Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 26-12-2017
Uruchomiony przez CIAM (administrator)  CIAM-PC (29-12-2017 17:25:25)
Uruchomiony z C:\Users\CIAM\Desktop
Załadowane profile: CIAM (Dostępne profile: CIAM)
Platform: Windows 10 Pro Wersja 1703 15063.786 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
() C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\AsusFanControlService.exe
(Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\rnc-central\AvidEditorTranscodeStatus.exe
(SOURCENEXT) C:\Windows\SysWOW64\bgsvcgen.exe
(Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorDbEngine.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
() C:\Program Files (x86)\Silicon Image\Silicon Image HBA Wakeup Utility\SiHbaWakeupService.exe
(SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
(SafeNet, Inc) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorDbEngine.exe
(Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorMSE.exe
(Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\rnc-central\AvidEditorTranscodeStatus.exe
(Avid Technology, Inc.) C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorMSE.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Kerish Products) C:\Program Files (x86)\Kerish Doctor\KerishDoctor.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe
() C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
(Silicon Image, Inc.) C:\Program Files (x86)\Silicon Image\3x12-W-I32-R SATARAID\SATARaid.exe
(Canon INC.) C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.5985\Agent.exe
(CANON INC.) C:\Program Files (x86)\Canon\EOS Utility\EOSUPNPSV.exe
(Spotify Ltd) C:\Users\CIAM\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Program Files (x86)\Battle.net\Battle.net.9679\Battle.net Helper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
(Spotify Ltd) C:\Users\CIAM\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\CIAM\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\CIAM\AppData\Roaming\Spotify\Spotify.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11711.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1709.2703.0_x64__8wekyb3d8bbwe\Calculator.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Program Files\qBittorrent\qbittorrent.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Spotify Ltd) C:\Users\CIAM\AppData\Roaming\Spotify\Spotify.exe
() C:\Program Files (x86)\Battle.net\Battle.net.9679\Battle.net Helper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\bcastdvr.exe

==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [apmwinapp] => C:\Program Files (x86)\Paragon Software\HFS+ for Windows  10.5\apmwinsrv.exe [66768 2015-06-22] ()
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15853176 2016-08-03] (Logitech Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2017-12-28] (AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843784 2016-08-08] (Realtek Semiconductor)
HKLM-x32\...\Run: [AppManHelper] => C:\Program Files (x86)\Avid\Application Manager\AvidAppManHelper.exe [617984 2015-09-03] (Avid Technology, Inc.)
HKLM-x32\...\Run: [HFS Activator] => C:\Program Files (x86)\Paragon Software\HFS+ for Windows  10.5\activation\hfsactivator.exe [245456 2015-06-22] ()
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2011-09-20] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe [1960336 2014-11-07] ()
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4174464 2017-05-23] (Safer-Networking Ltd.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== UWAGA
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-910666309-267904859-3003788689-1001\...\Run: [Discord] => C:\Users\CIAM\AppData\Local\Discord\app-0.0.298\Discord.exe [57477112 2017-08-08] (Discord Inc.)
HKU\S-1-5-21-910666309-267904859-3003788689-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10249048 2017-12-13] (Piriform Ltd)
HKU\S-1-5-21-910666309-267904859-3003788689-1001\...\Run: [Spotify] => C:\Users\CIAM\AppData\Roaming\Spotify\Spotify.exe [21070224 2017-12-19] (Spotify Ltd)
HKU\S-1-5-21-910666309-267904859-3003788689-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd)
HKU\S-1-5-21-910666309-267904859-3003788689-1001\...\Run: [TSMApplication] => C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2017-12-12] ()
HKU\S-1-5-21-910666309-267904859-3003788689-1001\...\MountPoints2: {0130533c-bdad-11e7-916b-d017c2d57105} - "J:\setup.exe" 
HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIPEE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Application Manager.lnk [2016-08-27]
ShortcutTarget: Avid Application Manager.lnk -> C:\Windows\Installer\{A59C0B17-6673-46E6-9E00-BB25E755A299}\NewShortcut1_E1E0FF1FC1474601A40EFEF248F11D43.exe (Flexera Software LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Background Services Manager.lnk [2016-08-27]
ShortcutTarget: Avid Background Services Manager.lnk -> C:\Windows\Installer\{F74D4B69-914F-4DAC-A08D-37BD217A0003}\NewShortcut1_4CE83F107C544E87A6F35E0E551E78CA.exe (Flexera Software LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SATARaid.lnk [2017-02-26]
ShortcutTarget: SATARaid.lnk -> C:\Windows\Installer\{D28ED536-CCD0-4F38-987C-A57177371172}\_C44874295DD9B5E8BC3D7A.exe ()
Startup: C:\Users\CIAM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2017-01-05]
ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon INC.)
BootExecute: autocheck autochk * sdnclean64.exeaswBoot.exe /A:"* " /L:"1045" /heur:80 /RA:fix /pup /archives /IA:0 /KBD:3 /wow /dir:"c:\program files\avast software\avast"
GroupPolicy: Ograniczenia <==== UWAGA
GroupPolicy\User: Ograniczenia <==== UWAGA

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\..\Interfaces\{ebfa3c4a-7fca-4faf-8870-9f5efa7401de}: [NameServer] 62.179.1.60,62.179.1.61

