Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:31-12-2015 Ran by artystav2 (administrator) on ARTYSTAV2-PC (01-01-2016 19:22:28) Running from C:\Users\artystav2\Desktop Loaded Profiles: artystav2 (Available Profiles: artystav2) Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: Angielski (Stany Zjednoczone) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Hi-Rez Studios) C:\Program Files\Hi-Rez Studios\HiPatchService.exe () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe (MSI) C:\Program Files\MSI\Super Charger\ChargeService.exe (MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files\MSI\MSITrigger\MSI_Trigger_Service.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Program Files\Razer\Razer Services\GSS\GameScannerService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (MSI) C:\Program Files\MSI\Super Charger\Super Charger.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (Razer Inc.) C:\Program Files\Razer\Synapse\RzSynapse.exe (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (Valve Corporation) C:\Program Files\Steam\Steam.exe () C:\Program Files\ScreenShooter5\ScreenShooter5.exe (Spotify Ltd) C:\Users\artystav2\AppData\Roaming\Spotify\SpotifyWebHelper.exe (GG Network S.A.) C:\Users\artystav2\AppData\Local\GG\Application\gghub.exe (GG Network S.A.) C:\Users\artystav2\AppData\Local\GG\Application\ggapp.exe (Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.4645\Agent.exe (Blizzard Entertainment) C:\Program Files\Battle.net\Battle.net.6526\Battle.net.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (GG Network S.A.) C:\Users\artystav2\AppData\Local\GG\Application\ggdrive\ggdrive.exe () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe (Razer, Inc.) C:\Program Files\Razer\InGameEngine\32bit\RazerIngameEngine.exe (Razer, Inc.) C:\Users\artystav2\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe (Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files\Common Files\Steam\SteamService.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [6688472 2014-05-12] (Realtek Semiconductor) HKLM\...\Run: [USB3MON] => C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-03-06] (Intel Corporation) HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-04-24] (Intel Corporation) HKLM\...\Run: [Super Charger] => C:\Program Files\MSI\Super Charger\Super Charger.exe [1047536 2014-04-08] (MSI) HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Razer Synapse] => C:\Program Files\Razer\Synapse\RzSynapse.exe [592704 2015-09-29] (Razer Inc.) HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [718688 2009-10-01] (Microsoft Corporation) HKU\S-1-5-21-4214628963-2575371921-736647514-1000\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [3013712 2015-12-14] (Valve Corporation) HKU\S-1-5-21-4214628963-2575371921-736647514-1000\...\Run: [ScreenShooter] => C:\Program Files\ScreenShooter5\ScreenShooter5.exe [946688 2015-09-19] () HKU\S-1-5-21-4214628963-2575371921-736647514-1000\...\Run: [Battle.net] => C:\Program Files\Battle.net\Battle.net Launcher.exe [2946096 2015-12-17] (Blizzard Entertainment) HKU\S-1-5-21-4214628963-2575371921-736647514-1000\...\Run: [Spotify Web Helper] => C:\Users\artystav2\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2345584 2015-12-01] (Spotify Ltd) HKU\S-1-5-21-4214628963-2575371921-736647514-1000\...\Run: [GG] => C:\Users\artystav2\AppData\Local\GG\Application\gghub.exe [4078144 2015-11-16] (GG Network S.A.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-11-04] (Google) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 62.129.252.252 Tcpip\..\Interfaces\{CDE7BA60-50EB-4DF8-BB48-69029D9688BD}: [DhcpNameServer] 8.8.8.8 62.129.252.252 Internet Explorer: ================== FireFox: ======== FF ProfilePath: C:\Users\artystav2\AppData\Roaming\Mozilla\Firefox\Profiles\38ldcvq0.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-29] () FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-04] (Intel Corporation) FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-04] (Intel Corporation) FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-05-20] (NVIDIA Corporation) FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-05-20] (NVIDIA Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.) FF Extension: Adblock Plus - C:\Users\artystav2\AppData\Roaming\Mozilla\Firefox\Profiles\38ldcvq0.