Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-01-2016 Ran by Rockfor (administrator) on RAGNAROCK (06-02-2016 06:19:06) Running from C:\Users\Rockfor\Downloads\logi Loaded Profiles: Rockfor (Available Profiles: Rockfor & Guest) Platform: Windows 8.1 Pro (X64) Language: Angielski (Stany Zjednoczone) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe () C:\Program Files (x86)\Fatal1ty Utility\F-Stream Tuning\Bin\IOMonitorSrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe () C:\Users\Rockfor\Downloads\czyczczenie systemu\FRST64.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13636824 2015-08-18] (Realtek Semiconductor) HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Corel Update Helper] => c:\Program Files\Corel\Corel PaintShop Pro X8 (64-bit)\pua.exe [2012104 2015-11-27] (Corel Corporation) HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7744568 2015-10-17] (GOG.com) HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\Run: [Fatal1tySTU] => [X] HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd) HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\Run: [ChomikBox] => C:\Program Files (x86)\ChomikBox\chomikbox.exe [3939840 2015-12-10] ( ) HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\RunOnce: [AsrOMG_Day0] => [X] HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\RunOnce: [AsrOMG_Day1] => [X] HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\RunOnce: [AsrOMG_Day2] => [X] HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\RunOnce: [AsrOMG_Day3] => [X] HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\RunOnce: [AsrOMG_Day4] => [X] HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\RunOnce: [AsrOMG_Day5] => [X] HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\RunOnce: [AsrOMG_Day6] => [X] HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\MountPoints2: {3bc1d1b6-4922-11e5-826b-faec7023c987} - "H:\setup.exe" HKU\S-1-5-21-2412946247-1837993513-3895125520-1002\...\MountPoints2: {d29070fb-5157-11e5-826c-e77552244ed3} - "E:\Startme.exe" HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-01-19] ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{18270291-F758-4DA3-942C-4DEE31511E13}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{8FD7CAF8-D2DC-44C4-8B15-A41B2AE5C5F1}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== FireFox: ======== FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-08-26] (Google, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-12-16] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-12-16] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.pl/ CHR StartupUrls: Default -> "hxxp://www.google.pl/" CHR Profile: C:\Users\Rockfor\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Dysk Google) - C:\Users\Rockfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-24] CHR Extension: (YouTube) - C:\Users\Rockfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-24] CHR Extension: (Adblock Plus) - C:\Users\Rockfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-03] CHR Extension: (Google Search) - C:\Users\Rockfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-24] CHR Extension: (Dokumenty Google offline) - C:\Users\Rockfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-01-24] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Rockfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-01-24] CHR Extension: (Gmail) - C:\Users\Rockfor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-24] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 ASRockIOMon; C:\Program Files (x86)\Fatal1ty Utility\F-Stream Tuning\Bin\IOMonitorSrv.exe [454656 2013-05-28] () [File not signed] S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1300512 2016-01-15] () S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd) S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1616440 2015-10-17] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7184440 2015-12-18] (GOG.com) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-03] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation) R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [451072 2015-11-24] (Rivet Networks) [File not signed] R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation) R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2078216 2015-10-09] (Electronic Arts) R2 PSI_SVC_2_x64; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (arvato digital services llc) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 AsrDrv101; C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [22280 2015-08-19] (ASRock Incorporation) S3 AsrHidFilter; C:\Windows\system32\DRIVERS\AsrHidFilter.sys [20232 2013-09-09] (ASRock Inc.) R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [40200 2013-05-09] (ASRock Inc.) R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW8x64.sys [147528 2015-11-20] (Rivet Networks, LLC.) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-08-23] (Disc Soft Ltd) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) S3 JabraDFU; C:\Windows\System32\Drivers\JabraMobileCsrDfuX64.sys [38768 2015-12-29] (GN Netcom A/S) R3 Ke2200; C:\Windows\system32\DRIVERS\e22w8x64.sys [157752 2015-09-03] (Qualcomm Atheros, Inc.) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation) S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-06-02] () R3 SaiK1708; C:\Windows\system32\DRIVERS\SaiK1708.sys [180544 2012-09-20] (Saitek) R3 SaiU1708; C:\Windows\System32\drivers\SaiU1708.sys [47168 2012-09-20] (Saitek) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 AIDA64Driver; \??\C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [X] S3 cpuz138; \??\C:\Users\Rockfor\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-02-06 06:15 - 2016-02-06 06:19 - 00000000 ____D C:\Users\Rockfor\Downloads\logi 2016-02-06 05:57 - 2016-02-06 05:58 - 01508352 _____ C:\Users\Rockfor\Downloads\AdwCleaner.exe 2016-02-02 00:53 - 2016-02-02 00:53 - 00002755 _____ C:\Users\Rockfor\Desktop\Image1.pspimage 2016-01-31 20:39 - 2016-01-31 20:39 - 00000000 ___HD C:\Users\Rockfor\Desktop\.picasaoriginals 2016-01-28 09:09 - 2016-01-28 09:09 - 00000000 ____D C:\Windows\LastGood.Tmp 2016-01-28 09:09 - 2015-12-18 07:11 - 00047760 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2016-01-28 09:09 - 2015-12-18 07:10 - 00099472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2016-01-28 09:09 - 2015-12-18 07:10 - 00090768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2016-01-27 22:39 - 2016-01-27 22:39 - 00097866 _____ C:\Users\Rockfor\Desktop\rama-ns-bikes-snabb-e-2016-1.jpg.webp 2016-01-27 22:34 - 2016-01-27 22:34 - 00000000 ___HD C:\Users\Rockfor\Desktop\Corel Auto-Preserve 2016-01-27 22:19 - 2016-01-27 22:23 - 00000000 ____D C:\Users\Rockfor\Desktop\Nowy folder 2016-01-25 00:01 - 2016-01-25 09:00 - 00000000 ____D C:\Users\Rockfor\Downloads\Nowy folder 2016-01-25 00:00 - 2016-02-06 06:19 - 00000000 ____D C:\FRST 2016-01-24 23:56 - 2016-01-24 23:56 - 00000000 _____ C:\Users\Rockfor\Desktop\Nowy dokument tekstowy (2).txt 2016-01-24 21:08 - 2016-02-04 22:18 - 00002238 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-01-24 21:08 - 2016-02-04 22:18 - 00002209 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-01-24 21:07 - 2016-02-06 06:17 - 00001076 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-01-24 21:07 - 2016-02-06 05:59 - 00001072 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-01-24 21:07 - 2016-02-01 21:12 - 00004048 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2016-01-24 21:07 - 2016-02-01 21:12 - 00003812 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2016-01-24 01:22 - 2015-07-28 02:09 - 00484552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll 2016-01-24 01:22 - 2015-07-28 02:08 - 00690016 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll 2016-01-23 23:40 - 2016-01-23 23:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wiedźmin 3® - Dziki Gon [GOG.com] 2016-01-23 22:07 - 2015-06-22 07:31 - 00027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll 2016-01-23 22:07 - 2015-06-22 07:30 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll 2016-01-22 00:19 - 2016-01-24 00:19 - 00000068 _____ C:\Users\Rockfor\AppData\Roaming\WB.CFG 2016-01-21 23:51 - 2016-01-21 23:51 - 00000000 ____D C:\Users\Rockfor\AppData\Roaming\MPC-HC 2016-01-21 23:35 - 2016-01-21 23:35 - 00000000 ____D C:\Users\Rockfor\AppData\Local\ZNetCS 2016-01-21 23:21 - 2016-01-21 23:21 - 00001134 _____ C:\Users\Rockfor\Desktop\Continue Preferred Filter Tweaker for Windows 7 installation.lnk 2016-01-21 23:19 - 2016-01-21 23:19 - 00755091 _____ ( ) C:\Users\Rockfor\Downloads\Win7DSFilterTweaker_5.8(dobreprogramy.pl).exe 