Himok utworzono 13 września 2015 utworzono 13 września 2015 Cześć, w Chromie pojawily mi sie szpiegujace dodatki, wiec usunalem je i id razu sprawdzilem procesy. Prawdopodobnie problemem jest proces lsass.exe. Sprawdzilem programem hijackthis, wrzuciłem na hijackthis do analizy i stwierdzilo ze w tym pliku jest blad. Co moge z tym zrobic? Tutaj log z HJT [spoiler]Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 03:20:55, on 13.09.2015 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.10240.16384) Boot mode: Normal Running processes: C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe C:\Program Files (x86)\Razer\Razer_Kraken0502_Driver\Drivers\SysAudio\Kraken0502Helper.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe C:\Users\xhimo\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\xhimo\Downloads\HijackThis_2.0.4.exe C:\Windows\SysWOW64\NOTEPAD.EXE C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\xhimo\Downloads\PrcView_5_2_15\PrcView.exe C:\Windows\SysWOW64\DllHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit= O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe" O4 - HKLM\..\Run: [Kraken0502Launcher] C:\Program Files (x86)\Razer\Razer_Kraken0502_Driver\Drivers\SysAudio\Kraken0502Helper.exe /start O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_798ED78D007A59C11B5AE25B42BE01CD] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'USŁUGA SIECIOWA') O4 - Global Startup: SteelSeries Engine 3.lnk = C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Usługa Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 9068 bytes [/spoiler] Z góry dziękuję za szybką odpowiedź ;)
Zayfi komentarz 13 września 2015 komentarz 13 września 2015 Zrób logi z FRST http://www.fixitpc.pl/topic/61-diagnostyka-ogolne-raporty-systemowe/#1
Himok komentarz 13 września 2015 Autor komentarz 13 września 2015 (edytowane) FRST [spoiler]Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:13-09-2015 01 Uruchomiony przez xhimo (administrator) HIMOKPC (13-09-2015 18:31:47) Uruchomiony z C:\Users\xhimo\Downloads Załadowane profile: xhimo (Dostępne profile: xhimo) Platform: Windows 10 Pro (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.13\GoogleCrashHandler64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe (SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken0502_Driver\Drivers\SysAudio\Kraken0502Helper.exe (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe (Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe (Razer, Inc.) C:\Users\xhimo\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\wuapihost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-08-20] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-08-18] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [593216 2015-08-11] (Razer Inc.) HKLM-x32\...\Run: [Kraken0502Launcher] => C:\Program Files (x86)\Razer\Razer_Kraken0502_Driver\Drivers\SysAudio\Kraken0502Helper.exe [1599808 2015-08-14] (Razer Inc) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824 2015-09-12] (AVAST Software) HKU\S-1-5-21-428852305-4060775940-176336373-1001\...\Run: [GoogleChromeAutoLaunch_798ED78D007A59C11B5AE25B42BE01CD] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-08-28] (Google Inc.) HKU\S-1-5-21-428852305-4060775940-176336373-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [55349888 2015-09-04] (Skype Technologies S.A.) HKU\S-1-5-21-428852305-4060775940-176336373-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22344224 2015-07-29] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-07-29] (Google) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-12] (AVAST Software) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2015-09-12] ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 217.113.224.134 217.113.224.35 Tcpip\..\Interfaces\{ebfd2e98-5208-4dcb-98ed-5c8ff82712f9}: [DhcpNameServer] 217.113.224.134 217.113.224.35 Internet Explorer: ================== BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-12] (AVAST Software) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-12] (AVAST Software) FireFox: ======== FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-17] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-17] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-12] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-12] (Google Inc.) FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-09-12] Chrome: ======= CHR HomePage: Default -> hxxp://www.mystartsearch.com/?type=hp&ts=1430576134&from=wpc&uid=395049983_1052514_2CEFCE2D CHR StartupUrls: Default -> "hxxps://www.google.pl/","hxxp://dogry.pl/","hxxp://www.istartsurf.com/?type=hp&ts=1441715565&z=92a20432b9b1f181482c7c1g0zdzcg3m0g2w2c5tfc&from=face&uid=WDCXWD5000AAKS-00V1A0_WD-WCAWF167061670616","hxxp://www.google.com/" CHR Profile: C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Prezentacje Google) - C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-12] CHR Extension: (Theme Creator) - C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc [2015-09-13] CHR Extension: (Dysk Google) - C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-12] CHR Extension: (YouTube) - C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-12] CHR Extension: (Google Search) - C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-09-12] CHR Extension: (Arkusze Google) - C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-12] CHR Extension: (Dokumenty Google offline) - C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-12] CHR Extension: (Avast Online Security) - C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-09-12] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-09-13] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-12] CHR Extension: (Gmail) - C:\Users\xhimo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-12] CHR HKU\S-1-5-21-428852305-4060775940-176336373-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-09-12] ==================== Usługi (filtrowane) ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-12] (AVAST Software) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2015-08-18] (NVIDIA Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-08-18] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2015-08-18] (NVIDIA Corporation) R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) ===================== Sterowniki (filtrowane) ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-12] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-12] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-12] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-12] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-09-12] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-09-12] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-09-12] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-12] (AVAST Software) S3 MTsensor; C:\Windows\System32\drivers\ASACPI.sys [17280 2015-08-20] () R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-08-18] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-08-18] (NVIDIA Corporation) R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.) R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.) R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [32792 2015-06-30] (SteelSeries ApS) R3 sshid; C:\Windows\System32\drivers\sshid.sys [42672 2015-09-04] (SteelSeries ApS) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-09-13 18:29 - 2015-09-13 18:30 - 00032366 _____ C:\Users\xhimo\Downloads\Addition.txt 2015-09-13 18:27 - 2015-09-13 18:31 - 00013572 _____ C:\Users\xhimo\Downloads\FRST.txt 2015-09-13 18:27 - 2015-09-13 18:31 - 00000000 ____D C:\FRST 2015-09-13 18:26 - 2015-09-13 18:26 - 02190848 _____ (Farbar) C:\Users\xhimo\Downloads\FRST64.exe 2015-09-13 18:04 - 2015-09-13 18:04 - 00016148 _____ C:\Windows\system32\HIMOKPC_xhimo_HistoryPrediction.bin 2015-09-13 03:20 - 2015-09-13 03:20 - 00000000 ____D C:\Users\xhimo\Downloads\backups 2015-09-13 03:15 - 2015-09-13 03:15 - 00383259 _____ C:\Users\xhimo\Downloads\PrcView_5_2_15.zip 2015-09-13 03:15 - 2015-09-13 03:15 - 00000000 ____D C:\Users\xhimo\Downloads\PrcView_5_2_15 2015-09-13 03:07 - 2015-09-13 03:20 - 00009069 _____ C:\Users\xhimo\Downloads\hijackthis.log 2015-09-13 03:06 - 2015-09-13 03:06 - 00856576 _____ (Web Installer generic ) C:\Users\xhimo\Downloads\HijackThis_2.exe 2015-09-13 03:06 - 2015-09-13 03:06 - 00388608 _____ (Trend Micro Inc.) C:\Users\xhimo\Downloads\HijackThis_2.0.4.exe 2015-09-13 03:04 - 2015-09-13 03:04 - 01266535 _____ (Installer ) C:\Users\xhimo\Downloads\installer.exe 2015-09-13 02:34 - 2015-09-13 18:05 - 00000000 ___RD C:\Users\xhimo\Dysk Google 2015-09-13 02:34 - 2015-09-13 02:34 - 00001733 _____ C:\Users\xhimo\Desktop\Dysk Google.lnk 2015-09-13 01:55 - 2015-09-13 18:03 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\Users\Default\Ustawienia lokalne 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\Users\Default\Szablony 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\Users\Default\Moje dokumenty 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\Users\Default\Menu Start 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\Users\Default\Dane aplikacji 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historia 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historia 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dane aplikacji 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\ProgramData\Szablony 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\ProgramData\Pulpit 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\ProgramData\Menu Start 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\ProgramData\Dokumenty 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 _SHDL C:\ProgramData\Dane aplikacji 2015-09-13 01:55 - 2015-09-13 01:55 - 00000000 __SHD C:\Recovery 2015-09-13 01:51 - 2015-09-13 01:51 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2015-09-13 01:51 - 2015-09-13 01:51 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2015-09-13 01:51 - 2015-09-13 01:51 - 00000000 ____D C:\Windows\system32\DAX2 2015-09-13 01:51 - 2015-09-13 01:51 - 00000000 ____D C:\Program Files\Realtek 2015-09-13 01:49 - 2015-09-13 01:49 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2015-09-13 01:49 - 2015-09-13 01:49 - 00000000 _____ C:\Windows\setuperr.log 2015-09-13 01:49 - 2015-09-12 18:26 - 00005699 _____ C:\Windows\setupact.log 2015-09-13 01:48 - 2015-09-13 01:48 - 00001340 _____ C:\Windows\lsasetup.log 2015-09-13 01:47 - 2015-09-13 01:48 - 00193504 _____ C:\Windows\system32\FNTCACHE.DAT 2015-09-12 21:46 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2015-09-12 21:46 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2015-09-12 21:46 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2015-09-12 21:46 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2015-09-12 21:46 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2015-09-12 21:46 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2015-09-12 21:46 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2015-09-12 21:46 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2015-09-12 21:46 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2015-09-12 21:46 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2015-09-12 21:46 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2015-09-12 21:46 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2015-09-12 21:46 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2015-09-12 21:46 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2015-09-12 21:46 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2015-09-12 21:46 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2015-09-12 21:46 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2015-09-12 21:46 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2015-09-12 21:46 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2015-09-12 21:46 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2015-09-12 21:46 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2015-09-12 21:46 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2015-09-12 21:46 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2015-09-12 21:46 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2015-09-12 21:46 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2015-09-12 21:46 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2015-09-12 21:46 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2015-09-12 21:46 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2015-09-12 21:46 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2015-09-12 21:46 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2015-09-12 21:46 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2015-09-12 21:46 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2015-09-12 21:46 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2015-09-12 21:46 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2015-09-12 21:46 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2015-09-12 21:46 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2015-09-12 21:46 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2015-09-12 21:46 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2015-09-12 21:46 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2015-09-12 21:46 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2015-09-12 21:46 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2015-09-12 21:46 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2015-09-12 21:46 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2015-09-12 21:46 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2015-09-12 21:46 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2015-09-12 21:46 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2015-09-12 21:46 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2015-09-12 21:46 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2015-09-12 21:46 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2015-09-12 21:46 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2015-09-12 21:46 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2015-09-12 21:46 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2015-09-12 21:46 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2015-09-12 21:46 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2015-09-12 21:46 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2015-09-12 21:46 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2015-09-12 21:46 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2015-09-12 21:46 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2015-09-12 21:46 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2015-09-12 21:46 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2015-09-12 21:46 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2015-09-12 21:46 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2015-09-12 21:46 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2015-09-12 21:46 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2015-09-12 21:46 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2015-09-12 21:46 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2015-09-12 21:46 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2015-09-12 21:46 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2015-09-12 21:46 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2015-09-12 21:46 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2015-09-12 21:46 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2015-09-12 21:46 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2015-09-12 21:46 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2015-09-12 21:46 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2015-09-12 21:46 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2015-09-12 21:46 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2015-09-12 21:46 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2015-09-12 21:46 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2015-09-12 21:46 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2015-09-12 21:46 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2015-09-12 21:46 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2015-09-12 21:46 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2015-09-12 21:46 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2015-09-12 21:46 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2015-09-12 21:46 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2015-09-12 21:46 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2015-09-12 21:46 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2015-09-12 21:46 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2015-09-12 21:46 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2015-09-12 21:46 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2015-09-12 21:46 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2015-09-12 21:46 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2015-09-12 21:46 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2015-09-12 21:46 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2015-09-12 21:46 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2015-09-12 21:46 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2015-09-12 21:46 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2015-09-12 21:46 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2015-09-12 21:46 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2015-09-12 21:46 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2015-09-12 21:46 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2015-09-12 21:46 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2015-09-12 21:46 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2015-09-12 21:46 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2015-09-12 21:46 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2015-09-12 21:46 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2015-09-12 21:46 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2015-09-12 21:46 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2015-09-12 21:46 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2015-09-12 21:46 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2015-09-12 21:46 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2015-09-12 21:46 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2015-09-12 21:46 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2015-09-12 21:46 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2015-09-12 21:46 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2015-09-12 21:46 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2015-09-12 21:46 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2015-09-12 21:46 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2015-09-12 21:46 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2015-09-12 21:46 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2015-09-12 21:46 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2015-09-12 21:46 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2015-09-12 21:46 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2015-09-12 21:46 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2015-09-12 21:46 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2015-09-12 21:46 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2015-09-12 21:46 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2015-09-12 21:46 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2015-09-12 21:46 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2015-09-12 21:46 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2015-09-12 21:46 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2015-09-12 21:46 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2015-09-12 21:46 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2015-09-12 21:46 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2015-09-12 21:46 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2015-09-12 21:46 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2015-09-12 21:46 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2015-09-12 21:46 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2015-09-12 21:46 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2015-09-12 21:46 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2015-09-12 21:46 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2015-09-12 21:46 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2015-09-12 21:46 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2015-09-12 21:46 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2015-09-12 21:46 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2015-09-12 21:46 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2015-09-12 21:46 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2015-09-12 21:46 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2015-09-12 