Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 23-02-2017 01 Uruchomiony przez Admin (administrator) ADMIN-KOMPUTER (23-02-2017 18:35:54) Uruchomiony z C:\Users\Admin\Desktop Załadowane profile: Admin (Dostępne profile: Admin & Administrator) Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 8 (Domyślna przeglądarka: "C:\Program Files (x86)\Goldass\Application\chrome.exe" "%1") Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe (IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\RealTimeProtector.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe (IObit) C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe () C:\Program Files\Mouse\Amoumain.exe () C:\Users\Admin\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Echobit LLC) C:\Program Files\Echobit\Evolve\EvolveClient.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe () C:\Windows\SysWOW64\PnkBstrA.exe (VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (Echobit LLC) C:\Program Files\Echobit\Evolve\EvoSvc.exe (Echobit, LLC) C:\Program Files\Echobit\Evolve\Drivers\EvolveTracker_32.exe (Echobit, LLC) C:\Program Files\Echobit\Evolve\Drivers\EvolveTracker_64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Echobit, LLC) C:\Program Files\Echobit\Evolve\EvolveUI.exe (Echobit, LLC) C:\Program Files\Echobit\Evolve\EvolveUI.exe (Echobit, LLC) C:\Program Files\Echobit\Evolve\EvolveUI.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Google Inc.) C:\Program Files (x86)\Goldass\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Goldass\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Goldass\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Goldass\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Goldass\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Goldass\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Goldass\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Goldass\Application\chrome.exe ==================== Rejestr (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [WheelMouse] => C:\Program Files\Mouse\Amoumain.exe [196608 2000-01-01] () HKLM\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2000-01-01] (VIA) HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation) HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2000-01-01] (VIA) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-15] (AVAST Software) HKLM\...\Policies\Explorer: [HideSCAHealth] 1 HKU\S-1-5-21-1774506419-689819666-2243541019-1000\...\Run: [Advanced SystemCare 10] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2913568 2016-12-16] (IObit) HKU\S-1-5-21-1774506419-689819666-2243541019-1000\...\Run: [Gaijin.Net Agent] => C:\Users\Admin\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [1912840 2017-02-13] () HKU\S-1-5-21-1774506419-689819666-2243541019-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-28] (Piriform Ltd) HKU\S-1-5-21-1774506419-689819666-2243541019-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKU\S-1-5-21-1774506419-689819666-2243541019-1000\...\MountPoints2: F - F:\setup.exe HKU\S-1-5-21-1774506419-689819666-2243541019-1000\...\MountPoints2: {3f3e71f1-c2a7-11e6-86b4-20cf30ee87f3} - J:\setup.exe HKU\S-1-5-21-1774506419-689819666-2243541019-1000\...\MountPoints2: {652a52a4-8d97-11e6-9d86-20cf30ee87f3} - F:\autorun.exe HKU\S-1-5-21-1774506419-689819666-2243541019-1000\...\MountPoints2: {73e9f149-6627-11e6-a0e3-806e6f6e6963} - E:\Install.exe HKU\S-1-5-21-1774506419-689819666-2243541019-1000\...\MountPoints2: {8a73676c-98f7-11e6-9e56-20cf30ee87f3} - K:\autorun.exe HKLM\...\Providers\81bd26iq: C:\Program Files (x86)\Terbaent Center\local64spl.dll ShellExecuteHooks: Brak nazwy - {1215881A-DE48-11E6-9639-64006A5CFC23} - -> Brak pliku ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-10-11] (AVAST Software) Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CPUFSB.lnk [2017-01-31] ShortcutTarget: CPUFSB.lnk -> C:\Program Files (x86)\CPUFSB\CPUFSB.exe () GroupPolicy: Ograniczenia <======= UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) AutoConfigURL: [S-1-5-21-1774506419-689819666-2243541019-1000] => hxxp://noblocking.biz/wpad.dat?86b5ab8bf1e905ab0c48f13f207c126022763251 Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 82.160.202.7 82.160.202.8 Tcpip\..\Interfaces\{3849DCF1-F8B2-4D5C-9ED5-B4C6F2576A9B}: [DhcpNameServer] 7.254.254.254 Tcpip\..\Interfaces\{B2101941-6AAA-4DD3-A256-A3106273BAB7}: [DhcpNameServer] 82.160.202.7 82.160.202.8 ManualProxies: 0hxxp://noblocking.biz/wpad.dat?86b5ab8bf1e905ab0c48f13f207c126022763251 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA HKU\S-1-5-21-1774506419-689819666-2243541019-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2016-05-23] (IObit) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-22] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-22] (Oracle Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-22] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-22] (Oracle Corporation) BHO-x32: IObit Ads Removal -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\Adblock\Adblock.dll [2016-06-23] (IObit) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: scda8y9e.default FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\scda8y9e.default [2017-02-23] FF user.js: detected! => C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\scda8y9e.default\user.js [2017-02-17] FF Homepage: Mozilla\Firefox\Profiles\scda8y9e.default -> hxxp://www.youndoo.com/?z=d8b0479576e5b9c887101c9gfz6b9q8edw7tfe4tbz&from=wak&uid=395049983_1052515_4862EB37&type=hp FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\scda8y9e.default\Extensions\ascsurfingprotectionnew@iobit.com.xpi [2016-10-18] FF Extension: (Brak nazwy) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\scda8y9e.default\extensions\arthurj8283@gmail.com [nie znaleziono] FF SearchPlugin: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\scda8y9e.default\searchplugins\luck.xml [2017-02-16] FF ProfilePath: C:\Users\Admin\AppData\Roaming\Firefox\Firefox\Profiles\scda8y9e.default [2017-02-13] FF user.js: detected! => C:\Users\Admin\AppData\Roaming\Firefox\Firefox\Profiles\scda8y9e.default\user.js [2016-12-28] FF Homepage: Firefox\Firefox\Profiles\scda8y9e.default -> hxxp://www.searchinme.com/?type=hp&ts=1486983443210&z=&from=official&uid=395049983_1052515_4862EB37 FF Extension: (FF Adr) - C:\Users\Admin\AppData\Roaming\Firefox\Firefox\Profiles\scda8y9e.