Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 27-11-2016 Uruchomiony przez a (administrator) A-KOMPUTER (29-11-2016 19:57:25) Uruchomiony z C:\Users\a\Desktop\Nowy folder (2) Załadowane profile: a (Dostępne profile: a) Platform: Windows 10 Home Wersja 1607 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe () C:\Windows\SysWOW64\PnkBstrA.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe () C:\Windows\SysWOW64\PnkBstrB.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe () C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor) HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8027016 2016-09-16] (Advanced Micro Devices, Inc.) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10801944 2014-07-28] (Logitech Inc.) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2015-07-08] (ESET) HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-07-27] (Raptr, Inc) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-11-11] (LogMeIn Inc.) HKU\S-1-5-21-3029930857-75846965-513736063-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-11-23] (Valve Corporation) HKU\S-1-5-18\...\Run: [script_fcbd] => "C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\fcbd.bat" Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2015-03-15] ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe () ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\..\Interfaces\{0b68a132-b6b5-4f34-b33b-b4ddd1555ce9}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{83667e51-7f2c-4e1a-9477-e77bef15f18d}: [DhcpNameServer] 7.254.254.254 Tcpip\..\Interfaces\{9639a157-2371-421e-865e-e7dce5953c89}: [DhcpNameServer] 7.254.254.254 Tcpip\..\Interfaces\{9b2654e0-1007-4fef-bef1-5abe6ea65a0f}: [DhcpNameServer] 7.254.254.254 Tcpip\..\Interfaces\{d813fb71-3a98-48af-8d10-95a96070cebe}: [DhcpNameServer] 194.204.152.34 92.168.100.1 Internet Explorer: ================== BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-20] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-20] (Oracle Corporation) BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices) Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices) Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices) Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices) FireFox: ======== FF ProfilePath: C:\Users\a\AppData\Roaming\Mozilla\Firefox\Profiles\mj3nv2dq.default [2016-11-29] FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => nie znaleziono FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird => nie znaleziono FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_190.dll [2015-06-24] () FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [Brak pliku] FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [Brak pliku] FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB) FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-20] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-20] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_190.dll [2015-06-24] () FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [Brak pliku] FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [Brak pliku] FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Brak pliku] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3029930857-75846965-513736063-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\a\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies ApS) FF Plugin HKU\S-1-5-21-3029930857-75846965-513736063-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-11-18] () Chrome: ======= CHR DefaultProfile: Default CHR StartupUrls: Default -> "hxxps://www.google.pl/" CHR Profile: C:\Users\a\AppData\Local\Google\Chrome\User