Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 04-10-2016 Uruchomiony przez ANNA (administrator) LENOVO-PC (07-10-2016 15:01:27) Uruchomiony z C:\Users\ANNA\Downloads Załadowane profile: ANNA (Dostępne profile: ANNA & Administrator) Platform: Windows 8.1 (Update) (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: IE) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (LENOVO INCORPORATED.) C:\Program Files\lenovo\iMController\SystemAgentService.exe (Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe () C:\Program Files\CyberLink\Shared files\RichVideo64.exe (Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Pokki) C:\Users\ANNA\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Alcor) C:\Windows\WebCam\S6000\S6000Mnt.exe (Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe () C:\Program Files\CONEXANT\ForteConfig\fmapp.exe (Lenovo) C:\Program Files\lenovo\Onekey Theater\OnekeyStudio.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe (Spotify Ltd) C:\Users\ANNA\AppData\Roaming\Spotify\SpotifyWebHelper.exe (SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe (CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Users\ANNA\AppData\Local\Temp\Rar$EXa0.576\gmer.exe ==================== Rejestr (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [404376 2015-08-09] () HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe" HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe" HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2891080 2013-10-17] (ELAN Microelectronics Corp.) HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [7818040 2013-10-09] (Motorola Solutions, Inc.) HKLM\...\Run: [S6000Mnt] => C:\WINDOWS\WebCam\S6000\S6000Mnt.exe [516608 2015-05-21] (Alcor) HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [907480 2013-09-04] (Conexant Systems, Inc.) HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] () HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.) HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-09-14] (Lenovo) HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15813616 2014-10-30] (Lenovo(beijing) Limited) HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80880 2014-10-30] (Lenovo(beijing) Limited) HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1842624 2016-09-30] (NVIDIA Corporation) HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-06] (CyberLink Corp.) HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [218896 2016-09-13] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [6718224 2016-08-26] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation) Winlogon\Notify\igfxcui: igfxdev.dll [X] HKU\S-1-5-21-3820551375-3570498258-4154233937-1002\...\Run: [EPSONF2A9F6 (Epson Stylus SX235)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHLE.EXE [232448 2011-01-20] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3820551375-3570498258-4154233937-1002\...\Run: [Epson Stylus SX235(Sie**)<*>] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHLE.EXE /FU "C:\Users\ANNA\AppData\Local\Temp\E_S7A68.tmp" /EF "HKCU" <===== UWAGA (Nazwa wartości zawiera nieprawidłowe znaki) HKU\S-1-5-21-3820551375-3570498258-4154233937-1002\...\Run: [Spotify Web Helper] => C:\Users\ANNA\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524848 2016-03-14] (Spotify Ltd) HKU\S-1-5-21-3820551375-3570498258-4154233937-1002\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\Bluestacks\HD-Agent.exe AppInit_DLLs: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC64~1.DLL => Brak pliku AppInit_DLLs-x32: C:\PROGRA~2\LENOVO~1\LENOVO~1\bin\SPVC32~1.DLL => Brak pliku ShellIconOverlayIdentifiers: [00001LenovoSyncComplete] -> {1E9CED2C-E7B4-4C47-B07A-25416393B67B} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.) ShellIconOverlayIdentifiers: [00002LenovoSyncActive] -> {C1285F4D-918F-4EF2-BC94-CAD5B118C835} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.) ShellIconOverlayIdentifiers: [00003LenovoSyncError] -> {CE5633DA-1488-4D1D-9A9B-B500297D4A8C} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.) ShellIconOverlayIdentifiers: [00004LenovoLocalOnly] -> {C7362DA9-D3AC-4C17-B2F5-2F1823FA04C3} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.) ShellIconOverlayIdentifiers-x32: [00001LenovoSyncComplete] -> {1E9CED2C-E7B4-4C47-B07A-25416393B67B} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.) ShellIconOverlayIdentifiers-x32: [00002LenovoSyncActive] -> {C1285F4D-918F-4EF2-BC94-CAD5B118C835} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.) ShellIconOverlayIdentifiers-x32: [00003LenovoSyncError] -> {CE5633DA-1488-4D1D-9A9B-B500297D4A8C} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.) ShellIconOverlayIdentifiers-x32: [00004LenovoLocalOnly] -> {C7362DA9-D3AC-4C17-B2F5-2F1823FA04C3} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2016-03-07] ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{1CCC9F40-F8BF-47FB-BA9A-543696CC0C25}: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{43B183E7-33B9-4EE4-9F46-2A8F4B31C8C9}: [DhcpNameServer] 192.168.2.1 ManualProxies: Internet Explorer: ================== HKU\S-1-5-21-3820551375-3570498258-4154233937-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB HKU\S-1-5-21-3820551375-3570498258-4154233937-1002\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3820551375-3570498258-4154233937-1002 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={AB099386-04FE-44F2-810A-95AF5F4F5685}&mid=9c368062d5c247cca1e5013773c6ed99-1d8099c7bdd18409115ea547ae7cac683ec11f9a&lang=en&ds=AVG&coid=avgtbavg&cmpid=0216piz&pr=fr&d=2016-03-06 18:28:32&v=4.2.6.552&pid=wtu&sg=&sap=dsp&q={searchTerms} BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-08-16] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-07-25] (Oracle Corporation) BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.) BHO: Brak nazwy -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> Brak pliku BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-08-16] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-07-25] (Oracle Corporation) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24] (SEIKO EPSON CORPORATION / CyCom Technology Corp.) