Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:21-06-2015 01 Ran by mRn (administrator) on MRNX on 23-06-2015 22:02:46 Running from C:\Users\mRn\Downloads Loaded Profiles: mRn (Available Profiles: mRn) Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Polski (Polska) Internet Explorer Version 8 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe () C:\Program Files (x86)\HDD Health\HDDHealthService.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Windows\SysWOW64\PnkBstrA.exe () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Saitek) C:\Program Files\Saitek\DirectOutput\DirectOutputService.exe (SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe () C:\Program Files\Plantronics\GameCom 780 & 788\GameCom780.exe (GG Network S.A.) C:\Users\mRn\AppData\Local\GG\Application\gghub.exe (Murray Hurps Software Pty Ltd) C:\Program Files (x86)\Ad Muncher\AdMunch.exe (SlySoft, Inc.) C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (Power Software Ltd) C:\Program Files (x86)\PowerISO\PWRISOVM.EXE (PANTERASoft) C:\Program Files (x86)\HDD Health\hddhealth.exe (Murray Hurps Software Pty Ltd) C:\Program Files (x86)\Ad Muncher\AdMunch64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe () C:\Users\mRn\AppData\Roaming\Mozilla\Firefox\Profiles\vpx0r35d.default\extensions\adbhelper@mozilla.org\win32\adb.exe (Microsoft Corporation) C:\Windows\System32\taskmgr.exe (Microsoft Corporation) C:\Windows\System32\mspaint.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe (GG Network S.A.) C:\Users\mRn\AppData\Local\GG\Application\ggapp.exe (GG Network S.A.) C:\Users\mRn\AppData\Local\GG\Application\ggdrive\ggdrive.exe (GG Network S.A.) C:\Users\mRn\AppData\Local\GG\Application\xulrunner\gghub.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [GamecomSound] => C:\Program Files\Plantronics\GameCom 780 & 788\GameCom780.exe [817440 2014-01-21] () HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-05-28] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Ad Muncher] => C:\Program Files (x86)\Ad Muncher\AdMunch.exe [560760 2015-03-08] (Murray Hurps Software Pty Ltd) HKLM-x32\...\Run: [CloneCDTray] => C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe [57344 2009-01-30] (SlySoft, Inc.) HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [336992 2012-12-09] (Power Software Ltd) HKU\S-1-5-21-2900515442-1923707137-538422430-1000\...\Run: [GG] => C:\Users\mRn\AppData\Local\GG\Application\gghub.exe [4078144 2015-04-21] (GG Network S.A.) HKU\S-1-5-21-2900515442-1923707137-538422430-1000\...\MountPoints2: I - I:\setup.exe HKU\S-1-5-21-2900515442-1923707137-538422430-1000\...\MountPoints2: {1eafb254-950a-11e4-853a-806e6f6e6963} - F:\setup.exe Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HDDHealth.lnk [2015-05-29] ShortcutTarget: HDDHealth.lnk -> C:\Program Files (x86)\HDD Health\hddhealth.exe (PANTERASoft) ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => No File ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-2900515442-1923707137-538422430-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://hi.ru/search/?q={searchTerms} HKU\S-1-5-21-2900515442-1923707137-538422430-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp HKU\S-1-5-21-2900515442-1923707137-538422430-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://terra.im/?sid=101 SearchScopes: HKU\S-1-5-21-2900515442-1923707137-538422430-1000 -> {4187F0FC-AF41-4E4B-AE67-84C8FD35A0AE} URL = http://terra.im/search?sid=101&q={searchTerms} BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll No File BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-04-12] (Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-12] (Oracle Corporation) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\mRn\AppData\Roaming\Mozilla\Firefox\Profiles\vpx0r35d.default FF Homepage: gogle.pl FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-06] () FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-06] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-12] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-12] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-05-28] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-05-28] (NVIDIA Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN) FF Plugin HKU\S-1-5-21-2900515442-1923707137-538422430-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\mRn\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-02-24] (Unity Technologies ApS) FF Extension: ADB Helper - C:\Users\mRn\AppData\Roaming\Mozilla\Firefox\Profiles\vpx0r35d.default\Extensions\adbhelper@mozilla.org [2015-06-22] FF Extension: Valence - C:\Users\mRn\AppData\Roaming\Mozilla\Firefox\Profiles\vpx0r35d.default\Extensions\fxdevtools-adapters@mozilla.org [2015-06-22] FF Extension: MEGA - C:\Users\mRn\AppData\Roaming\Mozilla\Firefox\Profiles\vpx0r35d.default\Extensions\firefox@mega.co.nz.xpi [2015-02-06] FF Extension: Adblock Plus - C:\Users\mRn\AppData\Roaming\Mozilla\Firefox\Profiles\vpx0r35d.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-01-05] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-28] (NVIDIA Corporation) R2 HDDHealth; C:\Program Files (x86)\HDD Health\HDDHealthService.exe [17760 2013-03-08] () [File not signed] S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [File not signed] S4 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation) S4 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation) S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008 2015-05-28] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23006864 2015-05-28] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-05-04] (Electronic Arts) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-01-21] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-03-19] () R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [186048 2014-12-10] () R2 SaiDOutput; C:\Program Files\Saitek\DirectOutput\DirectOutputService.exe [233984 2014-07-30] (Saitek) [File not signed] R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [4374072 2015-01-19] (SoftEther VPN Project at University of Tsukuba, Japan.) S3 VsEtwService120; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [36096 2013-09-13] (Advanced Micro Devices, Inc.) R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [378136 2015-04-16] (Intel Corporation) R3 ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.) R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-02-10] (REALiX(tm)) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [26512 2013-08-13] (Intel Corporation) R3 JmUsbCcgp; C:\Windows\System32\DRIVERS\jmccgp.sys [17136 2009-07-29] (JMicron Technology Corp.