API tools faq
paste
Advertisement
Damian379

FRST

Damian379
Aug 14th, 2017
543
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 46.09 KB | None | 0 0
raw download clone embed print report
  1. Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 12-08-2017
  2. Uruchomiony przez Damian (administrator) URSUS (14-08-2017 09:52:37)
  3. Uruchomiony z C:\Users\Damian\Desktop\FRST
  4. Załadowane profile: Damian (Dostępne profile: Damian)
  5. Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska)
  6. Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
  7. Tryb startu: Normal
  8. Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Procesy (filtrowane) =================
  11.  
  12. (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
  13.  
  14. (ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
  15. (ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
  16. (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
  17. (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
  18. (Microsoft Corporation) C:\Windows\System32\dllhost.exe
  19.  
  20. ==================== Rejestr (filtrowane) ====================
  21.  
  22. (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
  23.  
  24. HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
  25. HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-15] (Advanced Micro Devices, Inc.)
  26. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
  27. HKU\S-1-5-21-1720354015-259361552-2915752806-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [26773216 2017-07-19] (Google)
  28. Startup: C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Powiadomienia monitorowania tuszu - HP Deskjet 2540 series.lnk [2017-08-14]
  29. ShortcutTarget: Powiadomienia monitorowania tuszu - HP Deskjet 2540 series.lnk -> C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
  30.  
  31. ==================== Internet (filtrowane) ====================
  32.  
  33. (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
  34.  
  35. Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
  36. Tcpip\..\Interfaces\{333F4BB4-4E7A-4EE3-858D-F6F10651F8BB}: [DhcpNameServer] 192.168.1.1
  37.  
  38. Internet Explorer:
  39. ==================
  40. BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
  41. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-08-12] (Oracle Corporation)
  42. BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-12] (Oracle Corporation)
  43. BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
  44.  
  45. FireFox:
  46. ========
  47. FF DefaultProfile: 6ieb7rjk.default
  48. FF ProfilePath: C:\Users\Damian\AppData\Roaming\Mozilla\Firefox\Profiles\6ieb7rjk.default [2017-08-14]
  49. FF Extension: (Adblock Plus) - C:\Users\Damian\AppData\Roaming\Mozilla\Firefox\Profiles\6ieb7rjk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-08-12]
  50. FF Extension: (Click-to-Play staged rollout) - C:\Program Files\Mozilla Firefox\browser\features\clicktoplay-rollout@mozilla.org.xpi [2017-08-09] [Brak podpisu cyfrowego]
  51. FF Extension: (Follow-on Search Telemetry) - C:\Program Files\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi [2017-08-09] [Brak podpisu cyfrowego]
  52. FF Extension: (Shield Recipe Client) - C:\Program Files\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi [2017-08-09] [Brak podpisu cyfrowego]
  53. FF HKU\S-1-5-21-1720354015-259361552-2915752806-1000\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
  54. FF Extension: (Brak nazwy) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2017-05-16]
  55. FF HKU\S-1-5-21-1720354015-259361552-2915752806-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Damian\AppData\Roaming\IDM\idmmzcc5
  56. FF Extension: (IDM CC) - C:\Users\Damian\AppData\Roaming\IDM\idmmzcc5 [2017-08-11] [Brak podpisu cyfrowego]
  57. FF HKU\S-1-5-21-1720354015-259361552-2915752806-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
  58. FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-01-26]
  59. FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_151.dll [2017-08-10] ()
  60. FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-12] (Oracle Corporation)
  61. FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-12] (Oracle Corporation)
  62. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-08-10] ()
  63. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-10] (Google Inc.)
  64. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-10] (Google Inc.)
  65. FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
  66. FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)
  67.  
  68. Chrome:
  69. =======
  70. CHR HomePage: Default -> hxxp://www.wp.pl/
  71. CHR StartupUrls: Default -> "hxxps://www.google.pl/"
  72. CHR Profile: C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default [2017-08-14]
  73. CHR Extension: (Prezentacje Google) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-08-10]
  74. CHR Extension: (Flash Video Downloader) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2017-08-14]
  75. CHR Extension: (Dokumenty Google) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-08-10]
  76. CHR Extension: (Dysk Google) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-10]
  77. CHR Extension: (YouTube) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-10]
  78. CHR Extension: (Adobe Acrobat) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-10]
  79. CHR Extension: (Arkusze Google) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-08-10]
  80. CHR Extension: (Dokumenty Google offline) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-11]
  81. CHR Extension: (AdBlock) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-08-10]
  82. CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-08-10]
  83. CHR Extension: (IDM Integration Module) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-08-10]
  84. CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-10]
  85. CHR Extension: (Gmail) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-10]
  86. CHR Extension: (Chrome Media Router) - C:\Users\Damian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-10]
  87. CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2017-08-11]
  88. CHR HKU\S-1-5-21-1720354015-259361552-2915752806-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
  89. CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
  90. CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2017-08-11]
  91.  
  92. ==================== Usługi (filtrowane) ====================
  93.  
  94. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  95.  
  96. R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2771848 2017-08-12] (ESET)
  97. R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
  98. R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-08-20] (Microsoft Corporation)
  99.  
  100. ===================== Sterowniki (filtrowane) ======================
  101.  
  102. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  103.  
  104. R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2017-08-12] ()
  105. R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [262792 2017-08-12] (ESET)
  106. R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [197248 2017-08-12] (ESET)
  107. R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [153216 2017-08-12] (ESET)
  108. R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [208520 2017-08-12] (ESET)
  109. R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [61568 2017-08-12] (ESET)
  110. R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [84616 2017-08-12] (ESET)
  111. R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77376 2017-06-27] ()
  112. R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-08-10] (REALiX(tm))
  113. R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2017-08-12] ()
  114. R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [188352 2017-08-14] (Malwarebytes)
  115. R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [101784 2017-08-14] (Malwarebytes)
  116. R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [45472 2017-08-14] (Malwarebytes)
  117. R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [253856 2017-08-14] (Malwarebytes)
  118. R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [84256 2017-08-14] (Malwarebytes)
  119. R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2017-08-10] ()
  120. U5 UnlockerDriver5; F:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
  121.  
