Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 09.01.2019 01 Uruchomiony przez Tomek (administrator) DESKTOP-GU09IOS (12-01-2019 14:48:35) Uruchomiony z E:\Pobrane Załadowane profile: Tomek (Dostępne profile: Tomek) Platform: Windows 10 Pro Wersja 1803 17134.285 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (AMD) C:\Windows\System32\DriverStore\FileRepository\u0337288.inf_amd64_e18692686066629e\B337205\atiesrxx.exe (Scarlet.Crush Productions) C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe () C:\Program Files\Chaos Group\V-Ray Swarm\register-service.exe (Chaos Software Ltd.) C:\Program Files\Chaos Group\V-Ray Swarm\swrm.exe (Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe (AMD) C:\Windows\System32\DriverStore\FileRepository\u0337288.inf_amd64_e18692686066629e\B337205\atieclxx.exe () C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Microsoft Corporation) C:\Windows\System32\schtasks.exe () C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (ESET) C:\Program Files\ESET\ESET Security\egui.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxOutlook.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxTsr.exe () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1811.3241.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.3242.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe (BitTorrent Inc.) C:\Users\Tomek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) C:\Users\Tomek\AppData\Roaming\uTorrent\updates\3.5.4_44846\utorrentie.exe (BitTorrent Inc.) C:\Users\Tomek\AppData\Roaming\uTorrent\updates\3.5.4_44846\utorrentie.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files (x86)\GIGABYTE\RGBFusion\RGBFusion.exe () C:\Program Files (x86)\GIGABYTE\RGBFusion\Check_Kill.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228776 2017-06-15] (Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [177928 2018-12-13] (ESET) HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation) HKLM-x32\...\Run: [Launch 0 FwCustom] => C:\Program Files (x86)\SKILLER MECH SGK3\SKILLER MECH SGK3.exe [3324416 2017-08-08] (0) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation) HKLM-x32\...\RunOnce: [SelLed] => C:\Program Files (x86)\GIGABYTE\RGBFusion\RunLed.exe [115120 2018-12-12] () HKU\S-1-5-21-2886788180-1485177602-2131833350-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [5094080 2017-07-03] (Disc Soft Ltd) HKU\S-1-5-21-2886788180-1485177602-2131833350-1001\...\Run: [ALLUpdate] => C:\Program Files\ALLPlayer\ALLUpdate.exe [3884720 2017-10-04] (ALLPlayer.org) HKU\S-1-5-21-2886788180-1485177602-2131833350-1001\...\Run: [Napisy24Update] => C:\Program Files (x86)\Napisy24\Napisy24Update.exe [3990528 2017-10-04] (Napisy24.pl) HKU\S-1-5-21-2886788180-1485177602-2131833350-1001\...\Run: [Tomek] => explorer.exe hxxp://dipladoks.org <==== UWAGA HKU\S-1-5-21-2886788180-1485177602-2131833350-1001\...\RunOnce: [Application Restart #1] => C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe [369152 2018-04-12] (Microsoft Corporation) HKU\S-1-5-21-2886788180-1485177602-2131833350-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [36864 2018-04-12] (Microsoft Corporation) HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () HKLM\...\Drivers32-x32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) HKLM\...\Drivers32-x32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2019-01-11] (Google Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2018-09-17] ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS) GroupPolicy: Ograniczenia ? <==== UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 10.100.57.254 Tcpip\..