Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2016 Ran by Wonszyna (administrator) on WONSZPUTER (10-09-2016 14:46:35) Running from C:\Users\Wonszyna\Downloads Loaded Profiles: Wonszyna & UpdatusUser (Available Profiles: Wonszyna & UpdatusUser) Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 8 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Hi-Rez Studios) D:\Hi-Rez Studios\HiPatchService.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe () C:\Windows\System32\PnkBstrA.exe (Atheros) C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\Ath_WlanAgent.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe (Google Inc.) C:\Users\Wonszyna\AppData\Local\Programs\Google\MusicManager\MusicManager.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16686600 2016-08-14] (Realtek Semiconductor) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3350232 2016-08-14] (ELAN Microelectronics Corp.) HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1161240 2016-05-22] (Highresolution Enterprises) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291280 2016-03-17] (Intel Corporation) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9107104 2016-09-09] (AVAST Software) Winlogon\Notify\igfxcui: igfxdev.dll [X] HKU\S-1-5-21-2833092497-400483568-1915059554-1000\...\Run: [Google Update] => C:\Users\Wonszyna\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-08-07] (Google Inc.) HKU\S-1-5-21-2833092497-400483568-1915059554-1000\...\Run: [MusicManager] => C:\Users\Wonszyna\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [7643136 2015-11-17] (Google Inc.) HKU\S-1-5-21-2833092497-400483568-1915059554-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8894680 2016-08-05] (Piriform Ltd) HKU\S-1-5-21-2833092497-400483568-1915059554-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0xDD000000 HKU\S-1-5-21-2833092497-400483568-1915059554-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-2833092497-400483568-1915059554-1000\...\MountPoints2: {e38a3c8b-5266-11e6-8728-240a641ef6e8} - F:\autorun.exe AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [177952 2016-08-14] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [155768 2016-08-14] (NVIDIA Corporation) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-09] (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{4949BDE5-A68E-482F-A234-CDC5190583A0}: [DhcpNameServer] 7.254.254.254 Tcpip\..\Interfaces\{9F1FAF11-CCF8-4768-A5B5-61FFDD8E61D7}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2011-02-12] (Microsoft Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-09-09] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2011-02-12] (Microsoft Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-09-09] (AVAST Software) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Wonszyna\AppData\Roaming\Mozilla\Firefox\Profiles\m42yszml.default FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin HKU\S-1-5-21-2833092497-400483568-1915059554-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Wonszyna\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-06] (Google Inc.) FF Plugin HKU\S-1-5-21-2833092497-400483568-1915059554-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Wonszyna\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-06] (Google Inc.) FF Extension: (Firefox Hotfix) - C:\Users\Wonszyna\AppData\Roaming\Mozilla\Firefox\Profiles\m42yszml.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-09] FF Extension: (Adblock Plus) - C:\Users\Wonszyna\AppData\Roaming\Mozilla\Firefox\Profiles\m42yszml.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-06-14] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-09] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-09] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF Chrome: ======= CHR HomePage: Default -> hxxp://www.trovi.com/?gd=&ctid=CT3321459&octid=EB_ORIGINAL_CTID&ISID=M2C96444E-AD20-422D-8709-14532796F8E2&SearchSource=55&CUI=&UM=8&UP=SP0524F156-ACF4-4006-A016-DCC8B0DBA39D&SSPV= CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\Wonszyna\AppData\Local\Google\Chrome\User Data\Default ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-09] (AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1860616 2016-05-17] () S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [245544 2016-04-26] (EasyAntiCheat Ltd) U2 HiPatchService; d:\Hi-Rez Studios\HiPatchService.exe [9728 2016-08-15] (Hi-Rez Studios) [File not signed] R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2016-08-14] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4362656 2016-02-24] (INCA Internet Co., Ltd.) [File