Aktualizacje na programosy.pl: AquaSoft StagesFocuskyNetwork NotepadDiagram DesignerNTLite Free PortableNTLite Freen-Track StudioSoftPerfect WiFi GuardVidyard GoVideo  

  • Ogłoszenie:

Svhost 90% ramu zajętę

Bezpieczeństwo systemów, usuwanie wirusów, dobieranie programów antywirusowych. Obowiązkowe logi w tym dziale: trzy z FRST + Gmer.
Wyślij odpowiedź

Svhost 90% ramu zajętę

Postprzez Lijke 17 Lut 2016, 19:24

reklama
WItam,
wczoraj robiłem formata dzisiaj patrze w ram i coś jest nei tak svhost zabiera 90% ramu.
COmbo:
Kod: Zaznacz wszystko
ComboFix 16-02-15.01 - Mistrz 2016-02-17  18:19:09.1.4 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1250.48.1033.18.4024.2695 [GMT -8:00]
Uruchomiony z: c:\users\Mistrz\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2016-01-18 do 2016-02-18  )))))))))))))))))))))))))))))))
.
.
2016-02-18 02:21 . 2016-02-18 02:21   --------   d-----w-   c:\users\Default\AppData\Local\temp
2016-02-18 00:13 . 2016-02-18 00:13   75888   ----a-w-   c:\programdata\Microsoft\Windows Defender\Definition Updates\{E28E41B2-2B9B-4222-9A74-CD1F095CD2E1}\offreg.2064.dll
2016-02-17 17:21 . 2015-12-16 18:15   11154520   ----a-w-   c:\programdata\Microsoft\Windows Defender\Definition Updates\{E28E41B2-2B9B-4222-9A74-CD1F095CD2E1}\mpengine.dll
2016-02-17 06:01 . 2016-02-17 06:01   --------   d-----w-   c:\program files (x86)\Mozilla Maintenance Service
2016-02-17 04:49 . 2016-02-17 04:49   --------   d-----w-   c:\programdata\Licenses
2016-02-17 04:49 . 2016-02-17 04:49   --------   d-----w-   c:\program files (x86)\Common Files\BinarySense
2016-02-17 04:49 . 2016-02-17 04:49   --------   d-----w-   c:\program files (x86)\BinarySense
2016-02-17 04:37 . 2010-05-26 19:41   511328   ----a-w-   c:\windows\system32\d3dx10_43.dll
2016-02-17 04:37 . 2010-05-26 19:41   470880   ----a-w-   c:\windows\SysWow64\d3dx10_43.dll
2016-02-17 04:37 . 2010-05-26 19:41   276832   ----a-w-   c:\windows\system32\d3dx11_43.dll
2016-02-17 04:37 . 2010-05-26 19:41   248672   ----a-w-   c:\windows\SysWow64\d3dx11_43.dll
2016-02-17 04:37 . 2010-05-26 19:41   1998168   ----a-w-   c:\windows\SysWow64\D3DX9_43.dll
2016-02-17 04:37 . 2010-05-26 19:41   2401112   ----a-w-   c:\windows\system32\D3DX9_43.dll
2016-02-17 04:37 . 2016-01-23 02:54   1542600   ----a-w-   c:\windows\SysWow64\nvspcap.dll
2016-02-17 04:37 . 2016-01-23 02:54   1316184   ----a-w-   c:\windows\SysWow64\nvspbridge.dll
2016-02-17 04:37 . 2016-01-23 02:53   1859936   ----a-w-   c:\windows\system32\nvspcap64.dll
2016-02-17 04:37 . 2016-01-23 02:53   1756608   ----a-w-   c:\windows\system32\nvspbridge64.dll
2016-02-17 04:37 . 2016-01-23 02:53   112216   ----a-w-   c:\windows\system32\NvRtmpStreamer64.dll
2016-02-17 04:36 . 2016-02-17 06:29   --------   d-----w-   c:\programdata\NVIDIA
2016-02-17 04:36 . 2016-02-09 05:26   111672   ----a-w-   c:\windows\SysWow64\nvStreaming.exe
2016-02-17 04:36 . 2016-02-09 05:41   6368824   ----a-w-   c:\windows\system32\nvcpl.dll
2016-02-17 04:36 . 2016-02-09 05:41   2993720   ----a-w-   c:\windows\system32\nvsvc64.dll
2016-02-17 04:36 . 2016-02-09 05:41   81856   ----a-w-   c:\windows\system32\nv3dappshextr.dll
2016-02-17 04:36 . 2016-02-09 05:41   69568   ----a-w-   c:\windows\system32\nvshext.dll
2016-02-17 04:36 . 2016-02-09 05:41   530368   ----a-w-   c:\windows\system32\nv3dappshext.dll
2016-02-17 04:36 . 2016-02-09 05:41   392128   ----a-w-   c:\windows\system32\nvmctray.dll
2016-02-17 04:36 . 2016-02-09 05:41   2563128   ----a-w-   c:\windows\system32\nvsvcr.dll
2016-02-17 04:36 . 2016-02-09 05:41   1264696   ----a-w-   c:\windows\system32\nvvsvc.exe
2016-02-17 04:36 . 2016-02-06 01:49   6154909   ----a-w-   c:\windows\system32\nvcoproc.bin
2016-02-17 04:35 . 2016-02-09 08:39   213952   ----a-w-   c:\windows\system32\OpenCL.dll
2016-02-17 04:35 . 2016-02-09 08:39   201664   ----a-w-   c:\windows\SysWow64\OpenCL.dll
2016-02-17 04:35 . 2016-02-17 17:10   --------   d-----w-   c:\programdata\NVIDIA Corporation
2016-02-17 04:35 . 2016-02-17 04:37   --------   d-----w-   c:\program files (x86)\NVIDIA Corporation
2016-02-17 04:34 . 2016-02-17 04:34   --------   d-----w-   c:\programdata\Package Cache
2016-02-17 04:32 . 2016-02-17 04:37   --------   d-----w-   c:\program files\NVIDIA Corporation
2016-02-17 04:31 . 2016-02-17 04:31   --------   d-----w-   C:\NVIDIA
2016-02-17 04:25 . 2016-02-17 04:28   --------   d-----w-   c:\program files (x86)\ElfBot NG
2016-02-17 04:17 . 2016-02-17 04:17   --------   d-----w-   c:\program files\WinRAR
2016-02-17 04:14 . 2016-02-17 04:14   --------   d-----w-   C:\SuperChargerProfile
