Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:09-12-2015 Uruchomiony przez 7 (administrator) 7-KOMPUTER (09-12-2015 19:08:54) Uruchomiony z C:\Users\7\Downloads Załadowane profile: 7 (Dostępne profile: 7) Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 9 (Domyślna przeglądarka: FF) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe () C:\ProgramData\DatacardService\HWDeviceService64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe () C:\Windows\System32\PnkBstrA.exe (Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe () C:\Program Files (x86)\PLAY ONLINE\PLAY ONLINE.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (Microsoft Corporation) C:\Windows\System32\alg.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Users\7\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2757424 2015-11-16] (NVIDIA Corporation) HKU\S-1-5-21-4265689537-3529688487-1946468061-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{0E80F358-9820-4690-B350-19F0D77484D1}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 Tcpip\..\Interfaces\{1DC17836-65AE-4E9A-A442-28B42D4105B1}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{24BE0EEC-B637-491C-9886-7AF7C990890E}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{62FB6A63-C5D6-44D2-A01E-90007E1E4ABB}: [NameServer] 89.108.195.21 89.108.202.21 Tcpip\..\Interfaces\{77E64C5F-EE76-46CC-B50D-825420610378}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{979272C1-EF43-4218-9F33-35EB1A03F925}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{9C0F0505-2FE3-4DD5-92FD-A17264F19EB0}: [NameServer] 89.108.195.21 89.108.202.21 Tcpip\..\Interfaces\{9D7466EC-3E9F-4E71-B90A-08874350E47C}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{A7C8B9DC-AF0A-42F7-8D5A-DF71BFC9CC19}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{B8B00FFA-35D9-48AF-A4B7-E45B084531C8}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 Tcpip\..\Interfaces\{C8124D8B-866D-4323-9D57-2412392F315D}: [NameServer] 89.108.195.21 89.108.202.21 Tcpip\..\Interfaces\{C98A1EDA-5C54-42C6-9E99-AC5FEBF3387D}: [NameServer] 89.108.195.20 89.108.202.20 Tcpip\..\Interfaces\{DAC59D0C-82FC-4D81-B936-07ED07C313C8}: [NameServer] 89.108.195.21 89.108.202.21 Tcpip\..\Interfaces\{E7BD04E5-56E8-47C5-A475-908D08F7DFB2}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{EF5CEDFE-6179-464D-964B-E0E3DC3B0345}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{F6E8C52C-3087-4FD6-A3A0-A691FED19AED}: [DhcpNameServer] 192.168.8.1 192.168.8.1 Tcpip\..\Interfaces\{FDC95184-0D2A-4970-AB03-03E8EAE97B44}: [NameServer] 89.108.202.21 89.108.195.21 Internet Explorer: ================== FireFox: ======== FF ProfilePath: C:\Users\7\AppData\Roaming\Mozilla\Firefox\Profiles\bminv9oc.default-1449679522893 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-21] () FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-21] () FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-14] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-14] (NVIDIA Corporation) ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2505472 2015-10-09] (ESET) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156400 2015-11-16] (NVIDIA Corporation) R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2013-10-28] () R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-11-16] (NVIDIA Corporation) R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8133424 2015-11-16] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5915440 2015-11-16] (NVIDIA Corporation) S3 Origin Client Service; E:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-03] (Electronic Arts) S4 PLAY ONLINE. RunOuc; C:\Program Files (x86)\PLAY ONLINE\UpdateDog\ouc.exe [651856 2013-10-26] () R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-05-04] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-05-04] () S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-08-01] (Disc