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-06-23] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [125952 2014-08-14] (Intel Corporation) R3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0053.sys [28768 2015-01-19] (SoftEther VPN Project at University of Tsukuba, Japan.) R1 networx; C:\Windows\System32\drivers\networx.sys [60408 2014-08-01] (NetFilterSDK.com) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-28] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2015-05-28] (NVIDIA Corporation) R3 PlantronicsGC; C:\Windows\System32\drivers\PLTGC.sys [1328128 2013-02-07] (C-Media Electronics Inc) S3 rspLLL; C:\Windows\System32\DRIVERS\rspLLL64.sys [25504 2013-10-21] (Resplendence Software Projects Sp.) R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [39592 2014-12-30] (Razer Inc) R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2014-12-10] (Razer, Inc.) R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2014-12-10] (Razer, Inc.) S3 SaiH0762; C:\Windows\System32\DRIVERS\SaiH0762.sys [178560 2008-04-04] (Saitek) S3 SaiK0762; C:\Windows\System32\DRIVERS\SaiK0762.sys [179872 2014-08-05] (Saitek) S3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [16000 2009-06-10] (Saitek) S3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [43264 2009-06-10] (Saitek) R3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [39168 2014-10-08] (SteelSeries Corporation) R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2015-02-10] (Synaptics Incorporated) S3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [25088 2015-01-27] (SteelSeries ApS) U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] () S3 ALSysIO; \??\C:\Users\mRn\AppData\Local\Temp\ALSysIO64.sys [X] S3 cpuz137; \??\C:\Users\mRn\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-23 22:02 - 2015-06-23 22:03 - 00018151 _____ C:\Users\mRn\Downloads\FRST.txt 2015-06-23 22:01 - 2015-06-23 22:02 - 00000000 ____D C:\FRST 2015-06-23 22:01 - 2015-06-23 22:01 - 00380416 _____ C:\Users\mRn\Downloads\wl4q2q8e.exe 2015-06-23 22:00 - 2015-06-23 22:00 - 02109952 _____ (Farbar) C:\Users\mRn\Downloads\FRST64.exe 2015-06-23 20:52 - 2015-06-23 20:52 - 00006579 _____ C:\ddd.txt 2015-06-23 13:24 - 2015-06-23 13:55 - 00458752 ___SH C:\Users\mRn\Downloads\Thumbs.db 2015-06-23 12:56 - 2015-06-23 12:56 - 00000000 _____ C:\Users\mRn\Desktop\Nowy dokument tekstowy (9).txt 2015-06-23 11:29 - 2015-06-23 11:53 - 00000162 _____ C:\Users\mRn\Desktop\Nowy dokument tekstowy (8).txt 2015-06-23 11:27 - 2015-06-23 15:32 - 00000000 ____D C:\Users\mRn\Desktop\Nowy folder (8) 2015-06-23 09:47 - 2015-06-23 09:47 - 08053272 _____ (TeamViewer GmbH) C:\Users\mRn\Downloads\TeamViewer_Setup_pl-irm.exe 2015-06-22 23:03 - 2015-06-22 23:03 - 00393765 _____ C:\Users\mRn\Downloads\ScriptHookV_1.0.372.2.zip 2015-06-22 19:31 - 2015-06-22 19:31 - 00000000 ____D C:\Users\mRn\AppData\Roaming\gtk-2.0 2015-06-22 19:29 - 2015-06-22 19:29 - 00000000 ____D C:\Users\mRn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lanshark 2015-06-22 19:29 - 2015-06-22 19:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lanshark 2015-06-22 19:29 - 2015-06-22 19:29 - 00000000 ____D C:\Program Files (x86)\Lanshark 2015-06-22 19:22 - 2015-06-22 19:23 - 06659862 _____ (29a.ch) C:\Users\mRn\Downloads\lanshark-0.0.2(dobreprogramy.pl).exe 2015-06-22 19:22 - 2015-06-22 19:23 - 06659862 _____ (29a.ch) C:\Users\mRn\Downloads\lanshark-0.0.2(dobreprogramy.pl)(1).exe 2015-06-22 19:16 - 2015-06-22 19:16 - 00019456 ___SH C:\Users\mRn\Desktop\Thumbs.db 2015-06-21 19:27 - 2015-06-21 19:27 - 00001007 _____ C:\Users\Public\Desktop\PowerISO.lnk 2015-06-21 19:27 - 