2016-02-17 04:13 . 2013-04-26 02:24   20464   ----a-w-   c:\windows\system32\drivers\iusb3hcs.sys
2016-02-17 04:13 . 2013-04-26 02:24   786416   ----a-w-   c:\windows\system32\drivers\iusb3xhc.sys
2016-02-17 04:13 . 2013-04-26 02:24   368112   ----a-w-   c:\windows\system32\drivers\iusb3hub.sys
2016-02-17 04:11 . 2016-02-17 04:11   --------   d-----w-   c:\windows\system32\wbem\Framework
2016-02-17 04:09 . 2013-09-16 19:19   16344   ----a-r-   c:\windows\system32\drivers\IntelMEFWVer.dll
2016-02-17 04:08 . 2016-02-17 04:11   --------   d-----w-   c:\programdata\Intel
2016-02-17 04:08 . 2016-02-17 04:10   --------   d-----w-   c:\program files\Intel
2016-02-17 04:07 . 2016-02-17 04:07   --------   d-----w-   c:\program files (x86)\Common Files\postureAgent
2016-02-17 04:07 . 2013-09-16 19:19   99288   ----a-w-   c:\windows\system32\drivers\TeeDriverx64.sys
2016-02-17 04:07 . 2013-09-16 19:19   1795952   ----a-w-   c:\windows\system32\WdfCoInstaller01011.dll
2016-02-17 04:06 . 2016-02-17 04:06   --------   d-----w-   c:\program files\Google
2016-02-17 04:04 . 2013-08-20 12:17   2809048   ----a-w-   c:\windows\system32\RtPgEx64.dll
2016-02-17 04:03 . 2013-07-23 07:39   14048512   ----a-w-   c:\windows\system32\MaxxAudioRealtek64.dll
2016-02-17 04:02 . 2016-02-17 04:13   --------   d-----w-   c:\program files (x86)\Intel
2016-02-17 04:02 . 2013-08-05 19:50   53248   ----a-w-   c:\windows\SysWow64\CSVer.dll
2016-02-17 04:02 . 2016-02-17 04:02   --------   d-----w-   C:\Intel
2016-02-17 04:02 . 2016-02-17 04:14   --------   d-----w-   c:\program files (x86)\MSI
2016-02-17 03:59 . 2016-02-17 03:59   --------   d-----w-   c:\program files (x86)\Microsoft.NET
2016-02-17 03:59 . 2016-02-17 04:49   --------   d-sh--w-   c:\windows\Installer
2016-02-17 03:57 . 2016-02-17 03:57   --------   d-----w-   C:\MSI
2016-02-17 03:54 . 2016-02-17 03:54   --------   d-----w-   c:\users\Mistrz
2016-02-17 03:53 . 2016-02-17 03:53   --------   d-----w-   C:\Recovery
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-12-02 21:18 . 2010-11-21 03:27   301728   ------w-   c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"="c:\program files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [2013-09-16 134616]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-04-26 292848]
"Super-Charger"="c:\program files (x86)\MSI\Super-Charger\Super-Charger.exe" [2013-09-10 490480]
.
c:\users\Mistrz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
HDDlife.lnk - c:\program files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe [2015-10-8 4626696]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 intelsba;Intel(R) Small Business Advantage;c:\program files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe;c:\program files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [x]
R3 MSICDSetup;MSICDSetup;e:\cdriver64.sys;e:\CDriver64.sys [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;e:\ntiolib_x64.sys;e:\NTIOLib_X64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver;c:\windows\system32\drivers\Synth3dVsc.sys;c:\windows\SYSNATIVE\drivers\Synth3dVsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;Remote Deskotop USB Hub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 MSI_SuperCharger;MSI_SuperCharger;c:\program files (x86)\MSI\Super-Charger\ChargeService.exe;c:\program files (x86)\MSI\Super-Charger\ChargeService.exe [x]
S2 MSI_Trigger_Service;MSI_Trigger_Service;c:\program files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe;c:\program files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 iusb3hub;Intel(R) USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 NvStreamNetworkSvc;NVIDIA Streamer Network Service;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2016-02-17 04:34   1090376   ----a-w-   c:\program files (x86)\Google\Chrome\Application\48.0.2564.109\Installer\chrmstp.exe
.
Zawartość folderu 'Zaplanowane zadania'
.
2016-02-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2016-02-17 04:12]
.
2016-02-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2016-02-17 04:12]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2013-09-05 7199448]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2016-01-23 2787264]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2016-01-23 1859936]
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Mistrz\AppData\Roaming\Mozilla\Firefox\Profiles\qo5uyckz.default\
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2016-02-17  18:22:57
ComboFix-quarantined-files.txt  2016-02-18 02:22
.
Przed: 259 350 032 384 bytes free
Po: 259 255 902 208 bytes free
.
- - End Of File - - 652617B2FDE507130DF077CC3027DD0C
A36C5E4F47E84449FF07ED3517B43A31

