Napisano 07 sierpień 2015 - 17:36
Witam/Siema !
!
Napisano 07 sierpień 2015 - 17:40
Nie wystarczy po prostu przejrzeć zainstalowane programy i usunąć co zbędne? Sprawdź też dodatki przeglądarki. Antywirus często nie traktuje tego typu rzeczy jako zagrożenie lub śmieć.
Napisano 07 sierpień 2015 - 17:45
Co do dodatków przeglądarki mam jedynie AdBlock i nic więcej.
A z programami ,nie jestem specjalistą więc nie wiem co konkretnie usuwać ,ponieważ komputer głównie służy mi do pracy przez internet.
Naprawdę błagam o pomoc
Napisano 08 sierpień 2015 - 08:51
Otwórz panel sterowania > programy i funkcje. Na liście poszukaj czegoś z "Ads" w nazwie.
Napisano 09 sierpień 2015 - 15:18
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:08-08-2015 01
Ran by Bartek Mateusz (administrator) on ADMINBOLO (09-08-2015 16:15:54)Running from C:\Users\Bartek Mateusz\DownloadsLoaded Profiles: Bartek Mateusz (Available Profiles: Bartek Mateusz)Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Polski (Polska)Internet Explorer Version 11 (Default browser: Chrome)Boot Mode: NormalTutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/==================== Processes (Whitelisted) =================(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe(ALLPlayer Group Ltd.) C:\Program Files (x86)\ALLPlayer Remote\ALLPlayerRemoteControl.exe(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe() C:\Program Files (x86)\Common Files\fccb0821-00ee-466c-acb5-2a5cec258511\updater.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe() C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\PluginContainer.exe() C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\2\Plugin.exe() C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\10\Plugin.exe() C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\8\Plugin.exe() C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\7\Plugin.exe() C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\12\Plugin.exe() C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\5\Plugin.exe() C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\3\Plugin.exe() C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\3\Plugin.exe() C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\7\Plugin.exe() C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\12\Plugin.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe==================== Registry (Whitelisted) ==================(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStartHKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-11] (Avast Software s.r.o.)HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)HKU\S-1-5-21-2319817023-748649177-3454870343-1000\...\Run: [ALLUpdate] => C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [2765256 2015-04-27] (ALLPlayer Group Ltd.)HKU\S-1-5-21-2319817023-748649177-3454870343-1000\...\Run: [ALLPlayer WiFi Remote] => C:\Program Files (x86)\ALLPlayer Remote\ALLPlayerRemoteControl.exe [5182896 2014-07-23] (ALLPlayer Group Ltd.)HKU\S-1-5-21-2319817023-748649177-3454870343-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5585136 2015-03-31] (Disc Soft Ltd)Startup: C:\Users\Bartek Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rejestracja FIFA 10.lnk [2015-07-22]ShortcutTarget: Rejestracja FIFA 10.lnk -> C:\Program Files (x86)\EA Sports\FIFA 10\Support\EAregister.exe (Leader Technologies)ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-01] (Avast Software s.r.o.)GroupPolicy: Group Policy on Chrome detected <======= ATTENTIONCHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION==================== Internet (Whitelisted) ====================(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.comHKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.comHKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.comHKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.comHKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.comHKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.comHKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.comHKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.comHKU\S-1-5-21-2319817023-748649177-3454870343-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehpSearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-03-09] (Microsoft Corporation)BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2015-07-23] (Oracle Corporation)BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-01] (Avast Software s.r.o.)BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-07-23] (Oracle Corporation)BHO-x32: Wander Burst -> {0f4e02f8-f10e-493d-a1a7-3aed7ba7b110} -> C:\Program Files (x86)\Wander Burst\Extensions\0f4e02f8-f10e-493d-a1a7-3aed7ba7b110.dll No FileBHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-03-09] (Microsoft Corporation)BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-22] (Oracle Corporation)BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-01] (Avast Software s.r.o.)BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-22] (Oracle Corporation)Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1Tcpip\..