2016-01-21 23:19 - 2016-01-21 23:19 - 00003458 _____ C:\Windows\System32\Tasks\RockforMotetsMinistryV2 2016-01-21 23:19 - 2016-01-21 23:19 - 00000000 ____D C:\Users\Rockfor\AppData\Local\MotetsMinistry 2016-01-21 23:14 - 2016-01-21 23:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack 64bit 2016-01-21 23:14 - 2016-01-21 23:14 - 00000000 ____D C:\Program Files\Combined Community Codec Pack 64bit 2016-01-20 01:03 - 2016-01-20 01:03 - 00001233 _____ C:\Users\Public\Desktop\Corel PaintShop Pro X8 (64-bit).lnk 2016-01-20 01:03 - 2016-01-20 01:03 - 00000000 ____D C:\Users\Rockfor\Documents\Corel PaintShop Pro 2016-01-20 01:03 - 2016-01-20 01:03 - 00000000 ____D C:\Users\Rockfor\AppData\Roaming\Ulead Systems 2016-01-20 01:03 - 2016-01-20 01:03 - 00000000 ____D C:\Users\Rockfor\AppData\Local\Corel PaintShop Pro 2016-01-20 01:03 - 2016-01-20 01:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel PaintShop Pro X8 2016-01-20 01:03 - 2016-01-20 01:03 - 00000000 ____D C:\Program Files (x86)\Corel 2016-01-20 01:00 - 2016-01-20 01:00 - 00000000 ____D C:\ProgramData\UniqueId 2016-01-20 00:21 - 2016-01-20 00:21 - 00000000 ____D C:\Users\Rockfor\Documents\Moje palety 2016-01-20 00:20 - 2016-01-20 00:20 - 00000000 ____D C:\Users\Rockfor\Documents\Corel 2016-01-20 00:19 - 2016-01-20 00:20 - 00000000 ____D C:\ProgramData\Protexis64 2016-01-20 00:19 - 2016-01-20 00:19 - 00000000 ____D C:\Users\Rockfor\AppData\Roaming\Corel 2016-01-20 00:18 - 2016-01-20 00:18 - 00000000 ____D C:\Program Files\Common Files\Corel 2016-01-20 00:18 - 2016-01-20 00:17 - 00003003 _____ C:\Users\Public\Desktop\CorelDRAW X7 (64-Bit).lnk 2016-01-20 00:17 - 2016-01-20 01:03 - 00000000 ____D C:\ProgramData\Corel 2016-01-20 00:17 - 2016-01-20 01:03 - 00000000 ____D C:\Program Files\Corel 2016-01-20 00:17 - 2016-01-20 00:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7 (64-bit) 2016-01-20 00:17 - 2016-01-20 00:17 - 00000000 ____D C:\Users\Public\Documents\Corel 2016-01-20 00:17 - 2016-01-20 00:17 - 00000000 ____D C:\Program Files\Common Files\Protexis 2016-01-20 00:16 - 2016-01-20 00:18 - 00000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X7 x64 2016-01-19 20:53 - 2016-01-19 20:58 - 00000000 ____D C:\ProgramData\Killer 2016-01-19 20:53 - 2016-01-19 20:53 - 00002801 _____ C:\Users\Public\Desktop\Killer Network Manager.lnk 2016-01-19 20:53 - 2016-01-19 20:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking 2016-01-19 20:53 - 2016-01-19 20:53 - 00000000 ____D C:\ProgramData\Downloaded Installations 2016-01-19 20:53 - 2016-01-19 20:53 - 00000000 ____D C:\Program Files\Killer Networking 2016-01-19 20:52 - 2016-01-19 20:52 - 00000000 _____ C:\Users\Rockfor\AppData\Local\Driver_LOM_8161Present.flag 2016-01-12 20:38 - 2015-12-11 05:38 - 25837568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-01-12 20:38 - 2015-12-11 05:00 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-01-12 20:38 - 2015-12-11 04:55 - 06051328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-01-12 20:38 - 2015-12-11 04:50 - 20367360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-01-12 20:38 - 2015-12-11 04:45 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-01-12 20:38 - 2015-12-11 04:21 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-01-12 20:38 - 2015-12-11 04:18 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-01-12 20:38 - 2015-12-11 04:09 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2016-01-12 20:38 - 2015-12-11 04:09 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-01-12 20:38 - 2015-12-11 04:03 - 14456832 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-01-12 20:38 - 2015-12-11 03:59 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-01-12 20:38 - 2015-12-11 03:43 - 04610560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-01-12 20:38 - 2015-12-11 03:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2016-01-12 20:38 - 2015-12-11 03:38 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-01-12 20:38 - 2015-12-11 03:37 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-01-12 20:38 - 2015-12-11 03:35 - 12856320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-01-12 20:38 - 2015-12-11 03:26 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-01-12 20:38 - 2015-12-11 03:14 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-01-12 20:38 - 