Data\Default [2016-11-29] CHR Extension: (Dark Skin for Youtube™) - C:\Users\a\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfeknfgchonpnofdjokchhdhdnddhglm [2016-11-29] CHR Extension: (Spooky Gangplank League of Legends 1920x1080) - C:\Users\a\AppData\Local\Google\Chrome\User Data\Default\Extensions\gapdflpakokcfdmlmhhjpekkflipcfla [2016-11-29] CHR Extension: (AdBlock) - C:\Users\a\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-11-23] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\a\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02] CHR Extension: (Chrome Media Router) - C:\Users\a\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-16] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx Opera: ======= OPR StartupUrls: "hxxp://www.viceice.com/" ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [155016 2016-09-16] () R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-03-21] (Advanced Micro Devices) [Brak podpisu cyfrowego] S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1457160 2016-11-18] () S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [232208 2016-06-18] (EasyAntiCheat Ltd) R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1353720 2015-07-08] (ESET) S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [520416 2014-02-28] (Futuremark) R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2627080 2016-11-11] (LogMeIn Inc.) U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Brak podpisu cyfrowego] R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-11-11] (LogMeIn, Inc.) R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2016-03-10] () R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2016-06-25] () R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2016-06-25] () S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [872432 2016-06-23] (Tunngle.net GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [305392 2016-04-05] (Advanced Micro Devices) S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [23240 2016-03-21] (Advanced Micro Devices, Inc.) R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0307259.inf_amd64_e75a0a5e82450920\atikmdag.sys [26568856 2016-10-26] (Advanced Micro Devices, Inc.) R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0307259.inf_amd64_e75a0a5e82450920\atikmpag.sys [536592 2016-10-26] (Advanced Micro Devices, Inc.) R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [111120 2016-03-01] (Advanced Micro Devices) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-10-15] (Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-10-15] (Disc Soft Ltd) R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2014-06-08] (Disc Soft Ltd) R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [246000 2015-02-23] (ESET) R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [251632 2015-07-14] (ESET) R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [169792 2015-02-23] (ESET) R2 epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [159480 2015-02-23] (ESET) R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek ) S3 RZMAELSTROMVADService; C:\WINDOWS\System32\drivers\RzMaelstromVAD.sys [32768 2014-06-09] (Windows (R) Win 7 DDK provider) S3 Secdrv; C:\WINDOWS\SysWOW64\drivers\SECDRV.SYS [11616 2001-08-10] () [Brak podpisu cyfrowego] R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [52952 2016-08-29] (SteelSeries ApS) R3 tap0901t; C:\WINDOWS\System32\drivers\tap0901t.sys [48824 2016-04-26] (Tunngle.net GmbH) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) R3 zttap200; C:\WINDOWS\System32\drivers\zttap200.sys [31896 2014-03-05] () ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-11-29 