\Interfaces\{9B44B5AE-939A-474F-B289-B565C4562888}: [DhcpNameServer] 192.168.8.1 192.168.8.1Tcpip\..\Interfaces\{A5EE52F8-9EC0-46D8-9C58-12BC14E2160F}: [DhcpNameServer] 192.168.1.1 192.168.1.1FireFox:========FF Plugin: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-07-23] (Oracle Corporation)FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-07-23] (Oracle Corporation)FF Plugin: @microsoft.com/GENUINE -> disabled [No File]FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-22] (Oracle Corporation)FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-22] (Oracle Corporation)FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation)FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.)FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FFFF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-05-01]Chrome:=======CHR Profile: C:\Users\Bartek Mateusz\AppData\Local\Google\Chrome\User Data\DefaultCHR Extension: (Adblock Plus) - C:\Users\Bartek Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-08-08]CHR Extension: (Stylish) - C:\Users\Bartek Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2015-08-08]CHR Extension: (AdBlock) - C:\Users\Bartek Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-08-08]CHR Extension: (Speed Test Internet) - C:\Users\Bartek Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhbmnfdcklajeaeikfinieljfegamko [2015-08-08]CHR Extension: (Adblock Super) - C:\Users\Bartek Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd [2015-08-08]CHR Extension: (Chrome Web Store Payments) - C:\Users\Bartek Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-01]CHR Extension: (Adblock Pro) - C:\Users\Bartek Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2015-08-08]CHR Extension: (Stylist) - C:\Users\Bartek Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pabfempgigicdjjlccdgnbmeggkbjdhd [2015-08-08]CHR Extension: (Facebook Themes (Facebook Theme Gallery)) - C:\Users\Bartek Mateusz\AppData\Local\Google\Chrome\User Data\Default\Extensions\phejagnmddcjhjblnacgmejghffmhjfp [2015-08-08]CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-05-01]CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-05-01]Opera:=======OPR Extension: (Wander Burst) - C:\Users\Bartek Mateusz\AppData\Roaming\Opera Software\Opera Stable\Extensions\iobadhdhohjejblckfnebclcigmodege [2015-08-07]==================== Services (Whitelisted) ========================(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-01] (Avast Software s.r.o.)R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4034896 2015-05-01] (Avast Software)R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1277680 2015-03-31] (Disc Soft Ltd)R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-07-24] (NVIDIA Corporation)R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2007048 2015-07-25] (Electronic Arts)R2 Service Mgr WanderBurst; C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\PluginContainer.exe [1146592 2015-08-09] ()R2 Update Mgr WanderBurst; C:\Program Files (x86)\Common Files\fccb0821-00ee-466c-acb5-2a5cec258511\updater.exe [1074400 2015-08-09] ()R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)S2 tbsvc_1.10.0.16; "C:\Program Files (x86)\TermBlazer_1.10.0.16\Service\tbsvc.exe" [X]===================== Drivers (Whitelisted) ==========================(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-01] ()R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-01] (Avast Software s.r.o.)R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-01] (Avast Software s.r.o.)R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-01] ()R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-01] (Avast Software s.r.o.)R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-26] (Avast Software s.r.o.)R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-01] (Avast Software s.r.o.)R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-01] ()R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30352 2015-08-05] (Disc Soft Ltd)R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)S3 pfc; C:\Windows\SysWOW64\drivers\pfc.sys [10368 2004-04-01] (Padus, Inc.) [File not signed]R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-05-01] (Avast Software)U3 Winsock; no ImagePathS3 AsrCDDrv; \??