2015-12-11 03:12 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-01-12 20:38 - 2015-12-11 03:08 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-01-12 20:38 - 2015-12-11 03:07 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 02745184 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 02528784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 02450240 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 02447136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 02334104 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 02324744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 01877504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 01798480 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 01484888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 01288128 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 01210200 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 01150232 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 01115640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 01037680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00914672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00850680 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 00735496 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 00700360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 00629600 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00584656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 00557856 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00498472 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 00492736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00463776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00399776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 00299080 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00275312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00274280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00248432 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00246856 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00244296 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 00229272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00203016 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00184912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00183856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00116720 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00110544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 00099136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL 2016-01-12 20:37 - 2015-12-05 06:58 - 00090904 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 00090392 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 00081032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll 2016-01-12 20:37 - 2015-12-05 06:58 - 00076936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll 2016-01-12 20:37 - 2015-12-03 20:42 - 00561952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2016-01-12 20:37 - 2015-12-03 20:42 - 00397224 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2016-01-12 20:37 - 2015-12-03 20:42 - 00137968 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-01-12 20:37 - 2015-12-03 20:42 - 00106960 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll 2016-01-12 20:37 - 2015-12-03 20:41 - 00177488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-01-12 20:37 - 2015-12-03 19:52 - 00340872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll 2016-01-12 20:37 - 2015-12-03 19:52 - 00120376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-01-12 20:37 - 2015-12-03 19:52 - 00091416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll 2016-01-12 20:37 - 2015-12-03 19:28 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-01-12 20:37 - 2015-12-03 19:28 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-01-12 20:37 - 2015-12-03 19:07 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2016-01-12 20:37 - 2015-12-03 19:07 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax 2016-01-12 20:37 - 2015-12-03 19:05 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL 2016-01-12 20:37 - 2015-12-03 19:02 - 01664000 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL 2016-01-12 20:37 - 2015-12-03 19:00 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL 2016-01-12 20:37 - 2015-12-03 18:58 - 00378880 ____C (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll 2016-01-12 20:37 - 2015-12-03 18:51 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-01-12 20:37 - 2015-12-03 18:36 - 01697792 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2016-01-12 20:37 - 2015-12-03 18:30 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL 2016-01-12 20:37 - 2015-12-03 18:28 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2016-01-12 20:37 - 2015-12-03 18:28 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax 2016-01-12 20:37 - 2015-12-03 18:27 - 00736256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL 2016-01-12 20:37 - 2015-12-03 18:24 - 01411584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL 2016-01-12 20:37 - 2015-12-03 18:23 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL 2016-01-12 20:37 - 2015-12-03 18:16 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-01-12 20:37 - 2015-12-03 18:13 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-01-12 20:37 - 2015-12-03 18:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-01-12 20:37 - 2015-12-03 18:06 - 01501184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2016-01-12 20:37 - 2015-12-03 18:01 - 00743936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL 2016-01-12 20:37 - 2015-12-03 17:45 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-01-12 20:37 - 2015-12-03 17:40 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL 2016-01-12 20:37 - 2015-12-03 17:29 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL 2016-01-12 20:37 - 2015-12-02 16:04 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2016-01-12 20:37 - 2015-12-02 16:01 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2016-01-12 20:36 - 2015-12-30 20:32 - 07453016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-01-12 20:36 - 2015-12-30 20:32 - 01735000 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-01-12 20:36 - 2015-12-30 20:32 - 01499912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-01-12 20:36 - 2015-12-10 01:40 - 00033456 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-01-12 20:36 - 2015-12-08 20:08 - 00685432 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-01-12 20:36 - 2015-12-08 20:07 - 00507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-01-12 20:36 - 2015-12-07 11:56 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-01-12 20:36 - 2015-12-04 16:00 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2016-01-12 20:36 - 2015-11-17 22:07 - 01380864 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-01-12 20:36 - 2015-11-17 22:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-01-12 20:36 - 2015-11-17 22:07 - 00792064 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-01-12 20:36 - 2015-11-17 22:07 - 00705024 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-01-12 20:36 - 2015-11-17 22:07 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-01-12 20:36 - 2015-11-17 22:07 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2016-01-12 20:36 - 2015-11-17 22:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-01-10 17:30 - 2016-01-10 17:32 - 00000000 ____D C:\Program Files (x86)\A3Launcher 2016-01-10 17:30 - 2016-01-10 17:30 - 00001047 _____ C:\Users\Public\Desktop\A3Launcher.lnk 2016-01-10 17:30 - 2016-01-10 17:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A3Launcher 2016-01-10 17:23 - 2016-02-01 23:04 - 00000000 ____D C:\Users\Rockfor\AppData\Local\Arma 3 2016-01-10 17:23 - 2016-01-11 19:15 - 00000000 ____D C:\Users\Rockfor\Documents\Arma 3 2016-01-10 17:23 - 2016-01-10 17:23 - 00000000 ____D C:\ProgramData\Bohemia Interactive 2016-01-10 17:20 - 2016-01-10 17:22 - 00000000 ____D C:\Users\Rockfor\AppData\Local\Arma 3 Launcher 2016-01-10 17:20 - 2016-01-10 17:20 - 00000000 ____D C:\Users\Rockfor\AppData\Local\Bohemia_Interactive 2016-01-10 11:05 - 2016-01-10 11:05 - 00000222 _____ C:\Users\Rockfor\Desktop\Arma 3.url ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-02-06 06:05 - 2015-08-18 21:00 - 00805892 _____ C:\Windows\system32\perfh015.dat 2016-02-06 06:05 - 2015-08-18 21:00 - 00163272 _____ C:\Windows\system32\perfc015.dat 2016-02-06 06:05 - 2014-11-21 08:38 - 01825074 _____ C:\Windows\system32\PerfStringBackup.INI 2016-02-06 06:05 