2015-06-21 19:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO 2015-06-21 19:27 - 2015-06-21 19:27 - 00000000 ____D C:\Program Files (x86)\PowerISO 2015-06-21 19:27 - 2012-12-09 11:51 - 00126944 _____ (Power Software Ltd) C:\Windows\system32\Drivers\scdemu.sys 2015-06-21 19:25 - 2015-06-21 19:25 - 06404636 _____ C:\Users\mRn\Downloads\PowerISO v5.5 plus keygen.waqarr.rar 2015-06-21 19:23 - 2015-06-21 19:23 - 02721168 _____ (Microsoft Corporation) C:\Users\mRn\Downloads\Windows7-USB-DVD-Download-Tool-Installer-en-US(1).exe 2015-06-21 19:12 - 2015-06-21 19:12 - 00000000 ____D C:\Users\mRn\Desktop\stery 2015-06-21 19:10 - 2015-06-21 19:10 - 00000000 ____D C:\ProgramData\SlySoft 2015-06-21 19:09 - 2015-06-21 19:09 - 00001113 _____ C:\Users\Public\Desktop\CloneCD.lnk 2015-06-21 19:09 - 2015-06-21 19:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlySoft 2015-06-21 19:09 - 2015-06-21 19:09 - 00000000 ____D C:\Program Files (x86)\SlySoft 2015-06-21 16:45 - 2015-06-21 16:50 - 18802253 _____ C:\Users\mRn\Downloads\realtek_wlan_win7_2000016L_20110523.zip 2015-06-21 16:44 - 2015-06-21 16:45 - 16824568 _____ C:\Users\mRn\Downloads\broadcom-wlan-win7-5604835.zip 2015-06-21 16:26 - 2015-06-21 16:27 - 27903935 _____ C:\Users\mRn\Downloads\atheros-wlan-win7-9204190.zip 2015-06-21 16:25 - 2015-06-21 16:25 - 06882872 _____ C:\Users\mRn\Downloads\lan-20100511151540.zip 2015-06-21 16:24 - 2015-06-21 16:25 - 04663726 _____ C:\Users\mRn\Downloads\csutil-20100511153253.zip 2015-06-18 08:46 - 2015-06-21 15:52 - 00000000 ____D C:\Users\mRn\AppData\Local\Dropbox 2015-06-18 08:46 - 2015-06-18 08:46 - 00000000 ____D C:\ProgramData\Dropbox 2015-06-18 08:38 - 2015-06-18 08:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK 2015-06-18 08:37 - 2015-06-18 08:37 - 00000000 ____D C:\ProgramData\TP-LINK 2015-06-18 08:37 - 2013-06-28 14:49 - 01930240 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athurx.sys 2015-06-18 08:37 - 2013-06-28 14:49 - 01930240 _____ (Atheros Communications, Inc.) C:\Windows\system32\athurx.sys 2015-06-18 08:37 - 2013-06-28 14:49 - 00007518 _____ C:\Windows\system32\athurextx.cat 2015-06-16 11:31 - 2015-06-16 11:31 - 02126000 _____ (Andres_age ) C:\Users\mRn\Downloads\MegaDownloader_v1-3.exe 2015-06-15 17:14 - 2015-06-15 17:14 - 02798411 _____ C:\Users\mRn\Downloads\AutoHotkey112202_Install.exe 2015-06-15 17:14 - 2015-06-15 17:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey 2015-06-15 17:14 - 2015-06-15 17:14 - 00000000 ____D C:\Program Files\AutoHotkey 2015-06-15 17:11 - 2015-06-15 17:11 - 00083930 _____ C:\Users\mRn\Downloads\Pean's AHK MultiScript v3_mpgh.net.zip 2015-06-15 12:10 - 2015-05-28 05:52 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2015-06-15 12:08 - 2015-05-28 09:04 - 30480528 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 17486856 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 16185352 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 15864064 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 14495448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 13304280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 11830512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 10995528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-06-15 12:08 - 2015-05-28 09:04 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435306.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435306.