Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-02-2015 Ran by Jakub (administrator) on KOMP on 14-02-2015 19:25:35 Running from C:\Users\Jakub\Desktop Loaded Profiles: Jakub (Available profiles: Jakub) Platform: Windows 8.1 Pro (X64) OS Language: Polski (Polska) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe () C:\ProgramData\DatacardService\HWDeviceService64.exe () C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe (MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe (O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Micro-Star International) C:\MSI\Smart Utilities\SuperRAIDSvc.exe (AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe () C:\Program Files (x86)\D-Link CORPORATION\DWA-127\WPSHWPBC.exe (O&O Software GmbH) C:\Program Files\OO Software\CleverCache\ooccag.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (O&O Software GmbH) C:\Program Files\OO Software\CleverCache\ooccctrl.exe (O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Murray Hurps Software Pty Ltd) C:\Program Files (x86)\Ad Muncher\AdMunch.exe (Murray Hurps Software Pty Ltd) C:\Program Files (x86)\Ad Muncher\AdMunch64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Corporation) C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Valve Corporation) D:\Steam\Steam.exe (Valve Corporation) D:\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) D:\Steam\bin\steamwebhelper.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (XTab system) C:\Program Files (x86)\XTab\ProtectService.exe (SearchProtect) C:\Program Files (x86)\XTab\CmdShell.exe (XTab system) C:\Program Files (x86)\XTab\HPNotify.exe (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe () C:\Users\Jakub\Desktop\vbtscstw.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-01-19] (NVIDIA Corporation) HKLM\...\Run: [ooccctrl.exe] => C:\Program Files\OO Software\CleverCache\ooccctrl.exe [4346696 2010-12-08] (O&O Software GmbH) HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [4464936 2013-11-21] (O&O Software GmbH) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7637208 2014-07-15] (Realtek Semiconductor) HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-02-21] (Intel Corporation) HKLM-x32\...\Run: [Ad Muncher] => C:\Program Files (x86)\Ad Muncher\AdMunch.exe [595144 2014-07-17] (Murray Hurps Software Pty Ltd) HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1047536 2014-04-08] (MSI) HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [764472 2012-09-19] () HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [3468240 2014-08-26] (Micro-Star International) HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [797648 2014-09-02] () HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation) HKLM-x32\...\Run: [DBAgent] => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe [1517640 2013-03-07] (Seagate Technology LLC) HKU\S-1-5-21-4193634356-1386167445-2874816342-1001\...\Run: [EADM] => D:\Origin\Origin.exe [3619160 2015-01-21] (Electronic Arts) HKU\S-1-5-21-4193634356-1386167445-2874816342-1001\...\Run: [Spotify] => C:\Users\Jakub\AppData\Roaming\Spotify\Spotify.exe [6737976 2014-12-21] (Spotify Ltd) HKU\S-1-5-21-4193634356-1386167445-2874816342-1001\...\Run: [Spotify Web Helper] => C:\Users\Jakub\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-21] (Spotify Ltd) HKU\S-1-5-21-4193634356-1386167445-2874816342-1001\...\Run: [Steam] => D:\Steam\steam.exe [2874048 2015-02-14] (Valve Corporation) HKU\S-1-5-21-4193634356-1386167445-2874816342-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.) HKU\S-1-5-21-4193634356-1386167445-2874816342-1001\...\Run: [Uploader] => C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.Uploader.exe [122984 2013-03-07] (Seagate Technology LLC) HKU\S-1-5-21-4193634356-1386167445-2874816342-1001\...\MountPoints2: {4ddd77cf-0e42-11e4-825d-448a5ba05ff4} - "H:\start.exe" HKU\S-1-5-21-4193634356-1386167445-2874816342-1001\...\MountPoints2: {b2a10824-9979-11e4-837c-448a5ba05ff4} - "H:\AutoRun.exe" HKU\S-1-5-21-4193634356-1386167445-2874816342-1001\...\MountPoints2: {b2a10874-9979-11e4-837c-448a5ba05ff4} - "H:\AutoRun.exe" IFEO\avifix.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\avimux.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\chrome.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\dashboard.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\dxtory.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\dxtoryvideosetting.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\hamachi-2-ui.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\hpwucli.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\licreg.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\live update.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\origin.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\originer.