Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 29-08-2016 Uruchomiony przez Patryk (administrator) PATRYK-KOMPUTER (31-08-2016 09:26:39) Uruchomiony z C:\Users\Patryk\Desktop Załadowane profile: Patryk (Dostępne profile: Patryk) Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Electronic Arts) D:\Origin\Origin.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-08-26] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1767944 2016-08-26] (NVIDIA Corporation) HKLM\...\Run: [gplyra] => C:\Users\Patryk\AppData\Roaming\gplyra\gplyra\start.cmd HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1340192 2016-01-29] (Microsoft Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" HKLM\...\Winlogon: [Userinit] wscript C:\Windows\run.vbs, HKLM-x32\...\Winlogon: [Userinit] wscript C:\Windows\run.vbs, [X] HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29494400 2016-07-13] (Skype Technologies S.A.) HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8686296 2016-03-11] (Piriform Ltd) HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\Run: [DAEMON Tools Lite] => C:\Users\Patryk\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd) HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\Run: [EADM] => D:\Origin\Origin.exe [3639280 2016-08-16] (Electronic Arts) HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\MountPoints2: J - J:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\MountPoints2: {253f8e58-fef6-11e5-91f3-806e6f6e6963} - G:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\MountPoints2: {3f230855-f850-11e5-a77f-001693000565} - H:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\MountPoints2: {4f6960df-fea6-11e5-8a38-001693000565} - J:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\MountPoints2: {6bf561f2-4f25-11e6-882d-001693000565} - H:\LG_PC_Programs.exe HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\MountPoints2: {a33ad821-ee13-11e5-9580-408d5c14e576} - H:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\MountPoints2: {a33ad84c-ee13-11e5-9580-408d5c14e576} - H:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\MountPoints2: {c028605d-1324-11e6-aa1b-001693000565} - H:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\...\Winlogon: [Shell] C:\Windows\Explorer.exe [3231232 2016-04-09] (Microsoft Corporation) <==== UWAGA ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Brak pliku ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Brak pliku ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Brak pliku ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Brak pliku ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Brak pliku ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Brak pliku ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) AutoConfigURL: [S-1-5-21-2521607336-1062970685-3731827339-1000] => hxxp://un-stop.info/wpad.dat?07b1a36483014172b1a3faa7ae3b173c11313300 Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 195.62.64.1 195.62.64.2 Tcpip\..\Interfaces\{3070012E-50B7-49A6-8A42-349D8DEE0752}: [NameServer] 104.197.191.4 Tcpip\..\Interfaces\{3070012E-50B7-49A6-8A42-349D8DEE0752}: [DhcpNameServer] 195.62.64.1 195.62.64.2 Tcpip\..\Interfaces\{5A125D31-7E0F-4A63-A8BF-04CBD889751F}: [NameServer] 104.197.191.4 Tcpip\..\Interfaces\{899CA386-7B92-4558-956F-5FD66616772D}: [NameServer] 104.197.191.4 Tcpip\..\Interfaces\{9C38B954-27FE-4663-AAB1-F25416EDE23B}: [DhcpNameServer] 195.62.64.1 195.62.64.2 Tcpip\..\Interfaces\{B013A25F-EE78-495D-8ADD-C797B52714BA}: [NameServer] 104.197.191.4 Tcpip\..\Interfaces\{C8997195-C0A8-4878-9362-01AB2375EE2E}: [NameServer] 104.197.191.4 ManualProxies: 0hxxp://un-stop.info/wpad.dat?07b1a36483014172b1a3faa7ae3b173c11313300 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKU\S-1-5-21-2521607336-1062970685-3731827339-1000 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKU\S-1-5-21-2521607336-1062970685-3731827339-1000 -> {2039DD3E-4E72-4C20-90E7-9FD959AA7D06} URL = hxxp://www.google.com/cse?cx=partner-pub-0900663996874144:4435833467&ie=UTF-8&q={searchTerms}&sa=Search&ref=#gsc.tab=0&gsc.q={searchTerms}&gsc.page=1 SearchScopes: HKU\S-1-5-21-2521607336-1062970685-3731827339-1000 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation) BHO: Brak nazwy -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> Brak pliku BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-07-20] (Oracle Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-20] (Oracle Corporation) Toolbar: HKLM - Brak nazwy - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - Brak pliku Toolbar: HKLM-x32 - Brak nazwy - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - Brak pliku Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Patryk\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1 FF DefaultSearchEngine: hohosearch FF DefaultSearchEngine.US: data:text/plain,browser.search.defaultenginename.US=hohosearch FF Homepage: search.mpc.am FF Keyword.URL: hxxp://www.hohosearch.com/chrome.php?uid=FF974593EEB1DA02C0CA2EF01F90CCCF&ptid=isr&ts=AHEqAHUlBX4sAU..