Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 22-04-2017 01 Uruchomiony przez mateusz (administrator) MATEUSZ-MATEUSZ (22-04-2017 23:16:24) Uruchomiony z C:\Users\mateusz\Downloads Załadowane profile: mateusz (Dostępne profile: mateusz) Platform: Windows 7 Ultimate Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: FF) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (MSI) C:\Windows\SysWOW64\muachost.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe (cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe (Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe (Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\MSI_LED.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe (Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NahimicMonitor.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (A-Volute) C:\Program Files\Nahimic\Nahimic VR\Foundation\NahimicVRSvc32.exe (A-Volute) C:\Program Files\Nahimic\Nahimic VR\Foundation\x64\NahimicVRSvc64.exe (Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe (Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Nahimic) C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe (Micro-Star INT'L CO., LTD.) C:\MSI\MSI Gaming Lan Manager\MSI_Gaming_Lan_Manager.exe () C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2Svc64.exe () C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2Svc32.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe () C:\Program Files (x86)\Origin\QtWebEngineProcess.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamuseragent.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Valve Corporation) F:\steam\Steam.exe (Valve Corporation) F:\steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) F:\steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) F:\steam\bin\cef\cef.win7\steamwebhelper.exe (TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Farbar) C:\Users\mateusz\Downloads\FRST64(1).exe ==================== Rejestr (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9198592 2017-02-10] (Realtek Semiconductor) HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Nahimic2UILauncher] => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [725176 2017-03-20] (Nahimic) HKLM\...\Run: [NahimicVRSvc32] => C:\Program Files\Nahimic\Nahimic VR\Foundation\NahimicVRSvc32.exe [985784 2017-01-11] (A-Volute) HKLM\...\Run: [NahimicVRSvc64] => C:\Program Files\Nahimic\Nahimic VR\Foundation\x64\NahimicVRSvc64.exe [1142456 2017-01-11] (A-Volute) HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes) HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKLM-x32\...\Run: [MSI Gaming Lan Manager] => C:\MSI\MSI Gaming Lan Manager\MSI_Gaming_Lan_Manager.exe [4471736 2017-03-07] (Micro-Star INT'L CO., LTD.) HKU\S-1-5-21-3466041570-3147851122-1273507371-1001\...\Run: [Steam] => F:\steam\steam.exe [3019552 2017-03-23] (Valve Corporation) HKU\S-1-5-21-3466041570-3147851122-1273507371-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3046264 2017-04-05] (Electronic Arts) HKU\S-1-5-21-3466041570-3147851122-1273507371-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27545048 2017-03-14] (Skype Technologies S.A.) HKU\S-1-5-21-3466041570-3147851122-1273507371-1001\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe HKU\S-1-5-21-3466041570-3147851122-1273507371-1001\...\MountPoints2: {5baf6857-0bce-11e7-bfa8-4ccc6abd042e} - H:\Install.exe ShellExecuteHooks: Brak nazwy - {35C42D40-2348-11E7-B85A-64006A5CFC23} - C:\Users\mateusz\AppData\Roaming\Cehichrocerch\Ghailesewaent.dll -> Brak pliku ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku Startup: C:\Users\mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk [2017-04-10] ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2010.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 208.67.222.222 217.12.218.60 Tcpip\Parameters: [NameServer] 8.8.8.8 Tcpip\..\Interfaces\{30451EB0-9498-420F-B3B9-EEC5E4B6E782}: [DhcpNameServer] 208.67.222.222 217.12.218.60 Internet Explorer: ================== HKU\S-1-5-21-3466041570-3147851122-1273507371-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp SearchScopes: HKLM -> DefaultScope - brak wartości SearchScopes: HKU\S-1-5-21-3466041570-3147851122-1273507371-1001 -> {3461B49C-F1F6-479B-BDA6-610E768D8F78} URL = SearchScopes: HKU\S-1-5-21-3466041570-3147851122-1273507371-1001 -> {ielnksrch} URL = BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: g52mj76t.default FF ProfilePath: C:\Users\mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\g52mj76t.default [2017-04-22] FF user.js: detected! => C:\Users\mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\g52mj76t.default\user.js [2017-04-17] FF NewTab: Mozilla\Firefox\Profiles\g52mj76t.default -> about:newtab FF SelectedSearchEngine: Mozilla\Firefox\Profiles\g52mj76t.default -> FF Homepage: Mozilla\Firefox\Profiles\g52mj76t.default -> about:home FF Keyword.URL: Mozilla\Firefox\Profiles\g52mj76t.default -> hxxp://www-searching.com/search.aspx?site=shdefault1&prd=smw&pid=s&shr=d&q={searchTerms}&s=H4Lzbcnbl1AU,91a0034a-7354-4ca9-b6e0-56e1596c18df, FF Extension: (Video DownloadHelper) - C:\Users\mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\g52mj76t.