  122. ==================== NetSvcs (filtrowane) ===================
  123.  
  124. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  125.  
  126.  
  127. ==================== Jeden miesiąc - utworzone pliki i foldery ========
  128.  
  129. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  130.  
  131. 2017-08-14 09:52 - 2017-08-14 09:52 - 000001420 _____ C:\Users\Damian\Desktop\Malwarebytes.txt
  132. 2017-08-14 09:48 - 2017-08-14 09:48 - 000188352 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
  133. 2017-08-14 09:48 - 2017-08-14 09:48 - 000101784 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
  134. 2017-08-14 09:48 - 2017-08-14 09:48 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
  135. 2017-08-14 09:47 - 2017-08-14 09:47 - 000253856 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
  136. 2017-08-14 09:47 - 2017-08-14 09:47 - 000045472 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
  137. 2017-08-14 09:47 - 2017-08-14 09:47 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
  138. 2017-08-14 09:47 - 2017-08-14 09:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
  139. 2017-08-14 09:47 - 2017-08-14 09:47 - 000000000 ____D C:\ProgramData\Malwarebytes
  140. 2017-08-14 09:47 - 2017-08-14 09:47 - 000000000 ____D C:\Program Files\Malwarebytes
  141. 2017-08-14 09:47 - 2017-06-27 12:06 - 000077376 _____ C:\Windows\system32\Drivers\mbae64.sys
  142. 2017-08-14 09:34 - 2017-08-14 09:34 - 000000000 ____D C:\Users\Damian\Downloads\programy
  143. 2017-08-14 09:33 - 2017-08-14 09:33 - 008185288 _____ (Malwarebytes) C:\Users\Damian\Downloads\adwcleaner_7.0.1.0.exe
  144. 2017-08-14 09:32 - 2017-08-14 09:34 - 065033984 _____ (Malwarebytes ) C:\Users\Damian\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.160-1.0.2251.exe
  145. 2017-08-14 09:32 - 2017-08-14 09:33 - 001790024 _____ (Malwarebytes) C:\Users\Damian\Downloads\JRT.exe
  146. 2017-08-14 09:20 - 2017-08-14 09:52 - 000000000 ____D C:\Users\Damian\Desktop\FRST
  147. 2017-08-14 00:05 - 2017-08-14 00:05 - 000014631 _____ C:\Users\Damian\Downloads\[torrenty.to] Crusader Kings 2 2 0 4 36 DLC [PL] [Soar].torrent
  148. 2017-08-14 00:04 - 2017-08-14 00:04 - 000019882 _____ C:\Users\Damian\Downloads\[torrenty.to] Crusader Kings II- Mroczne Wieki [PL] [.iso].torrent
  149. 2017-08-13 23:35 - 2017-08-13 23:35 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
  150. 2017-08-13 23:35 - 2017-08-13 23:35 - 000000924 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
  151. 2017-08-13 23:35 - 2017-08-13 23:35 - 000000000 ____D C:\Program Files\Mozilla Firefox
  152. 2017-08-13 23:35 - 2017-08-13 23:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
  153. 2017-08-13 23:30 - 2017-08-14 09:52 - 000000000 ____D C:\FRST
  154. 2017-08-13 23:22 - 2017-08-13 23:22 - 000029952 _____ C:\Users\Damian\Desktop\bookmarks.html
  155. 2017-08-13 23:16 - 2017-08-13 23:16 - 000000000 ____D C:\ProgramData\RegRun
  156. 2017-08-13 23:15 - 2017-08-13 23:23 - 000000000 ____D C:\Users\Damian\Documents\RegRun2
  157. 2017-08-13 23:15 - 2017-08-13 23:15 - 000000002 RSHOT C:\Windows\winstart.bat
  158. 2017-08-13 23:15 - 2017-08-13 23:15 - 000000002 RSHOT C:\Windows\SysWOW64\CONFIG.NT
  159. 2017-08-13 23:15 - 2017-08-13 23:15 - 000000002 RSHOT C:\Windows\SysWOW64\AUTOEXEC.NT
  160. 2017-08-13 23:08 - 2017-08-13 23:10 - 000385046 _____ C:\TDSSKiller.3.1.0.15_13.08.2017_23.08.14_log.txt
  161. 2017-08-13 23:03 - 2017-08-13 23:03 - 000000492 _____ C:\TDSSKiller.3.1.0.15_13.08.2017_23.03.21_log.txt
  162. 2017-08-13 18:24 - 2017-08-13 18:24 - 000023535 _____ C:\Users\Damian\Downloads\[torrenty.to] GTA IV - Episodes From Liberty City [ENG].torrent
  163. 2017-08-13 14:53 - 2017-08-13 14:53 - 000000000 ____D C:\Users\Damian\Desktop\mcedit
  164. 2017-08-13 14:44 - 2017-08-14 08:10 - 000000000 ____D C:\Users\Damian\AppData\LocalLow\uTorrent
  165. 2017-08-12 23:33 - 2017-08-12 23:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toolbar Cleaner
  166. 2017-08-12 23:20 - 2017-08-12 23:20 - 000002974 _____ C:\Users\Damian\Downloads\[torrenty.to] AdwCleaner v4.280 [PL].torrent
  167. 2017-08-12 23:20 - 2017-08-12 23:20 - 000001762 _____ C:\Users\Damian\Downloads\[torrenty.to] AdwCleaner 5.003 PL.torrent
  168. 2017-08-12 23:07 - 2017-08-14 09:37 - 000000000 ____D C:\AdwCleaner
  169. 2017-08-12 23:07 - 2017-08-12 23:08 - 000000000 ____D C:\Users\Damian\AppData\Local\Abelssoft
  170. 2017-08-12 23:07 - 2017-08-12 23:07 - 000000000 ____D C:\Users\Damian\AppData\Roaming\Abelssoft
  171. 2017-08-12 23:07 - 2017-08-12 23:07 - 000000000 ____D C:\ProgramData\XDMessagingv4
  172. 2017-08-12 20:45 - 2017-08-12 20:45 - 000014935 _____ C:\Users\Damian\Downloads\[torrenty.to] Włatcy móch- Ćmoki, czopki i mondzioły (2009) [DVDRip XviD AC3-LTN] [PL].torrent
  173. 2017-08-12 20:44 - 2017-08-12 20:45 - 000018276 _____ C:\Users\Damian\Downloads\[torrenty.to] Włatcy Móch - Ćmoki, Czopki I Mondzioły -2009-[DVDRip] [XviD] [Dubbing PL] [D T H0608].torrent