&v=20160425&mode=ffexttoolbar&q= FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation) FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-20] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-20] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-08-25] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-08-25] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-18] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-18] (Google Inc.) FF Plugin HKU\S-1-5-21-2521607336-1062970685-3731827339-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patryk\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [Brak pliku] FF Plugin HKU\S-1-5-21-2521607336-1062970685-3731827339-1000: electronicarts.com/GameFacePlugin -> C:\Users\Patryk\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll [Brak pliku] FF user.js: detected! => C:\Users\Patryk\AppData\Roaming\Mozilla\Firefox\Profiles\ni0fkg53.default\user.js [2016-08-14] FF user.js: detected! => C:\Users\Patryk\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\user.js [2016-08-14] FF Extension: (Google Translator for Firefox) - C:\Users\Patryk\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\extensions\translator@zoli.bod.xpi [2016-06-07] FF Extension: (Google Translate in Menu (Right Click)) - C:\Users\Patryk\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\@google-translate-menu.xpi [2016-04-03] FF Extension: (Adblock Plus) - C:\Users\Patryk\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-05-19] Chrome: ======= CHR HomePage: Default -> mail.ru/cnt/20595300?rciguc__PARAM__ CHR Plugin: (Shockwave Flash) - C:\Users\Patryk\AppData\Local\Google\Chrome\User Data\PepperFlash\22.0.0.209\pepflashplayer.dll () CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Patryk\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.903\_platform_specific\win_x64\widevinecdmadapter.dll (Google Inc.) CHR Profile: C:\Users\Patryk\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (AdBlock) - C:\Users\Patryk\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-31] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Patryk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-02] CHR Extension: (Gmail) - C:\Users\Patryk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-02] CHR Extension: (Chrome Media Router) - C:\Users\Patryk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-30] CHR HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ahkmpjnmnhjkpkacdhkliipnncobgkhk] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fbkdlibjhnblcbjjecnlpkldhbkedfhj] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-2521607336-1062970685-3731827339-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [oelpkepjlgmehajehfeicfbjdiobdkfj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [dhhejlifdlcgcmogbggeomfodgklfaem] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25] Opera: ======= StartMenuInternet: (HKLM) OperaStable - D:\Opera\Launcher.exe ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation) S4 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-08-26] (NVIDIA Corporation) S4 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319096 2016-01-13] (Intel Corporation) S4 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [454872 2016-04-15] (Rivet Networks) R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2016-01-29] (Microsoft Corporation) R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [374344 2016-01-29] (Microsoft Corporation) S4 Noije; C:\Users\Patryk\AppData\Roaming\Geunfy\Geunfy.exe [170496 2016-08-11] () [Brak podpisu cyfrowego] S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-08-26] (NVIDIA Corporation) S4 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-08-26] (NVIDIA Corporation) S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-08-26] (NVIDIA Corporation) S4 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-04-24] () S4 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-04-09] () S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [211456 2016-08-04] () [Brak podpisu cyfrowego] R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [138872 2016-03-23] (Rivet Networks, LLC.) R3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc) R0 BtHidBus; C:\Windows\System32\Drivers\BtHidBus.sys [23944 2010-04-06] (IVT Corporation.) S3 btnetBUs; C:\Windows\System32\Drivers\btnetBus.sys [30088 2010-04-06] () R1 cherimoya; C:\Windows\System32\drivers\cherimoya.sys [82240 2016-08-14] (Cherimoya Ltd) <==== UWAGA S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-05-11] (Disc Soft Ltd) S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-05-11] (Disc Soft Ltd) R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2016-07-28] (DT Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31728 2016-02-25] (Intel Corporation) S3 IvtBtBUs; C:\Windows\System32\Drivers\IvtBtBus.sys [27016 2010-04-06] (IVT Corporation.) R3 KillerEth; C:\Windows\System32\DRIVERS\e2xw7x64.sys [134296 2016-02-12] (Qualcomm Atheros, Inc.) S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2016-08-04] () [Brak podpisu cyfrowego] R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [289120 2015-11-13] (Microsoft Corporation) R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133816 