Soft Ltd) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [264040 2015-09-23] (ESET) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [186784 2015-09-23] (ESET) R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [170792 2015-09-23] (ESET) R3 hwusb_cdcacm; C:\Windows\System32\DRIVERS\ew_cdcacm.sys [121728 2013-12-10] (Huawei Technologies Co., Ltd.) R3 hwusb_wwanecm; C:\Windows\System32\DRIVERS\ew_wwanecm.sys [376704 2013-12-10] (Huawei Technologies Co., Ltd.) S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49264 2014-07-28] (Visicom Media Inc.) S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35440 2014-05-13] (Visicom Media Inc.) S3 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19760 2015-11-16] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50472 2015-11-16] (NVIDIA Corporation) R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions) S3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [23552 2014-06-30] (Windows (R) Win 7 DDK provider) S3 splitcam_hd_driver; C:\Windows\System32\DRIVERS\splitcam_hd_driver.sys [37496 2014-06-30] (Windows (R) Win 7 DDK provider) S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-12-09 19:03 - 2015-12-09 19:03 - 00000000 ____D C:\Users\7\AppData\Local\ESET 2015-12-09 18:12 - 2015-12-09 18:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2015-12-09 18:12 - 2015-12-09 18:12 - 00000000 ____D C:\ProgramData\ESET 2015-12-09 18:12 - 2015-12-09 18:12 - 00000000 ____D C:\Program Files\ESET 2015-12-09 18:09 - 2015-12-09 18:09 - 00030932 _____ C:\Users\7\Downloads\Shortcut.txt 2015-12-09 17:53 - 2015-12-09 17:54 - 02837704 _____ (ESET) C:\Users\7\Downloads\eset_nod32_antivirus_live_installer_.exe 2015-12-09 17:31 - 2015-12-09 17:35 - 22908888 _____ (Malwarebytes ) C:\Users\7\Downloads\mbam-setup-2.2.0.1024.exe 2015-12-09 16:49 - 2015-12-09 16:49 - 00000000 _____ C:\autoexec.bat 2015-12-09 16:25 - 2015-12-09 19:05 - 00013636 _____ C:\Users\7\Downloads\Fixlog.txt 2015-12-09 16:24 - 2015-12-09 18:53 - 00006212 _____ C:\Users\7\Desktop\fixlist.txt 2015-12-09 16:24 - 2015-12-09 16:24 - 00000000 _____ C:\Users\7\Desktop\Nowy dokument tekstowy (2).txt 2015-12-09 16:23 - 2015-12-09 19:09 - 00009677 _____ C:\Users\7\Downloads\FRST.txt 2015-12-09 16:23 - 2015-12-09 18:09 - 00030720 _____ C:\Users\7\Downloads\Addition.txt 2015-12-09 16:22 - 2015-12-09 19:08 - 00000000 ____D C:\FRST 2015-12-09 16:22 - 2015-12-09 16:22 - 02369024 _____ (Farbar) C:\Users\7\Downloads\FRST64.exe 2015-12-09 16:21 - 2015-12-09 16:21 - 24759470 _____ C:\Users\7\Desktop\U222titled.mp4 2015-12-09 15:51 - 2015-12-09 15:58 - 00000000 ____D C:\ComboFix 2015-12-09 14:25 - 2015-12-09 17:45 - 00000000 ____D C:\Users\7\Desktop\Stare dane programu Firefox 2015-12-09 12:35 - 2015-12-09 12:55 - 240606944 _____ (AVG Technologies CZ, s.r.o.) C:\Users\7\Downloads\AVG_Antivirus_Free_x64_693.exe 2015-12-07 12:51 - 2015-12-07 22:35 - 00000000 ____D C:\Users\7\Desktop\obrazk 2015-12-06 22:52 - 2015-12-06 22:52 - 00000000 _____ C:\Users\7\Desktop\Nowy dokument tekstowy.txt 2015-12-06 16:43 - 2015-12-06 16:42 - 21141840 _____ C:\Users\7\Documents\aurelka.fbr 2015-12-06 02:16 - 2015-12-06 02:16 - 17286493 _____ C:\Users\7\Downloads\Mistrzostwa Polski MMA 2014 OFS Finał 61kg Stefaniak Paweł # Kabiesz Kamil(1).mp4 2015-12-05 17:08 - 2015-12-05 17:08 - 00000000 ____D C:\Users\7\Downloads\Virtual Audio Cable 4.10 2015-12-05 17:07 - 2015-12-05 17:07 - 00380331 _____ C:\Users\7\Downloads\Virtual Audio Cable 4.10.rar 2015-12-04 16:21 - 2015-12-04 16:21 - 00000000 ____D C:\Users\7\Downloads\Sobota - Sobota (2015) 2015-12-04 16:21 - 2015-12-04 16:21 - 00000000 ____D C:\Users\7\Downloads\Białas - Rehab (2015) 2015-12-04 15:16 - 2015-12-04 15:59 - 132578589 _____ C:\Users\7\Downloads\Sobota - Sobota (2015).rar 2015-12-04 15:09 - 2015-12-04 15:28 - 102142441 _____ C:\Users\7\Downloads\Białas - Rehab (2015).rar 2015-12-04 13:28 - 2015-12-04 13:30 - 00000000 ____D C:\Users\7\Downloads\HLSS 3.0 2015-12-04 13:27 - 2015-12-04 13:27 - 00333800 _____ C:\Users\7\Downloads\HLSS 3.0.zip 2015-12-03 16:34 - 2015-12-03 17:56 - 1333223280 _____ C:\Users\7\Downloads\rws_mia_malkova_bb031913_v2_720p_8000.mp4.part 2015-12-03 16:21 - 2015-12-03 16:21 - 00000000 ____D C:\Users\7\Downloads\Białas & Quebonafide - Demówka EP (2015) 2015-12-03 16:14 - 2015-12-03 16:21 - 55363932 _____ C:\Users\7\Downloads\Białas & Quebonafide - Demówka EP (2015).rar 2015-12-01 20:32 - 2015-12-08 00:19 - 00000000 ____D C:\Users\7\Desktop\me 2015-11-28 13:25 - 2015-11-28 13:25 - 00000000 ____D C:\Users\7\Downloads\va_-_prosto_mixtape_cztery 2015-11-28 12:59 - 2015-11-28 13:21 - 189915153 _____ C:\Users\7\Downloads\va_-_prosto_mixtape_cztery.rar 2015-11-27 02:50 - 2015-11-27 02:50 - 23690772 _____ C:\Users\7\Desktop\Untitled.mp4 2015-11-27 02:45 - 2015-11-27 02:45 - 20329488 _____ C:\Users\7\Downloads\acdsee-video-studio.exe 2015-11-23 01:57 - 2015-11-23 01:59 - 00000000 ____D C:\Users\7\Downloads\Polish 2015-11-23 01:46 - 2015-11-23 01:54 - 673433846 _____ C:\Users\7\Downloads\Polish.7z 2015-11-21 03:17 - 2015-11-21 03:26 - 00000000 ____D C:\Users\7\Documents\Assassin's Creed Syndicate 2015-11-21 03:17 - 2015-11-21 03:17 - 00000000 ____D C:\Users\7\AppData\Roaming\uplay 2015-11-21 03:16 - 2015-11-16 04:35 - 00112712 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2015-11-21 03:15 - 2015-11-14 06:53 - 00102520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2015-11-21 03:13 - 2015-11-16 04:35 - 42913912 _____ C:\Windows\system32\nvcompiler.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 37881976 _____ C:\Windows\SysWOW64\nvcompiler.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 22310008 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 18363000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 16553568 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 15717864 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 14835872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 13527440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 12034248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 11130488 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-11-21 03:13 - 2015-11-16 04:35 - 02870576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 02490672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 01905272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435900.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 01564792 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435900.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00877176 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00861816 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00689272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00673912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00501056 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00467912 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00422240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00413816 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00388024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00369272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00205456 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2015-11-21 03:13 - 2015-11-16 04:35 - 00177416 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00155976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00069416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2015-11-21 03:13 - 2015-11-16 04:35 - 00050472 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2015-11-21 03:13 - 2015-11-16 04:35 - 00039240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2015-11-21 02:49 - 