\Interfaces\{a2450896-2d5e-4e71-afb5-0e4faed4b71f}: [DhcpNameServer] 10.100.57.254 Internet Explorer: ================== HKU\S-1-5-21-2886788180-1485177602-2131833350-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.gazeta.pl/0,0.html?p=190 BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-10-25] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-25] (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-10-25] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-25] (Oracle Corporation) FireFox: ======== FF DefaultProfile: u8px0iqc.default FF ProfilePath: C:\Users\Tomek\AppData\Roaming\Mozilla\Firefox\Profiles\u8px0iqc.default [2019-01-11] FF Homepage: Mozilla\Firefox\Profiles\u8px0iqc.default -> hxxp://www.gazeta.pl/0,0.html?p=190 FF NewTab: Mozilla\Firefox\Profiles\u8px0iqc.default -> hxxps://pl.search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10438__171222__yaff FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-25] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-25] (Oracle Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-25] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-25] (Oracle Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-11] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-01-11] (Google Inc.) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxps://www.google.com/" CHR NewTab: Default -> Active:"chrome-extension://jpfpebmajhhopeonhlcgidhclcccjcik/newtab.html" CHR Session Restore: Default -> [funkcja włączona] CHR Profile: C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default [2019-01-12] CHR Extension: (Prezentacje) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-01-11] CHR Extension: (Dokumenty) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-01-11] CHR Extension: (Dysk Google) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-01-11] CHR Extension: (YouTube) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-11] CHR Extension: (uBlock Origin) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-01-11] CHR Extension: (Arkusze) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-01-11] CHR Extension: (Virtual Piano Black) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjagcpcbacoaogfljhglghpjhkmmfeeo [2019-01-11] CHR Extension: (Dokumenty Google offline) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-01-11] CHR Extension: (Speed Dial 3™) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfgjjcbbihjnpdommbepdkpfnkkapnbh [2019-01-11] CHR Extension: (Plypp Piano) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\hofckkgpnnjabffkjemconojemcibifh [2019-01-11] CHR Extension: (Speed Dial 2 New tab) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2019-01-11] CHR Extension: (AudioSauna) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae [2019-01-11] CHR Extension: (Into The Mist) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgihmkgobaljfehcadcckdggpeojaadh [2019-01-11] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-01-11] CHR Extension: (e-pity - dodatek) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2019-01-11] CHR Extension: (Gmail) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-01-11] CHR Extension: (Chrome Media Router) - C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-01-11] CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] - hxxps://clients2.google.com/service/update2/crx Opera: ======= StartMenuInternet: (HKLM) OperaStable - R:\Opera\Launcher.exe ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\u0337288.inf_amd64_e18692686066629e\B337205\atiesrxx.exe [508512 2018-12-19] (AMD) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6893704 2018-06-22] () S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2289856 2017-07-03] (Disc Soft Ltd) R2 Ds3Service; C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2018-06-22] (EasyAntiCheat Ltd) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2302160 2018-12-13] (ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2302160 2018-12-13] (ESET) S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2018-10-25] (Futuremark) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Brak podpisu cyfrowego] S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-08-10] (Microsoft Corporation) S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] () R2 vrswrm-service; C:\Program Files\Chaos Group\V-Ray Swarm\register-service.exe [90176 2018-02-28] () [Brak podpisu cyfrowego] S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-09-21] (Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-09-21] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [67576 2018-12-19] (Advanced Micro Devices, Inc.) R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\u0337288.inf_amd64_e18692686066629e\B337205\atikmdag.sys [52749408 2018-12-19] (Advanced Micro Devices, Inc.) R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\u0337288.inf_amd64_e18692686066629e\B337205\atikmpag.sys [590432 2018-12-19] (Advanced Micro Devices, Inc.) R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [102384 2018-12-19] (Advanced Micro Devices, Inc.) S3 atillk64; d:\Program Files (x86)\GIGABYTE\AORUS ENGINE\AtiTool\atillk64.sys [14608 2018-11-27] (ATI Technologies Inc.