2015-11-13] (Microsoft Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-08-26] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56376 2016-08-26] (NVIDIA Corporation) S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [748648 2010-08-12] (Realtek Semiconductor Corporation ) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2016-07-28] (Duplex Secure Ltd.) S3 whfltr2k; C:\Windows\System32\DRIVERS\whfltr2k.sys [10368 2000-01-01] () [Brak podpisu cyfrowego] R1 ZAM; C:\Windows\System32\drivers\zam64.sys [202656 2016-05-02] (Zemana Ltd.) R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [202656 2016-05-02] (Zemana Ltd.) U3 atjsq4sr; C:\Windows\System32\Drivers\atjsq4sr.sys [0 ] (Microsoft Corporation) <==== UWAGA (zerobajtowy plik/folder) S3 AndNetDiag; system32\DRIVERS\lgandnetdiag64.sys [X] S3 ANDNetModem; system32\DRIVERS\lgandnetmodem64.sys [X] S3 AthBTPort; system32\DRIVERS\btath_flt.sys [X] S3 b06bdrv; \SystemRoot\system32\drivers\bxvbda.sys [X] S3 BT; system32\DRIVERS\btnetdrv.sys [X] S3 BTATH_A2DP; system32\drivers\btath_a2dp.sys [X] S3 btath_avdt; system32\drivers\btath_avdt.sys [X] S3 BTATH_BUS; system32\DRIVERS\btath_bus.sys [X] S3 BTATH_HCRP; system32\DRIVERS\btath_hcrp.sys [X] S3 BTATH_LWFLT; system32\DRIVERS\btath_lwflt.sys [X] S3 BTATH_RCP; system32\DRIVERS\btath_rcp.sys [X] S3 BTCOM; system32\DRIVERS\btcomport.sys [X] S3 BTCOMBUS; System32\Drivers\btcombus.sys [X] S3 Btcsrusb; System32\Drivers\btcusb.sys [X] S3 DxkgFilter; \??\C:\Program Files (x86)\iDisplay\idisplay.sys [X] S0 ignis; system32\DRIVERS\ignis.sys [X] S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X] S1 MPCKpt; system32\DRIVERS\MPCKpt.sys [X] <==== UWAGA S3 RtkBtFilter; system32\DRIVERS\RtkBtfilter.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-08-31 09:26 - 2016-08-31 09:26 - 00021332 _____ C:\Users\Patryk\Desktop\FRST.txt 2016-08-31 09:25 - 2016-08-31 09:26 - 02397696 _____ (Farbar) C:\Users\Patryk\Desktop\FRST64.exe 2016-08-31 08:23 - 2016-08-25 22:50 - 00133056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2016-08-31 08:21 - 2016-08-26 01:28 - 40070200 _____ C:\Windows\system32\nvcompiler.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 35182648 _____ C:\Windows\SysWOW64\nvcompiler.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 34801088 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 28207672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 17463088 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 17263792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 14352816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 14093368 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2016-08-31 08:21 - 2016-08-26 01:28 - 10865704 _____ C:\Windows\system32\nvptxJitCompiler.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 10737632 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 10278080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 09086856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 08875408 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 08680696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 03594808 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 03456888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 03160512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 01920960 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437270.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 01588688 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437270.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 01019960 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00956352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00941504 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00892864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00686896 _____ C:\Windows\system32\nvfatbinaryLoader.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00575984 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00520912 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00493608 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00437696 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00436088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00408784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00390200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00223304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2016-08-31 08:21 - 2016-08-26 01:28 - 00181488 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00159352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00113208 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00102968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00056376 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2016-08-31 08:21 - 2016-08-26 01:28 - 00054728 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2016-08-31 08:21 - 2016-08-26 01:28 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json 2016-08-31 08:21 - 2016-08-26 01:28 - 00000669 _____ C:\Windows\system32\nv-vk64.json 2016-08-31 03:16 - 2016-08-31 03:16 - 00001005 _____ C:\Users\Public\Desktop\The Sims 4.lnk 2016-08-31 00:08 - 2016-08-31 