frst:
Kod: Zaznacz wszystko
Additional scan result of Farbar Recovery Scan Tool (x64) Version:17-02-2016
Ran by Mistrz (2016-02-17 19:41:27)
Running from C:\Users\Mistrz\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2016-02-17 03:54:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1254241507-3574833528-64126575-500 - Administrator - Disabled)
Guest (S-1-5-21-1254241507-3574833528-64126575-501 - Limited - Disabled)
Mistrz (S-1-5-21-1254241507-3574833528-64126575-1000 - Administrator - Enabled) => C:\Users\Mistrz

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ElfBot NG 4.5.9 (HKLM-x32\...\ElfBot NG_is1) (Version:  - NGSoft, LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.109 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7210.1528 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
HDDlife Pro 4.2 (HKLM-x32\...\{856B2098-F5F0-459C-A254-E9BD6A589C0B}) (Version: 4.2.204 - BinarySense Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Small Business Advantage (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 2.2.39.7991 - Intel(R) Corporation)
Intel(R) Update Manager (x32 Version: 1.0.0.36888 - Intel Corporation) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 44.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 en-US)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2 - Mozilla)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 361.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 361.91 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.9.1.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.35 - NVIDIA Corporation)
NVIDIA Graphics Driver 361.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.91 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
osu! (HKLM-x32\...\{b5b94cd5-26b3-4267-8240-db7c07aab26a}) (Version: latest - ppy Pty Ltd)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.72.410.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7037 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.9.1.35 - NVIDIA Corporation) Hidden
Super-Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.020 - MSI)
VGA Boost (HKLM-x32\...\{809ACFAE-9A4D-4C60-9223-D8B615CD8CBA}}_is1) (Version: 1.0.0.7 - MSI)
WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00831727-45F0-435C-A742-AC46083EF24D} - System32\Tasks\Intel(R) Small Business Advantage\Notifier => C:\Program Files\Intel\Intel(R) Small Business Advantage\UI\SBA_Notifier.exe [2013-07-25] (Intel Corporation)
Task: {4690D17D-1112-43B3-9F24-47606E3BFCCC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-16] (Google Inc.)
Task: {72F6ACEE-AC82-4B68-9A77-63E55B244F0B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-16] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-02-16 20:36 - 2016-02-08 21:41 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-02-16 20:37 - 2016-01-22 18:55 - 00291264 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-02-16 20:37 - 2016-01-22 18:55 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2011-08-17 15:04 - 2011-08-17 15:04 - 00040960 _____ () C:\Program Files (x86)\BinarySense\HDDlife 4\laRTLu.dll
2016-02-16 20:07 - 2013-09-16 11:19 - 01242584 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-02-16 20:35 - 2016-02-09 03:58 - 01632584 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.109\libglesv2.dll
2016-02-16 20:35 - 2016-02-09 03:58 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.109\libegl.dll
2016-02-16 20:25 - 2009-12-09 16:19 - 00036352 _____ () C:\Program Files (x86)\ElfBot NG\elfload.dll
2016-02-16 20:25 - 2016-02-16 20:28 - 01454080 _____ () C:\Program Files (x86)\ElfBot NG\elfbot.dll
2016-02-16 20:35 - 2016-02-09 03:58 - 16810824 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.109\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:55B41E6A
AlternateDataStreams: C:\ProgramData\TEMP:6BE50C2B

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 18:34 - 2009-06-10 13:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1254241507-3574833528-64126575-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Mistrz\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{789611AB-B874-49FF-BE6B-53F1892E80B9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{52EDE688-525E-45D9-9A10-03AF7DE1C45E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{403CB8F3-3859-4FF1-9B32-86AE93F1BCCB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{362F09F8-856E-49C1-B243-7D71BEA61DE8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F5EA0A3D-634A-4AEB-B5A6-92CC5CD907AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FAC443B1-111D-4501-9317-0C969DCA4DC7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{A4D1F1C3-BEEE-4421-BD9C-B1D4166B3F5F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CADC3DFE-9C59-4E55-BC66-CA9B5492FAA0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{80502B61-585E-487B-838A-540645094613}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A0BA0871-E479-4A2C-B86D-B4B7A128E752}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Restore Points =========================

16-02-2016 19:58:45 Windows Update
16-02-2016 20:03:17 Zainstalowane Realtek Ethernet Controller Driver
16-02-2016 20:34:16 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
16-02-2016 20:37:20 Installed DirectX
16-02-2016 20:48:31 Installed HDDlife Pro 4.2

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/17/2016 06:16:58 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/17/2016 06:15:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/17/2016 09:10:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NvStreamUserAgent.exe, version: 4.1.2036.1280, time stamp: 0x56a08928
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521eaf24
Exception code: 0xc0000005
Fault offset: 0x0000000000052f86
Faulting process id: 0x420
Faulting application start time: 0xNvStreamUserAgent.exe0
Faulting application path: NvStreamUserAgent.exe1
Faulting module path: NvStreamUserAgent.exe2
Report Id: NvStreamUserAgent.exe3