\C:\Windows\SysWOW64\Drivers\AsrCDDrv.sys [X]S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]==================== NetSvcs (Whitelisted) ===================(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)==================== One Month Created files and folders ========(If an entry is included in the fixlist, the file/folder will be moved.)2015-08-09 16:15 - 2015-08-09 16:16 - 00017323 _____ C:\Users\Bartek Mateusz\Downloads\FRST.txt2015-08-09 16:15 - 2015-08-09 16:15 - 00000000 ____D C:\FRST2015-08-09 16:10 - 2015-08-09 16:10 - 02169856 _____ (Farbar) C:\Users\Bartek Mateusz\Downloads\FRST64.exe2015-08-08 21:26 - 2015-08-08 21:26 - 00000000 ____D C:\Program Files (x86)\Wander Burst2015-08-08 21:16 - 2015-08-08 21:17 - 00000000 ____D C:\AdwCleaner2015-08-07 18:52 - 2015-08-07 18:52 - 00000000 ____D C:\Program Files (x86)\Car mechanic simulator 20152015-08-07 18:49 - 2015-08-07 18:49 - 00000000 ____D C:\Users\Bartek Mateusz\Desktop\GRY2015-08-07 13:13 - 2015-08-07 13:13 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome2015-08-07 13:05 - 2015-08-07 13:05 - 02248704 _____ C:\Users\Bartek Mateusz\Desktop\AdwCleaner.exe2015-08-06 00:44 - 2015-08-06 00:44 - 00020614 _____ C:\Users\Bartek Mateusz\.recently-used.xbel2015-08-05 23:29 - 2015-08-05 23:29 - 00000266 __RSH C:\ProgramData\ntuser.pol2015-08-05 22:15 - 2015-08-09 16:10 - 00000000 ____D C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec2585112015-08-05 22:15 - 2015-08-05 22:15 - 00001140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Goat Simulator.lnk2015-08-05 22:15 - 2015-08-05 22:15 - 00000000 ____D C:\Users\Bartek Mateusz\Documents\My Games2015-08-05 22:14 - 2015-08-05 22:15 - 00000000 ____D C:\Program Files (x86)\Goat Simulator2015-08-05 22:13 - 2015-08-05 22:14 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\DAEMON Tools Lite2015-08-05 22:13 - 2015-08-05 22:13 - 00030352 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys2015-08-05 22:13 - 2015-08-05 22:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite2015-08-05 22:13 - 2015-08-05 22:13 - 00000000 ____D C:\Program Files\DAEMON Tools Lite2015-08-05 22:12 - 2015-08-05 22:12 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite2015-08-05 13:30 - 2015-08-05 13:30 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Local\CEF2015-07-30 13:06 - 2015-07-30 13:06 - 00000000 ____D C:\Windows\Downloaded Installations2015-07-24 18:01 - 2015-07-24 18:01 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft2015-07-23 14:27 - 2015-07-23 14:27 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe2015-07-23 14:27 - 2015-07-23 14:27 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe2015-07-23 14:27 - 2015-07-23 14:27 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe2015-07-23 14:27 - 2015-07-23 14:27 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll2015-07-23 14:27 - 2015-07-23 14:27 - 00000000 ____D C:\Program Files\Java2015-07-22 23:11 - 2015-07-22 23:11 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll2015-07-22 23:11 - 2015-07-22 23:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java2015-07-22 23:11 - 2015-07-22 23:11 - 00000000 ____D C:\Program Files (x86)\Java2015-07-22 21:19 - 2015-06-17 08:03 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe2015-07-22 21:17 - 2015-08-07 18:48 - 00000000 ____D C:\drollbox2015-07-22 21:17 - 2015-06-17 11:10 - 42729104 _____ C:\Windows\system32\nvcompiler.dll2015-07-22 21:17 - 2015-06-17 11:10 - 37748880 _____ C:\Windows\SysWOW64\nvcompiler.dll2015-07-22 21:17 - 2015-06-17 11:10 - 30481552 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll2015-07-22 21:17 - 2015-06-17 11:10 - 22947144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll2015-07-22 21:17 - 2015-06-17 11:10 - 16145200 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll2015-07-22 21:17 - 2015-06-17 11:10 - 15866992 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll2015-07-22 21:17 - 2015-06-17 11:10 - 14497520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll2015-07-22 