Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:14-05-2016 Uruchomiony przez gtx (administrator) KOMPUTER (15-05-2016 17:27:54) Uruchomiony z C:\Users\gtx\Desktop Załadowane profile: gtx (Dostępne profile: gtx & Ola & DefaultAppPool) Platform: Windows 10 Pro Wersja 1511 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (OSBASE) C:\Windows\System32\ddmgr.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe (MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe (MSI) C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (Micro-Star INT'L CO., LTD.) E:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Realtek Semiconductor) C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Dexpot GbR) C:\Program Files (x86)\Dexpot\dexpot.exe (Flux Software LLC) C:\Users\gtx\AppData\Local\FluxSoftware\Flux\flux.exe (Google, Inc) C:\Users\gtx\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Dexpot GbR) C:\Program Files (x86)\Dexpot\Dexpot64.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Corporation) C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe (NVIDIA Corporation) C:\Users\gtx\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8725248 2015-10-16] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Chew7Hale] => C:\Windows\System32\hale.exe [2169856 2015-08-16] () HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-03-24] (Intel Corporation) HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] () HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-04-25] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [807392 2016-03-12] (Avira Operations GmbH & Co. KG) HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1 HKLM\...\Policies\Explorer: [TaskbarNoNotification] 1 HKLM\...\Policies\Explorer: [HideSCAHealth] 1 HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\...\Run: [Dexpot] => C:\Program Files (x86)\Dexpot\dexpot.exe [1845296 2014-09-04] (Dexpot GbR) HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\...\Run: [f.lux] => C:\Users\gtx\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC) HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\...\Run: [Google Update] => C:\Users\gtx\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-07-22] (Google Inc.) HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8619224 2016-01-15] (Piriform Ltd) HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\...\Run: [Google Photos Backup] => C:\Users\gtx\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe [3790936 2016-04-09] (Google, Inc) HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\...\Policies\system: [LogonHoursAction] 2 HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\...\Policies\system: [DontDisplayLogonHoursWarnings] 1 HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\...\MountPoints2: G - "G:\Setup.exe" HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\...\MountPoints2: {413af6f0-cf3b-11e5-8778-448a5b9be52e} - "G:\OnePlus_setup.exe" /s ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => Brak pliku ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => Brak pliku ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => Brak pliku ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2014-09-26] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2014-09-26] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2014-09-26] () Startup: C:\Users\gtx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk [2016-05-10] ShortcutTarget: Wysyłanie do programu OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation) GroupPolicyUsers\S-1-5-21-2592313924-3969202158-3244188748-1004\User: Ograniczenia <======= UWAGA GroupPolicyScripts: Ograniczenia <======= UWAGA GroupPolicyScripts\User: Ograniczenia <======= UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.11.254 Tcpip\..\Interfaces\{65f071ec-5fbb-42c2-aad6-1c638cf3c3c8}: [DhcpNameServer] 192.168.11.254 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=art&q= HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/#web/result?source=art&q= HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/#web/result?source=art&q= HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=art&q= HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/#web/result?source=art&q= HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=art&q= HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/#web/result?source=art&q= HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=art&q= SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2592313924-3969202158-3244188748-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-04-29] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-23] (Oracle Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-04-29] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-23] (Oracle Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-04-29] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-23] (Oracle Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-04-29] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-23] (Oracle Corporation) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\gtx\AppData\Roaming\Mozilla\Firefox\Profiles\sVr8Jj3n.default FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-23] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-23] (Oracle Corporation) FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [Brak pliku] FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-10-15] (Adobe Systems) FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-19] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-19] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-23] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-23] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-04-29] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-04-29] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-05-10] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-05-10] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.) FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-10-15] (Adobe Systems) FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin HKU\S-1-5-21-2592313924-3969202158-3244188748-1001: @tools.google.com/Google Update;version=3 -> C:\Users\gtx\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.) FF Plugin HKU\S-1-5-21-2592313924-3969202158-3244188748-1001: @tools.google.com/Google Update;version=9 -> C:\Users\gtx\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.) FF Plugin HKU\S-1-5-21-2592313924-3969202158-3244188748-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\gtx\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-09-27] (Unity Technologies ApS) FF Plugin HKU\S-1-5-21-2592313924-3969202158-3244188748-1001: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Extension: Avira Browser Safety - C:\Users\gtx\AppData\Roaming\Mozilla\Firefox\Profiles\sVr8Jj3n.default\Extensions\abs@avira.com.xpi [2016-02-04] Chrome: ======= CHR HomePage: Default -> hxxp://www.wp.pl/ CHR StartupUrls: Default -> "chrome://apps/" CHR Plugin: (Widevine Content Decryption Module) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.6.758\_platform_specific\win_x86\widevinecdmadapter.dll => Brak pliku CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\pdf.dll => Brak pliku CHR Plugin: (Microsoft Office 2013) - C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL => Brak pliku CHR Plugin: (AdobeAAMDetect) - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll => Brak pliku CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll => Brak pliku CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) CHR Plugin: (Java Deployment Toolkit 8.0.310.13) - C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) CHR Plugin: (Java(TM) Platform SE 8 U31) - C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (Microsoft Office 2013) - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll => Brak pliku CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) CHR Plugin: (Unity Player) - C:\Users\gtx\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) CHR Profile: C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Magic Actions for YouTube™) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2016-05-06] CHR Extension: (MEGA) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2016-05-14] CHR Extension: (TrafficLight) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2016-05-15] CHR Extension: (Streamkeys) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekpipjofdicppbepocohdlgenahaneen [2016-03-24] CHR Extension: (Wikiwand: Wikipedia Modernized) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\emffkefkbkpkgpdeeooapgaicgmcbolj [2016-04-01] CHR Extension: (Eliminator Slajdów) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\eplekpmdodlgejgogbojajncdlapamff [2015-09-17] CHR Extension: (Stylish) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2016-04-10] CHR Extension: (Pulpit zdalny Chrome) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2016-05-06] CHR Extension: (AdBlock) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-05-14] CHR Extension: (GeForce Experience Stream Client) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjljknijpnfibppaijefibndmiabonep [2016-04-21] CHR Extension: (Material for Chrome) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gokahbgdhhcjfnjlfeiojfmgnoikpcco [2016-05-07] CHR Extension: (Explode) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\hniojmjkfmakikcfighiifjflnecmnjn [2015-08-05] CHR Extension: (Cookies) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\iphcomljdfghbkdcfndaijbokpgddeno [2015-12-17] CHR Extension: (Fast Note) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\jehbplmdjbmcbbdlghcphdhfakcgaiaj [2015-11-22] CHR Extension: (Disconnect) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2016-01-22] CHR Extension: (Extensity) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjmflmamggggndanpgfnpelongoepncg [2016-04-22] CHR Extension: (Deemote) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\lghkcfbokldgebkkkhiflfjcfceabegp [2015-11-09] CHR Extension: (Bing2Google) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgoehlfmhfafaiepckjikpphoklijedl [2016-02-04] CHR Extension: (Project Naptha) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\molncoemjfmpgdkbdlbjmhlcgniigdnf [2015-08-05] CHR Extension: (feedly) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndhinffkekpekljifjkkkkkhopnjodja [2015-08-05] CHR Extension: (Sideplayer™) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\nicokganngdkmjiejngaacdlllkdpikn [2015-10-27] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01] CHR Extension: (Show Apps in new tab) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\nohbdifokmdgjcbbeobglcbaifinhfip [2015-08-25] CHR Extension: (Ochrona hasła) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\noondiphcddnnabmjcihcjfbhfklnnep [2016-04-20] CHR Extension: (Deezer) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\npfkoakaabdallkcdbpkkhfilkkngakh [2015-08-05] CHR Extension: (Inbox by Gmail) - C:\Users\gtx\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkclgpgponpjmpfokoepglboejdobkpl [2015-08-05] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-2592313924-3969202158-3244188748-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [955736 2016-03-12] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [466504 2016-03-12] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [466504 2016-03-12] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1424880 2016-03-12] (Avira Operations GmbH & Co. KG) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [280008 2016-04-25] (Avira Operations GmbH & Co. KG) S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\50.0.2661.22\remoting_host.exe [69016 2016-03-08] (Google Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2911464 2016-04-29] (Microsoft Corporation) R2 ddmgr; C:\Windows\system32\ddmgr.exe [1664672 2016-03-28] (OSBASE) S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [182304 2014-12-01] (EasyAntiCheat Ltd) S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [246328 2016-05-14] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6167096 2016-05-14] (GOG.com) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-02-19] (Intel Corporation) S3 MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2107344 2015-11-05] (MSI) S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4164048 2015-12-08] (MSI) S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2208208 2015-12-08] (MSI) S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4171216 2015-12-08] (MSI) R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2015184 2015-12-08] (MSI) R2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2285520 2015-11-05] (MSI) S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2072528 2015-11-05] (MSI) S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [599504 2015-11-23] (MSI) R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [105296 2015-06-04] (MSI) R2 MSI_LiveUpdate_Service; E:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1779664 2015-10-07] (Micro-Star INT'L CO., LTD.) R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MSI) R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation) R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910640 2015-02-28] (Electronic Arts) S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [202288 2016-04-28] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation) R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [656664 2014-08-19] (Wacom Technology, Corp.) R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [17720 2015-04-02] (Intel(R) Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AcpiCtlDrv; C:\Windows\System32\drivers\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation) S3 ALSysIO; C:\Users\gtx\AppData\Local\Temp\ALSysIO64.sys [26488 2016-05-15] (Arthur Liberman) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [128664 2016-03-12] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [137952 2016-03-12] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-03] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [68936 2016-03-12] (Avira Operations GmbH & Co. KG) R4 ddkmd; C:\Windows\system32\drivers\ddkmd.sys [266088 2016-03-28] (OSBASE) R0 ddkmdldr; C:\Windows\System32\drivers\ddkmdldr.sys [24936 2016-03-28] (OSBASE) S3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-11-12] (LogMeIn Inc.) S3 iDisplayWDDM; C:\Windows\system32\DRIVERS\idisplay.sys [40560 2016-03-22] () R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] () R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-05-27] () S4 IObitUnlocker; e:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36568 2013-09-30] (IObit) R2 iocbios2; C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [28912 2014-06-18] (Intel Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation) R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI) R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI) R3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation) S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [28344 