Error: (02/16/2016 10:31:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2016 08:41:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/16/2016 08:16:17 PM) (Source: MsiInstaller) (EventID: 1021) (User: Mistrz-PC)
Description: Product: Google Update Helper - Update '{E0D0D2C9-5836-4023-AB1D-54EC3B90AD03}' could not be removed. Error code 1647. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (02/16/2016 07:56:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (02/17/2016 06:34:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Desktop Window Manager Session Manager service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (02/17/2016 06:34:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Distributed Link Tracking Client service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (02/17/2016 06:34:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Tablet PC Input Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (02/17/2016 06:34:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Superfetch service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (02/17/2016 06:34:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Program Compatibility Assistant Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (02/17/2016 06:34:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Network Connections service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 100 milliseconds: Restart the service.

Error: (02/17/2016 06:34:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Human Interface Device Access service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (02/17/2016 06:34:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Offline Files service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (02/17/2016 06:34:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Audio Endpoint Builder service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (02/17/2016 06:21:55 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-4150 CPU @ 3.50GHz
Percentage of memory in use: 53%
Total physical RAM: 4024.07 MB
Available physical RAM: 1868.96 MB
Total Virtual: 8046.32 MB
Available Virtual: 5148.34 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:273.38 GB) (Free:241.35 GB) NTFS
Drive d: () (Fixed) (Total:191.41 GB) (Free:191.31 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 8FCDDDCB)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=273.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=191.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Kod: Zaznacz wszystko
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:17-02-2016
Ran by Mistrz (administrator) on MISTRZ-PC (17-02-2016 19:41:03)
Running from C:\Users\Mistrz\Downloads
Loaded Profiles: Mistrz (Available Profiles: Mistrz)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(BinarySense, Inc.) C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(BinarySense, Inc.) C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(otservlist.org) C:\Users\Mistrz\Desktop\Tibia Loader\tibialoader.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CipSoft GmbH) C:\Users\Mistrz\Desktop\Tibia Loader\apps\tibia86\Tibia.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7199448 2013-09-04] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-22] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-09-16] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-25] (Intel Corporation)
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [490480 2013-09-09] (MSI)
Startup: C:\Users\Mistrz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HDDlife.lnk [2016-02-16]
ShortcutTarget: HDDlife.lnk -> C:\Program Files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe (BinarySense, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{FFABB267-29B2-4C9E-AD81-7CE573FF2C37}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1254241507-3574833528-64126575-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1254241507-3574833528-64126575-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-02-16] (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-02-16] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-02-16] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-02-16] (Google Inc.)

