FRST.txt

chromesearch.wim- durny wirus!

Scany z frst w załącznikach. Z góry dziękuję za pomoc :?: :!:


Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 19-11-2017
Uruchomiony przez Filip (administrator) DESKTOP-D79ABC8 (22-11-2017 11:16:29)
Uruchomiony z C:\Users\Filip\Downloads
Załadowane profile: Filip (Dostępne profile: defaultuser0 & Filip)
Platform: Windows 10 Home Wersja 1703 15063.540 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\afwServ.exe
(Essentware) C:\Program Files\Essentware\Common\AccountService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
() C:\Users\Filip\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\KingoSoftService.exe
(Micro-Star International Co., Ltd.) C:\Windows\SysWOW64\MSIService.exe
(Micro-Star Int'l Co., Ltd.) C:\MSI\MSI SUITE\MSIMonitor\MSIFileSyncMonitor.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(MSI) C:\MSI\MSI SUITE\Super-Charger\SuiteChargeService.exe
(MSI) C:\MSI\MSI SUITE\ControlCenter\ComCenService.exe
(MSI) C:\MSI\MSI SUITE\FastBoot\SuiteFastBootService.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(MSI) C:\Windows\SysWOW64\muachost.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5510d series\Bin\ScanToPCActivationApp.exe
(Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro SafeSync\hrfscore.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [SecurityHealth] = & gt; C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] = & gt; C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9229280 2017-06-01] (Realtek Semiconductor)
HKLM\...\Run: [AvgUi] = & gt; C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-10-31] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] = & gt; C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [302744 2017-11-21] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [Fast Boot] = & gt; C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] ()
HKLM-x32\...\Run: [MSI Suite] = & gt; C:\MSI\MSI SUITE\StartMSISuite.exe [576056 2012-07-05] ()
HKLM-x32\...\Run: [Super Charger] = & gt; C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1022928 2017-05-22] (MSI)
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM-x32\...\Run: [Live Update] = & gt; C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26102968 2017-10-12] (Micro-Star INT'L CO., LTD.)
HKU\S-1-5-21-2622056316-3200336429-3875218594-1001\...\Run: [Steam] = & gt; C:\Program Files (x86)\Steam\steam.exe [3101984 2017-10-17] (Valve Corporation)
HKU\S-1-5-21-2622056316-3200336429-3875218594-1001\...\Run: [HP Photosmart 5510d series (NET)] = & gt; C:\Program Files\HP\HP Photosmart 5510d series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2622056316-3200336429-3875218594-1001\...\Run: [SurfEasy] = & gt; C:\Program Files (x86)\SurfEasy VPN\client\SurfEasyVPN.exe startup
HKU\S-1-5-21-2622056316-3200336429-3875218594-1001\...\MountPoints2: {e4f7325a-f368-11e6-a5e8-806e6f6e6963} - " D:\AUTORUN.EXE "
GroupPolicy: Ograniczenia - Chrome & lt; ==== UWAGA