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-07-30] (Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-07-30] (Disc Soft Ltd) R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [143448 2018-11-02] (ESET) S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-09-04] (ESET) R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188832 2018-11-02] (ESET) R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [109864 2018-11-02] (ESET) R3 gdrv2; C:\WINDOWS\gdrv2.sys [32720 2019-01-10] (GIGA-BYTE TECHNOLOGY CO., LTD.) R2 GLCKIO2; C:\Program Files (x86)\GIGABYTE\RGBFusion\GLCKIO2.sys [19392 2018-04-23] () R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] () R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions) R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [48320 2018-08-20] () R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48056 2018-09-13] (SteelSeries ApS) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46584 2018-09-21] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [340008 2018-09-21] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-09-21] (Microsoft Corporation) S3 cpuz147; \??\C:\WINDOWS\temp\cpuz147\cpuz147_x64.sys [X] S3 GPUZ; \??\C:\WINDOWS\TEMP\GPUZ.sys [X] S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X] S4 nvlddmkm; \SystemRoot\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c68c1eb90f6d242e\nvlddmkm.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-01-12 14:15 - 2019-01-12 14:15 - 000000000 ____D C:\Users\Tomek\AppData\LocalLow\uTorrent 2019-01-11 21:13 - 2019-01-12 14:48 - 000000000 ____D C:\FRST 2019-01-11 20:54 - 2019-01-11 20:58 - 000000000 ____D C:\ProgramData\HitmanPro 2019-01-11 20:54 - 2019-01-11 20:54 - 000000000 ____D C:\Program Files\HitmanPro 2019-01-11 20:31 - 2019-01-11 20:31 - 000003568 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2019-01-11 20:31 - 2019-01-11 20:31 - 000003444 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2019-01-11 20:31 - 2019-01-11 20:31 - 000002389 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-01-11 20:31 - 2019-01-11 20:31 - 000002348 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-01-11 20:30 - 2019-01-11 20:30 - 000001481 _____ C:\Users\Tomek\AppData\Local\recently-used.xbel 2019-01-11 16:24 - 2019-01-11 16:24 - 000000000 ____D C:\Users\Tomek\AppData\Local\FinchGame 2019-01-11 15:55 - 2019-01-11 15:55 - 000000300 _____ C:\Users\Tomek\Desktop\What Remains of Edith Finch.url 2019-01-10 19:05 - 2019-01-10 19:14 - 000000000 ____D C:\Users\Tomek\Documents\3DMark 2019-01-10 19:05 - 2019-01-10 19:05 - 000000000 ____D C:\Users\Tomek\AppData\Local\UL 2019-01-10 19:05 - 2019-01-10 19:05 - 000000000 ____D C:\Users\Tomek\.oracle_jre_usage 2019-01-10 19:05 - 2019-01-10 19:05 - 000000000 ____D C:\Users\Default\AppData\Local\D3DSCache 2019-01-10 19:05 - 2019-01-10 19:05 - 000000000 ____D C:\Users\Default\AppData\Local\AMD 2019-01-10 19:05 - 2019-01-10 19:05 - 000000000 ____D C:\Users\Default User\AppData\Local\D3DSCache 2019-01-10 19:05 - 2019-01-10 19:05 - 000000000 ____D C:\Users\Default User\AppData\Local\AMD 2019-01-10 19:05 - 2019-01-10 19:05 - 000000000 ____D C:\ProgramData\UL 2019-01-10 19:04 - 2019-01-10 19:04 - 000000000 ____D C:\Program Files (x86)\Futuremark 2019-01-10 18:40 - 2019-01-10 18:40 - 000000000 ____D C:\WINDOWS\Panther 2019-01-10 15:55 - 2019-01-10 15:55 - 000000000 ____D C:\Users\Tomek\AppData\Local\Downloaded Installations 2019-01-10 15:55 - 2019-01-10 15:55 - 000000000 ____D C:\Users\Public\Documents\Creative 