc WinRARa.lnk -> D:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> D:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VobSub\DirectVobSub Configure.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VobSub\Uninstall.lnk -> C:\Program Files (x86)\Gabest\VobSub\uninstall.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VobSub\VobSub dir.lnk -> C:\Program Files (x86)\Gabest\VobSub (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Manuals.lnk -> C:\Program Files\Ubi Soft\Studio Mythos\Petz 5\Manuals (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Petz 5.lnk -> C:\Users\julia\Saved Games\Ubisoft\Petz 5\Petz 5.exe (Studio Mythos, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Petz5 Help.lnk -> C:\Users\julia\Saved Games\Ubisoft\Petz 5\Petz5.hlp ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Readme.lnk -> C:\Users\julia\Saved Games\Ubisoft\Petz 5\Readme.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Register Petz5.lnk -> C:\Users\julia\Saved Games\Ubisoft\Petz 5\regsetup.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Uninstall.lnk -> C:\Program Files\Ubi Soft\Studio Mythos\Petz 5\Uninst\Setup.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Internet\Petz Publisher.lnk -> C:\Users\julia\Saved Games\Ubisoft\Petz 5\Publisher.exe (Mindscape Entertainment)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Internet\Publisher Help.lnk -> C:\Users\julia\Saved Games\Ubisoft\Petz 5\Publisher.hlp ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Internet\Web Fun Pack.lnk -> C:\Users\julia\Saved Games\Ubisoft\Petz 5\Web Fun Pack\intro.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith\Camtasia Recorder 8.lnk -> C:\Windows\Installer\{AF33D0D2-2627-4AC8-8473-FDBB7892129C}\CamtasiaIcons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith\Camtasia Studio 8.lnk -> C:\Windows\Installer\{AF33D0D2-2627-4AC8-8473-FDBB7892129C}\CamtasiaIcons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client\TeamSpeak 3 Client.lnk -> D:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (TeamSpeak Systems GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client\Uninstall.lnk -> D:\Program Files\TeamSpeak 3 Client\Uninstall.exe (TeamSpeak Systems GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia\Play Synthesia.lnk -> D:\Program Files (x86)\Synthesia\Synthesia.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia\Synthesia Configuration.lnk -> D:\Program Files (x86)\Synthesia\SynthesiaConfig.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia\Uninstall Synthesia.lnk -> D:\Program Files (x86)\Synthesia\uninstall.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia\View Readme.lnk -> D:\Program Files (x86)\Synthesia\readme.txt (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> D:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Star Stable\Star Stable.lnk -> C:\Program Files (x86)\Star Stable Entertainment AB\Star Stable\StarStable.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony\Vegas Pro 13.0\Vegas Pro 13.0 (64-bit).lnk -> D:\Program Files\Sony\vegas130.exe (Sony Creative Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony\Vegas Pro 13.0\Vegas Pro 13.0 Readme.lnk -> D:\Program Files\Sony\Readme\Vegas_readme.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk -> C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)\ReaMote Slave (x64).lnk -> D:\Program Files\REAPER (x64)\reamote.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)\REAPER (x64) (create new project).lnk -> D:\Program Files\REAPER (x64)\reaper.exe (Cockos Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)\REAPER (x64) (reset configuration to factory defaults).lnk -> D:\Program Files\REAPER (x64)\reaper.exe (Cockos Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)\REAPER (x64) (ReWire slave mode).lnk -> D:\Program Files\REAPER (x64)\reaper.exe (Cockos Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)\REAPER (x64) (show audio configuration on startup).lnk -> D:\Program Files\REAPER (x64)\reaper.exe (Cockos Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)\REAPER (x64).lnk -> D:\Program Files\REAPER (x64)\reaper.exe (Cockos Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)\REAPER License and User Agreement.lnk -> D:\Program Files\REAPER (x64)\license.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)\Uninstall REAPER (x64).lnk -> D:\Program Files\REAPER (x64)\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)\Whatsnew.txt.lnk -> D:\Program Files\REAPER (x64)\whatsnew.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape\PhotoScape.lnk -> C:\Program Files (x86)\PhotoScape\PhotoScape.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape\Uninstall PhotoScape.lnk -> C:\Program Files (x86)\PhotoScape\uninstall.exe (Mooii)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Zwierzaki\The Sims 3 Zwierzaki Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Zwierzaki\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Zostań gwiazdą\The Sims 3 Zostań gwiazdą Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Zostań gwiazdą\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Wymarzone Podróże\The Sims 3 Wymarzone Podróże Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Wymarzone Podróże\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Słodkie Niespodzianki Katy Perry\The Sims 3 Słodkie Niespodzianki Katy Perry Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Słodkie Niespodzianki Katy Perry\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Szybka jazda – akcesoria\The Sims 3 Szybka jazda – akcesoria Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Szybka jazda – akcesoria\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Pokolenia\The Sims 3 Pokolenia Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Pokolenia\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Po Zmroku\The Sims 3 Po Zmroku Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Po Zmroku\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Nowoczesny apartament - akcesoria\The Sims 3 Nowoczesny apartament - akcesoria Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Nowoczesny apartament - akcesoria\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Nie z tego świata\The Sims 3 Nie z tego świata Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Nie z tego świata\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Miejskie Życie - akcesoria\The Sims 3 Miejskie Życie - akcesoria Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Miejskie Życie - akcesoria\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Luksusowy wypoczynek Akcesoria\The Sims 3 Luksusowy wypoczynek Akcesoria Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Luksusowy wypoczynek Akcesoria\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Kariera\The Sims 3 Kariera Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Kariera\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Impreza w plenerze – akcesoria\The Sims 3 Impreza w plenerze – akcesoria Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Impreza w plenerze – akcesoria\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Diesel – akcesoria\The Sims 3 Diesel – akcesoria Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Diesel – akcesoria\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3 Cztery pory roku\The Sims 3 Cztery pory roku Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3 Cztery pory roku\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3\The Sims 3 Deinstalacja.lnk -> D:\Program Files\TS3\The Sims 3\Uninstall\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc\The Sims 3\The Sims 3.lnk -> D:\Program Files\TS3\The Sims 3\The Sims 3\Game\Bin\TS3W.exe (Electronic Arts Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis\Action!\Action!.lnk -> D:\Program Files (x86)\Mirillis\Action!\Action.exe (Mirillis Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis\Action!\User Manual.lnk -> D:\Program Files (x86)\Mirillis\Action!\Action!_User_Manual.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Melodyne 3.2\Manual.lnk -> C:\Program Files (x86)\Celemony\Melodyne.3.2\Documentation\Manual.MelodyneCre8Studio.3.2.English.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Melodyne 3.2\Melodyne.exe.lnk -> C:\Program Files (x86)\Celemony\Melodyne.3.2\Melodyne.exe (Celemony Software GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Melodyne 3.2\New in 3.2.2.lnk -> C:\Program Files (x86)\Celemony\Melodyne.3.2\NewIn.3.2.2.pdf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Deinstalacja programu Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Backup and Restore Center.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Create Recovery Disc.lnk -> C:\Windows\System32\recdisc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Remote Assistance.lnk -> C:\Windows\System32\msra.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends\League of Legends.lnk -> D:\Riot Games\League of Legends\lol.launcher.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\iTunes.lnk -> D:\Program Files\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes\O programie iTunes….lnk -> D:\Program Files\iTunes\iTunes.Resources\pl.lproj\About iTunes.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 12.lnk -> D:\Program Files (x86)\Image-Line\FL Studio 12\FL.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line\More....lnk -> C:\Program Files (x86)\Image-Line\Shared\Start (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Shadow of Death\Campaign Editor.lnk -> D:\Program Files (x86)\HEROES3\Death\h3ccmped.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Shadow of Death\Edytor Map.lnk -> D:\Program Files (x86)\HEROES3\Death\h3maped.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Shadow of Death\Heroes III The Shadow of Death.lnk -> D:\Program Files (x86)\HEROES3\Death\Heroes3.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Shadow of Death\Odinstaluj Heroes III The Shadow of Death.lnk -> C:\Windows\UnGins.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Shadow of Death\Podręcznik Heroes III Tutorial.lnk -> D:\Program Files (x86)\HEROES3\Death\Heroes III Tutorial.pdf (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Shadow of Death\Podręcznik Heroes III.lnk -> D:\Program Files (x86)\HEROES3\Death\H3Manual.pdf (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Shadow of Death\Wyświetl plik Readme.lnk -> D:\Program Files (x86)\HEROES3\Death\ReadMeSD.txt (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Restoration of Erathia\Edytor Map.lnk -> D:\Program Files (x86)\HEROES3\Erathia\h3maped.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Restoration of Erathia\Heroes III - Misja Treningowa.lnk -> D:\Program Files (x86)\HEROES3\Erathia\Heroes III Tutorial.pdf (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Restoration of Erathia\Heroes III The Restoration of Erathia.lnk -> D:\Program Files (x86)\HEROES3\Erathia\Heroes3.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Restoration of Erathia\Odinstaluj Heroes III The Restoration of Erathia.lnk -> C:\Windows\UnGins.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes III\The Restoration of Erathia\Wyświetl Readme.lnk -> D:\Program Files (x86)\HEROES3\Erathia\README.TXT (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone\Hearthstone.lnk -> C:\Program Files (x86)\Hearthstone\Hearthstone Beta Launcher.exe (Blizzard Entertainment)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP\GIMP 2.lnk -> C:\Program Files (x86)\GIMP-2.0\bin\gimp-2.6.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP\Uninstall.lnk -> C:\Program Files (x86)\GIMP-2.0\setup\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\DVDVideoSoft Free Studio.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe (Digital Wave Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Free Video Editor.lnk -> D:\Program Files (x86)\DVDVideoSoft\Free Video Editor\FreeVideoEditor.exe (Digital Wave Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Log Report.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\DVSSysReport.exe (DVDVideoSoft Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Premium Membership.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\PremiumMembershipOffer.exe (DVDVideoSoft Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft\Uninstall.lnk -> C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite\DAEMON Tools Lite.lnk -> D:\Program Files\DAEMON Tools Lite\DTLauncher.exe (Disc Soft Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clownfish\Clownfish.lnk -> D:\Program Files (x86)\Clownfish\Clownfish.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clownfish\Uninstall.lnk -> D:\Program Files (x86)\Clownfish\uninstall.exe (Brak pliku)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU\Aktywacja.lnk -> C:\Program Files (x86)\AVS4YOU\Registration.exe (Online Media Technologies Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU\Pomoc.lnk -> C:\Program Files (x86)\AVS4YOU\AVS4YOUHelp.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU\Umowa licencyjna.lnk -> C:\Program Files (x86)\AVS4YOU\License Agreement.rtf ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU\Video\AVS Video Editor.lnk -> D:\Program Files (x86)\AVS4YOU\AVSVideoEditor\AVSVideoEditor.exe (Online Media Technologies Ltd.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Data Sources (ODBC).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\displayswitch.lnk -> C:\Windows\System32\displayswitch.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sync Center.lnk -> C:\Windows\System32\mobsync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Welcome Center.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\Windowspowershell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Restore.lnk -> C:\Windows\System32\rstrui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer Reports.lnk -> C:\Windows\System32\migwiz\PostMig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\Links\Downloads.lnk -> C:\Users\julia\Downloads ()
Shortcut: C:\Users\julia\Downloads\Desktop.lnk -> C:\Users\julia\Desktop ()
Shortcut: C:\Users\julia\Desktop\Sosnowiec.lnk -> D:\Riot Games\League of Legends\lol.launcher.exe ()
Shortcut: C:\Users\julia\Desktop\The Sims 3.lnk -> D:\Program Files\TS3\The Sims 3\The Sims 3\Game\Bin\TS3W.exe (Electronic Arts Inc.)
Shortcut: C:\Users\julia\Desktop\Pokemony\desmume-0.9.11-win64.lnk -> C:\Users\julia\Downloads\desmume-0.9.11-win64.zip (Brak pliku)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Guntony\Guntony\chrome.exe (Brak pliku)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Co nowego w ostatniej wersji.lnk -> D:\Program Files\WinRAR\CoNowego.txt ()
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Podręcznik RARa dla konsoli.lnk -> D:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Pomoc WinRARa.lnk -> D:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> D:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> D:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 12 (64bit).lnk -> D:\Program Files (x86)\Image-Line\FL Studio 12\FL64.exe (Brak pliku)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\FL Studio 12.lnk -> D:\Program Files (x86)\Image-Line\FL Studio 12\FL.exe (Brak pliku)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line\More....lnk -> C:\Program Files (x86)\Image-Line\Shared\Start (Brak pliku)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU\Odinstaluj.lnk -> C:\Program Files (x86)\AVS4YOU\Uninstall.exe (Online Media Technologies Ltd.)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\SendTo\AVS Mobile Uploader.lnk -> C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe (Online Media Technologies Ltd.)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\SendTo\AVS Video Burner.lnk -> C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe (Online Media Technologies Ltd.)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Windows\SendTo\AVS Video Uploader.lnk -> C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe (Online Media Technologies Ltd.)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PhotoScape.lnk -> C:\Program Files (x86)\PhotoScape\PhotoScape.exe ()
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Audacity.lnk -> D:\Program Files (x86)\Audacity\audacity.exe (The Audacity Team)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Melodyne.exe.lnk -> C:\Program Files (x86)\Celemony\Melodyne.3.2\Melodyne.exe (Celemony Software GmbH)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Menedżer Realtek HD Audio.lnk -> C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera.lnk -> C:\Program Files (x86)\Opera\launcher.exe (Opera Software)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\REAPER (x64) (create new project).lnk -> D:\Program Files\REAPER (x64)\reaper.exe (Cockos Incorporated)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Steam.lnk -> D:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation)
Shortcut: C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Guntony\Guntony\chrome.exe (Brak pliku)
Shortcut: C:\Users\julia\AppData\Local\Microsoft\Windows\GameExplorer\{90358D4B-4C6C-4CB8-86E7-755BF15F0BD3}\PlayTasks\0\Zagraj.lnk -> D:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe (Brak pliku)
Shortcut: C:\Users\julia\AppData\Local\Microsoft\Windows\GameExplorer\{51EC50BB-D27A-4CD4-AB75-8D6A40991A58}\PlayTasks\0\Zagraj.lnk -> D:\Program Files (x86)\Ubisoft\Heroes of Might and Magic V - Dzikie Hordy\bin\H5_Game.exe (Brak pliku)
Shortcut: C:\Users\Public\Desktop\iTunes.lnk -> D:\Program Files\iTunes\iTunes.exe (Apple Inc.)
Shortcut: C:\Users\Public\Desktop\PaintTool SAI Ver.1.lnk -> C:\PaintToolSAI\sai.exe (SYSTEMAX Software Development Inc.)
Shortcut: C:\Users\Public\Desktop\YTD Video Downloader.lnk -> C:\Program Files (x86)\GreenTree Applications\YTD Video Downloader\ytd.exe (GreenTree Applications SRL)




ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\javacpl.exe (Oracle Corporation) -> -tab about
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\javacpl.exe (Oracle Corporation) -> -tab update
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) -> --sendto
ShortcutWithArgument: C:\Users\julia\Desktop\Discord.lnk -> C:\Users\julia\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe
ShortcutWithArgument: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc\Discord.lnk -> C:\Users\julia\AppData\Local\Discord\Update.exe (GitHub) -> --processStart Discord.exe
ShortcutWithArgument: C:\Users\julia\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\julia\AppData\Roaming\Microsoft\Windows\SendTo\Skype.lnk -> C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.) -> /sendto:
ShortcutWithArgument: C:\Users\julia\AppData\Roaming\Microsoft\Windows\SendTo\TeamViewer.lnk -> C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) -> --sendto


InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader\Web site.url -> hxxp://www.ytddownloader.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Internet\Petz.com.url -> www.petz.com
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Internet\StudioMythos.com.url -> www.studiomythos.com
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Internet\Ubi.com.url -> www.Ubi.com
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> hxxp://support.steampowered.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Star Stable\www.starstable.com.url -> hxxp://www.starstable.com
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Get Help.url -> hxxp://java.com/help
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Visit Java.com.url -> hxxp://java.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner Homepage.url -> hxxp://www.piriform.com/ccleaner
InternetURL: C:\Users\julia\Saved Games\Ubisoft\Petz 5\Resource\Online\pfmadopt.url -> hxxp://www.petz.net/breedz/
InternetURL: C:\Users\julia\Saved Games\Ubisoft\Petz 5\Resource\Online\pfmnews.url -> hxxp://www.petz.net/
InternetURL: C:\Users\julia\Saved Games\Ubisoft\Petz 5\Resource\Online\pfmpetz.url -> hxxp://www.petz.com/
InternetURL: C:\Users\julia\Saved Games\Ubisoft\Petz 5\Resource\Online\pfmtoys.url -> hxxp://www.petz.net/toyz/
InternetURL: C:\Users\julia\Favorites\Links for Polska\Bezpieczeństwo w trybie online.url -> hxxp://go.microsoft.com/fwlink/?LinkId=142211
InternetURL: C:\Users\julia\Favorites\Links for Polska\Bezpieczny Internet.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129626
InternetURL: C:\Users\julia\Favorites\Links for Polska\Kultura.pl.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129625
InternetURL: C:\Users\julia\Favorites\Links for Polska\Pogodynka.pl — oficjalny serwis pogodowy IMGW.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129624
InternetURL: C:\Users\julia\Favorites\Links for Polska\Polska.pl.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129622
InternetURL: C:\Users\julia\Favorites\Links\Galeria obiektów Web Slice.url -> hxxp://go.microsoft.com/fwlink/?LinkId=121315
InternetURL: C:\Users\julia\Favorites\Links\Sugerowane witryny.url -> hxxps://ieonline.microsoft.com/#ieslice
InternetURL: C:\Users\julia\Desktop\The.Binding.of.Isaac.Afterbirth\IGG-GAMES.COM.url -> hxxp://www.igg-games.com/
InternetURL: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Internet\Petz.com.url -> www.petz.com
InternetURL: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Internet\StudioMythos.com.url -> www.studiomythos.com
InternetURL: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubi Soft\Petz5\Internet\Ubi.com.url -> www.Ubi.com
InternetURL: C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\SMITE.url -> steam://rungameid/386360

==================== Koniec Shortcut.txt =============================

Spoiler:

Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:10-06-2016
Uruchomiony przez julia (2016-06-11 16:43:30)
Uruchomiony z C:\Users\julia\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-12-21 21:29:02)
Tryb startu: Normal
==========================================================


==================== Konta użytkowników: =============================

Administrator (S-1-5-21-3334848187-4153718758-3862772024-500 - Administrator - Disabled)
Gość (S-1-5-21-3334848187-4153718758-3862772024-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3334848187-4153718758-3862772024-1002 - Limited - Enabled)
julia (S-1-5-21-3334848187-4153718758-3862772024-1000 - Administrator - Enabled) => C:\Users\julia

==================== Centrum zabezpieczeń ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Zainstalowane programy ======================

(W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)