2015-10-10] (Windows (R) Win 7 DDK provider) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation) S3 tpfilter; C:\Windows\System32\drivers\tpfilter.sys [25928 2015-10-30] (TP Microelectronic) S3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [117248 2010-11-21] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) U3 idsvc; Brak ImagePath U3 wpcsvc; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-05-15 17:27 - 2016-05-15 17:28 - 00033511 _____ C:\Users\gtx\Desktop\FRST.txt 2016-05-15 17:26 - 2016-05-15 17:27 - 00000000 ____D C:\FRST 2016-05-15 17:26 - 2016-05-15 17:26 - 02382336 _____ (Farbar) C:\Users\gtx\Desktop\FRST64.exe 2016-05-15 15:12 - 2016-05-15 16:22 - 00008750 _____ C:\Users\gtx\Desktop\GMER.txt 2016-05-15 14:45 - 2016-05-15 14:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wiedźmin 3® - Dziki Gon [GOG.com] 2016-05-15 13:05 - 2016-05-15 13:05 - 00380928 _____ C:\Users\gtx\Desktop\zz081ut2.exe 2016-05-15 12:39 - 2016-05-15 12:39 - 01270466 _____ C:\Users\gtx\Desktop\ProcessExplorer.zip 2016-05-14 18:52 - 2016-05-15 12:55 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-05-14 18:52 - 2016-05-14 18:52 - 00000832 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-05-14 18:52 - 2016-05-14 18:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2016-05-14 18:52 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2016-05-14 18:52 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2016-05-14 18:52 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2016-05-14 18:49 - 2016-05-14 18:51 - 22851472 _____ (Malwarebytes ) C:\Users\gtx\Desktop\mbam-setup-2.2.1.1043.exe 2016-05-14 13:00 - 2016-05-14 13:00 - 00000000 ____D C:\Users\gtx\AppData\Local\Rekenwonder_Software 2016-05-14 12:22 - 2016-05-14 12:22 - 00000000 ____D C:\Users\gtx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Junction Link Magic 2016-05-14 12:17 - 2016-05-14 12:17 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2016-05-14 12:17 - 2016-05-10 01:23 - 00110528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2016-05-14 12:17 - 2016-05-04 04:23 - 00129824 _____ C:\Windows\SysWOW64\vulkan-1.dll 2016-05-14 12:17 - 2016-05-04 04:22 - 00130848 _____ C:\Windows\system32\vulkan-1.dll 2016-05-14 12:17 - 2016-05-04 04:22 - 00045344 _____ C:\Windows\system32\vulkaninfo.exe 2016-05-14 12:17 - 2016-05-04 04:22 - 00040224 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2016-05-14 12:16 - 2016-05-10 06:05 - 42924088 _____ C:\Windows\system32\nvcompiler.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 37567424 _____ C:\Windows\SysWOW64\nvcompiler.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 31625272 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 25374776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 21380696 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 20922648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 17777016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 17370472 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 17370400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 17332320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 10566520 _____ C:\Windows\system32\nvptxJitCompiler.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 08673880 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 02614208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 02258368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436519.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 01573432 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436519.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00960056 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00887744 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00786688 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00753208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00695864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00678704 _____ C:\Windows\system32\nvfatbinaryLoader.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00632152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00601752 _____ C:\Windows\system32\nvmcumd.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00571912 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00545632 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00448824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00425016 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00385080 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00379296 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00377792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00346560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00317472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00153208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00151184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2016-05-14 12:16 - 2016-05-10 06:05 - 00000592 _____ C:\Windows\SysWOW64\nv-vk32.json 2016-05-14 12:16 - 2016-05-10 06:05 - 00000592 _____ C:\Windows\system32\nv-vk64.json 2016-05-11 20:13 - 2016-04-27 16:33 - 01922496 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436510.dll 2016-05-11 20:13 - 2016-04-27 16:33 - 01573432 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436510.dll 2016-05-11 17:55 - 2016-04-14 07:38 - 00113216 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2016-05-11 17:55 - 2016-04-14 07:38 - 00102976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2016-05-11 17:55 - 2016-03-17 14:25 - 01730304 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll 2016-05-11 16:15 - 2016-05-06 06:53 - 00095072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdport.sys 2016-05-11 16:15 - 2016-04-30 08:42 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys 2016-05-11 16:15 - 2016-04-30 08:31 - 03591168 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys 2016-05-11 16:15 - 2016-04-23 08:12 - 01401024 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-05-11 16:15 - 2016-04-23 08:12 - 01184960 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-05-11 16:15 - 2016-04-23 08:12 - 00713920 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-05-11 16:15 - 2016-04-23 08:12 - 00514752 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-05-11 16:15 - 2016-04-23 08:12 - 00294592 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-05-11 16:15 - 2016-04-23 08:12 - 00190144 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe 2016-05-11 16:15 - 2016-04-23 08:12 - 00046784 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-05-11 16:15 - 2016-04-23 07:28 - 01557768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2016-05-11 16:15 - 2016-04-23 07:28 - 01542816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-05-11 16:15 - 2016-04-23 07:24 - 07474528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-05-11 16:15 - 2016-04-23 07:24 - 01997328 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-05-11 16:15 - 2016-04-23 07:24 - 01819208 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-05-11 16:15 - 2016-04-23 07:24 - 00754664 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll 2016-05-11 16:15 - 2016-04-23 07:22 - 01161120 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-05-11 16:15 - 2016-04-23 07:12 - 00925064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2016-05-11 16:15 - 2016-04-23 07:12 - 00413536 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe 2016-05-11 16:15 - 2016-04-23 07:11 - 01092464 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2016-05-11 16:15 - 2016-04-23 07:11 - 00498960 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll 2016-05-11 16:15 - 2016-04-23 07:10 - 03673424 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-05-11 16:15 - 2016-04-23 07:10 - 02919832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-05-11 16:15 - 2016-04-23 07:10 - 00330072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys 2016-05-11 16:15 - 2016-04-23 07:09 - 22561256 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2016-05-11 16:15 - 2016-04-23 07:09 - 21123320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2016-05-11 16:15 - 2016-04-23 07:09 - 05240960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll 2016-05-11 16:15 - 2016-04-23 07:09 - 04074160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2016-05-11 16:15 - 2016-04-23 07:09 - 00569744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll 2016-05-11 16:15 - 2016-04-23 07:09 - 00303216 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe 2016-05-11 16:15 - 2016-04-23 07:09 - 00255168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe 2016-05-11 16:15 - 2016-04-23 07:08 - 06605504 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll 2016-05-11 16:15 - 2016-04-23 07:08 - 04515256 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2016-05-11 16:15 - 2016-04-23 07:08 - 00725776 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll 2016-05-11 16:15 - 2016-04-23 07:07 - 01848072 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2016-05-11 16:15 - 2016-04-23 07:07 - 01536088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2016-05-11 16:15 - 2016-04-23 07:01 - 01996640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2016-05-11 16:15 - 2016-04-23 07:01 - 00650304 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2016-05-11 16:15 - 2016-04-23 07:01 - 00577368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys 2016-05-11 16:15 - 2016-04-23 07:01 - 00522176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2016-05-11 16:15 - 2016-04-23 07:00 - 01776768 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2016-05-11 16:15 - 2016-04-23 07:00 - 01594920 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-05-11 16:15 - 2016-04-23 07:00 - 01399224 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll 2016-05-11 16:15 - 2016-04-23 07:00 - 01372304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2016-05-11 16:15 - 2016-04-23 06:31 - 13018112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2016-05-11 16:15 - 2016-04-23 06:30 - 22379008 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll 2016-05-11 16:15 - 2016-04-23 06:28 - 16984576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2016-05-11 16:15 - 2016-04-23 06:24 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll 2016-05-11 16:15 - 2016-04-23 06:23 - 11545088 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2016-05-11 16:15 - 2016-04-23 06:22 - 09918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2016-05-11 16:15 - 2016-04-23 06:22 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll 2016-05-11 16:15 - 2016-04-23 06:20 - 19344384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-05-11 16:15 - 2016-04-23 06:20 - 18676224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll 2016-05-11 16:15 - 2016-04-23 06:20 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll 2016-05-11 16:15 - 2016-04-23 06:20 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll 2016-05-11 16:15 - 2016-04-23 06:20 - 00484352 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll 2016-05-11 16:15 - 2016-04-23 06:20 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll 2016-05-11 16:15 - 2016-04-23 06:19 - 07977472 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll 2016-05-11 16:15 - 2016-04-23 06:19 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-05-11 16:15 - 2016-04-23 06:19 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll 2016-05-11 16:15 - 2016-04-23 06:19 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll 2016-05-11 16:15 - 2016-04-23 06:18 - 24604672 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-05-11 16:15 - 2016-04-23 06:18 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll 2016-05-11 16:15 - 2016-04-23 06:18 - 00939520 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll 2016-05-11 16:15 - 2016-04-23 06:18 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll 2016-05-11 16:15 - 2016-04-23 06:18 - 00605184 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-05-11 16:15 - 2016-04-23 06:18 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll 2016-05-11 16:15 - 2016-04-23 06:17 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2016-05-11 16:15 - 2016-04-23 06:17 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll 2016-05-11 16:15 - 2016-04-23 06:16 - 01319424 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll 2016-05-11 16:15 - 2016-04-23 06:15 - 00865792 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll 2016-05-11 16:15 - 2016-04-23 06:15 - 00673280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll 2016-05-11 16:15 - 2016-04-23 06:15 - 00348672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll 2016-05-11 16:15 - 2016-04-23 06:14 - 13383168 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-05-11 16:15 - 2016-04-23 06:14 - 00821760 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll 2016-05-11 16:15 - 2016-04-23 06:14 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll 2016-05-11 16:15 - 2016-04-23 06:14 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-05-11 16:15 - 2016-04-23 06:14 - 00354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll 2016-05-11 16:15 - 2016-04-23 06:13 - 07200256 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll 2016-05-11 16:15 - 2016-04-23 06:13 - 06295552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll 2016-05-11 16:15 - 2016-04-23 06:13 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll 2016-05-11 16:15 - 2016-04-23 06:13 - 00434688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll 2016-05-11 16:15 - 2016-04-23 06:10 - 12125696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-05-11 16:15 - 2016-04-23 06:10 - 00639488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll 2016-05-11 16:15 - 2016-04-23 06:09 - 03666432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-05-11 16:15 - 2016-04-23 06:09 - 02582016 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2016-05-11 16:15 - 2016-04-23 06:08 - 05324288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2016-05-11 16:15 - 2016-04-23 06:08 - 02061824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2016-05-11 16:15 - 2016-04-23 06:07 - 05205504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll 2016-05-11 16:15 - 2016-04-23 06:07 - 02598912 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll 2016-05-11 16:15 - 2016-04-23 06:07 - 01500160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-05-11 16:15 - 2016-04-23 06:06 - 06974464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2016-05-11 16:15 - 2016-04-23 06:05 - 05502976 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2016-05-11 16:15 - 2016-04-23 06:05 - 02166784 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll 2016-05-11 16:15 - 2016-04-23 06:05 - 02066432 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll 2016-05-11 16:15 - 2016-04-23 06:05 - 01946112 