2019-01-10 15:55 - 2019-01-10 15:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AORUS 2019-01-10 15:54 - 2019-01-10 15:54 - 000032720 ____N (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\gdrv2.sys 2019-01-10 15:54 - 2019-01-10 15:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE 2019-01-09 17:45 - 2019-01-09 17:45 - 000003126 _____ C:\WINDOWS\System32\Tasks\RTSS 2019-01-09 17:17 - 2019-01-10 15:55 - 000000000 ____D C:\Program Files (x86)\GIGABYTE 2019-01-09 17:17 - 2019-01-09 17:28 - 000003370 _____ C:\WINDOWS\System32\Tasks\GIGABYTE OC GURU 2019-01-09 17:17 - 2019-01-09 17:17 - 000000000 ____D C:\Users\Tomek\Documents\temp 2019-01-09 17:17 - 2019-01-09 17:17 - 000000000 ____D C:\Users\Tomek\AppData\Local\mbamtray 2019-01-09 17:17 - 2019-01-09 17:17 - 000000000 ____D C:\Users\Tomek\AppData\Local\mbam 2019-01-09 16:31 - 2019-01-12 10:36 - 000003112 _____ C:\WINDOWS\System32\Tasks\AMDLinkUpdate 2019-01-09 16:31 - 2019-01-09 16:31 - 000003198 _____ C:\WINDOWS\System32\Tasks\ModifyLinkUpdate 2019-01-09 16:31 - 2019-01-09 16:31 - 000000000 ____D C:\Users\Tomek\AppData\LocalLow\AMD 2019-01-09 16:31 - 2019-01-09 16:31 - 000000000 ____D C:\Users\Tomek\AppData\Local\AMD 2019-01-09 16:30 - 2019-01-11 21:14 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2019-01-09 16:30 - 2019-01-09 16:30 - 000003160 _____ C:\WINDOWS\System32\Tasks\StartCN 2019-01-09 16:30 - 2019-01-09 16:30 - 000003074 _____ C:\WINDOWS\System32\Tasks\StartDVR 2019-01-09 16:30 - 2019-01-09 16:30 - 000000000 ____D C:\WINDOWS\system32\AMD 2019-01-09 16:30 - 2019-01-09 16:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings 2019-01-09 16:30 - 2019-01-09 16:30 - 000000000 ____D C:\Program Files (x86)\AMD 2019-01-09 16:30 - 2018-12-19 16:43 - 003734624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap 2019-01-09 16:30 - 2018-12-19 16:43 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap 2019-01-09 16:30 - 2018-12-19 16:43 - 003362912 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 001685480 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 001652832 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 001364840 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 001210976 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 001210976 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000903704 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb 2019-01-09 16:30 - 2018-12-19 16:43 - 000903704 _____ C:\WINDOWS\system32\atiapfxx.blb 2019-01-09 16:30 - 2018-12-19 16:43 - 000757856 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2019-01-09 16:30 - 2018-12-19 16:43 - 000570992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000492656 _____ C:\WINDOWS\system32\dgtrayicon.exe 2019-01-09 16:30 - 2018-12-19 16:43 - 000481904 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000480368 _____ C:\WINDOWS\system32\GameManager64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000468064 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000439904 _____ C:\WINDOWS\system32\atieah64.exe 2019-01-09 16:30 - 2018-12-19 16:43 - 000417904 _____ C:\WINDOWS\system32\EEURestart.exe 2019-01-09 16:30 - 2018-12-19 16:43 - 000382576 _____ C:\WINDOWS\SysWOW64\GameManager32.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000353376 _____ C:\WINDOWS\SysWOW64\atieah32.exe 2019-01-09 16:30 - 2018-12-19 16:43 - 000341112 _____ C:\WINDOWS\system32\clinfo.exe 2019-01-09 16:30 - 2018-12-19 16:43 - 000240224 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000211552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000204952 _____ C:\WINDOWS\SysWOW64\ativvsvl.dat 2019-01-09 16:30 - 2018-12-19 16:43 - 000204952 _____ C:\WINDOWS\system32\ativvsvl.dat 2019-01-09 16:30 - 2018-12-19 16:43 - 000183952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000177760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000169264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000162928 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000158832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000157144 _____ C:\WINDOWS\SysWOW64\ativvsva.dat 2019-01-09 