FireFox:
========
FF ProfilePath: C:\Users\Mistrz\AppData\Roaming\Mozilla\Firefox\Profiles\qo5uyckz.default
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-02-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-02-08] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-16] (Google Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR Profile: C:\Users\Mistrz\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (AdBlock) - C:\Users\Mistrz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-02-17]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Mistrz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-16]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-22] (NVIDIA Corporation)
R2 HDDlife HDD Access service; C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe [2078984 2015-10-08] (BinarySense, Inc.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [54976 2013-07-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161776 2013-09-09] (MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-22] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-22] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-22] (NVIDIA Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-22] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2015-12-17] (NVIDIA Corporation)
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-17 19:41 - 2016-02-17 19:41 - 00010649 _____ C:\Users\Mistrz\Downloads\FRST.txt
2016-02-17 19:41 - 2016-02-17 19:41 - 00000000 ____D C:\FRST
2016-02-17 19:40 - 2016-02-17 19:40 - 02371072 _____ (Farbar) C:\Users\Mistrz\Downloads\FRST64.exe
2016-02-17 18:22 - 2016-02-17 18:22 - 00013379 _____ C:\ComboFix.txt
2016-02-17 18:18 - 2016-02-17 18:22 - 00000000 ____D C:\Qoobox
2016-02-17 18:18 - 2011-06-25 22:45 - 00256000 _____ C:\Windows\PEV.exe
2016-02-17 18:18 - 2010-11-07 09:20 - 00208896 _____ C:\Windows\MBR.exe
2016-02-17 18:18 - 2009-04-19 20:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2016-02-17 18:18 - 2000-08-30 16:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2016-02-17 18:18 - 2000-08-30 16:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2016-02-17 18:18 - 2000-08-30 16:00 - 00098816 _____ C:\Windows\sed.exe
2016-02-17 18:18 - 2000-08-30 16:00 - 00080412 _____ C:\Windows\grep.exe
2016-02-17 18:18 - 2000-08-30 16:00 - 00068096 _____ C:\Windows\zip.exe
2016-02-17 18:17 - 2016-02-17 18:22 - 00000000 ____D C:\Windows\erdnt
2016-02-17 18:16 - 2016-02-17 18:16 - 05657023 ____R (Swearware) C:\Users\Mistrz\Downloads\ComboFix.exe
2016-02-16 22:11 - 2016-02-16 22:12 - 07961035 _____ C:\Users\Mistrz\Downloads\WWW v1.6.1.rar
2016-02-16 22:07 - 2016-02-16 22:14 - 00000901 _____ C:\Users\Mistrz\Desktop\osu!.lnk
2016-02-16 22:07 - 2016-02-16 22:07 - 00000909 _____ C:\Users\Mistrz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2016-02-16 22:07 - 2016-02-16 22:07 - 00000000 ____D C:\Users\Mistrz\AppData\Roaming\NVIDIA
2016-02-16 22:05 - 2016-02-16 23:02 - 00000000 ____D C:\Users\Mistrz\AppData\Local\osu!
2016-02-16 22:04 - 2016-02-16 22:04 - 04348472 _____ (ppy) C:\Users\Mistrz\Downloads\osu!install.exe
2016-02-16 22:01 - 2016-02-16 22:07 - 00000000 ____D C:\Users\Mistrz\AppData\Local\Mozilla
2016-02-16 22:01 - 2016-02-16 22:01 - 00001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-02-16 22:01 - 2016-02-16 22:01 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-02-16 22:01 - 2016-02-16 22:01 - 00000000 ____D C:\Users\Mistrz\AppData\Roaming\Mozilla
2016-02-16 22:01 - 2016-02-16 22:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-16 22:01 - 2016-02-16 22:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-16 21:58 - 2016-02-16 21:58 - 00242080 _____ C:\Users\Mistrz\Downloads\Firefox Setup Stub 44.0.2.exe
2016-02-16 21:41 - 2016-02-16 21:41 - 00001032 _____ C:\Users\Mistrz\Desktop\Continue HDDlife installation.lnk
2016-02-16 20:49 - 2016-02-16 20:49 - 00002532 _____ C:\Users\Public\Desktop\HDDlife Pro.lnk
2016-02-16 20:49 - 2016-02-16 20:49 - 00000000 ____D C:\Users\Mistrz\AppData\Roaming\BinarySense
2016-02-16 20:49 - 2016-02-16 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDDlife
2016-02-16 20:49 - 2016-02-16 20:49 - 00000000 ____D C:\Program Files (x86)\BinarySense
2016-02-16 20:45 - 2016-02-16 20:47 - 08691712 _____ C:\Users\Mistrz\Downloads\HDDlifePro 4.2.204.msi
2016-02-16 20:45 - 2016-02-16 20:45 - 00954357 _____ ( ) C:\Users\Mistrz\Desktop\exe.exe
2016-02-16 20:45 - 2016-02-16 20:45 - 00001696 _____ C:\Users\Mistrz\Downloads\Setup.exe.search-ms
2016-02-16 20:39 - 2016-02-16 20:39 - 00000000 ____D C:\Users\Mistrz\AppData\Local\NVIDIA Corporation
2016-02-16 20:38 - 2016-02-16 20:38 - 00001377 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-02-16 20:37 - 2016-02-16 20:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-02-16 20:37 - 2016-02-16 20:37 - 00000000 ____D C:\Users\Mistrz\AppData\Local\NVIDIA
2016-02-16 20:37 - 2016-01-22 18:54 - 01542600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-02-16 20:37 - 2016-01-22 18:54 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-02-16 20:37 - 2016-01-22 18:53 - 01859936 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-02-16 20:37 - 2016-01-22 18:53 - 01756608 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-02-16 20:37 - 2016-01-22 18:53 - 00112216 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-02-16 20:37 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-02-16 20:37 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-02-16 20:37 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-02-16 20:37 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-02-16 20:37 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-02-16 20:37 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-02-16 20:36 - 2016-02-16 22:29 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-16 20:36 - 2016-02-08 21:41 - 06368824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-02-16 20:36 - 2016-02-08 21:41 - 02993720 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-02-16 20:36 - 2016-02-08 21:41 - 02563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-02-16 20:36 - 2016-02-08 21:41 - 01264696 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-02-16 20:36 - 2016-02-08 21:41 - 00530368 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-02-16 20:36 - 2016-02-08 21:41 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-02-16 20:36 - 2016-02-08 21:41 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-02-16 20:36 - 2016-02-08 21:41 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-02-16 20:36 - 2016-02-08 21:26 - 00111672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-02-16 20:36 - 2016-02-05 17:49 - 06154909 _____ C:\Windows\system32\nvcoproc.bin
2016-02-16 20:35 - 2016-02-17 09:10 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-02-16 20:35 - 2016-02-16 20:37 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-02-16 20:35 - 2016-02-09 00:39 - 00213952 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-02-16 20:35 - 2016-02-09 00:39 - 00201664 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-02-16 20:34 - 2016-02-16 20:34 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-16 20:33 - 2016-02-11 08:56 - 01572496 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-02-16 20:33 - 2016-02-11 08:56 - 00205456 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-02-16 20:33 - 2016-02-11 08:56 - 00039240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 42982336 _____ C:\Windows\system32\nvcompiler.