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2016-05-11 16:15 - 2016-04-23 06:04 - 04759040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2016-05-11 16:15 - 2016-04-23 06:04 - 01731072 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-05-11 16:15 - 2016-04-23 06:03 - 05660160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll 2016-05-11 16:15 - 2016-04-23 06:03 - 04894208 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-05-11 16:15 - 2016-04-23 06:03 - 02280960 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-05-11 16:15 - 2016-04-23 06:03 - 02000896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll 2016-05-11 16:15 - 2016-04-23 06:03 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll 2016-05-11 16:15 - 2016-04-23 06:02 - 07832576 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll 2016-05-11 16:15 - 2016-04-23 06:02 - 02444288 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll 2016-05-11 16:15 - 2016-04-23 06:00 - 01390080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll 2016-05-11 16:15 - 2016-04-23 06:00 - 00984576 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll 2016-05-11 16:15 - 2016-04-23 04:10 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2016-05-11 16:14 - 2016-05-06 06:05 - 00241664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll 2016-05-11 16:14 - 2016-05-06 06:03 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll 2016-05-11 16:14 - 2016-05-06 05:53 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll 2016-05-11 16:14 - 2016-05-06 05:49 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll 2016-05-11 16:14 - 2016-05-06 05:44 - 00582656 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll 2016-05-11 16:14 - 2016-05-06 05:43 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll 2016-05-11 16:14 - 2016-05-06 05:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll 2016-05-11 16:14 - 2016-04-23 08:12 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-05-11 16:14 - 2016-04-23 07:26 - 00707608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-05-11 16:14 - 2016-04-23 07:24 - 00638816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2016-05-11 16:14 - 2016-04-23 07:24 - 00335712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys 2016-05-11 16:14 - 2016-04-23 07:24 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys 2016-05-11 16:14 - 2016-04-23 07:18 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2016-05-11 16:14 - 2016-04-23 07:13 - 00502104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll 2016-05-11 16:14 - 2016-04-23 07:13 - 00306832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll 2016-05-11 16:14 - 2016-04-23 07:13 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll 2016-05-11 16:14 - 2016-04-23 07:12 - 00451928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll 2016-05-11 16:14 - 2016-04-23 07:11 - 00696672 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll 2016-05-11 16:14 - 2016-04-23 07:11 - 00390496 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll 2016-05-11 16:14 - 2016-04-23 07:11 - 00131424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ufxsynopsys.sys 2016-05-11 16:14 - 2016-04-23 07:11 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll 2016-05-11 16:14 - 2016-04-23 07:09 - 00565600 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe 2016-05-11 16:14 - 2016-04-23 07:09 - 00465760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe 2016-05-11 16:14 - 2016-04-23 07:07 - 00204048 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll 2016-05-11 16:14 - 2016-04-23 07:07 - 00183904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll 2016-05-11 16:14 - 2016-04-23 07:06 - 00291360 _____ (Microsoft Corporation) C:\Windows\system32\wininit.exe 2016-05-11 16:14 - 2016-04-23 07:02 - 00188256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll 2016-05-11 16:14 - 2016-04-23 07:01 - 00619296 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2016-05-11 16:14 - 2016-04-23 07:01 - 00513368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll 2016-05-11 16:14 - 2016-04-23 07:01 - 00393568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2016-05-11 16:14 - 2016-04-23 07:01 - 00217440 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll 2016-05-11 16:14 - 2016-04-23 07:00 - 01522152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2016-05-11 16:14 - 2016-04-23 07:00 - 01337240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll 2016-05-11 16:14 - 2016-04-23 07:00 - 00550656 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll 2016-05-11 16:14 - 2016-04-23 07:00 - 00453472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll 2016-05-11 16:14 - 2016-04-23 07:00 - 00058208 _____ (Microsoft Corporation) C:\Windows\system32\dwminit.dll 2016-05-11 16:14 - 2016-04-23 06:56 - 00534872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2016-05-11 16:14 - 2016-04-23 06:39 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\MapsCSP.dll 2016-05-11 16:14 - 2016-04-23 06:35 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\MosHostClient.dll 2016-05-11 16:14 - 2016-04-23 06:34 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys 2016-05-11 16:14 - 2016-04-23 06:34 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\hmkd.dll 2016-05-11 16:14 - 2016-04-23 06:34 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2016-05-11 16:14 - 2016-04-23 06:33 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll 2016-05-11 16:14 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll 2016-05-11 16:14 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UcmCx.sys 2016-05-11 16:14 - 2016-04-23 06:33 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\ByteCodeGenerator.exe 2016-05-11 16:14 - 2016-04-23 06:32 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\wificonnapi.dll 2016-05-11 16:14 - 2016-04-23 06:32 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll 2016-05-11 16:14 - 2016-04-23 06:32 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mapsupdatetask.dll 2016-05-11 16:14 - 2016-04-23 06:31 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\MosStorage.dll 2016-05-11 16:14 - 2016-04-23 06:30 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvc.dll 2016-05-11 16:14 - 2016-04-23 06:30 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosHostClient.dll 2016-05-11 16:14 - 2016-04-23 06:29 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll 2016-05-11 16:14 - 2016-04-23 06:29 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll 2016-05-11 16:14 - 2016-04-23 06:29 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filecrypt.sys 2016-05-11 16:14 - 2016-04-23 06:29 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe 2016-05-11 16:14 - 2016-04-23 06:29 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll 2016-05-11 16:14 - 2016-04-23 06:29 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hmkd.dll 2016-05-11 16:14 - 2016-04-23 06:29 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ByteCodeGenerator.exe 2016-05-11 16:14 - 2016-04-23 06:29 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2016-05-11 16:14 - 2016-04-23 06:28 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\CloudDomainJoinDataModelServer.dll 2016-05-11 16:14 - 2016-04-23 06:28 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll 2016-05-11 16:14 - 2016-04-23 06:28 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll 2016-05-11 16:14 - 2016-04-23 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll 2016-05-11 16:14 - 2016-04-23 06:28 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll 2016-05-11 16:14 - 2016-04-23 06:27 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2016-05-11 16:14 - 2016-04-23 06:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll 2016-05-11 16:14 - 2016-04-23 06:26 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll 2016-05-11 16:14 - 2016-04-23 06:26 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll 2016-05-11 16:14 - 2016-04-23 06:26 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosStorage.dll 2016-05-11 16:14 - 2016-04-23 06:25 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\PhoneProviders.dll 2016-05-11 16:14 - 2016-04-23 06:25 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll 2016-05-11 16:14 - 2016-04-23 06:25 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll 2016-05-11 16:14 - 2016-04-23 06:25 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll 2016-05-11 16:14 - 2016-04-23 06:25 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapsBtSvc.dll 2016-05-11 16:14 - 2016-04-23 06:24 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll 2016-05-11 16:14 - 2016-04-23 06:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll 2016-05-11 16:14 - 2016-04-23 06:24 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll 2016-05-11 16:14 - 2016-04-23 06:24 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll 2016-05-11 16:14 - 2016-04-23 06:24 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll 2016-05-11 16:14 - 2016-04-23 06:24 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEDataLayerHelpers.dll 2016-05-11 16:14 - 2016-04-23 06:23 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe 2016-05-11 16:14 - 2016-04-23 06:23 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll 2016-05-11 16:14 - 2016-04-23 06:23 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\BrowserSettingSync.dll 2016-05-11 16:14 - 2016-04-23 06:23 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll 2016-05-11 16:14 - 2016-04-23 06:22 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll 2016-05-11 16:14 - 2016-04-23 06:21 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-05-11 16:14 - 2016-04-23 06:21 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll 2016-05-11 16:14 - 2016-04-23 06:20 - 00307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll 2016-05-11 16:14 - 2016-04-23 06:20 - 00137728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll 2016-05-11 16:14 - 2016-04-23 06:19 - 01056256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll 2016-05-11 16:14 - 2016-04-23 06:19 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll 2016-05-11 16:14 - 2016-04-23 06:19 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BrowserSettingSync.dll 2016-05-11 16:14 - 2016-04-23 06:18 - 00988672 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll 2016-05-11 16:14 - 2016-04-23 06:18 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-05-11 16:14 - 2016-04-23 06:18 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2016-05-11 16:14 - 2016-04-23 06:18 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll 2016-05-11 16:14 - 2016-04-23 06:18 - 00436736 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll 2016-05-11 16:14 - 2016-04-23 06:18 - 00349696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll 2016-05-11 16:14 - 2016-04-23 06:18 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll 2016-05-11 16:14 - 2016-04-23 06:17 - 00388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-05-11 16:14 - 2016-04-23 06:17 - 00337920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll 2016-05-11 16:14 - 2016-04-23 06:16 - 00848896 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-05-11 16:14 - 2016-04-23 06:16 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll 2016-05-11 16:14 - 2016-04-23 06:15 - 01073152 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll 2016-05-11 16:14 - 2016-04-23 06:15 - 00792064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-05-11 16:14 - 2016-04-23 06:15 - 00784896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll 2016-05-11 16:14 - 2016-04-23 06:15 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll 2016-05-11 16:14 - 2016-04-23 06:14 - 00870912 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll 2016-05-11 16:14 - 2016-04-23 06:14 - 00647680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-05-11 16:14 - 2016-04-23 06:14 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll 2016-05-11 16:14 - 2016-04-23 06:13 - 00705536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2016-05-11 16:14 - 2016-04-23 06:12 - 00667648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll 2016-05-11 16:14 - 2016-04-23 06:07 - 00848896 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll 2016-05-11 16:14 - 2016-04-23 06:05 - 01626624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2016-05-11 16:14 - 2016-04-23 06:05 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll 2016-05-11 16:14 - 2016-04-23 06:05 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll 2016-05-11 16:14 - 2016-04-23 06:05 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll 2016-05-11 16:14 - 2016-04-23 06:03 - 02193408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2016-05-11 16:14 - 2016-04-23 06:03 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll 2016-05-11 16:14 - 2016-04-23 06:01 - 04775424 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2016-05-11 16:14 - 2016-04-23 05:45 - 00461824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll 2016-05-11 16:14 - 2016-04-23 04:10 - 00002186 _____ C:\Windows\system32\AppxProvisioning.xml 2016-05-11 16:14 - 2016-04-19 00:30 - 00002186 _____ C:\Windows\SysWOW64\AppxProvisioning.xml 2016-05-10 21:40 - 2016-05-10 21:40 - 00762815 _____ C:\Users\gtx\Desktop\Obrona Cywilna.pptx 2016-05-06 19:56 - 2016-05-06 19:56 - 00000696 _____ C:\Users\gtx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FTB Launcher.lnk 2016-05-06 18:03 - 2016-05-06 18:04 - 00000000 ____D C:\FTB 2016-05-04 22:11 - 2016-05-04 22:11 - 00000000 ____D C:\Users\gtx\AppData\Local\Skyrim 2016-05-04 17:31 - 2016-05-04 18:00 - 00051431 _____ C:\Users\gtx\Desktop\Gracjan.pptx 2016-05-04 04:23 - 2016-05-04 04:23 - 00129824 _____ C:\Windows\SysWOW64\vulkan-1-1-0-11-1.dll 2016-05-04 04:22 - 2016-05-04 04:22 - 00130848 _____ C:\Windows\system32\vulkan-1-1-0-11-1.dll 2016-05-04 04:22 - 2016-05-04 04:22 - 00045344 _____ C:\Windows\system32\vulkaninfo-1-1-0-11-1.exe 2016-05-04 04:22 - 2016-05-04 04:22 - 00040224 _____ C:\Windows\SysWOW64\vulkaninfo-1-1-0-11-1.exe 2016-05-01 13:26 - 2016-05-01 13:27 - 10952192 _____ C:\Users\gtx\Desktop\Prezentacja powtórzeniowa sprawdzian II sem. II.ppt 2016-04-30 21:39 - 2016-04-30 21:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2016-04-30 12:51 - 2016-04-30 12:51 - 00000165 ____H C:\Users\gtx\Desktop\~$Podlasie.pptx 2016-04-30 12:24 - 2016-04-30 12:24 - 00000000 ____D C:\Users\gtx\AppData\Local\Splashtop 2016-04-30 12:24 - 2016-04-30 12:24 - 00000000 ____D C:\Program Files\OSBASE 2016-04-30 12:06 - 2016-04-30 12:06 - 00000000 ____D C:\Program Files\Bonjour 2016-04-30 12:06 - 2016-04-30 12:06 - 00000000 ____D C:\Program Files (x86)\Bonjour 2016-04-30 12:06 - 2016-03-22 17:26 - 00040560 _____ C:\Windows\system32\Drivers\idisplay.sys 2016-04-26 18:08 - 2016-03-22 06:08 - 01922496 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436472.dll 2016-04-26 18:08 - 2016-03-22 06:08 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436472.dll 2016-04-24 17:05 - 2016-04-29 17:41 - 00000000 ____D C:\Users\gtx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Franz 2016-04-24 17:05 - 2016-04-29 17:41 - 00000000 ____D C:\Users\gtx\AppData\Local\Franz 2016-04-24 17:05 - 2016-04-24 17:42 - 00000000 ____D C:\Users\gtx\AppData\Roaming\Franz 2016-04-24 17:04 - 2016-04-24 17:05 - 00000000 ____D C:\Users\gtx\AppData\Local\SquirrelTemp 2016-04-23 13:52 - 2016-04-23 13:54 - 00225594 _____ C:\Windows\ntbtlog.txt 2016-04-23 13:52 - 2016-04-23 13:52 - 00000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job 2016-04-23 13:31 - 2016-04-23 13:31 - 00000000 ___HD C:\VirtualStore 2016-04-21 17:34 - 2016-04-21 17:34 - 00000000 ___HD C:\$Windows.