16:30 - 2018-12-19 16:43 - 000157144 _____ C:\WINDOWS\system32\ativvsva.dat 2019-01-09 16:30 - 2018-12-19 16:43 - 000154384 _____ C:\WINDOWS\system32\samu_krnl_ci.sbin 2019-01-09 16:30 - 2018-12-19 16:43 - 000154208 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000152176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000148104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000138832 _____ C:\WINDOWS\system32\samu_krnl_isv_ci.sbin 2019-01-09 16:30 - 2018-12-19 16:43 - 000137840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000135792 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000127736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000125488 _____ C:\WINDOWS\system32\kapp_ci.sbin 2019-01-09 16:30 - 2018-12-19 16:43 - 000125024 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000123488 _____ C:\WINDOWS\system32\atidxx64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000120208 _____ C:\WINDOWS\system32\kapp_si.sbin 2019-01-09 16:30 - 2018-12-19 16:43 - 000119904 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000106840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000106080 _____ C:\WINDOWS\SysWOW64\atidxx32.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000105056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000090224 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000074864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000069728 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000046192 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000043120 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000019416 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll 2019-01-09 16:30 - 2018-12-19 16:43 - 000019408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll 2019-01-09 16:30 - 2018-12-19 16:42 - 000102384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys 2019-01-09 16:30 - 2018-12-19 16:42 - 000067576 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmafd.sys 2019-01-09 16:29 - 2018-12-19 16:43 - 000127736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2019-01-09 16:29 - 2018-12-19 16:43 - 000106840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000921184 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000752224 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000553056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000546864 _____ C:\WINDOWS\system32\amdmiracast.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000474208 _____ C:\WINDOWS\system32\amdgfxinfo64.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000383072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000382560 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000190080 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000167192 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000133944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000118856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll 2019-01-09 16:29 - 2018-12-19 16:42 - 000034450 _____ C:\WINDOWS\system32\AMDKernelEvents.man 2019-01-08 19:58 - 2019-01-09 16:30 - 000000000 ____D C:\Program Files\AMD 2019-01-08 19:58 - 2019-01-08 19:58 - 000000000 ____D C:\Users\Tomek\AppData\Local\RadeonInstaller 2019-01-07 19:21 - 2019-01-07 19:21 - 000000000 ____D C:\Users\Tomek\AppData\LocalLow\Square Enix 2019-01-07 18:17 - 2019-01-07 18:17 - 000000000 ____D C:\Program Files\rempl 2019-01-07 18:11 - 2019-01-07 18:11 - 000000811 _____ C:\Users\Public\Desktop\Life is Strange - Before the Storm.lnk 2019-01-06 14:15 - 2019-01-12 14:27 - 000000000 ____D C:\Program Files (x86)\Intel 2019-01-06 14:15 - 2019-01-12 14:27 - 000000000 ____D C:\Intel 2019-01-06 14:15 - 2019-01-08 15:26 - 000000000 __SHD C:\Users\Tomek\IntelGraphicsProfiles 2019-01-06 14:15 - 2019-01-06 14:16 - 000000000 ____D C:\Users\Tomek\AppData\Local\Intel 2019-01-06 14:15 - 2019-01-06 14:15 - 000000000 ____D C:\ProgramData\Intel 2019-01-06 14:15 - 2019-01-06 14:15 - 000000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2019-01-04 21:00 - 2019-01-11 15:31 - 000000266 _____ C:\Users\Tomek\Desktop\Super Meat Boy.url 