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-03-23] FF Extension: (Windows Media Player WMEncProfile2 Class) - C:\Users\mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\g52mj76t.default\Extensions\{BAA5B37A-F083-2AB7-00C9-CD42AA95CF29} [2017-04-21] [Brak podpisu cyfrowego] FF Extension: (Adblock Plus) - C:\Users\mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\g52mj76t.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-04-01] FF Extension: (Disable TLS Certificate Transparency) - C:\Users\mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\g52mj76t.default\features\{41e12547-5e81-47bc-ab3f-008f638b2d9c}\disable-cert-transparency@mozilla.org.xpi [2017-04-18] FF Extension: (Disable Prefetch) - C:\Users\mateusz\AppData\Roaming\Mozilla\Firefox\Profiles\g52mj76t.default\features\{41e12547-5e81-47bc-ab3f-008f638b2d9c}\disable-prefetch@mozilla.org.xpi [2017-04-18] FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-03-17] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-03-17] (NVIDIA Corporation) ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [Brak podpisu cyfrowego] R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [598872 2016-11-11] (cFos Software GmbH) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-06] (Disc Soft Ltd) S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2017-03-23] (Macrovision Europe Ltd.) [Brak podpisu cyfrowego] R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [47056 2017-02-17] (Micro-Star Int'l Co., Ltd.) R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2019792 2016-10-13] (Micro-Star INT'L CO., LTD.) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-26] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-10-20] (Intel Corporation) S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2017-03-18] () [Brak podpisu cyfrowego] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes) S2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [68024 2017-02-16] (Micro-Star INT'L CO., LTD.) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-02-23] (NVIDIA Corporation) R3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-02-23] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [464440 2017-03-17] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064 2017-02-23] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2146704 2017-04-05] (Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3115928 2017-04-05] (Electronic Arts) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-01-22] (Microsoft Corporation) R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 3ware10k; C:\Windows\system32\drivers\3ware10k.sys [106760 2013-02-15] (LSI) S3 amdhub31; C:\Windows\system32\drivers\amdhub31.sys [141528 2016-02-26] (Advanced Micro Devices, Inc.) S3 amdide64; C:\Windows\system32\drivers\amdide64.sys [11944 2012-12-03] (Advanced Micro Devices Inc.) S3 amdxhc31; C:\Windows\system32\drivers\amdxhc31.sys [440536 2016-02-26] (Advanced Micro Devices, Inc.) S3 asstor64; C:\Windows\system32\drivers\asstor64.sys [84304 2015-10-01] (Asmedia Technology) S3 ausb3hub; C:\Windows\system32\drivers\ausb3hub.sys [404480 2016-01-18] (Intel Corporation) S3 ausb3xhc; C:\Windows\system32\drivers\ausb3xhc.sys [817664 2016-01-18] (Intel Corporation) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-03-18] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-03-18] (Disc Soft Ltd) R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [511952 2016-07-26] (Intel Corporation) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-03-22] () R1 FACEIT; C:\Windows\System32\Drivers\FACEIT.sys [5143032 2017-03-31] () R3 I2cHkBurn; C:\Windows\System32\drivers\I2cHkBurn.sys [41760 2015-07-27] (FINTEK Corp.) S3 IaNVMe; C:\Windows\system32\drivers\IaNVMe.sys [101872 2015-07-07] (Intel Corporation) R0 IaNVMeF; C:\Windows\System32\drivers\IaNVMeF.sys [27120 2015-07-07] (Intel Corporation) S3 iaStorB; C:\Windows\system32\drivers\iaStorB.sys [557016 2015-05-21] (Intel Corporation) R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [31192 2015-05-21] (Intel Corporation) S3 iaStorS; C:\Windows\system32\drivers\iaStorS.sys [653272 2015-06-02] (Intel Corporation) S3 LSI_SAS3; C:\Windows\system32\drivers\lsi_sas3.sys [99464 2015-07-22] (Avago Technologies) R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [186304 2017-04-22] (Malwarebytes) R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [111544 2017-04-22] (Malwarebytes) R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-04-22] (Malwarebytes) R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [251832 2017-04-22] (Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [82720 2017-04-22] (Malwarebytes) S3 megasas2; C:\Windows\system32\drivers\megasas2.sys [113800 2015-11-24] (Avago Technologies) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [199736 2016-09-22] (Intel Corporation) S3 MTsensor; C:\Windows\system32\drivers\ASACPI.sys [15416 2009-10-10] () S3 mv61xx; C:\Windows\system32\drivers\mv61xx.sys [183144 2012-05-23] (Marvell Semiconductor, Inc.) S3 NTIOLib_MBAPI; C:\Program Files (x86)\MSI\Gaming APP\Lib\NTIOLib_X64.sys [14288 2017-03-08] (MSI) S3 nvme; C:\Windows\system32\drivers\nvme.sys [70208 2015-05-28] (Samsung Electronic Co., Ltd) R0 nvmeF; C:\Windows\System32\drivers\nvmeF.sys [30776 2015-12-16] (Samsung Electronics Co., Ltd) S3 nvrd64; C:\Windows\system32\drivers\nvrd64.sys [160288 2007-08-09] (NVIDIA Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2017-02-23] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2017-02-23] (NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [59448 2017-02-23] (NVIDIA Corporation) S3 rusb3hub; C:\Windows\system32\drivers\rusb3hub.sys [114568 2012-08-27] (Renesas Electronics Corporation) S3 rusb3xhc; C:\Windows\system32\drivers\rusb3xhc.sys [230280 2012-08-27] (Renesas Electronics Corporation) S3 SI3112r; C:\Windows\system32\drivers\SI3112r.sys [162144 2010-02-03] (Silicon Image, Inc) R0 SiFilter; C:\Windows\System32\drivers\SiWinAcc.sys [22056 2010-02-03] (Silicon Image, Inc) S3 viamrx64; C:\Windows\system32\drivers\viamrx64.sys [162928 2011-03-15] (VIA Technologies Inc.,Ltd) S3 videX64; C:\Windows\system32\drivers\videX64.sys [15072 2010-07-28] (VIA Technologies, Inc.) S3 VSTXWDC; C:\Windows\system32\drivers\vstxwdc.sys [167056 2012-06-07] (VIA Corporation) S3 VUSB3HUB; C:\Windows\system32\drivers\ViaHub3.sys [210944 2012-05-30] (VIA Technologies, Inc.) R2 WinDivert1.2; C:\Windows\system32\drivers\WinDivert64.sys [37552 2017-04-21] (Basil) R0 xfiltx64; C:\Windows\System32\drivers\xfiltx64.sys [26848 2010-07-28] (VIA Technologies, Inc.) S3 xhcdrv; C:\Windows\system32\drivers\xhcdrv.sys [261120 2012-05-30] (VIA Technologies, Inc.) R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2017-04-21] (Zemana Ltd.) R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2017-04-21] (Zemana Ltd.) S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-04-22 23:15 - 2017-04-22 23:15 - 02425344 _____ (Farbar) C:\Users\mateusz\Downloads\FRST64(1).exe 2017-04-22 23:15 - 2017-04-22 23:15 - 01767424 _____ (Farbar) C:\Users\mateusz\Downloads\FRST(1).exe 2017-04-21 20:20 - 2017-04-21 20:21 - 01766912 _____ (Farbar) C:\Users\mateusz\Downloads\FRST.exe 2017-04-21 20:11 - 2017-04-22 23:15 - 00106653 _____ C:\Windows\ZAM.krnl.trace 2017-04-21 20:11 - 2017-04-22 23:15 - 00082109 _____ C:\Windows\ZAM_Guard.krnl.trace 2017-04-21 20:11 - 2017-04-22 23:02 - 00251832 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2017-04-21 20:11 - 2017-04-22 23:02 - 00111544 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2017-04-21 20:11 - 2017-04-22 23:02 - 00082720 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2017-04-21 20:11 - 2017-04-22 23:02 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2017-04-21 20:11 - 2017-04-22 06:27 - 00186304 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys 2017-04-21 20:11 - 2017-04-21 20:11 - 00203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys 2017-04-21 20:11 - 2017-04-21 20:11 - 00203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zam64.sys 2017-04-21 20:11 - 2017-04-21 20:11 - 00001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2017-04-21 20:11 - 2017-04-21 20:11 - 00001152 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk 2017-04-21 20:11 - 2017-04-21 20:11 - 00000000 ____D C:\Users\mateusz\AppData\Local\Zemana 2017-04-21 20:11 - 2017-04-21 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware 2017-04-21 20:11 - 2017-04-21 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2017-04-21 20:11 - 2017-04-21 20:11 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-04-21 20:11 - 2017-04-21 20:11 - 00000000 ____D C:\Program Files\Malwarebytes 2017-04-21 20:11 - 2017-04-21 20:11 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware 2017-04-21 20:11 - 2017-03-22 11:02 - 00077440 _____ C:\Windows\system32\Drivers\mbae64.sys 2017-04-21 20:10 - 2017-04-21 20:10 - 60107896 _____ (Malwarebytes ) C:\Users\mateusz\Downloads\mb3-setup-consumer-3.0.6.1469-10103.exe 2017-04-21 20:10 - 2017-04-21 20:10 - 05774688 _____ (Zemana Ltd. ) C:\Users\mateusz\Downloads\Zemana.AntiMalware.Setup.exe 2017-04-21 20:04 - 2017-04-21 20:04 - 00037552 _____ (Basil) C:\Windows\system32\Drivers\WinDivert64.sys 2017-04-21 20:03 - 2017-04-21 20:16 - 00000000 ____D C:\Users\mateusz\AppData\Roaming\Cehichrocerch 2017-04-21 20:03 - 2017-04-21 20:14 - 00000000 ____D C:\Users\mateusz\AppData\Local\Owxics 2017-04-21 20:03 - 2017-04-21 20:03 - 00006022 _____ C:\Windows\System32\Tasks\Perkettimise Collector 2017-04-21 20:03 - 2017-04-21 20:03 - 00000000 ____D C:\Users\mateusz\AppData\Local\Numaspbsh 2017-04-21 20:03 - 2017-04-21 20:03 - 00000000 ____D C:\Program Files (x86)\Kjoght_ 2017-04-21 20:03 - 2017-04-21 20:03 - 00000000 ____D C:\Program Files (x86)\Kjoght 2017-04-21 20:02 - 2017-04-21 20:02 - 00000000 ____H C:\Windows\system32\BIT1B2F.tmp 2017-04-21 20:00 - 2017-04-22 23:08 - 00000000 ____D C:\Program Files (x86)\KMSPico 10.2.1 Final 2017-04-21 20:00 - 2017-04-21 20:00 - 03155968 _____ C:\Users\mateusz\Downloads\Windows Loader 3.1.iso 2017-04-19 02:00 - 2017-04-19 02:00 - 04039927 _____ C:\Users\mateusz\Desktop\Dubbing Po Naszymu Enimen Początki Kariery... - Dubbing Po N.mp4 2017-04-18 04:01 - 2017-04-18 