µTorrent (HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\uTorrent) (Version: 3.4.7.42300 - BitTorrent Inc.)
Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.18.0 - Mirillis)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Audition CS6 (HKLM-x32\...\{30FD541D-3C9D-41C4-B240-A994EE4E0231}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Flash Player 21 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_678cd98c8365a5647f9a2e539d120a8) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Reader 9.3 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
Aegisub 3.2.2 (HKLM-x32\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 3.2.2 - Aegisub Team)
Apple Application Support (32-bit) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
AVS Video Editor 7.2.1 (HKLM-x32\...\AVS Video Editor_is1) (Version: 7.2.1.269 - Online Media Technologies Ltd.)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Camtasia Studio 8 (HKLM-x32\...\{AF33D0D2-2627-4AC8-8473-FDBB7892129C}) (Version: 8.6.0.2079 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0115 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\Discord) (Version: 0.0.291 - Hammer & Chisel, Inc.)
Dogz 5 (HKLM-x32\...\{12DCDE3D-5C8E-4C5E-A7E4-CEF30F578179}) (Version: - )
Dogz 5 (HKLM-x32\...\InstallShield_{5852AC18-76CA-45FB-A742-96BA8CF1B5BF}) (Version: 5.00.000 - Ubi Soft)
Free Video Editor (HKLM-x32\...\Free Video Editor_is1) (Version: 1.4.26.119 - DVDVideoSoft Ltd.)
GIMP 2.6.11 (HKLM-x32\...\WinGimp-2.0_is1) (Version: 2.6.11 - The GIMP Team)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
iTunes (HKLM\...\{9F4BF859-C3A4-4AB6-BDD1-9C5D58188598}) (Version: 12.4.1.6 - Apple Inc.)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Live! Cam Sync HD VF0770 Driver (1.00.02.00) (HKLM\...\Creative VF0770) (Version: - Creative Technology Ltd.)
Malwarebytes Anti-Malware wersja 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Melodyne 3.1 (x32 Version: 3.1.0200 - Celemony Software GmbH) Hidden
Melodyne 3.2 (HKLM-x32\...\{A1F143D1-1F0D-44FB-A44B-71D4367D16DE}) (Version: 3.2.0202 - Celemony Software GmbH)
Melodyne 3.2 (x32 Version: 3.2.0202 - Celemony Software GmbH) Hidden
Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation)
Opera Stable 38.0.2220.29 (HKLM-x32\...\Opera 38.0.2220.29) (Version: 38.0.2220.29 - Opera Software)
PaintTool SAI Ver.1 (HKLM-x32\...\PaintToolSAI) (Version: - )
PDF Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Petz 5 (x32 Version: 5.00.000 - Ubi Soft) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6650 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6767 - Realtek Semiconductor Corp.)
REAPER (x64) (HKLM\...\REAPER) (Version: - )
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.)
SMITE (HKLM\...\Steam App 386360) (Version: - Hi-Rez Studios)
SpeedRunners (HKLM\...\Steam App 207140) (Version: - DoubleDutch Games)
Star Stable (HKLM-x32\...\{2B03B553-4983-4005-99C4-31DFC25B4BB9}) (Version: 1.00.0000 - Star Stable Entertainment AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.59518 - TeamViewer)
The Sims 3 (HKLM-x32\...\The Sims 3_is1) (Version: The Sims 3 - )
The Sims 3 Cztery pory roku (HKLM-x32\...\The Sims 3 Cztery pory roku_is1) (Version: The Sims 3 Cztery pory roku - )
The Sims 3 Diesel – akcesoria (HKLM-x32\...\The Sims 3 Diesel – akcesoria_is1) (Version: The Sims 3 Diesel – akcesoria - )
The Sims 3 Impreza w plenerze – akcesoria (HKLM-x32\...\The Sims 3 Impreza w plenerze – akcesoria_is1) (Version: The Sims 3 Impreza w plenerze – akcesoria - )
The Sims 3 Kariera (HKLM-x32\...\The Sims 3 Kariera_is1) (Version: The Sims 3 Kariera - )
The Sims 3 Luksusowy wypoczynek Akcesoria (HKLM-x32\...\The Sims 3 Luksusowy wypoczynek Akcesoria_is1) (Version: The Sims 3 Luksusowy wypoczynek Akcesoria - )
The Sims 3 Miejskie Życie - akcesoria (HKLM-x32\...\The Sims 3 Miejskie Życie - akcesoria_is1) (Version: The Sims 3 Miejskie Życie - akcesoria - )
The Sims 3 Nie z tego świata (HKLM-x32\...\The Sims 3 Nie z tego świata_is1) (Version: The Sims 3 Nie z tego świata - )
The Sims 3 Nowoczesny apartament - akcesoria (HKLM-x32\...\The Sims 3 Nowoczesny apartament - akcesoria_is1) (Version: The Sims 3 Nowoczesny apartament - akcesoria - )
The Sims 3 Po Zmroku (HKLM-x32\...\The Sims 3 Po Zmroku_is1) (Version: The Sims 3 Po Zmroku - )
The Sims 3 Pokolenia (HKLM-x32\...\The Sims 3 Pokolenia_is1) (Version: The Sims 3 Pokolenia - )
The Sims 3 Słodkie Niespodzianki Katy Perry (HKLM-x32\...\The Sims 3 Słodkie Niespodzianki Katy Perry_is1) (Version: The Sims 3 Słodkie Niespodzianki Katy Perry - )
The Sims 3 Szybka jazda – akcesoria (HKLM-x32\...\The Sims 3 Szybka jazda – akcesoria_is1) (Version: The Sims 3 Szybka jazda – akcesoria - )
The Sims 3 Wymarzone Podróże (HKLM-x32\...\The Sims 3 Wymarzone Podróże_is1) (Version: The Sims 3 Wymarzone Podróże - )
The Sims 3 Zostań gwiazdą (HKLM-x32\...\The Sims 3 Zostań gwiazdą_is1) (Version: The Sims 3 Zostań gwiazdą - )
The Sims 3 Zwierzaki (HKLM-x32\...\The Sims 3 Zwierzaki_is1) (Version: The Sims 3 Zwierzaki - )
Unity Web Player (HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\UnityWebPlayer) (Version: 5.3.2f1 - Unity Technologies ApS)
USB Tablet Manager (HKLM\...\RmTablet) (Version: 5.01 - )
Vegas Pro 13.0 (64-bit) (HKLM\...\{D0360940-CCC6-11E3-B9C6-F04DA23A5C58}) (Version: 13.0.310 - Sony)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinZip (HKLM-x32\...\WinZip) (Version: 2.0.39 - Winzipper Pvt Ltd.) <==== UWAGA
YTD Video Downloader 5.5 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 5.5 - GreenTree Applications SRL) <==== UWAGA

==================== Niestandardowe rejestracje CLSID (filtrowane): ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Zaplanowane zadania (filtrowane) =============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {2A390026-1F85-4A26-A9FF-600DF36801BC} - System32\Tasks\Opera scheduled Autoupdate 1452962347 => C:\Program Files (x86)\Opera\launcher.exe [2016-06-07] (Opera Software)
Task: {31304331-0908-408C-9D31-9DAB325F105C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-13] (Adobe Systems Incorporated)
Task: {3E25AEC4-E2E5-4C4F-A626-BE8B71A9467F} - System32\Tasks\{085821D2-65D4-4E04-9A93-9B03AB459C2F} => pcalua.exe -a "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\Creative Cloud Uninstaller.exe"
Task: {5D967706-C52E-45C4-A47D-F951E8DC518E} - System32\Tasks\{191DECE5-F1E3-41D3-B529-DD7564A7F78C} => pcalua.exe -a "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\Creative Cloud Uninstaller.exe"
Task: {61B78D02-4FF6-46D7-8C27-2AE52EC7475B} - System32\Tasks\{8B247195-81AF-4A30-A7AA-F888E1C98911} => pcalua.exe -a "C:\Users\julia\Downloads\Celemony Melodyne Studio Edition v3.2.2.2\Celemony Melodyne Studio Edition v3.2.2.2\setup.exe" -d "C:\Users\julia\Downloads\Celemony Melodyne Studio Edition v3.2.2.2\Celemony Melodyne Studio Edition v3.2.2.2"
Task: {6EA9F5A1-C68C-4496-BCA2-F2812904EEE2} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {969B165A-47C7-44BD-B074-B2C39FF897A9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd)
Task: {9A3FA4F7-248D-4B87-BD3A-EC6B887045BF} - System32\Tasks\{989B1A30-018D-4C18-906B-92479C91F00F} => pcalua.exe -a "C:\Program Files (x86)\CALLOF~1\UNINST~1\UNWISE.EXE" -c C:\Program Files (x86)\CALLOF~1\UNINST~1\INSTALL.LOG
Task: {9C0E37C1-36B6-49A4-8577-96A044BC5DED} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_242_pepper.exe [2016-05-13] (Adobe Systems Incorporated)
Task: {D0CB70EB-D64C-47C0-8E2D-31257E18EC42} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software)
Task: {F5F8A981-D53E-42E0-9C7C-C1151D38F942} - System32\Tasks\{D02B1C09-FFEB-472E-B197-5741FC96CFE4} => pcalua.exe -a "C:\Program Files (x86)\Common Files\INSTAL~1\Driver\8\INTEL3~1\IDriver.exe" -c /M{5852AC18-76CA-45FB-A742-96BA8CF1B5BF}

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_242_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Skróty =============================

(Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)