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf 2016-02-06 05:59 - 2015-09-06 19:26 - 00000000 ___RD C:\Users\Rockfor\OneDrive 2016-02-06 05:59 - 2015-08-18 21:00 - 00000000 ____D C:\ProgramData\NVIDIA 2016-02-06 05:59 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-02-06 02:56 - 2015-08-18 20:52 - 00003938 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{C99BCFFE-B6E1-476E-9BBA-6F370AD2C2CB} 2016-02-05 09:09 - 2015-08-18 20:50 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2412946247-1837993513-3895125520-1002 2016-02-03 09:27 - 2015-08-18 21:44 - 00000000 ____D C:\Program Files (x86)\Steam 2016-02-02 00:53 - 2015-11-06 20:37 - 00530944 ___SH C:\Users\Rockfor\Desktop\Thumbs.db 2016-02-02 00:40 - 2015-08-18 21:40 - 00000000 ____D C:\Users\Rockfor\AppData\Roaming\TS3Client 2016-01-30 18:19 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI 2016-01-28 22:03 - 2015-11-28 08:51 - 00000000 ____D C:\AdwCleaner 2016-01-28 09:09 - 2015-08-18 21:22 - 00001397 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2016-01-28 09:09 - 2015-08-18 21:01 - 00000000 ____D C:\Users\Rockfor\AppData\Local\NVIDIA 2016-01-24 22:01 - 2015-08-21 19:32 - 00000000 ____D C:\Users\Rockfor\Documents\The Witcher 3 2016-01-24 21:32 - 2015-08-23 20:34 - 00000000 ____D C:\Users\Rockfor\AppData\Roaming\uTorrent 2016-01-24 21:08 - 2015-08-18 20:53 - 00000000 ____D C:\Users\Rockfor\AppData\Local\Google 2016-01-24 21:08 - 2015-08-18 20:53 - 00000000 ____D C:\Program Files (x86)\Google 2016-01-24 21:07 - 2015-08-18 20:53 - 00000000 ____D C:\Users\Rockfor\AppData\Local\Deployment 2016-01-24 20:48 - 2013-08-22 15:44 - 00424232 _____ C:\Windows\system32\FNTCACHE.DAT 2016-01-24 05:22 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache 2016-01-24 01:22 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp 2016-01-23 22:04 - 2015-12-27 18:01 - 00000902 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk 2016-01-23 22:04 - 2015-12-27 18:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager 2016-01-23 22:04 - 2015-12-27 18:01 - 00000000 ____D C:\Program Files\Nexus Mod Manager 2016-01-21 23:21 - 2015-08-18 22:15 - 00000000 ____D C:\Users\Rockfor\AppData\Roaming\vlc 2016-01-20 00:18 - 2015-08-18 22:34 - 00000000 ____D C:\ProgramData\Package Cache 2016-01-20 00:18 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-01-19 20:53 - 2015-08-18 21:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-01-19 20:42 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\NDF 2016-01-13 09:22 - 2015-08-12 15:47 - 00000000 ____D C:\Windows\system32\appraiser 2016-01-13 09:22 - 2014-11-21 16:14 - 00000000 ___SD C:\Windows\system32\CompatTel 2016-01-12 20:42 - 2015-08-12 15:15 - 00000000 ____D C:\Windows\system32\MRT 2016-01-12 20:40 - 2015-08-12 15:15 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-01-12 05:41 - 2015-08-18 21:22 - 01542600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2016-01-12 05:41 - 2015-08-18 21:22 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2016-01-12 05:40 - 2015-12-02 09:01 - 00112032 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2016-01-12 05:40 - 2015-08-18 21:22 - 01860120 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2016-01-12 05:40 - 2015-08-18 21:22 - 01756608 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2016-01-11 00:28 - 2015-09-01 15:20 - 00000000 ____D C:\Users\Rockfor\AppData\Local\Rockstar Games 2016-01-11 00:25 - 2015-08-18 22:24 - 00000000 ____D C:\Users\Rockfor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-01-11 00:23 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness 2016-01-10 14:07 - 2015-12-26 11:36 - 00000000 ____D C:\Users\Rockfor\AppData\Local\ChomikBox 2016-01-10 14:03 - 2015-12-26 11:36 - 00000000 ____D C:\Users\Rockfor\.gstreamer-0.10 ==================== Files in the root of some directories ======= 2016-01-22 00:19 - 2016-01-24 00:19 - 0000068 _____ () C:\Users\Rockfor\AppData\Roaming\WB.CFG 2016-01-19 20:52 - 2016-01-19 20:52 - 0000000 _____ () C:\Users\Rockfor\AppData\Local\Driver_LOM_8161Present.flag 2015-08-18 21:17 - 2015-08-18 21:17 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some files in TEMP: ==================== C:\Users\Rockfor\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-01-29 02:04 ==================== End of FRST.txt ============================