  174. 2017-08-12 20:37 - 2017-07-26 12:40 - 046463059 _____ C:\Users\Damian\Desktop\Komiksy z Kaczogrodu 3 - Życie i czasy Sknerusa McKwacza TOM 3. Podróże Sknerusa McKwacza.pdf
  175. 2017-08-12 20:37 - 2017-06-18 12:21 - 000000000 ____D C:\Users\Damian\Desktop\Rolnik szuka rozdartych serc
  176. 2017-08-12 20:35 - 2017-08-12 20:35 - 000000000 ____D C:\Users\Damian\AppData\LocalLow\Adobe
  177. 2017-08-12 20:35 - 2014-11-22 17:37 - 000675988 _____ C:\Users\Damian\Desktop\Minecraft.exe
  178. 2017-08-12 20:14 - 2017-08-12 20:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
  179. 2017-08-12 18:47 - 2017-08-12 18:47 - 000020294 _____ C:\Users\Damian\Downloads\[torrenty.to] Windows 7 (64 bit & 32 bit) PL.torrent
  180. 2017-08-12 18:46 - 2017-08-12 18:46 - 000015522 _____ C:\Users\Damian\Downloads\[torrenty.to] Nago - Naked -2017- [WEBRip] [XviD-KiT] [Lektor PL] [AgusiQ].torrent
  181. 2017-08-12 16:20 - 2017-08-12 16:20 - 000000000 ____D C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
  182. 2017-08-12 16:09 - 2017-08-12 16:09 - 000000906 _____ C:\Users\Damian\Desktop\Downloads.lnk
  183. 2017-08-12 16:07 - 2017-08-12 16:07 - 000000716 _____ C:\Users\Damian\Desktop\screenSHU — skrót.lnk
  184. 2017-08-12 15:41 - 2017-08-12 15:41 - 000001391 _____ C:\Users\Damian\Desktop\LuckyLuke.lnk
  185. 2017-08-12 15:28 - 2017-08-12 15:28 - 000153216 _____ (ESET) C:\Windows\system32\Drivers\ekbdflt.sys
  186. 2017-08-12 14:00 - 2017-08-12 14:00 - 000000000 ____D C:\Users\Damian\AppData\Roaming\AMD
  187. 2017-08-12 13:52 - 2017-08-12 13:58 - 000088480 _____ C:\Windows\system32\Drivers\atksgt.sys
  188. 2017-08-12 13:52 - 2017-08-12 13:58 - 000046400 _____ C:\Windows\system32\Drivers\lirsgt.sys
  189. 2017-08-12 13:46 - 2017-08-12 17:45 - 000000000 ____D C:\ProgramData\Go West
  190. 2017-08-12 13:44 - 2017-08-12 13:44 - 000000000 ____D C:\Program Files (x86)\Atari
  191. 2017-08-12 13:43 - 2017-08-12 13:43 - 000000000 ____D C:\Users\Damian\AppData\Roaming\java
  192. 2017-08-12 13:42 - 2017-08-12 13:42 - 000110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
  193. 2017-08-12 13:42 - 2017-08-12 13:42 - 000000000 ____D C:\Users\Damian\AppData\Roaming\Sun
  194. 2017-08-12 13:42 - 2017-08-12 13:42 - 000000000 ____D C:\Users\Damian\AppData\LocalLow\Sun
  195. 2017-08-12 13:42 - 2017-08-12 13:42 - 000000000 ____D C:\ProgramData\Oracle
  196. 2017-08-12 13:42 - 2017-08-12 13:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
  197. 2017-08-12 13:42 - 2017-08-12 13:42 - 000000000 ____D C:\Program Files\Java
  198. 2017-08-12 13:04 - 2017-08-12 13:04 - 000000000 ____D C:\Users\Damian\AppData\Local\ESET
  199. 2017-08-12 13:03 - 2017-08-12 13:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
  200. 2017-08-12 13:03 - 2017-08-12 13:03 - 000000000 ____D C:\ProgramData\ESET
  201. 2017-08-12 13:03 - 2017-08-12 13:03 - 000000000 ____D C:\Program Files\ESET
  202. 2017-08-12 12:05 - 2017-08-12 12:05 - 000000000 ____D C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
  203. 2017-08-12 12:05 - 2017-08-12 12:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
  204. 2017-08-12 12:05 - 2017-08-12 12:05 - 000000000 ____D C:\Program Files (x86)\WinRAR
  205. 2017-08-12 12:01 - 2017-08-12 13:10 - 000000000 ____D C:\Users\Damian\Desktop\ESET Smart Security
  206. 2017-08-11 19:21 - 2017-08-13 20:59 - 000000000 ____D C:\Users\Damian\AppData\Roaming\vlc
  207. 2017-08-11 16:10 - 2017-08-11 16:10 - 000092383 _____ C:\Users\Damian\Downloads\[torrenty.to] Gra o tron - Game of Thrones [S07E04] [720p] [AMZN] [WEB-DL] [AC3] [x264-Ralf] [Lektor PL].torrent
  208. 2017-08-11 16:10 - 2017-08-11 16:10 - 000030523 _____ C:\Users\Damian\Downloads\[torrenty.to] Gra o tron - Game of Thrones [S07E04] [480p] [AMZN] [WEB-DL] [AC3] [XviD-Ralf] [Lektor PL].torrent
  209. 2017-08-11 15:50 - 2017-08-14 09:18 - 000000000 ____D C:\Users\Damian\AppData\Roaming\DMCache
  210. 2017-08-11 15:48 - 2017-08-14 08:44 - 000000000 ____D C:\Users\Damian\Downloads\Video
  211. 2017-08-11 15:48 - 2017-08-11 16:07 - 000000000 ____D C:\Users\Damian\AppData\Roaming\IDM
  212. 2017-08-11 15:48 - 2017-08-11 15:48 - 000001107 _____ C:\Users\Damian\Desktop\Internet Download Manager.lnk
  213. 2017-08-11 15:48 - 2017-08-11 15:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
  214. 2017-08-11 15:48 - 2017-08-11 15:48 - 000000000 ____D C:\ProgramData\IDM
  215. 2017-08-11 15:48 - 2017-08-11 15:48 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
  216. 2017-08-11 15:48 - 2016-10-17 17:35 - 000223464 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
  217. 2017-08-11 12:46 - 2017-08-11 12:46 - 000002212 _____ C:\Users\Public\Desktop\HP Deskjet 2540 series.lnk
  218. 2017-08-11 12:46 - 2017-08-11 12:46 - 000001159 _____ C:\Users\Public\Desktop\Zakup materiałów eksploatacyjnych - HP Deskjet 2540 series.lnk
  219. 2017-08-11 12:46 - 2017-08-11 12:46 - 000000057 _____ C:\ProgramData\Ament.ini
  220. 2017-08-11 12:46 - 2017-08-11 12:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