19:53 - 2016-11-29 19:55 - 00000000 ____D C:\AdwCleaner 2016-11-29 19:09 - 2016-11-29 19:09 - 00033940 _____ C:\Users\a\Downloads\FRST (2).txt 2016-11-29 19:02 - 2016-11-29 19:02 - 00033940 _____ C:\Users\a\Downloads\FRST (1).txt 2016-11-29 18:53 - 2016-11-29 18:53 - 00033940 _____ C:\Users\a\Downloads\FRST.txt 2016-11-29 17:26 - 2016-11-29 17:26 - 00355576 _____ (Duplex Secure Ltd) C:\Users\a\Downloads\SPTD2inst-v211-x64.exe 2016-11-29 17:22 - 2016-11-29 17:23 - 00015404 _____ C:\Users\a\Downloads\GMER.txt 2016-11-29 17:11 - 2016-11-29 19:57 - 00000000 ____D C:\Users\a\Desktop\Nowy folder (2) 2016-11-29 16:54 - 2016-11-29 19:57 - 00000000 ____D C:\FRST 2016-11-29 16:53 - 2016-11-29 16:53 - 00001729 _____ C:\Users\a\Downloads\f.txt 2016-11-29 16:50 - 2016-11-29 16:51 - 00781312 _____ C:\Users\a\Downloads\delfix_1.010.exe 2016-11-29 16:42 - 2016-11-29 16:42 - 00003653 _____ C:\Users\a\Downloads\sigeengine10686160.schematic 2016-11-29 16:19 - 2016-11-29 16:35 - 00000000 ____D C:\ProgramData\HitmanPro 2016-11-29 16:19 - 2016-11-29 16:19 - 00054736 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys 2016-11-29 16:18 - 2016-11-29 16:19 - 11581544 _____ (SurfRight B.V.) C:\Users\a\Downloads\hitmanpro_x64.exe 2016-11-29 04:58 - 2016-11-29 04:58 - 03910208 _____ C:\Users\a\Downloads\adwcleaner_6.030.exe 2016-11-28 22:51 - 2016-11-29 16:11 - 00000000 ____D C:\GOG Games 2016-11-28 18:48 - 2016-11-28 18:48 - 00020565 _____ C:\Users\a\Downloads\sardonixtower10682230.schematic 2016-11-28 18:47 - 2016-11-28 18:47 - 00026832 _____ C:\Users\a\Downloads\castle210683527.schematic 2016-11-28 18:46 - 2016-11-28 18:46 - 00019838 _____ C:\Users\a\Downloads\makb_build_apply10684275.schematic 2016-11-28 18:45 - 2016-11-28 18:45 - 00022595 _____ C:\Users\a\Downloads\schematic10684050.schematic 2016-11-28 18:45 - 2016-11-28 18:45 - 00002397 _____ C:\Users\a\Downloads\themedievalboat10684272.schematic 2016-11-28 04:51 - 2016-11-28 04:51 - 00098358 _____ C:\Users\a\Downloads\DE81BC41E768FBF3B20378AAF7CF1B1D11BA6BA8.torrent 2016-11-27 21:56 - 2016-11-27 21:56 - 01210688 _____ C:\Users\a\Downloads\akira-rakani10678327.schematic 2016-11-27 21:56 - 2016-11-27 21:56 - 00669148 _____ C:\Users\a\Downloads\sepzinak-classcarrier10676736.schematic 2016-11-27 21:56 - 2016-11-27 21:56 - 00110703 _____ C:\Users\a\Downloads\kex-classfreighter10676660.schematic 2016-11-27 21:56 - 2016-11-27 21:56 - 00043240 _____ C:\Users\a\Downloads\natural-industry10676729.schematic 2016-11-27 21:56 - 2016-11-27 21:56 - 00038653 _____ C:\Users\a\Downloads\oafimallsonabulleve10657432.schematic 2016-11-27 21:56 - 2016-11-27 21:56 - 00037984 _____ C:\Users\a\Downloads\velnian-classlightcarrier10676717.schematic 2016-11-27 21:56 - 2016-11-27 21:56 - 00016068 _____ C:\Users\a\Downloads\balkonpatrolfrigate10676610.schematic 2016-11-27 21:55 - 2016-11-27 21:55 - 00001436 _____ C:\Users\a\Downloads\medievalgate10674115.schematic 2016-11-27 21:55 - 2016-11-27 21:55 - 00001436 _____ C:\Users\a\Downloads\medievalgate10674115 (1).schematic 2016-11-26 16:21 - 2016-11-26 16:21 - 00018909 _____ C:\Users\a\Downloads\DllLoader-3619-1-0-0-3.zip 2016-11-26 16:21 - 2016-11-26 16:21 - 00014263 _____ C:\Users\a\Downloads\AchievementsModsEnabler-245-1-0-0-5.zip 2016-11-26 16:06 - 2016-11-26 16:06 - 22220931 _____ C:\Users\a\Downloads\Desktop.zip 2016-11-26 14:26 - 2016-11-27 15:12 - 00000000 ____D C:\Users\a\AppData\Local\Skyrim Special Edition 2016-11-26 14:09 - 2016-11-26 14:09 - 00338943 _____ C:\Users\a\Downloads\ss_en_110_120_patch (1).zip 2016-11-25 17:23 - 2016-11-25 17:24 - 00295470 _____ C:\Users\a\Downloads\How to make a mob