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2017-02-13] [Brak podpisu cyfrowego] FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\Admin\AppData\Roaming\Firefox\Firefox\Profiles\scda8y9e.default\Extensions\ascsurfingprotectionnew@iobit.com.xpi [2016-10-18] FF SearchPlugin: C:\Users\Admin\AppData\Roaming\Firefox\Firefox\Profiles\scda8y9e.default\searchplugins\searchinme.xml [2017-02-13] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-15] () FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-22] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-22] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-15] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1225195.dll [2016-09-20] (Adobe Systems, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-22] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-22] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation) FF Plugin-x32: @raidcall.tw/RCplugin -> C:\Users\Admin\AppData\Roaming\RCTW\plugins\nprcplugin.dll [2013-06-25] (Raidcall) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1774506419-689819666-2243541019-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-12-31] () FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\23360010.js [2016-12-26] <==== UWAGA (Linkuje do pliku *.cfg) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\23360010.cfg [2016-12-26] <==== UWAGA Chrome: ======= CHR DefaultProfile: ChromeDefaultData CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-02-23] <==== UWAGA CHR Extension: (Dysk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-20] CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-20] CHR Extension: (Adblock Plus) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-01-06] CHR Extension: (AdBlock) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-01-30] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19] CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-20] CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-08] CHR HKLM-x32\...\Chrome\Extension: [eiibddcohpjhajbnfkpboacmohommppp] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 ACTION_SVC; C:\Program Files (x86)\Mirillis\Action!\action_svc.exe [16064 2014-10-25] () R2 AdvancedSystemCareService10; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [462624 2016-12-12] (IObit) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-10-11] (AVAST Software) S3 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [39376 2015-03-12] (Alcohol Soft Development Team) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1415176 2016-09-08] () S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd) S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [249104 2016-10-12] (EasyAntiCheat Ltd) R3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2017-02-23] (Echobit LLC) S3 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Brak podpisu cyfrowego] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.) S2 iedvutils; C:\Program Files (x86)\Explorer\iedvutils.exe [64184 2017-01-22] () R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [1740576 2017-01-10] (IObit) S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit) S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.474\McCHSvc.exe [329480 2016-12-14] (McAfee, Inc.) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [5660512 2016-08-16] (INCA Internet Co., Ltd.) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-01-20] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-01-20] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [464440 2017-01-20] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064 2017-01-20] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119176 2017-01-16] (Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2181648 2017-01-16] (Electronic Arts) S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1318128 2017-02-02] (Overwolf LTD) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2016-11-04] () S3 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Brak podpisu cyfrowego] S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [838128 2016-12-15] (Tunngle.net GmbH) R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2016-12-28] (VIA Technologies, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 Amfilter; C:\Windows\System32\DRIVERS\Amfltx64.sys [12288 2000-01-01] ((Standard mouse types)) R3 Amusbprt; C:\Windows\System32\DRIVERS\Amusbx64.sys [17920 2000-01-01] (A4Tech Co.,Ltd.) S2 AODDriver4.3.0; Brak ImagePath S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-10-11] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-10-11] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-10-11] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-10-11] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-10-11] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-10-11] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-10-11] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software) R3 cpuz138; C:\Users\Admin\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [27320 2017-02-23] (CPUID) <==== UWAGA S3 DrvAgent64; Brak ImagePath R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-08-23] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-08-23] (Disc