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{286ecfd1-39eb-477d-bb73-7366ce075fba}: [DhcpNameServer] 172.18.11.1
Tcpip\..\Interfaces\{5b5d6f08-02a6-4d6e-8b72-71d46cc8fe2a}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-10-28] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-28] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-09-30] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-30] (Oracle Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\WINDOWS\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll [2017-11-14] ()
FF Plugin: @java.com/DTPlugin,version=11.151.2 - & gt; C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 - & gt; C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-28] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - & gt; C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-14] ()
FF Plugin-x32: @IPCWebComponents - & gt; C:\Program Files (x86)\IPCWebComponents\npIPCReg.dll [2014-11-21] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-09-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-09-30] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision - & gt; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - & gt; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: Adobe Reader - & gt; C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultSearchURL: Default - & gt; hxxps://spiralstab.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default - & gt; SpiralsTab
CHR DefaultSuggestURL: Default - & gt; hxxps://spiralstab.com/suggestions.php?q={searchTerms}
CHR Profile: C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default [2017-11-22]
CHR Extension: (Prezentacje) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Dysk Google) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-15]
CHR Extension: (YouTube) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-15]
CHR Extension: (Adobe Acrobat) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-07]
CHR Extension: (Arkusze) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-15]
CHR Extension: (AdBlock) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-11-13]
CHR Extension: (AVG SafePrice) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2017-11-21]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Gmail) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-15]
CHR Extension: (Chrome Media Router) - C:\Users\Filip\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-17]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ikaooahnheaoeceaipjcmnamnoleeblk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AccountService; C:\Program Files\Essentware\Common\AccountService.exe [211136 2016-02-29] (Essentware) & lt; ==== UWAGA
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [282536 2017-11-21] (AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files (x86)\AVG\Antivirus\afwServ.exe [333488 2017-11-21] (AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7600584 2017-11-21] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-10-31] (AVG Technologies CZ, s.r.o.)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [47056 2017-02-17] (Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2019792 2016-10-13] (Micro-Star INT'L CO., LTD.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-03-17] (Intel Corporation)
R2 KingoSoftService; C:\Users\Filip\AppData\Local\Kingosoft\Kingo Root\update_27205\bin\checkupdate.exe [377832 2017-07-24] ()
R2 Micro Star SCM; C:\WINDOWS\SysWOW64\MSIService.exe [160768 2009-07-09] (Micro-Star International Co., Ltd.) [Brak podpisu cyfrowego]
R2 MSIFileSyncMonitor; C:\MSI\MSI SUITE\MSIMonitor\MSIFileSyncMonitor.exe [13824 2013-09-04] (Micro-Star Int'l Co., Ltd.) [Brak podpisu cyfrowego]
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [80824 2017-06-14] (Micro-Star INT'L CO., LTD.)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [111568 2017-04-05] (MSI)
S2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2298040 2017-09-20] (Micro-Star INT'L CO., LTD.)
R2 MSI_SuiteCharger; C:\MSI\MSI SUITE\Super-Charger\SuiteChargeService.exe [140272 2013-02-19] (MSI)
R2 MSI_SuiteComCen; C:\MSI\MSI SUITE\ControlCenter\ComCenService.exe [333296 2013-05-03] (MSI)
R2 MSI_SuiteFastBoot; C:\MSI\MSI SUITE\FastBoot\SuiteFastBootService.exe [105016 2012-10-26] (MSI)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [174032 2017-04-28] (MSI)
S3 npggsvc; C:\WINDOWS\system32\GameMon.des [7677008 2017-10-16] (INCA Internet Co., Ltd.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [7987104 2017-04-10] (INCA Internet Co., Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-01] (NVIDIA Corporation)
R3 OnlineStorageService; C:\Program Files\Trend Micro SafeSync\hrfscore.exe [7908664 2012-07-12] (Trend Micro Inc.)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [32384 2016-10-03] (The OpenVPN Project)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [18264 2017-02-23] (Intel(R) Corporation)
S2 WMI_Hook_Service; Brak ImagePath

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 AcpiCtlDrv; C:\WINDOWS\System32\drivers\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [176000 2017-11-21] (AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\WINDOWS\System32\drivers\avgbdiska.sys [166624 2017-11-21] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdrivera.sys [314640 2017-11-21] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsha.sys [192584 2017-11-21] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\WINDOWS\System32\drivers\avgbloga.sys [336896 2017-11-21] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniva.sys [51336 2017-11-21] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\System32\drivers\avgHwid.sys [39424 2017-11-21] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [140704 2017-11-21] (AVG Technologies CZ, s.r.o.)
R1 avgNetSec; C:\WINDOWS\System32\drivers\avgNetSec.sys [562568 2017-11-21] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [102792 2017-11-21] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [76832 2017-11-21] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [1018648 2017-11-21] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [447800 2017-11-21] (AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [196392 2017-11-21] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [356880 2017-11-21] (AVG Technologies CZ, s.r.o.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-03-04] (Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-03-04] (Disc Soft Ltd)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [223232 2015-05-07] (Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2015-05-07] (Huawei Technologies Co., Ltd.)
R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (FINTEK Corp.)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2017-03-26] (Highresolution Enterprises [www.highrez.co.uk])
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37064 2016-08-24] (Intel Corporation)
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-05-27] ()
S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [58792 2017-03-05] (Visicom Media Inc.)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (Visicom Media Inc.)
S3 NTIOLib_1_0_C; C:\MSI\MSI SUITE\NTIOLib_X64.sys [11888 2012-03-30] (MSI) [Brak podpisu cyfrowego]
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MSI)
R3 NTIOLib_SuiteComCen; C:\MSI\MSI SUITE\ControlCenter\NTIOLib_X64.sys [13808 2013-04-15] (MSI)
R3 NTIOLib_SuiteFB; C:\MSI\MSI SUITE\FastBoot\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 NTIOLib_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [14288 2017-03-15] (MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_f9309145156afb40\nvlddmkm.sys [14456912 2017-05-19] (NVIDIA Corporation)
U5 NvStUSB; C:\Windows\System32\Drivers\NvStUSB.sys [486968 2016-08-26] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [963056 2017-05-17] (Realtek )
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2016-10-24] ()
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64640 2016-09-05] (QUALCOMM Incorporated)
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [26392 2014-12-03] (DEVGURU Co., LTD.)
S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2017-06-13] (The OpenVPN Project)
R3 taphss6; C:\WINDOWS\System32\drivers\taphss6.sys [42064 2016-04-19] (Anchorfree Inc.)
R3 VBAudioVACMME; C:\WINDOWS\system32\DRIVERS\vbaudio_cable64_win7.sys [41192 2014-09-02] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [54352 2016-08-17] (Intel Corporation)
S3 MSICDSetup; \??\D:\CDriver.sys [X]