2019-01-01 15:03 - 2019-01-01 15:04 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\Media Player Classic 2019-01-01 14:59 - 2019-01-01 14:59 - 000000883 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer.lnk 2019-01-01 14:59 - 2019-01-01 14:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\(Default) 2019-01-01 14:59 - 2019-01-01 14:59 - 000000000 ____D C:\Program Files\ALLPlayer 2019-01-01 11:42 - 2019-01-01 11:49 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\Game 2019-01-01 11:29 - 2019-01-01 11:29 - 000000891 _____ C:\Users\Public\Desktop\Crash Bandicoot N. Sane Trilogy.lnk 2018-12-29 09:28 - 2018-12-29 09:28 - 000000000 ____D C:\Program Files\Scarlet.Crush Productions 2018-12-29 09:28 - 2013-05-05 16:32 - 000039168 _____ (Scarlet.Crush Productions) C:\WINDOWS\system32\Drivers\ScpVBus.sys 2018-12-29 09:28 - 2013-01-07 10:56 - 001721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll 2018-12-29 09:28 - 2013-01-07 10:56 - 001002728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinUSBCoInstaller2.dll 2018-12-29 09:25 - 2018-12-29 09:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories 2018-12-29 09:25 - 2018-12-29 09:25 - 000000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories 2018-12-29 00:01 - 2018-12-29 00:01 - 000000000 ____D C:\Users\Tomek\Documents\PCSX2 2018-12-26 20:13 - 2018-10-01 19:47 - 000070024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys 2018-12-26 20:13 - 2018-10-01 16:47 - 000074576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys 2018-12-21 21:58 - 2018-12-21 21:58 - 000000861 _____ C:\Users\Public\Desktop\Hitman 2.lnk 2018-12-20 19:31 - 2019-01-09 17:10 - 000000000 ____D C:\Users\Tomek\Documents\Shadow of the Tomb Raider 2018-12-20 19:31 - 2019-01-07 19:17 - 000000000 ____D C:\WINDOWS\SysWOW64\directx 2018-12-20 19:31 - 2018-12-20 19:31 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\Eidos Montreal 2018-12-20 18:57 - 2018-12-20 18:57 - 000000603 _____ C:\Users\Public\Desktop\Shadow of the Tomb Raider.lnk 2018-12-20 02:07 - 2018-12-20 02:07 - 000253416 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2018-12-20 02:07 - 2018-12-20 02:07 - 000253416 _____ C:\WINDOWS\system32\vulkaninfo.exe 2018-12-20 02:07 - 2018-12-20 02:07 - 000228840 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2018-12-20 02:07 - 2018-12-20 02:07 - 000228840 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2018-12-19 20:40 - 2018-12-19 20:40 - 021327032 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 020183536 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 019019792 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 011671224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 003168384 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_h265ve_64.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 003161072 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_vp9ve_64.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 003147472 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_h264ve_64.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 002991800 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_mjpgvd_64.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 002951576 _____ (Intel Corporation) C:\WINDOWS\system32\mfx_mft_encrypt_64.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 002576008 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_h265ve_32.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 002570816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_vp9ve_32.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 002562848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_h264ve_32.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 002433720 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_mjpgvd_32.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 002410312 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfx_mft_encrypt_32.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 001376256 _____ C:\WINDOWS\system32\c_64.cpa 2018-12-19 20:40 - 2018-12-19 20:40 - 001361159 _____ C:\WINDOWS\SysWOW64\c_32.cpa 2018-12-19 20:40 - 2018-12-19 20:40 - 000987104 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 000987104 _____ C:\WINDOWS\system32\vulkan-1.