21:46 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2015-09-12 21:46 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2015-09-12 21:46 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2015-09-12 21:46 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2015-09-12 21:46 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2015-09-12 21:46 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2015-09-12 21:46 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2015-09-12 21:46 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2015-09-12 21:46 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2015-09-12 21:46 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2015-09-12 21:46 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2015-09-12 21:46 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2015-09-12 21:46 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2015-09-12 21:46 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2015-09-12 21:46 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2015-09-12 21:46 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2015-09-12 21:46 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2015-09-12 21:46 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2015-09-12 21:46 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2015-09-12 21:46 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2015-09-12 21:46 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2015-09-12 21:46 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2015-09-12 21:45 - 2015-09-12 21:46 - 00010009 _____ C:\Windows\DirectX.log 2015-09-12 21:45 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2015-09-12 21:45 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2015-09-12 21:45 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2015-09-12 21:45 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2015-09-12 21:07 - 2015-09-12 21:07 - 00929360 _____ (Google Inc.) C:\Users\xhimo\Downloads\googledrivesync (1).exe 2015-09-12 20:24 - 2015-09-12 20:24 - 00000000 ____D C:\Users\xhimo\AppData\Local\RelicHuntersZero 2015-09-12 20:22 - 2015-09-12 20:22 - 00000000 ____D C:\Users\xhimo\AppData\Local\Steam 2015-09-12 20:22 - 2015-09-12 20:22 - 00000000 ____D C:\Users\xhimo\AppData\Local\CEF 2015-09-12 20:20 - 2015-09-12 20:20 - 00000944 _____ C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\League of Legends.lnk 2015-09-12 20:20 - 2015-09-12 20:20 - 00000654 _____ C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam.lnk 2015-09-12 20:19 - 2015-09-12 20:19 - 00000000 ____D C:\ProgramData\Riot Games 2015-09-12 20:13 - 2015-09-12 20:13 - 00000000 ____D C:\Users\xhimo\Tracing 2015-09-12 20:12 - 2015-09-13 18:22 - 00000000 ____D C:\Users\xhimo\AppData\Roaming\Skype 2015-09-12 20:12 - 2015-09-12 20:12 - 00000000 ____D C:\Users\xhimo\AppData\Local\Skype 2015-09-12 20:11 - 2015-09-12 20:11 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-09-12 20:11 - 2015-09-12 20:11 - 00000000 ____D C:\ProgramData\Skype 2015-09-12 20:11 - 2015-09-12 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-09-12 20:10 - 2015-09-12 20:10 - 01506832 _____ (Skype Technologies S.A.) C:\Users\xhimo\Downloads\SkypeSetup.exe 2015-09-12 19:10 - 2015-09-12 19:10 - 00000000 ____D C:\Users\xhimo\AppData\Local\PackageStaging 2015-09-12 19:05 - 2015-09-12 19:05 - 00000542 _____ C:\Windows\PFRO.log 2015-09-12 19:04 - 2015-09-12 19:04 - 00016148 _____ C:\Windows\system32\DESKTOP-PQN118B_xhimo_HistoryPrediction.bin 2015-09-12 18:49 - 2015-09-12 18:49 - 00000000 ____D C:\Users\xhimo\AppData\Roaming\AVAST Software 2015-09-12 18:48 - 2015-09-12 18:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2015-09-12 18:47 - 2015-09-12 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-09-12 18:46 - 2015-09-12 18:46 - 00004006 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2015-09-12 18:46 - 2015-09-12 18:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-09-12 18:44 - 2015-09-13 03:52 - 00001078 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-09-12 18:44 - 2015-09-12 20:40 - 00000000 ____D C:\Users\xhimo\AppData\Local\Google 2015-09-12 18:44 - 2015-09-12 18:48 - 00000000 ____D C:\Program Files (x86)\Google 2015-09-12 18:44 - 2015-09-12 18:47 - 00004136 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-12 18:44 - 2015-09-12 18:47 - 00003904 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-09-12 18:44 - 2015-09-12 18:47 - 00001074 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-09-12 18:44 - 2015-09-12 18:44 - 00929360 _____ (Google Inc.) C:\Users\xhimo\Downloads\googledrivesync.exe 2015-09-12 18:42 - 2015-09-12 18:46 - 01048344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys 2015-09-12 18:42 - 2015-09-12 18:42 - 00447944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2015-09-12 18:42 - 2015-09-12 18:42 - 00378880 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2015-09-12 18:42 - 2015-09-12 18:42 - 00274808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2015-09-12 18:42 - 2015-09-12 18:42 - 00150672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2015-09-12 18:42 - 2015-09-12 18:42 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2015-09-12 18:42 - 2015-09-12 18:42 - 00090968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2015-09-12 18:42 - 2015-09-12 18:42 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2015-09-12 18:42 - 2015-09-12 18:42 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr 2015-09-12 18:42 - 2015-09-12 18:42 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2015-09-12 18:39 - 2015-09-12 18:39 - 00000000 ____D C:\Program Files\AVAST Software 2015-09-12 18:37 - 2015-09-12 18:37 - 00000000 ____D C:\ProgramData\AVAST Software 2015-09-12 18:36 - 2015-09-12 18:36 - 05481344 _____ (Avast Software s.r.o.) C:\Users\xhimo\Downloads\avast_free_antivirus_setup_online_dobreprogramy.exe 2015-09-12 18:32 - 2015-06-27 01:27 - 00129472 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpnk.sys 2015-09-12 18:30 - 2015-06-12 17:51 - 00037184 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys 2015-09-12 18:27 - 2015-09-12 18:27 - 00071122 _____ C:\Windows\DPINST.LOG 2015-09-12 18:03 - 2015-09-12 18:03 - 00000000 ____D C:\Users\xhimo\AppData\Local\NVIDIA Corporation 2015-09-12 18:02 - 2015-09-12 18:02 - 00000000 ____D C:\Users\xhimo\AppData\Local\NVIDIA 2015-09-12 18:01 - 2015-09-12 19:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-09-12 18:01 - 2015-09-12 18:01 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies 2015-09-12 18:01 - 2015-08-18 10:48 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2015-09-12 18:01 - 2015-08-18 10:48 - 01514528 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2015-09-12 18:01 - 2015-08-18 10:48 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2015-09-12 18:01 - 2015-08-18 10:48 - 01278920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2015-09-12 18:01 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2015-09-12 18:01 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2015-09-12 18:01 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2015-09-12 18:01 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2015-09-12 18:00 - 2015-08-17 23:43 - 00608048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2015-09-12 17:59 - 2015-09-12 17:59 - 00000000 ____D C:\Windows\LastGood.Tmp 2015-09-12 17:58 - 2015-08-18 10:48 - 31515256 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 24200312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 22992048 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 18634264 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 17559240 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 16128576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 15294072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 14497760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 13916600 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 13828032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 12896432 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-09-12 17:58 - 2015-08-18 10:48 - 11272048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 11209376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 04245808 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 03987760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 03209736 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 02824176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 01908528 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434181.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 01556656 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434181.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 00945456 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 00908592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 00903472 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 00870008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2015-09-12 17:58 - 2015-08-18 10:48 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2015-09-12 17:58 - 2015-08-18 10:48 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2015-09-12 17:57 - 2015-09-12 19:08 - 00000000 ____D C:\Users\xhimo\AppData\Local\Razer 2015-09-12 17:57 - 2015-09-12 18:20 - 00000000 ____D C:\Users\xhimo\AppData\Local\SteelSeries Engine 3 Client 2015-09-12 17:57 - 2015-09-12 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries 2015-09-12 17:56 - 2015-09-12 18:35 - 00000000 ____D C:\ProgramData\Razer 2015-09-12 17:56 - 2015-09-12 18:31 - 00000000 ____D C:\Program Files (x86)\Razer 2015-09-12 17:56 - 2015-09-12 17:56 - 00000000 ____D C:\Users\admin 2015-09-12 17:56 - 2015-09-12 17:56 - 00000000 ____D C:\ProgramData\SteelSeries 2015-09-12 17:56 - 2015-09-12 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2015-09-12 17:56 - 2015-09-12 17:56 - 00000000 ____D C:\Program Files\SteelSeries 2015-09-12 17:56 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2015-09-12 17:56 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2015-09-12 17:56 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2015-09-12 17:56 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2015-09-12 17:55 - 2015-09-12 17:55 - 00000000 ____D C:\NVIDIA 2015-09-12 17:54 - 2015-09-12 17:54 - 00004608 _____ C:\Windows\SECOH-QAD.exe 2015-09-12 17:54 - 2015-09-12 17:54 - 00003584 _____ C:\Windows\SECOH-QAD.dll 