~WS 2016-04-21 10:46 - 2016-04-21 10:46 - 00000000 ____D C:\Users\gtx\AppData\LocalLow\Flox Studios 2016-04-20 15:41 - 2016-04-20 15:41 - 00003196 _____ C:\Windows\System32\Tasks\{7329FD3A-203E-4964-AED1-C849C00224CA} 2016-04-19 17:37 - 2016-04-19 17:37 - 00000000 ___HD C:\OneDriveTemp 2016-04-18 20:32 - 2016-04-18 20:32 - 00000000 ____D C:\Users\gtx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-05-15 16:38 - 2015-08-28 10:01 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0e167bb688d3e.job 2016-05-15 16:38 - 2014-09-24 18:55 - 00000000 ____D C:\Users\gtx\AppData\Roaming\Dexpot 2016-05-15 16:37 - 2015-12-15 19:24 - 00000278 _____ C:\Windows\Tasks\RtlNetworkGenieVistaStart.job 2016-05-15 16:35 - 2016-02-04 16:17 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-05-15 16:35 - 2016-02-04 16:01 - 00000000 ____D C:\ProgramData\NVIDIA 2016-05-15 16:27 - 2016-02-04 16:04 - 00000000 ____D C:\Users\gtx 2016-05-15 16:17 - 2015-08-28 10:01 - 00001074 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0e167bc001486.job 2016-05-15 16:02 - 2015-08-28 17:33 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2592313924-3969202158-3244188748-1001UA1d0e1a6d8f54050.job 2016-05-15 16:02 - 2015-08-28 17:33 - 00001016 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2592313924-3969202158-3244188748-1001Core1d0e1a6d88dca6c.job 2016-05-15 12:58 - 2014-09-24 19:26 - 00000000 ____D C:\Program Files (x86)\Steam 2016-05-15 12:38 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\AppReadiness 2016-05-15 12:32 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps 2016-05-15 12:28 - 2016-02-04 16:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2016-05-15 12:28 - 2014-09-22 10:15 - 00000000 ____D C:\ProgramData\Package Cache 2016-05-15 12:27 - 2016-02-04 16:21 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-05-15 12:26 - 2015-10-30 09:21 - 00000000 ____D C:\Windows\INF 2016-05-15 12:23 - 2015-10-30 08:28 - 00524288 ___SH C:\Windows\system32\config\BBI 2016-05-15 12:22 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\oobe 2016-05-15 12:22 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\appraiser 2016-05-15 12:22 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\Provisioning 2016-05-15 12:21 - 2015-10-30 21:23 - 00000000 ____D C:\Program Files\Windows Journal 2016-05-15 12:21 - 2015-10-30 09:24 - 00015703 _____ C:\Windows\system32\OEMDefaultAssociations.xml 2016-05-15 12:21 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\bcastdvr 2016-05-14 18:59 - 2015-10-30 09:11 - 00000000 ____D C:\Windows\CbsTemp 2016-05-14 18:56 - 2014-09-22 11:14 - 00000000 ____D C:\Windows\system32\MRT 2016-05-14 18:39 - 2014-09-22 11:14 - 139319312 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-05-14 18:38 - 2016-02-04 16:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-05-14 18:34 - 2015-08-10 21:38 - 00000000 ____D C:\Users\gtx\Documents\The Witcher 3 2016-05-14 18:08 - 2015-08-10 21:15 - 00000000 ____D C:\Program Files (x86)\GalaxyClient 2016-05-14 17:25 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2016-05-14 16:42 - 2014-10-09 11:14 - 00000000 ____D C:\Users\gtx\AppData\Local\Microsoft Help 2016-05-14 16:30 - 2016-02-04 16:21 - 00000000 ____D C:\Users\gtx\AppData\Local\Packages 2016-05-14 12:18 - 2016-02-02 17:13 - 00000000 ____D C:\temp 2016-05-14 12:18 - 2014-10-30 18:42 - 00002278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-05-14 12:18 - 2014-09-22 10:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-05-13 06:58 - 2015-08-29 01:31 - 12643392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2016-05-11 21:57 - 2015-10-30 09:26 - 00829944 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-05-11 21:57 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-05-11 16:12 - 2015-08-28 10:01 - 00004162 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0e167bc001486 2016-05-11 16:12 - 2015-08-28 10:01 - 00003930 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0e167bb688d3e 2016-05-11 15:57 - 2015-08-28 17:33 - 00004216 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2592313924-3969202158-3244188748-1001UA1d0e1a6d8f54050 2016-05-11 15:57 - 2015-08-28 17:33 - 00003840 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2592313924-3969202158-3244188748-1001Core1d0e1a6d88dca6c 2016-05-10 06:05 - 2015-08-29 01:31 - 20078656 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2016-05-10 06:05 - 2015-08-29 01:31 - 14227696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2016-05-10 06:05 - 2015-08-29 01:31 - 03685280 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2016-05-10 06:05 - 2015-08-29 01:31 - 03262968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2016-05-10 06:05 - 2015-08-07 09:10 - 00038050 _____ C:\Windows\system32\nvinfo.pb 2016-05-10 01:35 - 2016-02-04 16:01 - 06369728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2016-05-10 01:35 - 2016-02-04 16:01 - 02993088 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2016-05-10 01:35 - 2016-02-04 16:01 - 02563128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2016-05-10 01:35 - 2016-02-04 16:01 - 01201600 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2016-05-10 01:35 - 2016-02-04 16:01 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2016-05-10 01:35 - 2016-02-04 16:01 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2016-05-10 01:35 - 2015-12-27 21:37 - 00530880 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2016-05-10 01:35 - 2015-12-27 21:37 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2016-05-08 20:50 - 2016-02-04 16:03 - 02137386 _____ C:\Windows\system32\PerfStringBackup.INI 2016-05-08 20:50 - 2015-10-30 21:19 - 00924922 _____ C:\Windows\system32\perfh015.dat 2016-05-08 20:50 - 2015-10-30 21:19 - 00205030 _____ C:\Windows\system32\perfc015.dat 2016-05-08 12:05 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-05-08 12:03 - 2015-11-29 19:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-05-07 23:24 - 2016-02-04 16:01 - 06423191 _____ C:\Windows\system32\nvcoproc.bin 2016-05-07 18:04 - 2016-01-08 18:30 - 00000000 ___RD C:\Users\gtx\Downloads\MM 2016-05-06 19:58 - 2014-10-06 09:55 - 00000000 ____D C:\Users\gtx\AppData\Local\ftblauncher 2016-05-06 18:04 - 2014-10-06 09:55 - 00000000 ____D C:\Users\gtx\AppData\Roaming\ftblauncher 2016-05-02 07:39 - 2014-09-22 10:47 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2016-05-02 07:39 - 2014-09-22 10:31 - 01377800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2016-05-02 07:38 - 2015-12-27 20:57 - 00112032 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2016-05-02 07:38 - 2014-09-22 10:47 - 01756608 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2016-05-02 07:38 - 2014-09-22 10:31 - 01767944 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2016-04-30 