Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 22-01-2017 Uruchomiony przez Komp1 (administrator) PATRYK (22-01-2017 16:18:45) Uruchomiony z C:\Users\Komp1\Downloads Załadowane profile: Komp1 (Dostępne profile: Komp1) Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: "C:\Program Files (x86)\Fishhas\Application\chrome.exe" "%1") Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe () C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe () C:\Windows\SysWOW64\PnkBstrA.exe (BitTorrent Inc.) C:\Users\Komp1\AppData\Roaming\BitTorrent\BitTorrent.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe (BitTorrent Inc.) C:\Users\Komp1\AppData\Roaming\BitTorrent\updates\7.9.9_42974\bittorrentie.exe (BitTorrent Inc.) C:\Users\Komp1\AppData\Roaming\BitTorrent\updates\7.9.9_42974\bittorrentie.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Rejestr (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-15] (AVAST Software) HKU\S-1-5-21-2127561691-812862515-3127793605-1000\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19335680 2016-12-29] () HKU\S-1-5-21-2127561691-812862515-3127793605-1000\...\Run: [BitTorrent] => C:\Users\Komp1\AppData\Roaming\BitTorrent\BitTorrent.exe [2149064 2017-01-08] (BitTorrent Inc.) HKU\S-1-5-21-2127561691-812862515-3127793605-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4701888 2016-12-22] (Disc Soft Ltd) HKU\S-1-5-21-2127561691-812862515-3127793605-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKU\S-1-5-21-2127561691-812862515-3127793605-1000\...\MountPoints2: F - F:\AutoRun.exe HKU\S-1-5-21-2127561691-812862515-3127793605-1000\...\MountPoints2: {4748bc05-982f-11e6-a38e-d8cb8ac2e5f8} - H:\AutoRun.exe HKU\S-1-5-21-2127561691-812862515-3127793605-1000\...\MountPoints2: {6dd010a7-9046-11e4-a01d-806e6f6e6963} - D:\Autorun.exe HKU\S-1-5-21-2127561691-812862515-3127793605-1000\...\MountPoints2: {8c8b2dad-dccd-11e6-aad7-d8cb8ac2e5f8} - H:\Autorun.exe HKU\S-1-5-21-2127561691-812862515-3127793605-1000\...\MountPoints2: {f0ab067c-9140-11e4-8e37-94de807008b7} - E:\Autorun.exe ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-09] (AVAST Software) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 10.10.10.1 Tcpip\..\Interfaces\{AD912212-D013-4EAA-81B6-56D7B9B0C894}: [DhcpNameServer] 10.10.10.1 Tcpip\..\Interfaces\{F3E92B02-57CE-4186-B21C-FE008960DCB9}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{FFCB7C2E-2D31-4DE2-A32A-B15127EFB32F}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-2127561691-812862515-3127793605-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp SearchScopes: HKU\S-1-5-21-2127561691-812862515-3127793605-1000 -> {7EB4C95B-5E8D-4B11-954C-ECF1A66A2DA4} URL = hxxps://www.google.com/search?q={searchTerms} BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-24] (AVAST Software) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-30] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-24] (AVAST Software) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-30] (Oracle Corporation) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc.) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc.) Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices) Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices) Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices) Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF DefaultProfile: dbg7p6fn.default FF ProfilePath: C:\Users\Komp1\AppData\Roaming\Firefox\Firefox\Profiles\dbg7p6fn.default [2017-01-22] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2017-01-19] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2017-01-19] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-08] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-08] () FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-30] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-30] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-15] (Google Inc.) FF Plugin HKU\S-1-5-21-2127561691-812862515-3127793605-1000: ubisoft.com/uplaypc -> P:\Ubisoft Game Launcher\npuplaypc.dll [2016-12-18] () Chrome: ======= CHR DefaultProfile: Profile 2 CHR HomePage: Profile 2 -> hxxp://google.pl/ CHR StartupUrls: Profile 2 -> "hxxp://google.pl/" CHR Profile: C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-01-22] CHR Extension: (Prezentacje Google) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-01] CHR Extension: (Dysk Google) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-01] CHR Extension: (YouTube) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-01] CHR Extension: (Adblock Plus) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26] CHR Extension: (Slither.io) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\dmplapbomebhmdffmlhgbelgcnfajapj [2016-05-01] CHR Extension: (Avast SafePrice) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-15] CHR Extension: (Dokumenty Google offline) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-03] CHR Extension: (Inject jQuery) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\indebdooekgjhkncmgbkeopjebofdoid [2016-10-26] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-18] CHR Extension: (Enhanced Steam) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2016-12-16] CHR Extension: (Gmail) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-01] CHR Extension: (Chrome Media Router) - C:\Users\Komp1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16] CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-09] (AVAST Software) S4 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [65128 2016-01-11] (CyberGhost S.R.L) R3 Disc Soft Lite Bus Service; C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2016-12-22] (Disc Soft Ltd) S4 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.) S4 MSISleep; C:\Program Files (x86)\MSI\ControlCenter\Sleep\MSISleepService.exe [282624 2013-04-29] () [Brak podpisu cyfrowego] S4 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [105296 2015-06-04] (MSI) S4 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1779664 2015-10-07] (Micro-Star INT'L CO., LTD.) R2 MSLN; C:\ProgramData\Microsoft\IdentityCRL\ppcrlconf.dll [443392 2017-01-19] () [Brak podpisu cyfrowego] S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2017-01-07] (Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2017-01-07] (Electronic Arts) S4 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1310960 2016-09-27] (Overwolf LTD) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2016-12-11] () S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187824 2016-07-20] () S4 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [133376 2016-07-22] (Razer Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 APXACC; C:\Windows\System32\DRIVERS\appexDrv.sys [229056 2014-10-28] (AppEx Networks Corporation) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-09] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-09] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-09] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-09] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-09] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-13] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-22] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-09] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software) S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-01-17] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-01-17] (Disc Soft Ltd) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-01-20] (REALiX(tm)) S3 NTIOLib_1_0_2; C:\Program Files (x86)\MSI\ControlCenter\NTIOLib_X64.sys [13328 2012-02-14] (MSI) S3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI) S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MSI) R3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [114568 2016-01-20] (Renesas Electronics Corporation) R3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [230280 2016-01-20] (Renesas Electronics Corporation) R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-05-06] (Razer, Inc.) R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [136312 2016-06-27] (Razer, Inc.) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.) S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) NETSVCx32: HpSvc -> Brak ścieżki do pliku. ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-01-22 16:15 - 2017-01-22 16:15 - 00000040 _____ C:\Program Files (x86)\settings.dat 2017-01-22 16:15 - 2017-01-22 16:15 - 00000000 ____D C:\Program Files (x86)\reports 2017-01-22 16:15 - 2017-01-22 16:15 - 00000000 _____ C:\Program Files (x86)\metadata 2017-01-22 16:13 - 2017-01-22 16:13 - 00000000 ____D C:\Users\Komp1\AppData\LocalLow\BitTorrent 2017-01-22 16:05 - 2017-01-22 16:12 - 00037333 _____ C:\Users\Komp1\Downloads\Fixlog.txt 2017-01-22 16:05 - 2017-01-22 16:05 - 03988944 _____ C:\Users\Komp1\Downloads\adwcleaner_6.042.exe 2017-01-22 16:04 - 2017-01-22 16:04 - 00000000 ____D C:\Users\Komp1\Downloads\FRST-OlderVersion 2017-01-21 16:08 - 2017-01-22 16:19 - 00016700 _____ C:\Users\Komp1\Downloads\FRST.txt 2017-01-21 16:07 - 2017-01-22 16:18 - 00000000 ____D C:\FRST 2017-01-21 16:06 - 2017-01-22 16:04 - 02420736 _____ (Farbar) C:\Users\Komp1\Downloads\FRST64.exe 2017-01-19 16:44 - 2017-01-19 16:44 - 00044952 _____ () C:\Windows\system32\Drivers\staport.sys 2017-01-19 16:43 - 2016-09-09 17:29 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2017-01-18 16:44 - 2017-01-19 16:45 - 00000000 ____D C:\Users\Komp1\AppData\LocalLow\Mozilla 2017-01-18 16:44 - 2017-01-18 16:44 - 00000000 ____D C:\Users\Komp1\AppData\Roaming\Mozilla 2017-01-18 16:44 - 2017-01-18 16:44 - 00000000 ____D C:\Users\Komp1\AppData\Roaming\Firefox 2017-01-18 16:44 - 2017-01-18 16:44 - 00000000 ____D C:\Users\Komp1\AppData\Local\Firefox 2017-01-18 16:43 - 2017-01-20 16:42 - 00003954 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1465990919 2017-01-17 19:08 - 2017-01-17 19:08 - 00000000 ____D C:\Users\Komp1\AppData\Local\Disc_Soft_Ltd 2017-01-17 17:59 - 2017-01-17 17:59 - 00000019 _____ C:\Users\Public\Documents\cc.ini 2017-01-17 17:49 - 2017-01-17 17:49 - 00001248 _____ C:\Users\Komp1\Downloads\Battle for Middle-Earth 1 & 2 WinVista & Win7 64-Bit Compatability-Fix.rar 2017-01-17 17:08 - 2017-01-17 17:08 - 00047672 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys 2017-01-17 17:07 - 2017-01-17 17:08 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite 2017-01-17 17:07 - 2017-01-17 17:07 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys 2017-01-17 17:07 - 2017-01-17 17:07 - 00001980 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2017-01-17 17:07 - 2017-01-17 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2017-01-11 19:42 - 2017-01-11 19:42 - 00001733 _____ C:\Users\Komp1\Desktop\Google.lnk 2017-01-11 19:29 - 2017-01-11 19:29 - 06463660 _____ (Punk Software ) C:\Users\Komp1\Downloads\RocketDock-v1.3.5.exe 2017-01-08 17:51 - 2017-01-08 17:51 - 11041764 _____ C:\Users\Komp1\Downloads\Władca Pierścieni - Bitwa o Śródziemie 2 [Crack by Axlu].rar 2017-01-08 17:50 - 2017-01-08 17:50 - 00029050 _____ C:\Users\Komp1\Downloads\Władca Pierścieni - Bitwa o Śródziemie 2 [PL].torrent 2017-01-07 09:38 - 2017-01-07 09:38 - 00046104 _____ C:\Users\Komp1\Documents\cc_20170107_093815.reg 2017-01-07 09:37 - 2017-01-07 09:37 - 00145574 _____ C:\Users\Komp1\Documents\cc_20170107_093750.reg 2017-01-06 13:47 - 2017-01-17 22:54 - 00000000 ____D C:\Users\Komp1\Desktop\Mmm 2017-01-04 15:10 - 2017-01-04 15:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloody 2017-01-04 15:09 - 2017-01-04 15:09 - 00000000 ____D C:\Program Files (x86)\Bloody6 2017-01-04 14:31 - 2017-01-04 14:32 - 27490066 _____ C:\Users\Komp1\Downloads\Bloody6_V2016.1229_US.zip 2017-01-04 14:11 - 2017-01-04 14:13 - 10487809 _____ C:\Users\Komp1\Downloads\KeyResponsePK V2.0_20150604_B4.zip 2017-01-01 21:05 - 2017-01-01 21:05 - 00000000 _____ C:\Users\Komp1\Downloads\BBID-01-01535859806119009 