not signed] R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-06-14] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-06-14] () S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [872432 2016-06-23] (Tunngle.net GmbH) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation) R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\Ath_WlanAgent.exe [77824 2012-06-19] (Atheros) [File not signed] ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-09] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-09] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-09] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-09] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-09] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969560 2016-09-09] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513496 2016-09-09] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-09] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-09-09] (AVAST Software) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2016-08-14] (Intel Corporation) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-09-10] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2016-08-14] (Intel Corporation) S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-06-03] (NVIDIA Corporation) R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [47736 2015-12-21] (Tunngle.net) S3 cpuz139; \??\C:\Users\Wonszyna\AppData\Local\Temp\cpuz139\cpuz139_x64.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-09-10 14:46 - 2016-09-10 14:46 - 00013079 _____ C:\Users\Wonszyna\Downloads\FRST.txt 2016-09-10 14:46 - 2016-09-10 14:46 - 00000000 ____D C:\FRST 2016-09-10 14:45 - 2016-09-10 14:45 - 02397696 _____ (Farbar) C:\Users\Wonszyna\Downloads\FRST64.exe 2016-09-10 14:40 - 2016-09-10 14:40 - 00001179 _____ C:\Users\Wonszyna\Desktop\malwbytes.txt 2016-09-10 14:24 - 2016-09-10 14:24 - 00000440 _____ C:\DelFix.txt 2016-09-10 14:24 - 2016-09-10 14:24 - 00000000 ____D C:\Windows\ERUNT 2016-09-10 12:34 - 2016-09-10 12:35 - 00000000 ____D C:\Users\Wonszyna\Downloads\Plejlista 2016-09-10 12:23 - 2016-09-10 12:23 - 00002800 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2016-09-10 12:23 - 2016-09-10 12:23 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk 2016-09-10 12:23 - 2016-09-10 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2016-09-10 12:23 - 2016-09-10 12:23 - 00000000 ____D C:\Program Files\CCleaner 2016-09-10 12:21 - 2016-09-10 12:22 - 08227032 _____ (Piriform Ltd) C:\Users\Wonszyna\Downloads\ccsetup521.exe 2016-09-10 11:54 - 2016-09-10 14:38 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-09-10 11:53 - 2016-09-10 11:53 - 00001102 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-09-10 11:53 - 2016-09-10 11:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2016-09-10 11:53 - 2016-09-10 11:53 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-09-10 11:53 - 2016-09-10 11:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2016-09-10 11:53 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2016-09-10 11:53 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2016-09-10 11:53 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2016-09-10 11:20 - 2016-09-10 11:20 - 22851472 _____ (Malwarebytes ) C:\Users\Wonszyna\Downloads\mbam-setup-2.2.1.1043.exe 2016-09-09 13:43 - 2016-09-09 13:42 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2016-09-09 13:42 - 2016-09-09 13:42 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr 2016-09-08 19:41 - 2016-09-08 19:41 - 00000000 ____D C:\Program Files (x86)\Java 2016-09-08 17:45 - 2016-09-08 17:50 - 00000000 ____D C:\Users\Wonszyna\AppData\Local\Adobe 2016-09-08 16:01 - 2016-09-09 13:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-09-08 16:01 - 2016-09-08 19:33 - 00000000 ____D C:\Program Files\Mozilla Firefox 2016-09-08 16:01 - 2016-09-08 16:01 - 00000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2016-09-08 11:05 - 2016-09-08 11:05 - 00264884 _____ C:\Users\Wonszyna\Desktop\Krzysztof WężykCV.pdf 2016-09-07 14:13 - 2016-09-07 15:54 - 00001005 _____ C:\Users\Wonszyna\Documents\mbank.txt 2016-09-06 18:11 - 2016-09-06 18:11 - 00000000 ____D C:\Users\Wonszyna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Music Manager 2016-09-06 18:10 - 2016-09-10 14:15 - 00000920 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2833092497-400483568-1915059554-1000UA.job 2016-09-06 18:10 - 2016-09-09 18:15 - 00000868 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2833092497-400483568-1915059554-1000Core.job 2016-09-06 18:10 - 2016-09-06 18:10 - 00003896 