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2017-11-22 11:16 - 2017-11-22 11:17 - 000021072 _____ C:\Users\Filip\Downloads\FRST.txt
2017-11-22 11:15 - 2017-11-22 11:16 - 000000000 ____D C:\FRST
2017-11-22 11:15 - 2017-11-22 11:15 - 002391552 _____ (Farbar) C:\Users\Filip\Downloads\FRST64.exe
2017-11-22 10:54 - 2017-11-22 10:56 - 000000030 _____ C:\Users\Filip\AppData\Local\mst.bob
2017-11-22 10:54 - 2017-11-22 10:54 - 000000000 ____D C:\Program Files (x86)\1mwollrvtmm
2017-11-22 10:53 - 2017-11-22 10:53 - 000000000 ____D C:\Users\Filip\Desktop\m2bobek
2017-11-22 10:51 - 2017-11-22 10:52 - 011275430 _____ C:\Users\Filip\Downloads\M2Bob8.6.10.zip
2017-11-22 10:21 - 2017-11-22 10:54 - 000000000 ____D C:\Program Files (x86)\Metin2 -- kopia
2017-11-22 09:25 - 2017-10-16 13:15 - 007677008 _____ (INCA Internet Co., Ltd.) C:\WINDOWS\system32\GameMon.des
2017-11-21 23:51 - 2017-11-05 14:04 - 000887808 _____ C:\Users\Filip\Desktop\PangeaFishbotV2.dll
2017-11-21 21:20 - 2017-11-21 21:20 - 000000000 ____D C:\Users\Filip\AppData\Roaming\AVG
2017-11-21 21:18 - 2017-11-21 21:18 - 000447800 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2017-11-21 21:18 - 2017-11-21 21:18 - 000004008 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2017-11-21 21:18 - 2017-11-21 21:18 - 000002129 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Internet Security.lnk
2017-11-21 21:18 - 2017-11-21 21:18 - 000002117 _____ C:\Users\Public\Desktop\AVG Internet Security.lnk
2017-11-21 21:18 - 2017-11-21 21:17 - 000356880 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2017-11-21 21:18 - 2017-11-21 21:17 - 000196392 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2017-11-21 21:18 - 2017-11-21 21:17 - 000176000 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2017-11-21 21:18 - 2017-11-21 21:17 - 000140704 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2017-11-21 21:18 - 2017-11-21 21:17 - 000102792 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2017-11-21 21:18 - 2017-11-21 21:17 - 000076832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2017-11-21 21:18 - 2017-11-21 21:17 - 000039424 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgHwid.sys
2017-11-21 21:18 - 2017-11-21 21:16 - 001018648 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2017-11-21 21:18 - 2017-11-21 21:16 - 000562568 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetSec.sys
2017-11-21 21:18 - 2017-11-21 21:16 - 000336896 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbloga.sys
2017-11-21 21:18 - 2017-11-21 21:16 - 000314640 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdrivera.sys
2017-11-21 21:18 - 2017-11-21 21:16 - 000192584 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsha.sys
2017-11-21 21:18 - 2017-11-21 21:16 - 000166624 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbdiska.sys
2017-11-21 21:18 - 2017-11-21 21:16 - 000051336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniva.sys
2017-11-21 21:17 - 2017-11-21 21:17 - 000366288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2017-11-21 21:12 - 2017-11-21 21:12 - 000000955 _____ C:\Users\Public\Desktop\AVG.lnk
2017-11-21 21:12 - 2017-11-21 21:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-11-21 21:10 - 2017-11-21 21:13 - 000000000 ____D C:\Program Files (x86)\AVG
2017-11-21 21:10 - 2017-11-21 21:10 - 000003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-11-21 21:08 - 2017-11-22 02:03 - 000000000 ____D C:\ProgramData\Avg
2017-11-21 21:08 - 2017-11-21 21:19 - 000000000 ____D C:\Users\Filip\AppData\Local\Avg
2017-11-21 21:08 - 2017-11-21 21:12 - 000000000 ____D C:\Users\Filip\AppData\Local\AvgSetupLog
2017-11-19 22:16 - 2017-11-19 22:16 - 000000000 ____D C:\cycu_cfg
2017-11-19 20:53 - 2017-11-19 20:53 - 000000368 _____ C:\ErrorLog.txt
2017-11-19 17:32 - 2017-11-22 08:59 - 000003181 _____ C:\Users\Filip\Desktop\settings.xml
2017-11-19 17:31 - 2017-04-28 20:56 - 001978880 _____ (master131) C:\Users\Filip\Desktop\Extreme Injector v3.exe
2017-11-19 15:58 - 2017-11-19 15:59 - 000032768 _____ (www.vtaskstudio.com) C:\Users\Filip\Desktop\tinytask.exe
2017-11-11 20:39 - 2013-09-24 12:04 - 001505104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100d.dll
2017-11-01 18:46 - 2017-11-01 18:47 - 000000047 _____ C:\Users\Filip\AppData\LocalLow\rbxcsettings.rbx
2017-11-01 18:46 - 2017-11-01 18:46 - 000000000 ____D C:\Users\Filip\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2017-11-01 18:46 - 2017-11-01 18:46 - 000000000 ____D C:\Users\Filip\AppData\Local\Roblox
2017-10-31 20:59 - 2017-11-07 16:48 - 000000000 ____D C:\Users\Filip\Desktop\bukkit
2017-10-29 14:11 - 2017-11-09 23:19 - 000000451 _____ C:\Users\Filip\Desktop\Nowy dokument tekstowy.txt
2017-10-28 21:48 - 2017-10-28 21:48 - 000110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2017-10-28 21:48 - 2017-10-28 21:48 - 000000000 ____D C:\Program Files\Java
2017-10-28 21:38 - 2017-10-28 21:38 - 000000000 ____D C:\Users\Filip\BukkitServer
2017-10-28 21:35 - 2017-10-28 21:35 - 000000000 ____D C:\WINDOWS\system32\BukkitServer