Internet Explorer:
==================
HKU\S-1-5-21-910666309-267904859-3003788689-1001\Software\Microsoft\Internet Explorer\Main,Start Page = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-02-26] (Oracle Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> Brak pliku
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-26] (Oracle Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\ProgramData\Wondershare\Video Converter Ultimate\WSBrowserAppMgr.dll [2014-11-07] (Wondershare)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -  Brak pliku
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 -  Brak pliku

FireFox:
========
FF DefaultProfile: 0bmu5lp8.default
FF ProfilePath: C:\Users\CIAM\AppData\Roaming\Mozilla\Firefox\Profiles\0bmu5lp8.default [2017-12-29]
FF Homepage: Mozilla\Firefox\Profiles\0bmu5lp8.default -> hxxp://mail.ru/cnt/10445?gp=811141
FF Extension: (Avast SafePrice) - C:\Users\CIAM\AppData\Roaming\Mozilla\Firefox\Profiles\0bmu5lp8.default\Extensions\sp@avast.com.xpi [2017-12-13]
FF Extension: (Avast Online Security) - C:\Users\CIAM\AppData\Roaming\Mozilla\Firefox\Profiles\0bmu5lp8.default\Extensions\wrc@avast.com.xpi [2017-11-11]
FF Extension: (FlashGot) - C:\Users\CIAM\AppData\Roaming\Mozilla\Firefox\Profiles\0bmu5lp8.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-02-01] [Przestarzałe]
FF HKLM-x32\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com
FF Extension: (Wondershare Video Converter Ultimate) - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com [2016-12-11] [Przestarzałe] [Brak podpisu cyfrowego]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2017-02-07] [Przestarzałe] [Brak podpisu cyfrowego]
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-26] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32.dll [2017-12-04] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=5.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2016-03-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2016-03-16] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-12-15] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-12-15] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Brak pliku]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems)
FF Plugin HKU\S-1-5-21-910666309-267904859-3003788689-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\CIAM\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-910666309-267904859-3003788689-1001: redgiant.com/RGMediaPlayer -> C:\Program Files (x86)\Red Giant\BulletProof\npRGMediaPlayer.dll [2014-06-18] (Red Giant)

Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.netvibes.com/privatepage/1#General
CHR StartupUrls: Default -> "hxxp://www.netvibes.com/privatepage/1#General","hxxps://www.google.com/calendar/render?tab=mc#main_7"
CHR Profile: C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default [2017-12-29]
CHR Extension: (Prezentacje) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Dysk Google) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-27]
CHR Extension: (YouTube) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-27]
CHR Extension: (uBlock Origin) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2017-12-16]
CHR Extension: (Adblock dla serwisu Youtube™) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2017-06-21]
CHR Extension: (Szukaj w Google) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-08-28]
CHR Extension: (Gmail offline) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2016-08-27]
CHR Extension: (Arkusze) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Hide FB Questions) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnfccinnkelhmobaenahkeidjiocmnld [2016-08-27]
CHR Extension: (Dokumenty Google offline) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-27]
CHR Extension: (Google Keep – notatki i listy) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2017-12-12]
CHR Extension: (Steam Database) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdbmhfkmnlmbkgbabkdealhhbfhlmmon [2017-11-28]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-08-28]
CHR Extension: (EXIF Viewer) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafpfdcmppffipmhcpkbplhkoiekndck [2016-08-27]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-27]
CHR Extension: (Chrome Media Router) - C:\Users\CIAM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-08]
CHR HKU\S-1-5-21-910666309-267904859-3003788689-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ligncphnohhjkgekjkghahajihclailj] - hxxps://clients2.google.com/service/update2/crx

Opera: 
=======
OPR Extension: (Tampermonkey) - C:\Users\CIAM\AppData\Roaming\Opera Software\Opera Stable\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2017-12-28]
OPR Extension: (ScriptGate) - C:\Users\CIAM\AppData\Roaming\Opera Software\Opera Stable\Extensions\eeocknbjpmfgaclencnfjfkklmmfmiie [2017-12-28]