  221. 2017-08-11 12:46 - 2017-08-11 12:46 - 000000000 ____D C:\ProgramData\HP
  222. 2017-08-11 12:46 - 2017-08-11 12:46 - 000000000 ____D C:\Program Files\HP
  223. 2017-08-11 12:46 - 2017-08-11 12:46 - 000000000 ____D C:\Program Files (x86)\HP
  224. 2017-08-11 12:46 - 2014-03-06 12:51 - 000763912 ____N (Hewlett-Packard Co.) C:\Windows\system32\HPDiscoPMC211.dll
  225. 2017-08-11 12:45 - 2017-08-11 12:46 - 000000000 ____D C:\Users\Damian\AppData\Local\HP
  226. 2017-08-11 12:41 - 2017-08-11 12:41 - 000000000 ____D C:\Users\Damian\AppData\Local\ElevatedDiagnostics
  227. 2017-08-11 08:19 - 2017-08-11 08:19 - 000001516 _____ C:\Users\Damian\Desktop\WiseCare365.lnk
  228. 2017-08-11 00:03 - 2017-08-14 09:20 - 000000000 ____D C:\Users\Damian\AppData\Roaming\uTorrent
  229. 2017-08-11 00:03 - 2017-08-11 00:03 - 000000814 _____ C:\Users\Damian\Desktop\µTorrent.lnk
  230. 2017-08-11 00:03 - 2017-08-11 00:03 - 000000794 _____ C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
  231. 2017-08-10 23:44 - 2017-08-10 23:44 - 000000981 _____ C:\Users\Damian\Desktop\Dysk Google.lnk
  232. 2017-08-10 23:42 - 2017-08-14 09:24 - 000000000 ___RD C:\Users\Damian\Dysk Google
  233. 2017-08-10 23:41 - 2017-08-10 23:41 - 000001034 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
  234. 2017-08-10 23:41 - 2017-08-10 23:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
  235. 2017-08-10 23:41 - 2017-08-10 23:41 - 000000000 ____D C:\Program Files\VS Revo Group
  236. 2017-08-10 23:33 - 2017-08-10 23:33 - 000001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
  237. 2017-08-10 23:33 - 2017-08-10 23:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
  238. 2017-08-10 23:32 - 2017-08-10 23:32 - 000000000 ____D C:\Program Files (x86)\VideoLAN
  239. 2017-08-10 23:28 - 2017-08-10 23:28 - 000000000 ____D C:\Users\Damian\AppData\Roaming\Google
  240. 2017-08-10 23:26 - 2017-08-10 23:26 - 000002273 _____ C:\Users\Damian\Desktop\Google Chrome.lnk
  241. 2017-08-10 23:25 - 2017-08-12 20:14 - 000000000 ____D C:\Program Files (x86)\Google
  242. 2017-08-10 23:25 - 2017-08-10 23:25 - 000003480 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
  243. 2017-08-10 23:25 - 2017-08-10 23:25 - 000003352 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
  244. 2017-08-10 23:24 - 2017-08-12 20:14 - 000000000 ____D C:\Users\Damian\AppData\Local\Google
  245. 2017-08-10 23:22 - 2017-08-10 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
  246. 2017-08-10 23:22 - 2017-08-10 23:22 - 000002691 _____ C:\Users\Damian\Desktop\Microsoft Office Word 2007.lnk
  247. 2017-08-10 23:22 - 2017-08-10 23:22 - 000002689 _____ C:\Users\Damian\Desktop\Microsoft Office Excel 2007.lnk
  248. 2017-08-10 23:21 - 2017-08-10 23:21 - 000000000 ____D C:\Windows\PCHEALTH
  249. 2017-08-10 23:21 - 2017-08-10 23:21 - 000000000 ____D C:\Program Files (x86)\Microsoft Works
  250. 2017-08-10 23:17 - 2017-08-11 08:18 - 000000000 ____D C:\Users\Damian\AppData\Roaming\Wise Care 365
  251. 2017-08-10 23:17 - 2017-08-10 23:17 - 000000000 ____D C:\Program Files (x86)\Wise Care 365
  252. 2017-08-10 23:16 - 2017-08-10 23:16 - 000000000 ____D C:\Program Files\Microsoft Office
  253. 2017-08-10 23:15 - 2017-08-10 23:21 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
  254. 2017-08-10 23:15 - 2017-08-10 23:15 - 000000000 ____D C:\Windows\SHELLNEW
  255. 2017-08-10 23:15 - 2017-08-10 23:15 - 000000000 ____D C:\Users\Damian\AppData\Local\Microsoft Help
  256. 2017-08-10 23:15 - 2017-05-22 11:59 - 008024109 ____R C:\Users\Damian\Desktop\IDM 6.28.10 h- hirania.rar
  257. 2017-08-10 23:14 - 2017-08-10 23:14 - 000000000 __RHD C:\MSOCache
  258. 2017-08-10 22:52 - 2017-08-10 22:52 - 000000000 ___HD C:\$AV_AVG
  259. 2017-08-10 22:46 - 2017-08-12 13:39 - 000000000 ____D C:\Program Files (x86)\KMSPico 10.2.2 Final
  260. 2017-08-10 22:46 - 2017-08-10 23:17 - 000000000 ____D C:\Users\Damian\AppData\Local\Owvics
  261. 2017-08-10 22:46 - 2017-08-10 22:46 - 000003470 _____ C:\Windows\System32\Tasks\FreeAntiVirus
  262. 2017-08-10 22:45 - 2017-08-12 12:49 - 000000000 ____D C:\Program Files\WinRAR
  263. 2017-08-10 22:45 - 2017-08-10 22:45 - 000000000 ____D C:\Users\Damian\AppData\Roaming\WinRAR
  264. 2017-08-10 22:42 - 2017-08-10 22:42 - 000000000 ____D C:\Program Files\Microsoft Games
  265. 2017-08-10 22:36 - 2017-08-10 22:36 - 000000000 ____D C:\Users\Damian\AppData\Local\CEF
  266. 2017-08-10 22:35 - 2017-08-12 13:11 - 000000000 ____D C:\ProgramData\Avg
  267. 2017-08-10 22:35 - 2017-08-12 13:07 - 000000000 ____D C:\Users\Damian\AppData\Local\AvgSetupLog
  268. 2017-08-10 22:35 - 2017-08-10 22:41 - 000000000 ____D C:\Users\Damian\AppData\Local\Avg
  269. 2017-08-10 22:30 - 2017-08-10 22:30 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
  270. 2017-08-10 22:30 - 2017-08-10 22:30 - 000000000 ____D C:\Users\Damian\AppData\Roaming\Macromedia
  271. 2017-08-10 22:29 - 2017-08-14 09:36 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
  272. 2017-08-10 22:28 - 2017-08-11 08:24 - 000000000 ____D C:\ProgramData\Adobe