Soft Ltd) U5 ET5Drv; C:\Windows\ET5Drv.sys [36416 2007-10-16] (Windows (R) Codename Longhorn DDK provider) R3 EvolveVirtualAdapter; C:\Windows\System32\DRIVERS\evolve.sys [21656 2017-02-23] (Echobit, LLC) S3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys [112872 2016-12-28] (GenesysLogic) S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2016-11-06] () R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-08-29] (REALiX(tm)) S4 IMFFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys [22208 2016-12-16] (IObit) R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.) S3 MBAMSwissArmy; Brak ImagePath R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2016-08-29] () S1 ntiowp; C:\Windows\SysWow64\Drivers\ntiowp.sys [12352 2006-10-20] () [Brak podpisu cyfrowego] S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2017-01-20] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2017-01-20] (NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [59448 2017-01-20] (NVIDIA Corporation) R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] () S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] () S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2016-12-16] (IObit.com) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [394296 2017-01-07] (Duplex Secure Ltd.) R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [47736 2015-12-21] (Tunngle.net) R3 Trufos; C:\Windows\System32\DRIVERS\TRUFOS.sys [452040 2016-03-31] (BitDefender S.R.L.) U3 alkxnnou; C:\Windows\System32\Drivers\alkxnnou.sys [0 ] (NVIDIA Corporation) <==== UWAGA (zerobajtowy plik/folder) U5 GVTDrv; C:\Windows\SysWOW64\Drivers\GVTDrv.sys [24944 2016-11-04] () U3 uwddakob; \??\C:\Users\Admin\AppData\Local\Temp\uwddakob.sys [X] <==== UWAGA ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-02-23 18:35 - 2017-02-23 18:36 - 00021992 _____ C:\Users\Admin\Desktop\FRST.txt 2017-02-23 18:35 - 2017-02-23 18:27 - 02423296 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe 2017-02-23 18:30 - 2017-02-23 18:30 - 00105305 _____ C:\Users\Admin\Downloads\Shortcut.txt 2017-02-23 18:29 - 2017-02-23 18:30 - 00063871 _____ C:\Users\Admin\Downloads\Addition.txt 2017-02-23 18:27 - 2017-02-23 18:35 - 00000000 ____D C:\FRST 2017-02-23 18:27 - 2017-02-23 18:30 - 00065689 _____ C:\Users\Admin\Downloads\FRST.txt 2017-02-23 18:27 - 2017-02-23 18:27 - 02423296 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe 2017-02-23 18:26 - 2017-02-23 18:26 - 00371282 _____ C:\Users\Admin\Downloads\gmer (2).zip 2017-02-23 18:26 - 2017-02-23 18:26 - 00371282 _____ C:\Users\Admin\Downloads\gmer (1).zip 2017-02-23 18:24 - 2017-02-23 18:35 - 00000040 _____ C:\Program Files (x86)\settings.dat 2017-02-23 18:24 - 2017-02-23 18:24 - 00000000 ____D C:\Program Files (x86)\reports 2017-02-23 18:23 - 2017-02-23 18:35 - 01764352 _____ (Farbar) C:\Users\Admin\Downloads\Farbar Recovery Scan Tool (FRST) 3.3.14.2 (17.2.2017.0) [1].exe 2017-02-23 18:22 - 2017-02-23 18:23 - 00371282 _____ C:\Users\Admin\Downloads\gmer.zip 2017-02-23 18:22 - 2017-02-23 18:22 - 01236848 _____ ( ) C:\Users\Admin\Downloads\Farbar Recovery Scan Tool (FRST) 3.3.14.2 (17.2.2017.0).exe 2017-02-23 16:58 - 2017-02-23 16:58 - 01983424 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437866.dll 2017-02-23 16:58 - 2017-02-23 16:58 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437866.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 40192056 _____ C:\Windows\system32\nvcompiler.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 35272760 _____ C:\Windows\SysWOW64\nvcompiler.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 34937280 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 28212280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 19006832 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 16398896 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 14674896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 14373824 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2017-02-23 16:57 - 2017-02-23 16:57 - 13377072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 11122912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 11019704 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 09305984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 08990072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 03627064 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 03187256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 01051584 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00989120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00961080 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00912440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00687224 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00611384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00576192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00504104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00500792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00425288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00408272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2017-02-23 16:57 - 2017-02-23 16:57 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2017-02-23 11:19 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2017-02-23 11:19 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2017-02-23 11:19 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2017-02-23 11:18 - 2017-02-23 11:18 - 00021656 _____ (Echobit, LLC) C:\Windows\system32\Drivers\evolve.sys 2017-02-23 11:18 - 2017-02-23 11:18 - 00002019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolve.lnk 2017-02-23 11:14 - 2017-02-23 11:14 - 00000000 ____D C:\Program Files\Echobit 2017-02-23 11:13 - 2017-02-23 11:13 - 03258328 _____ (Echobit LLC) C:\Users\Admin\Downloads\EvolveSetup.exe 2017-02-23 11:13 - 2017-02-23 11:13 - 00000000 ____D C:\Users\Admin\AppData\Local\Echobit 2017-02-23 11:13 - 2017-02-23 11:13 - 00000000 ____D C:\ProgramData\Echobit 2017-02-23 10:54 - 2017-02-23 10:54 - 00000000 ____D C:\ProgramData\Tunngle 2017-02-23 10:52 - 2017-02-23 10:53 - 04843904 _____ (Tunngle.net GmbH ) C:\Users\Admin\Downloads\Tunngle_Setup_v5.8.8.exe 2017-02-23 09:50 - 2017-02-23 09:50 - 00000338 _____ C:\Users\Admin\Downloads\language changer.rar 2017-02-23 09:26 - 2017-02-23 09:26 - 00000000 ____D C:\Users\Admin\Documents\Assassin's Creed Rogue 2017-02-23 07:10 - 2017-02-23 07:59 - 1450666213 _____ C:\Users\Admin\Downloads\Nowy folder.rar 2017-02-23 07:09 - 2017-02-23 07:49 - 1450666341 _____ C:\Users\Admin\Downloads\69a799a82286e7f75032f6e7b9a9b90e2649a7e4.zip 2017-02-22 15:55 - 2017-02-22 15:55 - 00001062 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk 2017-02-22 15:53 - 2017-02-22 15:55 - 00000000 ____D C:\Users\Admin\AppData\Roaming\GameRanger 2017-02-22 15:49 - 2017-02-22 15:52 - 00114352 _____ (GameRanger Technologies) C:\Users\Admin\Downloads\GameRanger 4.9 [1].exe 2017-02-22 15:46 - 2017-02-22 15:47 - 01236848 _____ ( ) C:\Users\Admin\Downloads\GameRanger 4.9.exe 2017-02-22 09:26 - 2017-02-22 11:55 - 1695268739 _____ C:\Users\Admin\Downloads\Legend of Spyro, The - A New Beginning (USA).7z 2017-02-21 13:14 - 2017-02-21 13:14 - 00059278 _____ C:\Users\Admin\Downloads\Moneymod_50kk.exe 2017-02-21 13:12 - 2017-02-21 13:14 - 27134102 _____ C:\Users\Admin\Downloads\FS17_Ursus_1614.exe 2017-02-21 13:10 - 2017-02-21 13:11 - 17008931 _____ C:\Users\Admin\Downloads\PigFoodMixer_FS17_placeable.exe 2017-02-20 13:26 - 2017-02-20 14:19 - 678527157 _____ C:\Users\Admin\Downloads\Scaler (Europe) (En,De,Es,It).7z 2017-02-19 06:30 - 2017-02-23 17:38 - 00002898 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Admin) 2017-02-18 09:49 - 2017-02-18 09:49 - 00000363 _____ C:\Users\Admin\Desktop\Komputer.lnk 2017-02-17 20:21 - 2017-02-17 20:21 - 00001533 _____ C:\Users\Admin\Desktop\ts3client_win64.lnk 2017-02-17 19:12 - 2017-02-17 19:13 - 04729171 _____ C:\Users\Admin\Downloads\hlm-gsaeu.rar 2017-02-17 19:10 - 2017-02-17 19:11 - 01910807 _____ C:\Users\Admin\Downloads\ppt-gasa.7z 2017-02-17 19:08 - 2017-02-17 19:08 - 00098304 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt.dll 2017-02-17 14:04 - 2017-02-17 14:19 - 00000000 ____D C:\Users\Admin\AppData\Local\TeamSpeak 3 2017-02-17 14:04 - 2017-02-17 14:04 - 00000000 ____D C:\Users\Admin\.TeamSpeak 3 2017-02-17 13:54 - 2015-07-18 14:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2017-02-17 13:54 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2017-02-16 19:31 - 2017-02-16 19:43 - 00000000 ____D C:\Users\Admin\AppData\Roaming\TSNotifier 2017-02-16 19:25 - 2017-02-17 08:19 - 00000000 ____D C:\Users\Admin\Downloads\Assassin's Creed Rogue PC full game + DLC ^^nosTEAM^^ 2017-02-16 19:23 - 2017-02-16 19:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TSNotifier 2017-02-16 19:23 - 2017-02-16 19:23 - 00000000 ____D C:\Program Files (x86)\TS Notifier 2017-02-16 19:20 - 2017-02-16 19:22 - 28583936 _____ C:\Users\Admin\Downloads\SetupTSNotifierV1.6.0c.msi 2017-02-16 19:12 - 2017-02-16 19:23 - 53620399 _____ C:\Users\Admin\Downloads\ASCRogue.exe 2017-02-16 13:37 - 2017-02-22 16:06 - 00003544 _____ C:\Program Files (x86)\metadata 2017-02-16 13:37 - 2017-02-16 13:37 - 00002261 _____ C:\Users\Administrator\Desktop\Google Chrome.lnk 2017-02-16 13:37 - 2017-02-16 13:37 - 00001417 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2017-02-16 13:37 - 2017-02-16 13:37 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\AVAST Software 2017-02-16 13:37 - 2017-02-16 13:37 - 00000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA Corporation 2017-02-16 13:37 - 2017-02-16 13:37 - 00000000 ____D C:\Users\Administrator\AppData\Local\Google 2017-02-16 13:37 - 2017-02-16 13:37 - 00000000 ____D C:\Users\Administrator\AppData\Local\Goldass 2017-02-16 13:36 - 2017-02-16 13:37 - 00001451 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2017-02-16 13:36 - 2017-02-16 13:36 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\ProductData 2017-02-16 13:35 - 2017-02-16 13:38 - 00000000 ____D C:\Users\Administrator\AppData\LocalLow\IObit 2017-02-16 13:35 - 2017-02-16 13:36 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\IObit 2017-02-16 13:35 - 2017-02-16 13:35 - 00000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA 2017-02-16 13:34 - 2017-02-16 13:36 - 00000000 ____D C:\Users\Administrator 2017-02-16 13:34 - 2017-02-16 13:34 - 00000020 ___SH C:\Users\Administrator\ntuser.ini 2017-02-16 13:34 - 2017-02-16 13:34 - 00000000 _SHDL C:\Users\Administrator\Ustawienia lokalne 2017-02-16 13:34 - 2017-02-16 13:34 - 00000000 _SHDL C:\Users\Administrator\Szablony 2017-02-16 13:34 - 2017-02-16 13:34 - 00000000 _SHDL C:\Users\Administrator\Moje dokumenty 2017-02-16 13:34 - 2017-02-16 13:34 - 00000000 _SHDL C:\Users\Administrator\Menu Start 2017-02-16 13:34 - 2017-02-16 13:34 - 00000000 _SHDL C:\Users\Administrator\Documents\Moje wideo 2017-02-16 13:34 - 2017-02-16 13:34 - 00000000 _SHDL C:\Users\Administrator\Documents\Moje obrazy 2017-02-16 13:34 - 2017-02-16 13:34 - 00000000 _SHDL C:\Users\Administrator\Documents\Moja muzyka 2017-02-16 13:34 - 2017-02-16 13:34 - 00000000 _SHDL C:\Users\Administrator\Dane aplikacji 2017-02-16 13:34 - 2017-02-16 13:34 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2017-02-16 13:34 - 2017-02-16 13:34 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Historia 2017-02-16 13:34 - 2017-02-16 13:34 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Dane aplikacji 2017-02-16 13:34 - 2011-04-12 14:32 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Media