==================== Załadowane moduły (filtrowane) ==============

2016-03-18 22:56 - 2016-03-18 22:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 01337144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-04-02 22:53 - 2012-10-19 11:01 - 00581120 _____ () C:\Windows\system32\atwtusb.exe
2015-10-22 13:22 - 2016-05-01 12:23 - 00174872 _____ () D:\Program Files\TeamSpeak 3 Client\quazip.dll
2015-10-22 13:21 - 2016-05-01 12:23 - 00103192 _____ () D:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2015-10-22 13:21 - 2016-05-01 12:23 - 00107800 _____ () D:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2016-03-19 21:48 - 2016-03-19 21:48 - 00262656 _____ () D:\Program Files\TeamSpeak 3 Client\plugins\ClownfishForTeamspeak_win64.dll
2015-10-22 13:22 - 2016-05-01 12:23 - 00312088 _____ () D:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2015-10-22 13:22 - 2016-05-01 12:23 - 00485656 _____ () D:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-01-21 17:54 - 2015-12-21 22:42 - 01294336 _____ () D:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
2016-06-02 17:41 - 2016-06-02 17:41 - 02322936 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.19\deploy\LoLLauncher.exe
2016-06-02 17:41 - 2016-06-02 17:41 - 04283896 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.59\deploy\LoLPatcher.exe
2015-12-21 22:48 - 2015-12-21 22:48 - 00074752 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.202\deploy\LolClient.exe
2016-05-08 16:27 - 2016-05-08 16:27 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-05-08 16:27 - 2016-05-08 16:27 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-06-11 12:51 - 2016-06-11 12:51 - 02932736 _____ () C:\Program Files\AVAST Software\Avast\defs\16061100\algo.dll
2016-05-08 16:27 - 2016-05-08 16:27 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-01-23 18:33 - 2016-01-19 05:02 - 00110952 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2016-01-23 18:33 - 2016-01-19 05:02 - 00253800 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll
2016-01-23 18:33 - 2016-01-19 05:02 - 00295272 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll
2016-01-23 18:33 - 2016-01-19 05:02 - 00104296 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2016-01-23 18:33 - 2016-01-19 05:02 - 00020328 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2016-01-23 18:33 - 2016-01-19 05:02 - 00044392 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2016-06-09 19:18 - 2016-06-09 19:18 - 67942952 _____ () C:\Program Files (x86)\Opera\38.0.2220.29\opera.dll
2016-06-09 19:18 - 2016-06-09 19:17 - 02203176 _____ () C:\Program Files (x86)\Opera\38.0.2220.29\libglesv2.dll
2016-06-09 19:18 - 2016-06-09 19:17 - 00087080 _____ () C:\Program Files (x86)\Opera\38.0.2220.29\libegl.dll
2016-06-05 10:40 - 2016-06-03 02:40 - 02779832 _____ () C:\Users\julia\AppData\Local\Discord\app-0.0.291\libdiscord.dll
2016-06-05 10:40 - 2016-06-03 02:40 - 01746104 _____ () C:\Users\julia\AppData\Local\Discord\app-0.0.291\ffmpeg.dll
2016-06-05 10:40 - 2016-06-03 02:40 - 00112312 _____ () \\?\C:\Users\julia\AppData\Local\Discord\app-0.0.291\resources\node_modules\discord_overlay\discord_overlay.node
2016-06-05 10:40 - 2016-06-03 02:40 - 01843896 _____ () C:\Users\julia\AppData\Local\Discord\app-0.0.291\libglesv2.dll
2016-06-05 10:40 - 2016-06-03 02:40 - 00020664 _____ () C:\Users\julia\AppData\Local\Discord\app-0.0.291\libegl.dll
2016-06-11 13:17 - 2016-06-11 13:17 - 00140800 _____ () \\?\C:\Users\julia\AppData\Local\Temp\F24A.tmp.node
2016-06-02 17:41 - 2016-06-02 17:41 - 01444856 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.59\deploy\RiotLauncher.dll
2016-04-20 17:40 - 2016-04-20 17:40 - 04887216 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.202\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll

==================== Alternate Data Streams (filtrowane) =========

(Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.)


==================== Tryb awaryjny (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.)


==================== Powiązania plików (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.)

HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\Software\Classes\regfile: regedit.exe "%1" <===== UWAGA

==================== Internet Explorer - Witryny zaufane i z ograniczeniami ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)


==================== Hosts - zawartość: ==========================

(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)

2009-07-14 04:34 - 2016-05-23 20:04 - 00001093 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 www.mirillis.com
127.0.0.1 s0ft4pc.com
127.0.0.1 serwer2.paka-service.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com

==================== Inne obszary ============================

(Obecnie brak automatycznej naprawy dla tej sekcji.)

HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\julia\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 62.179.1.61 - 62.179.1.63
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Zapora systemu Windows [funkcja włączona]

==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==

(Obecnie brak automatycznej naprawy dla tej sekcji.)

MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: MacrokeyManager => WTMKM.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "D:\Program Files (x86)\Steam\steam.exe" -silent

==================== Reguły Zapory systemu Windows (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

FirewallRules: [{1482F22C-CC10-4D84-A6B0-E90541D06D92}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{F73E6557-5F1F-469A-B3D1-61A0A6BC9CAA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{9EAEAC03-B8FC-4A5C-967D-54635DB0538C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{85E80303-898E-431F-8582-759536B8FC83}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B8804B0B-E594-4C2C-A141-E827F85DF26A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{74CBFCBF-C2C4-4F10-98BD-934F52C49DC8}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F37DD30B-2144-4580-A5B6-06AC40C662BC}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A087C6C1-4B7D-45C8-9125-BBB5491F72ED}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{F9F99E46-8FFB-4791-894A-3DC7D3B5764B}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{A723A45E-0FDA-4694-B0D2-56FB3BB6EB80}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{6823CC33-AD3F-42BC-854C-849372237A74}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{8D54491C-34DD-4A5C-9B24-F8A1C4B3A7EF}] => (Allow) LPort=8317
FirewallRules: [{FC35616D-0B80-4791-B246-20DC4F14E0C7}] => (Allow) C:\Windows\Temp\download\MiniThunderPlatform.exe
FirewallRules: [{F45394DB-0DAC-4E70-9882-DA8B39C25D75}] => (Allow) C:\Windows\Temp\download\MiniThunderPlatform.exe
FirewallRules: [{C6D2BF26-0A01-4161-ADDA-8DA9FA986B75}] => (Allow) C:\ProgramData\Guntony\protect\protect.exe
FirewallRules: [{A6F1F771-FD7E-453A-92E4-B76BDF212C94}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C376250E-611F-4C88-AE63-E8D1C31CA24A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{28731D57-781E-41C3-91F4-D9427C2AD0F1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{09983B64-4833-477B-816C-281052A433CF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4AC893ED-01A9-484B-9548-8FDE13555E3C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F7171206-9178-456B-881E-3390B257CF63}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{218F9845-5555-47AB-9CAD-2157BA68443C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E6F4B291-B9E9-41AE-B3C2-84605BA2B54A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{24AF628C-EE38-4C80-9A5A-EAE0AAC53361}] => (Allow) D:\Program Files\iTunes\iTunes.exe
FirewallRules: [{21D3069B-6707-4B29-9684-F65BD6FBD0F2}] => (Allow) C:\Program Files (x86)\pandasecuritytb\cleanupie.exe
FirewallRules: [{CBDA3468-B8BC-4A26-9D29-868B974022CC}] => (Allow) C:\Program Files (x86)\pandasecuritytb\cleanupie.exe
FirewallRules: [{7E2B87EE-F45D-4921-931E-6337A7FFCFCC}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe
FirewallRules: [{A1E3E1C1-1474-4489-98ED-DE7983ADB2D7}] => (Allow) C:\Program Files (x86)\pandasecuritytb\ToolbarCleaner.exe

==================== Punkty Przywracania systemu =========================

02-06-2016 22:19:32 Zaplanowany punkt kontrolny
09-06-2016 19:25:28 ASU_MSI_TRAN

==================== Wadliwe urządzenia w Menedżerze urządzeń =============

Name: Karta tunelowania Teredo firmy Microsoft
Description: Karta tunelowania Teredo firmy Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Unknown Device
Description: Unknown Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standardowy kontroler hosta USB)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.


==================== Błędy w Dzienniku zdarzeń: =========================

Dziennik Aplikacja:
==================
Error: (06/11/2016 02:33:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: audacity.exe, wersja: 2.1.0.0, sygnatura czasowa: 0x550fc657
Nazwa modułu powodującego błąd: audacity.exe, wersja: 2.1.0.0, sygnatura czasowa: 0x550fc657
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x000d4a90
Identyfikator procesu powodującego błąd: 0xa0c
Godzina uruchomienia aplikacji powodującej błąd: 0xaudacity.exe0
Ścieżka aplikacji powodującej błąd: audacity.exe1
Ścieżka modułu powodującego błąd: audacity.exe2
Identyfikator raportu: audacity.exe3

Error: (06/11/2016 01:05:28 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/11/2016 12:54:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/11/2016 12:43:34 PM) (Source: MsiInstaller) (EventID: 11935) (User: julia-Komputer)
Description: Product: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 -- Error 1935.An error occurred during the installation of assembly 'Microsoft.VC90.MFC,version="9.0.30729.4148",publicKeyToken="1fc8b3b9a1e18e3b",processorArchitecture="x86",type="win32"'. Please refer to Help and Support for more information. HRESULT: 0x80070091. assembly interface: IAssemblyCacheItem, function: Commit, component: {AFA31654-361E-33B5-9ED5-049A6889325C}

Error: (06/11/2016 08:57:11 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/09/2016 07:15:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SoftwareUpdate.exe w wersji 2.1.4.131 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

Identyfikator procesu: c64

Godzina rozpoczęcia: 01d1c1c12e2ce512

Godzina zakończenia: 125

Ścieżka aplikacji: C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe

Identyfikator raportu:

Error: (06/09/2016 07:14:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Skype.exe w wersji 7.22.0.109 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

Identyfikator procesu: 1a54

Godzina rozpoczęcia: 01d1c1b8b20ff3bb

Godzina zakończenia: 691

Ścieżka aplikacji: C:\Program Files (x86)\Skype\Phone\Skype.exe

Identyfikator raportu:

Error: (06/08/2016 03:41:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2016 03:20:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2016 09:33:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Dziennik System:
=============
Error: (06/11/2016 01:05:28 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
aswNetSec

Error: (06/11/2016 01:05:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi Delete Key Thinks Bubble z powodu następującego błędu:
%%3

Error: (06/11/2016 01:05:04 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (06/11/2016 01:05:04 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (06/11/2016 12:53:53 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
aswNetSec

Error: (06/11/2016 12:53:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi Delete Key Thinks Bubble z powodu następującego błędu:
%%3

Error: (06/11/2016 12:53:28 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (06/11/2016 12:53:28 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (06/11/2016 08:58:35 AM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (06/11/2016 08:58:27 AM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active


==================== Statystyki pamięci ===========================

Procesor: AMD FX(tm)-6300 Six-Core Processor
Procent pamięci w użyciu: 76%
Całkowita pamięć fizyczna: 4093.55 MB
Dostępna pamięć fizyczna: 971.58 MB
Całkowita pamięć wirtualna: 8185.29 MB
Dostępna pamięć wirtualna: 4416.58 MB

==================== Dyski ================================

Drive c: () (Fixed) (Total:195.41 GB) (Free:85.79 GB) NTFS
Drive d: () (Fixed) (Total:270.25 GB) (Free:202.19 GB) NTFS
Drive e: (Tabaluga) (CDROM) (Total:0.45 GB) (Free:0 GB) CDFS

==================== MBR & Tablica partycji ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 465.8 GB) (Disk ID: EF3EEF3E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=195.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=270.3 GB) - (Type=07 NTFS)

==================== Koniec Addition.txt ============================

Spoiler:

Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:10-06-2016
Uruchomiony przez julia (administrator) JULIA-KOMPUTER (11-06-2016 16:42:50)
Uruchomiony z C:\Users\julia\Desktop
Załadowane profile: julia (Dostępne profile: julia)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Opera)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Windows\System32\atwtusb.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Windows\System32\atwtusb.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Opera Software) C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\38.0.2220.29\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Hammer & Chisel, Inc.) C:\Users\julia\AppData\Local\Discord\app-0.0.291\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\julia\AppData\Local\Discord\app-0.0.291\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\julia\AppData\Local\Discord\app-0.0.291\Discord.exe
(The Audacity Team) D:\Program Files (x86)\Audacity\audacity.exe
(TeamSpeak Systems GmbH) D:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Opera Software) C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe
() D:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
() D:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.19\deploy\LoLLauncher.exe
() D:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.59\deploy\LoLPatcher.exe
() D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.202\deploy\LolClient.exe
(Opera Software) C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe
a

==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13213840 2012-10-26] (Realtek Semiconductor)
HKLM\...\Run: [AtwtusbIcon] => C:\Windows\system32\AtwtusbIcon.exe [3593728 2012-09-10] ()
HKLM\...\Run: [iTunesHelper] => D:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [V0770Mon.exe] => C:\Windows\V0770Mon.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM\...\Winlogon: [Userinit] wscript,
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [4177784 2016-01-15] (Disc Soft Ltd)
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\Run: [Discord] => C:\Users\julia\AppData\Local\Discord\app-0.0.291\Discord.exe [57929912 2016-06-05] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd)
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation)
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\RunOnce: [panda] => reg.exe delete "HKCU\Software\AppDataLow\Software\panda" /f
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\RunOnce: [panda_XP] => reg.exe delete "HKCU\Software\panda" /f
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: H - H:\Launch.exe
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {0c9d5e4a-c9b4-11e5-9fa8-fcaa14bb116e} - J:\
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {0c9d5e55-c9b4-11e5-9fa8-fcaa14bb116e} - K:\
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {4e7f5e15-c751-11e5-97e7-fcaa14bb116e} - J:\
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {6fc04ccc-a8aa-11e5-a78b-fcaa14bb116e} - H:\autorun.exe
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {6fc04de3-a8aa-11e5-a78b-fcaa14bb116e} - I:\Autorun.exe
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {6fc04df9-a8aa-11e5-a78b-fcaa14bb116e} - J:\Autorun.exe
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {6fc04dfd-a8aa-11e5-a78b-fcaa14bb116e} - K:\autorun.exe
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {6fc04e19-a8aa-11e5-a78b-fcaa14bb116e} - H:\
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {6fc04e24-a8aa-11e5-a78b-fcaa14bb116e} - I:\Autorun.exe
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {6fc04e38-a8aa-11e5-a78b-fcaa14bb116e} - J:\
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {e5032bf7-c1f3-11e5-973c-fcaa14bb116e} - H:\startme.exe
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {e5032ced-c1f3-11e5-973c-fcaa14bb116e} - H:\Launch.exe
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\...\MountPoints2: {fa51d0e0-a828-11e5-9068-806e6f6e6963} - E:\vcd_play.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Brak pliku

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\Parameters: [DhcpNameServer] 62.179.1.61 62.179.1.63
Tcpip\..\Interfaces\{81AAB8BC-A6E0-420D-9F03-96295BCE5CE6}: [DhcpNameServer] 62.179.1.61 62.179.1.63
Tcpip\..\Interfaces\{C0F5FDB1-ECBA-425E-B40E-733B892C23AA}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://pandasecurity.mystart.com/?pr=vmn&id=pandasecuritytb&v=4_3&utm_campaign=675&idate=2016-06-11&ent=hp_675&u=7AAB75DC093C1F2C33C5EE575BF71CB6
SearchScopes: HKU\S-1-5-21-3334848187-4153718758-3862772024-1000 -> DefaultScope {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://pandasecurity.mystart.com/results.php?pr=vmn&gen=ms&id=pandasecuritytb&v=4_3&idate=2016-06-11&ent=ch_675&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3334848187-4153718758-3862772024-1000 -> {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://pandasecurity.mystart.com/results.php?pr=vmn&gen=ms&id=pandasecuritytb&v=4_3&idate=2016-06-11&ent=ch_675&q={searchTerms}
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-06-09] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-09] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-13] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-13] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-06-09] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-06-09] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3334848187-4153718758-3862772024-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\julia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-01-22] (Unity Technologies ApS)

Chrome:
=======
CHR Profile: C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentacje Google) - C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-07]
CHR Extension: (Dokumenty Google) - C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-07]
CHR Extension: (Dysk Google) - C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-07]
CHR Extension: (YouTube) - C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-07]
CHR Extension: (Avast SafePrice) - C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-06-07]
CHR Extension: (Arkusze Google) - C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-07]
CHR Extension: (Avast Online Security) - C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-07]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-07]
CHR Extension: (Gmail) - C:\Users\julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-07]
CHR HKLM-x32\...\Chrome\Extension: [fdhbkaahephniejapepaiggngjnedpci] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR Extension: (Adblock Plus) - C:\Users\julia\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2016-06-03]

==================== Usługi (filtrowane) ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [388968 2016-01-19] (Digital Wave Ltd.)
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369464 2016-01-15] (Disc Soft Ltd)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2016-01-11] (Macrovision Europe Ltd.) [Brak podpisu cyfrowego]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-09-10] (Microsoft Corporation)
R2 WTService; C:\Windows\system32\atwtusb.exe [581120 2012-10-19] () [Brak podpisu cyfrowego]
S2 vowisebe; Brak ImagePath