  273. 2017-08-10 22:28 - 2017-08-10 22:28 - 000000000 ____D C:\Program Files (x86)\Adobe
  274. 2017-08-10 22:25 - 2017-08-10 22:25 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
  275. 2017-08-10 22:25 - 2017-08-10 22:25 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
  276. 2017-08-10 22:25 - 2017-08-10 22:25 - 000004424 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
  277. 2017-08-10 22:24 - 2017-08-12 20:35 - 000000000 ____D C:\Users\Damian\AppData\Local\Adobe
  278. 2017-08-10 22:24 - 2017-08-10 22:25 - 000000000 ____D C:\Windows\SysWOW64\Macromed
  279. 2017-08-10 22:24 - 2017-08-10 22:24 - 000000000 ____D C:\Windows\system32\Macromed
  280. 2017-08-10 22:19 - 2017-08-10 22:19 - 000103424 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
  281. 2017-08-10 22:19 - 2017-08-10 22:19 - 000096256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
  282. 2017-08-10 22:17 - 2017-08-10 22:17 - 000000000 ____D C:\Users\Damian\AppData\Roaming\ATI
  283. 2017-08-10 22:17 - 2017-08-10 22:17 - 000000000 ____D C:\Users\Damian\AppData\Local\ATI
  284. 2017-08-10 22:17 - 2017-08-10 22:17 - 000000000 ____D C:\ProgramData\ATI
  285. 2017-08-10 22:16 - 2017-08-10 22:16 - 000000000 _____ C:\Windows\ativpsrm.bin
  286. 2017-08-10 22:14 - 2017-08-10 22:14 - 000000000 ____D C:\Users\Damian\.QtWebEngineProcess
  287. 2017-08-10 22:14 - 2017-08-10 22:14 - 000000000 ____D C:\Users\Damian\.Plays.tv
  288. 2017-08-10 22:11 - 2017-08-10 22:11 - 000000000 ____D C:\Users\Damian\AppData\Roaming\library_dir
  289. 2017-08-10 22:09 - 2017-08-10 22:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
  290. 2017-08-10 22:08 - 2017-08-10 22:08 - 000000000 ____D C:\Program Files (x86)\AMD
  291. 2017-08-10 22:07 - 2017-08-10 22:07 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
  292. 2017-08-10 22:06 - 2017-08-10 22:13 - 000000000 ____D C:\ProgramData\Package Cache
  293. 2017-08-10 22:06 - 2017-08-10 22:05 - 047785472 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
  294. 2017-08-10 22:06 - 2017-08-10 22:05 - 039714816 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
  295. 2017-08-10 22:06 - 2017-08-10 22:05 - 030752256 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
  296. 2017-08-10 22:06 - 2017-08-10 22:05 - 027535872 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
  297. 2017-08-10 22:06 - 2017-08-10 22:05 - 025299968 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
  298. 2017-08-10 22:06 - 2017-08-10 22:05 - 022318592 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
  299. 2017-08-10 22:06 - 2017-08-10 22:05 - 021622272 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
  300. 2017-08-10 22:06 - 2017-08-10 22:05 - 015716864 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
  301. 2017-08-10 22:06 - 2017-08-10 22:05 - 014302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
  302. 2017-08-10 22:06 - 2017-08-10 22:05 - 011948704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
  303. 2017-08-10 22:06 - 2017-08-10 22:05 - 010094152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
  304. 2017-08-10 22:06 - 2017-08-10 22:05 - 008893160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
  305. 2017-08-10 22:06 - 2017-08-10 22:05 - 008779872 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
  306. 2017-08-10 22:06 - 2017-08-10 22:05 - 007929616 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
  307. 2017-08-10 22:06 - 2017-08-10 22:05 - 007408936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
  308. 2017-08-10 22:06 - 2017-08-10 22:05 - 006477312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
  309. 2017-08-10 22:06 - 2017-08-10 22:05 - 005068288 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
  310. 2017-08-10 22:06 - 2017-08-10 22:05 - 003471376 _____ C:\Windows\SysWOW64\atiumdva.cap
  311. 2017-08-10 22:06 - 2017-08-10 22:05 - 003437632 _____ C:\Windows\system32\atiumd6a.cap
  312. 2017-08-10 22:06 - 2017-08-10 22:05 - 001445224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
  313. 2017-08-10 22:06 - 2017-08-10 22:05 - 001247744 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
  314. 2017-08-10 22:06 - 2017-08-10 22:05 - 001193904 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
  315. 2017-08-10 22:06 - 2017-08-10 22:05 - 001187342 _____ C:\Windows\system32\amdocl_as64.exe
  316. 2017-08-10 22:06 - 2017-08-10 22:05 - 001061902 _____ C:\Windows\system32\amdocl_ld64.exe
  317. 2017-08-10 22:06 - 2017-08-10 22:05 - 000995342 _____ C:\Windows\SysWOW64\amdocl_as32.exe
  318. 2017-08-10 22:06 - 2017-08-10 22:05 - 000926720 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
  319. 2017-08-10 22:06 - 2017-08-10 22:05 - 000926720 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
  320. 2017-08-10 22:06 - 2017-08-10 22:05 - 000865792 _____ (AMD) C:\Windows\system32\coinst_15.20.dll
  321. 2017-08-10 22:06 - 2017-08-10 22:05 - 000833798 _____ C:\Windows\system32\amdicdxx.dat