00:08 - 00000000 ____D C:\Users\Patryk\Documents\Electronic Arts 2016-08-30 23:56 - 2016-06-03 09:38 - 01581624 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll 2016-08-30 18:50 - 2016-08-30 18:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0 2016-08-30 18:38 - 2016-08-30 18:38 - 00000000 ____D C:\Users\Patryk\Documents\Battlefield 1 Open Beta 2016-08-30 18:37 - 2016-08-30 18:37 - 00000899 _____ C:\Users\Public\Desktop\Battlefield 1 Open Beta.lnk 2016-08-30 18:37 - 2016-08-30 18:37 - 00000000 ___HD C:\Program Files\Common Files\EAInstaller 2016-08-30 18:37 - 2016-08-30 18:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 1 Open Beta 2016-08-30 06:18 - 2016-08-30 06:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Sims 4 2016-08-30 06:18 - 2014-09-16 18:45 - 00447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll 2016-08-30 05:41 - 2016-08-31 02:10 - 00000000 ____D C:\Users\Patryk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-08-30 05:41 - 2016-08-31 02:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-08-30 04:16 - 2016-08-31 08:23 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2016-08-30 04:16 - 2016-05-04 04:23 - 00129824 _____ C:\Windows\SysWOW64\vulkan-1.dll 2016-08-30 04:16 - 2016-05-04 04:22 - 00130848 _____ C:\Windows\system32\vulkan-1.dll 2016-08-30 04:16 - 2016-05-04 04:22 - 00045344 _____ C:\Windows\system32\vulkaninfo.exe 2016-08-30 04:16 - 2016-05-04 04:22 - 00040224 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2016-08-22 00:33 - 2016-08-22 00:33 - 00000000 ____D C:\NVIDIA 2016-08-22 00:23 - 2016-08-22 01:10 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk 2016-08-22 00:23 - 2016-08-22 01:10 - 00000000 ____D C:\Program Files\Microsoft Security Client 2016-08-22 00:23 - 2016-08-22 01:10 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client 2016-08-18 00:52 - 2016-08-18 00:52 - 00002277 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-08-18 00:52 - 2016-08-18 00:52 - 00002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-08-18 00:51 - 2016-08-31 09:06 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-08-18 00:51 - 2016-08-31 09:05 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-08-18 00:51 - 2016-08-18 01:00 - 00004044 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2016-08-18 00:51 - 2016-08-18 01:00 - 00003792 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2016-08-18 00:49 - 2016-08-18 00:49 - 00003854 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1465260887 2016-08-18 00:36 - 2016-08-18 00:36 - 00019991 _____ C:\ProgramData\1471473385.bdinstall.bin 2016-08-16 23:42 - 2016-08-16 23:43 - 00000000 ____D C:\Users\Patryk\AppData\Local\Origin 2016-08-16 23:41 - 2016-08-16 23:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2016-08-16 23:32 - 2016-08-16 23:32 - 00019991 _____ C:\ProgramData\1471383128.bdinstall.bin 2016-08-16 23:14 - 2016-08-16 23:14 - 00000000 ____D C:\Users\Patryk\AppData\Local\DriverToolkit 2016-08-16 22:58 - 2016-08-16 23:23 - 00000000 ____D C:\Program Files\Common Files\McAfee 2016-08-16 22:55 - 2016-08-31 09:26 - 00000000 ____D C:\FRST 2016-08-16 22:41 - 2016-08-31 08:49 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-08-16 22:41 - 2016-08-27 16:05 - 00000992 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job 2016-08-16 22:41 - 2016-08-16 22:58 - 00000000 ____D C:\ProgramData\McAfee 2016-08-16 22:41 - 2016-08-16 22:41 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-08-16 22:41 - 2016-08-16 22:41 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-08-16 22:41 - 2016-08-16 22:41 - 00004002 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2016-08-16 22:41 - 2016-08-16 22:41 - 00003868 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-08-16 22:41 - 2016-08-16 22:41 - 00000030 _____ C:\AVScanner.ini 2016-08-16 22:30 - 2016-08-31 09:08 - 00029140 _____ C:\Windows\ZAM.krnl.trace 2016-08-16 22:30 - 2016-08-31 09:06 - 00000119 _____ C:\Windows\ZAM_Guard.krnl.trace 2016-08-16 22:29 - 2016-07-07 17:36 - 01896168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2016-08-16 22:29 - 2016-07-07 17:36 - 00377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2016-08-16 22:29 - 2016-07-07 17:36 - 00287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2016-08-16 22:29 - 2016-07-07 17:08 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys 2016-08-16 22:29 - 2016-07-01 17:31 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2016-08-16 22:29 - 2016-07-01 17:31 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll 2016-08-16 22:29 - 2016-07-01 17:13 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2016-08-16 22:29 - 2016-07-01 17:13 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll 2016-08-16 22:29 - 2016-07-01 16:56 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2016-08-16 22:29 - 2016-07-01 16:56 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2016-08-16 22:29 - 2016-07-01 16:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2016-08-16 22:26 - 2016-07-08 17:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2016-08-16 22:26 - 2016-07-08 17:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2016-08-16 