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 01050440 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00982856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00407112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2015-06-15 12:08 - 2015-05-28 09:04 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00048784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2015-06-15 12:08 - 2015-05-28 09:04 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2015-06-15 12:08 - 2015-05-28 09:04 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2015-06-15 12:07 - 2015-05-28 09:04 - 42719888 _____ C:\Windows\system32\nvcompiler.dll 2015-06-15 12:07 - 2015-05-28 09:04 - 37741712 _____ C:\Windows\SysWOW64\nvcompiler.dll 2015-06-15 12:00 - 2015-06-15 12:01 - 292211848 _____ (NVIDIA Corporation) C:\Users\mRn\Downloads\353.06-desktop-win8-win7-winvista-64bit-international-whql.exe 2015-06-15 12:00 - 2015-06-15 12:00 - 00000000 ____D C:\ProgramData\boost_interprocess 2015-06-12 17:04 - 2015-06-12 17:04 - 51608131 _____ C:\Users\mRn\Downloads\nissan_silvia_s13_drift.rar 2015-06-09 08:25 - 2015-06-09 08:25 - 00000775 _____ C:\Users\mRn\Downloads\smoke mod by Dmitriy.Ch.rar 2015-06-08 14:35 - 2015-06-08 14:36 - 150983765 _____ C:\Users\mRn\Downloads\aosta v3.1.2 final.rar 2015-06-08 11:43 - 2015-06-08 11:46 - 279069873 _____ C:\Users\mRn\Downloads\TransFrio V8.zip 2015-06-08 11:09 - 2015-06-08 11:13 - 1465413134 _____ C:\Users\mRn\Downloads\Game.of.Thrones.S05E09.PL.720p.HDTV.x264.AC3-YL4.mkv 2015-06-04 08:38 - 2015-06-04 08:38 - 31698211 _____ C:\Users\mRn\Downloads\Nissan_Skyline_R34_Upgrade_AWD.rar 2015-06-03 19:39 - 2015-06-03 19:39 - 15804260 _____ C:\Users\mRn\Downloads\Nissan Skyline R34 (v0.5).rar 2015-06-02 19:48 - 2015-06-04 08:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-05-30 10:37 - 2015-05-30 10:37 - 00085038 _____ C:\Users\mRn\Downloads\Assetto Corsa Tyre smoke mod 2015 by broburga.rar 2015-05-30 09:38 - 2015-05-30 09:38 - 00000473 _____ C:\Users\mRn\Downloads\tyre_smoke ( fps improved ).ini 2015-05-29 19:11 - 2015-05-29 19:11 - 02863750 _____ C:\Users\mRn\Downloads\CrystalDiskInfo6_3_2.zip 2015-05-29 19:08 - 2015-05-29 19:08 - 04211152 _____ ( ) C:\Users\mRn\Downloads\hddh.exe 2015-05-29 19:08 - 2015-05-29 19:08 - 00000000 ____D C:\Users\mRn\AppData\Roaming\HDDHealth 2015-05-29 19:08 - 2015-05-29 19:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Health 2015-05-29 19:08 - 2015-05-29 19:08 - 00000000 ____D C:\Program Files (x86)\HDD Health 2015-05-29 13:18 - 2015-05-29 13:18 - 25590881 _____ C:\Users\mRn\Downloads\sachsenring.7z 2015-05-29 13:17 - 2015-05-29 13:17 - 46723587 _____ C:\Users\mRn\Downloads\shibuya-hachiko drift.7z 2015-05-29 13:17 - 2015-05-29 13:17 - 44839171 _____ C:\Users\mRn\Downloads\snake_drift.rar 2015-05-29 13:17 - 2015-05-29 13:17 - 20607567 _____ C:\Users\mRn\Downloads\tamada_sportsland_kyo.7z 2015-05-29 13:17 - 2015-05-29 13:17 - 04172410 _____ C:\Users\mRn\Downloads\sardianheightsshort.7z 2015-05-29 13:16 - 2015-05-29 13:17 - 57489654 _____ C:\Users\mRn\Downloads\tandem_drift.rar 2015-05-29 13:16 - 2015-05-29 13:17 - 244701999 _____ C:\Users\mRn\Downloads\tn_t-drdoomslab_v0.5.rar 2015-05-29 13:16 - 2015-05-29 13:16 - 14816082 _____ C:\Users\mRn\Downloads\tsukuba.7z 2015-05-29 13:15 - 2015-05-29 13:15 - 54343423 _____ C:\Users\mRn\Downloads\varano.7z 2015-05-29 13:15 - 2015-05-29 13:15 - 11617934 _____ C:\Users\mRn\Downloads\vancouver.7z 