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-14] Chrome: ======= CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.google.com" CHR Profile: C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Prezentacje Google) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-15] CHR Extension: (BetterTTV) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-11-15] CHR Extension: (Dokumenty Google) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-15] CHR Extension: (Dysk Google) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-15] CHR Extension: (Father Theme 1/2) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcdjmhbfjoabhmfoaeadimhiagggbgoh [2015-11-15] CHR Extension: (YouTube) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-15] CHR Extension: (Adblock Plus) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-25] CHR Extension: (Google Search) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-15] CHR Extension: (Arkusze Google) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-15] CHR Extension: (Dokumenty Google offline) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-16] CHR Extension: (AdBlock) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-12-04] CHR Extension: (Disconnect) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2015-11-15] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-15] CHR Extension: (Gmail) - C:\Users\artystav2\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-15] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) U2 HiPatchService; C:\Program Files\Hi-Rez Studios\HiPatchService.exe [9728 2015-11-03] (Hi-Rez Studios) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [686528 2014-02-01] (Intel(R) Corporation) R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [190768 2014-04-24] () R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-04] (Intel Corporation) R2 MSI_SuperCharger; C:\Program Files\MSI\Super Charger\ChargeService.exe [162800 2014-03-18] (MSI) R2 MSI_Trigger_Service; C:\Program Files\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.) R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19702048 2014-04-30] (NVIDIA Corporation) R2 Razer Game Scanner Service; C:\Program Files\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] () S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [19144 2014-02-03] () R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [19656 2014-02-03] () R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [22728 2014-04-03] () R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [37576 2014-02-03] () R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16880 2014-03-06] (Intel Corporation) R3 iusb3hub; C:\Windows\System32\DRIVERS\iusb3hub.sys [364528 2014-03-06] (Intel Corporation) R3 iusb3xhc; C:\Windows\System32\DRIVERS\iusb3xhc.sys [800240 2014-03-06] (Intel Corporation) R3 MEI; C:\Windows\System32\DRIVERS\TeeDriver.sys [102400 2014-04-04] (Intel Corporation) R3 NTIOLib_1_0_3; C:\Program Files\MSI\Super Charger\NTIOLib.sys [14392 2012-10-26] (MSI) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [17240 2014-04-30] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2014-03-31] (NVIDIA Corporation) R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [47944 2015-08-13] (Razer Inc) R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [20288 2015-06-12] (Razer, Inc.) R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [97088 2015-06-27] (Razer, Inc.) R3 rzudd; C:\Windows\System32\DRIVERS\rzudd.sys [174792 2015-08-13] (Razer Inc) S3 mdareDriver_61; \??\C:\Users\ARTYST~1\AppData\Local\Temp\FCPreScan\mdare32_61.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-01-01 19:21 - 2016-01-01 19:22 - 00029509 _____ C:\Users\artystav2\Desktop\Addition.txt 2016-01-01 19:20 - 2016-01-01 19:22 - 00014378 _____ C:\Users\artystav2\Desktop\FRST.txt 2016-01-01 19:03 - 2016-01-01 19:03 - 00002366 _____ C:\Users\artystav2\Desktop\Fixlog.txt 2016-01-01 19:03 - 2016-01-01 19:03 - 00000000 ____D C:\Users\artystav2\Desktop\FRST-OlderVersion 2015-12-29 13:48 - 2015-12-29 13:48 - 00000000 ____D C:\Users\artystav2\AppData\Roaming\Process Hacker 2 2015-12-29 13:32 - 2015-12-29 13:33 - 00000000 ____D C:\Users\artystav2\AppData\Roaming\DBNS1 2015-12-26 12:50 - 2016-01-01 19:03 - 00000000 ____D C:\Users\artystav2\Desktop\lgi 2015-12-26 12:50 - 2015-12-26 12:52 - 00000000 ____D C:\Users\artystav2\Desktop\Przerobka 2015-12-22 22:21 - 2016-01-01 19:22 - 00000000 ____D C:\FRST 2015-12-22 22:19 - 2016-01-01 19:03 - 01721856 _____ (Farbar) C:\Users\artystav2\Desktop\FRST.exe 2015-12-21 18:33 - 2015-12-29 18:17 - 00000000 ____D C:\Users\artystav2\AppData\Roaming\TS3Client 2015-12-21 18:33 - 2015-12-21 18:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2015-12-21 18:33 - 2015-12-21 18:33 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client 2015-12-19 11:43 - 2015-12-19 11:43 - 00000000 ____D C:\Users\artystav2\Documents\Nowy folder 2015-12-18 