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-11-27] (Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.25\aaHMSvc.exe [963544 2016-08-05] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] () [Brak podpisu cyfrowego]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.08.17\AsusFanControlService.exe [2394072 2016-09-24] (ASUSTeK Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7538536 2017-12-28] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2017-12-28] (AVAST Software)
S3 Avid DMF Service; C:\Program Files\Avid\Editor Transcode\Dynamic Media Files\DMFService.exe [661768 2015-09-17] (Avid Technology, Inc.)
R2 Avid Editor Broker; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorMSE.exe [662280 2015-09-17] (Avid Technology, Inc.)
R2 Avid Editor Db Engine; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorDbEngine.exe [661768 2015-09-17] (Avid Technology, Inc.)
S3 Avid Editor Transcode Service; C:\Program Files\Avid\Editor Transcode\TranscodeService\AvidEditorTranscode.exe [662280 2015-09-17] (Avid Technology, Inc.)
R2 Avid Editor Transcode Status; C:\Program Files\Avid\Editor Transcode\TranscodeService\rnc-central\AvidEditorTranscodeStatus.exe [297736 2015-09-17] (Avid Technology, Inc.)
R2 bgsvcgen; C:\Windows\SysWOW64\bgsvcgen.exe [139264 2016-09-07] (SOURCENEXT) [Brak podpisu cyfrowego]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd)
R2 EpsonCustomerResearchParticipation; C:\Program Files\EPSON\EpsonCustomerResearchParticipation\EPCP.exe [677880 2017-05-18] (SEIKO EPSON CORPORATION)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
S3 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
S3 GalaxyClientService; D:\GOG Galaxy\GalaxyClientService.exe [532552 2017-12-12] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8345672 2017-12-12] (GOG.com)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-04-11] () [Brak podpisu cyfrowego]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [974632 2016-02-19] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2016-03-02] (Intel Corporation) [Brak podpisu cyfrowego]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-03-02] (Intel Corporation) [Brak podpisu cyfrowego]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-03-16] (Intel Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-08-03] (Logitech Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-16] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-16] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [463856 2017-12-16] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460736 2017-11-16] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2155328 2017-12-19] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3025224 2017-12-19] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1451848 2017-12-24] (Overwolf LTD)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1776864 2017-05-23] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2131760 2017-05-23] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233936 2017-05-23] (Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation)
R2 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [376832 2013-01-09] (SafeNet, Inc.) [Brak podpisu cyfrowego]
R2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1259872 2013-01-09] (SafeNet, Inc)
R2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [293216 2013-01-09] (SafeNet, Inc.)
R2 SiHbaWakeupService; C:\Program Files (x86)\Silicon Image\Silicon Image HBA Wakeup Utility\SiHbaWakeupService.exe [62464 2009-07-28] () [Brak podpisu cyfrowego]
R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2017-12-18] (TeamViewer GmbH)
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [18232 2016-11-09] (Intel(R) Corporation)