spawner.zip 2016-11-25 17:22 - 2016-11-25 17:23 - 00486001 _____ C:\Users\a\Downloads\mob spawner 1.3.2.zip 2016-11-25 17:09 - 2016-11-25 18:20 - 00000000 ____D C:\Users\a\Desktop\Nowy folder 2016-11-25 17:09 - 2016-11-25 17:09 - 04613499 _____ C:\Users\a\Downloads\ATLauncher_64bit_H34T0 (5).zip 2016-11-25 11:58 - 2016-11-25 11:58 - 00268765 _____ C:\Users\a\Downloads\Auto-furnace-jarko.zip 2016-11-23 19:16 - 2016-11-23 19:16 - 04254877 _____ C:\Users\a\Downloads\mge3.8.0b.7z 2016-11-23 06:24 - 2016-11-23 06:24 - 00000000 ____D C:\Users\a\AppData\Local\Arktos Entertainment 2016-11-23 06:20 - 2016-11-23 06:20 - 00000000 ____D C:\Users\a\Documents\FredaikisAB 2016-11-23 06:20 - 2016-11-23 06:20 - 00000000 ____D C:\Users\a\AppData\Local\FredaikisAB 2016-11-22 18:32 - 2016-11-22 18:32 - 00000000 ____D C:\WINDOWS\SysWOW64\directx 2016-11-22 18:31 - 2016-11-22 18:32 - 00292184 _____ (Microsoft Corporation) C:\Users\a\Downloads\dxwebsetup (1).exe 2016-11-22 16:48 - 2016-11-22 16:48 - 00307610 _____ C:\Users\a\Downloads\XRay-45.jar 2016-11-22 05:27 - 2016-11-28 21:27 - 00000000 ____D C:\Users\a\Downloads\codex-crusader.kings.ii.the.reapers.due 2016-11-19 19:34 - 2016-11-19 19:34 - 01018327 _____ C:\Users\a\Downloads\ESET_FolderViewSettingsFix.zip 2016-11-19 00:18 - 2016-11-19 00:18 - 00820969 _____ C:\Users\a\Downloads\cwk250beta1_setup (1).exe 2016-11-18 20:31 - 2016-11-18 20:31 - 00000233 _____ C:\Users\a\Desktop\Tom Clancy's Rainbow Six Siege.url 2016-11-18 17:46 - 2016-11-18 17:46 - 00000000 ____D C:\Users\a\Documents\Nagrania dźwiękowe 2016-11-17 05:16 - 2016-11-17 05:16 - 00036569 _____ C:\Users\a\Downloads\The-Simple-Xray-Mod-1.8.zip 2016-11-17 05:15 - 2016-11-17 05:15 - 00024644 _____ C:\Users\a\Downloads\Xray Ultimate 1.8.zip 2016-11-16 04:44 - 2016-11-16 04:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2016-11-16 04:44 - 2016-11-16 04:44 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi 2016-11-14 20:42 - 2016-11-14 20:42 - 00001526 _____ C:\Users\a\Downloads\wirtyny.zip 2016-11-14 14:37 - 2016-11-22 06:17 - 00001749 _____ C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\lol.launcher.exe — skrót .lnk 2016-11-14 14:26 - 2016-11-14 14:26 - 00000000 ____D C:\Users\a\AppData\Local\champGG 2016-11-10 23:24 - 2016-11-10 23:24 - 00001143 _____ C:\Users\a\Desktop\Planet Explorers.lnk 2016-11-10 23:19 - 2016-11-11 00:36 - 00000000 ____D C:\Program Files (x86)\Planet Explorers 2016-11-10 20:12 - 2016-11-10 20:12 - 14665243 _____ C:\Users\a\Downloads\Tekkit_Server_3.1.2.zip 2016-11-10 20:11 - 2016-11-10 20:11 - 04593097 _____ C:\Users\a\Downloads\Technic_Launcher_64bit (3).zip 2016-11-10 16:29 - 2016-11-10 16:48 - 00000000 ____D C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\League client alpha 2016-11-08 19:21 - 2016-11-08 21:10 - 00000000 ____D C:\Users\a\Downloads\codex-planet.explorers 2016-11-07 19:23 - 2016-11-07 19:23 - 00580391 _____ C:\Users\a\Downloads\skan.zip 2016-11-06 17:46 - 2016-11-06 17:47 - 04613499 _____ C:\Users\a\Downloads\ATLauncher_64bit_H34T0 (4).zip 2016-11-06 00:08 - 2016-11-28 22:17 - 00000000 ____D C:\Users\a\AppData\Local\SHU 2016-11-06 00:08 - 2016-11-06 00:08 - 00000000 ____D C:\Users\a\AppData\Local\ScreenShu 2016-11-06 00:07 - 2016-11-06 00:07 - 00001000 _____ C:\Users\Public\Desktop\SHU.lnk 2016-11-06 00:07 - 2016-11-06 00:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SHU 2016-11-05 19:54 - 2016-11-05 19:54 - 00000000 ____D C:\Users\Public\Documents\Steam 2016-11-05 19:54 - 2016-11-05 19:54 - 00000000 ____D C:\Users\a\AppData\LocalLow\SilentDreams 2016-11-05 18:21 - 2016-11-29 17:30 - 00000196 _____ C:\Users\a\Desktop\aletration