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2017-11-22 11:13 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-22 10:48 - 2017-10-13 09:55 - 000000266 __RSH C:\ProgramData\ntuser.pol
2017-11-22 09:26 - 2017-05-20 11:26 - 000000000 ____D C:\Users\Filip
2017-11-22 09:24 - 2017-06-12 19:06 - 000000000 ____D C:\Program Files (x86)\Metin2
2017-11-22 09:09 - 2017-06-12 19:06 - 000000900 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metin2.lnk
2017-11-22 08:50 - 2017-05-20 11:34 - 000004226 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{534545AA-724E-407F-8BC3-7B0AC101C65E}
2017-11-22 08:45 - 2017-05-30 17:00 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-11-22 08:45 - 2017-05-30 17:00 - 000000000 __SHD C:\Users\Filip\IntelGraphicsProfiles
2017-11-22 08:45 - 2017-05-20 11:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-22 08:45 - 2017-05-20 11:31 - 000005638 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-22 08:45 - 2017-03-20 04:59 - 002545184 _____ C:\WINDOWS\system32\perfh015.dat
2017-11-22 08:45 - 2017-03-20 04:59 - 000690428 _____ C:\WINDOWS\system32\perfc015.dat
2017-11-22 08:45 - 2017-02-15 11:30 - 000000000 ____D C:\ProgramData\NVIDIA
2017-11-22 07:19 - 2017-05-20 11:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-22 07:19 - 2017-03-18 12:40 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2017-11-17 21:10 - 2017-06-28 19:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-11-15 14:59 - 2017-05-20 11:34 - 000003566 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-11-15 14:59 - 2017-05-20 11:34 - 000003442 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-11-14 20:21 - 2017-09-07 20:25 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-11-14 20:20 - 2017-09-07 20:25 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-14 15:18 - 2017-05-20 11:34 - 000004700 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-11-14 15:18 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-11-14 15:18 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-11-14 15:17 - 2017-05-20 11:34 - 000004486 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-11-14 14:53 - 2017-02-15 07:41 - 000002278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-14 14:53 - 2017-02-15 07:41 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-11-09 20:41 - 2015-01-06 16:17 - 000000000 ____D C:\Users\Filip\AppData\Roaming\.minecraft
2017-11-03 20:04 - 2017-06-28 19:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2017-11-03 20:04 - 2017-03-26 02:58 - 000000000 ____D C:\Program Files (x86)\MSI
2017-10-31 22:00 - 2017-09-09 23:26 - 000000000 ____D C:\Users\Filip\AppData\Roaming\TS3Client
2017-10-31 20:59 - 2017-03-26 02:58 - 000000000 ____D C:\MSI
2017-10-31 20:58 - 2017-02-19 02:24 - 000000000 ____D C:\Users\Filip\AppData\Local\OpenFM
2017-10-30 18:46 - 2017-03-26 02:03 - 000000000 ____D C:\Program Files (x86)\Steam
2017-10-28 21:48 - 2017-03-18 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-10-23 19:05 - 2017-03-18 22:38 - 000000000 ____D C:\Users\Filip\AppData\Roaming\Vesteris