2015-09-12 17:52 - 2015-09-12 17:52 - 00000000 ____D C:\Users\xhimo\AppData\Roaming\WinRAR 2015-09-12 17:52 - 2015-09-12 17:52 - 00000000 ____D C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-09-12 17:52 - 2015-09-12 17:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-09-12 17:52 - 2015-09-12 17:52 - 00000000 ____D C:\Program Files\WinRAR 2015-09-12 17:51 - 2015-09-12 17:51 - 05643069 _____ C:\Users\xhimo\Downloads\KMSpico.10.0.10240 Aktywator Windows 10 Polacam!!!.rar 2015-09-12 17:45 - 2015-09-12 17:45 - 00000000 _____ C:\Recovery.txt 2015-09-12 17:43 - 2015-09-12 17:44 - 00000000 ____D C:\Windows.old 2015-09-12 17:43 - 2015-09-12 17:43 - 00028672 ___SH C:\Windows\system32\config\BCD-Template.LOG 2015-09-12 17:43 - 2015-09-12 17:43 - 00008192 _____ C:\Windows\system32\config\userdiff 2015-09-12 17:43 - 2015-09-12 16:59 - 00000000 ___DC C:\Windows\Panther 2015-09-12 17:42 - 2015-09-12 17:42 - 00000000 ____D C:\Windows\Setup 2015-09-12 17:40 - 2015-09-12 17:40 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2015-09-12 17:40 - 2015-09-12 17:40 - 00000000 ____D C:\Windows\OCR 2015-09-12 17:40 - 2015-09-12 17:40 - 00000000 ____D C:\Program Files\Reference Assemblies 2015-09-12 17:40 - 2015-09-12 17:40 - 00000000 ____D C:\Program Files\MSBuild 2015-09-12 17:40 - 2015-09-12 17:40 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2015-09-12 17:40 - 2015-09-12 17:40 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-09-12 17:39 - 2015-09-13 18:10 - 00812520 _____ C:\Windows\system32\perfh015.dat 2015-09-12 17:39 - 2015-09-13 18:10 - 00156054 _____ C:\Windows\system32\perfc015.dat 2015-09-12 17:39 - 2015-09-12 17:38 - 00342912 _____ C:\Windows\system32\perfi015.dat 2015-09-12 17:39 - 2015-09-12 17:38 - 00041236 _____ C:\Windows\system32\perfd015.dat 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\SysWOW64\winrm 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\SysWOW64\WCN 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\SysWOW64\sysprep 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\SysWOW64\pl 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\SysWOW64\0409 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\winrm 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\WCN 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\slmgr 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\pl 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\0409 2015-09-12 17:38 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\DigitalLocker 2015-09-12 17:34 - 2015-09-13 01:53 - 00001189 _____ C:\Windows\DtcInstall.log 2015-09-12 17:34 - 2015-07-10 13:01 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-09-12 17:34 - 2015-07-10 13:01 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-09-12 17:33 - 2015-09-12 17:45 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2015-09-12 17:33 - 2015-09-12 17:30 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll 2015-09-12 17:33 - 2015-09-12 17:30 - 00215943 _____ C:\Windows\SysWOW64\dssec.dat 2015-09-12 17:33 - 2015-09-12 17:30 - 00215943 _____ C:\Windows\system32\dssec.dat 2015-09-12 17:33 - 2015-09-12 17:30 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll 2015-09-12 17:33 - 2015-09-12 17:30 - 00017463 _____ C:\Windows\system32\Drivers\etc\services 2015-09-12 17:33 - 2015-09-12 17:30 - 00015462 _____ C:\Windows\system32\OEMDefaultAssociations.xml 2015-09-12 17:33 - 2015-09-12 17:30 - 00008798 _____ C:\Windows\SysWOW64\icrav03.rat 2015-09-12 17:33 - 2015-09-12 17:30 - 00008798 _____ C:\Windows\system32\icrav03.rat 2015-09-12 17:33 - 2015-09-12 17:30 - 00003683 _____ C:\Windows\system32\Drivers\etc\lmhosts.sam 2015-09-12 17:33 - 2015-09-12 17:30 - 00001988 _____ C:\Windows\SysWOW64\ticrf.rat 2015-09-12 17:33 - 2015-09-12 17:30 - 00001988 _____ C:\Windows\system32\ticrf.rat 2015-09-12 17:33 - 2015-09-12 17:30 - 00001358 _____ C:\Windows\system32\Drivers\etc\protocol 2015-09-12 17:33 - 2015-09-12 17:30 - 00000858 _____ C:\Windows\system32\DefaultQuestions.json 2015-09-12 17:33 - 2015-09-12 17:30 - 00000741 _____ C:\Windows\SysWOW64\NOISE.DAT 2015-09-12 17:33 - 2015-09-12 17:30 - 00000741 _____ C:\Windows\system32\NOISE.DAT 2015-09-12 17:33 - 2015-09-12 17:30 - 00000407 _____ C:\Windows\system32\Drivers\etc\networks 2015-09-12 17:33 - 2015-09-12 17:30 - 00000219 _____ C:\Windows\system.ini 2015-09-12 17:33 - 2015-09-12 17:30 - 00000092 _____ C:\Windows\win.ini 2015-09-12 17:32 - 2015-09-13 18:01 - 00000000 ____D C:\Windows\system32\sru 2015-09-12 17:32 - 2015-09-13 04:01 - 00000000 ____D C:\Windows\appcompat 2015-09-12 17:32 - 2015-09-13 01:55 - 00000000 ____D C:\Windows\CSC 2015-09-12 17:32 - 2015-09-13 01:55 - 00000000 ____D C:\Program Files\Windows NT 2015-09-12 17:32 - 2015-09-13 01:53 - 00000000 ____D C:\Windows\system32\Sysprep 2015-09-12 17:32 - 2015-09-12 21:05 - 00000000 ____D C:\Windows\AppReadiness 2015-09-12 17:32 - 2015-09-12 18:42 - 00000000 ____D C:\Windows\system32\WinBioDatabase 2015-09-12 17:32 - 2015-09-12 17:40 - 00000000 ____D C:\Windows\SysWOW64\MUI 2015-09-12 17:32 - 2015-09-12 17:40 - 00000000 ____D C:\Windows\system32\MUI 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ___SD C:\Windows\SysWOW64\F12 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ___SD C:\Windows\system32\F12 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ___SD C:\Windows\system32\dsc 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ___SD C:\Windows\system32\DiagSvcs 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\SysWOW64\setup 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\SysWOW64\oobe 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\SysWOW64\Dism 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\SysWOW64\Com 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\WinBioPlugIns 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\SystemResetPlatform 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\setup 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\oobe 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\migwiz 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\Dism 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\system32\Com 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\PolicyDefinitions 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\IME 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Program Files\Windows Journal 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Program Files\Windows Defender 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Program Files\Common Files\System 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2015-09-12 17:32 - 2015-09-12 17:38 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 __RSD C:\Windows\Media 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 __RSD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 __RSD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 __RHD C:\Users\Public\Libraries 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___SD C:\Windows\SysWOW64\Nui 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___SD C:\Windows\system32\Nui 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___RD C:\Windows\Offline Web Pages 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___RD C:\Windows\DesktopTileResources 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ___HD C:\Windows\ELAMBKUP 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\zh-HK 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\WinMetadata 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\uk-UA 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\tr-TR 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\th-TH 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\sr-Latn-RS 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\sr-Latn-CS 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\sppui 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\sl-SI 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\sk-SK 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\ro-RO 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\Recovery 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\MSDRM 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\migwiz 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\lv-LV 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\lt-LT 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\InstallShield 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\icsxml 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\hr-HR 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\he-IL 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\fr-CA 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\et-EE 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\es-MX 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\en-GB 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\downlevel 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\Bthprops 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\bg-BG 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\ar-SA 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\SysWOW64\AdvancedInstallers 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\zh-HK 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\WinMetadata 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\uk-UA 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\tr-TR 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\th-TH 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\sr-Latn-RS 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\sr-Latn-CS 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\sppui 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\sl-SI 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\sk-SK 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\SecureBootUpdates 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\ro-RO 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\Recovery 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\MsDtc 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\MSDRM 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\MailContactsCalendarSync 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\lv-LV 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\lt-LT 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\icsxml 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\ias 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\hr-HR 