Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 21-06-2017 01 Uruchomiony przez user (administrator) USER-KOMPUTER (22-06-2017 17:53:40) Uruchomiony z C:\Users\user\Downloads Załadowane profile: user (Dostępne profile: user) Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: IE) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\afwServ.exe () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe (Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Razer Inc) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe () C:\Program Files\FACEIT Client\faceitclient.exe ==================== Rejestr (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7640944 2014-09-29] (Realtek Semiconductor) HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-31] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [263232 2017-06-06] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [6153128 2017-05-22] (LogMeIn Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation) HKU\S-1-5-21-1322775476-4237890299-1954743875-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd) HKU\S-1-5-21-1322775476-4237890299-1954743875-1000\...\Run: [GoogleChromeAutoLaunch_4E874A737D5662A34EBBEADB3A9C4A09] => C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe [1143640 2017-05-09] (Google Inc.) HKU\S-1-5-21-1322775476-4237890299-1954743875-1000\...\Run: [SteamServerBrowser] => C:\Program Files (x86)\SteamServerBrowser\SteamServerBrowser.exe [228352 2017-02-26] () HKU\S-1-5-21-1322775476-4237890299-1954743875-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-04] (Skype Technologies S.A.) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{4EEDA541-1214-4C7D-ACF1-19C0DAC5AFAD}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{B31119CA-7622-4654-A1E5-8B8735FEB9B7}: [DhcpNameServer] 194.204.152.34 194.204.159.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA HKU\S-1-5-21-1322775476-4237890299-1954743875-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-1322775476-4237890299-1954743875-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-1322775476-4237890299-1954743875-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-06-17] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-06-17] (Oracle Corporation) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22] (Adobe Systems Incorporated) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-09] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-09] (Oracle Corporation) FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_131.dll [2017-06-16] () FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-06-17] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-06-17] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-16] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-29] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-29] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-09] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-09] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-06-08] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-06-08] (NVIDIA Corporation) FF Plugin-x32: @real.com/nppl3260;version=6.0.12.450 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll [2010-02-15] (RealNetworks, Inc.) FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.448 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll [2010-02-15] (RealNetworks, Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin HKU\S-1-5-21-1322775476-4237890299-1954743875-1000: @tools.google.com/Google Update;version=3 -> C:\Users\user\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.) FF Plugin HKU\S-1-5-21-1322775476-4237890299-1954743875-1000: @tools.google.com/Google Update;version=9 -> C:\Users\user\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.) Chrome: ======= CHR HomePage: Default -> msn.com CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC=__PARAM__&q={searchTerms} CHR DefaultSearchKeyword: Default -> bing.com CHR DefaultSuggestURL: Default -> hxxp://www.bing.com/osjson.aspx?FORM=__PARAM__DF&PC=__PARAM__&query={searchTerms} CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default [2017-06-22] CHR Extension: (Easy Auto Refresh) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2017-06-22] CHR Extension: (Dokumenty Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-01] CHR Extension: (Dysk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-01] CHR Extension: (Dark Skin for Youtube™) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfeknfgchonpnofdjokchhdhdnddhglm [2017-04-28] CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-01] CHR Extension: (Steam Inventory Helper) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2017-06-07] CHR Extension: (Bing) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2017-02-10] CHR Extension: (Dokumenty Google offline) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-01] CHR Extension: (AdBlock) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-22] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09] CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-01] CHR Extension: (Chrome Media Router) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-17] CHR HKU\S-1-5-21-1322775476-4237890299-1954743875-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx StartMenuInternet: Google Chrome.QGLTRYBHMC33IF633C4F62ZOG4 - C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] () R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [264432 2017-06-06] (AVG Technologies CZ, s.r.o.) R2 AVG Firewall; C:\Program Files (x86)\AVG\Antivirus\afwServ.exe [311624 2017-06-06] (AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7396872 2017-06-06] (AVG Technologies CZ, s.r.o.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-05-31] (AVG Technologies CZ, s.r.o.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1530376 2017-04-23] () S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [382504 2017-06-04] (EasyAntiCheat Ltd) R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3760040 2017-05-22] (LogMeIn Inc.) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-29] (Intel Corporation) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.) S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-06-08] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-06-08] (NVIDIA Corporation) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [69768 2017-02-15] (Razer Inc.) R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] () R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2016-11-04] (Razer Inc) R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-02-21] (AVG Technologies CZ, s.r.o.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-08-20] (Microsoft Corporation) S2 HiPatchService; E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [X] ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] () R1 avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [166624 2017-06-06] (AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [314128 2017-06-06] (AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [192584 2017-06-06] (AVG Technologies CZ, s.r.o.) R0 avgblog; C:\Windows\system32\drivers\avgbloga.sys [336896 2017-06-06] (AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [51336 2017-06-06] (AVG Technologies CZ, s.r.o.) S3 avgHwid; C:\Windows\system32\drivers\avgHwid.sys [39424 2017-06-06] (AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [129776 2017-06-06] (AVG Technologies CZ, s.r.o.) R3 avgNetNd6; C:\Windows\System32\DRIVERS\avgNetNd6.sys [29944 2017-06-06] (AVG Technologies CZ, s.r.o.) R1 avgNetSec; C:\Windows\system32\drivers\avgNetSec.sys [509056 2017-06-06] (AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [102280 2017-06-06] (AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [76832 2017-06-06] (AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\system32\drivers\avgSnx.sys [1008288 2017-06-06] (AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\system32\drivers\avgSP.sys [570320 2017-06-06] (AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\system32\drivers\avgStm.sys [160008 2017-06-06] (AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\Windows\system32\drivers\avgVmm.sys [340824 2017-06-06] (AVG Technologies CZ, s.r.o.) R1 FACEIT; C:\Windows\System32\Drivers\FACEIT.sys [7976416 2017-06-19] () R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation) S3 netr28x; C:\Windows\System32\DRIVERS\netr28x.sys [2486416 2014-12-31] (MediaTek Inc.) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57976 2017-05-03] (NVIDIA Corporation) R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [52248 2016-10-30] (Razer Inc) R3 rzmpos; C:\Windows\System32\DRIVERS\rzmpos.sys [48152 2016-10-30] (Razer Inc) R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.) R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-10-08] (Razer, Inc.) R3 RZSURROUNDVADService; C:\Windows\System32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows (R) Win 7 DDK provider) R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-02-21] (AVG Netherlands B.V.) S3 GPU-Z; \??\C:\Users\user\AppData\Local\Temp\GPU-Z.sys [X] <==== UWAGA ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-06-22 17:52 - 2017-06-22 17:53 - 00020646 _____ C:\Users\user\Downloads\FRST.txt 2017-06-22 17:52 - 2017-06-22 17:53 - 00000000 ____D C:\FRST 2017-06-22 17:52 - 2017-06-22 17:52 - 00045193 _____ C:\Users\user\Downloads\Addition.txt 2017-06-22 17:51 - 2017-06-22 17:51 - 02439680 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe 2017-06-21 20:31 - 2017-06-21 20:44 - 00046576 _____ C:\Users\user\Desktop\ace na force.veg 2017-06-21 20:31 - 2017-06-21 20:34 - 00034856 _____ C:\Users\user\Desktop\ace na force.veg.bak 2017-06-19 20:08 - 2017-06-19 20:54 - 00000000 ____D C:\Users\user\Desktop\BeyondCheat 3.19.0.0 2017-06-19 19:53 - 2017-06-19 19:53 - 932570490 _____ C:\Windows\MEMORY.DMP 2017-06-19 19:53 - 2017-06-19 19:53 - 00262144 _____ C:\Windows\Minidump\061917-11278-01.dmp 2017-06-19 19:17 - 2017-06-19 19:17 - 00000222 _____ C:\Users\user\Desktop\Unturned.url 2017-06-19 18:58 - 2017-06-19 18:58 - 00000222 _____ C:\Users\user\Desktop\AdVenture Capitalist.url 2017-06-19 08:02 - 2017-06-19 08:02 - 00271407 _____ C:\Users\user\Desktop\BeyondCheat 3.19.0.0.rar 2017-06-19 08:02 - 2017-06-19 08:02 - 00003558 _____ C:\Windows\System32\Tasks\jhg 2017-06-19 08:02 - 2017-06-19 08:02 - 00000000 ___RD C:\ProgramData\MicrosoftCOM 2017-06-19 08:02 - 2017-06-19 08:02 - 00000000 ___RD C:\ProgramData\Framework 2017-06-19 08:02 - 2017-06-19 08:02 - 00000000 ___HD C:\$AV_AVG 2017-06-19 08:02 - 2017-06-19 08:02 - 00000000 ____D C:\ProgramData\WindowsSQL 2017-06-19 08:02 - 2017-06-19 08:02 - 00000000 ____D C:\ProgramData\DirectX11b 2017-06-19 08:02 - 2017-06-09 06:44 - 00000230 _____ C:\ProgramData\Y1.cmd 2017-06-19 08:02 - 2017-06-09 06:43 - 00000232 _____ C:\ProgramData\Y2.cmd 2017-06-19 08:02 - 2017-06-09 06:42 - 00000232 _____ C:\ProgramData\Y3.cmd 2017-06-19 08:02 - 2017-06-09 06:41 - 00000232 _____ C:\ProgramData\Y4.cmd 2017-06-19 08:02 - 2017-06-09 06:35 - 00000231 _____ C:\ProgramData\Y5.cmd 2017-06-19 08:02 - 2017-06-09 06:34 - 00000229 _____ C:\ProgramData\Y7.cmd 2017-06-19 08:02 - 2017-06-09 06:34 - 00000229 _____ C:\ProgramData\Y6.cmd 2017-06-19 08:02 - 2017-06-09 06:33 - 00000232 _____ C:\ProgramData\Y9.cmd 2017-06-19 08:02 - 2017-06-09 06:33 - 00000230 _____ C:\ProgramData\Y8.cmd 2017-06-19 08:02 - 2017-06-09 06:32 - 00000232 _____ C:\ProgramData\Y11.cmd 2017-06-19 08:02 - 2017-06-09 06:32 - 00000232 _____ C:\ProgramData\Y10.cmd 2017-06-19 08:02 - 2017-06-09 06:31 - 00000231 _____ C:\ProgramData\Y12.cmd 2017-06-19 08:02 - 2017-06-09 06:31 - 00000229 _____ C:\ProgramData\Y13.cmd 2017-06-19 08:02 - 2017-06-09 06:30 - 00000229 _____ C:\ProgramData\Y15.cmd 2017-06-19 08:02 - 2017-06-09 06:30 - 00000229 _____ C:\ProgramData\Y14.cmd 2017-06-19 08:02 - 2017-06-09 06:29 - 00000229 _____ C:\ProgramData\Y16.cmd 2017-06-17 19:14 - 2017-06-17 19:14 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2017-06-17 19:14 - 2017-06-17 19:14 - 00000000 ____D C:\Program Files\Java 2017-06-17 19:03 - 2017-06-17 19:03 - 00000967 _____ C:\Users\user\Desktop\TechPowerUp GPU-Z.lnk 2017-06-17 19:03 - 2017-06-17 19:03 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z 2017-06-17 19:03 - 2017-06-17 19:03 - 00000000 ____D C:\Program Files (x86)\GPU-Z 2017-06-17 12:26 - 2017-06-22 17:52 - 00000000 ____D C:\Users\user\AppData\Local\LogMeIn Hamachi 2017-06-17 12:26 - 2017-06-17 12:26 - 00000926 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk 2017-06-17 12:26 - 2017-06-17 12:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2017-06-17 12:26 - 2017-06-17 12:26 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi 2017-06-17 09:28 - 2017-06-17 09:28 - 00000000 _____ C:\Users\user\Desktop\jyyywww.wpr 2017-06-16 20:32 - 2017-06-16 20:32 - 00000000 ____D C:\Users\user\AppData\LocalLow\Unity 2017-06-16 20:32 - 2017-06-16 20:32 - 00000000 ____D C:\Users\user\AppData\LocalLow\Hyper