04:01 - 00023352 _____ C:\Users\mateusz\Downloads\Online today.zip 2017-04-18 04:01 - 2017-04-18 04:01 - 00000000 ____D C:\Users\mateusz\Downloads\Online today 2017-04-18 04:00 - 2017-04-18 04:00 - 00008208 _____ C:\Users\mateusz\Downloads\kto_był_dzisiaj_online_1_2.zip 2017-04-18 04:00 - 2017-04-18 04:00 - 00000000 ____D C:\Users\mateusz\Downloads\kto_był_dzisiaj_online_1_2 2017-04-18 03:47 - 2017-04-18 03:48 - 00000000 ____D C:\Users\mateusz\Desktop\Nowy folder 2017-04-18 03:32 - 2017-04-18 03:32 - 00036015 _____ C:\Users\mateusz\Downloads\Status update 1.1.zip 2017-04-18 03:32 - 2017-04-18 03:32 - 00000000 ____D C:\Users\mateusz\Downloads\Status update 1.1 2017-04-18 03:25 - 2017-04-18 03:25 - 00000000 ____D C:\Users\mateusz\Downloads\Guest_warn_upload_Fyeem_dla_MyBBoard.pl 2017-04-18 03:24 - 2017-04-18 03:24 - 00012603 _____ C:\Users\mateusz\Downloads\Guest_warn_upload_Fyeem_dla_MyBBoard.pl.zip 2017-04-18 03:20 - 2017-04-18 03:20 - 01384677 _____ C:\Users\mateusz\Downloads\Servers board 3.2.zip 2017-04-18 03:20 - 2017-04-18 03:20 - 00000000 ____D C:\Users\mateusz\Downloads\Servers board 3.2 2017-04-18 03:05 - 2017-04-18 03:05 - 00396515 _____ C:\Users\mateusz\Downloads\changuondyu_-polska_wersja_3_6_0.rar 2017-04-18 03:05 - 2017-04-18 03:05 - 00000000 ____D C:\Users\mateusz\Downloads\changuondyu_-polska_wersja_3_6_0 2017-04-18 02:59 - 2017-04-18 02:59 - 00000000 ____D C:\Users\mateusz\Downloads\MyBB-TopStats-master 2017-04-18 02:58 - 2017-04-18 02:58 - 00030488 _____ C:\Users\mateusz\Downloads\MyBB-TopStats-master.zip 2017-04-18 02:36 - 2017-04-18 02:36 - 00000000 ____D C:\Users\mateusz\Downloads\View Unread Posts_#15_stable 2017-04-18 02:35 - 2017-04-18 02:35 - 00042685 _____ C:\Users\mateusz\Downloads\View Unread Posts_#15_stable.zip 2017-04-17 09:17 - 2017-04-17 09:17 - 00848331 _____ C:\Users\mateusz\Downloads\JTS3ServerMod_6.4.0.zip 2017-04-17 09:17 - 2017-04-17 09:17 - 00000000 ____D C:\Users\mateusz\Downloads\JTS3ServerMod_6.4.0 2017-04-15 21:48 - 2017-04-15 21:55 - 836590920 _____ C:\Users\mateusz\Desktop\Iluzja - wideo w cda.pl.mp4 2017-04-10 23:10 - 2017-03-23 21:34 - 00015581 _____ C:\Users\mateusz\Desktop\config.php 2017-04-10 23:09 - 2017-04-10 23:10 - 00000000 ____D C:\Users\mateusz\Downloads\iBot-WEBPANEL-1.0.0 2017-04-10 23:09 - 2017-04-10 23:09 - 00815784 _____ C:\Users\mateusz\Downloads\iBot-WEBPANEL-1.0.0.zip 2017-04-10 22:40 - 2017-04-10 22:40 - 00000000 ___HD C:\$AV_ASW 2017-04-10 22:39 - 2017-04-12 23:00 - 00000000 ____D C:\Program Files\Common Files\AV 2017-04-10 22:39 - 2017-04-10 22:39 - 00002269 _____ C:\Users\Public\Desktop\Samsung Printer Diagnostics.lnk 2017-04-10 22:39 - 2017-04-10 22:39 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers 2017-04-10 22:38 - 2017-04-12 23:00 - 00000000 ____D C:\ProgramData\AVAST Software 2017-04-10 22:38 - 2017-04-10 22:40 - 00000000 ____D C:\Program Files (x86)\SamsungPrinterLiveUpdate 2017-04-10 22:38 - 2017-04-10 22:39 - 00000000 ____D C:\Program Files (x86)\SamsungPrinterLiveUpdateInstaller 2017-04-10 22:38 - 2017-04-10 22:39 - 00000000 ____D C:\Program Files (x86)\Samsung 2017-04-10 22:38 - 2017-04-10 22:38 - 46258496 _____ C:\Users\mateusz\Downloads\ML-2160_Series_WIN_SPL_V3.13.01.00.32.exe 2017-04-10 22:38 - 2017-04-10 22:38 - 00000000 ____D C:\ProgramData\Samsung 2017-04-10 22:38 - 2015-03-18 17:13 - 00226424 _____ C:\Windows\system32\SBuySupplies.exe 2017-04-10 22:38 - 2015-03-18 17:13 - 00158040 _____ (SS) C:\Windows\system32\ssj1mci.exe 2017-04-10 22:38 - 2015-03-18 17:13 - 00000273 _____ C:\Windows\system32\eed_sl.exe.config 2017-04-10 22:38 - 2015-03-18 17:12 - 03190784 _____ C:\Windows\system32\eed_ec.dll 2017-04-10 22:38 - 2015-03-18 17:12 - 00685360 _____ (Samsung Electronics) C:\Windows\system32\eed_sl.exe 2017-04-10 22:38 - 2015-03-18 17:12 - 00089600 _____ (SS) C:\Windows\system32\ssj1mci.dll 2017-04-10 22:38 - 2015-03-18 17:12 - 00022528 _____ () C:\Windows\system32\ssj1mlm.dll 2017-04-10 22:38 - 2014-03-18 14:01 - 00094208 ____N C:\Windows\SysWOW64\ssdevm.dll 2017-04-10 22:38 - 2014-03-18 14:01 - 00091136 ____N C:\Windows\system32\ssdevm64.dll 2017-04-10 22:38 - 2012-09-20 12:24 - 00158425 ____N C:\Windows\ssj1mLTR.prn 2017-04-10 22:38 - 2012-09-20 12:23 - 00147249 ____N C:\Windows\ssj1mA4.prn 2017-04-10 22:38 - 2011-02-08 09:01 - 00011576 ____N (Samsung Electronics) C:\Windows\system32\Drivers\SSPORT.SYS 2017-04-10 22:36 - 2017-04-13 13:02 - 00000000 ____D C:\Users\mateusz\AppData\Local\IIIQF 2017-04-10 22:34 - 2017-04-10 22:34 - 00113227 ____T C:\Users\mateusz\Desktop\ghmgh.prn 2017-04-10 22:33 - 2017-04-10 22:33 - 00000000 ____D C:\Users\mateusz\Documents\Notesy programu OneNote 2017-04-07 22:24 - 2017-04-07 22:27 - 00000000 ____D C:\Users\mateusz\Downloads\fXWn18jAv7czwuYG 2017-04-07 22:24 - 2017-04-07 22:24 - 02770244 _____ C:\Users\mateusz\Downloads\fXWn18jAv7czwuYG.rar 2017-04-07 03:24 - 2017-04-07 03:24 - 00000000 ____D C:\Users\mateusz\Downloads\Nowy folder 2017-04-04 14:33 - 2017-04-04 14:33 - 00000552 _____ C:\Users\mateusz\AppData\Local\TroubleshooterConfig.json 2017-04-04 14:32 - 2017-04-11 21:03 - 00000000 ____D C:\Users\mateusz\AppData\Local\Bluestacks 