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R0 apmwin; C:\WINDOWS\System32\DRIVERS\apmwin.sys [50896 2015-06-22] (Paragon Software Group)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] ()
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [185096 2017-12-28] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [321512 2017-12-28] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [199448 2017-12-28] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343768 2017-12-28] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57696 2017-12-28] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [149344 2017-12-28] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46976 2017-12-28] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [41832 2017-09-02] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [146664 2017-12-28] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110336 2017-12-28] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84384 2017-12-28] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1025176 2017-12-28] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [457400 2017-12-28] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [204456 2017-12-28] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [358672 2017-12-28] (AVAST Software)
R1 cdrbsdrv; C:\Windows\System32\Drivers\cdrbsdrv.sys [38944 2016-09-07] (B.H.A Corporation)
S2 csvol; C:\WINDOWS\system32\DRIVERS\csvol.sys [23760 2015-06-22] (Paragon Software Group)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-09-07] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-09-07] (Disc Soft Ltd)
R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [559080 2016-04-19] (Intel Corporation)
R0 gpt_loader; C:\WINDOWS\System32\DRIVERS\gpt_loader.sys [61136 2015-06-22] (Paragon Software Group)
S3 Hfsplus; C:\WINDOWS\System32\DRIVERS\hfsplus.sys [205520 2015-06-22] (Paragon Software Group)
R2 HfsplusRec; C:\WINDOWS\System32\DRIVERS\hfsplusrec.sys [15568 2015-06-22] (Paragon Software Group)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-04-11] (Huawei Technologies Co., Ltd.)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2017-03-26] (Highresolution Enterprises [www.highrez.co.uk])
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37064 2016-08-24] (Intel Corporation)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2015-05-14] (ASUSTeK Computer Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [85160 2016-04-19] (Logitech Inc.)
R3 LGSHidFilt; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R0 mounthlp; C:\WINDOWS\System32\DRIVERS\mounthlp.sys [42704 2015-06-22] (Paragon Software Group)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [79504 2016-09-18] (Windows (R) Win 7 DDK provider)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d37ca5c2cde53609\nvlddmkm.sys [17028552 2017-12-18] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-11-16] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50624 2017-10-11] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-12-05] (NVIDIA Corporation)
S3 PortTalk; C:\Windows\SysWOW64\Drivers\PortTalk.sys [3567 2002-01-12] (Beyond Logic hxxp://www.beyondlogic.org) [Brak podpisu cyfrowego]
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 RZSURROUNDVADService; C:\WINDOWS\system32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows (R) Win 7 DDK provider)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc.)
S3 SI3132; C:\WINDOWS\system32\DRIVERS\SI3132.sys [90664 2007-10-03] (Silicon Image, Inc)
R0 Si3132r5; C:\WINDOWS\System32\drivers\Si3132r5.sys [337960 2007-12-26] (Silicon Image, Inc)
S0 Si3531; C:\WINDOWS\System32\drivers\Si3531.sys [333864 2009-02-09] (Silicon Image, Inc)
R0 SiFilter; C:\WINDOWS\System32\drivers\SiWinAcc.sys [22568 2007-12-26] (Silicon Image, Inc.)
R0 SiRemFil; C:\WINDOWS\System32\drivers\SiRemFil.sys [16936 2007-12-26] (Silicon Image, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 WsAudioDevice_383; C:\WINDOWS\system32\drivers\VirtualAudio.sys [39112 2017-04-05] (Wondershare)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2017-12-29 17:25 - 2017-12-29 17:26 - 000035275 _____ C:\Users\CIAM\Desktop\FRST.txt
2017-12-29 17:23 - 2017-12-29 17:25 - 000000000 ____D C:\FRST
2017-12-29 17:22 - 2017-12-29 17:22 - 002391552 _____ (Farbar) C:\Users\CIAM\Desktop\FRST64.exe
2017-12-29 17:18 - 2017-12-29 17:18 - 005659243 _____ (Swearware) C:\Users\CIAM\Desktop\ComboFix.exe
2017-12-29 17:18 - 2017-12-29 17:18 - 000602112 _____ (OldTimer Tools) C:\Users\CIAM\Desktop\OTL.exe
2017-12-29 11:24 - 2017-12-29 11:24 - 001202929 _____ C:\Users\CIAM\Desktop\Dzieci kapitana Granta - Verne.mobi
2017-12-29 11:24 - 2017-12-29 11:24 - 000351231 _____ C:\Users\CIAM\Desktop\W 80 dni dookola swiata - Juliusz Verne.mobi
2017-12-29 11:23 - 2017-12-29 11:23 - 000416716 _____ C:\Users\CIAM\Desktop\Juliusz Verne - Łowcy meteorów.mobi
2017-12-29 08:09 - 2017-12-15 23:47 - 000143960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-12-29 08:08 - 2017-12-29 08:08 - 000000000 ____D C:\WINDOWS\LastGood
2017-12-29 08:08 - 2017-12-29 08:08 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-12-29 08:08 - 2017-12-15 23:34 - 000123704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-12-29 08:08 - 2017-09-14 00:20 - 000798008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-12-29 08:08 - 2017-09-14 00:20 - 000490296 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-12-29 08:08 - 2017-09-14 00:19 - 000927544 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-12-29 08:08 - 2017-09-14 00:19 - 000591160 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-12-29 08:06 - 2017-12-16 01:23 - 040237456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 036350960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 035157488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 029381936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 023267096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 019040512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 013867656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 013255032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 011781912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 010883744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 004485376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 004202992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 003817584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 003615032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 001990128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438871.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 001674736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438871.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 001331016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 001321448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 001135464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 001101104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 001044848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 001038496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 001032688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 000980880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 000933360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 000885680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 000794392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 000740144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 000634224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 000618744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 000616240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 000599536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 000506864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-12-29 08:06 - 2017-12-16 01:23 - 000048442 _____ C:\WINDOWS\system32\nvinfo.pb