21:17 - 2015-06-17 11:10 - 13263056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll2015-07-22 21:17 - 2015-06-17 11:10 - 11831856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll2015-07-22 21:17 - 2015-06-17 11:10 - 11011216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys2015-07-22 21:17 - 2015-06-17 11:10 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll2015-07-22 21:17 - 2015-06-17 11:10 - 02599752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll2015-07-22 21:17 - 2015-06-17 11:10 - 01898128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435330.dll2015-07-22 21:17 - 2015-06-17 11:10 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435330.dll2015-07-22 21:17 - 2015-06-17 11:10 - 01099992 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll2015-07-22 21:17 - 2015-06-17 11:10 - 01060168 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll2015-07-22 21:17 - 2015-06-17 11:10 - 01050768 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00975176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00938752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00408392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00204648 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys2015-07-22 21:17 - 2015-06-17 11:10 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00155280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll2015-07-22 21:17 - 2015-06-17 11:10 - 00040280 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll2015-07-22 20:44 - 2015-07-03 06:28 - 00065896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll2015-07-22 20:44 - 2015-07-03 06:28 - 00047976 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys2015-07-22 19:25 - 2015-07-23 22:05 - 00000000 ____D C:\Users\Bartek Mateusz\Documents\FIFA 102015-07-22 19:09 - 2015-07-22 19:09 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\Leadertech2015-07-22 18:44 - 2015-07-22 18:44 - 00000000 ____D C:\Program Files (x86)\EA Sports2015-07-17 15:02 - 2015-08-05 14:02 - 00000945 _____ C:\Users\Bartek Mateusz\Desktop\margo ZIPPY.txt2015-07-11 18:58 - 2015-07-11 18:58 - 00000000 ____D C:\Program Files\Titan Quest2015-07-11 18:24 - 2015-07-11 18:24 - 00000000 ____D C:\ProgramData\McAfee==================== One Month Modified files and folders ========(If an entry is included in the fixlist, the file/folder will be moved.)2015-08-09 16:11 - 2015-05-01 18:23 - 01389663 _____ C:\Windows\WindowsUpdate.log2015-08-09 16:11 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02015-08-09 16:11 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02015-08-09 16:04 - 2015-05-01 19:11 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update2015-08-09 16:04 - 2015-05-01 18:58 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2015-08-09 16:04 - 2009-07-14 06:51 - 00089869 _____ C:\Windows\setupact.log2015-08-09 16:03 - 2015-05-01 19:21 - 00000000 ____D C:\ProgramData\NVIDIA2015-08-09 16:03 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT2015-08-08 23:10 - 2015-05-01 20:33 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job2015-08-08 21:37 - 2015-05-01 18:58 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2015-08-08 12:25 - 2015-05-15 20:31 - 00000000 ____D C:\Program Files (x86)\Opera2015-08-07 21:08 - 2010-11-21 05:47 - 00028030 _____ C:\Windows\PFRO.log2015-08-07 18:57 - 2015-05-01 20:14 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line2015-08-07 18:57 - 2015-05-01 20:13 - 00000000 ____D C:\Program Files (x86)\Image-Line2015-08-07 18:49 - 2015-05-01 19:12 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\Dropbox2015-08-06 21:39 - 2015-05-01 18:59 - 00002189 _____ C:\Users\Public\Desktop\Google Chrome.lnk2015-08-06 12:24 - 2015-05-01 18:58 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Local\Google2015-08-06 00:57 - 2015-05-01 20:32 - 00000000 ____D C:\Users\Bartek Mateusz\Desktop\Grafika Tapety2015-08-06 00:44 - 2015-05-05 19:57 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\gtk-2.02015-08-06 00:44 - 2015-05-01 20:22 - 00000000 ____D C:\Users\Bartek Mateusz\.gimp-2.62015-08-06 00:44 - 2015-05-01 18:23 - 00000000 ____D C:\Users\Bartek Mateusz2015-08-05 22:20 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\GroupPolicy2015-08-05 21:31 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF2015-08-05 12:04 - 2015-05-15 20:33 - 00003874 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 