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2833092497-400483568-1915059554-1000UA 2016-09-06 18:10 - 2016-09-06 18:10 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2833092497-400483568-1915059554-1000Core 2016-08-30 23:22 - 2016-08-30 23:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Highresolution Enterprises 2016-08-26 11:19 - 2016-08-26 11:19 - 00000700 _____ C:\Users\Wonszyna\Desktop\Play_L2Classic.club - Shortcut.lnk 2016-08-25 08:16 - 2016-09-10 00:47 - 00000000 ____D C:\Users\Wonszyna\AppData\Roaming\CUE Tools 2016-08-25 08:16 - 2016-08-25 08:16 - 00000000 ____D C:\Users\Wonszyna\AppData\Roaming\CUERipper 2016-08-25 00:25 - 2016-09-09 12:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-08-24 22:56 - 2016-09-08 19:13 - 00000000 ____D C:\Users\Wonszyna\AppData\Roaming\Opera Software 2016-08-24 22:56 - 2016-09-08 19:13 - 00000000 ____D C:\Users\Wonszyna\AppData\Local\Opera Software 2016-08-24 22:46 - 2016-08-28 10:43 - 00000000 ___SD C:\Users\Wonszyna\AppData\LocalLow\Temp 2016-08-24 19:52 - 2016-08-24 21:38 - 00000000 ____D C:\Users\Wonszyna\AppData\Local\QupZilla 2016-08-24 15:29 - 2016-08-24 15:29 - 00000000 ____D C:\Users\Wonszyna\AppData\Roaming\Duelyst 2016-08-24 11:09 - 2007-11-13 19:00 - 00008192 ___SH C:\Users\Wonszyna\Downloads\Thumbs.db 2016-08-22 20:51 - 2016-08-29 22:07 - 00000000 ____D C:\Users\Wonszyna\AppData\Roaming\vlc 2016-08-22 20:51 - 2016-08-22 20:51 - 00001066 _____ C:\Users\Public\Desktop\VLC media player.lnk 2016-08-22 20:51 - 2016-08-22 20:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2016-08-22 20:51 - 2016-08-22 20:51 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2016-08-16 15:27 - 2016-08-16 19:42 - 00000000 ____D C:\Users\Wonszyna\AppData\Local\Glyph 2016-08-16 15:27 - 2016-08-16 15:27 - 00000000 ____D C:\ProgramData\Glyph 2016-08-15 08:44 - 2016-08-15 08:44 - 00000000 ____D C:\Users\Wonszyna\Documents\WB Games 2016-08-14 21:44 - 2016-08-14 21:44 - 00000202 _____ C:\Users\Wonszyna\Desktop\Middle-earth Shadow of Mordor.url 2016-08-14 17:37 - 2016-08-14 17:37 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2016-08-14 17:37 - 2016-08-14 17:37 - 00000000 __SHD C:\Users\Wonszyna\IntelGraphicsProfiles 2016-08-14 17:35 - 2016-08-14 17:35 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2016-08-14 17:33 - 2016-08-14 17:33 - 00632168 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys 2016-08-14 17:33 - 2016-08-14 17:33 - 00028008 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys 2016-08-14 17:32 - 2016-08-14 17:32 - 00000000 ____D C:\Windows\SysWOW64\NV 2016-08-14 17:32 - 2016-08-14 17:32 - 00000000 ____D C:\Windows\system32\NV 2016-08-14 17:29 - 2016-08-14 17:29 - 00000000 ____D C:\Program Files\Intel 2016-08-14 17:26 - 2016-08-14 17:26 - 00193536 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll 2016-08-14 17:25 - 2016-08-14 17:25 - 18032640 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll 2016-08-14 17:25 - 2016-08-14 17:25 - 01554944 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll 2016-08-14 17:25 - 2016-08-14 17:25 - 00291328 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll 2016-08-14 17:25 - 2016-08-14 17:25 - 00241664 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll 2016-08-14 17:24 - 2016-08-14 17:25 - 23048704 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll 2016-08-14 17:24 - 2016-08-14 17:24 - 26190816 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll 2016-08-14 17:24 - 2016-08-14 17:24 - 25730400 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll 2016-08-14 17:24 - 2016-08-14 17:24 - 01675264 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll 2016-08-14 17:24 - 2016-08-14 17:24 - 00433560 _____ C:\Windows\system32\igdmd64.dll 2016-08-14 17:24 - 2016-08-14 17:24 - 00348088 _____ C:\Windows\SysWOW64\igdmd32.dll 2016-08-14 17:24 - 2016-08-14 17:24 - 00330240 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll 2016-08-14 17:24 - 2016-08-14 17:24 - 00160256 _____ C:\Windows\system32\igdail64.dll 2016-08-14 17:24 - 2016-08-14 17:24 - 00142848 _____ C:\Windows\SysWOW64\igdail32.dll 2016-08-14 17:24 - 2016-08-14 17:24 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll 2016-08-14 17:24 - 2016-08-14 17:24 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll 2016-08-14 17:23 - 2016-08-14 17:24 - 04589640 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll 2016-08-14 17:23 - 2016-08-14 17:23 - 27392320 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll 2016-08-14 17:23 - 2016-08-14 17:23 - 27022520 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll 2016-08-14 17:23 - 2016-08-14 17:23 - 03657984 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 08107008 _____ (Intel Corporation) C:\Windows\system32\ig7icd64.