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 000853992 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 000853992 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 000204856 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 000176704 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 000161464 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 000147448 _____ C:\WINDOWS\SysWOW64\libEGL.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 000144888 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 000126136 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 000119800 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll 2018-12-19 20:40 - 2018-12-19 20:40 - 000071481 _____ C:\WINDOWS\SysWOW64\h265e_32.vp 2018-12-19 20:40 - 2018-12-19 20:40 - 000071044 _____ C:\WINDOWS\SysWOW64\vp9e_32.vp 2018-12-19 20:40 - 2018-12-19 20:40 - 000069877 _____ C:\WINDOWS\SysWOW64\he_32.vp 2018-12-19 20:40 - 2018-12-19 20:40 - 000065213 _____ C:\WINDOWS\SysWOW64\mj_32.vp 2018-12-19 20:40 - 2018-12-19 20:40 - 000057143 _____ C:\WINDOWS\SysWOW64\dev_32.vp 2018-12-19 20:40 - 2018-12-19 20:40 - 000056359 _____ C:\WINDOWS\system32\dev_64.vp 2018-12-19 20:40 - 2018-12-19 20:40 - 000014009 _____ C:\WINDOWS\system32\h265e_64.vp 2018-12-19 20:40 - 2018-12-19 20:40 - 000013860 _____ C:\WINDOWS\system32\vp9e_64.vp 2018-12-19 20:40 - 2018-12-19 20:40 - 000013425 _____ C:\WINDOWS\system32\he_64.vp 2018-12-19 20:40 - 2018-12-19 20:40 - 000013181 _____ C:\WINDOWS\system32\mj_64.vp 2018-12-19 20:40 - 2018-12-19 20:40 - 000001125 _____ C:\WINDOWS\SysWOW64\cpa_32.vp 2018-12-19 20:40 - 2018-12-19 20:40 - 000001125 _____ C:\WINDOWS\system32\cpa_64.vp 2018-12-17 20:21 - 2018-12-17 20:21 - 000173432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll 2018-12-17 20:21 - 2018-12-17 20:21 - 000145104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll 2018-12-15 23:05 - 2018-12-15 23:05 - 000000000 ____D C:\ProgramData\Unknown Worlds 2018-12-15 23:04 - 2018-12-15 23:04 - 000000000 ____D C:\Users\Tomek\AppData\LocalLow\Unknown Worlds 2018-12-15 21:42 - 2018-12-15 21:44 - 000000000 ____D C:\ProgramData\Epic 2018-12-15 21:42 - 2018-12-15 21:42 - 000000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2018-12-15 21:42 - 2018-12-15 21:42 - 000000000 ____D C:\Users\Tomek\AppData\Local\UnrealEngineLauncher 2018-12-15 21:42 - 2018-12-15 21:42 - 000000000 ____D C:\Users\Tomek\AppData\Local\EpicGamesLauncher ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-01-12 14:47 - 2017-12-22 15:20 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\uTorrent 2019-01-12 14:25 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps 2019-01-12 14:25 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-01-12 14:25 - 2017-12-23 12:09 - 000000000 ____D C:\Users\Tomek\AppData\Local\Packages 2019-01-12 14:24 - 2017-12-20 16:10 - 000000000 ____D C:\ProgramData\ALLPlayer 2019-01-12 14:23 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-01-12 14:15 - 2017-07-12 19:57 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2019-01-12 14:07 - 2018-08-11 07:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-01-12 12:34 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF 2019-01-12 10:43 - 2017-07-12 16:41 - 000000000 ___RD C:\Users\Tomek\Desktop\Programy 2019-01-12 10:38 - 2017-07-12 17:12 - 000000000 ____D C:\Users\Tomek\AppData\Local\Spotify 2019-01-12 10:38 - 2017-07-12 17:11 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\Spotify 2019-01-12 10:36 - 2018-08-11 07:58 - 000003142 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner 2019-01-11 21:20 - 2018-08-11 07:59 - 001763504 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-01-11 21:20 - 2018-04-12 16:54 - 000782334 _____ C:\WINDOWS\system32\perfh015.dat 2019-01-11 21:20 - 2018-04-12 16:54 - 000151496 _____ C:\WINDOWS\system32\perfc015.dat 2019-01-11 21:15 - 2018-08-11 07:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-01-11 21:14 