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation) FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-07-25] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-07-25] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-04-10] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default [2016-10-07] CHR Extension: (Prezentacje Google) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-07] CHR Extension: (Dokumenty Google) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-07] CHR Extension: (Dysk Google) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-07] CHR Extension: (YouTube) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-07] CHR Extension: (Steam Inventory Helper) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-10-06] CHR Extension: (Google Search) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-03-07] CHR Extension: (Dark Theme v3) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\djlgdeklopcjagknhlchbdjekgpgenad [2016-09-24] CHR Extension: (Arkusze Google) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-07] CHR Extension: (Dokumenty Google offline) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03] CHR Extension: (Gmail) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-07] CHR Extension: (Chrome Media Router) - C:\Users\ANNA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-24] ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [674552 2016-08-26] (AVG Technologies CZ, s.r.o.) R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5285344 2016-08-26] (AVG Technologies CZ, s.r.o.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1149712 2016-09-13] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [760024 2016-08-26] (AVG Technologies CZ, s.r.o.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1314848 2016-01-19] () R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3192560 2016-07-26] (Microsoft Corporation) R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2542216 2016-06-10] (ESET) R2 EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION) [Brak podpisu cyfrowego] R2 ETDService; C:\Program Files\Elantech\ETDService.exe [99632 2013-10-09] (ELAN Microelectronics Corp.) U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-09-15] (Hi-Rez Studios) [Brak podpisu cyfrowego] R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Brak podpisu cyfrowego] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation) S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [533760 2014-06-03] (Lenovo) R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-21] (LENOVO INCORPORATED.) R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-10-30] (Lenovo(beijing) Limited) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-11-19] () R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [455616 2016-09-30] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [455616 2016-09-30] (NVIDIA Corporation) R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-09-30] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2142728 2016-10-04] (Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2209296 2016-10-04] (Electronic Arts) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] () R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2014-10-30] () S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-11-19] (Intel® Corporation) ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.) R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [310016 2016-08-23] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [272640 2016-07-27] (AVG Technologies CZ, s.r.o.) R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [260352 2016-06-01] (AVG Technologies CZ, s.r.o.) R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.) R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [262400 2016-08-02] (AVG Technologies CZ, s.r.o.) R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.) R0 Avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.) R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [313096 2016-08-04] (AVG Technologies CZ, s.r.o.) R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.) R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1408824 2013-10-18] (Motorola Solutions, Inc.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [263336 2016-06-28] (ESET) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15488 2016-06-28] (ESET) R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [197288 2016-06-28] (ESET) S2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [153248 2016-06-28] (ESET) R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [208552 2016-06-28] (ESET) R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [61608 2016-06-28] (ESET) R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [84640 2016-06-28] (ESET) R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [142280 2013-10-18] (Intel Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation) R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3494680 2015-03-09] (Intel Corporation) S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-09-30] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [46016 2016-09-02] (NVIDIA Corporation) R3 S6000KNT; C:\Windows\System32\Drivers\S6000KNT.sys [899712 2015-05-21] (Bison) R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [32792 2015-09-29] (SteelSeries ApS) R3 sshid; C:\Windows\System32\drivers\sshid.sys [51400 2016-01-28] (SteelSeries ApS) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink) U3 fxlyrpog; \??