2017-04-04 14:32 - 2017-04-07 19:38 - 00000000 ____D C:\ProgramData\BlueStacksSetup 2017-04-04 14:31 - 2017-04-04 14:31 - 334314720 _____ (BlueStack Systems Inc.) C:\Users\mateusz\Downloads\BlueStacks2_native_553e34a1cb3a454539aca6a7b46703cd.exe 2017-04-03 19:13 - 2017-04-03 19:13 - 00000000 ____D C:\Users\mateusz\Downloads\UuytjfXMERedVNdl 2017-04-03 19:12 - 2017-04-03 19:12 - 02869220 _____ C:\Users\mateusz\Downloads\UuytjfXMERedVNdl.rar 2017-04-03 14:45 - 2017-04-03 14:45 - 00003134 _____ C:\Windows\System32\Tasks\MSIGH_Host 2017-04-03 14:45 - 2017-04-03 14:45 - 00003068 _____ C:\Windows\System32\Tasks\MSIOSDx86_Host 2017-04-03 14:45 - 2017-04-03 14:45 - 00003068 _____ C:\Windows\System32\Tasks\MSIOSDx64_Host 2017-04-03 14:45 - 2017-04-03 14:45 - 00003002 _____ C:\Windows\System32\Tasks\MSISW_Host 2017-04-03 14:45 - 2015-08-18 09:51 - 01692840 _____ (MSI) C:\Windows\SysWOW64\muachost.exe 2017-04-03 14:45 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2017-04-03 14:35 - 2017-04-03 14:35 - 07199510 _____ C:\Users\mateusz\Downloads\7A64v11.zip 2017-04-03 14:35 - 2017-04-03 14:35 - 00000000 ____D C:\Users\mateusz\Downloads\7A64v11 2017-04-03 14:28 - 2017-04-11 21:03 - 00026771 _____ C:\Windows\cFosSpeed_Setup_Log.txt 2017-04-03 14:28 - 2017-04-03 14:28 - 00000000 ____D C:\Users\mateusz\Downloads\gaming_lan_manager 2017-04-03 14:28 - 2017-04-03 14:28 - 00000000 ____D C:\Users\mateusz\AppData\Local\cFos 2017-04-03 14:28 - 2017-04-03 14:28 - 00000000 ____D C:\ProgramData\cFos 2017-04-03 14:28 - 2017-04-03 14:28 - 00000000 ____D C:\Program Files\cFosSpeed 2017-04-03 14:28 - 2016-11-11 19:50 - 01489752 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys 2017-04-03 14:28 - 2016-10-07 16:25 - 00002291 ____N C:\Windows\system32\SetupBD.din 2017-04-03 14:27 - 2017-04-03 14:28 - 06879143 _____ C:\Users\mateusz\Downloads\gaming_lan_manager.zip 2017-04-03 14:27 - 2017-04-03 14:27 - 00000000 ____D C:\Users\mateusz\Downloads\Intel_Network_skl 2017-04-03 14:27 - 2016-10-13 02:38 - 00425080 _____ (Intel Corporation) C:\Windows\system32\PROUnstl.exe 2017-04-03 14:27 - 2016-07-26 09:37 - 00511952 _____ (Intel Corporation) C:\Windows\system32\Drivers\e1d62x64.sys 2017-04-03 14:27 - 2016-04-11 01:18 - 00080848 _____ (Intel Corporation) C:\Windows\system32\e1dmsg.dll 2017-04-03 14:26 - 2017-04-03 14:27 - 162557983 _____ C:\Users\mateusz\Downloads\Intel_Network_skl.zip 2017-04-03 14:22 - 2017-04-03 14:23 - 97013920 _____ (Rivet Networks) C:\Users\mateusz\Downloads\KillerPerformanceSuite_1.2.1181_Win7_Win81_Win10_x64.exe 2017-04-03 14:18 - 2017-04-03 14:18 - 00000000 ____D C:\Users\mateusz\Downloads\Killer_network_ke2500_inf 2017-04-03 14:18 - 2017-01-03 10:25 - 00000000 ____D C:\Users\mateusz\Downloads\killer_Inf_9.0 2017-04-03 14:17 - 2017-04-03 14:18 - 73578552 _____ C:\Users\mateusz\Downloads\Killer_network_ke2500_inf.zip 2017-04-03 12:34 - 2017-04-03 12:34 - 00000000 ____D C:\Users\mateusz\AppData\LocalLow\uTorrent 2017-04-02 19:10 - 2017-04-02 19:10 - 00040037 _____ C:\Users\mateusz\Downloads\timecyc.dat 2017-04-02 19:04 - 2017-04-02 19:04 - 10889656 _____ C:\Users\mateusz\Downloads\gtasapatch.zip 2017-04-02 19:04 - 2017-04-02 19:04 - 00000000 ____D C:\Users\mateusz\Downloads\gtasapatch 2017-04-02 19:00 - 2017-04-02 19:00 - 03199373 _____ C:\Users\mateusz\Downloads\1478391126_MMGE30release.zip 2017-04-02 19:00 - 2017-04-02 19:00 - 00000000 ____D C:\Users\mateusz\Downloads\1478391126_MMGE30release 2017-04-01 05:57 - 2017-04-22 23:07 - 00000000 ____D C:\Users\mateusz\AppData\Roaming\Skype 2017-04-01 05:57 - 2017-04-01 05:57 - 00000000 ___RD C:\Program Files (x86)\Skype 2017-04-01 05:57 - 2017-04-01 05:57 - 00000000 ____D C:\Users\mateusz\Tracing 2017-04-01 05:57 - 2017-04-01 05:57 - 00000000 ____D C:\ProgramData\Skype 2017-04-01 05:57 - 2017-04-01 05:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2017-04-01 05:55 - 2017-04-01 05:55 - 01631704 _____ (Skype Technologies S.A.) C:\Users\mateusz\Downloads\SkypeSetup.exe 2017-04-01 05:45 - 2017-04-01 05:45 - 00000000 ____D C:\Users\mateusz\Downloads\GTA_SA_v1.0_US_HOODLUM_No-CD_Fixed_EXE 2017-04-01 05:44 - 2017-04-01 05:45 - 04723841 _____ C:\Users\mateusz\Downloads\GTA_SA_v1.0_US_HOODLUM_No-CD_Fixed_EXE.rar 2017-04-01 05:39 - 2017-04-01 05:39 - 00098304 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt.dll 2017-04-01 05:39 - 2017-04-01 05:39 - 00000000 ____D C:\Users\mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2017-04-01 05:38 - 2017-04-01 05:47 - 00000000 ____D C:\Users\mateusz\Documents\GTA San Andreas User Files 2017-04-01 05:38 - 2017-04-01 05:38 - 00000000 ____D C:\Users\mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer 2017-04-01 05:38 - 2017-04-01 05:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer 2017-04-01 05:31 - 2017-04-01 05:31 - 16270006 _____ C:\Users\mateusz\Downloads\sa-mp-0.3.7-install.exe 2017-04-01 05:30 - 2017-04-01 05:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2017-03-31 21:43 - 2017-04-04 00:59 - 00001036 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT Client.lnk 2017-03-31 21:43 - 2017-03-31 21:46 - 00000000 ____D C:\Program Files\FACEIT Client 