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\rawcapconv.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" IFEO\unins000.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk ShortcutTarget: O&O Defrag Tray.lnk -> C:\Windows\Installer\{C09F10AD-C43D-4C40-8274-6985F810C6DB}\app_icon.ico () Startup: C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe After Effects CC 2014 Full Version Crack with Serial.lnk ShortcutTarget: Adobe After Effects CC 2014 Full Version Crack with Serial.lnk -> C:\ProgramData\{9e87242d-46e8-f358-9e87-7242d46e90b5}\Adobe After Effects CC 2014 Full Version Crack with Serial.exe (No File) CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type=ds&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type=ds&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type=ds&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type=ds&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z&q={searchTerms} HKU\S-1-5-21-4193634356-1386167445-2874816342-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z HKU\S-1-5-21-4193634356-1386167445-2874816342-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=ds&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z&q={searchTerms} SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=ds&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z&q={searchTerms} SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=ds&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z&q={searchTerms} SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=ds&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z&q={searchTerms} SearchScopes: HKU\S-1-5-21-4193634356-1386167445-2874816342-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=ds&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z&q={searchTerms} SearchScopes: HKU\S-1-5-21-4193634356-1386167445-2874816342-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=ds&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z&q={searchTerms} BHO: youtubeadblocker -> {18d4b5d2-b88e-475a-bc41-31aef9ea43b5} -> C:\Program Files (x86)\youtubeadblocker\TWrn8PVopXjr09.x64.dll () BHO: UniDeals -> {b6826e70-0eec-4508-b116-e6633b682be7} -> C:\Program Files (x86)\UniDeals\U8RrGQRvCkuME0.x64.dll () BHO-x32: youtubeadblocker -> {18d4b5d2-b88e-475a-bc41-31aef9ea43b5} -> C:\Program Files (x86)\youtubeadblocker\TWrn8PVopXjr09.dll () BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: UniDeals -> {b6826e70-0eec-4508-b116-e6633b682be7} -> C:\Program Files (x86)\UniDeals\U8RrGQRvCkuME0.dll () BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z FireFox: ======== FF ProfilePath: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ozsxsbp4.default-1423937423494 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll () FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.) FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll No File FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll (EA Digital Illusions CE AB) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll () FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.) FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll No File FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.) FF Plugin HKU\S-1-5-21-4193634356-1386167445-2874816342-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.) FF Plugin HKU\S-1-5-21-4193634356-1386167445-2874816342-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Jakub\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF user.js: detected! => C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ozsxsbp4.default-1423937423494\user.js FF HKLM-x32\...\Firefox\Extensions: [fftoolbar2014@etech.com] - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\kd8dobd8.default-1408054550324\extensions\fftoolbar2014@etech.com FF Extension: FF Toolbar - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\kd8dobd8.default-1408054550324\extensions\fftoolbar2014@etech.com [2015-02-14] StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.mystartsearch.com/?type=sc&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z Chrome: ======= CHR dev: Chrome dev build detected! <======= ATTENTION CHR HomePage: Default -> hxxp://www.mystartsearch.com/?type=hp&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z CHR StartupUrls: Default -> "hxxp://www.mystartsearch.com/?type=hp&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z" CHR DefaultSearchKeyword: Default -> mystartsearch CHR DefaultSearchURL: Default -> http://www.mystartsearch.com/web/?type=ds&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z&q={searchTerms} CHR Profile: C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Prezentacje Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-24] CHR Extension: (Dokumenty Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-12-24] CHR Extension: (Dysk Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-24] CHR