2015-11-21 02:59 - 302252144 _____ (NVIDIA Corporation) C:\Users\7\Downloads\359.00-desktop-win8-win7-winvista-64bit-international-whql.exe 2015-11-20 00:53 - 2015-11-20 00:53 - 65035172 _____ C:\Users\7\Desktop\BANGLA BANGLA.wav 2015-11-19 16:54 - 2015-11-19 16:54 - 00000000 ____D C:\Users\7\Downloads\donGURALesko - Magnum Ignotum (preludium) (2015) 2015-11-16 22:25 - 2015-11-16 22:25 - 00000000 ____D C:\Users\7\Tracing 2015-11-16 22:24 - 2015-12-09 15:49 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-11-16 22:24 - 2015-12-08 02:53 - 00000000 ____D C:\Users\7\AppData\Roaming\Skype 2015-11-16 22:24 - 2015-11-16 22:24 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk 2015-11-16 22:24 - 2015-11-16 22:24 - 00000000 ____D C:\Users\7\AppData\Local\Skype 2015-11-16 22:24 - 2015-11-16 22:24 - 00000000 ____D C:\ProgramData\Skype 2015-11-16 22:24 - 2015-11-16 22:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-11-16 18:10 - 2015-12-09 15:51 - 05640425 ____R (Swearware) C:\Users\7\Downloads\ComboFix.exe 2015-11-16 18:09 - 2015-11-20 00:53 - 00000000 ____D C:\Users\7\AppData\Roaming\Audacity 2015-11-16 18:08 - 2015-11-16 18:09 - 00000000 ____D C:\Program Files (x86)\Audacity 2015-11-16 18:08 - 2015-11-16 18:08 - 00000983 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk 2015-11-16 18:08 - 2015-11-16 18:08 - 00000971 _____ C:\Users\Public\Desktop\Audacity.lnk 2015-11-16 18:07 - 2015-11-16 18:07 - 25186399 _____ (Audacity Team ) C:\Users\7\Downloads\audacity-win-2.1.1.exe 2015-11-16 17:50 - 2015-11-16 17:50 - 00001467 _____ C:\Users\7\AppData\Local\recently-used.xbel 2015-11-15 12:47 - 2015-11-16 13:14 - 00000000 ____D C:\Users\7\AppData\LocalLow\uTorrent 2015-11-15 02:55 - 2015-11-15 02:55 - 00000000 ____D C:\Users\7\Downloads\Słoń - Brain Dead Familia (CD) (2015) 2015-11-12 15:46 - 2015-11-12 15:46 - 00000000 ____D C:\Users\7\Downloads\Gedz-Serce_Bije_W_Rytm-PL-2CD-2013-p4weu 2015-11-12 15:46 - 2015-11-12 15:46 - 00000000 ____D C:\Users\7\Downloads\dre_4053_2 ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-12-09 19:06 - 2014-07-31 19:21 - 00000000 ____D C:\ProgramData\NVIDIA 2015-12-09 19:06 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-12-09 19:04 - 2015-04-08 15:49 - 00000000 ____D C:\Windows\pss 2015-12-09 19:04 - 2015-02-02 15:35 - 00000951 _____ C:\Users\Public\Desktop\FIFA 15.lnk 2015-12-09 19:04 - 2015-01-23 15:19 - 00000000 ____D C:\Users\7\Documents\Euro Truck Simulator 2 2015-12-09 19:04 - 2014-08-01 19:22 - 00001025 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-12-09 18:31 - 2009-07-14 05:45 - 00028320 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-12-09 18:31 - 2009-07-14 05:45 - 00028320 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-12-09 18:14 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2015-12-09 18:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows 2015-12-09 17:51 - 2014-07-31 19:04 - 00001455 _____ C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-12-09 17:51 - 2014-07-31 19:04 - 00001421 _____ C:\Users\7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2015-12-09 17:50 - 2011-04-12 14:21 - 00858808 _____ C:\Windows\system32\perfh015.dat 2015-12-09 17:50 - 2011-04-12 14:21 - 00215040 _____ C:\Windows\system32\perfc015.dat 2015-12-09 17:50 - 2009-07-14 06:13 - 01863508 _____ C:\Windows\system32\PerfStringBackup.INI 2015-12-09 17:49 - 2014-07-31 19:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-12-09 16:49 - 2014-07-31 19:04 - 00000000 ____D C:\Users\7 2015-12-09 16:26 - 2014-08-01 21:21 - 00000000 ____D C:\Program Files (x86)\Steam 2015-12-09 16:16 - 2014-12-03 03:00 - 00000057 _____ C:\Windows\ACDSeeVideoStudio.INI 2015-12-09 16:08 - 2014-12-03 03:00 - 00000000 ____D C:\Users\7\Documents\ACDSee Video Studio 2015-12-09 15:58 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini 2015-12-09 15:44 - 