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 06358016 _____ (Intel Corporation) C:\Windows\SysWOW64\ig7icd32.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 04342600 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe 2016-08-14 17:22 - 2016-08-14 17:22 - 04339016 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe 2016-08-14 17:22 - 2016-08-14 17:22 - 00929608 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe 2016-08-14 17:22 - 2016-08-14 17:22 - 00734208 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00655360 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00543560 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe 2016-08-14 17:22 - 2016-08-14 17:22 - 00543048 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe 2016-08-14 17:22 - 2016-08-14 17:22 - 00501064 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe 2016-08-14 17:22 - 2016-08-14 17:22 - 00392520 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe 2016-08-14 17:22 - 2016-08-14 17:22 - 00392008 _____ (Intel Corporation) C:\Windows\system32\CustomModeAppv2_0.exe 2016-08-14 17:22 - 2016-08-14 17:22 - 00373248 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00314696 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe 2016-08-14 17:22 - 2016-08-14 17:22 - 00267264 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00254976 _____ C:\Windows\system32\igfxCPL.cpl 2016-08-14 17:22 - 2016-08-14 17:22 - 00249856 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00243528 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe 2016-08-14 17:22 - 2016-08-14 17:22 - 00223744 _____ C:\Windows\system32\igdde64.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00212992 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00190792 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe 2016-08-14 17:22 - 2016-08-14 17:22 - 00187348 _____ C:\Windows\system32\resTHA.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00183808 _____ C:\Windows\SysWOW64\igdde32.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00180164 _____ C:\Windows\system32\resELL.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00176020 _____ C:\Windows\system32\resRUS.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00161876 _____ C:\Windows\system32\resARA.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00161332 _____ C:\Windows\system32\resHEB.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00161268 _____ C:\Windows\system32\resJPN.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00156692 _____ C:\Windows\system32\resFRA.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00156676 _____ C:\Windows\system32\resHUN.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00154980 _____ C:\Windows\system32\resKOR.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00154884 _____ C:\Windows\system32\resITA.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00154884 _____ C:\Windows\system32\resDEU.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00154724 _____ C:\Windows\system32\resROM.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00154612 _____ C:\Windows\system32\resESN.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00154180 _____ C:\Windows\system32\resPLK.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00154036 _____ C:\Windows\system32\resSKY.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00153844 _____ C:\Windows\system32\resNLD.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00153284 _____ C:\Windows\system32\resPTB.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00153140 _____ C:\Windows\system32\resTRK.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00153108 _____ C:\Windows\system32\resCSY.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00152980 _____ C:\Windows\system32\resPTG.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00152564 _____ C:\Windows\system32\resFIN.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00152132 _____ C:\Windows\system32\resHRV.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00151684 _____ C:\Windows\system32\resSVE.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00151508 _____ C:\Windows\system32\resSLV.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00150580 _____ C:\Windows\system32\resNOR.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00150068 _____ C:\Windows\system32\resDAN.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00148756 _____ C:\Windows\system32\resENU.