20:02 - 2015-12-18 20:02 - 00000000 ____D C:\Users\artystav2\AppData\Roaming\Mael 2015-12-13 09:47 - 2015-12-31 12:51 - 00000000 ____D C:\Users\artystav2\AppData\Roaming\Tibia 2015-12-11 21:48 - 2015-12-11 21:48 - 00000004 _____ C:\Users\artystav2\xd 2015-12-11 21:48 - 2015-12-11 21:48 - 00000004 _____ C:\Users\artystav2\Desktop\xd 2015-12-10 22:55 - 2015-12-31 12:51 - 00000000 ____D C:\ProgramData\TEMP 2015-12-10 22:54 - 2015-12-10 23:07 - 00000000 ____D C:\Program Files\ElfBot NG 2015-12-10 22:54 - 2015-12-10 22:54 - 00000906 _____ C:\Users\artystav2\Desktop\ElfBot NG.lnk 2015-12-10 22:54 - 2015-12-10 22:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElfBot NG 2015-12-10 22:52 - 2015-12-29 13:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Hacker 2 2015-12-10 22:52 - 2015-12-29 13:45 - 00000000 ____D C:\Program Files\Process Hacker 2 2015-12-10 22:49 - 2015-12-10 22:51 - 02103921 _____ (NGSoft, LLC ) C:\Users\artystav2\Downloads\setup-4.5.4.exe.part 2015-12-05 17:22 - 2015-12-05 17:22 - 00000912 _____ C:\Users\artystav2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk 2015-12-05 17:22 - 2015-12-05 17:22 - 00000904 _____ C:\Users\artystav2\Desktop\osu!.lnk 2015-12-05 17:20 - 2015-12-31 16:15 - 00000000 ____D C:\Users\artystav2\AppData\Local\osu! 2015-12-04 20:43 - 2015-12-04 20:43 - 00000000 ____D C:\Windows\system32\appmgmt 2015-12-04 16:27 - 2015-12-04 20:44 - 00000000 ____D C:\Program Files\Fortinet 2015-12-04 16:21 - 2015-12-04 16:21 - 00000000 ____D C:\ProgramData\Applications 2015-12-04 16:11 - 2015-12-20 18:11 - 00000000 ____D C:\AdwCleaner 2015-12-03 13:14 - 2015-12-03 13:14 - 00000000 ___SD C:\Users\artystav2\GG dysk 2015-12-03 13:12 - 2016-01-01 19:05 - 00000000 ____D C:\Users\artystav2\AppData\Roaming\GG 2015-12-03 13:12 - 2015-12-03 13:14 - 00000000 ____D C:\Users\artystav2\AppData\Local\GG 2015-12-03 13:12 - 2015-12-03 13:12 - 00001119 _____ C:\Users\artystav2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk 2015-12-03 10:38 - 2015-12-22 13:45 - 00000455 _____ C:\Users\artystav2\Desktop\044832.txt ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-01-01 19:13 - 2015-11-22 09:50 - 00000000 ____D C:\Users\artystav2\AppData\Local\Battle.net 2016-01-01 19:13 - 2009-07-14 05:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-01-01 19:13 - 2009-07-14 05:34 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-01-01 19:11 - 2015-11-15 04:33 - 01670518 _____ C:\Windows\system32\PerfStringBackup.INI 2016-01-01 19:11 - 2015-11-14 21:44 - 00740406 _____ C:\Windows\system32\perfh015.dat 2016-01-01 19:11 - 2015-11-14 21:44 - 00155980 _____ C:\Windows\system32\perfc015.dat 2016-01-01 19:11 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf 2016-01-01 19:10 - 2015-11-15 21:17 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-01-01 19:05 - 2015-11-22 09:48 - 00000000 ____D C:\Program Files\Battle.net 2016-01-01 19:05 - 2015-11-14 21:15 - 00000000 ____D C:\Program Files\Steam 2016-01-01 19:05 - 2015-11-14 20:34 - 00000000 ____D C:\ProgramData\NVIDIA 2016-01-01 19:05 - 2015-11-14 19:43 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-01-01 19:05 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-01-01 19:03 - 2015-11-15 22:28 - 00000000 ____D C:\Users\artystav2\Desktop\Programy 2016-01-01 01:57 - 2015-11-28 15:46 - 00000000 ____D C:\Users\artystav2\AppData\Roaming\Spotify 2015-12-31 18:20 - 2015-11-28 15:47 - 00000000 ____D C:\Users\artystav2\AppData\Local\Spotify 2015-12-31 13:17 - 2015-11-14 21:07 - 00000000 ____D C:\Users\artystav2\Desktop\pliki 2015-12-31 12:51 - 2015-11-27 19:16 - 00000000 ____D C:\Users\artystav2\AppData\Local\CrashDumps 2015-12-29 14:10 - 2015-11-14 21:12 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-12-29 14:10 - 2015-11-14 21:12 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-12-22 22:21 - 2009-07-14 03:37 - 00000000 ____D C:\Windows 2015-12-22 11:29 - 2015-11-22 09:52 - 00000000 ____D C:\Program Files\Hearthstone 2015-12-20 18:25 - 2015-11-22 07:33 - 00000000 ____D C:\Program Files\Master 2015-12-15 15:20 - 2015-11-14 21:15 - 00000000 ____D C:\Program Files\Common Files\Steam 2015-12-11 21:48 - 2015-11-15 04:26 - 00000000 ____D C:\Users\artystav2 2015-12-05 17:07 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF 2015-12-05 08:54 - 2015-11-14 19:43 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job ==================== Files in the root of some directories ======= 2015-11-14 19:43 - 2015-11-14 19:43 - 0000000 ____H () C:\ProgramData\DP45977C.lfl ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-01-01 08:40 ==================== End of FRST.txt ============================