2017-03-31 21:43 - 2017-03-31 21:43 - 16693736 _____ (FACEIT LTD ) C:\Users\mateusz\Downloads\FACEITInstaller_64.exe 2017-03-31 21:43 - 2017-03-31 21:43 - 05143032 _____ C:\Windows\system32\Drivers\FACEIT.sys 2017-03-31 21:42 - 2017-04-01 01:12 - 00000000 ____D C:\Users\mateusz\Downloads\t4IswBTGxY8KIf3E 2017-03-31 21:42 - 2017-03-31 21:42 - 02857636 _____ C:\Users\mateusz\Downloads\t4IswBTGxY8KIf3E.rar 2017-03-31 21:20 - 2017-03-31 21:20 - 00070052 _____ C:\Users\mateusz\Downloads\View Groups_#7_stable.zip 2017-03-31 10:46 - 2017-03-31 10:46 - 01277016 _____ (Adobe Systems Incorporated) C:\Users\mateusz\Downloads\uninstall_flash_player.exe 2017-03-31 01:36 - 2017-04-22 23:16 - 00019362 _____ C:\Users\mateusz\Downloads\FRST.txt 2017-03-31 01:36 - 2017-03-31 01:36 - 00038631 _____ C:\Users\mateusz\Downloads\Addition.txt 2017-03-31 01:36 - 2017-03-31 01:36 - 00038109 _____ C:\Users\mateusz\Downloads\Shortcut.txt 2017-03-31 01:35 - 2017-04-22 23:16 - 00000000 ____D C:\FRST 2017-03-31 01:27 - 2017-03-31 01:27 - 02424832 _____ (Farbar) C:\Users\mateusz\Downloads\FRST64.exe 2017-03-31 01:25 - 2017-03-31 01:25 - 00380928 _____ C:\Users\mateusz\Downloads\v4nx15x1.exe 2017-03-31 01:21 - 2017-03-31 01:21 - 00496160 _____ (Duplex Secure Ltd) C:\Users\mateusz\Downloads\SPTDinst-v189-x86.exe 2017-03-31 01:21 - 2017-03-31 01:21 - 00000000 ____D C:\Windows\system32\appmgmt 2017-03-30 13:49 - 2017-03-30 13:49 - 00002709 _____ C:\Users\mateusz\Downloads\inferno.lang.php 2017-03-30 13:46 - 2017-03-30 13:46 - 00053375 _____ C:\Users\mateusz\Downloads\MyBB-PluginLibrary-master.zip 2017-03-30 13:46 - 2017-03-30 13:46 - 00000000 ____D C:\Users\mateusz\Downloads\The-Inferno-Shoutbox-of-Din-master(1) 2017-03-30 13:46 - 2017-03-30 13:46 - 00000000 ____D C:\Users\mateusz\Downloads\MyBB-PluginLibrary-master 2017-03-30 13:45 - 2017-03-30 13:46 - 00039911 _____ C:\Users\mateusz\Downloads\The-Inferno-Shoutbox-of-Din-master(1).zip 2017-03-30 02:22 - 2017-03-30 02:22 - 00371462 _____ C:\Users\mateusz\Downloads\albondigas.zip 2017-03-30 02:22 - 2017-03-30 02:22 - 00118018 _____ C:\Users\mateusz\Downloads\lemon_milk.zip 2017-03-30 02:21 - 2017-03-30 02:21 - 00236240 _____ C:\Users\mateusz\Downloads\shine.zip 2017-03-30 02:08 - 2017-03-30 02:08 - 00000000 ____D C:\Users\mateusz\Downloads\Flatty_-_upload_Fyeem_dla_MyBBoard.pl 2017-03-30 02:07 - 2017-03-30 02:07 - 01028072 _____ C:\Users\mateusz\Downloads\Flatty_-_upload_Fyeem_dla_MyBBoard.pl.zip 2017-03-29 23:41 - 2017-03-29 23:41 - 00039911 _____ C:\Users\mateusz\Downloads\The-Inferno-Shoutbox-of-Din-master.zip 2017-03-29 23:41 - 2017-03-29 23:41 - 00017947 _____ C:\Users\mateusz\Downloads\2.3.1.zip 2017-03-29 23:41 - 2017-03-29 23:41 - 00000000 ____D C:\Users\mateusz\Downloads\2.3.1 2017-03-29 23:13 - 2017-03-29 23:13 - 00000000 ____D C:\Users\mateusz\Downloads\Games-Vision 2017-03-29 23:12 - 2017-03-29 23:12 - 02878812 _____ C:\Users\mateusz\Downloads\Games-Vision.zip 2017-03-29 22:59 - 2017-03-29 22:59 - 02297593 _____ C:\Users\mateusz\Downloads\ppm-1.8-1.8.7.zip 2017-03-29 22:59 - 2017-03-29 22:59 - 00000000 ____D C:\Users\mateusz\Downloads\ppm-1.8-1.8.7 2017-03-29 15:09 - 2017-03-29 15:09 - 00438016 _____ C:\Users\mateusz\Downloads\nyala.ttf 2017-03-29 15:08 - 2017-03-29 15:08 - 00041898 _____ C:\Users\mateusz\Downloads\blanche_de_la_fontaine.zip 2017-03-29 15:08 - 2017-03-29 15:08 - 00011949 _____ C:\Users\mateusz\Downloads\ribbons_and_banners.zip 2017-03-29 12:20 - 2017-03-29 12:20 - 02822164 _____ C:\Users\mateusz\Downloads\0vbI1wcJoUXJnKB3.rar 2017-03-29 12:20 - 2017-03-29 12:20 - 00000000 ____D C:\Users\mateusz\Downloads\0vbI1wcJoUXJnKB3 2017-03-28 01:15 - 2017-03-28 01:16 - 00000000 ____D C:\Program Files (x86)\Google 2017-03-28 01:15 - 2017-03-28 01:15 - 01129376 _____ (Google Inc.) C:\Users\mateusz\Downloads\ChromeSetup.exe 2017-03-27 00:17 - 2017-03-27 00:17 - 00000000 ____D C:\Users\mateusz\AppData\Local\ElevatedDiagnostics 2017-03-26 17:01 - 2017-03-26 17:01 - 264336604 _____ C:\Users\mateusz\Downloads\[Grupa Mirai] Dragon Ball - 001 - Bulma i Son Goku [DVD 720x540 AC3] [03D036C4].mkv 2017-03-26 16:44 - 2017-03-30 13:11 - 00000000 ____D C:\PIT Format 2016 2017-03-26 16:44 - 2017-03-26 16:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PIT Format 2016 2017-03-26 16:40 - 2017-03-26 16:41 - 18507392 _____ (FORMAT Biuro Informatyki Stosowanej ) C:\Users\mateusz\Downloads\Instaluj_PIT_Format_2016(1).exe 2017-03-26 16:40 - 2017-03-26 16:40 - 18507392 _____ (FORMAT Biuro Informatyki Stosowanej ) C:\Users\mateusz\Downloads\Instaluj_PIT_Format_2016.exe 2017-03-26 16:39 - 2017-03-26 16:43 - 18507392 _____ (FORMAT Biuro Informatyki Stosowanej ) C:\Users\mateusz\Downloads\Instaluj_PIT_Format_2016(2).exe 2017-03-26 13:00 - 2017-03-26 13:00 - 00619631 _____ C:\Users\mateusz\Downloads\11990707_1633727290227592_1588692372_o.7z 2017-03-26 00:15 - 2017-03-26 00:15 - 00000000 ____D C:\Users\mateusz\Downloads\QIZ7aSYAy7jw3PFF 2017-03-26 00:14 - 2017-03-26 00:15 - 02822164 _____ C:\Users\mateusz\Downloads\QIZ7aSYAy7jw3PFF.rar 2017-03-24 17:10 - 2017-03-24 17:10 - 04235264 _____ (New Technology Studio) C:\Users\mateusz\Downloads\ovisetup.exe 