Extension: (YouTube) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-24] CHR Extension: (Szukaj w Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-24] CHR Extension: (Arkusze Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-24] CHR Extension: (Office Apps) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdbcdbdkiaadpbkggggekjcpmgjekkke [2015-02-14] CHR Extension: (Google Wallet) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-24] CHR Extension: (Battlelog Emblem Editor Extended) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\noagedoiolkfaoaknohhepocfeooibjb [2014-12-24] CHR Extension: (Gmail) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-24] StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe http://www.mystartsearch.com/?type=sc&ts=1423936327&from=wpc&uid=ST1000DM003-1CH162_Z1DAV30ZXXXXZ1DAV30Z ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 54d5be53; c:\Program Files (x86)\BorderlineInit\BorderlineInit.dll [1607168 2015-02-14] () [File not signed] S4 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2014-09-14] (BitRaider, LLC) S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [175136 2014-09-30] (EasyAntiCheat Ltd) R2 ECOSERVICE; C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe [2224752 2014-06-04] (Micro-Star International Co., Ltd.) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2015-01-19] (NVIDIA Corporation) R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] () R2 IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [158896 2015-01-16] (XTab system) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation) S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [224096 2011-06-17] () R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-02-21] () S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-03] (Intel Corporation) S4 MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2100736 2014-06-04] (MSI) [File not signed] S4 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4026368 2014-06-06] (MSI) [File not signed] S4 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2118144 2014-07-28] () [File not signed] S4 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4156928 2014-08-27] () [File not signed] S4 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [1992192 2014-08-19] () [File not signed] S4 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2242560 2014-09-01] () [File not signed] S4 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2063360 2014-07-28] () [File not signed] S4 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [550400 2014-08-13] () [File not signed] S4 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [103992 2012-10-26] (MSI) S4 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1722320 2014-08-26] (Micro-Star International) S4 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162800 2014-03-17] (MSI) R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-01-19] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833872 2015-01-19] (NVIDIA Corporation) R2 OOCleverCache; C:\Program Files\OO Software\CleverCache\ooccag.exe [850760 2010-12-08] (O&O Software GmbH) R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1639208 2013-11-21] (O&O Software GmbH) S4 Origin Client Service; D:\Origin\OriginClientService.exe [1910128 2015-01-21] (Electronic Arts) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-12-18] () S4 Seagate Dashboard Services; C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe [16000 2013-03-07] (Seagate Technology LLC) R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025920 2015-02-14] (Enigma Software Group USA, LLC.) R2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [27632 2014-04-30] (Micro-Star International) R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2253112 2014-07-14] (AVG) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation) R2 WPSHWPBC; C:\Program Files (x86)\D-Link CORPORATION\DWA-127\WPSHWPBC.exe [217088 2011-08-08] () [File not signed] R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [18384 2014-08-07] (Intel(R) Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R3 AcpiCtlDrv; C:\Windows\System32\drivers\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation) S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2014-09-14] (BitRaider) S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-02-14] () U5 ew_hwusbdev; C:\Windows\System32\Drivers\ew_hwusbdev.sys [117248 2010-07-27] (Huawei Technologies Co., Ltd.) S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.) S3 huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [239104 2012-09-18] (Huawei Technologies Co., Ltd.) R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [22216 2014-02-03] () R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [22728 2014-02-03] () R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [23936 