2015-05-29 13:11 - 2015-05-29 13:11 - 09276576 _____ C:\Users\mRn\Downloads\driftpark.7z 2015-05-29 13:10 - 2015-05-29 13:11 - 60129470 _____ C:\Users\mRn\Downloads\expansion_drift.7z 2015-05-29 13:10 - 2015-05-29 13:10 - 56748063 _____ C:\Users\mRn\Downloads\dorifto_long.rar 2015-05-29 13:10 - 2015-05-29 13:10 - 14890023 _____ C:\Users\mRn\Downloads\dorifto_short.rar 2015-05-29 13:09 - 2015-05-29 13:09 - 41895090 _____ C:\Users\mRn\Downloads\bihoku.7z 2015-05-29 13:09 - 2015-05-29 13:09 - 12455550 _____ C:\Users\mRn\Downloads\deriphill_driftcourse_1_0.7z 2015-05-29 13:08 - 2015-05-29 13:08 - 37154928 _____ C:\Users\mRn\Downloads\[Track] Akina v0_01.rar 2015-05-28 12:23 - 2015-05-28 12:23 - 00001509 _____ C:\Users\mRn\Desktop\Euro Truck Simulator 2 (x64).lnk 2015-05-28 12:23 - 2015-05-28 12:23 - 00001509 _____ C:\Users\mRn\Desktop\Euro Truck Simulator 2 (x32).lnk 2015-05-28 12:23 - 2015-05-28 12:23 - 00000000 ____D C:\Users\mRn\AppData\Roaming\Euro Truck Simulator 2 2015-05-28 12:23 - 2015-05-28 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics 2015-05-28 12:10 - 2015-05-28 12:10 - 00000000 ____D C:\Program Files (x86)\R.G. Mechanics 2015-05-28 10:55 - 2015-05-28 10:55 - 08131992 _____ C:\Users\mRn\Downloads\ZZZZZZZZZZZZZZZZZZZzzzzzscania V 3.0. R, T, ST, K, RLJ.scs ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-23 21:54 - 2009-07-14 06:45 - 00039760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-06-23 21:54 - 2009-07-14 06:45 - 00039760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-06-23 21:46 - 2015-05-07 15:38 - 00000000 ____D C:\Users\mRn\AppData\Roaming\GG 2015-06-23 21:46 - 2015-05-02 10:09 - 00000266 _____ C:\Windows\Tasks\AutoKMS.job 2015-06-23 21:46 - 2015-01-19 16:04 - 00000000 ____D C:\Program Files\SoftEther VPN Client 2015-06-23 21:46 - 2015-01-05 21:34 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-06-23 21:46 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-06-23 21:46 - 2009-07-14 06:51 - 00048969 _____ C:\Windows\setupact.log 2015-06-23 21:45 - 2015-04-14 23:07 - 00000000 ____D C:\ProgramData\NVIDIA 2015-06-23 21:45 - 2010-11-21 05:47 - 00500292 _____ C:\Windows\PFRO.log 2015-06-23 21:45 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports 2015-06-23 21:43 - 2015-01-05 20:51 - 00000000 ____D C:\Program Files (x86)\Steam 2015-06-23 20:49 - 2015-03-31 12:46 - 00000000 ____D C:\Users\mRn\AppData\Roaming\SetMyHomePage 2015-06-23 16:25 - 2015-01-05 23:17 - 00000000 ____D C:\Users\mRn\AppData\Roaming\uTorrent 2015-06-23 14:33 - 2015-04-30 16:39 - 00003942 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{8FA3696F-6D80-4421-B083-6C336A19137E} 2015-06-22 23:03 - 2015-04-13 22:54 - 00000080 _____ C:\Users\mRn\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦 2015-06-22 19:16 - 2015-04-21 09:48 - 00000000 ____D C:\Users\mRn\Desktop\Nowy folder (2) 2015-06-22 19:16 - 2015-03-18 09:14 - 00000000 ____D C:\Users\mRn\Desktop\Camera 2015-06-22 19:16 - 2015-03-09 20:12 - 00000000 ____D C:\Users\mRn\Desktop\Nowy folder (5) 2015-06-22 19:16 - 2015-03-08 13:49 - 00000000 ____D C:\Users\mRn\Desktop\Nowy folder (4) 2015-06-22 19:16 - 2015-01-14 19:08 - 00000000 ____D C:\Users\mRn\Desktop\cs go goood cfg 2015-06-22 19:15 - 2015-02-05 11:38 - 00000000 ____D C:\Users\mRn\Desktop\Nowy folder 2015-06-22 19:01 - 2015-01-09 21:10 - 00000622 _____ C:\Users\mRn\Desktop\Nowy dokument tekstowy.txt 2015-06-22 