\C:\Users\ANNA\AppData\Local\Temp\fxlyrpog.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-10-07 14:55 - 2016-10-07 14:55 - 00380928 _____ C:\Users\ANNA\Downloads\w9wy6c0o.exe 2016-10-07 14:55 - 2016-10-07 14:55 - 00371282 _____ C:\Users\ANNA\Downloads\gmer.zip 2016-10-07 14:36 - 2016-10-07 14:36 - 00051232 _____ C:\Users\ANNA\Downloads\Addition_K1.txt 2016-10-07 14:29 - 2016-10-07 14:30 - 00056915 _____ C:\Users\ANNA\Downloads\Addition.txt 2016-10-07 14:28 - 2016-10-07 15:01 - 00025880 _____ C:\Users\ANNA\Downloads\FRST.txt 2016-10-07 14:28 - 2016-10-07 15:01 - 00000000 ____D C:\FRST 2016-10-07 14:27 - 2016-10-07 14:27 - 02405376 _____ (Farbar) C:\Users\ANNA\Downloads\FRST64.exe 2016-10-06 21:16 - 2016-10-06 21:18 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-10-06 21:16 - 2016-10-06 21:16 - 00001129 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-10-06 21:16 - 2016-10-06 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2016-10-06 21:16 - 2016-10-06 21:16 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-10-06 21:16 - 2016-10-06 21:16 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2016-10-06 21:16 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2016-10-06 21:16 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2016-10-06 21:16 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2016-10-06 21:15 - 2016-10-06 21:16 - 22851472 _____ (Malwarebytes ) C:\Users\ANNA\Downloads\mbam-setup-2.2.1.1043.exe 2016-10-06 19:20 - 2016-10-06 19:20 - 00002054 _____ C:\Users\Public\Desktop\ESET Ochrona bankowości internetowej.lnk 2016-10-06 19:20 - 2016-10-06 19:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2016-10-06 19:20 - 2016-10-06 19:20 - 00000000 ____D C:\ProgramData\ESET 2016-10-06 19:20 - 2016-10-06 19:20 - 00000000 ____D C:\Program Files\ESET 2016-10-06 17:03 - 2016-10-06 19:21 - 00000000 ____D C:\Users\ANNA\AppData\Local\ESET 2016-10-06 16:59 - 2016-10-06 17:03 - 06766720 _____ (ESET spol. s r.o.) C:\Users\ANNA\Downloads\ESETOnlineScanner_PLK.exe 2016-10-05 20:14 - 2016-10-05 20:50 - 00000000 ____D C:\Users\ANNA\Documents\FIFA 17 2016-10-05 20:01 - 2016-10-05 20:10 - 00001178 _____ C:\Users\Public\Desktop\FIFA 17.lnk 2016-10-05 20:01 - 2016-10-05 20:01 - 00000000 ___HD C:\Program Files\Common Files\EAInstaller 2016-10-05 20:01 - 2016-10-05 20:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 17 2016-10-05 19:45 - 2016-10-05 19:45 - 00001137 _____ C:\Users\Public\Desktop\Borderless Gaming.lnk 2016-10-05 19:45 - 2016-10-05 19:45 - 00000000 ____D C:\Users\ANNA\AppData\Roaming\Codeusa Software 2016-10-05 19:45 - 2016-10-05 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Borderless Gaming 2016-10-05 19:45 - 2016-10-05 19:45 - 00000000 ____D C:\Program Files (x86)\Borderless Gaming 2016-10-05 19:44 - 2016-10-05 19:44 - 00578329 _____ (Codeusa Software ) C:\Users\ANNA\Downloads\BorderlessGaming_8.4__setup.exe 2016-10-05 17:47 - 2016-10-05 17:47 - 00000000 ____D C:\Users\ANNA\Desktop\DVD_Title_2 2016-10-05 17:44 - 2016-10-05 17:46 - 167752414 _____ C:\Users\ANNA\Desktop\Title_2.avi 2016-10-05 17:36 - 2016-10-05 17:36 - 00003078 _____ C:\WINDOWS\System32\Tasks\{63C94EBD-57EF-4B7E-8F79-8DB2A55E0C41} 2016-10-05 17:21 - 2016-10-06 17:25 - 00000000 ____D C:\Program Files (x86)\WinAVI 2016-10-05 17:21 - 2016-10-05 17:21 - 00000000 ____D C:\Users\ANNA\AppData\Roaming\WinAVI 2016-10-05 17:21 - 2016-10-05 17:21 - 00000000 ____D C:\Users\ANNA\AppData\Roaming\dvdcss 2016-10-05 17:21 - 2016-10-05 17:21 - 00000000 ____D C:\Users\ANNA\AppData\Local\WinAVI 2016-10-05 17:11 - 2016-10-05 17:23 - 00000000 ____D C:\Users\ANNA\Desktop\VIDEO_TS 2016-10-04 21:59 - 2016-10-04 21:59 - 00000000 ____D C:\Users\ANNA\AppData\Roaming\WebApp 2016-10-04 21:42 - 2016-10-04 21:42 - 00000000 ____D C:\Users\ANNA\AppData\Local\Cyberlink 2016-10-04 21:41 - 2016-10-04 21:42 - 00000000 ____D C:\Users\ANNA\Documents\CyberLink 2016-10-04 21:41 - 2016-10-04 21:41 - 00000000 ____D C:\Users\ANNA\Documents\Lenovo 2016-10-04 21:41 - 2016-10-04 21:41 - 00000000 ____D C:\Users\ANNA\AppData\Roaming\Lenovo 2016-10-04 21:41 - 2016-10-04 21:41 - 00000000 ____D C:\Users\ANNA\AppData\Roaming\CyberLink 2016-10-04 15:34 - 2016-10-04 15:34 - 00000950 _____ C:\Users\Public\Desktop\DS3 Tool.lnk 2016-10-04 15:34 - 2016-10-04 15:34 - 00000000 ____D C:\Users\ANNA\AppData\Roaming\MotioninJoy 2016-10-04 15:34 - 2016-10-04 15:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy 2016-10-04 15:34 - 2016-10-04 15:34 - 00000000 ____D C:\Program Files\MotioninJoy 2016-10-04 15:34 - 2012-05-12 12:31 - 00121416 _____ (MotioninJoy) C:\WINDOWS\system32\Drivers\MijXfilt.sys 2016-10-04 15:34 - 2011-12-07 19:42 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll 2016-10-04 15:34 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\WINDOWS\system32\MijFrc.dll 2016-10-04 15:34 - 2011-12-07 19:42 - 00074960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xusb21.sys 2016-10-04 14:45 - 2016-10-04 15:09 - 00000000 ____D C:\Users\ANNA\AppData\Local\ElevatedDiagnostics 2016-10-01 11:58 - 2016-08-11 15:12 - 00875720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll 2016-10-01 11:58 - 2016-08-11 15:12 - 00536776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll 2016-10-01 11:58 - 2016-08-11 15:12 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll 2016-10-01 11:58 - 2016-08-11 15:11 - 