14317148012015-08-04 21:59 - 2011-03-21 21:49 - 00737730 _____ C:\Windows\system32\perfh015.dat2015-08-04 21:59 - 2011-03-21 21:49 - 00154418 _____ C:\Windows\system32\perfc015.dat2015-08-04 21:59 - 2009-07-14 07:13 - 01662556 _____ C:\Windows\system32\PerfStringBackup.INI2015-08-04 21:40 - 2015-05-22 22:14 - 00000000 ____D C:\ProgramData\Origin2015-08-03 11:23 - 2015-05-05 20:52 - 00000080 _____ C:\Users\Bartek Mateusz\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦2015-08-01 21:30 - 2015-05-01 19:48 - 00000000 ___RD C:\Users\Bartek Mateusz\Desktop\MUZA2015-07-30 14:08 - 2015-05-01 20:27 - 00000000 ____D C:\Program Files (x86)\Adobe2015-07-30 14:07 - 2015-05-03 12:00 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\Adobe2015-07-30 13:27 - 2015-06-09 19:16 - 00000000 ____D C:\Users\Bartek Mateusz\Desktop\Projekty2015-07-27 22:26 - 2015-05-01 19:22 - 00001377 _____ C:\Users\Public\Desktop\GeForce Experience.lnk2015-07-27 22:26 - 2015-05-01 19:20 - 00000000 ____D C:\ProgramData\NVIDIA Corporation2015-07-26 23:02 - 2015-05-04 21:09 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Local\WMTools Downloaded Files2015-07-26 23:01 - 2015-05-04 21:06 - 00008192 _____ C:\Users\Bartek Mateusz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini2015-07-26 11:26 - 2015-05-01 21:53 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\.minecraft2015-07-26 09:34 - 2015-05-01 21:53 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\.minecraftzyczu2015-07-25 15:13 - 2015-05-22 22:14 - 00000000 ____D C:\Program Files (x86)\Origin2015-07-25 12:03 - 2015-05-01 20:33 - 00003906 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier2015-07-25 12:02 - 2015-05-01 20:33 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe2015-07-25 12:02 - 2015-05-01 20:33 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl2015-07-24 06:21 - 2015-05-01 19:21 - 01756608 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll2015-07-24 06:21 - 2015-05-01 19:21 - 01710568 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll2015-07-24 06:21 - 2015-05-01 19:21 - 01423304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll2015-07-24 06:21 - 2015-05-01 19:21 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll2015-07-23 07:53 - 2009-07-14 07:08 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT2015-07-22 23:12 - 2015-05-01 19:26 - 00000000 ____D C:\ProgramData\Oracle2015-07-22 21:20 - 2015-05-01 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation2015-07-22 21:19 - 2015-05-01 19:14 - 00000000 ____D C:\Program Files\NVIDIA Corporation2015-07-22 21:18 - 2015-06-02 17:13 - 00000000 ____D C:\ProgramData\boost_interprocess2015-07-22 19:09 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games2015-07-22 18:44 - 2015-05-02 22:36 - 00331716 _____ C:\Windows\DirectX.log2015-07-22 18:12 - 2015-05-22 22:21 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\Origin2015-07-16 10:32 - 2015-05-01 18:58 - 00004044 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA2015-07-16 10:32 - 2015-05-01 18:58 - 00003792 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore2015-07-15 12:29 - 2015-05-01 20:27 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk2015-07-15 11:57 - 2015-05-01 20:27 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task2015-07-14 22:44 - 2015-05-01 20:20 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Roaming\Skype2015-07-13 11:24 - 2009-07-14 06:45 - 00438032 _____ C:\Windows\system32\FNTCACHE.DAT2015-07-11 18:25 - 2015-05-01 20:26 - 00000000 ____D C:\Users\Bartek Mateusz\AppData\Local\Adobe==================== Files in the root of some directories =======2015-05-04 21:06 - 2015-07-26 23:01 - 0008192 _____ () C:\Users\Bartek Mateusz\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini2015-06-16 21:17 - 2015-06-16 21:17 - 0007609 _____ () C:\Users\Bartek Mateusz\AppData\Local\Resmon.ResmonCfgSome files in TEMP:====================C:\Users\Bartek Mateusz\AppData\Local\Temp\Burn4Free.exeC:\Users\Bartek Mateusz\AppData\Local\Temp\drm_dialogs.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\drm_dyndata_7400009.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpkum5vf.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\i4jdel0.exeC:\Users\Bartek Mateusz\AppData\Local\Temp\jre-8u51-windows-au.exeC:\Users\Bartek Mateusz\AppData\Local\Temp\Napisy24.exeC:\Users\Bartek Mateusz\AppData\Local\Temp\nvSCPAPI.