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\he-IL 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\fr-CA 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\et-EE 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\es-MX 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\en-GB 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\downlevel 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\Bthprops 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\bg-BG 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\ar-SA 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\appraiser 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system32\AdvancedInstallers 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\system\Speech 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\ShellNew 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\Registration 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\Provisioning 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\L2Schemas 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\Cursors 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Windows\addins 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Program Files\Windows Portable Devices 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Program Files\Windows Multimedia Platform 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Program Files\Common Files\Services 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices 2015-09-12 17:32 - 2015-09-12 17:33 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 __SHD C:\Program Files\Windows Sidebar 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 __RHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ___SD C:\Windows\SysWOW64\Configuration 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ___SD C:\Windows\system32\Configuration 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ___SD C:\Program Files\WindowsPowerShell 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ___SD C:\Program Files (x86)\WindowsPowerShell 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\Web 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\Vss 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\tracing 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\TAPI 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\WindowsPowerShell 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\sru 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\spp 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\Speech_OneCore 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\Speech 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\SMI 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\restore 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\RasToast 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\ras 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\networklist 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\NDF 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\MsDtc 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\Licenses 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\Ipmi 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\InputMethod 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\inetsrv 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\IME 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\FxsTmp 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SysWOW64\AppLocker 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SystemResources 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\winevt 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\WindowsPowerShell 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\spp 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\spool 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\Speech_OneCore 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\Speech 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\restore 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\RasToast 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\ras 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\ProximityToast 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\PointOfService 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\networklist 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\NDF 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\Macromed 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\Licenses 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\Ipmi 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\InputMethod 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\inetsrv 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\IME 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\GroupPolicy 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\config\Journal 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\AppLocker 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\System 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\Speech_OneCore 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\Speech 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SKB 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\security 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\schemas 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\SchCache 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\Resources 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\PLA 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\Performance 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\LiveKernelReports 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\InputMethod 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\Globalization 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\Branding 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\ProgramData\Comms 2015-09-12 17:32 - 2015-09-12 17:32 - 00000000 ____D C:\Program Files (x86)\Windows NT 2015-09-12 17:32 - 2015-09-12 17:09 - 00000000 ____D C:\Windows\Help 2015-09-12 17:32 - 2015-09-12 17:03 - 00000000 ___RD C:\Windows\PurchaseDialog 2015-09-12 17:32 - 2015-09-12 17:03 - 00000000 ___RD C:\Windows\PrintDialog 2015-09-12 17:32 - 2015-09-12 17:03 - 00000000 ___RD C:\Windows\MiracastView 2015-09-12 17:32 - 2015-09-12 17:03 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2015-09-12 17:32 - 2015-09-12 16:58 - 00000000 ____D C:\Windows\rescache 2015-09-12 17:32 - 2015-09-12 16:58 - 00000000 ____D C:\ProgramData\USOPrivate 2015-09-12 17:32 - 2015-09-12 16:57 - 00000000 ____D C:\Windows\system32\FxsTmp 2015-09-12 17:24 - 2015-09-12 16:59 - 00000000 ____D C:\Windows\CbsTemp 2015-09-12 17:16 - 2015-09-13 01:55 - 00000000 __RHD C:\Users\Default 2015-09-12 17:16 - 2015-09-12 19:05 - 00131072 ___SH C:\Windows\system32\config\BBI 2015-09-12 17:16 - 2015-09-12 17:38 - 00000000 ____D C:\Windows\servicing 2015-09-12 17:16 - 2015-09-12 17:32 - 00000000 ____D C:\Windows\system32\SMI 2015-09-12 17:16 - 2015-09-12 17:16 - 00000000 ___HD C:\$Windows.~BT 2015-09-12 17:16 - 2015-09-12 16:55 - 00032768 ___SH C:\Windows\system32\config\ELAM 2015-09-12 17:16 - 2015-07-10 11:11 - 00000164 _____ C:\Windows\system32\config\FP 2015-09-12 17:11 - 2015-09-12 17:12 - 80856088 _____ C:\Users\xhimo\Downloads\SteelSeriesEngine3.4.4.1Setup.exe 2015-09-12 17:11 - 2015-09-12 17:11 - 22528920 _____ (Razer Inc.) C:\Users\xhimo\Downloads\Razer_Synapse_Framework_V1.18.21.27405.exe 2015-09-12 17:10 - 2015-09-13 18:03 - 00000000 ____D C:\ProgramData\NVIDIA 2015-09-12 17:10 - 2015-09-12 18:01 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2015-09-12 17:09 - 2015-09-12 18:03 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-09-12 17:09 - 2015-09-12 18:01 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2015-09-12 17:09 - 2015-09-12 17:10 - 282835496 _____ (NVIDIA Corporation) C:\Users\xhimo\Downloads\341.81-desktop-win10-64bit-international.exe 2015-09-12 17:09 - 2015-09-12 17:09 - 00000000 ____D C:\Users\xhimo\AppData\Roaming\Macromedia 2015-09-12 17:09 - 2015-08-18 10:48 - 00072880 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2015-09-12 17:09 - 2015-08-18 10:48 - 00060720 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2015-09-12 17:09 - 2015-08-18 02:07 - 06783280 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-09-12 17:09 - 2015-08-18 02:07 - 03522168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-09-12 17:09 - 2015-08-18 02:07 - 02558768 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-09-12 17:09 - 2015-08-18 02:07 - 00933168 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-09-12 17:09 - 2015-08-18 02:07 - 00385144 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-09-12 17:09 - 2015-08-18 02:07 - 00062768 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-09-12 17:09 - 2015-08-18 02:06 - 05147024 _____ C:\Windows\system32\nvcoproc.bin 2015-09-12 17:08 - 2015-09-12 17:08 - 01907400 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434174.dll 2015-09-12 17:08 - 2015-09-12 17:08 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434174.dll 2015-09-12 17:08 - 2015-09-12 17:08 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2015-09-12 17:08 - 2015-09-12 17:08 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2015-09-12 17:08 - 2015-09-12 17:08 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2015-09-12 17:08 - 2015-08-18 10:48 - 00026155 _____ C:\Windows\system32\nvinfo.pb 2015-09-12 17:07 - 2015-09-13 18:10 - 01836100 _____ C:\Windows\system32\PerfStringBackup.INI 2015-09-12 17:07 - 2015-09-13 02:33 - 00000000 ___RD C:\Users\xhimo\OneDrive 2015-09-12 17:07 - 2015-09-12 17:07 - 00002378 _____ C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-09-12 17:07 - 2014-10-21 20:30 - 00027951 _____ C:\Users\xhimo\OneDrive\Dokumenty\Prezentacja 4.pptx 2015-09-12 17:07 - 2014-10-21 20:27 - 00027951 _____ C:\Users\xhimo\OneDrive\Dokumenty\Prezentacja 3.pptx 2015-09-12 17:07 - 2014-10-21 20:26 - 00027951 _____ C:\Users\xhimo\OneDrive\Dokumenty\Prezentacja.pptx 2015-09-12 17:07 - 2014-10-21 20:26 - 00027951 _____ C:\Users\xhimo\OneDrive\Dokumenty\Prezentacja 2.pptx 2015-09-12 17:07 - 2014-10-21 20:26 - 00027951 _____ C:\Users\xhimo\OneDrive\Dokumenty\Prezentacja 1.pptx 2015-09-12 17:06 - 2015-09-12 17:06 - 00000000 ____D C:\Users\xhimo\AppData\Local\MicrosoftEdge 2015-09-12 17:06 - 2015-09-12 17:06 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2015-09-12 