2017-12-29 07:11 - 2017-12-29 07:11 - 000003938 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2017-12-29 02:06 - 2017-12-29 17:06 - 000003330 _____ C:\WINDOWS\System32\Tasks\IOrbAiID
2017-12-28 23:12 - 2017-12-28 23:12 - 000000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2017-12-28 23:11 - 2017-12-28 23:53 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-12-28 23:11 - 2017-12-28 23:14 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-12-28 23:11 - 2017-12-28 23:11 - 000001484 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2017-12-28 23:11 - 2017-12-28 23:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2017-12-28 23:11 - 2017-05-23 09:22 - 000032240 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2017-12-28 22:57 - 2017-12-28 22:57 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\Process Hacker 2
2017-12-28 21:14 - 2017-12-28 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2017-12-28 21:14 - 2017-12-28 21:14 - 000000000 ____D C:\Program Files\qBittorrent
2017-12-28 20:36 - 2017-12-28 20:36 - 000003240 _____ C:\WINDOWS\System32\Tasks\GPU Tweak II
2017-12-28 20:33 - 2017-12-28 20:33 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-12-28 20:27 - 2017-12-28 23:22 - 000000000 ____D C:\AdwCleaner
2017-12-28 19:58 - 2017-12-28 19:58 - 001867893 _____ C:\Users\CIAM\Desktop\Questie.zip
2017-12-28 19:57 - 2017-12-28 19:57 - 002599211 _____ C:\Users\CIAM\Desktop\QuestieDev-master.zip
2017-12-28 19:57 - 2017-12-23 04:06 - 000000000 ____D C:\Users\CIAM\Desktop\QuestieDev-master
2017-12-28 19:07 - 2017-12-28 19:07 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2017-12-28 19:07 - 2017-12-28 19:07 - 000003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-12-28 19:06 - 2017-12-28 19:06 - 001025176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-12-28 19:06 - 2017-12-28 19:06 - 000457400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-12-28 19:06 - 2017-12-28 19:06 - 000365680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-12-28 19:06 - 2017-12-28 19:06 - 000358672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-12-28 19:06 - 2017-12-28 19:06 - 000204456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-12-28 19:06 - 2017-12-28 19:06 - 000185096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2017-12-28 19:06 - 2017-12-28 19:06 - 000146664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-12-28 19:06 - 2017-12-28 19:06 - 000110336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-12-28 19:06 - 2017-12-28 19:06 - 000084384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-12-28 19:06 - 2017-12-28 19:06 - 000046976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-12-28 19:06 - 2017-12-28 19:05 - 000343768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-12-28 19:06 - 2017-12-28 19:05 - 000321512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-12-28 19:06 - 2017-12-28 19:05 - 000199448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-12-28 19:06 - 2017-12-28 19:05 - 000149344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2017-12-28 19:06 - 2017-12-28 19:05 - 000057696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-12-28 17:55 - 2017-12-28 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellaris Synthetic Dawn
2017-12-28 17:14 - 2017-12-28 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-12-28 17:14 - 2017-12-28 17:14 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-28 17:14 - 2017-11-29 09:11 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-12-28 17:07 - 2017-12-28 17:07 - 000000000 ____D C:\Users\CIAM\AppData\Local\Unity
2017-12-28 17:06 - 2017-12-28 17:06 - 000003674 _____ C:\WINDOWS\System32\Tasks\KKdBJ
2017-12-28 17:06 - 2017-12-28 17:06 - 000003546 _____ C:\WINDOWS\System32\Tasks\tFizynmEqpsQu
2017-12-28 17:06 - 2017-12-28 17:06 - 000000001 _____ C:\Users\CIAM\AppData\Local\WMI.ini
2017-12-28 17:06 - 2017-03-18 21:59 - 000001191 _____ C:\Users\CIAM\AppData\Roaming\VVBWugZ
2017-12-28 17:06 - 2017-03-18 21:59 - 000001077 _____ C:\Users\CIAM\AppData\Local\iwCbVahWuGv
2017-12-28 17:06 - 2017-03-18 21:59 - 000000067 _____ C:\Users\CIAM\AppData\Roaming\OumIIo
2017-12-28 17:06 - 2017-03-18 21:58 - 000174592 _____ (Microsoft Corporation) C:\Users\CIAM\AppData\Roaming\RyiewVwyeI.exe
2017-12-28 17:06 - 2017-03-18 21:58 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OCezVyMEXaEd.exe
2017-12-28 16:54 - 2017-12-28 19:58 - 000000000 ____D C:\Users\CIAM\Desktop\Questie
2017-12-28 16:19 - 2017-12-28 16:19 - 000001048 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-12-16 06:37 - 2017-12-16 06:37 - 000000000 ____D C:\Users\CIAM\Documents\OpenIV
2017-12-15 21:53 - 2017-12-15 21:54 - 000000000 ____D C:\Users\CIAM\Documents\Rockstar Games
2017-12-15 21:52 - 2017-12-15 21:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2017-12-13 23:52 - 2017-12-13 23:52 - 000000000 ___SD C:\WINDOWS\UpdateAssistantV2
2017-12-13 06:27 - 2017-12-02 03:25 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-12-13 06:27 - 2017-12-02 03:25 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-12-13 06:21 - 2017-11-30 04:33 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe
2017-12-13 06:21 - 2017-11-30 04:00 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-12-13 06:21 - 2017-11-30 03:58 - 006763128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-12-13 06:21 - 2017-11-30 03:58 - 000702032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-12-13 06:21 - 2017-11-30 03:57 - 001123968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-12-13 06:21 - 2017-11-30 03:45 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-12-13 06:21 - 2017-11-30 03:44 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-12-13 06:21 - 2017-11-30 03:44 - 019334144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-12-13 06:21 - 2017-11-30 03:44 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-12-13 06:21 - 2017-11-30 03:43 - 020511232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-12-13 06:21 - 2017-11-30 03:43 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-12-13 06:21 - 2017-11-30 03:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-12-13 06:21 - 2017-11-30 03:42 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2017-12-13 06:21 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2017-12-13 06:21 - 2017-11-30 03:42 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-12-13 06:21 - 2017-11-30 03:41 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2017-12-13 