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00146980 _____ C:\Windows\system32\resCHT.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00146148 _____ C:\Windows\system32\resCHS.cui 2016-08-14 17:22 - 2016-08-14 17:22 - 00070144 _____ C:\Windows\system32\igfxCUIServicePS.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00069632 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00057856 _____ ( ) C:\Windows\system32\igfxDHLib.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00031408 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00030720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00010240 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll 2016-08-14 17:22 - 2016-08-14 17:22 - 00000895 _____ C:\Windows\system32\Gfxv2_0.exe.config 2016-08-14 17:22 - 2016-08-14 17:22 - 00000895 _____ C:\Windows\system32\DPTopologyAppv2_0.exe.config 2016-08-14 17:22 - 2016-08-14 17:22 - 00000895 _____ C:\Windows\system32\CustomModeAppv2_0.exe.config 2016-08-14 17:22 - 2016-08-14 17:22 - 00000889 _____ C:\Windows\system32\Gfxv4_0.exe.config 2016-08-14 17:22 - 2016-08-14 17:22 - 00000889 _____ C:\Windows\system32\DPTopologyApp.exe.config 2016-08-14 17:22 - 2016-08-14 17:22 - 00000889 _____ C:\Windows\system32\CustomModeApp.exe.config 2016-08-14 17:21 - 2016-08-14 17:22 - 02019840 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll 2016-08-14 17:21 - 2016-08-14 17:21 - 03789824 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys 2016-08-14 17:21 - 2016-08-14 17:21 - 02813952 _____ C:\Windows\system32\iglhxa64.cpa 2016-08-14 17:21 - 2016-08-14 17:21 - 01753088 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll 2016-08-14 17:21 - 2016-08-14 17:21 - 01137080 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll 2016-08-14 17:21 - 2016-08-14 17:21 - 01132960 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll 2016-08-14 17:21 - 2016-08-14 17:21 - 00278344 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe 2016-08-14 17:21 - 2016-08-14 17:21 - 00218808 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll 2016-08-14 17:21 - 2016-08-14 17:21 - 00187408 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll 2016-08-14 17:21 - 2016-08-14 17:21 - 00183800 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll 2016-08-14 17:21 - 2016-08-14 17:21 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3574.dll 2016-08-14 17:21 - 2016-08-14 17:21 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll 2016-08-14 17:21 - 2016-08-14 17:21 - 00158032 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll 2016-08-14 17:21 - 2016-08-14 17:21 - 00155136 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll 2016-08-14 17:21 - 2016-08-14 17:21 - 00152392 _____ (Intel Corporation) C:\Windows\system32\difx64.exe 2016-08-14 17:21 - 2016-08-14 17:21 - 00044025 _____ C:\Windows\system32\iglhxo64.vp 2016-08-14 17:21 - 2016-08-14 17:21 - 00043816 _____ C:\Windows\system32\iglhxc64_dev.vp 2016-08-14 17:21 - 2016-08-14 17:21 - 00043494 _____ C:\Windows\system32\iglhxc64.vp 2016-08-14 17:21 - 2016-08-14 17:21 - 00043298 _____ C:\Windows\system32\iglhxg64_dev.vp 2016-08-14 17:21 - 2016-08-14 17:21 - 00043256 _____ C:\Windows\system32\iglhxg64.vp 2016-08-14 17:21 - 2016-08-14 17:21 - 00042079 _____ C:\Windows\system32\iglhxo64_dev.vp 2016-08-14 17:21 - 2016-08-14 17:21 - 00002568 _____ C:\Windows\system32\iglhxs64.vp 2016-08-14 17:21 - 2016-08-14 17:21 - 00001125 _____ C:\Windows\system32\iglhxa64.vp 2016-08-14 17:19 - 2016-08-14 17:19 - 31640512 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2016-08-14 17:19 - 2016-08-14 17:19 - 25414080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2016-08-14 17:19 - 2016-08-14 17:19 - 19220352 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2016-08-14 17:19 - 2016-08-14 17:19 - 16790552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2016-08-14 17:19 - 2016-08-14 17:19 - 10691632 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2016-08-14 17:19 - 2016-08-14 17:19 - 10656112 _____ C:\Windows\system32\nvptxJitCompiler.dll 2016-08-14 17:19 - 2016-08-14 17:19 - 09020656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2016-08-14 17:19 - 2016-08-14 17:19 - 08742360 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll 2016-08-14 17:19 - 2016-08-14 17:19 - 00406064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2016-08-14 17:19 - 2016-08-14 17:19 - 00153416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2016-08-14 17:19 - 2016-08-14 17:19 - 00131584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2016-08-14 17:19 - 2016-08-14 17:19 - 00038336 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys 2016-08-14 17:18 - 2016-08-14 17:19 - 13581880 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2016-08-14 17:18 - 2016-08-14 17:18 - 39977920 _____ C:\Windows\system32\nvcompiler.dll 2016-08-14 17:18 - 2016-08-14 17:18 - 17321352 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2016-08-14 17:18 - 2016-08-14 17:18 - 14371384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2016-08-14 17:18 - 2016-08-14 17:18 - 10234336 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2016-08-14 17:18 - 2016-08-14 17:18 - 08615336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2016-08-14 17:18 - 2016-08-14 17:18 - 03542072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2016-08-14 17:18 - 2016-08-14 17:18 - 03099072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2016-08-14 17:18 - 2016-08-14 17:18 - 01939000 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436881.dll 2016-08-14 17:18 - 2016-08-14 17:18 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436881.dll 2016-08-14 17:18 - 2016-08-14 17:18 - 00694672 _____ C:\Windows\system32\nvfatbinaryLoader.dll 2016-08-14 17:18 - 2016-08-14 17:18 - 00583736 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2016-08-14 17:17 - 2016-08-14 17:18 - 35115968 _____ C:\Windows\SysWOW64\nvcompiler.dll 2016-08-14 17:17 - 2016-08-14 17:17 - 03393576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2016-08-14 17:17 - 2016-08-14 17:17 - 01001016 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2016-08-14 17:17 - 2016-08-14 17:17 - 00930360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2016-08-14 17:17 - 2016-08-14 17:17 - 00909880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2016-08-14 17:17 - 2016-08-14 17:17 - 00852024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2016-08-14 17:17 - 2016-08-14 17:17 - 00544120 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2016-08-14 17:17 - 2016-08-14 17:17 - 00459320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2016-08-14 17:17 - 2016-08-14 17:17 - 00444472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2016-08-14 17:17 - 2016-08-14 17:17 - 00394808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2016-08-14 17:17 - 2016-08-14 17:17 - 00000594 _____ C:\Windows\SysWOW64\nv-vk32.json 2016-08-14 17:17 - 2016-08-14 17:17 - 00000594 _____ C:\Windows\system32\nv-vk64.json 2016-08-14 17:16 - 2016-08-14 17:16 - 00795632 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys 2016-08-14 17:15 - 2016-08-14 17:31 - 00319042 _____ C:\Windows\system32\Drivers\RTWAVES40.dat 2016-08-14 17:15 - 2016-08-14 17:15 - 00463112 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2016-08-14 17:15 - 2016-08-14 17:15 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2016-08-14 17:14 - 2016-08-14 17:14 - 07096192 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 06766090 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2016-08-14 17:14 - 2016-08-14 17:14 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 00873472 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 00689880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 00618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 00327464 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 00272720 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 00158696 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2016-08-14 17:14 - 2016-08-14 17:14 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 07172920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 03282544 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 02050184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 01591064 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 01508936 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 01166160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00965024 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00708320 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00678184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00677680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00447720 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00445408 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00387312 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00253904 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00253864 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00134200 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00110984 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00088320 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2016-08-14 17:13 - 2016-08-14 17:13 