2017-03-24 17:10 - 2017-03-24 17:10 - 00001283 _____ C:\Users\mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\OpenIV.lnk 2017-03-24 17:10 - 2017-03-24 17:10 - 00000000 ____D C:\Users\mateusz\AppData\Roaming\New Technology Studio 2017-03-24 17:10 - 2017-03-24 17:10 - 00000000 ____D C:\Users\mateusz\AppData\Local\New Technology Studio 2017-03-24 14:38 - 2017-03-24 23:12 - 00000000 ____D C:\Users\mateusz\Downloads\u0D0l1j9I9OPdAmo 2017-03-24 14:38 - 2017-03-24 14:38 - 02843556 _____ C:\Users\mateusz\Downloads\u0D0l1j9I9OPdAmo.rar 2017-03-24 13:05 - 2017-03-24 13:05 - 00072022 _____ C:\Users\mateusz\Downloads\pl_pl.rar 2017-03-24 13:05 - 2017-03-24 13:05 - 00000000 ____D C:\Users\mateusz\Documents\My Cheat Tables 2017-03-24 13:04 - 2017-03-24 13:04 - 00000000 ____D C:\Users\mateusz\Downloads\TEN - Parac. Offsets - Money Only_BlaPanda2_CSHACKED.PL 2017-03-24 13:01 - 2017-03-24 13:01 - 00001590 _____ C:\Users\mateusz\Downloads\TEN - Parac. Offsets - Money Only_BlaPanda2_CSHACKED.PL.rar 2017-03-24 02:00 - 2017-03-24 02:00 - 00000000 ____D C:\Users\mateusz\Downloads\45_photoshop_shields_shapes 2017-03-24 01:59 - 2017-03-24 01:59 - 00015387 _____ C:\Users\mateusz\Downloads\45_photoshop_shields_shapes.zip 2017-03-24 01:36 - 2017-03-24 01:36 - 00483490 _____ C:\Users\mateusz\Downloads\nfl_playoff_logos.abr 2017-03-23 23:54 - 2017-03-23 23:55 - 00000000 ____D C:\Users\mateusz\dwhelper 2017-03-23 23:45 - 2017-03-31 01:20 - 00000000 ____D C:\ProgramData\LG Software 2017-03-23 23:44 - 2017-03-31 01:20 - 00000000 ____D C:\Windows\SysWOW64\SSFilter 2017-03-23 23:43 - 2017-03-23 23:44 - 00000000 ____D C:\Users\mateusz\Downloads\LG_SmartShare_WAL_33_2.3.1511.1201 2017-03-23 23:43 - 2017-03-23 23:43 - 191087726 _____ C:\Users\mateusz\Downloads\LG_SmartShare_WAL_33_2.3.1511.1201.zip 2017-03-23 23:39 - 2017-03-23 23:39 - 11304960 _____ C:\Users\mateusz\Downloads\SmartView.msi 2017-03-23 23:34 - 2017-03-23 23:35 - 00009263 _____ C:\Users\mateusz\AppData\Local\WiDiSetupLog.20170323.223448.txt 2017-03-23 23:34 - 2017-03-23 23:34 - 00000000 ____D C:\SWTOOLS 2017-03-23 23:33 - 2017-03-23 23:34 - 226375400 _____ (Lenovo Group Limited ) C:\Users\mateusz\Downloads\w1iwd02us17.exe 2017-03-23 23:12 - 2016-10-13 15:03 - 05712888 _____ (Nahimic Inc) C:\Windows\system32\NahimicVRapo.dll 2017-03-23 23:11 - 2017-03-23 23:12 - 00000000 ____D C:\Program Files (x86)\MSI 2017-03-23 23:07 - 2017-03-23 23:07 - 00000000 ____D C:\Users\mateusz\Downloads\Gaming App 5.0.0.28(1) 2017-03-23 23:06 - 2017-03-23 23:06 - 07515391 _____ C:\Users\mateusz\Downloads\7A62v31.zip 2017-03-23 23:06 - 2017-03-23 23:06 - 00000000 ____D C:\Users\mateusz\Downloads\7A62v31 2017-03-23 23:05 - 2017-03-23 23:07 - 49067444 _____ C:\Users\mateusz\Downloads\Gaming App 5.0.0.28(1).zip 2017-03-23 23:04 - 2017-03-23 23:04 - 00000000 ____D C:\Users\mateusz\Downloads\Gaming App 5.0.0.28 2017-03-23 22:58 - 2017-03-23 23:00 - 49067444 _____ C:\Users\mateusz\Downloads\Gaming App 5.0.0.28.zip 2017-03-23 22:56 - 2017-03-23 22:57 - 13000113 _____ C:\Users\mateusz\Downloads\Gaming APP 5.0.0.26.zip 2017-03-23 22:04 - 2017-03-24 14:35 - 00000000 ____D C:\Users\mateusz\Downloads\ZftQOmJ9mhWyqfBv 2017-03-23 22:04 - 2017-03-23 22:04 - 02843556 _____ C:\Users\mateusz\Downloads\ZftQOmJ9mhWyqfBv.rar 2017-03-23 12:37 - 2017-03-23 12:37 - 00020186 _____ C:\Users\mateusz\Downloads\bebas_neue.zip 2017-03-23 12:37 - 2017-03-23 12:37 - 00000000 ____D C:\Users\mateusz\Downloads\bebas_neue 2017-03-23 12:33 - 2017-03-23 12:33 - 00000000 ____D C:\ProgramData\FLEXnet 2017-03-23 12:30 - 2017-03-23 12:30 - 00000920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Stock Photos CS3.lnk 2017-03-23 12:30 - 2017-03-23 12:30 - 00000866 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS3.lnk 2017-03-23 12:30 - 2017-03-23 12:30 - 00000000 ____D C:\ProgramData\Adobe 2017-03-23 12:30 - 2017-03-23 12:30 - 00000000 ____D C:\Program Files (x86)\Bonjour 2017-03-23 12:29 - 2017-03-23 12:29 - 00001403 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk 2017-03-23 12:29 - 2017-03-23 12:29 - 00000903 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk 2017-03-23 12:29 - 2017-03-23 12:29 - 00000000 ____D C:\Windows\SysWOW64\spool 2017-03-23 12:29 - 2017-03-23 12:29 - 00000000 ____D C:\Program Files (x86)\Adobe 2017-03-23 12:28 - 2017-03-23 12:28 - 00000840 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-04-22 23:13 - 2017-03-18 10:05 - 00000000 ____D C:\Users\mateusz\AppData\LocalLow\Mozilla 2017-04-22 23:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports 2017-04-22 23:10 - 2017-03-18 03:27 - 00000000 ____D C:\Users\mateusz\AppData\Roaming\TS3Client 2017-04-22 23:08 - 2017-03-18 03:10 - 00000000 ____D C:\ProgramData\NVIDIA 2017-04-22 23:08 - 2011-04-12 15:21 - 00739694 _____ C:\Windows\system32\perfh015.dat 2017-04-22 23:08 - 2011-04-12 15:21 - 00155268 _____ C:\Windows\system32\perfc015.dat 2017-04-22 23:08 - 2009-07-14 07:13 - 01668226 _____ C:\Windows\system32\PerfStringBackup.INI 2017-04-22 23:08 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2017-04-22 23:07 - 2017-03-18 03:18 - 00000000 ____D C:\Users\mateusz\AppData\Roaming\Origin 