22:20 - 2016-08-11 16:31 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437254.dll 2016-08-16 22:20 - 2016-08-11 16:31 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437254.dll 2016-08-14 15:27 - 2016-08-14 15:27 - 00000000 ____D C:\Users\Patryk\AppData\Local\storage 2016-08-14 15:15 - 2016-08-16 23:23 - 00000000 ____D C:\Windows\system32\maz 2016-08-14 12:43 - 2016-08-16 23:23 - 00000000 ____D C:\Users\Patryk\AppData\Roaming\Geunfy 2016-08-14 12:43 - 2016-08-16 23:23 - 00000000 ____D C:\Users\Patryk\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A} 2016-08-14 12:43 - 2016-08-14 12:43 - 00000000 ____D C:\Users\Patryk\AppData\LocalLow\Company 2016-08-14 12:43 - 2016-08-14 12:43 - 00000000 ____D C:\Users\Patryk\AppData\Local\Tempfolder 2016-08-14 12:43 - 2016-08-14 12:43 - 00000000 ____D C:\uninst 2016-08-14 12:14 - 2016-08-14 12:14 - 00003190 _____ C:\Windows\System32\Tasks\{3DB8B885-5289-44D6-B929-F1EB8264A006} 2016-08-14 12:13 - 2016-08-14 12:13 - 00000000 _____ C:\Users\Patryk\AppData\Roaming\1.txt 2016-08-14 12:12 - 2016-08-14 12:10 - 00001370 _____ C:\Windows\system32\Drivers\etc\hp.bak 2016-08-14 12:11 - 2016-08-16 23:23 - 00000000 ____D C:\Program Files (x86)\038D0240-1471169515-0514-E506-760700080009 2016-08-14 12:10 - 2016-08-14 12:15 - 00000000 ____D C:\Users\Patryk\AppData\Local\app 2016-08-14 12:10 - 2016-08-14 12:10 - 00000000 ____D C:\Program Files (x86)\WeatherChickn 2016-08-12 17:33 - 2016-08-12 17:33 - 00000000 ____D C:\Users\Patryk\AppData\Local\Geckofx 2016-08-12 03:27 - 2016-08-12 03:27 - 00000000 ____D C:\Users\Patryk\Documents\Rise of the Tomb Raider 2016-08-12 03:27 - 2016-08-12 03:27 - 00000000 ____D C:\Users\Patryk\Documents\CPY_SAVES 2016-08-12 03:27 - 2016-08-12 03:27 - 00000000 ____D C:\Users\Patryk\AppData\Roaming\Crystal Dynamics 2016-08-11 15:06 - 2016-08-14 12:43 - 00082240 _____ (Cherimoya Ltd) C:\Windows\system32\Drivers\cherimoya.sys 2016-08-10 07:35 - 2016-07-08 17:37 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-08-10 07:35 - 2016-07-08 17:37 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-08-10 07:35 - 2016-07-08 17:32 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-08-10 07:35 - 2016-07-08 17:32 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-08-10 07:35 - 2016-07-08 17:17 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-08-10 07:35 - 2016-07-08 17:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-08-10 07:35 - 2016-07-08 17:16 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-08-10 07:35 - 2016-07-08 17:03 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-08-10 07:35 - 2016-07-08 16:57 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-08-10 07:35 - 2016-07-08 16:56 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-08-10 07:35 - 2016-07-08 16:56 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-08-10 07:35 - 2016-07-08 16:55 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-08-10 07:35 - 2016-07-08 16:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-08-10 07:35 - 2016-07-08 16:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-08-10 07:34 - 2016-08-02 16:54 - 00394440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-08-10 07:34 - 2016-08-02 16:08 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2016-08-10 07:34 - 2016-08-02 08:54 - 25808384 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-08-10 07:34 - 2016-08-02 08:47 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-08-10 07:34 - 2016-08-02 08:47 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-08-10 07:34 - 2016-08-02 08:32 - 02894336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-08-10 07:34 - 2016-08-02 08:32 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-08-10 07:34 - 2016-08-02 08:31 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-08-10 07:34 - 2016-08-02 08:31 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-08-10 07:34 - 2016-08-02 08:31 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-08-10 07:34 - 2016-08-02 08:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-08-10 07:34 - 2016-08-02 08:24 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-08-10 07:34 - 2016-08-02 08:23 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-08-10 07:34 - 2016-08-02 08:20 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-08-10 07:34 - 2016-08-02 08:19 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-08-10 07:34 - 2016-08-02 08:19 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-08-10 07:34 - 2016-08-02 08:18 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-08-10 07:34 - 2016-08-02 08:18 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-08-10 07:34 - 2016-08-02 08:18 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-08-10 07:34 - 2016-08-02 08:11 - 00969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-08-10 07:34 - 2016-08-02 08:08 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-08-10 07:34 - 2016-08-02 08:03 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2016-08-10 07:34 - 2016-08-02 08:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-08-10 07:34 - 2016-08-02 