17:05 - 2015-09-12 17:07 - 00000000 ____D C:\Users\xhimo\AppData\Local\Comms 2015-09-12 17:03 - 2015-09-12 17:03 - 00000000 ____D C:\Users\xhimo\AppData\Local\Publishers 2015-09-12 17:02 - 2015-09-13 04:45 - 00000000 ____D C:\Users\xhimo 2015-09-12 17:02 - 2015-09-13 03:15 - 00000000 ____D C:\Users\xhimo\AppData\Local\VirtualStore 2015-09-12 17:02 - 2015-09-12 21:00 - 00000000 ____D C:\Users\xhimo\AppData\Local\Packages 2015-09-12 17:02 - 2015-09-12 17:33 - 00000000 __RSD C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2015-09-12 17:02 - 2015-09-12 17:33 - 00000000 ___RD C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-09-12 17:02 - 2015-09-12 17:33 - 00000000 ___RD C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-09-12 17:02 - 2015-09-12 17:33 - 00000000 ____D C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-09-12 17:02 - 2015-09-12 17:02 - 00016148 _____ C:\Windows\system32\DESKTOP-PQN118B_defaultuser0_HistoryPrediction.bin 2015-09-12 17:02 - 2015-09-12 17:02 - 00000020 ___SH C:\Users\xhimo\ntuser.ini 2015-09-12 17:02 - 2015-09-12 17:02 - 00000000 _SHDL C:\Users\xhimo\Ustawienia lokalne 2015-09-12 17:02 - 2015-09-12 17:02 - 00000000 _SHDL C:\Users\xhimo\Szablony 2015-09-12 17:02 - 2015-09-12 17:02 - 00000000 _SHDL C:\Users\xhimo\Moje dokumenty 2015-09-12 17:02 - 2015-09-12 17:02 - 00000000 _SHDL C:\Users\xhimo\Menu Start 2015-09-12 17:02 - 2015-09-12 17:02 - 00000000 _SHDL C:\Users\xhimo\Dane aplikacji 2015-09-12 17:02 - 2015-09-12 17:02 - 00000000 _SHDL C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2015-09-12 17:02 - 2015-09-12 17:02 - 00000000 _SHDL C:\Users\xhimo\AppData\Local\Historia 2015-09-12 17:02 - 2015-09-12 17:02 - 00000000 _SHDL C:\Users\xhimo\AppData\Local\Dane aplikacji 2015-09-12 17:02 - 2015-09-12 17:02 - 00000000 ___RD C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-09-12 17:02 - 2015-09-12 17:02 - 00000000 ____D C:\Users\xhimo\AppData\Roaming\Adobe 2015-09-12 17:02 - 2015-09-12 17:02 - 00000000 ____D C:\Users\xhimo\AppData\Local\TileDataLayer 2015-09-12 16:58 - 2015-09-13 18:04 - 00000275 _____ C:\Windows\WindowsUpdate.log 2015-09-12 16:58 - 2015-09-12 16:58 - 00000000 ____D C:\ProgramData\USOShared 2015-09-12 16:57 - 2015-07-10 12:59 - 02718208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2015-09-12 16:10 - 2015-09-12 17:45 - 00000000 ___HD C:\$SysReset 2015-09-07 23:33 - 2015-08-19 06:50 - 00609592 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2015-09-04 04:20 - 2015-09-04 04:20 - 00042672 _____ (SteelSeries ApS) C:\Windows\system32\Drivers\sshid.sys 2015-08-20 23:21 - 2015-06-17 18:10 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll 2015-08-20 23:21 - 2015-06-17 18:10 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-08-20 23:21 - 2015-06-17 18:10 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2015-08-20 23:21 - 2015-05-29 21:07 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll 2015-08-20 23:21 - 2015-05-29 21:07 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-08-20 23:21 - 2015-05-29 21:07 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2015-08-20 15:25 - 2015-07-25 08:29 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2015-08-20 15:25 - 2015-07-25 06:54 - 04047288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2015-08-20 15:20 - 2015-07-22 05:52 - 00988672 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 72121872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2015-08-20 15:11 - 2015-08-20 15:11 - 14057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 13119736 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 12956576 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 07172920 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 07096192 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 06251328 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat 2015-08-20 15:11 - 2015-08-20 15:11 - 05767904 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 05289944 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 04504320 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2015-08-20 15:11 - 2015-08-20 15:11 - 03299824 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 03271912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 03232448 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 03166128 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 03157796 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat 2015-08-20 15:11 - 2015-08-20 15:11 - 02926848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 02882408 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 02823280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 02813457 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2015-08-20 15:11 - 2015-08-20 15:11 - 02710784 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2015-08-20 15:11 - 2015-08-20 15:11 - 02562704 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 02491640 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 02423480 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 02190992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 02110600 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 02050184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01959608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01756928 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01599792 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01591064 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01508936 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01435144 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01395760 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01336528 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01334384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01211832 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01164336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01122640 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 01003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00998032 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00965032 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00962176 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00961016 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00923744 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00888472 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00874728 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00873464 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00749776 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00737136 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00699064 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00678184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00677672 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00645456 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00596120 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00574248 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00569440 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL 2015-08-20 15:11 - 2015-08-20 15:11 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00467160 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00448584 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00447720 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00445400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00358272 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00348088 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00341152 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00341152 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00340648 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00327456 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00296496 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00272720 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00259288 _____ (TODO: ) C:\Windows\system32\slprp64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00253904 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00253864 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00224256 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00221968 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00209536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00176968 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00172584 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00134200 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00122328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00110984 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00105312 _____ C:\Windows\system32\audioLibVc.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00088328 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00083632 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll 2015-08-20 15:11 - 2015-08-20 15:11 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2015-08-20 15:01 - 2015-08-20 15:01 - 00017280 _____ () C:\Windows\system32\Drivers\ASACPI.sys 2015-08-20 14:46 - 2015-08-20 14:46 - 01541080 _____ (NVIDIA Corporation) C:\Windows\system32\nvir3dgenco64.dll 2015-08-20 14:46 - 2015-08-20 14:46 - 00452056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstusb.sys ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2015-09-12 15:55 - 2015-07-10 13:01 - 00475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrptadm.dll 2015-09-12 15:55 - 2015-07-10 13:01 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDist.dll 2015-09-12 15:55 - 2015-07-10 13:00 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\SrpUxNativeSnapIn.dll 2015-09-12 15:55 - 2015-07-10 13:00 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll 2015-09-12 15:55 - 2015-07-10 13:00 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\AuditNativeSnapIn.dll 2015-09-12 15:55 - 2015-07-10 13:00 - 00147439 _____ C:\Windows\system32\gpedit.msc 2015-09-12 15:55 - 2015-07-10 13:00 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\auditpolmsg.dll 2015-09-12 15:55 - 2015-07-10 13:00 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\AuditPolicyGPInterop.dll 2015-09-12 15:55 - 2015-07-10 13:00 - 00043566 _____ C:\Windows\system32\rsop.msc 2015-09-12 15:54 - 2015-07-10 13:01 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SrpUxNativeSnapIn.dll 2015-09-12 15:54 - 2015-07-10 13:01 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppIdPolicyEngineApi.dll 2015-09-12 15:54 - 2015-07-10 13:01 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuditNativeSnapIn.dll 2015-09-12 15:54 - 2015-07-10 13:01 - 00096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpolmsg.dll 2015-09-12 15:54 - 2015-07-10 13:01 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuditPolicyGPInterop.dll 2015-09-12 15:54 - 2015-07-10 13:01 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll 2015-09-12 15:54 - 2015-07-10 13:01 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\srmclient.