Hippo Productions Ltd_ 2017-06-10 17:36 - 2017-06-10 18:42 - 00000000 ____D C:\Program Files (x86)\Hard Disk Sentinel 2017-06-10 17:36 - 2017-06-10 17:36 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk 2017-06-10 17:36 - 2017-06-10 17:36 - 00000000 ___RD C:\Program Files (x86)\Skype 2017-06-10 17:36 - 2017-06-10 17:36 - 00000000 ____D C:\Users\user\AppData\Roaming\Hard Disk Sentinel 2017-06-10 17:36 - 2017-06-10 17:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2017-06-10 17:36 - 2017-03-09 17:20 - 23740584 _____ (Janos Mathe ) C:\Users\user\Desktop\hdsentinel_pro_setup.exe 2017-06-10 17:35 - 2017-06-10 17:35 - 00003138 _____ C:\Windows\System32\Tasks\{EDB52C9C-C630-4A9D-AD6E-018D83374074} 2017-06-10 12:30 - 2017-06-10 12:33 - 00000992 _____ C:\Users\user\Desktop\Core Temp.lnk 2017-06-10 12:30 - 2017-06-10 12:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp 2017-06-10 12:30 - 2017-06-10 12:30 - 00000000 ____D C:\Program Files\Core Temp 2017-06-10 11:19 - 2017-06-08 01:38 - 00134592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2017-06-10 11:19 - 2017-03-10 23:17 - 00536864 _____ C:\Windows\system32\vulkan-1.dll 2017-06-10 11:19 - 2017-03-10 23:17 - 00525600 _____ C:\Windows\SysWOW64\vulkan-1.dll 2017-06-10 11:19 - 2017-03-10 23:17 - 00254240 _____ C:\Windows\system32\vulkaninfo.exe 2017-06-10 11:19 - 2017-03-10 23:17 - 00233760 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2017-06-10 11:18 - 2017-06-10 11:18 - 00000000 ____D C:\temp 2017-06-10 11:17 - 2017-06-08 03:35 - 40201664 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 35281344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 28593272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 17424984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 16436488 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 14276216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2017-06-10 11:17 - 2017-06-08 03:35 - 13402816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 11056272 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 11027968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 10551072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 09248144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 09014976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 08808488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 03437504 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 03020920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 01988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438253.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 01606776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438253.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 01056192 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00993728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00964032 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00914880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00688784 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00609728 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00577728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00507688 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00499136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00426128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00406552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00218712 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2017-06-10 11:17 - 2017-06-08 03:35 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2017-06-10 11:17 - 2017-06-08 03:35 - 00045976 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2017-06-07 17:11 - 2017-06-07 17:11 - 00000000 ____D C:\Users\user\AppData\Roaming\FACEIT 2017-06-07 17:10 - 2017-06-07 17:10 - 00000161 _____ C:\Users\user\Documents\ClownfishForTeamspeak.ini 2017-06-07 17:09 - 2017-06-19 20:08 - 07976416 _____ C:\Windows\system32\Drivers\FACEIT.sys 2017-06-07 17:08 - 2017-06-08 17:07 - 00000911 _____ C:\Users\Public\Desktop\FACEIT Client.lnk 2017-06-07 17:08 - 2017-06-07 17:08 - 00000879 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT Client.lnk 2017-06-07 14:39 - 2017-06-07 14:39 - 00003793 _____ C:\Users\user\Desktop\autoexec.cfg 2017-06-07 13:19 - 2017-06-07 13:19 - 00002760 _____ C:\Windows\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance 2017-06-06 07:33 - 2017-06-06 07:33 - 00002610 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp.lnk 2017-06-06 07:33 - 2017-06-06 07:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2017-06-06 07:33 - 2017-02-21 09:29 - 00053008 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\TURegOpt.exe 2017-06-06 07:33 - 2017-02-21 09:25 - 00044304 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\authuitu.dll 2017-06-06 07:33 - 2017-02-21 09:25 - 00042256 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\SysWOW64\authuitu.dll 2017-06-06 07:30 - 2017-06-06 07:30 - 01008288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00570320 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00509056 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgNetSec.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00401584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2017-06-06 07:30 - 2017-06-06 07:30 - 00340824 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00336896 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00314128 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00192584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00166624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiska.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00160008 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgstm.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00129776 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00102280 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00076832 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00051336 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00039424 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00029944 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgNetNd6.sys 2017-06-06 07:30 - 2017-06-06 07:30 - 00003920 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update 2017-06-06 07:27 - 2017-06-06 07:27 - 00001008 _____ C:\Users\Public\Desktop\AVG.lnk 2017-06-06 07:27 - 2017-06-06 07:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2017-06-06 07:26 - 2017-06-22 17:50 - 00003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task 2017-06-05 21:11 - 2017-06-05 21:11 - 00000000 _____ C:\Users\user\Desktop\Nowy dokument tekstowy.txt 2017-06-05 18:57 - 2017-06-08 17:07 - 00001844 _____ C:\Users\user\Desktop\CrystalDiskMark 5.lnk 2017-06-05 18:57 - 2017-06-05 18:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskMark5 2017-06-05 18:57 - 2017-06-05 18:57 - 00000000 ____D C:\Program Files\CrystalDiskMark5 2017-06-05 18:45 - 2017-06-05 18:57 - 00001204 _____ C:\Users\user\Desktop\CrystalDiskInfo.lnk 2017-06-05 18:45 - 2017-06-05 18:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo 2017-06-05 18:45 - 2017-06-05 18:57 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo 2017-06-05 17:15 - 2017-06-22 17:51 - 00000000 ____D C:\Program Files (x86)\Steam 2017-06-05 17:15 - 2017-06-05 17:15 - 00000982 _____ C:\Users\Public\Desktop\Steam.lnk 2017-06-05 17:13 - 2017-06-05 17:21 - 00000219 _____ C:\Users\user\Desktop\Counter-Strike Global Offensive.url 2017-06-04 17:31 - 2017-06-08 20:17 - 00007606 _____ C:\Users\user\AppData\Local\Resmon.ResmonCfg 2017-06-04 14:22 - 2017-06-04 14:22 - 00000000 ____D C:\Users\user\AppData\LocalLow\Facepunch Studios LTD 2017-06-04 12:56 - 2017-06-04 12:56 - 00000222 _____ C:\Users\user\Desktop\Rust.url 2017-06-03 13:04 - 2017-06-03 13:04 - 00000000 ____D C:\Users\user\AppData\Local\FACEIT 2017-06-03 13:02 - 2017-06-22 17:52 - 00000000 ____D C:\Program Files\FACEIT Client 2017-06-03 11:36 - 2017-06-16 13:34 - 00803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-06-03 11:36 - 2017-06-16 13:34 - 00144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-06-03 11:36 - 2017-06-16 13:34 - 00004424 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2017-06-03 11:36 - 2017-06-16 13:34 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2017-06-03 11:36 - 2017-06-16 13:34 - 00000000 ____D C:\Windows\system32\Macromed 2017-06-03 11:36 - 2017-06-03 12:20 - 00000000 ____D C:\Users\user\AppData\Roaming\Tunngle 2017-06-03 11:36 - 2015-12-21 17:01 - 00047736 _____ (Tunngle.net) C:\Windows\system32\Drivers\tap0901t.sys 2017-06-03 10:57 - 2008-07-12 08:18 