2016-12-31 17:47 - 2016-12-31 17:47 - 00000000 ____D C:\Program Files (x86)\OpenPlsInWMP 2016-12-31 17:46 - 2016-12-31 17:46 - 01496584 _____ C:\Users\Komp1\Downloads\Open PLS in WMP - CHIP-Installer.exe 2016-12-31 17:39 - 2016-12-31 17:39 - 00000110 _____ C:\Users\Komp1\Downloads\stream.pls 2016-12-31 16:29 - 2016-12-31 16:29 - 00383236 _____ C:\Users\Komp1\Downloads\Regulamin_Sklepu_internetowego_08.08.2016r.pdf 2016-12-31 16:28 - 2016-12-31 16:28 - 00178463 _____ C:\Users\Komp1\Downloads\wzor_odstapienia_od_umowy.pdf 2016-12-31 10:20 - 2016-12-31 10:20 - 00000000 ____D C:\Users\Komp1\AppData\Roaming\Letasoft 2016-12-31 10:20 - 2016-12-31 10:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Letasoft Sound Booster 2016-12-31 10:20 - 2016-12-31 10:20 - 00000000 ____D C:\Program Files (x86)\Letasoft Sound Booster 2016-12-31 10:11 - 2016-12-31 10:11 - 06132120 _____ (Letasoft LLC ) C:\Users\Komp1\Downloads\SoundBoosterSetup.exe 2016-12-30 17:33 - 2016-12-30 17:33 - 00048442 _____ C:\Users\Komp1\Downloads\15823565_1896003563965581_2387760004884385874_n.jpg 2016-12-29 18:22 - 2016-12-29 18:22 - 00083000 _____ C:\Users\Komp1\Downloads\3329137.pdf 2016-12-26 21:08 - 2017-01-18 18:54 - 00000000 ____D C:\Users\Komp1\AppData\Roaming\Infamous GTAV Menu 2016-12-26 21:03 - 2016-12-26 21:03 - 01293996 _____ C:\Users\Komp1\Downloads\# Infamous Menu DLL.rar 2016-12-26 21:03 - 2016-12-26 21:03 - 00000107 _____ C:\Users\Komp1\Downloads\# Infamous INI.rar 2016-12-26 21:02 - 2016-12-26 21:02 - 00018513 _____ C:\Users\Komp1\Downloads\# Infamous DLL.rar 2016-12-26 21:02 - 2016-12-26 21:02 - 00001613 _____ C:\Users\Komp1\Downloads\# Infamous XMP.rar 2016-12-26 20:35 - 2016-12-26 20:35 - 00002242 _____ C:\Users\Komp1\AppData\Local\recently-used.xbel 2016-12-26 14:35 - 2016-12-26 14:37 - 91744069 _____ C:\Users\Komp1\Downloads\1426497251_PS3 GTA 5 1.23 OnlineOffline Mod Menu.zip 2016-12-25 14:12 - 2016-12-25 14:15 - 138578781 _____ C:\Users\Komp1\Downloads\#Yolo_19 DJ Lampard 2K16 (www.djoles.pl).mp3 2016-12-24 16:50 - 2016-12-24 16:50 - 00000104 _____ C:\Users\Komp1\Downloads\# Menu 1.37 [Undetected] INI.rar 2016-12-24 16:49 - 2016-12-24 16:49 - 00149468 _____ C:\Users\Komp1\Downloads\# Menu 1.37 [Undetected] MENU.rar 2016-12-24 16:49 - 2016-12-24 16:49 - 00018513 _____ C:\Users\Komp1\Downloads\# Menu 1.37 [Undetected] Dll.rar 2016-12-24 16:20 - 2017-01-11 16:31 - 00524288 ___SH C:\Windows\system32\config\components{29da34be-c9e7-11e6-9575-d8cb8ac2e5f8}.TMContainer00000000000000000001.regtrans-ms 2016-12-24 16:20 - 2017-01-11 16:31 - 00065536 ___SH C:\Windows\system32\config\components{29da34be-c9e7-11e6-9575-d8cb8ac2e5f8}.TM.blf 2016-12-24 16:20 - 2016-12-24 16:20 - 00524288 ___SH C:\Windows\system32\config\components{29da34be-c9e7-11e6-9575-d8cb8ac2e5f8}.TMContainer00000000000000000002.regtrans-ms ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-01-22 16:19 - 2016-04-30 14:07 - 00000000 ____D C:\Users\Komp1\AppData\Roaming\BitTorrent 2017-01-22 16:19 - 2016-01-25 15:37 - 00000000 ____D C:\AdwCleaner 2017-01-22 16:18 - 2016-01-21 22:23 - 00000000 ___RD C:\Users\Komp1\Desktop\LOL 2017-01-22 16:13 - 2016-03-29 18:44 - 00000008 __RSH C:\ProgramData\ntuser.pol 2017-01-22 16:12 - 2016-11-24 14:53 - 00000000 _____ C:\Users\Public\Documents\temp.dat 2017-01-22 16:12 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-01-22 16:09 - 2014-12-30 21:16 - 00065536 _____ C:\Windows\system32\spu_storage.bin 2017-01-22 16:09 - 2009-07-14 05:45 - 00028848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-01-22 16:09 - 2009-07-14 05:45 - 00028848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-01-22 16:05 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy 2017-01-22 16:05 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy 2017-01-22 15:36 - 2014-12-30 19:11 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2017-01-22 09:45 - 2016-02-06 20:35 - 00000000 ____D C:\Users\Komp1\AppData\Local\CrashDumps 