Center Programs 2017-02-16 13:13 - 2017-02-16 13:13 - 00003110 _____ C:\Windows\System32\Tasks\{38501818-FB66-4A49-BF65-CE68AB589657} 2017-02-15 12:48 - 2017-02-15 12:48 - 00001412 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2017-02-15 12:46 - 2017-02-23 16:57 - 16510160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2017-02-15 12:46 - 2017-02-23 16:57 - 00492744 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2017-02-15 12:46 - 2017-02-23 16:57 - 00042606 _____ C:\Windows\system32\nvinfo.pb 2017-02-15 12:46 - 2017-02-15 12:46 - 01985080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437849.dll 2017-02-15 12:46 - 2017-02-15 12:46 - 01591352 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437849.dll 2017-02-15 12:46 - 2017-02-15 12:46 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json 2017-02-15 12:46 - 2017-02-15 12:46 - 00000669 _____ C:\Windows\system32\nv-vk64.json 2017-02-15 12:45 - 2017-02-15 12:45 - 00217528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2017-02-15 12:45 - 2017-02-15 12:45 - 00047664 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2017-02-15 12:44 - 2017-01-20 19:36 - 00158264 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2017-02-15 12:44 - 2017-01-20 19:36 - 00126008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2017-02-15 12:44 - 2017-01-20 19:36 - 00059448 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys 2017-02-15 12:44 - 2017-01-20 19:36 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2017-02-15 11:46 - 2017-02-15 11:46 - 00001002 _____ C:\Users\Admin\Desktop\Launch Star Wars JK Jedi Academy.lnk 2017-02-14 20:40 - 2017-02-14 20:40 - 00003048 _____ C:\Windows\System32\Tasks\{80FF93B5-4D1B-4C18-A704-5A8EC1E96711} 2017-02-14 20:39 - 2017-02-14 20:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LucasArts 2017-02-14 20:38 - 2017-02-14 20:38 - 00000000 ____D C:\Program Files (x86)\LucasArts 2017-02-14 18:05 - 2017-02-14 18:05 - 00000000 ____D C:\Users\Admin\Downloads\JKJA 2017-02-14 18:01 - 2017-02-14 18:01 - 00000000 ____D C:\Users\Admin\Downloads\Jedi Academy 2017-02-14 13:20 - 2017-02-17 11:13 - 00000000 ____D C:\Windows\system32\log 2017-02-14 13:18 - 2017-02-15 09:27 - 00000000 ____D C:\Program Files (x86)\bilibili 2017-02-13 18:36 - 2017-02-13 18:43 - 59886097 _____ C:\Users\Admin\Downloads\ASCUnity-lang-launchers.zip 2017-02-13 16:33 - 2017-02-13 17:26 - 00000000 ____D C:\Users\Admin\Downloads\Assassins Creed Unity update-pack + DLC ^^nosTEAM^^ 2017-02-13 14:05 - 2017-02-13 14:05 - 00000000 _____ C:\Windows\SysWOW64\last.dump 2017-02-13 12:47 - 2017-02-18 09:48 - 00000000 ____D C:\Users\Admin\Documents\GTA San Andreas User Files 2017-02-13 12:28 - 2017-02-13 15:09 - 543133230 _____ C:\Users\Admin\Downloads\ACUnity_patch_1.5.0.exe 2017-02-13 12:26 - 2017-02-13 12:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2017-02-13 12:26 - 2017-02-13 12:26 - 00000000 ____D C:\Program Files (x86)\Rockstar Games 2017-02-13 11:57 - 2017-02-13 11:57 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Firefox 2017-02-13 11:57 - 2017-02-13 11:57 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla 2017-02-13 11:57 - 2017-02-13 11:57 - 00000000 ____D C:\Users\Admin\AppData\Local\Firefox 2017-02-13 11:56 - 2017-02-13 11:57 - 00000000 ____D C:\Program Files (x86)\58A190F1_jumpeasy 2017-02-13 11:54 - 2017-02-13 11:54 - 00000000 ____D C:\Users\Admin\AppData\Local\Goldass 2017-02-13 11:54 - 2017-02-13 11:54 - 00000000 ____D C:\ProgramData\Apple Computer 2017-02-13 11:54 - 2017-02-13 11:54 - 00000000 ____D C:\Program Files (x86)\Goldass 2017-02-13 11:52 - 2017-02-13 11:54 - 03900328 _____ C:\Users\Admin\Downloads\Niepotwierdzony 334193.crdownload 2017-02-13 11:50 - 2017-02-14 13:18 - 00001869 _____ C:\Users\Public\Desktop\Internet Explorer.lnk 2017-02-13 11:49 - 2017-02-18 14:21 - 00000000 ____D C:\Program Files (x86)\Explorer 2017-02-13 11:13 - 2017-02-13 11:17 - 01669448 _____ C:\Users\Admin\Downloads\ACUnity_patch_1.5.0.exe.crdownload 2017-02-13 10:48 - 2017-02-13 10:53 - 53570417 _____ C:\Users\Admin\Downloads\ASCUnity-DLC.exe 2017-02-13 10:09 - 2017-02-23 17:19 - 00000000 ____D C:\Users\Admin\Documents\Assassin's Creed Unity 2017-02-13 09:22 - 2017-02-23 07:46 - 00000905 _____ C:\Users\Admin\Desktop\visit www.nosteam.ro.lnk 2017-02-13 09:22 - 2017-02-13 10:08 - 00001731 _____ C:\Users\Admin\Desktop\Play Assassin's Creed Unity.lnk 2017-02-12 17:21 - 2017-02-12 17:21 - 00001222 _____ C:\Users\Admin\Desktop\Sky Bubbles.lnk 2017-02-12 17:21 - 2017-02-12 17:21 - 00000000 ____D C:\Users\Admin\AppData\Roaming\VisualShape 2017-02-12 17:21 - 2017-02-12 17:21 - 00000000 ____D C:\ProgramData\VisualShape 2017-02-12 17:21 - 2017-02-12 17:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ToomkyGames 2017-02-12 17:20 - 2017-02-12 17:20 - 05648229 _____ (ToomkyGames.com ) C:\Users\Admin\Downloads\SkyBubblesSetup [1].exe 2017-02-12 17:20 - 2017-02-12 17:20 - 00000000 ____D C:\Program Files (x86)\ToomkyGames.com 2017-02-12 17:16 - 2017-02-12 17:17 - 01310240 _____ (Cek ) C:\Users\Admin\Downloads\SkyBubblesSetup.exe 2017-02-10 21:42 - 2017-02-10 21:42 - 04121760 _____ (Husdawg, LLC) C:\Users\Admin\Downloads\Detection (3).exe 2017-02-10 21:38 - 2017-02-10 21:39 - 04121760 _____ (Husdawg, LLC) C:\Users\Admin\Downloads\Detection (2).exe 2017-02-10 18:04 - 2017-02-10 18:05 - 00109930 _____ C:\Users\Admin\Downloads\Call.of.Duty.Advanced.Warfare.SP.Update.1.Fix.Only-3DM.7z 2017-02-10 18:04 - 2017-02-10 18:04 - 00785867 _____ C:\Users\Admin\Downloads\rld-codawu1.7z 2017-02-10 18:02 - 2017-02-10 18:02 - 00812676 _____ C:\Users\Admin\Downloads\rld-codawu3.7z 2017-02-10 16:24 - 2017-02-10 16:46 - 78660400 _____ (NVIDIA Corporation) C:\Users\Admin\Downloads\GeForce_Experience_v3.3.0.95.exe 2017-02-10 16:11 - 2017-02-10 16:12 - 