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 37616696 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 31081920 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 24916536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 21193032 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 20733832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 18758400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 17625136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 17218792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 16995576 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 16327896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 14016576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 12383288 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-02-16 20:33 - 2016-02-09 00:39 - 03684072 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 03259688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 03145272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 02722872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436191.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436191.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00950328 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00880576 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00747064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00691256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00502080 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00469144 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00423360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00423080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00388560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00379448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00153208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-02-16 20:33 - 2016-02-09 00:39 - 00034905 _____ C:\Windows\system32\nvinfo.pb
2016-02-16 20:33 - 2015-12-17 22:11 - 00047760 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-02-16 20:33 - 2015-12-17 22:10 - 00099472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-02-16 20:33 - 2015-12-17 22:10 - 00090768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-02-16 20:32 - 2016-02-16 20:37 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-02-16 20:31 - 2016-02-16 20:31 - 00000000 ____D C:\NVIDIA
2016-02-16 20:27 - 2016-02-17 19:41 - 00000000 ____D C:\ProgramData\TEMP
2016-02-16 20:27 - 2016-02-17 19:03 - 00000000 ____D C:\Users\Mistrz\AppData\Roaming\Tibia
2016-02-16 20:25 - 2016-02-16 20:28 - 00000000 ____D C:\Program Files (x86)\ElfBot NG
2016-02-16 20:25 - 2016-02-16 20:25 - 00000936 _____ C:\Users\Mistrz\Desktop\ElfBot NG.lnk
2016-02-16 20:25 - 2016-02-16 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElfBot NG
2016-02-16 20:25 - 2010-07-14 09:50 - 02110837 _____ (NGSoft, LLC ) C:\Users\Mistrz\Downloads\setup-4.5.9.exe
2016-02-16 20:24 - 2016-02-16 20:25 - 02089098 _____ C:\Users\Mistrz\Downloads\ElfBot 8.6 by HadesQ.rar
2016-02-16 20:22 - 2016-02-16 20:42 - 00000000 ____D C:\Users\Mistrz\Desktop\Tibia Loader
2016-02-16 20:19 - 2016-02-16 20:19 - 00000000 ____D C:\Users\Mistrz\AppData\Roaming\WinRAR
2016-02-16 20:18 - 2016-02-16 20:19 - 00000118 _____ C:\Users\Mistrz\Downloads\elfbots.zip
2016-02-16 20:17 - 2016-02-16 20:17 - 00000000 ____D C:\Users\Mistrz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-02-16 20:17 - 2016-02-16 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-02-16 20:17 - 2016-02-16 20:17 - 00000000 ____D C:\Program Files\WinRAR
2016-02-16 20:15 - 2016-02-16 20:16 - 02113552 _____ C:\Users\Mistrz\Downloads\winrar-x64-521pl.exe
2016-02-16 20:15 - 2016-02-16 20:15 - 00414538 _____ C:\Users\Mistrz\Desktop\tl.rar
2016-02-16 20:14 - 2016-02-16 20:31 - 335612944 _____ (NVIDIA Corporation) C:\Users\Mistrz\Downloads\361.91-desktop-win8-win7-winvista-64bit-international-whql.exe
2016-02-16 20:14 - 2016-02-16 20:14 - 00002063 _____ C:\Users\Public\Desktop\Super-Charger.lnk
2016-02-16 20:14 - 2016-02-16 20:14 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2016-02-16 20:14 - 2016-02-16 20:14 - 00000000 ____D C:\SuperChargerProfile
2016-02-16 20:14 - 2016-02-16 20:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2016-02-16 20:13 - 2013-04-25 18:24 - 00786416 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2016-02-16 20:13 - 2013-04-25 18:24 - 00368112 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hub.sys
2016-02-16 20:13 - 2013-04-25 18:24 - 00020464 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2016-02-16 20:12 - 2016-02-16 20:12 - 00000000 ____D C:\Windows\System32\Tasks\Intel(R) Small Business Advantage
2016-02-16 20:11 - 2016-02-16 20:11 - 00001336 _____ C:\Users\Public\Desktop\Intel(R) Small Business Advantage.lnk
2016-02-16 20:10 - 2016-02-16 20:10 - 00058016 _____ C:\Users\Mistrz\AppData\Local\GDIPFONTCACHEV1.DAT
2016-02-16 20:09 - 2013-09-16 11:19 - 00016344 ____R (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
2016-02-16 20:08 - 2016-02-16 20:11 - 00000000 ____D C:\ProgramData\Intel
2016-02-16 20:08 - 2016-02-16 20:10 - 00000000 ____D C:\Program Files\Intel
2016-02-16 20:07 - 2016-02-16 20:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-02-16 20:07 - 2016-02-16 20:07 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-02-16 20:07 - 2013-09-16 11:19 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-02-16 20:07 - 2013-09-16 11:19 - 00099288 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2016-02-16 20:06 - 2016-02-17 19:26 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-16 20:06 - 2016-02-17 18:17 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-16 20:06 - 2016-02-16 20:36 - 00002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-16 20:06 - 2016-02-16 20:36 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-16 20:06 - 2016-02-16 20:21 - 00004044 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-16 20:06 - 2016-02-16 20:21 - 00003792 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-16 20:06 - 2016-02-16 20:06 - 00000000 ____D C:\ProgramData\Google
2016-02-16 20:06 - 2016-02-16 20:06 - 00000000 ____D C:\Program Files\Google
2016-02-16 20:05 - 2016-02-16 21:49 - 00000000 ____D C:\Users\Mistrz\AppData\Local\Google
2016-02-16 20:05 - 2016-02-16 20:06 - 00000000 ____D C:\Program Files (x86)\Google
2016-02-16 20:05 - 2016-02-16 20:05 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-02-16 20:05 - 2016-02-16 20:05 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-02-16 20:05 - 2016-02-16 20:05 - 00000000 ____D C:\Program Files\Realtek
2016-02-16 20:05 - 2013-09-08 23:32 - 05681192 _____ C:\Windows\system32\Drivers\rtvienna.dat
2016-02-16 20:05 - 2013-09-04 23:52 - 02586328 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2016-02-16 20:05 - 2013-08-23 11:14 - 01014016 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2016-02-16 20:05 - 2013-08-23 11:14 - 00897792 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-02-16 20:05 - 2013-08-23 11:14 - 00722688 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-02-16 20:05 - 2013-08-23 11:14 - 00244480 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-02-16 20:05 - 2013-08-20 01:37 - 00605496 _____ C:\Windows\system32\audioLibVc.dll
2016-02-16 20:05 - 2013-08-05 17:47 - 00947248 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-02-16 20:05 - 2013-08-02 04:16 - 01005784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-02-16 20:05 - 2013-07-22 23:40 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-02-16 20:05 - 2013-06-24 20:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2016-02-16 20:05 - 2013-06-24 20:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2016-02-16 20:05 - 2013-06-24 20:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2016-02-16 20:05 - 2012-01-29 19:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-02-16 20:05 - 2012-01-09 18:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-02-16 20:05 - 2011-12-19 23:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-02-16 20:05 - 2011-11-22 00:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-02-16 20:05 - 2011-09-01 22:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-02-16 20:05 - 2011-09-01 22:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-02-16 20:05 - 2011-09-01 22:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-02-16 20:05 - 2011-03-16 20:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-02-16 20:05 - 2011-03-07 01:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-02-16 20:05 - 2010-11-03 02:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-02-16 20:05 - 2010-07-22 00:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-02-16 20:05 - 2009-11-23 17:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-02-16 20:05 - 2009-11-23 17:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-02-16 20:05 - 2009-11-23 17:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-02-16 20:05 - 2009-11-23 17:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-02-16 20:04 - 2013-09-10 05:40 - 03640024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-02-16 20:04 - 2013-09-10 03:56 - 00644705 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-02-16 20:04 - 2013-09-10 00:16 - 00148696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-02-16 20:04 - 2013-09-09 19:02 - 32861696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-02-16 20:04 - 2013-09-05 01:23 - 04933328 _____ (ASUSTeKcomputer.Inc Inc) C:\Windows\system32\RTKSMlfx.dll