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2017-06-03 10:57 - 2008-07-12 08:18 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2017-06-03 10:57 - 2008-07-12 08:18 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2017-05-30 14:25 - 2017-05-30 15:04 - 01150952 _____ C:\Users\user\Desktop\Wyżyny.pptx 2017-05-29 07:39 - 2017-05-29 07:39 - 00000000 ____D C:\Users\user\AppData\Local\THQ 2017-05-27 19:19 - 2017-06-08 03:35 - 35350136 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2017-05-27 19:19 - 2017-05-18 09:33 - 01988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438233.dll 2017-05-27 19:19 - 2017-05-18 09:33 - 01606592 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438233.dll 2017-05-27 19:19 - 2017-05-18 09:33 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json 2017-05-27 19:19 - 2017-05-18 09:33 - 00000669 _____ C:\Windows\system32\nv-vk64.json 2017-05-27 12:09 - 2017-05-27 12:09 - 00000000 ____D C:\Users\user\AppData\Local\IdleMaster 2017-05-27 08:28 - 2017-05-30 18:10 - 00096472 _____ C:\Users\user\Desktop\fragmovie.veg 2017-05-26 14:13 - 2017-06-22 17:50 - 00000176 _____ C:\Users\user\BullseyeCoverageError.txt 2017-05-26 14:13 - 2017-05-26 21:38 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi 2017-05-26 14:13 - 2017-05-26 21:38 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi 2017-05-26 14:13 - 2017-05-26 14:13 - 00000176 _____ C:\Users\Default\BullseyeCoverageError.txt 2017-05-26 14:13 - 2017-05-22 16:21 - 00035648 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2017-06-22 17:52 - 2017-03-17 16:26 - 00000000 _____ C:\Windows\system32\RzSurroundVADAudioDeviceManager_log.txt 2017-06-22 17:51 - 2017-02-01 20:00 - 00000000 ____D C:\Users\user\AppData\Roaming\TS3Client 2017-06-22 17:50 - 2017-02-01 15:06 - 00000000 ____D C:\ProgramData\NVIDIA 2017-06-22 17:50 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-06-22 08:12 - 2017-02-01 17:14 - 00000000 ____D C:\Users\user\AppData\Roaming\Skype 2017-06-22 08:11 - 2009-07-14 06:45 - 00021296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-06-22 08:11 - 2009-07-14 06:45 - 00021296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-06-22 08:08 - 2011-04-12 15:21 - 02945624 _____ C:\Windows\system32\perfh015.dat 2017-06-22 08:08 - 2011-04-12 15:21 - 00902310 _____ C:\Windows\system32\perfc015.dat 2017-06-22 08:08 - 2009-07-14 07:13 - 00006208 _____ C:\Windows\system32\PerfStringBackup.INI 2017-06-19 20:54 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2017-06-19 20:43 - 2017-02-06 18:05 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps 2017-06-19 19:53 - 2017-02-01 19:10 - 00000000 ____D C:\Windows\Minidump 2017-06-19 19:17 - 2017-02-02 09:46 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2017-06-17 19:14 - 2017-02-01 17:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-06-17 12:08 - 2017-02-24 15:45 - 00000193 _____ C:\Windows\WORDPAD.INI 2017-06-11 09:22 - 2009-07-14 07:08 - 00032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2017-06-10 17:36 - 2017-02-01 17:13 - 00000000 ____D C:\ProgramData\Skype 2017-06-10 16:25 - 2017-04-29 12:11 - 00000000 ____D C:\Program Files (x86)\SteamServerBrowser 2017-06-10 11:19 - 2017-02-01 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2017-06-10 11:19 - 2017-02-01 15:06 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2017-06-08 03:35 - 2017-04-14 17:56 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat 2017-06-08 03:35 - 2017-02-01 15:55 - 20064880 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2017-06-08 03:35 - 2017-02-01 15:55 - 03604368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2017-06-08 03:35 - 2017-01-04 16:26 - 01615448 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2017-06-08 03:35 - 2017-01-04 16:05 - 00491024 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2017-06-08 03:35 - 2017-01-04 16:03 - 04090528 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2017-06-08 03:35 - 2017-01-04 11:08 - 00042999 _____ C:\Windows\system32\nvinfo.pb 2017-06-08 02:01 - 2017-04-14 17:56 - 00001951 _____ C:\Windows\NvContainerRecovery.bat 2017-06-08 01:55 - 2017-02-01 15:06 - 06467008 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2017-06-08 01:55 - 2017-02-01 15:06 - 02479552 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2017-06-08 01:55 - 2017-02-01 