19:01 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2015-06-22 17:39 - 2015-04-09 11:56 - 00000000 ____D C:\Program Files\Rockstar Games 2015-06-22 17:39 - 2015-03-10 11:58 - 00000000 ____D C:\Program Files (x86)\Rockstar Games 2015-06-21 15:33 - 2015-05-22 07:55 - 00000000 ____D C:\Users\mRn\AppData\Roaming\Dropbox 2015-06-21 15:31 - 2015-05-22 07:57 - 00000000 ___RD C:\Users\mRn\Dropbox 2015-06-18 08:40 - 2011-02-04 19:38 - 00753470 _____ C:\Windows\system32\perfh015.dat 2015-06-18 08:40 - 2011-02-04 19:38 - 00160346 _____ C:\Windows\system32\perfc015.dat 2015-06-18 08:40 - 2009-07-14 07:13 - 01697952 _____ C:\Windows\system32\PerfStringBackup.INI 2015-06-18 08:37 - 2015-01-05 20:22 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-06-16 14:11 - 2015-01-06 12:45 - 00000000 ____D C:\Users\mRn\AppData\Local\JDownloader v2.0 2015-06-15 17:14 - 2010-11-21 09:17 - 00000000 ____D C:\Windows\ShellNew 2015-06-15 16:21 - 2015-01-08 23:57 - 00000000 ____D C:\Users\mRn\AppData\Roaming\vlc 2015-06-15 13:59 - 2015-04-14 23:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-06-15 13:57 - 2015-01-05 20:12 - 01732074 _____ C:\Windows\WindowsUpdate.log 2015-06-15 12:14 - 2015-04-14 13:17 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-06-15 12:09 - 2015-01-05 20:30 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2015-06-12 15:57 - 2015-02-14 15:19 - 00000098 _____ C:\Users\mRn\Desktop\reg.bat 2015-06-09 11:11 - 2015-01-07 00:13 - 00000000 ____D C:\Users\mRn\Documents\The Crew 2015-06-09 11:04 - 2015-01-07 00:13 - 00000000 ____D C:\Users\mRn\Documents\ProfileCache 2015-06-08 12:43 - 2015-01-05 21:37 - 00000000 ____D C:\Users\mRn\Documents\Euro Truck Simulator 2 2015-06-04 08:30 - 2015-01-15 18:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-06-03 21:10 - 2015-04-02 08:13 - 00000000 ____D C:\Users\mRn\Desktop\paintjob 2015-05-30 08:01 - 2015-01-05 23:17 - 00000000 ____D C:\ProgramData\APN 2015-05-28 09:04 - 2015-04-14 23:07 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2015-05-28 09:04 - 2015-04-14 23:07 - 01571696 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2015-05-28 09:04 - 2015-04-14 23:07 - 01320304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2015-05-28 09:04 - 2015-04-14 23:07 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2015-05-28 09:04 - 2015-04-14 23:06 - 00112968 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2015-05-28 09:04 - 2015-04-14 23:06 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2015-05-28 09:04 - 2015-04-14 23:04 - 22946960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-05-28 09:04 - 2015-04-14 23:04 - 14987528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-05-28 09:04 - 2015-04-14 23:04 - 12852152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-05-28 09:04 - 2015-04-14 23:04 - 03379680 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-05-28 09:04 - 2015-04-14 23:04 - 02986392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-05-28 09:04 - 2015-04-14 23:04 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2015-05-28 09:04 - 2015-04-14 23:04 - 00030966 _____ C:\Windows\system32\nvinfo.pb 2015-05-28 09:04 - 2015-04-14 13:16 - 00052880 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2015-05-28 06:15 - 2015-04-14 23:06 - 06872904 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-05-28 06:15 - 2015-04-14 23:06 - 03491984 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-05-28 