06:21 - 2017-11-30 03:40 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-12-13 06:21 - 2017-11-30 03:40 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-12-13 06:21 - 2017-11-30 03:40 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2017-12-13 06:21 - 2017-11-30 03:40 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2017-12-13 06:21 - 2017-11-30 03:38 - 008195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-12-13 06:21 - 2017-11-30 03:38 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-12-13 06:21 - 2017-11-30 03:38 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-12-13 06:21 - 2017-11-30 03:38 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-12-13 06:21 - 2017-11-30 03:37 - 006252544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-12-13 06:21 - 2017-11-30 03:37 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-12-13 06:21 - 2017-11-30 03:36 - 004726784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-12-13 06:21 - 2017-11-30 03:36 - 003652096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-12-13 06:21 - 2017-11-30 03:36 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-12-13 06:21 - 2017-11-30 03:36 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-12-13 06:21 - 2017-11-30 03:36 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-12-13 06:21 - 2017-11-30 03:35 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-12-13 06:21 - 2017-11-30 03:34 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-12-13 06:20 - 2017-11-30 04:33 - 001144728 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-12-13 06:20 - 2017-11-30 04:33 - 001015704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-12-13 06:20 - 2017-11-30 04:29 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-12-13 06:20 - 2017-11-30 04:26 - 002647216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-12-13 06:20 - 2017-11-30 04:24 - 000870896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-12-13 06:20 - 2017-11-30 04:23 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-12-13 06:20 - 2017-11-30 04:23 - 001194248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-12-13 06:20 - 2017-11-30 03:59 - 023678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-12-13 06:20 - 2017-11-30 03:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-12-13 06:20 - 2017-11-30 03:44 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2017-12-13 06:20 - 2017-11-30 03:44 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2017-12-13 06:20 - 2017-11-30 03:43 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2017-12-13 06:20 - 2017-11-30 03:42 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-12-13 06:20 - 2017-11-30 03:42 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-12-13 06:20 - 2017-11-30 03:42 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2017-12-13 06:20 - 2017-11-30 03:42 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2017-12-13 06:20 - 2017-11-30 03:41 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-12-13 06:20 - 2017-11-30 03:41 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2017-12-13 06:20 - 2017-11-30 03:41 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-12-13 06:20 - 2017-11-30 03:41 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2017-12-13 06:20 - 2017-11-30 03:40 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-12-13 06:20 - 2017-11-30 03:39 - 011888640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-12-13 06:20 - 2017-11-30 03:39 - 003206656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-12-13 06:20 - 2017-11-30 03:39 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-12-13 06:20 - 2017-11-30 03:39 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-12-13 06:20 - 2017-11-30 03:38 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-12-13 06:20 - 2017-11-30 03:37 - 003306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-12-13 06:20 - 2017-11-30 03:37 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-12-13 06:20 - 2017-11-30 03:36 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-12-13 06:20 - 2017-11-30 03:36 - 001802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-12-13 06:20 - 2017-11-30 03:36 - 001398784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-12-11 07:46 - 2017-12-05 22:17 - 004485560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SET4A56.tmp
2017-12-11 07:46 - 2017-12-05 22:17 - 003817400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET5B41.tmp
2017-12-11 07:46 - 2017-12-05 22:17 - 001989944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438859.dll
2017-12-11 07:46 - 2017-12-05 22:17 - 001674736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438859.dll
2017-12-11 07:46 - 2017-12-05 22:17 - 000057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-12-11 07:43 - 2017-12-11 07:43 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-11 07:43 - 2017-12-11 07:43 - 000004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-11 07:43 - 2017-12-11 07:43 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-11 07:43 - 2017-12-11 07:43 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-11 07:43 - 2017-12-11 07:43 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-11 07:43 - 2017-12-11 07:43 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-11 07:43 - 2017-12-11 07:43 - 000003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-11 07:43 - 2017-12-11 07:43 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-12-11 07:43 - 2017-11-16 02:41 - 002404800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-12-11 07:43 - 2017-11-16 02:41 - 002070976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-12-10 22:13 - 2017-12-10 22:13 - 000000000 ____D C:\Users\CIAM\Documents\Paradox Interactive
2017-12-10 19:25 - 2017-12-10 19:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-12-10 19:25 - 2017-12-10 19:25 - 000000000 ____D C:\Program Files\iTunes
2017-12-10 19:25 - 2017-12-10 19:25 - 000000000 ____D C:\Program Files\iPod
2017-12-09 11:32 - 2017-12-09 11:32 - 000000627 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farming Simulator 17.lnk
2017-12-07 20:30 - 2017-12-07 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERHOT [GOG.com]
2017-12-06 22:11 - 2017-12-06 22:11 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2017-12-05 21:09 - 2017-12-05 21:09 - 000003356 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-910666309-267904859-3003788689-1001
2017-12-05 21:09 - 2017-12-05 21:09 - 000002410 _____ C:\Users\CIAM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-12-01 22:10 - 2017-12-01 22:10 - 000000000 ____D C:\Users\CIAM\AppData\LocalLow\Lazy Bear Games
2017-12-01 09:16 - 2017-12-01 09:16 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-12-01 07:14 - 2017-12-01 07:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard 10
2017-12-01 07:14 - 2017-12-01 07:14 - 000000000 ____D C:\Program Files\MiniTool Partition Wizard 10
2017-12-01 07:11 - 2013-09-30 15:26 - 000019152 _____ C:\WINDOWS\system32\pwdrvio.sys
2017-12-01 07:11 - 2013-09-30 15:26 - 000012504 _____ C:\WINDOWS\system32\pwdspio.sys
2017-11-29 07:22 - 2017-11-29 07:22 - 001845974 _____ C:\Users\CIAM\Documents\sav.m3u