07:59 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-08-10 07:34 - 2016-08-02 07:56 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-08-10 07:34 - 2016-08-02 07:55 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-08-10 07:34 - 2016-08-02 07:54 - 20343808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-08-10 07:34 - 2016-08-02 07:53 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-08-10 07:34 - 2016-08-02 07:51 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-08-10 07:34 - 2016-08-02 07:51 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2016-08-10 07:34 - 2016-08-02 07:51 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-08-10 07:34 - 2016-08-02 07:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2016-08-10 07:34 - 2016-08-02 07:51 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2016-08-10 07:34 - 2016-08-02 07:50 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2016-08-10 07:34 - 2016-08-02 07:47 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-08-10 07:34 - 2016-08-02 07:45 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-08-10 07:34 - 2016-08-02 07:44 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2016-08-10 07:34 - 2016-08-02 07:42 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-08-10 07:34 - 2016-08-02 07:41 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-08-10 07:34 - 2016-08-02 07:41 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2016-08-10 07:34 - 2016-08-02 07:41 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2016-08-10 07:34 - 2016-08-02 07:40 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-08-10 07:34 - 2016-08-02 07:38 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-08-10 07:34 - 2016-08-02 07:38 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-08-10 07:34 - 2016-08-02 07:37 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-08-10 07:34 - 2016-08-02 07:36 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-08-10 07:34 - 2016-08-02 07:33 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2016-08-10 07:34 - 2016-08-02 07:29 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-08-10 07:34 - 2016-08-02 07:28 - 15412224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-08-10 07:34 - 2016-08-02 07:28 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2016-08-10 07:34 - 2016-08-02 07:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2016-08-10 07:34 - 2016-08-02 07:25 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2016-08-10 07:34 - 2016-08-02 07:24 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2016-08-10 07:34 - 2016-08-02 07:23 - 02868224 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-08-10 07:34 - 2016-08-02 07:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2016-08-10 07:34 - 2016-08-02 07:21 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-08-10 07:34 - 2016-08-02 07:16 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-08-10 07:34 - 2016-08-02 07:15 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-08-10 07:34 - 2016-08-02 07:14 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-08-10 07:34 - 2016-08-02 07:14 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2016-08-10 07:34 - 2016-08-02 07:11 - 13808128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-08-10 07:34 - 2016-08-02 07:10 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-08-10 07:34 - 2016-08-02 06:59 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-08-10 07:34 - 2016-08-02 06:56 - 02393088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-08-10 07:34 - 2016-08-02 06:53 - 01316352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-08-10 07:34 - 2016-08-02 06:51 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-08-10 07:34 - 2016-07-08 17:01 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-08-07 17:46 - 2016-08-07 17:46 - 00000000 ____D C:\Users\Patryk\Documents\Activision 2016-08-07 17:46 - 2016-08-07 17:46 - 00000000 ____D C:\Users\Patryk\AppData\Local\Activision 2016-08-07 00:53 - 2016-08-07 00:53 - 00000000 ____D C:\ProgramData\Ubisoft 2016-08-05 16:07 - 2016-08-31 08:17 - 00000000 ____D C:\Users\Patryk\AppData\Local\Ubisoft Game Launcher 2016-08-04 23:20 - 2016-08-04 23:20 - 00000000 ____D C:\Users\Patryk\Documents\FIFA 15 2016-08-04 23:17 - 2016-08-04 23:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 15 ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-08-31 09:14 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-08-31 09:14 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-08-31 09:10 - 2011-04-12 15:21 - 02773694 _____ C:\Windows\system32\perfh015.dat 2016-08-31 09:10 - 2011-04-12 15:21 - 00845124 _____ C:\Windows\system32\perfc015.dat 2016-08-31 09:10 - 2009-07-14 07:13 - 00006256 _____ C:\Windows\system32\PerfStringBackup.INI 2016-08-31 09:08 - 2016-03-18 18:12 - 00000000 ___HD C:\ProgramData\Origin 2016-08-31 09:07 - 2016-03-18 18:17 - 00000000 ____D C:\Users\Patryk\AppData\Roaming\Skype 2016-08-31 09:06 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-08-31 08:51 - 2016-07-24 00:51 - 00000244 _____ C:\Windows\Tasks\Booking_helper.job 2016-08-31 08:29 - 