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2016-08-14 17:12 - 2016-08-14 17:13 - 00574760 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2016-08-14 17:12 - 2016-08-14 17:12 - 03283240 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2016-08-14 17:12 - 2016-08-14 17:12 - 01360528 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2016-08-14 17:12 - 2016-08-14 17:12 - 00532376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2016-08-14 17:12 - 2016-08-14 17:12 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2016-08-14 17:12 - 2016-08-14 17:12 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2016-08-14 17:12 - 2016-08-14 17:12 - 00209544 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2016-08-14 17:12 - 2016-08-14 17:12 - 00192984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2016-08-14 17:12 - 2016-08-14 17:12 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2016-08-14 17:11 - 2016-08-14 17:12 - 72520720 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2016-08-14 17:11 - 2016-08-14 17:11 - 05253128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2016-08-14 17:11 - 2016-08-14 17:11 - 03203592 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2016-08-14 17:11 - 2016-08-14 17:11 - 03133152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2016-08-14 17:11 - 2016-08-14 17:11 - 02895104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2016-08-14 17:11 - 2016-08-14 17:11 - 02073096 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2016-08-14 17:11 - 2016-08-14 17:11 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2016-08-14 17:11 - 2016-08-14 17:11 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2016-08-14 17:10 - 2016-08-14 17:10 - 04181000 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys 2016-08-14 17:10 - 2016-08-14 17:10 - 00600776 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys 2016-08-14 17:10 - 2016-08-14 17:10 - 00026136 _____ (Intel Corporation) C:\Windows\system32\Drivers\ICCWDT.sys 2016-08-14 17:10 - 2016-08-14 17:10 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ICCWDT_01009.Wdf 2016-08-14 17:09 - 2016-08-14 17:09 - 00000000 ____D C:\Program Files\Elantech 2016-08-14 17:08 - 2016-08-14 17:08 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll 2016-08-14 17:08 - 2016-08-14 17:08 - 00449752 _____ (ELAN Microelectronics Corp.) C:\Windows\system32\Drivers\ETD.sys 2016-08-14 17:08 - 2016-08-14 17:08 - 00181304 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys 2016-08-14 17:08 - 2016-08-14 17:08 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf 2016-08-14 17:08 - 2016-08-14 17:08 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2016-08-14 17:08 - 2012-07-26 06:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2016-08-14 17:08 - 2012-07-26 06:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys 2016-08-14 17:08 - 2012-07-26 04:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll 2016-08-14 17:08 - 2012-06-02 16:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf 2016-08-14 17:06 - 2016-08-14 17:06 - 09890008 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll 2016-08-14 17:06 - 2016-08-14 17:06 - 04330200 _____ (TODO: ) C:\Windows\RtCRU64.exe 2016-08-14 17:06 - 2016-08-14 17:06 - 01030400 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys 2016-08-14 17:06 - 2016-08-14 17:06 - 00313048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsBaStor.sys 2016-08-14 17:06 - 2016-08-14 17:06 - 00116304 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll 2016-08-14 17:06 - 2016-08-14 17:06 - 00083160 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll 2016-08-14 17:06 - 2016-08-14 17:06 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll 2016-08-14 17:06 - 2016-08-14 17:06 - 00000000 ____D C:\Windows\SysWOW64\sda 2016-08-14 16:18 - 2016-08-14 16:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy 2016-08-14 16:18 - 2016-08-14 16:18 - 00000000 ____D C:\Program Files\Easeware 2016-08-14 16:11 - 2016-08-14 17:34 - 00000412 _____ C:\Windows\Tasks\Driver Easy Scheduled Scan.job 2016-08-14 16:11 - 2016-08-14 16:18 - 00000967 _____ C:\Users\Public\Desktop\Driver Easy.lnk 2016-08-14 16:11 - 2016-08-14 16:11 - 00003824 _____ C:\Windows\System32\Tasks\Driver Easy Scheduled Scan 2016-08-14 16:11 - 2016-08-14 16:11 - 00000000 ____D C:\Users\Wonszyna\AppData\Roaming\Easeware ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-09-10 14:35 - 2009-07-14 06:45 - 00021648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-09-10 14:35 - 2009-07-14 06:45 - 00021648 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-09-10 