00869576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll 2016-10-01 11:58 - 2016-08-11 15:11 - 00678592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll 2016-10-01 11:58 - 2016-08-11 15:11 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll 2016-10-01 11:57 - 2016-08-12 23:47 - 15431168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2016-10-01 11:57 - 2016-08-12 22:52 - 13317120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2016-10-01 11:57 - 2016-07-30 19:12 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2016-10-01 11:57 - 2016-07-30 18:36 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2016-10-01 11:56 - 2016-08-27 21:44 - 22360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2016-10-01 11:56 - 2016-08-27 21:44 - 02755504 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2016-10-01 11:56 - 2016-08-27 21:44 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe 2016-10-01 11:56 - 2016-08-27 20:26 - 19789232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2016-10-01 11:56 - 2016-08-27 20:26 - 02411048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2016-10-01 11:56 - 2016-08-27 20:26 - 00113656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe 2016-10-01 11:56 - 2016-08-27 18:33 - 02881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2016-10-01 11:56 - 2016-08-27 18:11 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2016-10-01 11:56 - 2016-08-27 18:09 - 14466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-10-01 11:56 - 2016-08-27 17:55 - 12879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2016-10-01 11:56 - 2016-08-25 22:50 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll 2016-10-01 11:56 - 2016-08-25 21:40 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll 2016-10-01 11:56 - 2016-08-21 00:24 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2016-10-01 11:56 - 2016-08-21 00:12 - 02463744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2016-10-01 11:56 - 2016-08-13 02:05 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL 2016-10-01 11:56 - 2016-08-13 02:03 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifibus.sys 2016-10-01 11:56 - 2016-08-13 02:02 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys 2016-10-01 11:56 - 2016-08-13 02:01 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys 2016-10-01 11:56 - 2016-08-13 00:35 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll 2016-10-01 11:56 - 2016-08-13 00:19 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL 2016-10-01 11:56 - 2016-08-12 23:17 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll 2016-10-01 11:56 - 2016-08-12 03:58 - 02315496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2016-10-01 11:56 - 2016-08-12 03:58 - 01946176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2016-10-01 11:56 - 2016-08-11 20:33 - 00096256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\parport.sys 2016-10-01 11:56 - 2016-08-11 20:33 - 00083456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys 2016-10-01 11:56 - 2016-08-11 20:33 - 00023040 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serenum.sys 2016-10-01 11:56 - 2016-08-11 19:17 - 01574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe 2016-10-01 11:56 - 2016-08-11 15:39 - 00445765 _____ C:\WINDOWS\system32\ApnDatabase.xml 2016-10-01 11:56 - 2016-08-11 07:46 - 00420184 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2016-10-01 11:56 - 2016-08-03 17:42 - 01317888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2016-10-01 11:56 - 2016-08-03 17:36 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2016-10-01 11:56 - 2016-08-03 17:36 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll 2016-10-01 11:56 - 2016-08-03 17:33 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll 2016-10-01 11:56 - 2016-07-26 15:40 - 00162850 _____ C:\WINDOWS\SysWOW64\C_932.NLS 2016-10-01 11:56 - 2016-07-26 15:40 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS 2016-10-01 11:56 - 2016-07-23 20:18 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2016-10-01 11:56 - 2016-07-23 20:12 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 40070200 _____ C:\WINDOWS\system32\nvcompiler.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 35180992 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 34809912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 28214840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 19854064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 17464952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 17270984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 14353512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 14118336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys 2016-10-01 11:50 - 2016-09-17 02:46 - 10868288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 10746872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 10287344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 09090952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 08877480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 08684304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 03595832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 03161024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 01922616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437290.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 01585088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437290.