conjuration or illusion.txt 2016-11-02 22:30 - 2016-11-02 22:30 - 00042296 _____ C:\Users\a\Downloads\yiffalicious_0.5.4_64bit_zip.torrent 2016-10-31 23:09 - 2016-10-31 23:09 - 00000000 ____D C:\Users\a\.Plays.tv 2016-10-31 23:08 - 2016-10-31 23:08 - 00077504 _____ C:\Users\a\Downloads\playstv_installer (2).exe 2016-10-31 23:08 - 2016-10-31 23:08 - 00000000 ____D C:\Program Files (x86)\Raptr Inc 2016-10-31 23:04 - 2016-10-31 23:24 - 41504064 _____ (ScreenShu Software ) C:\Users\a\Downloads\SHU-3.0.5 (1).exe 2016-10-31 12:01 - 2016-11-26 14:23 - 00000000 ____D C:\WINDOWS\Minidump ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-11-29 19:51 - 2016-10-12 03:25 - 00000008 __RSH C:\Users\a\ntuser.pol 2016-11-29 19:51 - 2016-10-12 02:59 - 00000000 ____D C:\Users\a 2016-11-29 19:51 - 2014-10-29 21:44 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios 2016-11-29 19:50 - 2016-10-12 03:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-11-29 19:50 - 2016-10-12 02:54 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin 2016-11-29 19:50 - 2016-07-16 07:04 - 00262144 _____ C:\WINDOWS\system32\config\BBI 2016-11-29 19:47 - 2015-10-15 18:27 - 00000000 ____D C:\Users\a\AppData\Roaming\TS3Client 2016-11-29 19:47 - 2009-07-14 04:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy 2016-11-29 18:20 - 2016-10-12 02:52 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2016-11-29 17:35 - 2015-06-04 10:20 - 00000000 ____D C:\ProgramData\Nero 2016-11-29 16:12 - 2015-11-05 17:25 - 00000000 ____D C:\Games 2016-11-29 06:35 - 2014-06-07 12:18 - 00000000 ____D C:\Program Files (x86)\Steam 2016-11-29 05:22 - 2015-11-26 09:28 - 00000000 ____D C:\Users\a\AppData\Local\Ubisoft Game Launcher 2016-11-28 22:44 - 2014-06-26 18:34 - 00000000 ____D C:\Users\a\AppData\Roaming\uTorrent 2016-11-28 16:42 - 2016-03-18 19:29 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-11-27 11:26 - 2016-06-01 21:11 - 00000000 ____D C:\Users\a\AppData\Local\LogMeIn Hamachi 2016-11-26 15:32 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF 2016-11-26 14:26 - 2014-06-08 01:59 - 00000000 ____D C:\Users\a\Documents\My Games 2016-11-26 14:24 - 2016-10-15 17:58 - 00000000 ____D C:\Users\a\AppData\Roaming\DAEMON Tools Lite 2016-11-26 14:23 - 2016-10-12 03:51 - 00000000 ___DC C:\WINDOWS\Panther 2016-11-26 14:16 - 2016-04-04 14:24 - 00000000 ____D C:\Program Files (x86)\THQ 2016-11-26 14:14 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2016-11-26 13:54 - 2014-06-06 12:29 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-11-26 13:50 - 2016-04-03 00:10 - 00000000 ____D C:\Users\a\Downloads\Warhammer.40000.Dawn.of.War.Soulstorm.[PCDVD].[Multi].[www.tensiontorrent.com] 2016-11-25 21:29 - 2015-05-25 20:52 - 00000000 ____D C:\Users\a\AppData\Roaming\.minecraft 2016-11-25 21:21 - 2016-07-29 12:57 - 00000000 ___RD C:\Users\a\Desktop\inne v2 2016-11-24 17:20 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps 2016-11-24 17:20 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-11-24 17:20 - 2015-08-05 17:35 - 00000000 ____D C:\Users\a\AppData\Local\Packages 2016-11-24 16:05 - 2016-10-12 03:22 - 00004002 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1406743141 2016-11-24 16:05 - 2014-07-30 18:59 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2016-11-24 16:05 - 2014-07-30 18:59 - 00000000 ____D C:\Program Files (x86)\Opera 2016-11-24 15:13 - 2016-10-19 04:58 - 00000000 ____D C:\Users\a\Desktop\Fortify1_54 2016-11-23 21:55 - 2014-06-08 21:20 - 00000000 ____D C:\Users\a\AppData\Local\ElevatedDiagnostics 2016-11-22 18:32 - 2014-06-08 01:59 - 00000000 ___HD C:\WINDOWS\msdownld.tmp 2016-11-21 