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2017-12-29 17:26 - 2016-08-27 15:24 - 000000000 ____D C:\Users\CIAM\AppData\Local\Battle.net
2017-12-29 17:23 - 2016-08-27 12:03 - 000007621 _____ C:\Users\CIAM\AppData\Local\Resmon.ResmonCfg
2017-12-29 17:17 - 2017-09-24 05:55 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\qBittorrent
2017-12-29 17:16 - 2017-05-31 11:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-12-29 15:10 - 2016-08-28 06:48 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\Spotify
2017-12-29 12:25 - 2017-05-31 11:35 - 000000000 ____D C:\ProgramData\NVIDIA
2017-12-29 11:24 - 2016-10-01 05:20 - 000000000 ____D C:\Users\CIAM\Documents\My eBooks
2017-12-29 08:09 - 2017-05-31 11:35 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-12-29 08:09 - 2017-04-21 19:50 - 000000000 ____D C:\temp
2017-12-29 08:09 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
2017-12-29 08:09 - 2016-11-13 08:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-12-29 08:08 - 2016-08-27 09:36 - 000000000 ____D C:\Users\CIAM\AppData\Local\NVIDIA
2017-12-29 07:14 - 2016-12-11 07:59 - 000000000 ____D C:\ProgramData\Wondershare Video Converter Ultimate
2017-12-29 07:14 - 2016-09-09 20:02 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\TS3Client
2017-12-29 07:14 - 2016-09-07 19:48 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\DAEMON Tools Lite
2017-12-29 02:00 - 2016-08-28 08:01 - 000000000 ____D C:\Users\CIAM\AppData\Local\Adobe
2017-12-28 22:45 - 2016-08-28 06:48 - 000000000 ____D C:\Users\CIAM\AppData\Local\Spotify
2017-12-28 21:17 - 2016-08-27 09:38 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\uTorrent
2017-12-28 21:16 - 2017-10-30 22:09 - 000000000 ____D C:\Users\CIAM\AppData\LocalLow\uTorrent
2017-12-28 21:15 - 2017-09-24 05:55 - 000000000 ____D C:\Users\CIAM\AppData\Local\qBittorrent
2017-12-28 20:35 - 2017-05-31 11:36 - 000000000 ____D C:\Users\CIAM
2017-12-28 20:32 - 2016-08-27 15:23 - 000000000 ____D C:\Program Files (x86)\Battle.net
2017-12-28 20:31 - 2016-08-27 13:09 - 000132226 _____ C:\errlgr.txt
2017-12-28 20:30 - 2017-05-31 11:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-12-28 20:29 - 2017-03-18 12:40 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2017-12-28 20:24 - 2016-08-28 06:12 - 000000000 ____D C:\Program Files (x86)\Overwolf
2017-12-28 20:24 - 2016-08-28 06:11 - 000000000 ____D C:\Users\CIAM\AppData\Local\Overwolf
2017-12-28 18:58 - 2016-08-29 20:50 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\Curse Client
2017-12-28 17:06 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-12-28 17:06 - 2015-10-30 08:24 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-12-28 16:47 - 2016-09-12 13:00 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2017-12-28 16:46 - 2016-08-28 09:00 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\vlc
2017-12-28 16:08 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-12-28 16:08 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-12-21 23:55 - 2016-12-18 07:49 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\Messenger for Desktop
2017-12-21 15:11 - 2016-08-27 12:23 - 000000000 ____D C:\Users\Public\Documents\Avid Media Composer
2017-12-21 15:10 - 2016-08-28 08:53 - 000000000 ____D C:\ProgramData\boost_interprocess
2017-12-21 05:21 - 2016-08-28 14:01 - 000000000 ____D C:\Program Files (x86)\Origin
2017-12-21 05:09 - 2016-08-27 12:04 - 000000000 ____D C:\Users\CIAM\AppData\Local\CrashDumps
2017-12-20 19:11 - 2016-09-09 19:53 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-12-18 18:24 - 2016-08-27 12:23 - 000000000 ____D C:\Users\Public\Documents\Shared Avid Projects
2017-12-16 06:18 - 2016-12-21 12:18 - 000001307 _____ C:\Users\CIAM\AppData\Roaming\Microsoft\Windows\Start Menu\OpenIV.lnk
2017-12-16 06:17 - 2016-12-21 12:18 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\New Technology Studio
2017-12-16 06:17 - 2016-12-21 12:18 - 000000000 ____D C:\Users\CIAM\AppData\Local\New Technology Studio
2017-12-16 00:15 - 2017-05-31 11:35 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-12-15 23:34 - 2017-05-31 11:35 - 005964688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-12-15 23:34 - 2017-05-31 11:35 - 002589168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-12-15 23:34 - 2017-05-31 11:35 - 001767408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-12-15 23:34 - 2017-05-31 11:35 - 000608056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-12-15 23:34 - 2017-05-31 11:35 - 000450544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-12-15 23:34 - 2017-05-31 11:35 - 000082928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-12-15 21:54 - 2016-10-16 17:35 - 000000000 ____D C:\Program Files\Rockstar Games
2017-12-15 21:54 - 2016-10-16 17:34 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2017-12-15 21:53 - 2016-12-20 01:13 - 000000000 ____D C:\Users\CIAM\AppData\Local\Rockstar Games
2017-12-15 21:52 - 2016-08-28 09:01 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-12-15 21:28 - 2017-08-28 19:11 - 000000000 ____D C:\Users\CIAM\AppData\LocalLow\Mozilla
2017-12-15 12:07 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\rescache
2017-12-14 19:22 - 2016-08-28 14:02 - 000000000 ____D C:\Users\CIAM\AppData\Local\Ubisoft Game Launcher
2017-12-14 19:17 - 2017-05-31 11:35 - 007917671 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-12-14 06:18 - 2016-08-28 08:55 - 000000000 ____D C:\Users\CIAM\AppData\Local\Packages
2017-12-13 23:52 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-12-13 07:13 - 2016-11-06 12:27 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\Factorio
2017-12-13 06:28 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-12-13 06:26 - 2016-08-27 11:55 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-12-13 06:22 - 2017-10-11 16:22 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-13 06:22 - 2016-08-27 11:55 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-12-13 05:48 - 2016-11-04 17:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-12-12 21:01 - 2016-09-13 20:51 - 000000000 ____D C:\Program Files (x86)\TradeSkillMaster Application
2017-12-12 10:04 - 2016-11-04 17:25 - 000001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-12-12 10:04 - 2016-11-04 17:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-12-12 06:33 - 2017-05-31 11:35 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-12-11 07:51 - 2017-05-31 11:53 - 004185700 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-11 07:51 - 2017-03-20 04:58 - 002003118 _____ C:\WINDOWS\system32\perfh015.dat
2017-12-11 07:51 - 2017-03-20 04:58 - 000523082 _____ C:\WINDOWS\system32\perfc015.dat
2017-12-11 07:43 - 2017-05-31 11:35 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-12-09 11:39 - 2016-08-27 13:22 - 000000000 ____D C:\Users\CIAM\Documents\My Games
2017-12-07 22:38 - 2016-08-28 06:30 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\Skype
2017-12-06 22:11 - 2017-05-31 11:52 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-12-06 21:06 - 2016-08-28 09:00 - 000002284 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-05 14:36 - 2016-08-28 14:02 - 000000000 ____D C:\ProgramData\Origin
2017-12-05 14:35 - 2016-08-28 14:03 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\Origin
2017-12-05 14:34 - 2017-06-19 20:54 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\FileZilla
2017-12-04 18:52 - 2017-03-26 01:00 - 000000000 ____D C:\Program Files (x86)\Kerish Doctor
2017-12-04 06:15 - 2017-08-04 09:17 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\The Creative Assembly
2017-12-01 07:14 - 2016-09-01 16:55 - 000000000 ____D C:\Program Files\MiniTool Partition Wizard Free 9.1
2017-12-01 07:12 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-12-01 07:12 - 2016-09-12 13:00 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\TeamViewer
2017-12-01 07:11 - 2017-06-12 06:20 - 000000000 ____D C:\Program Files\CCleaner
2017-11-30 19:27 - 2017-04-13 19:55 - 000000000 ____D C:\Users\CIAM\AppData\Roaming\Twitch
2017-11-30 19:27 - 2017-04-13 19:55 - 000000000 ____D C:\ProgramData\Twitch
2017-11-29 14:37 - 2016-08-27 13:25 - 000000000 ____D C:\Users\CIAM\Documents\The Witcher 3
2017-11-29 13:49 - 2017-11-25 05:52 - 000000000 ____D C:\Users\CIAM\Documents\Stronghold