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 01020472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 00956864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 00943672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 00895032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 00688784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 00578056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 00521096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 00437696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 00435904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 00388544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 00179952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll 2016-10-01 11:50 - 2016-09-17 02:46 - 00157464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll 2016-10-01 11:40 - 2016-10-05 19:40 - 00003594 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-09-30 14:28 - 2016-09-30 14:36 - 00000000 ____D C:\Users\ANNA\Documents\ProfileCache 2016-09-30 14:26 - 2016-09-30 14:26 - 00000000 ____D C:\Users\ANNA\AppData\Local\Ubisoft 2016-09-29 20:43 - 2016-09-29 20:43 - 00000000 ____D C:\Users\ANNA\AppData\Roaming\Battle.net 2016-09-29 20:39 - 2016-09-30 21:56 - 00000000 ____D C:\Users\ANNA\AppData\Local\Ubisoft Game Launcher 2016-09-29 20:39 - 2016-09-30 21:56 - 00000000 ____D C:\Program Files (x86)\Ubisoft 2016-09-25 13:34 - 2016-09-25 13:34 - 00113152 _____ C:\Users\ANNA\Desktop\Kopia faktury.xls 2016-09-23 20:47 - 2016-10-01 10:50 - 00003600 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task 2016-09-17 19:25 - 2016-09-17 19:25 - 00000000 ____D C:\Users\ANNA\AppData\Local\HirezLauncherUI 2016-09-17 19:24 - 2016-10-01 12:03 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios 2016-09-17 19:24 - 2016-09-18 10:16 - 00000000 ____D C:\ProgramData\Hi-Rez Studios 2016-09-17 19:24 - 2016-09-17 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios 2016-09-14 16:49 - 2016-09-09 20:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2016-09-14 16:49 - 2016-09-09 20:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1.dll 2016-09-14 16:49 - 2016-09-09 20:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2016-09-14 16:49 - 2016-09-09 20:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo.exe 2016-09-14 16:48 - 2016-08-26 01:28 - 01920960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437270.dll 2016-09-14 16:48 - 2016-08-26 01:28 - 01586744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437270.dll 2016-09-14 16:48 - 2016-08-26 01:28 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json 2016-09-14 16:48 - 2016-08-26 01:28 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json 2016-09-14 15:31 - 2016-10-05 19:41 - 00003782 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-09-14 15:31 - 2016-10-05 19:41 - 00001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2016-09-14 15:31 - 2016-09-30 06:24 - 01842624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2016-09-14 15:31 - 2016-09-30 06:24 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll 2016-09-14 15:31 - 2016-09-30 06:24 - 01444288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2016-09-14 15:31 - 2016-09-30 06:24 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll 2016-09-14 15:31 - 2016-09-30 06:24 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-09-14 15:30 - 2016-10-05 19:40 - 00003832 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-09-14 15:30 - 2016-10-05 19:40 - 00003832 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-09-14 15:30 - 2016-10-05 19:40 - 00003770 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-09-14 15:30 - 2016-10-05 19:40 - 00003534 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2016-09-14 15:30 - 2016-09-29 21:27 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2016-09-14 15:30 - 2016-09-02 13:13 - 00104384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll 2016-09-14 15:30 - 2016-09-02 13:13 - 00094144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2016-09-14 15:30 - 2016-09-02 13:13 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys 2016-09-14 15:09 - 2016-09-01 05:08 - 20312064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-09-14 15:09 - 2016-09-01 04:46 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2016-09-14 15:09 - 2016-09-01 04:24 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2016-09-14 15:09 - 2016-09-01 03:39 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2016-09-14 15:09 - 2016-09-01 03:30 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2016-09-14 15:09 - 2016-09-01 03:27 - 13808128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-09-14 15:09 - 2016-09-01 03:24 - 04607488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2016-09-14 15:09 - 2016-09-01 02:45 - 25770496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-09-14 15:09 - 2016-09-01 02:43 - 02445824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2016-09-14 15:09 - 2016-09-01 02:42 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2016-09-14 15:09 - 2016-09-01 02:38 - 01316352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-09-14 15:09 - 2016-09-01 02:24 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-09-14 15:09 - 2016-09-01 02:10 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2016-09-14 15:09 - 2016-09-01 02:06 - 06047232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-09-14 15:09 - 2016-09-01 01:38 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2016-09-14 15:09 - 2016-09-01 01:28 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2016-09-14 15:09 - 2016-09-01 01:15 - 15411712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-09-14 15:09 - 2016-09-01 01:10 - 02921472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2016-09-14 15:09 - 2016-09-01 00:58 - 01550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-09-14 