2014-02-03] () R2 iocbios2; C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [28912 2014-06-17] (Intel Corporation) R3 ISCT; C:\Windows\System32\drivers\ISCTD.sys [44744 2014-02-03] () R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.) S4 LMIRfsClientNP; No ImagePath R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [118272 2014-04-03] (Intel Corporation) S3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI) S3 NTIOLib_1_0_4; C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [14136 2010-10-22] (MSI) S3 NTIOLib_1_0_6; C:\Program Files (x86)\Setup Files\Ms7924v140\NTIOLib_X64.sys [13808 2014-04-16] (MSI) R3 NTIOLib_ECO; C:\Program Files (x86)\MSI\ECO Center\NTIOLib_X64.sys [13808 2014-01-06] (MSI) S3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI) S3 NTIOLib_MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\NTIOLib_X64.sys [13368 2012-11-20] (MSI) S3 NTIOLib_MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\NTIOLib_X64.sys [13368 2012-11-19] (MSI) S3 NTIOLib_MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\NTIOLib_X64.sys [13368 2012-11-20] (MSI) S3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI) S3 NTIOLib_MSIFrequency_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\CPU_Frequency\NTIOLib_X64.sys [13368 2012-11-20] (MSI) S3 NTIOLib_MSIRatio_CC; C:\Program Files (x86)\MSI\Command Center\CPU\CPU_Ratio\NTIOLib_X64.sys [13368 2012-11-20] (MSI) S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\NTIOLib_X64.sys [13368 2012-11-19] (MSI) S3 NTIOLib_MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\NTIOLib_X64.sys [13368 2012-11-19] (MSI) R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-01-19] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation ) R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-03-26] (TuneUp Software) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation) S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X] U3 pgddqpoc; \??\C:\Users\Jakub\AppData\Local\Temp\pgddqpoc.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-02-14 19:25 - 2015-02-14 19:25 - 02134528 _____ (Farbar) C:\Users\Jakub\Desktop\FRST64.exe 2015-02-14 19:25 - 2015-02-14 19:25 - 00030436 _____ () C:\Users\Jakub\Desktop\FRST.txt 2015-02-14 19:25 - 2015-02-14 19:25 - 00000000 ____D () C:\Users\Jakub\Desktop\Nowy folder 2015-02-14 19:19 - 2015-02-14 19:19 - 00380416 _____ () C:\Users\Jakub\Desktop\vbtscstw.exe 2015-02-14 18:58 - 2015-02-14 18:58 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Enigma Software Group 2015-02-14 18:58 - 2015-02-14 18:58 - 00000000 ____D () C:\sh4ldr 2015-02-14 18:58 - 2015-02-14 18:58 - 00000000 _____ () C:\autoexec.bat 2015-02-14 18:57 - 2015-02-14 18:57 - 00022704 _____ () C:\Windows\system32\Drivers\EsgScanner.sys 2015-02-14 18:57 - 2015-02-14 18:57 - 00000000 ____D () C:\Program Files\Enigma Software Group 2015-02-14 18:52 - 2015-02-14 18:52 - 00000000 ____D () C:\ProgramData\IHProtectUpDate 2015-02-14 18:52 - 2015-02-14 18:52 - 00000000 ____D () C:\Program Files (x86)\XTab 2015-02-14 18:51 - 2015-02-14 18:51 - 00000000 ____D () C:\Program Files (x86)\BorderlineInit 2015-02-14 18:50 - 2015-02-14 18:50 - 00000000 ____D () C:\Program Files (x86)\youtubeadblocker 2015-02-14 18:50 - 2015-02-14 18:50 - 00000000 ____D () C:\Program Files (x86)\UniDeals 2015-02-14 18:49 - 2015-02-14 19:13 - 00000000 ____D () C:\ProgramData\{9e87242d-46e8-f358-9e87-7242d46e90b5} 2015-02-14 18:49 - 2015-02-14 18:49 - 00000000 ____D () C:\ProgramData\hionijhijnipmpkhkfgmbdhgmgahfamb 2015-02-14 18:49 - 2015-02-14 18:49 - 00000000 ____D () C:\ProgramData\11525225166000279565 2015-02-14 18:49 - 2015-02-14 18:49 - 00000000 ____D () C:\Program Files (x86)\UniDeeals 2015-02-14 18:46 - 2015-02-14 18:46 - 00000000 ____D () C:\Users\Jakub\AppData\Local\Spoon 2015-02-14 17:08 - 2015-02-14 17:08 - 00010909 _____ () C:\Users\Jakub\AppData\Local\recently-used.xbel 2015-02-14 09:47 - 2015-02-05 18:57 - 00621384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2015-02-14 09:46 - 2015-02-14 09:46 - 00000000 ____D () C:\Windows\LastGood 2015-02-14 09:45 - 2015-02-05 22:01 - 32106640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 24768144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 20466496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 17253848 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 16017040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 13294528 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 13208200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 10773704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 10713256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 10284872 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-02-14 09:45 - 2015-02-05 22:01 - 03610768 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 03247248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434752.