2016-02-16 20:04 - 2013-09-05 01:22 - 00848184 _____ (ASUSTeKcomputer.Inc Inc) C:\Windows\system32\RTKSMSettingsIPC.dll
2016-02-16 20:04 - 2013-08-20 04:17 - 02809048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-02-16 20:04 - 2013-08-14 00:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-02-16 20:04 - 2013-08-14 00:35 - 00907008 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-02-16 20:04 - 2013-08-07 01:34 - 00765184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-02-16 20:04 - 2013-07-27 18:48 - 27518208 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2016-02-16 20:04 - 2013-07-25 22:05 - 00617176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-02-16 20:04 - 2013-07-22 23:40 - 03610880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2016-02-16 20:04 - 2013-04-24 01:16 - 01662024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-02-16 20:04 - 2013-02-20 02:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-02-16 20:04 - 2012-08-31 03:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-02-16 20:04 - 2012-08-31 03:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-02-16 20:04 - 2012-08-31 03:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-02-16 20:04 - 2012-08-31 03:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-02-16 20:04 - 2012-08-31 03:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-02-16 20:04 - 2010-11-07 15:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-02-16 20:04 - 2010-11-07 15:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-02-16 20:04 - 2010-11-07 15:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-02-16 20:04 - 2010-11-07 15:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-02-16 20:04 - 2010-11-07 15:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-02-16 20:04 - 2010-11-07 15:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-02-16 20:03 - 2016-02-16 20:05 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-02-16 20:03 - 2016-02-16 20:03 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-02-16 20:03 - 2016-02-16 20:03 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-02-16 20:03 - 2013-09-02 19:16 - 02080472 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-02-16 20:03 - 2013-08-14 00:36 - 01325312 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-02-16 20:03 - 2013-08-14 00:35 - 01084160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-02-16 20:03 - 2013-08-14 00:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-02-16 20:03 - 2013-08-07 01:41 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-02-16 20:03 - 2013-08-05 12:56 - 06219096 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-02-16 20:03 - 2013-08-05 12:56 - 01908568 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-02-16 20:03 - 2013-08-05 12:56 - 00312152 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-02-16 20:03 - 2013-08-05 12:56 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-02-16 20:03 - 2013-08-05 02:11 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-02-16 20:03 - 2013-07-23 18:07 - 02032896 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-02-16 20:03 - 2013-07-22 23:39 - 14048512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-02-16 20:03 - 2013-07-22 23:39 - 01916672 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2016-02-16 20:03 - 2013-07-22 23:39 - 00922880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-02-16 20:03 - 2013-07-22 23:39 - 00790272 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2016-02-16 20:03 - 2013-06-20 19:01 - 00109848 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-02-16 20:03 - 2013-06-05 05:42 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-02-16 20:03 - 2013-04-09 19:09 - 00849992 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2016-02-16 20:03 - 2013-04-09 19:09 - 00108104 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2016-02-16 20:03 - 2013-04-09 19:09 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-02-16 20:03 - 2013-04-02 22:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-02-16 20:03 - 2012-10-01 22:41 - 00501192 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-02-16 20:03 - 2012-10-01 22:41 - 00487368 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-02-16 20:03 - 2012-10-01 22:41 - 00415688 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-02-16 20:03 - 2012-03-07 19:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-02-16 20:03 - 2011-08-23 01:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-02-16 20:03 - 2011-05-30 17:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-02-16 20:03 - 2010-09-26 17:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-02-16 20:02 - 2016-02-16 20:14 - 00000000 ____D C:\Program Files (x86)\MSI
2016-02-16 20:02 - 2016-02-16 20:13 - 00000000 ____D C:\Program Files (x86)\Intel
2016-02-16 20:02 - 2016-02-16 20:02 - 00000000 ____D C:\Intel
2016-02-16 20:02 - 2013-08-05 11:50 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2016-02-16 20:01 - 2016-02-16 20:01 - 00771962 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-02-16 19:57 - 2016-02-16 19:57 - 00000000 ____D C:\MSI
2016-02-16 19:55 - 2016-02-16 19:55 - 00000000 __SHD C:\Users\Mistrz\AppData\LocalLow\EmieUserList
2016-02-16 19:55 - 2016-02-16 19:55 - 00000000 __SHD C:\Users\Mistrz\AppData\LocalLow\EmieSiteList
2016-02-16 19:55 - 2016-02-16 19:55 - 00000000 __SHD C:\Users\Mistrz\AppData\LocalLow\EmieBrowserModeList
2016-02-16 19:55 - 2016-02-16 19:55 - 00000000 __SHD C:\Users\Mistrz\AppData\Local\EmieUserList
2016-02-16 19:55 - 2016-02-16 19:55 - 00000000 __SHD C:\Users\Mistrz\AppData\Local\EmieSiteList
2016-02-16 19:55 - 2016-02-16 19:55 - 00000000 __SHD C:\Users\Mistrz\AppData\Local\EmieBrowserModeList
2016-02-16 19:54 - 2016-02-16 19:54 - 00001413 _____ C:\Users\Mistrz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-02-16 19:54 - 2016-02-16 19:54 - 00000020 ___SH C:\Users\Mistrz\ntuser.ini
2016-02-16 19:54 - 2016-02-16 19:54 - 00000000 _SHDL C:\Users\Mistrz\My Documents
2016-02-16 19:54 - 2016-02-16 19:54 - 00000000 _SHDL C:\Users\Mistrz\Documents\My Videos
2016-02-16 19:54 - 2016-02-16 19:54 - 00000000 _SHDL C:\Users\Mistrz\Documents\My Pictures
2016-02-16 19:54 - 2016-02-16 19:54 - 00000000 _SHDL C:\Users\Mistrz\Documents\My Music
2016-02-16 19:54 - 2016-02-16 19:54 - 00000000 ____D C:\Users\Mistrz\AppData\Roaming\Adobe
2016-02-16 19:54 - 2016-02-16 19:54 - 00000000 ____D C:\Users\Mistrz\AppData\Local\VirtualStore
2016-02-16 19:54 - 2016-02-16 19:54 - 00000000 ____D C:\Users\Mistrz
2016-02-16 19:54 - 2014-08-19 08:33 - 48735984 _____ (Microsoft Corporation) C:\Users\Mistrz\Desktop\Net453.exe
2016-02-16 19:54 - 2011-04-12 00:28 - 00000000 ____D C:\Users\Mistrz\AppData\Roaming\Media Center Programs
2016-02-16 10:50 - 2016-02-16 10:50 - 00000000 ____D C:\Windows\CSC