==================== Pliki w katalogu głównym wybranych folderów =======

2017-03-06 14:23 - 2017-03-06 15:47 - 000014361 _____ () C:\Users\Filip\AppData\Roaming\Explorer.exe.tmp
2017-04-29 22:34 - 2017-04-29 22:36 - 000000021 _____ () C:\Users\Filip\AppData\Local\Autosofted License.txt
2017-11-22 10:54 - 2017-11-22 10:56 - 000000030 _____ () C:\Users\Filip\AppData\Local\mst.bob
2017-10-10 22:00 - 2017-10-10 22:00 - 000016144 _____ () C:\Users\Filip\AppData\Local\recently-used.xbel
2017-03-18 12:13 - 2017-07-18 22:10 - 000007591 _____ () C:\Users\Filip\AppData\Local\resmon.resmoncfg
2017-03-18 09:18 - 2017-03-18 09:18 - 000000552 _____ () C:\Users\Filip\AppData\Local\TroubleshooterConfig.json
2017-10-05 22:26 - 2017-10-07 09:12 - 000000130 _____ () C:\Users\Filip\AppData\Local\uts.ini
2017-09-18 12:07 - 2017-09-18 12:07 - 000000000 _____ () C:\Users\Filip\AppData\Local\{7CFC9C5A-5745-418B-A7D8-672CD549F76A}