2017-01-19 16:54 - 2016-11-24 14:53 - 00000000 _____ C:\Users\Public\Documents\report.dat 2017-01-19 16:45 - 2016-10-14 18:52 - 00001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2017-01-19 16:44 - 2016-06-15 12:39 - 00003922 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2017-01-18 20:01 - 2016-08-03 19:01 - 00003186 _____ C:\Windows\System32\Tasks\HPCeeScheduleForKomp1 2017-01-18 20:01 - 2016-08-03 19:01 - 00000332 _____ C:\Windows\Tasks\HPCeeScheduleForKomp1.job 2017-01-17 17:45 - 2015-04-17 14:51 - 00000000 ____D C:\Users\Komp1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2017-01-17 17:13 - 2015-01-01 00:31 - 00000000 ____D C:\Users\Komp1\AppData\Roaming\DAEMON Tools Lite 2017-01-17 17:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2017-01-15 20:44 - 2016-09-16 17:01 - 00000000 ____D C:\Users\Komp1\AppData\Local\Ubisoft Game Launcher 2017-01-15 18:19 - 2016-11-22 20:40 - 00000000 ____D C:\Users\Komp1\Documents\The Crew 2017-01-15 17:38 - 2016-11-22 20:40 - 00000000 ____D C:\Users\Komp1\Documents\ProfileCache 2017-01-11 19:41 - 2016-10-27 13:57 - 00000000 ____D C:\Users\Komp1\AppData\Roaming\TS3Client 2017-01-07 19:31 - 2015-01-08 17:17 - 00000000 ____D C:\Users\Komp1\AppData\Roaming\Origin 2017-01-07 19:31 - 2015-01-08 17:15 - 00000000 ____D C:\ProgramData\Origin 2017-01-07 18:48 - 2016-01-21 20:43 - 00000000 ____D C:\Users\Komp1\Documents\FIFA 14 2017-01-07 18:06 - 2015-01-08 17:15 - 00000000 ____D C:\Program Files (x86)\Origin 2017-01-07 09:52 - 2016-03-26 13:51 - 00033280 ___SH C:\Users\Komp1\Thumbs.db 2017-01-07 09:36 - 2014-12-30 18:52 - 00000000 ____D C:\Program Files (x86)\Steam 2017-01-07 09:30 - 2011-04-12 14:21 - 00740098 _____ C:\Windows\system32\perfh015.dat 2017-01-07 09:30 - 2011-04-12 14:21 - 00155672 _____ C:\Windows\system32\perfc015.dat 2017-01-07 09:30 - 2009-07-14 06:13 - 01669190 _____ C:\Windows\system32\PerfStringBackup.INI 2017-01-06 13:44 - 2016-05-16 18:17 - 00000000 ____D C:\Users\Komp1\AppData\Local\ElevatedDiagnostics 2016-12-26 20:59 - 2016-01-28 20:45 - 00000000 ____D C:\Users\Komp1\.gimp-2.8 2016-12-26 11:51 - 2016-01-29 17:53 - 00000000 ____D C:\Users\Komp1\AppData\Local\gtk-2.0 ==================== Pliki w katalogu głównym wybranych folderów ======= 2016-01-20 16:55 - 2016-01-20 16:55 - 6420480 _____ () C:\Program Files (x86)\GUT734C.tmp 2016-01-20 15:48 - 2016-01-20 15:48 - 6420480 _____ () C:\Program Files (x86)\GUT9379.tmp 2017-01-22 16:15 - 2017-01-22 16:15 - 0000000 _____ () C:\Program Files (x86)\metadata 2017-01-22 16:15 - 2017-01-22 16:15 - 0000040 _____ () C:\Program Files (x86)\settings.dat 2016-06-17 07:54 - 2016-06-17 07:54 - 0003203 _____ () C:\Users\Komp1\AppData\Roaming\Adobe-Korea1-H-CID 2015-04-04 20:13 - 2015-04-04 20:37 - 0001357 _____ () C:\Users\Komp1\AppData\Roaming\chromeservice.exe.tmp 2016-06-17 07:53 - 2016-06-17 07:53 - 0002864 _____ () C:\Users\Komp1\AppData\Roaming\close_normal.png 2016-06-17 07:53 - 2016-06-17 07:53 - 0000294 _____ () C:\Users\Komp1\AppData\Roaming\Darker.blw 2016-06-17 07:53 - 2016-06-17 07:53 - 0003397 _____ () C:\Users\Komp1\AppData\Roaming\EUC-V 2016-06-17 07:53 - 2016-06-17 07:53 - 0001858 _____ () C:\Users\Komp1\AppData\Roaming\flat.xsl 2016-03-05 18:26 - 2016-03-05 18:26 - 0005120 _____ () C:\Users\Komp1\AppData\Roaming\GiftBag.db 2016-10-17 05:50 - 2016-10-17 05:50 - 0017920 _____ (Embarcadero Technologies, Inc.) C:\Users\Komp1\AppData\Roaming\NsRandom.dll 1997-08-03 08:00 - 1997-08-03 08:00 - 0061262 _____ () C:\Users\Komp1\AppData\Roaming\Zaptiah.N 2016-12-26 20:35 - 2016-12-26 20:35 - 0002242 _____ () C:\Users\Komp1\AppData\Local\recently-used.xbel 2016-02-27 16:19 - 2016-02-27 16:19 - 0007605 _____ () C:\Users\Komp1\AppData\Local\Resmon.ResmonCfg 2016-01-21 15:53 - 2016-01-21 15:53 - 0000000 ____H () C:\ProgramData\DP45977C.lfl ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2017-01-14 19:27 ==================== Koniec FRST.txt ============================