15:09 - 2016-09-01 00:47 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2016-09-14 15:09 - 2016-08-26 07:51 - 02894336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-09-14 15:09 - 2016-08-26 06:44 - 02286592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2016-09-14 15:08 - 2016-08-21 01:45 - 07076864 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll 2016-09-14 15:08 - 2016-08-21 01:22 - 00435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2016-09-14 15:08 - 2016-08-21 01:05 - 05273600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll 2016-09-14 15:08 - 2016-08-21 00:50 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2016-09-14 15:08 - 2016-08-21 00:42 - 07795712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2016-09-14 15:08 - 2016-08-21 00:27 - 05268480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-09-14 15:08 - 2016-08-10 00:47 - 00803176 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2016-09-14 15:08 - 2016-08-10 00:47 - 00611576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2016-09-14 15:08 - 2016-08-04 16:17 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys 2016-09-14 15:08 - 2016-08-03 20:06 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2016-09-14 15:08 - 2016-08-03 20:05 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2016-09-14 15:06 - 2016-09-08 23:51 - 00443224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2016-09-14 15:06 - 2016-09-08 23:51 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2016-09-14 15:06 - 2016-08-22 18:06 - 00179248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll 2016-09-14 15:06 - 2016-08-22 18:06 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys 2016-09-14 15:06 - 2016-08-21 03:03 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2016-09-14 15:06 - 2016-08-21 03:01 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2016-09-14 15:06 - 2016-08-21 03:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys 2016-09-14 15:06 - 2016-08-21 02:17 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll 2016-09-14 15:06 - 2016-08-21 01:27 - 01445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-09-14 15:06 - 2016-08-21 01:26 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll 2016-09-14 15:06 - 2016-08-21 00:55 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll 2016-09-14 15:06 - 2016-08-14 21:34 - 01541248 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2016-09-14 15:06 - 2016-08-14 20:25 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2016-09-14 15:06 - 2016-08-14 18:14 - 01376768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2016-09-14 15:06 - 2016-08-13 09:41 - 07445848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-09-14 15:06 - 2016-08-13 09:40 - 01737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2016-09-14 15:06 - 2016-08-13 09:40 - 01663184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2016-09-14 15:06 - 2016-08-13 09:40 - 01523208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2016-09-14 15:06 - 2016-08-13 09:40 - 01490120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2016-09-14 15:06 - 2016-08-13 09:40 - 01358952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2016-09-14 15:06 - 2016-08-13 02:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll 2016-09-14 15:06 - 2016-08-11 18:26 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll 2016-09-14 15:06 - 2016-08-11 18:17 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll 2016-09-14 15:06 - 2016-08-11 18:16 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll 2016-09-14 15:06 - 2016-07-12 16:08 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll 2016-09-14 15:06 - 2016-07-09 18:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll 2016-09-14 15:06 - 2016-07-09 00:35 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys 2016-09-14 15:06 - 2016-07-08 16:17 - 00377344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll 2016-09-14 15:06 - 2016-07-08 16:17 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll 2016-09-14 15:06 - 2016-07-08 00:32 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys 2016-09-14 15:06 - 2016-07-08 00:18 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll 2016-09-14 15:06 - 2016-07-08 00:10 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll 2016-09-14 15:06 - 2016-07-08 00:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll 2016-09-14 15:06 - 2016-07-07 23:04 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll 2016-09-14 15:06 - 2016-07-07 22:59 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL 2016-09-14 15:06 - 2016-07-07 22:44 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll 2016-09-14 15:06 - 2016-07-07 22:41 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2016-09-14 15:06 - 2016-07-07 22:34 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2016-09-14 15:06 - 2016-07-07 22:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2016-09-14 15:06 - 2016-07-07 22:29 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll 2016-09-14 15:06 - 2016-07-07 22:23 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll 2016-09-14 15:06 - 2016-07-07 22:18 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll 2016-09-14 15:06 - 2016-07-07 22:11 - 01661064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2016-09-14 15:06 - 2016-07-07 22:11 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2016-09-14 15:06 - 2016-07-07 22:11 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll 2016-09-14 15:06 - 2016-07-07 21:35 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll 2016-09-14 15:06 - 2016-07-07 21:14 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll 2016-09-14 15:06 - 2016-07-04 07:09 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2016-09-14 15:06 - 2016-07-04 05:45 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe 2016-09-14 15:06 - 2016-07-04 05:33 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2016-09-14 15:06 - 2016-07-04 05:02 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2016-09-14 15:06 - 2016-07-04 04:19 - 03547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2016-09-14 15:06 - 2016-07-01 22:39 - 00197352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssenh.dll 2016-09-14 15:06 - 2016-07-01 22:39 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dssenh.dll 2016-09-14 15:06 - 2016-01-10 19:08 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2016-09-14 14:41 - 2016-09-14 14:44 - 00000000 ____D C:\Users\ANNA\Documents\FIFA 17 Demo 2016-09-13 18:37 - 2016-09-13 18:37 - 00000000 ____D C:\Users\ANNA\.QtWebEngineProcess 2016-09-13 18:37 - 2016-09-13 18:37 - 00000000 ____D C:\Users\ANNA\.Origin 2016-09-09 20:25 - 2016-09-09 20:25 - 00269600 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-26-0.dll 2016-09-09 20:25 - 2016-09-09 20:25 - 00261920 _____ C:\WINDOWS\system32\vulkan-1-1-0-26-0.dll 2016-09-09 20:25 - 2016-09-09 20:25 - 00110880 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-26-0.exe 2016-09-09 20:24 - 2016-09-09 20:24 - 00125216 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-26-0.exe ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2016-10-07 14:55 - 2016-03-06 19:35 - 00001076 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-10-07 14:27 - 2016-03-06 19:18 - 00000000 ____D C:\ProgramData\MFAData 2016-10-07 14:24 - 2016-03-06 19:35 - 00001072 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-10-07 14:24 - 2015-04-22 20:56 - 00000000 __SHD C:\Users\ANNA\IntelGraphicsProfiles 2016-10-07 14:24 - 2015-02-17 20:22 - 00000000 __RDO C:\Users\ANNA\OneDrive 2016-10-07 14:24 - 2014-10-30 02:27 - 00000000 ____D C:\ProgramData\NVIDIA 2016-10-07 07:16 - 2016-03-06 17:55 - 00000000 ____D C:\Users\ANNA\AppData\Local\SweetLabs App Platform 2016-10-06 22:38 - 2016-02-02 21:38 - 00000000 ____D C:\Users\ANNA\Desktop\pity 2015 2016-10-06 22:12 - 2016-03-06 19:14 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3820551375-3570498258-4154233937-1002 2016-10-06 20:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF 2016-10-06 19:21 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\ELAMBKUP 2016-10-06 19:21 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf 2016-10-05 22:05 - 2016-03-07 18:58 - 00000000 ____D C:\ProgramData\Origin 2016-10-05 22:02 - 2016-03-07 19:11 - 00000000 ____D C:\Users\ANNA\AppData\Roaming\Origin 2016-10-05 20:14 - 2016-03-07 18:58 - 00000000 ____D C:\ProgramData\Electronic Arts 2016-10-05 20:01 - 2014-10-30 02:41 - 00000000 ____D C:\ProgramData\Package Cache 2016-10-05 19:41 - 2014-10-30 02:27 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-10-05 19:40 - 2014-10-30 02:27 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2016-10-05 19:40 - 2014-10-30 02:26 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-10-05 19:35 - 2016-01-29 17:40 - 00000000 ____D C:\Users\ANNA\Desktop\muzyka tata 2016-10-05 19:31 - 2016-03-07 19:15 - 00000000 ____D C:\Program Files (x86)\Origin Games 2016-10-05 18:42 - 2016-03-07 18:14 - 00000000 ____D C:\Program Files (x86)\Steam 2016-10-04 21:41 - 2014-10-30 03:18 - 00000000 ____D C:\ProgramData\CyberLink 2016-10-04 21:41 - 2014-10-30 03:12 - 00000000 ____D C:\ProgramData\Lenovo 2016-10-04 19:48 - 2015-02-23 20:14 - 00000000 ____D C:\Users\ANNA\Desktop\PIOTR WĄTROBA 2016-10-04 19:48 - 2015-02-17 20:18 - 00000000 ____D C:\Users\ANNA\AppData\Local\Packages 2016-10-04 19:28 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache 2016-10-04 15:46 - 2016-03-07 18:58 - 00000000 ____D C:\Program Files (x86)\Origin 2016-10-04 15:44 - 2015-02-17 21:54 - 00000000 ___RD C:\Users\ANNA\Desktop\Games Karola 2016-10-04 14:56 - 2016-03-06 19:35 - 00002232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-10-03 21:19 - 2015-02-23 16:40 - 00000000 ____D C:\Users\ANNA\Desktop\PRO DECO 2016-10-01 12:08 - 2014-10-30 11:05 - 00808198 _____ C:\WINDOWS\system32\perfh015.dat 2016-10-01 12:08 - 2014-10-30 11:05 - 00164014 _____ C:\WINDOWS\system32\perfc015.dat 2016-10-01 12:08 - 2014-03-18 11:53 - 01828496 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-10-01 12:03 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-10-01 12:02 - 2013-08-22 15:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2016-10-01 12:01 - 2014-10-30 03:18 - 00010752 _____ C:\WINDOWS\system32\VfService.trf 2016-10-01 12:00 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData 2016-10-01 11:59 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-10-01 11:53 - 2016-03-07 18:27 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2016-10-01 10:51 - 2016-03-06 19:18 - 00001004 _____ C:\Users\Public\Desktop\AVG.lnk 2016-10-01 10:51 - 2016-03-06 19:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen 2016-09-30 21:57 - 2016-03-07 21:38 - 00000000 ____D C:\Users\ANNA\AppData\Local\CrashDumps 2016-09-30 21:54 - 2016-03-07 19:10 - 00000000 ____D C:\Users\ANNA\AppData\Local\Origin 2016-09-30 14:30 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM 2016-09-29 19:37 - 2016-03-06 19:35 - 00004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2016-09-29 18:28 - 2016-08-31 08:44 - 00000000 ____D C:\Users\ANNA\Desktop\DURBI 2016-09-28 20:23 - 2016-03-07 18:31 - 00000000 ____D C:\Users\ANNA\AppData\Roaming\TS3Client 2016-09-27 18:57 - 2016-03-07 18:31 - 00000000 ____D C:\Users\ANNA\AppData\Local\TeamSpeak 