2016-03-18 18:05 - 00000000 __SHD C:\Users\Patryk\IntelGraphicsProfiles 2016-08-31 08:29 - 2016-03-18 16:27 - 00000000 ____D C:\ProgramData\NVIDIA 2016-08-31 08:29 - 2016-03-18 16:18 - 00000000 ____D C:\Program Files\WinRAR 2016-08-31 08:24 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2016-08-31 08:23 - 2016-05-19 02:43 - 00001381 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2016-08-31 08:23 - 2016-04-03 09:39 - 00007614 _____ C:\Users\Patryk\AppData\Local\Resmon.ResmonCfg 2016-08-31 08:23 - 2016-03-18 16:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-08-31 08:23 - 2016-03-18 16:26 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-08-31 02:50 - 2016-03-18 20:12 - 00000000 ____D C:\Users\Patryk\AppData\Roaming\uTorrent 2016-08-31 02:04 - 2016-03-19 02:20 - 00000000 ____D C:\Users\Patryk\AppData\Local\CrashDumps 2016-08-31 02:03 - 2016-05-11 00:38 - 00000000 ____D C:\Users\Patryk\AppData\Roaming\DAEMON Tools Lite 2016-08-30 23:57 - 2016-03-18 16:25 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-08-30 06:18 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2016-08-30 05:41 - 2016-07-15 12:40 - 00000000 ____D C:\Users\Patryk\Desktop\TRADYCYJNE DOMOWE CIASTA - NAJLEPSZE PRZEPISY - Przepisy Joli - Przepisy Joli_files 2016-08-30 04:10 - 2016-04-17 23:01 - 00371103 ____N C:\Windows\Minidump\083016-7082-01.dmp 2016-08-30 04:10 - 2016-04-03 02:08 - 00000000 ____D C:\Windows\Minidump 2016-08-29 20:34 - 2016-03-18 18:17 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-08-29 20:34 - 2016-03-18 18:17 - 00000000 ____D C:\ProgramData\Skype 2016-08-27 03:07 - 2016-06-22 23:43 - 00000000 ____D C:\Users\Patryk\Desktop\Muzyka 2016-08-27 02:03 - 2016-03-18 16:34 - 00000000 ____D C:\Users\Patryk\AppData\Roaming\AIMP 2016-08-27 00:47 - 2016-04-10 10:41 - 00000000 ____D C:\Users\Patryk\AppData\Local\ElevatedDiagnostics 2016-08-26 01:28 - 2016-03-18 16:28 - 01767944 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2016-08-26 01:28 - 2016-03-18 16:28 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2016-08-26 01:28 - 2016-03-18 16:28 - 01377800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2016-08-26 01:28 - 2016-03-18 16:28 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2016-08-26 01:28 - 2016-03-18 16:28 - 00112216 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2016-08-26 01:28 - 2016-03-18 16:26 - 19848080 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2016-08-26 01:28 - 2016-03-18 16:26 - 03917512 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2016-08-26 01:28 - 2016-03-18 16:26 - 00039731 _____ C:\Windows\system32\nvinfo.pb 2016-08-25 23:10 - 2016-03-18 16:26 - 06385720 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2016-08-25 23:10 - 2016-03-18 16:26 - 02475064 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2016-08-25 23:10 - 2016-03-18 16:26 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2016-08-25 23:10 - 2016-03-18 16:26 - 01362368 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2016-08-25 23:10 - 2016-03-18 16:26 - 00548408 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2016-08-25 23:10 - 2016-03-18 16:26 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2016-08-25 23:10 - 2016-03-18 16:26 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2016-08-25 23:10 - 2016-03-18 16:26 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2016-08-22 17:18 - 2016-03-18 16:26 - 07320235 _____ C:\Windows\system32\nvcoproc.bin 2016-08-22 01:10 - 2016-04-23 21:36 - 00001912 _____ C:\Windows\epplauncher.mif 2016-08-21 23:31 - 2016-03-18 16:16 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2016-08-18 00:52 - 2016-03-18 16:06 - 00000000 ____D C:\Program Files (x86)\Google 2016-08-18 00:38 - 2016-06-07 05:44 - 00102197 _____ C:\bdlog.txt 2016-08-18 00:38 - 2016-03-27 02:15 - 00000000 ____D C:\ProgramData\BDLogging 2016-08-16 23:41 - 2016-03-18 18:12 - 00000000 ____D C:\ProgramData\Electronic Arts 2016-08-16 23:23 - 2016-04-02 22:59 - 00000000 ____D C:\Users\Patryk\Documents\FIFA 16 2016-08-16 23:23 - 2016-03-29 04:17 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2016-08-16 23:23 - 2016-03-18 18:35 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2016-08-16 23:23 - 2016-03-18 18:35 - 00000000 ____D C:\Windows\system32\Macromed 2016-08-16 23:23 - 2016-03-18 16:26 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2016-08-16 23:23 - 2016-03-18 15:41 - 00000000 ____D C:\Users\Patryk 2016-08-16 23:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing 2016-08-16 23:22 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration 2016-08-16 23:02 - 2016-06-07 00:28 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2016-08-16 23:01 - 2016-03-18 18:13 - 00000000 ___HD C:\Users\Patryk\AppData\Roaming\Origin 2016-08-16 22:41 - 2016-05-31 00:26 - 00000000 ____D C:\Program Files\Microsoft Windows 2016-08-16 22:39 - 2016-03-18 18:32 - 00000000 ____D C:\Users\Patryk\AppData\Local\Adobe 2016-08-16 22:19 - 2016-04-03 04:57 - 00000000 ____D C:\Users\Patryk\AppData\Roaming\Opera Software 2016-08-16 22:19 - 2016-04-03 04:57 - 00000000 ____D C:\Users\Patryk\AppData\Local\Opera