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434752.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00995248 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00969872 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00943760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00929936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00908104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00877816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00833680 _____ () C:\Windows\system32\nvmcumd.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00496272 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00399504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00353224 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00345744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00305136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00177624 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2015-02-14 09:45 - 2015-02-05 22:01 - 00164752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2015-02-13 13:34 - 2015-02-13 13:34 - 00000562 _____ () C:\Windows\wmsetup.log 2015-02-13 12:34 - 2015-02-13 12:34 - 00000201 _____ () C:\Users\Jakub\Desktop\Dead Island.url 2015-02-09 21:31 - 2015-02-09 21:31 - 00000000 ____D () C:\Users\Jakub\AppData\Local\Steam 2015-01-28 14:51 - 2015-02-14 17:10 - 00000000 ____D () C:\Users\Jakub\Desktop\Inne 2015-01-26 15:26 - 2015-01-26 15:26 - 00001276 _____ () C:\Windows\system32\oodbs.lor 2015-01-24 00:13 - 2015-01-13 05:15 - 00195728 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2015-01-24 00:13 - 2015-01-13 05:15 - 00030536 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2015-01-24 00:13 - 2015-01-10 09:07 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434725.dll 2015-01-24 00:13 - 2015-01-10 09:07 - 01556808 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434725.dll 2015-01-22 19:21 - 2015-01-22 19:21 - 00000000 ____D () C:\Users\Jakub\Documents\SimCity 2015-01-21 20:07 - 2015-01-21 20:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™ 2015-01-17 19:54 - 2015-01-17 19:54 - 00000000 ____D () C:\ProgramData\regid.1995-08.com.techsmith 2015-01-17 19:54 - 2015-01-17 19:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith 2015-01-17 19:54 - 2015-01-17 19:54 - 00000000 ____D () C:\Program Files (x86)\QuickTime 2015-01-17 19:53 - 2015-01-17 19:54 - 00000000 ____D () C:\Program Files (x86)\CAMTASIA 2015-01-16 21:08 - 2015-01-16 21:08 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Unity 2015-01-16 21:05 - 2015-01-16 21:05 - 01080608 _____ (Unity Technologies ApS) C:\Users\Jakub\Downloads\UnityWebPlayer.exe 2015-01-16 21:05 - 2015-01-16 21:05 - 00000000 ____D () C:\Users\Jakub\AppData\Local\Unity ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-02-14 19:25 - 2014-11-26 14:51 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Skype 2015-02-14 19:25 - 2014-11-05 15:17 - 00000000 ____D () C:\FRST 2015-02-14 19:23 - 2014-11-16 22:11 - 01372364 _____ () C:\Windows\WindowsUpdate.log 2015-02-14 19:07 - 2014-07-23 10:23 - 00000000 ___RD () C:\Users\Jakub\Desktop\Programy 2015-02-14 19:00 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru 2015-02-14 18:58 - 2014-07-17 05:56 - 00000000 ____D () C:\Users\Jakub 2015-02-14 18:52 - 2014-07-17 19:41 - 00001385 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-02-14 18:52 - 2014-07-17 05:56 - 00001676 _____ () C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-02-14 18:47 - 2014-08-25 11:42 - 00000000 ____D () C:\Users\Jakub\AppData\Local\CrashDumps 2015-02-14 18:47 - 2014-07-29 19:51 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\uTorrent 2015-02-14 17:08 - 2014-09-20 16:22 - 00000000 ____D () C:\Users\Jakub\AppData\Local\gtk-2.0 2015-02-14 17:08 - 2014-09-17 20:35 - 00000000 ____D () C:\Users\Jakub\.gimp-2.8 2015-02-14 12:44 - 2014-07-18 06:34 - 00016972 _____ () C:\Windows\SysWOW64\Gms.log 2015-02-14 09:47 - 2014-11-17 14:39 - 00038778 _____ () C:\Windows\setupact.log 2015-02-14 09:47 - 2014-07-17 21:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-02-14 09:47 - 2014-07-17 21:43 - 00000000 ____D () C:\ProgramData\NVIDIA 2015-02-14 09:27 - 2014-11-19 20:59 - 00000000 ____D () C:\Users\Jakub\Documents\Assassin's Creed Unity 2015-02-14 09:24 - 2014-07-23 13:38 - 00000000 ___RD () C:\Users\Jakub\OneDrive 2015-02-13 21:39 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI 2015-02-13 13:34 - 2014-11-19 20:41 - 00192567 _____ () C:\Windows\DirectX.log 2015-02-13 12:34 - 2014-07-30 13:05 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2015-02-12 19:10 - 2014-07-18 21:12 - 00000000 ____D () C:\ProgramData\Origin 2015-02-12 12:04 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness 2015-02-11 22:10 - 2014-08-03 18:30 - 00000000 ____D () C:\Users\Jakub\AppData\Roaming\Spotify 2015-02-11 21:08 - 2014-08-03 18:31 - 00000000 ____D () C:\Users\Jakub\AppData\Local\Spotify 2015-02-11 10:26 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp 2015-02-10 09:34 - 2014-07-17 23:01 - 00000000 ____D () C:\MSI 2015-02-10 09:28 - 2014-07-17 21:46 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-02-05 22:01 - 2014-11-28 14:52 - 02902784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-02-05 22:01 - 2014-07-17 21:56 - 14119744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-02-05 22:01 - 2014-07-17 21:56 - 00027441 _____ () C:\Windows\system32\nvinfo.pb 2015-02-05 22:01 - 2014-07-17 21:43 - 00074056 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2015-02-05 22:01 - 2014-07-17 21:43 - 00060560 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2015-02-05 22:01 - 2014-03-20 22:03 - 18575880 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-02-05 22:01 - 2014-03-20 22:02 - 03299512 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-02-05 20:07 - 2014-07-17 21:43 - 06861128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-02-05 20:07 - 2014-07-17 21:43 - 03517584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-02-05 20:07 - 2014-07-17 21:43 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-02-05 20:07 - 2014-07-17 21:43 - 00935056 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-02-05 20:07 - 2014-07-17 21:43 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-02-05 20:06 - 2014-07-17 21:43 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-02-05 13:50 - 2014-07-17 21:43 - 04236870 _____ () C:\Windows\system32\nvcoproc.bin 2015-02-03 20:31 - 2013-08-22 16:38 - 00714720 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-02-03 20:31 - 2013-08-22 16:38 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-01-31 18:46 - 2014-11-24 21:52 - 00000000 ____D () C:\Users\Jakub\Desktop\Tapety 2015-01-31 14:28 - 2014-07-29 10:39 - 00000000 ____D () C:\Users\Jakub\Documents\Pliki programu Outlook 2015-01-30 16:17 - 2014-10-18 18:02 - 00000000 ____D () C:\Users\Jakub\AppData\Local\Adobe 2015-01-28 14:51 - 2014-07-29 08:54 - 00000000 ____D () C:\Users\Jakub\Desktop\Gry 2015-01-26 17:04 - 2014-07-17 19:41 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2015-01-26 17:04 - 2014-07-17 19:41 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2015-01-26 15:25 - 2014-07-17 21:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\O&O Software 2015-01-26 14:57 - 2013-09-30 05:16 - 01825074 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-01-26 14:57 - 2013-09-30 05:00 - 00805918 _____ () C:\Windows\system32\perfh015.dat 2015-01-26 14:57 - 2013-09-30 05:00 - 00163272 _____ () C:\Windows\system32\perfc015.dat 2015-01-25 20:53 - 2014-07-21 14:16 - 00411440 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-01-22 19:29 - 2014-08-25 10:24 - 00000000 ____D () C:\Users\Jakub\Documents\Camtasia Studio 2015-01-22 14:39 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\NDF 2015-01-21 20:53 - 2014-07-30 22:11 - 00215416 _____ () C:\Windows\SysWOW64\PnkBstrB.exe 2015-01-21 20:53 - 2014-07-30 22:11 - 00214392 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0 2015-01-21 17:37 - 2014-11-17 14:39 - 00007562 _____ () C:\Windows\PFRO.log 2015-01-19 21:24 - 2014-07-18 06:49 - 01317192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2015-01-19 21:24 - 2014-07-17 21:59 - 01278920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2015-01-19 21:23 - 2014-07-18 06:49 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2015-01-19 21:23 - 2014-07-17 21:59 - 01514528 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2015-01-17 22:19 - 2014-07-31 08:39 - 00348928 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr 2015-01-17 19:53 - 2014-08-25 10:23 - 00000000 ____D () C:\ProgramData\TechSmith 2015-01-15 15:59 - 2014-07-17 22:04 - 00000000 ____D () C:\Windows\system32\MRT 2015-01-15 15:56 - 2014-07-17 22:03 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe ==================== Files in the root of some directories ======= 2014-10-08 13:41 - 2014-10-08 13:41 - 0104547 _____ () C:\Users\Jakub\AppData\Roaming\icarus-dxdiag.xml 2014-10-20 18:34 - 2014-10-20 18:36 - 0001496 _____ () C:\Users\Jakub\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs 2015-02-14 17:08 - 2015-02-14 17:08 - 0010909 _____ () C:\Users\Jakub\AppData\Local\recently-used.xbel 2014-11-26 15:49 - 2014-11-26 15:49 - 0000057 _____ () C:\ProgramData\Ament.ini 2014-07-17 23:01 - 2014-07-17 23:01 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some content of TEMP: ==================== C:\Users\Jakub\AppData\Local\Temp\Cf1Cff15.exe C:\Users\Jakub\AppData\Local\Temp\nvSCPAPI.dll C:\Users\Jakub\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-02 15:50 ==================== End Of Log ============================