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\nvStInst.exeC:\Users\Bartek Mateusz\AppData\Local\Temp\ose00000.exeC:\Users\Bartek Mateusz\AppData\Local\Temp\Quarantine.exeC:\Users\Bartek Mateusz\AppData\Local\Temp\sqlite3.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{04783E6E-6C60-4100-BB27-552E4BC65026}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{04C16DC8-D4BE-4C36-8D7C-F95DE8A48C91}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{30FA6F0A-B6CF-446F-8DB0-246D39554803}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{35E11711-0120-4818-8B64-80A3EB1F7469}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{3C309027-FAF8-45E2-A99A-1F1406D29FAE}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{3C5F4F6E-413A-420B-8F60-93B78A5E0E3B}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{3F869C7A-1926-4F1C-AAF0-42546D91D669}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{40209958-674C-429A-8450-1309963781AE}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{4761391F-2DF7-4E7D-923C-DF32AB7130DB}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{4A4338D3-0F56-4111-BC63-24C5AD556BB3}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{4BCDC207-130C-4903-ADD0-BBA3923468C5}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{532DD89A-59B2-42FC-A4AD-20BEDFD99DAB}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{5731B56B-F509-43C9-A1D5-1EE908F79CFD}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{5F6C0046-5AB9-41E8-889E-B3B2D87AA8A6}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{6B64885B-8BD1-4F67-995C-9D7FACFB1304}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{7D2C1F57-1000-46A6-BBCD-46B8420DE31F}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{87DC65BA-2C24-4DAC-94B7-BD320E95A48D}-43.0.2357.124_43.0.2357.81_chrome_updater.exeC:\Users\Bartek Mateusz\AppData\Local\Temp\{8944E7DE-6EC1-4300-98D4-D25898D26939}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{9AF82929-FE94-43B1-A594-D77A6E28C233}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{B0FDE59A-7038-44A7-A522-F4707CB66308}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{B3B19E43-8FEC-4B64-8254-9B8D7166C140}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{B5235FB2-C166-4C26-8C80-994351EA44BB}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{BA013EF3-E89F-4660-BA32-3C03C61FC015}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{C53EA9CF-EDE0-4AAD-8040-1BFD2113CA7C}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{C884662E-06BB-4439-929A-64822470BBA5}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{CA6B6E76-C43F-4B2E-9AAF-8A7682D1E332}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{D280716B-E000-4687-8E94-A9D8F1B0F462}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{DAC386C3-AB3A-455A-9830-C57BA6A6DC28}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{E8EAD7ED-FAF3-4453-9D67-82269D9F51FE}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{EA485C42-4E4B-488D-9390-F81AA9410A7C}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{F7261EDD-0896-4E76-AF48-C12DB7C129E4}.dllC:\Users\Bartek Mateusz\AppData\Local\Temp\{FB0442DC-6F11-4EC4-B5EF-84507A8DF696}.dll==================== Bamital & volsnap Check =================(There is no automatic fix for files that do not pass verification.)C:\Windows\system32\winlogon.exe => File is digitally signedC:\Windows\system32\wininit.exe => File is digitally signedC:\Windows\SysWOW64\wininit.exe => File is digitally signedC:\Windows\explorer.exe => File is digitally signedC:\Windows\SysWOW64\explorer.exe => File is digitally signedC:\Windows\system32\svchost.exe => File is digitally signedC:\Windows\SysWOW64\svchost.exe => File is digitally signedC:\Windows\system32\services.exe => File is digitally signedC:\Windows\system32\User32.dll => File is digitally signedC:\Windows\SysWOW64\User32.dll => File is digitally signedC:\Windows\system32\userinit.exe => File is digitally signedC:\Windows\SysWOW64\userinit.exe => File is digitally signedC:\Windows\system32\rpcss.dll => File is digitally signedC:\Windows\system32\dnsapi.dll => File is digitally signedC:\Windows\SysWOW64\dnsapi.dll => File is digitally signedC:\Windows\system32\Drivers\volsnap.sys => File is digitally signedLastRegBack: 2015-08-06 11:09==================== End of log ============================
Reklamy naprężają coraz bardziej denerwują. Pomoc
Napisano 10 sierpień 2015 - 18:04
Po skanowaniu otrzymałeś dwa logi. Drugi ( addition.txt) jest niezbędny.