2017-04-22 23:06 - 2017-03-18 03:17 - 00000000 ____D C:\ProgramData\Origin 2017-04-22 23:01 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-04-22 22:02 - 2009-07-14 06:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-04-22 22:02 - 2009-07-14 06:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-04-22 21:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2017-04-22 06:29 - 2017-03-18 10:03 - 00000000 ____D C:\Users\mateusz 2017-04-21 20:15 - 2017-03-18 10:05 - 00000987 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2017-04-21 20:15 - 2017-03-18 10:03 - 00000817 _____ C:\Users\mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2017-04-21 20:02 - 2017-03-19 11:22 - 00000000 ____D C:\Program Files\Rockstar Games 2017-04-21 20:02 - 2017-03-18 03:52 - 00000000 ____D C:\Program Files\PuTTY 2017-04-20 23:58 - 2017-03-18 05:09 - 00000600 _____ C:\Users\mateusz\AppData\Roaming\winscp.rnd 2017-04-20 22:50 - 2017-03-18 10:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-04-20 22:48 - 2017-03-18 04:13 - 00000600 _____ C:\Users\mateusz\AppData\Local\PUTTY.RND 2017-04-18 19:30 - 2017-03-18 03:18 - 00000000 ____D C:\Program Files (x86)\Origin 2017-04-15 10:12 - 2017-03-18 03:49 - 00000000 ____D C:\Users\mateusz\AppData\Local\CrashDumps 2017-04-13 13:00 - 2009-07-14 04:34 - 00000541 _____ C:\Windows\win.ini 2017-04-11 21:03 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2017-04-07 18:01 - 2017-03-18 10:03 - 00000000 ____D C:\Users\mateusz\AppData\Roaming\Adobe 2017-04-07 00:55 - 2017-03-18 03:10 - 00000000 ____D C:\ProgramData\Package Cache 2017-04-03 14:46 - 2017-03-18 03:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI 2017-04-03 14:36 - 2017-03-18 14:38 - 00000000 ____D C:\Users\mateusz\AppData\Roaming\uTorrent 2017-04-03 14:28 - 2017-03-20 00:14 - 00000000 ____D C:\Program Files\Intel 2017-04-03 14:28 - 2017-03-18 03:08 - 00000000 ____D C:\MSI 2017-04-01 19:12 - 2017-03-18 03:16 - 00000000 ____D C:\Users\mateusz\AppData\Local\NVIDIA Corporation 2017-04-01 05:58 - 2017-03-22 02:00 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2017-04-01 05:58 - 2017-03-22 02:00 - 00000000 ____D C:\Windows\system32\Macromed 2017-04-01 05:30 - 2017-03-18 03:07 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-04-01 02:41 - 2017-03-21 17:39 - 00000000 ____D C:\Users\mateusz\AppData\Roaming\Notepad++ 2017-03-31 15:15 - 2017-03-22 02:00 - 00000000 ____D C:\Users\mateusz\AppData\Local\Adobe 2017-03-30 09:54 - 2017-03-18 10:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-03-30 09:54 - 2017-03-18 03:23 - 00110936 _____ C:\Users\mateusz\AppData\Local\GDIPFONTCACHEV1.DAT 2017-03-30 09:54 - 2009-07-14 06:45 - 02348432 _____ C:\Windows\system32\FNTCACHE.DAT 2017-03-30 03:29 - 2017-03-18 16:10 - 00000433 _____ C:\Users\mateusz\Desktop\Nowy dokument tekstowy.txt 2017-03-28 00:47 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2017-03-27 23:23 - 2017-03-21 00:27 - 00000000 ____D C:\ProgramData\Nahimic22.5.5 2017-03-23 23:23 - 2017-03-22 00:12 - 00000000 ____D C:\Users\mateusz\AppData\Roaming\obs-studio 2017-03-23 23:12 - 2017-03-21 00:27 - 00000000 ____D C:\Program Files\Nahimic 2017-03-23 12:35 - 2017-03-18 03:27 - 00001011 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk ==================== Pliki w katalogu głównym wybranych folderów ======= 2017-03-18 05:09 - 2017-04-20 23:58 - 0000600 _____ () C:\Users\mateusz\AppData\Roaming\winscp.rnd 2017-03-18 04:13 - 2017-04-20 22:48 - 0000600 _____ () C:\Users\mateusz\AppData\Local\PUTTY.RND 2017-04-04 14:33 - 2017-04-04 14:33 - 0000552 _____ () C:\Users\mateusz\AppData\Local\TroubleshooterConfig.json 2017-03-23 23:34 - 2017-03-23 23:35 - 0009263 _____ () C:\Users\mateusz\AppData\Local\WiDiSetupLog.20170323.223448.txt 2017-03-18 03:08 - 2017-03-18 03:08 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Niektóre pliki w TEMP: ==================== 2017-04-03 14:24 - 2017-04-03 14:24 - 0250492 _____ () C:\Users\mateusz\AppData\Local\Temp\CustomActions.CA.dll 2017-04-11 21:03 - 2017-03-31 13:19 - 0897560 _____ (BlueStack Systems, Inc.) C:\Users\mateusz\AppData\Local\Temp\HD-Common.dll 2017-04-11 21:03 - 2017-03-31 13:20 - 0515608 _____ (BlueStack Systems, Inc.) C:\Users\mateusz\AppData\Local\Temp\HD-InstallerUtils.dll 2017-04-11 21:03 - 2017-03-31 13:09 - 0187416 _____ (BlueStack Systems) C:\Users\mateusz\AppData\Local\Temp\HD-LibraryHandler.dll 2017-04-11 21:03 - 2017-03-31 13:08 - 0246808 _____ (BlueStack Systems) C:\Users\mateusz\AppData\Local\Temp\HD-Logger-Native.dll 2017-04-11 21:03 - 2017-03-31 13:19 - 0426008 _____ (BlueStack Systems, Inc.) C:\Users\mateusz\AppData\Local\Temp\HD-Uninstaller.exe 2017-03-22 18:45 - 2017-02-23 10:17 - 0754168 _____ (NVIDIA Corporation) C:\Users\mateusz\AppData\Local\Temp\nvSCPAPI.dll 2017-03-22 19:02 - 2017-02-23 10:17 - 0354176 _____ (NVIDIA Corporation) C:\Users\mateusz\AppData\Local\Temp\nvStInst.exe 2010-05-14 03:06 - 2010-05-14 03:06 - 0149352 ____R (Microsoft Corporation) C:\Users\mateusz\AppData\Local\Temp\ose00000.exe ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2017-04-07 16:54 ==================== Koniec FRST.txt ============================