===================== Sterowniki (filtrowane) ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-12-22] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-01-24] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 moufiltr; C:\Windows\System32\DRIVERS\moufiltr.sys [7680 2009-03-08] (Windows (R) Codename Longhorn DDK provider)
S3 V0770Vid; C:\Windows\System32\DRIVERS\V0770Vid.sys [379776 2012-06-01] (Creative Technology Ltd.)
R3 vhidmini; C:\Windows\System32\DRIVERS\walvhid.sys [7552 2009-08-26] (Windows (R) Win 7 DDK provider)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2016-06-11 15:44 - 2016-06-11 15:44 - 18075180 _____ C:\Users\julia\Desktop\welllll.wav
2016-06-11 15:44 - 2016-06-11 15:44 - 00883716 _____ C:\Users\julia\Desktop\welllll.wav.mdd
2016-06-11 15:31 - 2016-06-11 15:31 - 00702216 _____ C:\Users\julia\Desktop\fghfghsftshft.melo.wav
2016-06-11 15:30 - 2016-06-11 15:30 - 00702216 _____ C:\Users\julia\Desktop\fghfghftshft.melo.wav
2016-06-11 15:30 - 2016-06-11 15:30 - 00702216 _____ C:\Users\julia\Desktop\fghfghftghft.melo.wav
2016-06-11 15:29 - 2016-06-11 15:29 - 00702216 _____ C:\Users\julia\Desktop\fghfghftghft.wav
2016-06-11 15:29 - 2016-06-11 15:29 - 00035537 _____ C:\Users\julia\Desktop\fghfghftghft.wav.mdd
2016-06-11 15:11 - 2016-06-11 15:11 - 02147372 _____ C:\Users\julia\Desktop\3.wav
2016-06-11 15:08 - 2016-06-11 15:08 - 02147372 _____ C:\Users\julia\Desktop\asd.melo.2.wav
2016-06-11 15:02 - 2016-06-11 15:02 - 02147372 _____ C:\Users\julia\Desktop\asd.melo.1.wav
2016-06-11 15:02 - 2016-06-11 15:02 - 02147372 _____ C:\Users\julia\Desktop\as2d.melo.wav
2016-06-11 15:00 - 2016-06-11 15:01 - 02147372 _____ C:\Users\julia\Desktop\asd.melo.wav
2016-06-11 14:55 - 2016-06-11 14:55 - 02087468 _____ C:\Users\julia\Desktop\2.wav
2016-06-11 14:55 - 2016-06-11 14:55 - 00117575 _____ C:\Users\julia\Desktop\asd.wav.mdd
2016-06-11 14:53 - 2016-06-11 14:53 - 02087468 _____ C:\Users\julia\Desktop\appleb4.melo.1.wav
2016-06-11 14:51 - 2016-06-11 14:51 - 02087468 _____ C:\Users\julia\Desktop\appl2eb4.melo.wav
2016-06-11 14:48 - 2016-06-11 14:48 - 02087468 _____ C:\Users\julia\Desktop\appleb4.melo.wav
2016-06-11 14:43 - 2016-06-11 14:43 - 02299436 _____ C:\Users\julia\Desktop\1.wav
2016-06-11 14:43 - 2016-06-11 14:43 - 00102852 _____ C:\Users\julia\Desktop\appleb4.wav.mdd
2016-06-11 14:40 - 2016-06-11 14:40 - 02299436 _____ C:\Users\julia\Desktop\app2leb3.melo.wav
2016-06-11 14:39 - 2016-06-11 14:39 - 02299436 _____ C:\Users\julia\Desktop\appleb3.melo.wav
2016-06-11 14:34 - 2016-06-11 14:34 - 02147372 _____ C:\Users\julia\Desktop\asd.wav
2016-06-11 14:34 - 2016-06-11 14:34 - 00114974 _____ C:\Users\julia\Desktop\appleb3.wav.mdd
2016-06-11 14:33 - 2016-06-11 14:33 - 02087468 _____ C:\Users\julia\Desktop\appleb4.wav
2016-06-11 14:32 - 2016-06-11 14:32 - 02299436 _____ C:\Users\julia\Desktop\appleb3.wav
2016-06-11 14:11 - 2016-06-11 14:11 - 06970924 _____ C:\Users\julia\Downloads\zulia.wav
2016-06-11 14:11 - 2016-06-11 14:11 - 06387244 _____ C:\Users\julia\Downloads\kaki.wav
2016-06-11 14:10 - 2016-06-11 14:10 - 07418924 _____ C:\Users\julia\Downloads\twi.wav
2016-06-11 13:42 - 2016-06-11 13:42 - 00000070 _____ C:\Windows\RAVTC.TMP
2016-06-11 13:40 - 2016-06-11 13:40 - 01871272 _____ (Panda Security, S.L.) C:\Users\julia\Desktop\PANDAAP16.exe
2016-06-11 13:37 - 2016-06-11 13:37 - 00002576 _____ C:\Windows\SysWOW64\servers.def.vpx
2016-06-11 13:37 - 2016-06-11 13:37 - 00000445 _____ C:\Windows\SysWOW64\prod-pgm.vpx
2016-06-11 13:35 - 2016-06-11 12:51 - 00536312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswE38B.tmp
2016-06-11 13:35 - 2016-05-08 16:31 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswE4E3.tmp
2016-06-11 13:35 - 2016-05-08 16:27 - 00465792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswE92D.tmp
2016-06-11 13:35 - 2016-05-08 16:27 - 00287528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswE97C.tmp
2016-06-11 13:35 - 2016-05-08 16:27 - 00166432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswEB03.tmp
2016-06-11 13:35 - 2016-05-08 16:27 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswE87F.tmp
2016-06-11 13:35 - 2016-05-08 16:27 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswE63C.tmp
2016-06-11 13:35 - 2016-05-08 16:27 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswE8CE.tmp
2016-06-11 13:35 - 2016-05-08 16:27 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswE830.tmp
2016-06-11 13:35 - 2016-05-08 16:26 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswE570.tmp
2016-06-11 13:34 - 2016-06-11 13:34 - 00000000 ____D C:\Users\julia\AppData\Roaming\Search The Web
2016-06-11 13:34 - 2016-06-11 13:34 - 00000000 ____D C:\ProgramData\panda_url_filtering
2016-06-11 13:33 - 2016-06-11 13:42 - 00000000 ____D C:\Users\julia\AppData\Roaming\Panda Security
2016-06-11 13:32 - 2016-06-11 13:42 - 00000000 ____D C:\ProgramData\Panda Security
2016-06-11 13:31 - 2016-06-11 13:31 - 65309712 _____ (Panda Security, S.L.) C:\Users\julia\Downloads\FREEAV.exe
2016-06-11 13:30 - 2016-06-11 13:30 - 00983624 _____ ( ) C:\Users\julia\Desktop\Panda-Cloud-Antivirus-15003-dp.exe
2016-06-11 13:19 - 2016-06-11 13:19 - 00079346 _____ C:\Users\julia\Desktop\OTL.Txt
2016-06-11 13:19 - 2016-06-11 13:19 - 00052466 _____ C:\Users\julia\Desktop\Extras.Txt
2016-06-11 13:07 - 2016-06-11 13:08 - 00030748 _____ C:\Users\julia\Desktop\Addition.txt
2016-06-11 13:06 - 2016-06-11 16:43 - 00015842 _____ C:\Users\julia\Desktop\FRST.txt
2016-06-11 13:06 - 2016-06-11 16:42 - 00000000 ____D C:\FRST
2016-06-11 13:03 - 2016-06-11 13:03 - 02385408 _____ (Farbar) C:\Users\julia\Desktop\FRST64.exe
2016-06-11 13:01 - 2016-06-11 13:01 - 00000000 ____D C:\_OTL
2016-06-11 13:00 - 2016-06-11 13:00 - 00602112 _____ (OldTimer Tools) C:\Users\julia\Desktop\OTL.exe
2016-06-11 12:43 - 2016-06-11 12:43 - 00001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2016-06-11 12:43 - 2016-06-11 12:43 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2016-06-11 12:43 - 2016-06-11 12:43 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2016-06-11 12:43 - 2016-06-11 12:43 - 00000000 ____D C:\Program Files (x86)\My Company Name
2016-06-11 12:43 - 2011-11-03 03:01 - 00056208 ____N (Rovi Corporation) C:\Windows\system32\Drivers\PxHlpa64.sys
2016-06-11 12:43 - 2011-10-17 03:00 - 00010224 ____N (Sonic Solutions) C:\Windows\system32\Drivers\cdralw2k.sys
2016-06-11 12:43 - 2011-10-17 03:00 - 00010224 ____N (Sonic Solutions) C:\Windows\system32\Drivers\cdr4_xp.sys
2016-06-11 12:33 - 2016-06-11 12:33 - 00634332 _____ C:\Users\julia\Desktop\cenzura!.wav
2016-06-11 10:46 - 2016-06-11 10:56 - 00000000 ____D C:\Users\julia\Desktop\dash
2016-06-11 10:27 - 2016-06-11 10:29 - 259800283 _____ C:\Users\julia\Downloads\Adobe Audition CS6 Setup.rar
2016-06-11 10:25 - 2016-06-11 10:25 - 00588561 _____ C:\Users\julia\Downloads\Crack.rar
2016-06-11 10:25 - 2016-06-11 10:25 - 00000144 _____ C:\Users\julia\Downloads\Read me.txt
2016-06-09 23:32 - 2016-06-11 12:52 - 00151707 _____ C:\Users\julia\Desktop\cenzura!.aup
2016-06-09 23:31 - 2016-06-09 23:31 - 00000000 ____D C:\Users\julia\Desktop\cenzura!
2016-06-09 21:51 - 2016-06-09 21:51 - 04230311 _____ C:\Users\julia\Desktop\Start-Dash!!_(Off_Vocal).ogg
2016-06-09 21:08 - 2016-06-09 21:08 - 08201004 _____ C:\Users\julia\Downloads\Rzulia refren harmonia.wav
2016-06-09 19:57 - 2016-06-09 19:57 - 28005088 _____ C:\Users\julia\Downloads\untitled.wav
2016-06-09 19:53 - 2016-06-09 19:53 - 00160734 _____ C:\Users\julia\Downloads\Replica - Kiri - wokal.wav.reapeaks
2016-06-09 19:49 - 2016-06-09 19:49 - 11038302 _____ C:\Users\julia\Downloads\Replica - Kiri - wokal (1).wav
2016-06-09 19:30 - 2016-06-09 19:30 - 00001550 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-06-09 19:30 - 2016-06-09 19:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-06-09 19:30 - 2016-06-09 19:30 - 00000000 ____D C:\Program Files\iPod
2016-06-09 19:27 - 2016-06-09 19:27 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2016-06-09 19:27 - 2016-06-09 19:27 - 00000000 ____D C:\Program Files\Bonjour
2016-06-09 19:27 - 2016-06-09 19:27 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-06-07 16:59 - 2016-06-07 16:59 - 00987728 _____ (Google Inc.) C:\Users\julia\Downloads\ChromeSetup.exe
2016-06-07 16:41 - 2016-06-07 16:41 - 00006795 _____ C:\Users\julia\.recently-used.xbel
2016-06-06 22:51 - 2016-06-07 18:06 - 75676287 _____ C:\Users\julia\Downloads\Rekrutacja.zip
2016-06-05 22:09 - 2016-06-05 22:09 - 202711450 _____ C:\Users\julia\Downloads\[VCB-Studio] Love Live! 2nd Season [03][1080p][x264_aac]_cut_part1(1).avi
2016-06-01 23:31 - 2016-06-01 23:31 - 00633004 _____ C:\Users\julia\Downloads\Rzulia drugi głos.wav
2016-05-31 16:31 - 2016-05-31 16:31 - 07659564 _____ C:\Users\julia\Downloads\SDNozoRef.wav
2016-05-28 14:41 - 2016-05-28 14:41 - 06116845 _____ C:\Users\julia\Downloads\AudioSellswords.7z
2016-05-28 13:09 - 2016-05-31 18:14 - 00139425 _____ C:\Users\julia\Downloads\dsgr.aup
2016-05-28 13:09 - 2016-05-28 13:09 - 00000000 ____D C:\Users\julia\Downloads\dsgr_data
2016-05-28 11:20 - 2016-05-28 11:20 - 00640107 _____ C:\Users\julia\Downloads\SDNozomi.wav.mdd
2016-05-28 11:17 - 2016-05-28 11:17 - 10449630 _____ C:\Users\julia\Downloads\nao wokal w czesciach.zip
2016-05-28 11:17 - 2016-05-28 11:17 - 10449630 _____ C:\Users\julia\Downloads\nao wokal w czesciach (1).zip
2016-05-28 11:15 - 2016-05-28 11:15 - 12546092 _____ C:\Users\julia\Downloads\SDNozomi.wav
2016-05-28 10:45 - 2016-06-05 10:40 - 00002170 _____ C:\Users\julia\Desktop\Discord.lnk
2016-05-28 10:44 - 2016-06-05 10:40 - 00000000 ____D C:\Users\julia\AppData\Local\Discord
2016-05-28 10:44 - 2016-05-28 10:44 - 48494776 _____ (Hammer & Chisel, Inc.) C:\Users\julia\Downloads\DiscordSetup.exe
2016-05-26 22:51 - 2016-05-26 22:54 - 364749660 _____ C:\Users\julia\Downloads\start dash2.mp4
2016-05-26 22:30 - 2016-05-26 22:30 - 12774686 _____ C:\Users\julia\Documents\START - DASH hanayo mix.mp4
2016-05-26 20:24 - 2016-05-26 20:24 - 08948829 _____ C:\Users\julia\Downloads\Thintype_WinXP_Vista_7_8_v5.01.zip
2016-05-26 16:49 - 2016-06-09 23:49 - 00000000 ____D C:\Users\julia\Desktop\Start
2016-05-26 16:13 - 2016-05-26 16:14 - 81482175 _____ C:\Users\julia\Downloads\start dash.zip
2016-05-25 19:00 - 2016-05-25 19:00 - 04478013 _____ C:\Users\julia\Downloads\4 Shady Hill Lane - 5bd, 4.5ba.Sims3Pack
2016-05-25 18:42 - 2016-05-25 18:42 - 00445634 _____ C:\Users\julia\Downloads\MTS_NumberEi8ht_1310122_SharPeisbyNumberEi8htonMTS.rar
2016-05-25 18:41 - 2016-05-25 18:41 - 00508246 _____ C:\Users\julia\Downloads\Lady.Sims3Pack
2016-05-25 18:37 - 2016-05-25 18:37 - 00399460 _____ C:\Users\julia\Downloads\1227558.zip
2016-05-25 18:36 - 2016-05-25 18:36 - 00487184 _____ C:\Users\julia\Downloads\1128516.zip
2016-05-25 18:35 - 2016-05-25 18:35 - 00550615 _____ C:\Users\julia\Downloads\1123136.zip
2016-05-25 18:34 - 2016-05-25 18:34 - 10634027 _____ C:\Users\julia\Downloads\lillka_Teen Cat Sweater Dress.sims3pack
2016-05-25 18:34 - 2016-05-25 18:34 - 04050108 _____ C:\Users\julia\Downloads\Ade-Zella.sims3pack
2016-05-25 18:28 - 2016-05-25 18:28 - 00151899 _____ C:\Users\julia\Downloads\hb.sims3pack
2016-05-25 18:27 - 2016-05-25 18:27 - 00196966 _____ C:\Users\julia\Downloads\1228993.zip
2016-05-25 18:27 - 2016-05-25 18:27 - 00161798 _____ C:\Users\julia\Downloads\hbl.sims3pack
2016-05-25 18:26 - 2016-05-25 18:26 - 00772744 _____ C:\Users\julia\Downloads\Irish Tinker.Sims3Pack
2016-05-25 18:21 - 2016-05-25 18:21 - 03595966 _____ C:\Users\julia\Downloads\1243903.zip
2016-05-25 18:06 - 2016-05-25 18:06 - 04206243 _____ C:\Users\julia\Downloads\[artsims] Saint Laurent Plaid Shirt.rar
2016-05-25 16:35 - 2016-05-27 23:16 - 00001052 _____ C:\Users\julia\Desktop\The Sims 3.lnk
2016-05-25 16:35 - 2016-05-25 16:35 - 00000000 ____D C:\Users\julia\Documents\Electronic Arts
2016-05-25 12:48 - 2016-05-27 23:16 - 00001303 _____ C:\Users\Public\Desktop\YTD Video Downloader.lnk
2016-05-25 12:48 - 2016-05-25 12:48 - 00000000 ____D C:\ProgramData\YTD Video Downloader
2016-05-25 12:48 - 2016-05-25 12:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader
2016-05-25 12:48 - 2016-05-25 12:48 - 00000000 ____D C:\Program Files (x86)\GreenTree Applications
2016-05-24 19:36 - 2016-06-11 14:32 - 00000000 ____D C:\Users\julia\Desktop\light of your cutie mark
2016-05-23 22:19 - 2016-05-23 22:33 - 00000000 ____D C:\Users\julia\AppData\Local\Microsoft Games
2016-05-23 19:53 - 2016-05-31 22:39 - 00000000 ____D C:\PaintToolSAI
2016-05-23 19:53 - 2016-05-27 23:16 - 00000571 _____ C:\Users\Public\Desktop\PaintTool SAI Ver.1.lnk
2016-05-23 19:24 - 2016-05-23 19:24 - 00000000 ____D C:\Users\julia\Documents\ArtRage Paintings
2016-05-23 19:11 - 2016-05-23 19:11 - 00000000 ____D C:\ProgramData\Caphyon
2016-05-23 19:10 - 2016-05-23 19:24 - 00000000 ____D C:\Users\julia\AppData\Roaming\Ambient Design
2016-05-23 18:55 - 2012-09-10 13:54 - 03593728 _____ C:\Windows\system32\AtwtusbIcon.exe
2016-05-23 18:55 - 2012-08-29 19:09 - 00559104 _____ C:\Windows\RmTablet.exe
2016-05-23 18:55 - 2012-07-30 14:21 - 00096768 _____ (WALTOP International Corp.) C:\Windows\system32\WINTAB32.dll
2016-05-19 20:29 - 2016-05-19 20:29 - 05487532 _____ C:\Users\julia\Desktop\wyzszy.wav
2016-05-16 18:06 - 2016-05-16 18:06 - 11038302 _____ C:\Users\julia\Downloads\Replica - Kiri - wokal.wav
2016-05-16 18:06 - 2016-05-16 18:06 - 05341480 _____ C:\Users\julia\Downloads\Replica - Kiri - drugi głos.wav
2016-05-16 11:25 - 2016-05-16 11:25 - 00000000 ____D C:\Users\julia\AppData\Local\Guntony
2016-05-16 11:05 - 2016-05-27 23:16 - 00002118 _____ C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-16 11:05 - 2016-05-25 11:57 - 00000000 ____D C:\Program Files (x86)\Guntony
2016-05-16 11:05 - 2016-05-16 11:05 - 00000000 ____D C:\Users\Public\Documents\Guntony
2016-05-13 14:07 - 2016-05-13 14:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2016-05-13 14:06 - 2016-05-25 11:32 - 00000001 _____ C:\Windows\SysWOW64\pl.html
2016-05-13 14:04 - 2016-05-13 15:04 - 20381888 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2016-05-13 13:45 - 2016-05-13 14:13 - 00000000 ____D C:\Users\julia\Desktop\Projekty
2016-05-13 13:27 - 2016-05-13 13:28 - 00000000 ____D C:\Users\julia\Desktop\Start dash