  322. 2017-08-10 22:06 - 2017-08-10 22:05 - 000798734 _____ C:\Windows\SysWOW64\amdocl_ld32.exe
  323. 2017-08-10 22:06 - 2017-08-10 22:05 - 000737410 _____ C:\Windows\system32\atiicdxx.dat
  324. 2017-08-10 22:06 - 2017-08-10 22:05 - 000672768 _____ (AMD) C:\Windows\system32\atieclxx.exe
  325. 2017-08-10 22:06 - 2017-08-10 22:05 - 000665088 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
  326. 2017-08-10 22:06 - 2017-08-10 22:05 - 000660912 _____ C:\Windows\SysWOW64\atiapfxx.blb
  327. 2017-08-10 22:06 - 2017-08-10 22:05 - 000660912 _____ C:\Windows\system32\atiapfxx.blb
  328. 2017-08-10 22:06 - 2017-08-10 22:05 - 000442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
  329. 2017-08-10 22:06 - 2017-08-10 22:05 - 000367104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
  330. 2017-08-10 22:06 - 2017-08-10 22:05 - 000332800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
  331. 2017-08-10 22:06 - 2017-08-10 22:05 - 000322868 _____ C:\Windows\system32\ativvaxy_vi.dat
  332. 2017-08-10 22:06 - 2017-08-10 22:05 - 000321200 _____ C:\Windows\system32\ativvaxy_vi_nd.dat
  333. 2017-08-10 22:06 - 2017-08-10 22:05 - 000297672 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
  334. 2017-08-10 22:06 - 2017-08-10 22:05 - 000255808 _____ C:\Windows\system32\ativvaxy_cz_nd.dat
  335. 2017-08-10 22:06 - 2017-08-10 22:05 - 000250884 _____ C:\Windows\system32\ativvaxy_FJ.dat
  336. 2017-08-10 22:06 - 2017-08-10 22:05 - 000249088 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat
  337. 2017-08-10 22:06 - 2017-08-10 22:05 - 000246784 _____ (AMD) C:\Windows\system32\atiesrxx.exe
  338. 2017-08-10 22:06 - 2017-08-10 22:05 - 000235008 _____ C:\Windows\system32\clinfo.exe
  339. 2017-08-10 22:06 - 2017-08-10 22:05 - 000234420 _____ C:\Windows\system32\ativvaxy_cik.dat
  340. 2017-08-10 22:06 - 2017-08-10 22:05 - 000232752 _____ C:\Windows\system32\ativvaxy_cik_nd.dat
  341. 2017-08-10 22:06 - 2017-08-10 22:05 - 000204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
  342. 2017-08-10 22:06 - 2017-08-10 22:05 - 000204952 _____ C:\Windows\system32\ativvsvl.dat
  343. 2017-08-10 22:06 - 2017-08-10 22:05 - 000204800 _____ C:\Windows\system32\amdgfxinfo64.dll
  344. 2017-08-10 22:06 - 2017-08-10 22:05 - 000190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
  345. 2017-08-10 22:06 - 2017-08-10 22:05 - 000189952 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
  346. 2017-08-10 22:06 - 2017-08-10 22:05 - 000169152 _____ C:\Windows\system32\ativce03.dat
  347. 2017-08-10 22:06 - 2017-08-10 22:05 - 000167456 _____ C:\Windows\system32\amde31a.dat
  348. 2017-08-10 22:06 - 2017-08-10 22:05 - 000160256 _____ C:\Windows\system32\atieah64.exe
  349. 2017-08-10 22:06 - 2017-08-10 22:05 - 000157144 _____ C:\Windows\SysWOW64\ativvsva.dat
  350. 2017-08-10 22:06 - 2017-08-10 22:05 - 000157144 _____ C:\Windows\system32\ativvsva.dat
  351. 2017-08-10 22:06 - 2017-08-10 22:05 - 000156672 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
  352. 2017-08-10 22:06 - 2017-08-10 22:05 - 000152056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
  353. 2017-08-10 22:06 - 2017-08-10 22:05 - 000143872 _____ C:\Windows\SysWOW64\atieah32.exe
  354. 2017-08-10 22:06 - 2017-08-10 22:05 - 000141824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
  355. 2017-08-10 22:06 - 2017-08-10 22:05 - 000133016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
  356. 2017-08-10 22:06 - 2017-08-10 22:05 - 000127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
  357. 2017-08-10 22:06 - 2017-08-10 22:05 - 000120144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
  358. 2017-08-10 22:06 - 2017-08-10 22:05 - 000113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
  359. 2017-08-10 22:06 - 2017-08-10 22:05 - 000102912 _____ C:\Windows\system32\hsa-thunk64.dll
  360. 2017-08-10 22:06 - 2017-08-10 22:05 - 000102616 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
  361. 2017-08-10 22:06 - 2017-08-10 22:05 - 000102400 _____ C:\Windows\SysWOW64\hsa-thunk.dll
  362. 2017-08-10 22:06 - 2017-08-10 22:05 - 000100816 _____ C:\Windows\system32\ativce02.dat
  363. 2017-08-10 22:06 - 2017-08-10 22:05 - 000093184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
  364. 2017-08-10 22:06 - 2017-08-10 22:05 - 000086528 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
  365. 2017-08-10 22:06 - 2017-08-10 22:05 - 000078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
  366. 2017-08-10 22:06 - 2017-08-10 22:05 - 000078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
  367. 2017-08-10 22:06 - 2017-08-10 22:05 - 000075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
  368. 2017-08-10 22:06 - 2017-08-10 22:05 - 000071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
  369. 2017-08-10 22:06 - 2017-08-10 22:05 - 000071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
  370. 2017-08-10 22:06 - 2017-08-10 22:05 - 000069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
  371. 2017-08-10 22:06 - 2017-08-10 22:05 - 000069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