Niektóre pliki w TEMP:
====================
2017-11-12 11:20 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\05d4174.dll
2017-11-12 03:46 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\091aee.dll
2017-11-12 13:16 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\125adf321.dll
2017-11-12 12:33 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\269257993.dll
2017-11-12 13:21 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\4edb6c50b.dll
2017-11-11 23:50 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\5633c1.dll
2017-11-12 12:59 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\67f323.dll
2017-11-12 12:34 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\6ddef.dll
2017-11-12 11:19 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\7858f.dll
2017-11-12 17:21 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\89664db5.dll
2017-11-06 20:26 - 2017-01-27 00:55 - 000024576 _____ () C:\Users\Filip\AppData\Local\Temp\8995f.dll
2017-11-06 20:25 - 2017-01-27 00:55 - 000024576 _____ () C:\Users\Filip\AppData\Local\Temp\91223d50.dll
2017-11-12 13:15 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\9609b.dll
2017-11-12 12:55 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\a58db2bf.dll
2017-11-12 03:45 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\a95c1c992.dll
2017-11-12 03:45 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\b15858da.dll
2017-11-11 23:50 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\b6447899.dll
2017-11-12 03:44 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\b72dd.dll
2017-11-12 17:22 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\c1126.dll
2017-11-11 23:51 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\c3c28595.dll
2017-11-12 09:54 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\d0b38b.dll
2017-11-12 12:47 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\d170a86d.dll
2017-11-11 23:54 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\d54ebc7.dll
2017-11-12 17:22 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\da7fb.dll
2017-06-28 20:09 - 2012-03-30 14:26 - 000083296 _____ (Microsoft Corporation) C:\Users\Filip\AppData\Local\Temp\devcon.exe
2017-11-12 03:45 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\f1a224.dll
2017-11-12 19:09 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\f39d51e90.dll
2017-11-21 23:49 - 2017-11-21 23:49 - 004022784 _____ () C:\Users\Filip\AppData\Local\Temp\f81c0a.exe
2017-11-12 12:43 - 2017-11-03 15:32 - 001140736 _____ () C:\Users\Filip\AppData\Local\Temp\fc6c6d2c2.dll
2017-08-23 14:07 - 2017-08-23 14:07 - 001533293 _____ ( ) C:\Users\Filip\AppData\Local\Temp\ICReinstall_Minecraft by Zyczu 1.7.2_0565459982.exe
2017-07-05 23:49 - 2017-07-05 23:49 - 000017408 ____N (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-32-8137076343053083920.dll
2017-10-31 22:47 - 2017-10-31 22:47 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-1010087907062639471.dll
2017-11-07 16:48 - 2017-11-07 16:48 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-1233509249005420759.dll
2017-11-05 20:34 - 2017-11-05 20:34 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-1327948099677131430.dll
2017-11-05 20:21 - 2017-11-05 20:21 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-1415615291879160252.dll
2017-11-05 16:11 - 2017-11-05 16:11 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-1570328224041262856.dll
2017-11-05 17:38 - 2017-11-05 17:38 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-1607737561863703037.dll
2017-10-31 22:16 - 2017-10-31 22:16 - 000019968 ____N (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-1635928471028525816.dll
2017-11-05 17:51 - 2017-11-05 17:51 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-1638807891795041225.dll
2017-11-05 20:32 - 2017-11-05 20:32 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-1663757085310403724.dll
2017-10-31 21:12 - 2017-10-31 21:12 - 000019968 ____N (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-1858751818964532414.dll
2017-11-05 19:53 - 2017-11-05 19:53 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-1984921952377341988.dll
2017-11-05 17:58 - 2017-11-05 17:58 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-2157528632418000315.dll
2017-11-05 17:54 - 2017-11-05 17:54 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-2289781132097552028.dll
2017-10-31 23:11 - 2017-10-31 23:11 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-2369722552067435528.dll
2017-10-31 21:39 - 2017-10-31 21:39 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-2465034703152650140.dll
2017-10-31 21:02 - 2017-10-31 21:02 - 000019968 ____N (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-2701601603996193656.dll
2017-10-31 22:53 - 2017-10-31 22:53 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-2721757449603001269.dll
2017-10-31 22:48 - 2017-10-31 22:48 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-2984221439475666777.dll
2017-11-05 17:11 - 2017-11-05 17:11 - 000019968 ____N (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-351730372042865190.dll
2017-11-05 20:02 - 2017-11-05 20:02 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-3560951836299374124.dll