06:15 - 2015-04-14 23:06 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-05-28 06:15 - 2015-04-14 23:06 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-05-28 06:15 - 2015-04-14 23:06 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-05-28 06:15 - 2015-04-14 23:06 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-05-27 17:11 - 2015-01-19 14:47 - 00000000 ____D C:\Program Files\ASRock 2015-05-27 12:51 - 2015-01-20 21:51 - 00000000 ____D C:\ProgramData\Origin 2015-05-27 12:48 - 2015-04-14 23:06 - 04408727 _____ C:\Windows\system32\nvcoproc.bin 2015-05-27 10:36 - 2015-01-21 16:12 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2015-05-26 14:07 - 2015-05-07 10:22 - 00000000 ____D C:\Users\mRn\Documents\Project CARS ==================== Files in the root of some directories ======= 2015-01-19 14:13 - 2015-05-03 08:45 - 0000003 _____ () C:\Users\mRn\AppData\Local\user_data.ini 2015-04-19 23:32 - 2015-04-19 23:32 - 0740775 _____ () C:\ProgramData\AndyDrivers.zip Some files in TEMP: ==================== C:\Users\mRn\AppData\Local\Temp\130741218385762560.exe C:\Users\mRn\AppData\Local\Temp\13074121840334356684.exe C:\Users\mRn\AppData\Local\Temp\130741222657846910.exe C:\Users\mRn\AppData\Local\Temp\13074122266698743323.exe C:\Users\mRn\AppData\Local\Temp\ADDJJ.exe C:\Users\mRn\AppData\Local\Temp\ammemb.dll C:\Users\mRn\AppData\Local\Temp\ammemb64.dll C:\Users\mRn\AppData\Local\Temp\AVG.exe C:\Users\mRn\AppData\Local\Temp\BEGXD.exe C:\Users\mRn\AppData\Local\Temp\BTREH.exe C:\Users\mRn\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpr2gn6m.dll C:\Users\mRn\AppData\Local\Temp\FEYRV.exe C:\Users\mRn\AppData\Local\Temp\FPTTA.exe C:\Users\mRn\AppData\Local\Temp\ggdrive-menu.exe C:\Users\mRn\AppData\Local\Temp\ggdrive-overlay.exe C:\Users\mRn\AppData\Local\Temp\GQYIV.exe C:\Users\mRn\AppData\Local\Temp\GTA_V_Launcher_1_0_344_1.exe C:\Users\mRn\AppData\Local\Temp\GTA_V_Patch_1_0_350_1.exe C:\Users\mRn\AppData\Local\Temp\ICReinstall_NetMeter 1.1.4 Beta.exe C:\Users\mRn\AppData\Local\Temp\IGKRI.exe C:\Users\mRn\AppData\Local\Temp\installerdll25218716.dll C:\Users\mRn\AppData\Local\Temp\installstats.exe C:\Users\mRn\AppData\Local\Temp\JEDHU.exe C:\Users\mRn\AppData\Local\Temp\JOUZY.exe C:\Users\mRn\AppData\Local\Temp\MALPQ.exe C:\Users\mRn\AppData\Local\Temp\MGQLG.exe C:\Users\mRn\AppData\Local\Temp\MRPBB.exe C:\Users\mRn\AppData\Local\Temp\nvSCPAPI.dll C:\Users\mRn\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\mRn\AppData\Local\Temp\nvStereoApiI.dll C:\Users\mRn\AppData\Local\Temp\nvStInst.exe C:\Users\mRn\AppData\Local\Temp\proxy_vole3968443037763149433.dll C:\Users\mRn\AppData\Local\Temp\Rar.exe C:\Users\mRn\AppData\Local\Temp\SkypeSetup.exe C:\Users\mRn\AppData\Local\Temp\sonarinst.exe C:\Users\mRn\AppData\Local\Temp\SOZSD.exe C:\Users\mRn\AppData\Local\Temp\SRLDetectionLibrary5710649135606786129.dll C:\Users\mRn\AppData\Local\Temp\SynciosDeviceService.exe C:\Users\mRn\AppData\Local\Temp\TrackIR.exe C:\Users\mRn\AppData\Local\Temp\TWQXF.exe C:\Users\mRn\AppData\Local\Temp\USJIM.exe C:\Users\mRn\AppData\Local\Temp\x2blapi.dll C:\Users\mRn\AppData\Local\Temp\xmlUpdater.exe C:\Users\mRn\AppData\Local\Temp\XZPCO.exe C:\Users\mRn\AppData\Local\Temp\ZLFWX.exe C:\Users\mRn\AppData\Local\Temp\ZOXGE.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-06-23 12:36 ==================== End of log ============================