00355242 _____ C:\Users\Admin\Downloads\codex-call.of.duty.advanced.warfare.7z 2017-02-10 15:49 - 2017-02-10 15:51 - 04380737 _____ C:\Users\Admin\Downloads\CALL.OF.DUTY.ADVANCED.WARFARE.V1.3.0.1120409.CPU4RFIX.CODERROR.ZIPd 2017-02-10 14:55 - 2017-02-10 14:56 - 00868351 _____ C:\Users\Admin\Downloads\CALL.OF.DUTY.ADVANCED.WARFARE.V1.0.ALL.RELOADED.NODVD.ZIPd 2017-02-08 19:14 - 2016-10-11 14:12 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2017-02-07 17:34 - 2017-02-07 17:34 - 01688168 _____ C:\Users\Admin\Downloads\_Forge-Modloader-1.7.10-Installer.jar 2017-02-07 17:32 - 2017-02-07 17:32 - 00912432 _____ C:\Users\Admin\Downloads\My people Mod 1.6.4.zip 2017-02-06 20:52 - 2017-02-07 11:06 - 00110536 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2017-02-06 20:51 - 2017-02-06 20:51 - 00000000 ____D C:\Program Files\Malwarebytes 2017-02-05 09:12 - 2017-02-13 17:20 - 59318272 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak 2017-02-05 09:12 - 2017-02-13 17:20 - 59318272 _____ C:\Windows\system32\config\SOFTWARE.iodefrag 2017-02-05 09:12 - 2017-02-13 17:20 - 01142784 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak 2017-02-05 09:12 - 2017-02-13 17:20 - 01142784 _____ C:\Windows\system32\config\DEFAULT.iodefrag 2017-02-05 09:12 - 2017-02-13 17:20 - 00028672 _____ C:\Windows\system32\config\SAM.iodefrag.bak 2017-02-05 09:12 - 2017-02-13 17:20 - 00028672 _____ C:\Windows\system32\config\SAM.iodefrag 2017-02-05 09:12 - 2017-02-13 17:20 - 00024576 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak 2017-02-05 09:12 - 2017-02-13 17:20 - 00024576 _____ C:\Windows\system32\config\SECURITY.iodefrag 2017-02-04 09:28 - 2014-10-16 10:27 - 00027424 _____ (IObit) C:\Windows\system32\RegistryDefragBootTime.exe 2017-02-04 09:10 - 2017-02-06 13:10 - 00000000 ____D C:\Program Files (x86)\81bd26iq 2017-02-04 08:49 - 2017-02-04 08:49 - 00000000 ____D C:\Program Files\81bd26iq 2017-02-03 20:00 - 2017-02-08 19:05 - 00000000 ____D C:\Users\Admin\Downloads\Assassin's Creed Unity PC game ^^nosTEAM^^ 2017-02-03 19:34 - 2017-02-03 19:53 - 55072674 _____ C:\Users\Admin\Downloads\ASCUnity.exe 2017-02-03 14:41 - 2017-02-03 14:41 - 00001733 _____ C:\Users\Admin\Desktop\chrome.lnk 2017-02-03 12:12 - 2017-02-03 12:12 - 00000000 ____D C:\Users\Admin\AppData\Local\Macromedia 2017-02-02 21:46 - 2017-02-02 21:46 - 01944616 _____ C:\Users\Admin\Downloads\WiperSoft-installer.exe 2017-02-02 19:21 - 2017-02-02 19:21 - 00000000 ____D C:\Program Files\TDLJ8RIRG1 2017-02-02 19:20 - 2017-02-02 19:20 - 00000000 ____D C:\Program Files (x86)\7-Zip 2017-02-02 19:19 - 2017-02-02 19:19 - 00004252 _____ C:\Windows\System32\Tasks\SMW_UpdateTask_Time_333532343735303539352d3437415a556c2a3223346c41 2017-02-02 19:13 - 2017-02-02 19:13 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Hive Cluster 2017-02-02 19:12 - 2017-02-02 19:12 - 00001411 _____ C:\Users\Admin\Desktop\Antichamber.lnk 2017-02-02 19:12 - 2017-02-02 19:12 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Antichamber 2017-02-02 19:11 - 2017-02-02 19:11 - 00000000 ____D C:\ProgramData\Avira 2017-02-02 19:11 - 2017-02-02 19:11 - 00000000 ____D C:\ProgramData\Avg 2017-02-02 19:10 - 2017-02-11 09:03 - 00000000 ____D C:\Program Files (x86)\Platergh 2017-02-02 19:10 - 2017-02-08 19:05 - 00000000 ____D C:\Users\Admin\AppData\Local\Sheferckseqy 2017-02-02 19:09 - 2017-02-02 19:09 - 00000000 ____D C:\Users\Admin\Downloads\-Oceanofgames.com-Antichamber 2017-02-02 19:09 - 2017-02-02 19:09 - 00000000 ____D C:\Program Files (x86)\R.G. Mechanics 2017-02-02 19:08 - 2017-02-02 19:08 - 02007040 _____ C:\Users\Admin\Downloads\AssassinsCreedUnityGoldEditionPCRepackTorrent.rar 2017-02-02 19:07 - 2017-02-02 19:07 - 02006806 _____ C:\Users\Admin\Downloads\AssassinsCreedUnityGoldEditionPCRepackTorrent.rar.crdownload 2017-02-02 18:25 - 2017-02-02 19:08 - 304228357 _____ C:\Users\Admin\Downloads\-Oceanofgames.com-Antichamber.zip 2017-02-01 15:48 - 2017-02-01 15:48 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-02-01 15:47 - 2017-02-01 15:48 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\Admin\Downloads\iExplore.exe 2017-02-01 15:45 - 2017-02-01 15:48 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Admin\Downloads\mbam-setup-2.0.2.1012.exe 2017-01-31 19:30 - 2017-01-31 19:30 - 00000869 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2017-01-31 19:04 - 2017-02-18 14:21 - 00000000 ____D C:\Program Files (x86)\7451586f-a27c-4fd1-bd5c-9cde21d5fbc71485885968 2017-01-31 19:02 - 2017-02-18 13:57 - 00000000 ____D C:\Users\Admin\Downloads\cpufsb-2218[aRb]Cracked 2017-01-31 18:33 - 2017-02-02 10:23 - 00000000 ____D C:\Program Files (x86)\CPUFSB 2017-01-31 18:33 - 2017-01-31 18:33 - 01066861 _____ C:\Users\Admin\Downloads\CPUFSB9.exe 2017-01-31 18:33 - 2017-01-31 18:33 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CPUFSB 2017-01-31 18:33 - 2017-01-31 18:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUFSB 2017-01-31 15:02 - 2017-01-31 15:03 - 04015056 _____ C:\Users\Admin\Downloads\adwcleaner_6.043_www.INSTALKI.pl.exe 2017-01-29 13:25 - 2017-01-29 13:25 - 00003997 _____ C:\Users\Admin\Downloads\59_Podanie.rar 2017-01-29 12:47 - 2017-01-29 12:47 - 00092882 _____ C:\Users\Admin\Downloads\cv (2).pdf 2017-01-29 12:38 - 2017-01-29 12:38 - 00092882 _____ C:\Users\Admin\Downloads\cv (1) (1).pdf 2017-01-29 12:33 - 2017-01-29 12:33 - 00092882 _____ C:\Users\Admin\Downloads\cv (1).pdf 2017-01-29 12:25 - 2017-01-29 12:25 - 00092915 _____ C:\Users\Admin\Downloads\cv.pdf 2017-01-28 19:05 - 2017-01-28 19:08 - 11762174 _____ C:\Users\Admin\Downloads\Nefaz8560_WR.exe 2017-01-28 13:21 - 2017-01-28 13:24 - 15999798 _____ C:\Users\Admin\Downloads\BaleMaster_Auto_Load.exe 2017-01-28 13:12 - 2017-01-28 13:14 - 06735454 _____ C:\Users\Admin\Downloads\FS17_brantnerDPW18000.exe 