2017-10-31 22:47 - 2017-10-31 22:47 - 000019968 ____N (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-3581487293158434409.dll
2017-11-05 17:29 - 2017-11-05 17:29 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-4351846170426558777.dll
2017-11-05 20:10 - 2017-11-05 20:10 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-456733025506185265.dll
2017-10-31 22:17 - 2017-10-31 22:17 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-4751697868943160456.dll
2017-11-05 17:58 - 2017-11-05 17:58 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-4777721248741453044.dll
2017-11-05 17:18 - 2017-11-05 17:18 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-495254384548960060.dll
2017-10-31 22:17 - 2017-10-31 22:17 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-5060995649388208344.dll
2017-10-31 22:17 - 2017-10-31 22:17 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-5230251042517777650.dll
2017-11-05 17:38 - 2017-11-05 17:38 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-524954019904024134.dll
2017-10-31 22:51 - 2017-10-31 22:51 - 000019968 ____N (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-5438341997322895742.dll
2017-10-31 23:04 - 2017-10-31 23:04 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-5468225575749126652.dll
2017-10-31 22:19 - 2017-10-31 22:19 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-5666789428560677267.dll
2017-11-07 14:52 - 2017-11-07 14:52 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-5671704356784871526.dll
2017-10-31 23:07 - 2017-10-31 23:07 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-615506398018428424.dll
2017-11-05 17:13 - 2017-11-05 17:13 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-6227609411783266801.dll
2017-10-31 23:00 - 2017-10-31 23:00 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-6382665622964196404.dll
2017-10-31 21:03 - 2017-10-31 21:03 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-6567737897012765371.dll
2017-10-31 21:06 - 2017-10-31 21:06 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-6571706941823167819.dll
2017-11-05 17:15 - 2017-11-05 17:15 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-664906938301242053.dll
2017-11-05 17:12 - 2017-11-05 17:12 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-6693022135005382377.dll
2017-10-31 21:05 - 2017-10-31 21:05 - 000019968 ____N (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-6818984230471069098.dll
2017-10-31 21:38 - 2017-10-31 21:38 - 000019968 ____N (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-6955035350279415514.dll
2017-10-31 21:16 - 2017-10-31 21:16 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-7439184476685431787.dll
2017-11-05 17:44 - 2017-11-05 17:44 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-8129942150142327413.dll
2017-10-31 21:02 - 2017-10-31 21:02 - 000019968 ____N (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-8573105069984231866.dll
2017-11-05 17:26 - 2017-11-05 17:26 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-857783258959520075.dll
2017-11-05 17:31 - 2017-11-05 17:31 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-8628706328612834862.dll
2017-10-31 23:08 - 2017-10-31 23:08 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-8743858873223452039.dll
2017-11-05 17:12 - 2017-11-05 17:12 - 000019968 ____N (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-8786265804668660598.dll
2017-10-31 21:14 - 2017-10-31 21:14 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-881514737080981867.dll
2017-11-05 17:28 - 2017-11-05 17:28 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-8822899153156225984.dll
2017-11-05 17:17 - 2017-11-05 17:17 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-902482124884068252.dll
2017-10-31 23:13 - 2017-10-31 23:13 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-18fbb24-908896226833823230.dll
2017-11-05 16:56 - 2017-11-05 16:56 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-53fccdf-1094510369583976860.dll
2017-11-05 16:54 - 2017-11-05 16:54 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-53fccdf-1472891413595239012.dll
2017-11-05 16:22 - 2017-11-05 16:22 - 000019968 _____ (Red Hat(R), Inc.) C:\Users\Filip\AppData\Local\Temp\jansi-64-git-Bukkit-53fccdf-5830278058312361378.dll
2017-09-30 21:10 - 2017-09-30 21:10 - 000740416 _____ (Oracle Corporation) C:\Users\Filip\AppData\Local\Temp\jre-8u144-windows-au.exe
2017-10-19 21:25 - 2017-10-19 21:25 - 005941632 _____ (Igor Pavlov) C:\Users\Filip\AppData\Local\Temp\Package_pl_ww.exe
2017-06-28 19:08 - 2017-06-28 19:08 - 000192512 _____ () C:\Users\Filip\AppData\Local\Temp\sfamcc00001.dll
2015-02-10 18:56 - 2015-02-10 18:56 - 000105984 _____ () C:\Users\Filip\AppData\Local\Temp\sfextra.dll
2017-10-31 21:07 - 2017-10-31 21:07 - 000515584 _____ () C:\Users\Filip\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll
2017-09-09 23:20 - 2017-09-09 23:20 - 015301888 _____ (Microsoft Corporation) C:\Users\Filip\AppData\Local\Temp\vcredist_x64.exe

==================== Bamital & volsnap ======================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\WINDOWS\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo

LastRegBack: 2017-11-19 14:16

==================== Koniec FRST.txt ============================


Pobierz plik - link do postu