22:10 - 2014-06-07 12:15 - 00000000 ____D C:\Users\a\AppData\Roaming\Skype 2016-11-20 18:44 - 2014-07-11 16:45 - 00000000 ____D C:\Users\a\AppData\LocalLow\Heroes and Generals 2016-11-20 16:59 - 2015-08-05 21:46 - 00524024 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys 2016-11-19 21:49 - 2016-10-02 00:04 - 00005572 _____ C:\Users\a\Desktop\unfortunate tower placement.txt 2016-11-19 07:30 - 2016-10-12 02:54 - 00000000 ____D C:\ProgramData\Package Cache 2016-11-19 00:42 - 2015-07-14 19:23 - 00002278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-11-19 00:08 - 2014-12-09 15:23 - 00000000 ____D C:\Users\a\AppData\Local\SteelSeries Engine 3 Client 2016-11-18 22:30 - 2016-06-02 10:27 - 00000000 ____D C:\Users\a\Documents\BioWare 2016-11-17 20:09 - 2016-05-14 12:06 - 00000000 ____D C:\Users\a\AppData\LocalLow\Smartly Dressed Games 2016-11-16 06:36 - 2016-10-12 03:06 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi 2016-11-16 06:36 - 2016-10-12 03:06 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi 2016-11-16 04:47 - 2016-07-16 23:05 - 01089804 _____ C:\WINDOWS\system32\perfh015.dat 2016-11-16 04:47 - 2016-07-16 23:05 - 00282774 _____ C:\WINDOWS\system32\perfc015.dat 2016-11-16 04:47 - 2016-03-03 04:02 - 02726620 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-11-10 16:48 - 2016-08-07 15:55 - 00001749 _____ C:\Users\a\Desktop\lol.launcher.admin.exe — skrót .lnk 2016-11-10 16:48 - 2016-04-07 14:39 - 00001749 _____ C:\Users\a\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\League of Legends.lnk 2016-11-06 11:40 - 2016-03-10 21:54 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-11-06 00:24 - 2014-07-14 21:39 - 00000000 ___RD C:\Users\a\Desktop\Inne 2016-11-06 00:07 - 2016-10-13 22:40 - 00000000 ____D C:\Program Files (x86)\SHU 2016-11-03 19:10 - 2014-06-07 12:13 - 00000000 ____D C:\Users\a\AppData\Local\Google 2016-11-02 20:08 - 2015-08-05 17:11 - 00000000 ____D C:\ProgramData\AMD 2016-11-01 16:45 - 2015-02-05 20:30 - 00000000 ____D C:\Users\a\AppData\Local\Steam 2016-10-31 14:35 - 2014-12-15 05:50 - 00000000 ____D C:\Users\a\AppData\Local\Battle.net 2016-10-31 13:29 - 2014-12-15 05:50 - 00000000 ____D C:\Program Files (x86)\Battle.net 2016-10-30 19:49 - 2016-07-06 14:31 - 00000000 ____D C:\Program Files (x86)\Hearthstone ==================== Pliki w katalogu głównym wybranych folderów ======= 2016-03-05 14:26 - 2016-03-05 14:26 - 240397312 _____ () C:\Users\a\AppData\Roaming\Launcher.dat 2014-08-02 08:19 - 2015-07-31 15:39 - 0056018 _____ () C:\Users\a\AppData\Roaming\PStrip.bak 2014-08-02 08:19 - 2015-07-31 02:00 - 0056018 _____ () C:\Users\a\AppData\Roaming\PStrip.bk! 2014-08-02 12:52 - 2015-07-30 10:36 - 0055929 _____ () C:\Users\a\AppData\Roaming\PStrip.bko 2014-08-01 17:37 - 2015-07-31 15:40 - 0056018 _____ () C:\Users\a\AppData\Roaming\PStrip.ini 2016-03-05 20:24 - 2016-03-06 17:13 - 0000316 _____ () C:\Users\a\AppData\Roaming\redirect2.dat 2016-03-05 14:26 - 2016-03-05 14:43 - 0000009 _____ () C:\Users\a\AppData\Roaming\update.dat 2014-09-30 18:59 - 2014-10-07 17:53 - 0000600 _____ () C:\Users\a\AppData\Roaming\winscp.rnd 2016-03-05 14:27 - 2016-03-06 17:13 - 0000004 _____ () C:\Users\a\AppData\Roaming\Microsoft\notaut.txt 2014-06-10 19:58 - 2014-06-10 19:58 - 1065984 _____ () C:\Users\a\AppData\Local\file__0.localstorage 2014-06-09 19:26 - 2014-06-09 19:26 - 0000000 ___SH () C:\Users\a\AppData\Local\LumaEmu 2014-06-11 17:55 - 2016-08-29 10:02 - 0007666 _____ () C:\Users\a\AppData\Local\Resmon.ResmonCfg ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2016-11-28 21:48 ==================== Koniec FRST.txt ============================