15:06 - 01762936 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2017-06-08 01:55 - 2017-02-01 15:06 - 00549312 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2017-06-08 01:55 - 2017-02-01 15:06 - 00392312 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2017-06-08 01:55 - 2017-02-01 15:06 - 00082040 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2017-06-08 01:55 - 2017-02-01 15:06 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2017-06-07 18:49 - 2017-02-01 14:35 - 00109296 _____ C:\Users\user\AppData\Local\GDIPFONTCACHEV1.DAT 2017-06-07 17:10 - 2009-07-14 06:45 - 00413232 _____ C:\Windows\system32\FNTCACHE.DAT 2017-06-07 17:04 - 2017-04-14 11:13 - 00000000 ____D C:\ProgramData\Origin 2017-06-07 14:42 - 2017-02-01 15:06 - 08075477 _____ C:\Windows\system32\nvcoproc.bin 2017-06-06 07:33 - 2017-02-01 17:54 - 00000000 ____D C:\Users\user\AppData\Local\AvgSetupLog 2017-06-06 07:33 - 2017-02-01 17:54 - 00000000 ____D C:\Users\user\AppData\Local\Avg 2017-06-06 07:33 - 2017-02-01 17:54 - 00000000 ____D C:\ProgramData\Avg 2017-06-06 07:33 - 2017-02-01 17:54 - 00000000 ____D C:\Program Files (x86)\AVG 2017-06-06 07:31 - 2017-02-01 17:55 - 00000000 ____D C:\Users\user\AppData\Roaming\AVG 2017-06-05 21:11 - 2017-04-24 16:00 - 00000000 ____D C:\Users\user\AppData\Roaming\Notepad++ 2017-06-05 18:38 - 2017-04-16 17:00 - 00000000 ____D C:\Program Files\AutoHotkey 2017-06-05 18:37 - 2017-02-01 17:44 - 00000000 ____D C:\Windows\SHELLNEW 2017-06-04 14:20 - 2017-03-01 19:21 - 00382504 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe 2017-06-03 11:36 - 2017-02-01 17:42 - 00000000 ____D C:\Users\user\AppData\Local\Adobe 2017-05-27 19:21 - 2017-02-01 15:06 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2017-05-27 19:20 - 2017-02-01 15:06 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2017-05-25 20:03 - 2017-02-03 17:34 - 00000000 ____D C:\Users\user\AppData\Local\ElevatedDiagnostics 2017-05-25 20:03 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF ==================== Pliki w katalogu głównym wybranych folderów ======= 2017-06-04 17:31 - 2017-06-08 20:17 - 0007606 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg 2017-02-10 13:56 - 2016-11-23 15:37 - 0000570 _____ () C:\Users\user\AppData\Local\TroubleshooterConfig.json 2017-02-01 14:34 - 2017-02-01 14:34 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2017-06-19 08:02 - 2017-06-09 06:44 - 0000230 _____ () C:\ProgramData\Y1.cmd 2017-06-19 08:02 - 2017-06-09 06:32 - 0000232 _____ () C:\ProgramData\Y10.cmd 2017-06-19 08:02 - 2017-06-09 06:32 - 0000232 _____ () C:\ProgramData\Y11.cmd 2017-06-19 08:02 - 2017-06-09 06:31 - 0000231 _____ () C:\ProgramData\Y12.cmd 2017-06-19 08:02 - 2017-06-09 06:31 - 0000229 _____ () C:\ProgramData\Y13.cmd 2017-06-19 08:02 - 2017-06-09 06:30 - 0000229 _____ () C:\ProgramData\Y14.cmd 2017-06-19 08:02 - 2017-06-09 06:30 - 0000229 _____ () C:\ProgramData\Y15.cmd 2017-06-19 08:02 - 2017-06-09 06:29 - 0000229 _____ () C:\ProgramData\Y16.cmd 2017-06-19 08:02 - 2017-06-09 06:43 - 0000232 _____ () C:\ProgramData\Y2.cmd 2017-06-19 08:02 - 2017-06-09 06:42 - 0000232 _____ () C:\ProgramData\Y3.cmd 2017-06-19 08:02 - 2017-06-09 06:41 - 0000232 _____ () C:\ProgramData\Y4.cmd 2017-06-19 08:02 - 2017-06-09 06:35 - 0000231 _____ () C:\ProgramData\Y5.cmd 2017-06-19 08:02 - 2017-06-09 06:34 - 0000229 _____ () C:\ProgramData\Y6.cmd 2017-06-19 08:02 - 2017-06-09 06:34 - 0000229 _____ () C:\ProgramData\Y7.cmd 2017-06-19 08:02 - 2017-06-09 06:33 - 0000230 _____ () C:\ProgramData\Y8.cmd 2017-06-19 08:02 - 2017-06-09 06:33 - 0000232 _____ () C:\ProgramData\Y9.cmd Pliki do przeniesienia lub usunięcia: ==================== C:\ProgramData\Y1.cmd C:\ProgramData\Y10.cmd C:\ProgramData\Y11.cmd C:\ProgramData\Y12.cmd C:\ProgramData\Y13.cmd C:\ProgramData\Y14.cmd C:\ProgramData\Y15.cmd C:\ProgramData\Y16.cmd C:\ProgramData\Y2.cmd C:\ProgramData\Y3.cmd C:\ProgramData\Y4.cmd C:\ProgramData\Y5.cmd C:\ProgramData\Y6.cmd C:\ProgramData\Y7.cmd C:\ProgramData\Y8.cmd C:\ProgramData\Y9.cmd Niektóre pliki w TEMP: ==================== 2017-06-17 10:40 - 2017-06-17 10:40 - 0008720 ____N () C:\Users\user\AppData\Local\Temp\BullseyeCoverage-2-x86.dll ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2017-06-13 19:18 ==================== Koniec FRST.txt ============================