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2016-06-11 16:34 - 2015-12-21 23:19 - 00000000 ____D C:\Users\julia\AppData\Roaming\TS3Client
2016-06-11 16:27 - 2016-01-26 01:52 - 00000000 ____D C:\Users\julia\AppData\Roaming\Celemony Software GmbH
2016-06-11 16:04 - 2016-01-17 23:54 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-06-11 16:03 - 2015-12-21 22:48 - 00000000 ____D C:\Users\julia\AppData\Roaming\Audacity
2016-06-11 15:47 - 2016-01-17 23:54 - 00000992 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-06-11 14:33 - 2016-03-13 20:24 - 00000000 ____D C:\Users\julia\AppData\Local\CrashDumps
2016-06-11 13:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-06-11 13:35 - 2016-05-08 16:24 - 00000000 ____D C:\ProgramData\AVAST Software
2016-06-11 13:33 - 2015-12-21 23:29 - 00072200 _____ C:\Users\julia\AppData\Local\GDIPFONTCACHEV1.DAT
2016-06-11 13:13 - 2009-07-14 06:45 - 00028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-11 13:13 - 2009-07-14 06:45 - 00028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-11 13:05 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-11 13:05 - 2009-07-14 04:34 - 00000418 _____ C:\Windows\win.ini
2016-06-11 12:44 - 2015-12-21 23:29 - 00000000 ____D C:\Users\julia\AppData\Roaming\Adobe
2016-06-11 12:43 - 2016-01-11 20:15 - 00000000 ____D C:\Users\julia\AppData\Local\Adobe
2016-06-11 12:43 - 2015-12-21 16:42 - 00000000 ____D C:\ProgramData\Adobe
2016-06-11 12:43 - 2015-12-21 16:42 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-06-11 11:00 - 2015-12-27 00:18 - 00000000 ____D C:\Users\julia\Desktop\Obrazki
2016-06-11 08:56 - 2016-02-29 21:28 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-06-10 00:38 - 2015-12-28 14:04 - 00000000 ____D C:\Users\julia\AppData\Roaming\Skype
2016-06-10 00:19 - 2015-12-26 01:04 - 00000000 ____D C:\Users\julia\AppData\Roaming\TeamViewer
2016-06-09 19:30 - 2016-02-29 21:26 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-06-09 19:27 - 2016-02-29 21:28 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-06-09 19:27 - 2016-01-11 20:56 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-06-09 19:23 - 2016-01-31 15:42 - 00000000 ____D C:\Users\julia\.oracle_jre_usage
2016-06-09 19:22 - 2016-01-31 15:47 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-06-09 19:22 - 2016-01-31 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-06-09 19:22 - 2016-01-31 15:45 - 00000000 ____D C:\Program Files (x86)\Java
2016-06-09 19:18 - 2016-01-20 21:30 - 00003900 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1452962347
2016-06-09 19:18 - 2015-12-22 22:58 - 00000000 ____D C:\Program Files (x86)\Opera
2016-06-07 17:02 - 2015-12-21 22:30 - 00000000 ____D C:\Program Files (x86)\Google
2016-06-07 16:59 - 2015-12-21 22:29 - 00000000 ____D C:\Users\julia\AppData\Local\Google
2016-06-07 16:41 - 2015-12-23 13:37 - 00000000 ____D C:\Users\julia\AppData\Roaming\gtk-2.0
2016-06-07 16:41 - 2015-12-23 13:05 - 00000000 ____D C:\Users\julia\.gimp-2.6
2016-06-07 16:41 - 2015-12-21 23:29 - 00000000 ____D C:\Users\julia
2016-06-07 16:36 - 2016-01-10 17:02 - 00049152 ____H C:\Users\julia\Desktop\photothumb.db
2016-06-06 21:35 - 2016-01-31 00:18 - 00000000 ____D C:\Users\julia\AppData\Roaming\discord
2016-06-05 21:34 - 2016-01-10 17:01 - 00000000 ____D C:\Users\julia\AppData\Roaming\PhotoScape
2016-06-05 10:40 - 2016-01-31 00:18 - 00000000 ____D C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2016-06-05 10:40 - 2016-01-31 00:18 - 00000000 ____D C:\Users\julia\AppData\Local\SquirrelTemp
2016-05-27 23:16 - 2016-05-03 11:27 - 00002537 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Excel Viewer.lnk
2016-05-27 23:16 - 2016-05-02 23:48 - 00000981 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-05-27 23:16 - 2016-03-17 21:57 - 00001927 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia.lnk
2016-05-27 23:16 - 2016-02-19 02:03 - 00000770 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aegisub.lnk
2016-05-27 23:16 - 2016-01-16 18:39 - 00001137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-05-27 23:16 - 2016-01-11 20:57 - 00000866 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS3.lnk
2016-05-27 23:16 - 2016-01-11 20:56 - 00000920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Stock Photos CS3.lnk
2016-05-27 23:16 - 2016-01-11 20:54 - 00001413 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk
2016-05-27 23:16 - 2016-01-11 20:53 - 00000903 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk
2016-05-27 23:16 - 2016-01-11 20:51 - 00000840 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk
2016-05-27 23:16 - 2015-12-21 23:29 - 00001437 _____ C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-05-27 23:16 - 2015-12-21 22:48 - 00000712 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-05-27 23:16 - 2015-12-21 22:41 - 00001503 _____ C:\Users\julia\Desktop\Sosnowiec.lnk
2016-05-27 23:16 - 2015-12-21 16:42 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2016-05-27 23:16 - 2014-09-10 11:14 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-05-27 23:16 - 2014-09-10 11:14 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-05-27 23:16 - 2009-07-14 07:01 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-05-27 23:16 - 2009-07-14 06:57 - 00001523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-05-27 23:16 - 2009-07-14 06:57 - 00001352 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-05-27 23:16 - 2009-07-14 06:57 - 00001304 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-05-27 23:16 - 2009-07-14 06:57 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-05-27 23:16 - 2009-07-14 06:54 - 00001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-05-27 23:16 - 2009-07-14 06:49 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-05-27 23:14 - 2016-05-02 23:59 - 00000000 ____D C:\Program Files (x86)\Skype
2016-05-26 23:52 - 2016-05-02 23:48 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-05-26 13:09 - 2015-12-29 20:49 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-05-26 13:09 - 2015-12-29 20:49 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-25 17:50 - 2015-12-23 19:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O22y Inc
2016-05-25 12:29 - 2016-05-06 21:51 - 00000000 ____D C:\Users\julia\Desktop\Biedrona 2
2016-05-25 12:17 - 2015-12-28 00:48 - 00000000 ____D C:\AdwCleaner
2016-05-25 12:15 - 2016-01-23 16:45 - 00000000 ____D C:\Users\julia\AppData\Roaming\uTorrent
2016-05-25 12:15 - 2015-12-22 23:03 - 00000000 ____D C:\Users\julia\AppData\Roaming\DAEMON Tools Lite
2016-05-25 12:15 - 2015-12-21 23:12 - 00000000 ____D C:\Windows\Minidump
2016-05-25 11:57 - 2016-05-08 16:07 - 00000000 ____D C:\Users\julia\AppData\Roaming\Auteaqpy
2016-05-25 11:57 - 2016-05-08 16:07 - 00000000 ____D C:\Users\julia\AppData\LocalLow\Company
2016-05-25 11:57 - 2016-05-08 16:06 - 00000000 ____D C:\Program Files\Cunkipnijxolxu
2016-05-25 11:57 - 2016-01-02 16:53 - 00000000 ____D C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-05-25 11:36 - 2016-05-08 16:56 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-05-18 19:30 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-05-13 22:09 - 2016-05-07 18:02 - 00000000 ____D C:\Users\julia\Desktop\WMCMITM
2016-05-13 15:04 - 2016-01-17 23:54 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-05-13 15:04 - 2016-01-17 23:54 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-13 15:04 - 2016-01-17 23:54 - 00003998 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-05-13 15:04 - 2016-01-17 23:54 - 00003868 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-05-13 13:55 - 2015-12-27 22:11 - 00000000 ____D C:\Users\julia\Desktop\Nagrania
2016-05-12 21:22 - 2016-02-10 22:18 - 00000000 ____D C:\Users\julia\Documents\REAPER Media
2016-05-12 16:52 - 2015-12-29 20:49 - 00000000 ____D C:\Windows\system32\appraiser
2016-05-12 13:39 - 2009-07-14 07:08 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Pliki w katalogu głównym wybranych folderów =======