2017-01-28 13:04 - 2017-01-28 13:05 - 05119650 _____ C:\Users\Admin\Downloads\FS17_marshallBC32.exe 2017-01-25 20:45 - 2017-01-25 20:51 - 00000000 ____D C:\Program Files\Farming Simulator 17 2017-01-25 20:45 - 2017-01-25 20:45 - 00000845 _____ C:\Users\Public\Desktop\Farming Simulator 17.lnk 2017-01-25 20:39 - 2017-01-25 20:39 - 00106408 _____ (Valve Corporation) C:\Users\Admin\Downloads\steam_api.dll- ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-02-23 18:11 - 2016-08-19 17:19 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2017-02-23 17:27 - 2009-07-14 05:45 - 00031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-02-23 17:27 - 2009-07-14 05:45 - 00031088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-02-23 17:22 - 2016-08-19 17:55 - 00000000 ____D C:\ProgramData\NVIDIA 2017-02-23 17:20 - 2016-08-22 21:36 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps 2017-02-23 17:18 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-02-23 17:15 - 2017-01-03 21:38 - 00000000 ____D C:\AdwCleaner 2017-02-23 17:06 - 2016-12-30 09:24 - 00002286 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk 2017-02-23 17:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2017-02-23 16:57 - 2016-08-19 17:51 - 19110088 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2017-02-23 16:57 - 2016-08-19 17:51 - 04064088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2017-02-23 16:57 - 2016-08-19 17:51 - 03583560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2017-02-23 16:53 - 2016-11-09 14:40 - 00003900 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1472110760 2017-02-23 16:53 - 2016-08-25 08:28 - 00000000 ____D C:\Program Files (x86)\Opera 2017-02-23 14:21 - 2016-08-20 13:12 - 00000000 ____D C:\Program Files (x86)\Steam 2017-02-23 13:54 - 2016-10-15 21:17 - 00000000 ____D C:\Users\Admin\Documents\Euro Truck Simulator 2 2017-02-23 13:34 - 2016-09-13 16:24 - 00000000 ____D C:\Users\Admin\AppData\Roaming\TS3Client 2017-02-23 11:31 - 2016-11-08 20:37 - 00000000 ____D C:\Users\Admin\Desktop\Gracjan 2017-02-23 11:12 - 2016-08-20 20:02 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Tunngle 2017-02-23 10:54 - 2016-08-20 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle 2017-02-23 10:54 - 2016-08-20 20:02 - 00000000 ____D C:\Program Files (x86)\Tunngle 2017-02-23 10:54 - 2016-08-19 17:16 - 00000000 ____D C:\Users\Admin\AppData\Local\VirtualStore 2017-02-23 10:45 - 2017-01-10 14:23 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2017-02-23 07:46 - 2016-08-20 13:04 - 00000000 ____D C:\Games 2017-02-23 07:07 - 2016-12-27 10:16 - 00002262 _____ C:\Users\Public\Desktop\Advanced SystemCare 10.lnk 2017-02-22 23:56 - 2016-08-19 17:21 - 00000000 ____D C:\ProgramData\Skype 2017-02-22 13:59 - 2016-08-29 19:55 - 00000000 ____D C:\ProgramData\ProductData 2017-02-22 13:06 - 2017-01-09 11:08 - 00000153 _____ C:\Users\Admin\Downloads\usbutil.rcn 2017-02-22 12:49 - 2016-09-13 16:38 - 00000000 ____D C:\Program Files (x86)\Overwolf 2017-02-22 10:48 - 2016-10-15 06:45 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client 2017-02-21 20:39 - 2016-08-19 17:21 - 00000000 ____D C:\Users\Admin\AppData\Roaming\AIMP 2017-02-21 19:46 - 2016-08-19 17:22 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2017-02-21 19:46 - 2016-08-19 17:22 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-02-21 13:31 - 2016-08-20 19:39 - 00000000 ____D C:\Users\Admin\AppData\Roaming\uTorrent 2017-02-20 21:30 - 2011-04-12 14:21 - 00739694 _____ C:\Windows\system32\perfh015.dat 2017-02-20 21:30 - 2011-04-12 14:21 - 00155268 _____ C:\Windows\system32\perfc015.dat 2017-02-20 21:30 - 2009-07-14 06:13 - 01668226 _____ C:\Windows\system32\PerfStringBackup.INI 2017-02-20 17:37 - 2016-08-20 20:21 - 00000000 ___SD C:\Users\Admin\AppData\LocalLow\Temp 2017-02-20 15:25 - 2016-08-23 06:01 - 00000000 ____D C:\Users\Admin\AppData\Roaming\DAEMON Tools Lite 2017-02-19 08:47 - 2016-09-13 14:00 - 00007625 _____ C:\Users\Admin\AppData\Local\Resmon.ResmonCfg 2017-02-19 07:53 - 2017-01-07 13:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart File Advisor 2017-02-18 14:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF 2017-02-18 13:57 - 2017-01-07 13:13 - 00000000 ____D C:\Program Files (x86)\Smart File Advisor 2017-02-18 11:33 - 2016-09-13 16:23 - 00000000 ____D C:\Users\Admin\AppData\Local\Overwolf 2017-02-18 11:01 - 2016-10-11 14:13 - 00004180 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2017-02-18 09:57 - 2016-08-20 19:41 - 00000000 ____D C:\Users\Admin\Desktop\Patryk 2017-02-17 20:12 - 2016-09-13 16:36 - 00000000 ____D C:\ProgramData\Overwolf 2017-02-17 14:04 - 2016-08-19 17:15 - 00000000 ____D C:\Users\Admin 2017-02-17 13:54 - 2016-08-19 17:52 - 00000000 ____D C:\ProgramData\Package Cache 2017-02-16 13:37 - 2009-07-14 05:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2017-02-16 13:35 - 2016-08-20 12:44 - 00000000 ____D C:\Program Files (x86)\Google 2017-02-15 12:50 - 2016-08-19 17:53 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2017-02-15 12:50 - 2016-08-19 17:53 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2017-02-15 12:48 - 2016-08-19 17:49 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2017-02-15 12:47 - 2016-09-09 09:28 - 00003742 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-02-15 12:47 - 2016-08-19 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2017-02-15 12:46 - 2016-12-17 22:30 - 00004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-02-15 12:45 - 2016-09-22 17:50 - 00003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-02-15 12:45 - 2016-09-09 09:27 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-02-15 12:45 - 2016-09-09 09:27 - 00003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-02-15 12:45 - 2016-09-09 09:27 - 