23:06 - 2016-02-04 17:06 - 00000000 ____D C:\Users\DefaultAppPool 2016-04-30 23:06 - 2016-02-04 16:04 - 00000000 ____D C:\Users\Ola 2016-04-30 12:06 - 2015-01-25 12:30 - 00000000 ____D C:\Users\gtx\AppData\Roaming\SHAPE 2016-04-30 11:40 - 2015-05-20 15:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVS 2016-04-30 11:39 - 2014-09-27 19:39 - 00000000 ____D C:\Users\gtx\AppData\Local\Ubisoft Game Launcher 2016-04-30 11:39 - 2014-09-22 10:15 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-04-30 11:37 - 2014-09-25 19:34 - 00000000 ____D C:\ProgramData\Electronic Arts 2016-04-30 11:21 - 2014-09-22 10:23 - 00000000 ____D C:\Users\gtx\AppData\Local\Google 2016-04-30 11:21 - 2014-09-22 10:23 - 00000000 ____D C:\Program Files (x86)\Google 2016-04-30 11:15 - 2015-11-15 17:54 - 00000000 ____D C:\ProgramData\Battle.net 2016-04-30 11:13 - 2015-01-30 16:14 - 00000000 ____D C:\Users\gtx\AppData\Roaming\uTorrent 2016-04-29 18:41 - 2015-05-25 15:48 - 00000000 ____D C:\Users\gtx\AppData\Local\CrashDumps 2016-04-26 18:09 - 2016-02-04 16:01 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-04-26 17:46 - 2016-02-04 16:25 - 00002443 _____ C:\Users\gtx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-04-26 17:46 - 2015-11-29 20:02 - 00000000 ___RD C:\Users\gtx\OneDrive 2016-04-25 16:46 - 2016-02-04 17:06 - 00000000 ____D C:\Users\Ola\AppData\Local\Packages 2016-04-23 12:35 - 2014-12-23 19:32 - 00007605 _____ C:\Users\gtx\AppData\Local\resmon.resmoncfg 2016-04-21 20:05 - 2016-02-04 15:57 - 00000000 ___DC C:\Windows\Panther 2016-04-21 16:50 - 2015-08-04 20:32 - 00035477 _____ C:\Windows\diagwrn.xml 2016-04-21 16:50 - 2015-08-04 20:32 - 00033505 _____ C:\Windows\diagerr.xml 2016-04-21 10:43 - 2014-09-22 10:31 - 00000000 ____D C:\Users\gtx\AppData\Local\NVIDIA 2016-04-20 15:41 - 2016-02-09 17:42 - 00000000 ____D C:\Program Files (x86)\OnePlus USB Drivers 2016-04-20 15:41 - 2016-02-09 17:42 - 00000000 ____D C:\Android 2016-04-19 17:34 - 2016-02-04 15:58 - 00339800 _____ C:\Windows\system32\FNTCACHE.DAT 2016-04-19 15:57 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\WinBioPlugIns 2016-04-19 15:57 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\PolicyDefinitions ==================== Pliki w katalogu głównym wybranych folderów ======= 2015-07-21 13:21 - 2015-07-21 13:21 - 1415680 _____ (wj32) C:\Program Files\0P4TRFD8.exe 2015-07-23 12:08 - 2015-07-23 12:08 - 1415680 _____ (wj32) C:\Program Files\3MYHTF7T.exe 2015-06-30 08:36 - 2015-06-30 08:36 - 1415680 _____ (wj32) C:\Program Files\3V7TCODB.exe 2015-07-21 13:21 - 2015-07-21 13:21 - 1415680 _____ (wj32) C:\Program Files\4J8H9IGB.exe 2015-07-19 12:09 - 2015-07-19 12:09 - 1415680 _____ (wj32) C:\Program Files\4T5U975U.exe 2015-07-20 12:25 - 2015-07-20 12:25 - 1415680 _____ (wj32) C:\Program Files\5132083B.exe 2015-07-19 12:09 - 2015-07-19 12:09 - 1415680 _____ (wj32) C:\Program Files\543210F1.exe 2015-07-23 09:32 - 2015-07-23 09:32 - 1415680 _____ (wj32) C:\Program Files\6L7T564P.exe 2015-07-21 13:20 - 2015-07-21 13:20 - 1415680 _____ (wj32) C:\Program Files\6V7TI31Z.exe 2015-07-22 12:32 - 2015-07-22 12:32 - 1415680 _____ (wj32) C:\Program Files\7Z8UJ753.exe 2015-07-19 12:09 - 2015-07-19 12:09 - 1415680 _____ (wj32) C:\Program Files\87TSRJ80.exe 2015-07-19 12:10 - 2015-07-19 12:10 - 1415680 _____ (wj32) C:\Program Files\8ZA9J4KC.exe 2015-07-26 13:39 - 2015-07-26 13:39 - 1415680 _____ (wj32) C:\Program Files\91G53ODB.exe 2015-07-13 08:48 - 2015-07-13 08:48 - 1415680 _____ (wj32) C:\Program Files\9JYHTOG2.exe 2015-07-19 12:09 - 2015-07-19 12:09 - 1415680 _____ (wj32) C:\Program Files\AMB9XVTO.exe 2015-07-19 12:10 - 2015-07-19 12:10 - 1415680 _____ (wj32) C:\Program Files\APBN9OHX.exe 2015-06-29 15:20 - 2015-06-29 15:20 - 1415680 _____ (wj32) C:\Program Files\B3F7STRF.exe 2015-07-14 16:10 - 2015-07-14 16:10 - 1415680 _____ (wj32) C:\Program Files\BA5DBJEM.exe 2015-07-02 09:37 - 2015-07-02 09:37 - 1415680 _____ (wj32) C:\Program Files\BDFHDF1A.exe 2015-07-25 08:48 - 2015-07-25 08:48 - 1415680 _____ (wj32) C:\Program Files\BGLIVM8S.exe 2015-07-17 09:20 - 2015-07-17 09:20 - 1415680 _____ (wj32) C:\Program Files\DC542A50.exe 2015-07-21 13:21 - 2015-07-21 13:21 - 1415680 _____ (wj32) C:\Program Files\DNXE59N9.exe 2015-07-02 09:37 - 2015-07-02 09:37 - 1415680 _____ (wj32) C:\Program Files\DSH20YWH.exe 2015-07-23 12:09 - 2015-07-23 12:09 - 1415680 _____ (wj32) C:\Program Files\DZBR7J8U.exe 2015-07-21 13:21 - 2015-07-21 13:21 - 1415680 _____ (wj32) C:\Program Files\ECMWOKHD.exe 2015-07-25 08:47 - 2015-07-25 08:47 - 1415680 _____ (wj32) C:\Program Files\EGIHFNLT.exe 2015-07-14 16:10 - 2015-07-14 16:10 - 1415680 _____ (wj32) C:\Program Files\EK6IJHF0.exe 2015-07-14 16:10 - 2015-07-14 16:10 - 1415680 _____ (wj32) C:\Program Files\ET9M1KC4.exe 2015-07-23 12:09 - 2015-07-23 12:09 - 1415680 _____ (wj32) C:\Program Files\F7HR1XUK.exe 2015-07-19 12:10 - 2015-07-19 12:10 - 1415680 _____ (wj32) C:\Program Files\F7JVBN7V.exe 2015-07-23 12:09 - 2015-07-23 12:09 - 1415680 _____ (wj32) C:\Program Files\GR1BLVZL.exe 2015-07-02 09:37 - 2015-07-02 09:37 - 1415680 _____ (wj32) C:\Program Files\J5O0YWKF.exe 2015-07-24 16:01 - 2015-07-24 16:01 - 1415680 _____ (wj32) C:\Program Files\K5U6VGE9.exe 2015-07-23 12:09 - 2015-07-23 12:09 - 1415680 _____ (wj32) C:\Program Files\KC9ZPOGU.exe 2015-06-30 08:36 - 2015-06-30 08:36 - 1415680 _____ (wj32) C:\Program Files\KWLXJYKI.exe 2015-07-25 08:47 - 2015-07-25 08:47 - 1415680 _____ (wj32) C:\Program Files\LXP1T53S.exe 2015-07-25 08:47 - 2015-07-25 08:47 - 1415680 _____ (wj32) C:\Program Files\NM54C7ID.exe 2015-06-29 15:20 - 2015-06-29 15:20 - 1415680 _____ (wj32) C:\Program Files\O0P1KL7Z.exe 2015-07-25 08:48 - 2015-07-25 08:48 - 1415680 _____ (wj32) C:\Program Files\R3V4T561.exe 2015-07-23 12:09 - 2015-07-23 12:09 - 1415680 _____ (wj32) C:\Program Files\RAMZI7ZL.exe 2015-07-23 12:08 - 2015-07-23 12:08 - 1415680 _____ (wj32) C:\Program Files\SHTIXSKO.exe 2015-06-29 15:20 - 2015-06-29 15:20 - 1415680 _____ (wj32) C:\Program Files\TLUD5KOM.exe 2015-07-19 12:09 - 2015-07-19 12:09 - 1415680 _____ (wj32) C:\Program Files\U6YAZB61.exe 2015-07-23 12:08 - 2015-07-23 12:08 - 1415680 _____ (wj32) C:\Program Files\V7TI312U.exe 2015-06-30 08:36 - 2015-06-30 08:36 - 1415680 _____ (wj32) C:\Program Files\WO0MVWRM.exe 2015-07-19 12:10 - 2015-07-19 12:10 - 1415680 _____ (wj32) C:\Program Files\WPG90AVZ.exe 2015-07-21 13:21 - 2015-07-21 13:21 - 1415680 _____ (wj32) C:\Program Files\Z90T3DZL.exe 2015-07-25 08:48 - 2015-07-25 08:48 - 1415680 _____ (wj32) C:\Program Files\ZLUJ7531.exe 2014-10-06 09:03 - 2014-10-06 09:03 - 181974298 _____ () C:\Users\gtx\AppData\Local\ACCCx2_8_0_447.zip.aamdownload 2014-10-06 09:03 - 2014-10-06 09:03 - 0002174 _____ () C:\Users\gtx\AppData\Local\ACCCx2_8_0_447.zip.aamdownload.aamd 2016-02-28 18:20 - 2016-02-28 18:20 - 0001496 _____ () C:\Users\gtx\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs 2015-08-03 22:41 - 2015-08-03 22:41 - 0001667 _____ () C:\Users\gtx\AppData\Local\recently-used.xbel 2014-12-23 19:32 - 2016-04-23 12:35 - 0007605 _____ () C:\Users\gtx\AppData\Local\resmon.resmoncfg Niektóre pliki w TEMP: ==================== C:\Users\gtx\AppData\Local\Temp\avgnt.exe C:\Users\gtx\AppData\Local\Temp\nvSCPAPI.dll C:\Users\gtx\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\gtx\AppData\Local\Temp\nvStInst.exe C:\Users\Ola\AppData\Local\Temp\avgnt.exe ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2016-05-14 18:28 ==================== Koniec FRST.txt ============================