3 Client 2016-09-21 18:58 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-09-21 18:57 - 2016-04-09 22:21 - 00000000 ____D C:\Program Files\Microsoft Office 15 2016-09-21 18:41 - 2016-03-07 00:35 - 00003304 _____ C:\WINDOWS\System32\Tasks\SweetLabs App Platform 2016-09-18 10:15 - 2015-04-05 13:34 - 00000000 ____D C:\Users\ANNA\Documents\My Games 2016-09-17 19:24 - 2014-10-30 02:31 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-09-17 02:46 - 2014-10-30 02:26 - 03917840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2016-09-17 02:46 - 2014-10-30 02:26 - 03458608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2016-09-17 02:46 - 2014-10-30 02:26 - 00039730 _____ C:\WINDOWS\system32\nvinfo.pb 2016-09-17 00:57 - 2014-10-30 02:27 - 06385720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2016-09-17 00:57 - 2014-10-30 02:27 - 02475064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2016-09-17 00:57 - 2014-10-30 02:27 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2016-09-17 00:57 - 2014-10-30 02:27 - 01364024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe 2016-09-17 00:57 - 2014-10-30 02:27 - 00546752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2016-09-17 00:57 - 2014-10-30 02:27 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2016-09-17 00:57 - 2014-10-30 02:27 - 00146488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\oemdspif.dll 2016-09-17 00:57 - 2014-10-30 02:27 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2016-09-17 00:57 - 2014-10-30 02:27 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2016-09-16 16:08 - 2016-09-01 10:11 - 00000000 ____D C:\Program Files (x86)\bluestack 2016-09-16 16:08 - 2013-08-22 17:36 - 00000000 __RHD C:\Users\Public\Libraries 2016-09-16 16:06 - 2016-09-01 10:11 - 00000000 ____D C:\Users\ANNA\AppData\Local\Bluestacks 2016-09-16 16:04 - 2014-10-30 03:22 - 00000000 ____D C:\ProgramData\Energy Manager 2016-09-16 09:40 - 2014-10-30 02:27 - 07379415 _____ C:\WINDOWS\system32\nvcoproc.bin 2016-09-14 20:10 - 2016-09-01 10:12 - 00000000 ____D C:\ProgramData\BlueStacksSetup 2016-09-14 18:36 - 2016-03-07 18:15 - 00000000 ____D C:\Users\ANNA\AppData\Local\NVIDIA Corporation 2016-09-14 15:33 - 2016-03-07 18:14 - 00000000 ____D C:\Users\ANNA\AppData\Local\NVIDIA 2016-09-14 15:26 - 2013-08-22 16:44 - 00388424 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-09-14 15:25 - 2016-05-31 19:54 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2016-09-14 15:25 - 2016-05-31 19:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2016-09-14 15:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup 2016-09-14 15:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\setup 2016-09-14 15:18 - 2016-05-31 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2016-09-14 15:16 - 2016-03-06 21:37 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-09-14 15:11 - 2016-03-06 21:37 - 144199024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-09-14 15:09 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2016-09-14 14:53 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps 2016-09-14 14:53 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-09-14 11:36 - 2016-03-06 19:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2016-09-13 18:37 - 2016-03-06 17:55 - 00000000 ____D C:\Users\ANNA 2016-09-10 18:09 - 2016-07-27 13:56 - 00000000 ____D C:\Users\ANNA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-09-07 03:11 - 2013-08-22 17:38 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-09-07 03:11 - 2013-08-22 17:38 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl ==================== Pliki w katalogu głównym wybranych folderów ======= 2014-10-30 02:37 - 2013-11-28 17:46 - 0000517 _____ () C:\Program Files\unsetup.iss 2014-10-30 02:37 - 2013-11-28 17:46 - 0000517 _____ () C:\Program Files (x86)\unsetup.iss 2014-10-30 02:37 - 2013-11-28 17:46 - 0000517 _____ () C:\Program Files\Common Files\unsetup.iss 2014-10-30 02:37 - 2013-11-28 17:46 - 0000517 _____ () C:\Program Files (x86)\Common Files\unsetup.iss 2016-07-19 22:23 - 2016-07-19 22:23 - 0003759 _____ () C:\Users\ANNA\AppData\Local\recently-used.xbel 2016-03-06 19:48 - 2016-03-06 19:48 - 0003221 _____ () C:\Users\ANNA\AppData\Local\unins000.dat 2016-03-06 19:48 - 2016-03-06 19:48 - 0711640 _____ () C:\Users\ANNA\AppData\Local\unins000.exe 2016-03-06 19:48 - 2016-03-06 19:48 - 0011761 _____ () C:\Users\ANNA\AppData\Local\unins000.msg 2014-10-30 02:38 - 2014-10-30 02:38 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2016-07-28 15:46 - 2016-07-28 22:17 - 0001064 _____ () C:\ProgramData\sejw.ini Niektóre pliki w TEMP: ==================== C:\Users\ANNA\AppData\Local\Temp\avguirn_081020443001.exe C:\Users\ANNA\AppData\Local\Temp\avguirn_081131586935.exe C:\Users\ANNA\AppData\Local\Temp\avguirn_081469630667.exe C:\Users\ANNA\AppData\Local\Temp\avguirn_081630183155.exe C:\Users\ANNA\AppData\Local\Temp\avguirn_08626903612.exe C:\Users\ANNA\AppData\Local\Temp\avguirn_08811125731.exe C:\Users\ANNA\AppData\Local\Temp\BluestacksUninstaller.exe C:\Users\ANNA\AppData\Local\Temp\HD-LibraryHandler.dll C:\Users\ANNA\AppData\Local\Temp\HD-Logger-Native.dll C:\Users\ANNA\AppData\Local\Temp\jre-8u101-windows-au.exe C:\Users\ANNA\AppData\Local\Temp\jre-8u77-windows-au.exe C:\Users\ANNA\AppData\Local\Temp\jre-8u91-windows-au.exe C:\Users\ANNA\AppData\Local\Temp\oct1E5F.tmp.exe C:\Users\ANNA\AppData\Local\Temp\oct372A.tmp.exe C:\Users\ANNA\AppData\Local\Temp\octBEC7.tmp.exe C:\Users\ANNA\AppData\Local\Temp\octCCB2.tmp.exe ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2016-10-03 20:40 ==================== Koniec FRST.txt ============================