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-17 18:21 - 2009-07-13 18:34 - 00000215 _____ C:\Windows\system.ini
2016-02-17 18:17 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-17 18:16 - 2009-07-13 21:08 - 00005378 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-02-16 22:37 - 2009-07-13 20:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-02-16 22:37 - 2009-07-13 20:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-02-16 20:43 - 2009-07-13 21:13 - 00778150 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-16 20:43 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\inf
2016-02-16 20:36 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\Help
2016-02-16 20:08 - 2009-07-13 19:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-02-16 19:54 - 2014-11-15 03:01 - 00000000 ____D C:\Windows\Panther
2016-02-16 19:53 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache
2016-02-16 19:46 - 2009-07-13 21:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-02-16 10:53 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\system32\oobe
2016-02-16 10:50 - 2009-07-13 20:45 - 00267360 _____ C:\Windows\system32\FNTCACHE.DAT

==================== Files in the root of some directories =======

2016-02-16 20:05 - 2016-02-16 20:05 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-02-16 23:41

==================== End of FRST.txt ============================

pytanie dorzucic jeszcze jakies logi?
Awatar użytkownika
Lijke
~user
 
Posty: 540
Dołączenie: 02 Lip 2008, 19:56
Miejscowość: Wolsztyn
Pochwały: 5

Góra

Svhost 90% ramu zajętę

Postprzez ordynat 17 Lut 2016, 21:05

Na pewno nie masz żadnej infekcji.

O przyczynę problemu trzeba by spytać twórców Systemu z Microsoftu - ale to raczej niewykonalne, bo pewnie oni nie mają ochoty tracić czas na udzielanie odpowiedzi.

Tylko kosmetyka:
Otwórz Notatnik i wklej w nim:
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1254241507-3574833528-64126575-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
EmptyTemp:

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST.exe
Uruchom FRST i kliknij przycisk Fix (NAPRAW).
.
ordynat
~user
 
Posty: 4765
Dołączenie: 02 Kwi 2010, 11:18
Pochwały: 866


Góra

Svhost 90% ramu zajętę

Postprzez Lijke 17 Lut 2016, 21:20

Po restarcie 30% . o ile to było to :) dzięki za pomoc
Awatar użytkownika
Lijke
~user
 
Posty: 540
Dołączenie: 02 Lip 2008, 19:56
Miejscowość: Wolsztyn
Pochwały: 5

Góra
Wyślij odpowiedź

Powróć do Bezpieczeństwo

Kto jest na forum

Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 14 gości

Powered by phpBB © Group
Forum Programosy.pl