00003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-02-15 12:45 - 2016-09-09 09:27 - 00003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-02-15 12:45 - 2016-08-19 17:51 - 01600056 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2017-02-15 11:13 - 2016-08-19 17:19 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-02-15 11:13 - 2016-08-19 17:19 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-02-15 11:13 - 2016-08-19 17:19 - 00003868 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2017-02-15 11:13 - 2016-08-19 17:19 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2017-02-15 11:13 - 2016-08-19 17:19 - 00000000 ____D C:\Windows\system32\Macromed 2017-02-15 09:28 - 2016-12-17 22:31 - 00003135 _____ C:\ProgramData\NvTelemetryContainer.log_backup1 2017-02-14 20:39 - 2016-08-20 08:16 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-02-14 13:18 - 2016-08-20 12:56 - 00002266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-02-14 13:18 - 2016-08-19 17:16 - 00002298 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2017-02-10 21:32 - 2016-12-15 13:49 - 00000000 ____D C:\Program Files (x86)\Activision 2017-02-10 14:26 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2017-02-08 19:15 - 2016-10-11 14:15 - 00001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2017-02-08 19:05 - 2016-12-31 10:33 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\ADSRemoval 2017-02-08 19:05 - 2016-12-28 09:52 - 00000000 ____D C:\Program Files (x86)\LEGO Batman 3 - Beyond Gotham 2017-02-08 19:05 - 2016-12-23 15:50 - 00000000 ____D C:\Users\Admin\Documents\Assassin's Creed IV Black Flag 2017-02-08 19:05 - 2016-10-24 21:54 - 00000000 ____D C:\Users\Admin\Documents\Assassin's Creed III 2017-02-08 19:05 - 2016-10-22 11:25 - 00000000 ____D C:\Users\Admin\AppData\Roaming\.minecraftzyczu 2017-02-08 19:05 - 2016-10-11 14:13 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software 2017-02-08 19:05 - 2016-09-07 15:04 - 00000000 ____D C:\Users\Admin\Documents\Arma 3 2017-02-08 19:05 - 2016-09-02 13:58 - 00000000 ____D C:\Users\Admin\Documents\Witcher 2 2017-02-08 19:05 - 2016-08-29 19:55 - 00000000 ____D C:\Users\Admin\AppData\Roaming\ProductData 2017-02-08 19:05 - 2016-08-29 19:55 - 00000000 ____D C:\Users\Admin\AppData\Roaming\IObit 2017-02-08 19:05 - 2016-08-29 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 2017-02-08 19:05 - 2016-08-29 19:55 - 00000000 ____D C:\ProgramData\IObit 2017-02-08 19:05 - 2016-08-20 20:02 - 00000000 ____D C:\Users\Public\Documents\Tunngle 2017-02-08 19:05 - 2016-08-19 17:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-02-08 19:05 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat 2017-02-08 19:04 - 2016-12-26 20:15 - 00000000 ____D C:\Users\Admin\Documents\Assassin's Creed IV - Black Flag Saves 2017-02-08 19:04 - 2016-10-22 11:26 - 00000000 ____D C:\Users\Admin\AppData\Roaming\.minecraft 2017-02-08 19:04 - 2016-09-08 16:58 - 00000000 ____D C:\Users\Admin\AppData\Roaming\HPData_653 2017-02-08 19:04 - 2016-08-20 13:47 - 00000000 ____D C:\Users\Admin\Documents\my games 2017-02-03 14:38 - 2017-01-19 12:31 - 00000000 ____D C:\Program Files\MiniTool Partition Wizard Free 9.1 2017-02-03 12:07 - 2016-08-29 19:55 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\IObit 2017-02-02 22:53 - 2016-08-19 17:21 - 00000000 ___RD C:\Program Files (x86)\Skype 2017-02-02 22:12 - 2016-12-26 22:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assassin's Creed IV - Black Flag 2017-02-02 22:12 - 2016-12-07 17:13 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks 2017-02-02 22:12 - 2016-11-30 16:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends 2017-02-02 22:12 - 2016-10-09 06:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Company of Heroes 2 Master Collection 2017-02-02 22:12 - 2016-09-13 16:38 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf 2017-02-02 22:12 - 2016-08-20 13:04 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Warships 2017-02-02 21:51 - 2017-01-07 19:40 - 00000000 ____D C:\Quake2 2017-02-02 19:55 - 2016-08-19 17:16 - 00000997 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2017-02-02 19:12 - 2016-10-09 13:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics 2017-02-02 19:11 - 2016-12-23 22:34 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.6 2017-02-02 19:11 - 2016-10-24 05:58 - 00000000 ____D C:\Program Files (x86)\Ubisoft 2017-02-02 07:34 - 2009-07-14 06:08 - 00032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2017-02-01 15:41 - 2016-08-20 13:08 - 00000000 ____D C:\Users\Admin\AppData\Roaming\DVDVideoSoft 2017-01-31 18:22 - 2016-10-24 06:16 - 00000000 ____D C:\Users\Admin\AppData\Local\Ubisoft Game Launcher 2017-01-25 16:10 - 2016-08-19 17:43 - 00000000 ____D C:\Users\Admin\AppData\Local\Microsoft Help ==================== Pliki w katalogu głównym wybranych folderów ======= 2017-02-16 13:37 - 2017-02-22 16:06 - 0003544 _____ () C:\Program Files (x86)\metadata 2017-02-23 18:24 - 2017-02-23 18:35 - 0000040 _____ () C:\Program Files (x86)\settings.dat 2016-09-13 14:00 - 2017-02-19 08:47 - 0007625 _____ () C:\Users\Admin\AppData\Local\Resmon.ResmonCfg 2016-08-22 13:35 - 2016-08-22 13:35 - 0000057 _____ () C:\ProgramData\Ament.ini 2016-12-17 22:31 - 2017-02-15 12:45 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log 2016-12-17 22:31 - 2017-02-15 09:28 - 0003135 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1 Pliki do przeniesienia lub usunięcia: ==================== C:\Users\Admin\update-bf3nosTEAM.bat Niektóre pliki w TEMP: ==================== 2017-02-17 13:52 - 2017-02-17 13:52 - 14773216 _____ (Microsoft Corporation) C:\Users\Admin\AppData\Local\Temp\vcredist_x64.exe ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2017-02-23 08:21 ==================== Koniec FRST.txt ============================