Napisano 11 sierpień 2015 - 19:52
Dałeś link do loga dokładnie tego samego, którego pokazałeś w poście. Napisałam nazwę wyżej, który chcę zobaczyć dodatkowo i do kompletu.
Napisano 12 sierpień 2015 - 11:26
Malwarebytes Anti Malware, Combofix, potem skanowanie Eset Smart Security (wersja testowa jest na 30 dni). To tak na szybko. Tylko pamiętaj, że przed instalacją Eseta usuń swojego AV.
Napisano 12 sierpień 2015 - 22:06
eurodancer, zastosuj sobie sam na własnym systemie ComboFix'a. Tak na szybko.
Tylko pamiętaj, że przed użyciem tego mocno ingerującego w system narzędzia i stosowanego tylko i wyłącznie w ostateczności i na konkretną infekcję,nauczyć się naprawiać system bez dostępu do neta i samego systemu.
Jeśli nie znasz zasady działania danego narzędzia, to lepiej zamilcz!
Napisano 13 sierpień 2015 - 09:45
To samo miałem pisać. Combofix owszem, potrafi dziwne problemy rozwiązać, ale z drugiej strony jego użycie jest ryzykowne. Jest również mało prawdopodobne aby pomógł w zaistniałej sytuacji. Do usuwania reklam trzeba podejść w znacznym stopniu indywidualnie. MilkaS zna się na tym najlepiej tutaj.
Napisano 15 sierpień 2015 - 10:55
Więc tak postąpiłem.
Raporty:
http://wklej.to/B7EbK
http://wklej.to/JStrM
Później zrobiłem : http://wklej.to/Tkrmr
Programem FRST
i do tego skanowanie i usuwanie AdwCleaner oraz skanowanie programem Malwarebytes Anti-Malware(wersja free)
Raporty po:
http://wklej.to/RGcHN
http://wklej.to/v45HG
http://wklej.to/LeFUS
Jak narazie pomogło,reklamy ustały. Co sądzicie o tym rozwiązaniu ? ?
Napisano 15 sierpień 2015 - 11:38
W systemie był Wander Burst wykrywany przez Malwarebytes i DrWeb pod nazwą Trojan.Yontoo.2167. Ale niestety Twój Avast nie rozpoznaje go. W skrypcie ujęte jest wszystko co być powinno i potwierdzasz to brakiem reklam, wiec jest OK.
Od siebie mogę dodać jedynie żebyś usunął wszystkie punkty przywracania systemu, gdyż zachowały się tam kopie i problem wróci, gdy zajdzie potrzeba przywrócić system.
Internet i Sieci komputerowe →
Oprogramowanie sieciowe →
Jak odłączyć Operę od internetu?Napisany przez Ciekawy, 05 kwi 2016  internet, przeglądarka, Opera i 2 więcej
|
|
|
||
Internet i Sieci komputerowe →
Internet →
Problem z wyskakującymi reklamami przy każdym kliknięciuNapisany przez daff210, 15 mar 2016 problem, chrome, firefox, reklamy i 3 więcej
|
|
|
||
Internet i Sieci komputerowe →
Internet →
"Oczekiwanie na code.jquery.com" Przeglądarka zawiesza się w tym miejscuNapisany przez air87, 15 lut 2016 jquery, oczekiwanie, przeglądarka i 2 więcej
|
|
|
||
Programy (Software) →
Webmastering →
Plugin wyszukujący więcej niż jedno słowo/wyrażenieNapisany przez Kacper_112, 12 wrz 2015 plugin, program, przeglądarka i 1 więcej
|
|
|
||
Internet i Sieci komputerowe →
Bezpieczeństwo →
Piratebay - link "pułapka"Napisany przez Wireł, 25 sie 2015 reklamy, wirus, internet
|
|
|
0 użytkowników, 2 gości, 0 anonimowych