==================== Pliki w katalogu głównym wybranych folderów =======

2016-08-27 12:21 - 2016-08-27 12:21 - 001228442 _____ () C:\Users\CIAM\AppData\Roaming\AvidApplicationManager_Install.log
2017-02-01 20:29 - 2017-02-01 20:29 - 000000049 _____ () C:\Users\CIAM\AppData\Roaming\Camdata.ini
2017-02-01 20:29 - 2017-02-01 20:29 - 000000408 _____ () C:\Users\CIAM\AppData\Roaming\CamLayout.ini
2017-02-01 20:29 - 2017-02-01 20:29 - 000000408 _____ () C:\Users\CIAM\AppData\Roaming\CamShapes.ini
2017-02-01 20:29 - 2017-02-01 20:29 - 000004548 _____ () C:\Users\CIAM\AppData\Roaming\CamStudio.cfg
2017-12-28 17:06 - 2017-03-18 21:59 - 000000067 _____ () C:\Users\CIAM\AppData\Roaming\OumIIo
2017-03-18 21:59 - 2017-03-18 21:59 - 000000067 ____N () C:\Users\CIAM\AppData\Roaming\OumIIo.bat
2017-12-28 17:06 - 2017-03-18 21:58 - 000174592 _____ (Microsoft Corporation) C:\Users\CIAM\AppData\Roaming\RyiewVwyeI.exe
2017-02-01 20:23 - 2017-02-01 20:23 - 000000096 _____ () C:\Users\CIAM\AppData\Roaming\version2.xml
2017-12-28 17:06 - 2017-03-18 21:59 - 000001191 _____ () C:\Users\CIAM\AppData\Roaming\VVBWugZ
2017-03-18 21:59 - 2017-03-18 21:59 - 000001191 ____N () C:\Users\CIAM\AppData\Roaming\VVBWugZ.bat
2017-12-28 17:06 - 2017-03-18 21:59 - 000001077 _____ () C:\Users\CIAM\AppData\Local\iwCbVahWuGv
2017-03-18 21:59 - 2017-03-18 21:59 - 000001077 _____ () C:\Users\CIAM\AppData\Local\iwCbVahWuGv.bat
2016-08-27 12:03 - 2017-12-29 17:23 - 000007621 _____ () C:\Users\CIAM\AppData\Local\Resmon.ResmonCfg
2017-12-28 17:06 - 2017-12-28 17:06 - 000000001 _____ () C:\Users\CIAM\AppData\Local\WMI.ini

Niektóre pliki w TEMP:
====================
2017-12-28 17:06 - 2017-12-28 17:06 - 002575544 _____ () C:\Users\CIAM\AppData\Local\Temp\KB900AD04935EC3972.exe
2017-12-11 07:48 - 2017-12-05 20:36 - 000760032 _____ (NVIDIA Corporation) C:\Users\CIAM\AppData\Local\Temp\nvSCPAPI.dll
2017-12-11 07:48 - 2017-12-05 20:36 - 000874696 _____ (NVIDIA Corporation) C:\Users\CIAM\AppData\Local\Temp\nvSCPAPI64.dll
2017-12-29 08:06 - 2017-12-05 20:36 - 000371184 _____ (NVIDIA Corporation) C:\Users\CIAM\AppData\Local\Temp\nvStInst.exe

Niektóre zerobajtowe pliki/foldery:
==========================
C:\Windows\System32\.exe

==================== Bamital & volsnap ======================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo
C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo

LastRegBack: 2017-12-28 18:02

==================== Koniec  FRST.txt ============================