  372. 2017-08-10 22:06 - 2017-08-10 22:05 - 000065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
  373. 2017-08-10 22:06 - 2017-08-10 22:05 - 000062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
  374. 2017-08-10 22:06 - 2017-08-10 22:05 - 000059392 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
  375. 2017-08-10 22:06 - 2017-08-10 22:05 - 000055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
  376. 2017-08-10 22:06 - 2017-08-10 22:05 - 000052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
  377. 2017-08-10 22:06 - 2017-08-10 22:05 - 000051200 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
  378. 2017-08-10 22:06 - 2017-08-10 22:05 - 000050688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
  379. 2017-08-10 22:06 - 2017-08-10 22:05 - 000049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
  380. 2017-08-10 22:06 - 2017-08-10 22:05 - 000043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
  381. 2017-08-10 22:06 - 2017-08-10 22:05 - 000039424 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
  382. 2017-08-10 22:06 - 2017-08-10 22:05 - 000029696 _____ (AMD) C:\Windows\system32\atimuixx.dll
  383. 2017-08-10 22:06 - 2017-08-10 22:05 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\detoured.dll
  384. 2017-08-10 22:06 - 2017-08-10 22:05 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\detoured.dll
  385. 2017-08-10 22:05 - 2017-08-10 22:08 - 000000000 ____D C:\Program Files\AMD
  386. 2017-08-10 22:04 - 2017-08-11 00:03 - 000068328 _____ C:\Users\Damian\AppData\Local\GDIPFONTCACHEV1.DAT
  387. 2017-08-10 22:04 - 2017-08-10 22:04 - 000027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
  388. 2017-08-10 22:04 - 2017-08-10 22:04 - 000000000 ____D C:\Windows\IObit
  389. 2017-08-10 22:04 - 2017-08-10 22:04 - 000000000 ____D C:\Users\Damian\AppData\Roaming\IObit
  390. 2017-08-10 22:04 - 2017-08-10 22:04 - 000000000 ____D C:\Users\Damian\AppData\LocalLow\IObit
  391. 2017-08-10 22:04 - 2017-08-10 22:04 - 000000000 ____D C:\ProgramData\IObit
  392. 2017-08-10 21:56 - 2017-08-14 09:39 - 000000000 ____D C:\Users\Damian\AppData\LocalLow\Mozilla
  393. 2017-08-10 21:56 - 2017-08-12 23:47 - 000000000 ____D C:\Users\Damian\AppData\Roaming\Mozilla
  394. 2017-08-10 21:56 - 2017-08-12 23:47 - 000000000 ____D C:\Users\Damian\AppData\Local\Mozilla
  395. 2017-08-10 21:52 - 2017-08-12 20:35 - 000000000 ____D C:\Users\Damian\AppData\Roaming\Adobe
  396. 2017-08-10 21:52 - 2017-08-10 21:52 - 000001421 _____ C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
  397. 2017-08-10 21:51 - 2017-08-10 23:44 - 000000000 ____D C:\Users\Damian
  398. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000020 ___SH C:\Users\Damian\ntuser.ini
  399. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Public\Documents\Moje wideo
  400. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Public\Documents\Moje obrazy
  401. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Public\Documents\Moja muzyka
  402. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default\Ustawienia lokalne
  403. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default\Szablony
  404. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default\Moje dokumenty
  405. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default\Menu Start
  406. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default\Documents\Moje wideo
  407. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default\Documents\Moje obrazy
  408. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default\Documents\Moja muzyka
  409. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default\Dane aplikacji
  410. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
  411. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historia
  412. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji
  413. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default User\Documents\Moje wideo
  414. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default User\Documents\Moje obrazy
  415. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default User\Documents\Moja muzyka
  416. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
  417. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historia
  418. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Dane aplikacji
  419. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Damian\Ustawienia lokalne
  420. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Damian\Szablony
  421. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Damian\Moje dokumenty
  422. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Damian\Menu Start
  423. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Damian\Documents\Moje wideo
  424. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Damian\Documents\Moje obrazy
  425. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Damian\Documents\Moja muzyka
  426. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Damian\Dane aplikacji