Software 2016-08-14 15:34 - 2016-03-18 15:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-08-14 15:17 - 2016-03-18 17:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2016-08-11 01:16 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2016-08-10 16:54 - 2009-07-14 06:45 - 00267360 _____ C:\Windows\system32\FNTCACHE.DAT 2016-08-10 07:53 - 2016-03-18 21:32 - 00000000 ____D C:\Windows\system32\MRT 2016-08-10 07:51 - 2016-03-18 21:32 - 147640136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-08-07 00:59 - 2016-03-18 19:49 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2016-08-07 00:59 - 2016-03-18 19:49 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0 2016-08-04 17:58 - 2016-07-31 04:35 - 00000000 ____D C:\Users\Patryk\AppData\Roaming\SpieleEntwicklungsKombinat 2016-08-04 17:58 - 2016-07-31 04:34 - 00211456 _____ C:\Windows\system32\Drivers\atksgt.sys 2016-08-04 17:58 - 2016-07-31 04:34 - 00035328 _____ C:\Windows\system32\Drivers\lirsgt.sys ==================== Pliki w katalogu głównym wybranych folderów ======= 2016-08-14 12:13 - 2016-08-14 12:13 - 0000000 _____ () C:\Users\Patryk\AppData\Roaming\1.txt 2016-04-06 01:53 - 2016-04-06 01:53 - 6504960 _____ () C:\Users\Patryk\AppData\Roaming\agent.dat 2016-04-06 01:53 - 2016-04-06 01:53 - 0109084 _____ () C:\Users\Patryk\AppData\Roaming\inst.lat 2016-04-06 01:53 - 2016-04-06 01:53 - 0127488 _____ () C:\Users\Patryk\AppData\Roaming\Installer.dat 2016-03-19 04:12 - 2016-03-19 04:13 - 240397312 _____ () C:\Users\Patryk\AppData\Roaming\Launcher.dat 2016-04-06 01:53 - 2016-04-06 01:53 - 0018432 _____ () C:\Users\Patryk\AppData\Roaming\Main.dat 2016-03-19 04:12 - 2016-03-19 04:38 - 0000009 _____ () C:\Users\Patryk\AppData\Roaming\update.dat 2016-04-06 01:53 - 2016-04-06 01:53 - 1626416 _____ () C:\Users\Patryk\AppData\Roaming\VentoZumis.tst 2016-03-19 04:13 - 2016-03-20 15:34 - 0000004 _____ () C:\Users\Patryk\AppData\Roaming\Microsoft\notaut.txt 2016-03-18 15:50 - 2016-05-02 01:20 - 0000000 _____ () C:\Users\Patryk\AppData\Local\Driver_LOM_8161Present.flag 2016-04-03 09:39 - 2016-08-31 08:23 - 0007614 _____ () C:\Users\Patryk\AppData\Local\Resmon.ResmonCfg 2016-06-06 23:52 - 2016-06-06 23:52 - 0236307 _____ () C:\ProgramData\1465249824.bdinstall.bin 2016-06-07 01:06 - 2016-06-07 01:06 - 0027752 _____ () C:\ProgramData\1465254405.bdinstall.bin 2016-06-07 05:14 - 2016-06-07 05:14 - 0001585 _____ () C:\ProgramData\1465269286.bdinstall.bin 2016-06-07 05:14 - 2016-06-07 05:14 - 0001585 _____ () C:\ProgramData\1465269291.bdinstall.bin 2016-06-07 05:16 - 2016-06-07 05:16 - 0001585 _____ () C:\ProgramData\1465269360.bdinstall.bin 2016-06-07 13:21 - 2016-06-07 13:21 - 0001585 _____ () C:\ProgramData\1465298479.bdinstall.bin 2016-06-14 15:04 - 2016-06-14 15:04 - 0026778 _____ () C:\ProgramData\1465909497.bdinstall.bin 2016-06-22 01:10 - 2016-06-22 01:10 - 0019991 _____ () C:\ProgramData\1466550613.bdinstall.bin 2016-06-22 01:10 - 2016-06-22 01:10 - 0001585 _____ () C:\ProgramData\1466550618.bdinstall.bin 2016-06-22 01:10 - 2016-06-22 01:10 - 0001585 _____ () C:\ProgramData\1466550622.bdinstall.bin 2016-06-22 01:11 - 2016-06-22 01:11 - 0019991 _____ () C:\ProgramData\1466550623.bdinstall.bin 2016-06-22 01:13 - 2016-06-22 01:13 - 0019991 _____ () C:\ProgramData\1466550733.bdinstall.bin 2016-06-22 01:13 - 2016-06-22 01:13 - 0001585 _____ () C:\ProgramData\1466550785.bdinstall.bin 2016-06-22 01:13 - 2016-06-22 01:13 - 0001585 _____ () C:\ProgramData\1466550831.bdinstall.bin 2016-06-22 01:13 - 2016-06-22 01:13 - 0019994 _____ () C:\ProgramData\1466550832.bdinstall.bin 2016-06-22 01:16 - 2016-06-22 01:16 - 0001585 _____ () C:\ProgramData\1466550982.bdinstall.bin 2016-06-22 01:18 - 2016-06-22 01:18 - 0001585 _____ () C:\ProgramData\1466551101.bdinstall.bin 2016-06-22 01:20 - 2016-06-22 01:20 - 0019991 _____ () C:\ProgramData\1466551238.bdinstall.bin 2016-06-22 01:20 - 2016-06-22 01:20 - 0019991 _____ () C:\ProgramData\1466551240.bdinstall.bin 2016-06-22 01:25 - 2016-06-22 01:25 - 0019991 _____ () C:\ProgramData\1466551540.bdinstall.bin 2016-06-22 02:11 - 2016-06-22 02:11 - 0019994 _____ () C:\ProgramData\1466554266.bdinstall.bin 2016-06-22 02:13 - 2016-06-22 02:13 - 0019991 _____ () C:\ProgramData\1466554399.bdinstall.bin 2016-06-22 02:13 - 2016-06-22 02:13 - 0026498 _____ () C:\ProgramData\1466554422.bdinstall.bin 2016-07-19 07:32 - 2016-07-19 07:32 - 0019991 _____ () C:\ProgramData\1468906378.bdinstall.bin 2016-07-28 15:08 - 2016-07-28 15:08 - 0019994 _____ () C:\ProgramData\1469711317.bdinstall.bin 2016-08-16 23:32 - 2016-08-16 23:32 - 0019991 _____ () C:\ProgramData\1471383128.bdinstall.bin 2016-08-18 00:36 - 2016-08-18 00:36 - 0019991 _____ () C:\ProgramData\1471473385.bdinstall.bin Pliki do przeniesienia lub usunięcia: ==================== C:\Windows\Tasks\{472A440D-86BD-DAFE-7E9D-78789BB31890}.job Niektóre pliki w TEMP: ==================== C:\Users\Patryk\AppData\Local\Temp\nvSCPAPI.dll C:\Users\Patryk\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\Patryk\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2016-08-06 15:28 ==================== Koniec FRST.txt ============================