2016-05-08 16:09 - 2016-05-03 10:40 - 1443152 _____ ( ) C:\Users\julia\AppData\Roaming\AutoTime_51477.exe
2016-03-22 16:25 - 2016-05-02 17:38 - 0002522 _____ () C:\Users\julia\AppData\Roaming\SpeedRunnersLog.txt
2016-01-11 22:30 - 2003-07-01 08:36 - 0000105 ____R () C:\ProgramData\Ppster.ini

==================== Bamital & volsnap =================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo
C:\Windows\explorer.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\Windows\system32\services.exe => Plik podpisany cyfrowo
C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo


LastRegBack: 2016-06-08 21:48

==================== Koniec FRST.txt ============================

[ordynat]

1)

WinZip (HKLM-x32\...\WinZip) (Version: 2.0.39 - Winzipper Pvt Ltd.) <==== UWAGA

Spróbuj odinstalować ten program.

2) Otwórz Notatnik i wklej w nim:

Reg: reg query "hklm\SOFTWARE\Microsoft\Windows NT\CurrentVersion\winlogon" /s
C:\Users\julia\AppData\Roaming\AutoTime_51477.exe
C:\Program Files\Cunkipnijxolxu
C:\Users\julia\AppData\Roaming\Auteaqpy
C:\Windows\SysWOW64\pl.html
C:\Program Files (x86)\Guntony
C:\Users\Public\Documents\Guntony
C:\Users\julia\AppData\Local\Guntony
C:\Users\julia\Desktop\Panda-Cloud-Antivirus-15003-dp.exe
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S2 vowisebe; Brak ImagePath
HKLM\...\Winlogon: [Userinit] wscript,
FirewallRules: [{C6D2BF26-0A01-4161-ADDA-8DA9FA986B75}] => (Allow) C:\ProgramData\Guntony\protect\protect.exe
HKU\S-1-5-21-3334848187-4153718758-3862772024-1000\Software\Classes\regfile: regedit.exe "%1" <===== UWAGA
Task: {F5F8A981-D53E-42E0-9C7C-C1151D38F942} - System32\Tasks\{D02B1C09-FFEB-472E-B197-5741FC96CFE4} => pcalua.exe -a "C:\Program Files (x86)\Common Files\INSTAL~1\Driver\8\INTEL3~1\IDriver.exe" -c /M{5852AC18-76CA-45FB-A742-96BA8CF1B5BF}
Task: {9A3FA4F7-248D-4B87-BD3A-EC6B887045BF} - System32\Tasks\{989B1A30-018D-4C18-906B-92479C91F00F} => pcalua.exe -a "C:\Program Files (x86)\CALLOF~1\UNINST~1\UNWISE.EXE" -c C:\Program Files (x86)\CALLOF~1\UNINST~1\INSTALL.LOG
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clownfish\Uninstall.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line\More....lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VobSub\VobSub dir.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip\Uninstall.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
C:\Users\julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
C:\Users\julia\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk
DeleteKey: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinZip
HOSTS:
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST.exe
Uruchom FRST i kliknij przycisk Fix (NAPRAW).
Powstanie plik fixlog.txt.
Daj ten log.

3) Napisz, jaki efekt tych działań?
.

[Julia221]

Wszystko działa jak należy, problem rozwiązany, dziękuję <3