2014-08-02 00:32 - 00000000 ____D C:\ProgramData\Origin 2015-12-09 14:18 - 2014-08-01 19:22 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-12-08 19:47 - 2014-08-02 01:23 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2015-12-08 19:37 - 2014-08-02 01:23 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.ex0 2015-12-07 14:25 - 2014-08-01 23:08 - 00000000 ____D C:\Users\7\AppData\Roaming\uTorrent 2015-12-07 14:25 - 2014-08-01 22:18 - 00000000 ____D C:\Users\7\AppData\Roaming\DAEMON Tools Lite 2015-12-07 14:25 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\ModemLogs 2015-12-06 23:38 - 2014-08-02 01:22 - 00000000 ____D C:\ProgramData\Package Cache 2015-12-04 23:06 - 2014-08-02 00:37 - 00000000 ____D C:\Users\7\AppData\Local\Origin 2015-11-21 12:32 - 2014-08-01 20:25 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-11-21 12:32 - 2014-08-01 20:25 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-11-21 03:16 - 2014-08-02 12:20 - 00000000 ____D C:\Users\7\AppData\Local\NVIDIA Corporation 2015-11-21 03:15 - 2014-08-02 12:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-11-21 03:14 - 2014-07-31 19:19 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2015-11-16 18:13 - 2015-02-04 16:12 - 00000000 ____D C:\Qoobox 2015-11-16 17:52 - 2015-07-31 00:21 - 00000000 ____D C:\Users\7\.gimp-2.8 2015-11-16 04:35 - 2015-02-04 13:54 - 03159248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-11-16 04:35 - 2014-08-02 12:20 - 01828160 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2015-11-16 04:35 - 2014-08-02 12:20 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2015-11-16 04:35 - 2014-08-02 12:20 - 01509824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2015-11-16 04:35 - 2014-08-02 12:20 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2015-11-16 04:35 - 2014-08-02 12:18 - 12770944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-11-16 04:35 - 2014-08-02 12:18 - 01572496 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2015-11-16 04:35 - 2014-08-02 12:18 - 00072504 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2015-11-16 04:35 - 2014-07-31 19:21 - 00112760 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2015-11-16 04:35 - 2014-07-31 19:21 - 00105080 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2015-11-16 04:35 - 2014-07-31 19:20 - 17515528 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-11-16 04:35 - 2014-07-31 19:20 - 15122296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-11-16 04:35 - 2014-07-31 19:20 - 00033607 _____ C:\Windows\system32\nvinfo.pb 2015-11-16 04:35 - 2014-07-31 19:19 - 03579696 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-11-14 07:06 - 2014-07-31 19:21 - 06358832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-11-14 07:06 - 2014-07-31 19:21 - 02983032 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-11-14 07:06 - 2014-07-31 19:21 - 02554488 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-11-14 07:06 - 2014-07-31 19:21 - 00938800 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-11-14 07:06 - 2014-07-31 19:21 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-11-14 07:06 - 2014-07-31 19:21 - 00062768 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-11-11 10:12 - 2009-07-14 06:08 - 00032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT ==================== Pliki w katalogu głównym wybranych folderów ======= 2015-08-30 23:21 - 2015-08-30 23:21 - 0000058 _____ () C:\Users\7\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat 2015-11-16 17:50 - 2015-11-16 17:50 - 0001467 _____ () C:\Users\7\AppData\Local\recently-used.xbel 2014-08-20 16:25 - 2014-08-26 15:22 - 0007596 _____ () C:\Users\7\AppData\Local\Resmon.ResmonCfg ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2015-12-01 16:20 ==================== Koniec FRST.txt ============================