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2019-01-11 20:38 - 2017-12-22 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft 2019-01-11 20:38 - 2017-11-16 20:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-01-11 20:38 - 2017-11-16 20:02 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-01-11 20:33 - 2017-11-16 20:03 - 000000000 ____D C:\Users\Tomek\AppData\LocalLow\Mozilla 2019-01-11 20:31 - 2018-08-11 09:07 - 000000000 ____D C:\Users\Tomek\AppData\Local\D3DSCache 2019-01-11 20:31 - 2017-11-16 20:03 - 000001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-01-11 20:31 - 2017-07-12 16:56 - 000000000 ____D C:\Users\Tomek\AppData\Local\Google 2019-01-11 20:31 - 2017-07-12 16:56 - 000000000 ____D C:\Program Files (x86)\Google 2019-01-11 20:30 - 2017-07-22 11:39 - 000000000 ____D C:\Users\Tomek\.gimp-2.8 2019-01-11 17:47 - 2017-07-12 16:57 - 000000000 ____D C:\Program Files (x86)\Steam 2019-01-11 16:24 - 2017-08-21 19:00 - 000000000 ____D C:\Users\Tomek\AppData\Local\UnrealEngine 2019-01-10 20:35 - 2018-08-11 07:54 - 000000000 ____D C:\Users\Tomek 2019-01-10 15:32 - 2018-01-09 16:09 - 000027721 _____ C:\Users\Tomek\Documents\Finanse.ods 2019-01-09 18:05 - 2017-07-12 16:39 - 000000000 ____D C:\Users\Tomek\Documents\BeamNG.drive 2019-01-09 17:50 - 2017-08-01 08:17 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2019-01-09 17:28 - 2018-09-18 16:05 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2019-01-09 17:28 - 2017-07-12 16:23 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-01-09 17:19 - 2017-12-31 14:44 - 000000000 ____D C:\Users\Tomek\AppData\Roaming\SoftwareUpdate 2019-01-09 17:10 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-01-09 16:44 - 2018-08-11 07:52 - 000323800 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-01-09 16:30 - 2018-09-15 18:43 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2019-01-09 16:30 - 2017-07-12 17:30 - 000000000 ____D C:\ProgramData\Package Cache 2019-01-08 15:48 - 2018-08-11 11:07 - 000000000 ____D C:\Users\Tomek\AppData\Local\PlaceholderTileLogoFolder 2019-01-08 15:29 - 2018-08-11 09:17 - 000000000 ____D C:\ProgramData\Packages 2019-01-07 18:37 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-01-07 18:37 - 2017-07-12 19:49 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-01-07 18:34 - 2017-06-13 19:59 - 137810048 ____C (Microsoft Corporation) C:\WINDOWS\system32\mrt.exe 2019-01-06 14:20 - 2018-01-24 20:43 - 000000000 ____D C:\Program Files\Intel 2019-01-06 13:56 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\Help 2019-01-06 13:56 - 2017-07-12 16:33 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2019-01-06 13:56 - 2017-07-12 16:33 - 000000000 ____D C:\ProgramData\NVIDIA 2019-01-06 13:42 - 2017-12-13 20:29 - 000000000 ____D C:\Users\Tomek\AppData\Local\NVIDIA Corporation 2019-01-04 21:18 - 2017-07-13 13:35 - 000000000 ____D C:\Users\Tomek\AppData\Local\CrashDumps 2019-01-01 16:14 - 2017-07-12 16:40 - 000000000 ____D C:\Users\Tomek\Documents\My Games 2019-01-01 15:52 - 2017-08-05 08:54 - 000000000 ____D C:\Users\Tomek\AppData\Local\New Technology Studio 2019-01-01 15:51 - 2017-12-20 16:10 - 000000000 ____D C:\ProgramData\Napisy24 2018-12-29 08:58 - 2018-09-08 12:22 - 000000548 __RSH C:\ProgramData\ntuser.pol 2018-12-26 14:26 - 2017-12-03 17:47 - 000000000 ___RD C:\Users\Tomek\3D Objects 2018-12-20 19:31 - 2018-06-02 22:10 - 000000000 ____D C:\Users\Tomek\Documents\CPY_SAVES 2018-12-20 18:46 - 2018-11-01 16:37 - 000001306 _____ C:\Users\Tomek\Desktop\BeamNG.drive.lnk 2018-12-17 19:34 - 2017-07-12 16:24 - 000000000 __RHD C:\Users\Tomek\OneDrive ==================== Pliki w katalogu głównym wybranych folderów ======= 2018-01-25 14:50 - 2018-01-25 14:50 - 000000001 _____ () C:\Users\Tomek\AppData\Local\llftool.4.40.agreement 2019-01-11 20:30 - 2019-01-11 20:30 - 000001481 _____ () C:\Users\Tomek\AppData\Local\recently-used.xbel 2017-09-30 13:03 - 2017-09-30 13:03 - 000007604 _____ () C:\Users\Tomek\AppData\Local\Resmon.ResmonCfg ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2018-08-11 07:52 ==================== Koniec FRST.txt ============================