  427. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
  428. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Damian\AppData\Local\Historia
  429. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\Users\Damian\AppData\Local\Dane aplikacji
  430. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\ProgramData\Ulubione
  431. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\ProgramData\Szablony
  432. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\ProgramData\Pulpit
  433. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
  434. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\ProgramData\Menu Start
  435. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\ProgramData\Dokumenty
  436. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 _SHDL C:\ProgramData\Dane aplikacji
  437. 2017-08-10 21:51 - 2017-08-10 21:51 - 000000000 ____D C:\Users\Damian\AppData\Local\VirtualStore
  438. 2017-08-10 21:51 - 2011-04-12 15:32 - 000000000 ____D C:\Users\Damian\AppData\Roaming\Media Center Programs
  439. 2017-08-10 21:47 - 2017-08-10 21:47 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
  440. 2017-08-10 21:45 - 2017-08-10 21:45 - 000000000 ____D C:\Windows\CSC
  441.  
  442. ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
  443.  
  444. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  445.  
  446. 2017-08-14 09:32 - 2009-07-14 06:45 - 000023136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  447. 2017-08-14 09:32 - 2009-07-14 06:45 - 000023136 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  448. 2017-08-14 09:23 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
  449. 2017-08-14 08:36 - 2011-04-12 15:21 - 000739786 _____ C:\Windows\system32\perfh015.dat
  450. 2017-08-14 08:36 - 2011-04-12 15:21 - 000155360 _____ C:\Windows\system32\perfc015.dat
  451. 2017-08-14 08:36 - 2009-07-14 07:13 - 001668226 _____ C:\Windows\system32\PerfStringBackup.INI
  452. 2017-08-14 08:36 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
  453. 2017-08-14 08:19 - 2015-07-23 18:31 - 000000000 ____D C:\Users\Damian\AppData\Roaming\.minecraft
  454. 2017-08-12 20:27 - 2011-04-12 15:32 - 000000000 ___RD C:\Users\Public\Recorded TV
  455. 2017-08-12 15:28 - 2016-06-28 17:30 - 000262792 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys
  456. 2017-08-12 15:28 - 2016-06-28 17:30 - 000208520 _____ (ESET) C:\Windows\system32\Drivers\epfw.sys
  457. 2017-08-12 15:28 - 2016-06-28 17:30 - 000197248 _____ (ESET) C:\Windows\system32\Drivers\ehdrv.sys
  458. 2017-08-12 15:28 - 2016-06-28 17:30 - 000084616 _____ (ESET) C:\Windows\system32\Drivers\epfwwfp.sys
  459. 2017-08-12 15:28 - 2016-06-28 17:30 - 000061568 _____ (ESET) C:\Windows\system32\Drivers\EpfwLWF.sys
  460. 2017-08-12 13:53 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
  461. 2017-08-11 17:02 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
  462. 2017-08-11 08:11 - 2009-07-14 06:45 - 000302976 _____ C:\Windows\system32\FNTCACHE.DAT
  463. 2017-08-10 23:43 - 2009-07-14 07:09 - 000000000 ____D C:\Windows\System32\Tasks\WPD
  464. 2017-08-10 23:18 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
  465. 2017-08-10 22:43 - 2009-07-14 07:32 - 000028672 _____ C:\Windows\system32\config\BCD-Template
  466. 2017-08-10 22:22 - 2005-03-28 10:30 - 000008192 _____ () C:\Windows\system32\Drivers\ASACPI.sys
  467. 2017-08-10 21:51 - 2016-12-23 00:57 - 000000000 ____D C:\Windows\Panther
  468. 2017-08-10 21:51 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Windows NT
  469.  
  470. ==================== Pliki w katalogu głównym wybranych folderów =======
  471.  
  472. 2017-08-11 12:46 - 2017-08-11 12:46 - 000000057 _____ () C:\ProgramData\Ament.ini
  473.  
  474. ==================== Bamital & volsnap ======================
  475.  
  476. (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
  477.  
  478. C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
  479. C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
  480. C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo
  481. C:\Windows\explorer.exe => Plik podpisany cyfrowo
  482. C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
  483. C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
  484. C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
  485. C:\Windows\system32\services.exe => Plik podpisany cyfrowo
  486. C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
  487. C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo
  488. C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
  489. C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
  490. C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
  491. C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
  492. C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
  493. C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
  494.  
  495. LastRegBack: 2017-08-11 08:51
  496.  
  497. ==================== Koniec FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!