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00815104 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\srmscan.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00561152 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\AppIdPolicyEngineApi.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00361472 _____ (Microsoft Corporation) C:\Windows\system32\bdechangepin.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\srmstormod.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\srm.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00272384 _____ (Microsoft Corporation) C:\Windows\system32\ddputils.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\PresentationSettings.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\srmshell.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00138752 _____ (Microsoft Corporation) C:\Windows\system32\ddptrace.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\adrclient.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\baaupdate.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerWizardElev.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerWizard.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\srmlib.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\srmtrace.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\PrintBrmUi.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\ddp_ps.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\srm_ps.dll 2015-09-12 15:54 - 2015-07-10 13:00 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\qwinsta.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\qprocess.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\msg.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\quser.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\chgport.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\qappsrv.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\tskill.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\tsdiscon.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\tscon.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\rwinsta.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\logoff.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\chgusr.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\chglogon.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\reset.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\change.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\query.exe 2015-09-12 15:54 - 2015-07-10 13:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\BdeSysprep.dll 2015-09-12 15:53 - 2015-07-10 13:01 - 00577536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll 2015-09-12 15:53 - 2015-07-10 13:01 - 00453120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AdmTmpl.dll 2015-09-12 15:53 - 2015-07-10 13:01 - 00372224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll 2015-09-12 15:53 - 2015-07-10 13:01 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDistSh.dll 2015-09-12 15:53 - 2015-07-10 13:01 - 00165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgmts.dll 2015-09-12 15:53 - 2015-07-10 13:01 - 00147439 _____ C:\Windows\SysWOW64\gpedit.msc 2015-09-12 15:53 - 2015-07-10 13:01 - 00043566 _____ C:\Windows\SysWOW64\rsop.msc 2015-09-12 15:53 - 2015-07-10 13:00 - 01977856 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSvc.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00957440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmclient.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00833536 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00682496 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistCacheProvider.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00544768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys 2015-09-12 15:53 - 2015-07-10 13:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmscan.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00431104 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSh.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\cscobj.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srm.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\ddpchunk.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\PeerDist.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscobj.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmstormod.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\appmgmts.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistWSDDiscoProv.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistCleaner.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\fveprompt.exe 2015-09-12 15:53 - 2015-07-10 13:00 - 00147296 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00146389 _____ C:\Windows\system32\printmanagement.msc 2015-09-12 15:53 - 2015-07-10 13:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfg.exe 2015-09-12 15:53 - 2015-07-10 13:00 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmshell.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00120458 _____ C:\Windows\system32\secpol.msc 2015-09-12 15:53 - 2015-07-10 13:00 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00102912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adrclient.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmlib.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srmtrace.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistHttpTrans.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00052576 _____ (Microsoft Corporation) C:\Windows\system32\embeddedapplauncher.exe 2015-09-12 15:53 - 2015-07-10 13:00 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe 2015-09-12 15:53 - 2015-07-10 13:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistAD.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00041312 _____ (Microsoft Corporation) C:\Windows\system32\EmbeddedAppLauncherConfig.dll 2015-09-12 15:53 - 2015-07-10 13:00 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srm_ps.dll ==================== Pliki w katalogu głównym wybranych folderów ======= 2015-09-13 01:51 - 2015-09-13 01:51 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Niektóre pliki w TEMP: ==================== C:\Users\xhimo\AppData\Local\Temp\0Kraken0502DevProps.dll C:\Users\xhimo\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ================= (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2015-09-13 01:47 ==================== Koniec FRST.txt ============================[/spoiler] Shortcut.txt [spoiler]Rezultat skanowania skrótów użytkowników (x64) Wersja:13-09-2015 01 Uruchomiony przez xhimo (2015-09-13 18:34:15) Uruchomiony z C:\Users\xhimo\Downloads Tryb startu: Normal ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\01 - File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\03 - Documents.lnk -> C:\Users\xhimo\OneDrive\Dokumenty () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\04 - Downloads.lnk -> C:\Users\xhimo\Downloads () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\05 - Music.lnk -> C:\Users\xhimo\Music () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\06 - Pictures.lnk -> C:\Users\xhimo\OneDrive\Obrazy () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\07 - Videos.lnk -> C:\Users\xhimo\Videos () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu Places\10 - UserProfile.lnk -> C:\Users\xhimo () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Devices Flow.lnk -> C:\Windows\DevicesFlow\DevicesFlow.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiracastView.lnk -> C:\Windows\MiracastView\MiracastView.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrintDialog.lnk -> C:\Windows\PrintDialog\PrintDialog.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Co nowego w ostatniej wersji.lnk -> C:\Program Files\WinRAR\CoNowego.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Podręcznik RARa dla konsoli.lnk -> C:\Program Files\WinRAR\Rar.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Pomoc WinRARa.lnk -> C:\Program Files\WinRAR\WinRAR.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries\SteelSeries Engine 3\Uninstall SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\uninst.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk -> C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe (NVIDIA) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision Photo Viewer.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe (NVIDIA Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Drive.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software\Avast Free Antivirus.lnk -> C:\Program Files\AVAST Software\Avast\avastui.exe (AVAST Software) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\syswow64\odbcad32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk -> C:\Windows\System32\printmanagement.