14:29 - 2016-03-18 14:01 - 00000000 ____D C:\Users\Wonszyna\AppData\Roaming\TS3Client 2016-09-10 14:27 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-09-10 13:48 - 2016-03-19 14:31 - 00000000 ____D C:\Users\Wonszyna\AppData\Roaming\Awesomium 2016-09-10 13:23 - 2016-03-23 17:02 - 00000000 ____D C:\Users\Wonszyna\AppData\Roaming\Winyl 2016-09-10 12:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2016-09-10 12:25 - 2016-03-18 07:03 - 00000000 ____D C:\Windows\Panther 2016-09-10 01:10 - 2016-03-25 15:29 - 00000000 ____D C:\Users\Wonszyna\AppData\Roaming\qBittorrent 2016-09-09 13:59 - 2016-06-21 17:19 - 00003894 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1466522398 2016-09-09 13:43 - 2016-06-21 17:15 - 00003922 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2016-09-09 13:42 - 2016-06-21 17:18 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2016-09-09 13:42 - 2016-06-21 17:15 - 00969560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2016-09-09 13:42 - 2016-06-21 17:15 - 00513496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2016-09-09 13:42 - 2016-06-21 17:15 - 00292704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2016-09-09 13:42 - 2016-06-21 17:15 - 00163416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2016-09-09 13:42 - 2016-06-21 17:15 - 00108816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2016-09-09 13:42 - 2016-06-21 17:15 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2016-09-09 13:42 - 2016-06-21 17:15 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2016-09-09 13:42 - 2016-06-21 17:15 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2016-09-08 19:42 - 2016-05-26 15:24 - 00000000 ____D C:\ProgramData\Oracle 2016-09-08 19:13 - 2016-03-17 22:13 - 00001443 _____ C:\Users\Wonszyna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2016-09-08 19:13 - 2016-03-17 22:13 - 00001409 _____ C:\Users\Wonszyna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2016-09-08 19:03 - 2016-05-26 15:24 - 00000000 ____D C:\Users\Wonszyna\.oracle_jre_usage 2016-09-08 17:29 - 2016-06-15 14:43 - 00000000 ____D C:\Users\UpdatusUser 2016-09-06 22:17 - 2016-03-17 22:56 - 00000000 ____D C:\Users\Wonszyna\AppData\Local\Battle.net 2016-09-06 18:11 - 2016-03-17 22:47 - 00000000 ____D C:\Users\Wonszyna\AppData\Local\Google 2016-09-01 12:57 - 2009-07-14 07:13 - 00779724 _____ C:\Windows\system32\PerfStringBackup.INI 2016-08-30 23:22 - 2016-05-02 16:33 - 00000000 ____D C:\Program Files\Highresolution Enterprises 2016-08-25 07:34 - 2009-07-14 07:08 - 00032620 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-08-24 22:53 - 2016-03-17 22:12 - 00000000 ____D C:\Users\Wonszyna 2016-08-24 15:29 - 2016-04-24 17:14 - 00000000 ____D C:\ProgramData\Package Cache 2016-08-20 13:25 - 2016-05-26 10:01 - 00000000 ____D C:\Users\Wonszyna\.junique 2016-08-20 13:23 - 2016-05-26 10:01 - 00000000 ____D C:\Users\Wonszyna\.minion 2016-08-14 22:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2016-08-14 17:32 - 2016-06-15 14:43 - 00000000 ____D C:\ProgramData\NVIDIA 2016-08-14 17:31 - 2016-03-17 22:18 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2016-08-14 17:24 - 2016-03-17 22:23 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL 2016-08-14 17:24 - 2016-03-17 22:23 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL 2016-08-14 17:22 - 2013-02-21 13:01 - 00443208 _____ (Intel Corporation) C:\Windows\system32\igfxTray.exe 2016-08-14 17:20 - 2016-03-17 22:25 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-08-14 17:19 - 2016-06-15 14:41 - 00490744 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2016-08-14 17:18 - 2016-06-15 14:41 - 00177952 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2016-08-14 17:18 - 2016-06-15 14:41 - 00155768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2016-08-14 17:18 - 2016-06-15 14:41 - 00039124 _____ C:\Windows\system32\nvinfo.pb 2016-08-14 17:17 - 2016-06-15 14:41 - 03840096 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2016-08-14 16:40 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games ==================== Files in the root of some directories ======= 2016-08-14 17:15 - 2016-08-14 17:15 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2016-08-04 22:49 - 2016-08-04 22:49 - 0000016 _____ () C:\ProgramData\mntemp Some files in TEMP: ==================== C:\Users\Wonszyna\AppData\Local\Temp\libeay32.dll C:\Users\Wonszyna\AppData\Local\Temp\msvcr120.dll C:\Users\Wonszyna\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-09-05 10:10 ==================== End of FRST.txt ============================