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\syswow64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\syswow64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\Links\Desktop.lnk -> C:\Users\xhimo\Desktop () Shortcut: C:\Users\xhimo\Links\Downloads.lnk -> C:\Users\xhimo\Downloads () Shortcut: C:\Users\xhimo\Links\Dysk Google.lnk -> C:\Users\xhimo\Dysk Google () Shortcut: C:\Users\xhimo\Desktop\Dysk Google.lnk -> C:\Users\xhimo\Dysk Google () Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\League of Legends.lnk -> E:\Riot Games\League of Legends\lol.launcher.exe () Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\xhimo\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam.lnk -> E:\Steam\Steam.exe (Valve Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Co nowego w ostatniej wersji.lnk -> C:\Program Files\WinRAR\CoNowego.txt () Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Podręcznik RARa dla konsoli.lnk -> C:\Program Files\WinRAR\Rar.txt () Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Pomoc WinRARa.lnk -> C:\Program Files\WinRAR\WinRAR.chm () Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\syswow64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\syswow64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\xhimo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () Shortcut: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc () Shortcut: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) Shortcut: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> -sta {C90FB8CA-3295-4462-A721-2935E83694BA} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries\SteelSeries Engine 3\SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS) -> -dataPath="C:\ProgramData\SteelSeries\SteelSeries Engine 3" -dbEnv=production ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS) -> -dataPath="C:\ProgramData\SteelSeries\SteelSeries Engine 3" -dbEnv=production -auto=true ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer\Razer Synapse\Razer Synapse.lnk -> C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Razer Inc.) -> -launch ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision preview pack 1.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe (NVIDIA Corporation) -> /show ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Docs.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google) -> --new_document ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Sheets.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google) -> --new_spreadsheet ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Slides.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google) -> --new_presentation ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk -> C:\Windows\System32\secpol.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1} ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} ShortcutWithArgument: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\xhimo\AppData\Roaming\Microsoft\Windows\SendTo\Skype.lnk -> C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.) -> /sendto: ShortcutWithArgument: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E} ShortcutWithArgument: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager ShortcutWithArgument: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System ShortcutWithArgument: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions ShortcutWithArgument: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAndFeatures ShortcutWithArgument: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0} ShortcutWithArgument: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1} ShortcutWithArgument: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0 ShortcutWithArgument: C:\Users\xhimo\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257} InternetURL: C:\Users\xhimo\Favorites\Bing.url -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255142 InternetURL: C:\Users\xhimo\Favorites\Links for Polska\Bezpieczeństwo w trybie online.url -> hxxp://go.microsoft.com/fwlink/?LinkId=142211 InternetURL: C:\Users\xhimo\Favorites\Links for Polska\Bezpieczny Internet.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129626 InternetURL: C:\Users\xhimo\Favorites\Links for Polska\Kultura.pl.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129625 InternetURL: C:\Users\xhimo\Favorites\Links for Polska\Pogodynka.pl — oficjalny serwis pogodowy IMGW.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129624 InternetURL: C:\Users\xhimo\Favorites\Links for Polska\Polska.pl.url -> hxxp://go.microsoft.com/fwlink/?LinkId=129622 InternetURL: C:\Users\xhimo\Favorites\Links\Galeria obiektów Web Slice.url -> hxxp://go.microsoft.com/fwlink/?LinkId=121315 InternetURL: C:\Users\xhimo\Favorites\Links\Sugerowane witryny.url -> hxxps://ieonline.microsoft.com/#ieslice ==================== Koniec Shortcut.txt ============================= [/spoiler] Addition.txt [spoiler]Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:13-09-2015 01 Uruchomiony przez xhimo (2015-09-13 18:33:17) Uruchomiony z C:\Users\xhimo\Downloads Windows 10 Pro (X64) (2015-09-12 15:00:32) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-428852305-4060775940-176336373-500 - Administrator - Disabled) Gość (S-1-5-21-428852305-4060775940-176336373-501 - Limited - Disabled) Konto domyślne (S-1-5-21-428852305-4060775940-176336373-503 - Limited - Disabled) xhimo (S-1-5-21-428852305-4060775940-176336373-1001 - Administrator - Enabled) => C:\Users\xhimo ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Aktualizacje NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.3.2225 - AVAST Software) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.) Google Drive (HKLM-x32\...\{12ADFB82-D5A3-43E4-B2F4-FCD9B690315B}) (Version: 1.24.9931.5480 - Google, Inc.) Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 341.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.81 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA Sterownik graficzny 341.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.81 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) Panel sterowania NVIDIA 341.81 (Version: 341.81 - NVIDIA Corporation) Hidden Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.27405 - Razer Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.) SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden Skype™ 7.10 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.10.101 - Skype Technologies S.A.) SteelSeries Engine 3.4.4.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.4.4.1 - SteelSeries ApS) WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-428852305-4060775940-176336373-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-428852305-4060775940-176336373-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\xhimo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-428852305-4060775940-176336373-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\xhimo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-428852305-4060775940-176336373-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\xhimo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-428852305-4060775940-176336373-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\xhimo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-428852305-4060775940-176336373-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\xhimo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-428852305-4060775940-176336373-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\xhimo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-428852305-4060775940-176336373-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\xhimo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-428852305-4060775940-176336373-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\xhimo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-428852305-4060775940-176336373-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\xhimo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncShell64.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-428852305-4060775940-176336373-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\xhimo\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64\FileSyncApi64.dll (Microsoft Corporation) ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2015-09-12 17:33 - 2015-09-12 17:30 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {13D0099A-F3E9-4883-BB2C-8241180939A1} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager Task: {15FF2603-5BA0-47B9-B849-FB2E585D9020} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation) Task: {2AA20353-9494-45E0-B571-1CBDE715F883} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation) Task: {3B23213B-C7C4-46E9-AC8B-7C254B92D940} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-07-10] (Microsoft Corporation) Task: {3F4A370D-AF2C-4849-8C6F-81F4793A5AD3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-12] (Google Inc.) Task: {5B166BAB-2C64-4A40-AFB7-DDA69E78283D} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance Task: {5F6137F5-A6C4-46B8-B174-1E40337899A2} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask Task: {6B9C7905-DEBF-48EA-B22A-8F31136C107A} - System32\Tasks\Microsoft\Windows\RetailDemo\CleanupOfflineContent Task: {7E3E68A9-DC7C-46A6-873E-8A6629006643} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation) Task: {854DF405-1A79-4C9B-AF44-42C5D62EFD19} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation) Task: {865DAC7A-30AC-49EC-9D7C-29453F6B731C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-12] (Google Inc.) Task: {9483939E-02C5-46F6-A9AC-8717BA5A60A2} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-12] (AVAST Software) Task: {B0EEDF0A-8827-4B12-83CA-BB2C3254F938} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr Task: {BF2FCDAF-E1F6-49E1-A572-D7B64908B816} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\Windows\SYSTEM32\OOBE\SETUPSQM.EXE [2015-07-10] (Microsoft Corporation) Task: {C665468C-8136-40E5-B779-5DA0FF04737E} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation) Task: {DE2780BD-7EF4-47D8-88EC-8539FFF8BE62} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation) Task: {FD1C68CC-C25E-4F8D-A731-7BE35F9105EC} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Załadowane moduły (filtrowane) ============== 2015-07-10 13:00 - 2015-07-10 13:00 - 00028160 _____ () C:\Windows\SYSTEM32\efsext.dll 2015-07-10 13:00 - 2015-07-10 13:00 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll 2015-09-12 17:09 - 2015-08-18 02:07 - 00115376 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-07-10 13:01 - 2015-07-10 13:01 - 00412672 _____ () C:\Windows\System32\diagtrack_win.dll 2015-06-23 21:11 - 2015-06-23 21:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2015-07-10 13:00 - 2015-07-10 13:00 - 02498296 _____ () C:\Windows\system32\CoreUIComponents.dll 2015-07-10 13:00 - 2015-07-10 13:00 - 02498296 _____ () C:\Windows\System32\CoreUIComponents.dll 2015-07-10 13:00 - 2015-07-10 18:34 - 02565984 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll 2015-07-10 13:00 - 2015-07-10 18:34 - 02104160 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentManagementSDK.dll 2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-07-10 13:00 - 2015-07-10 18:34 - 06579712 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-07-10 13:00 - 2015-07-10 18:34 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-07-10 13:00 - 2015-07-10 18:34 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-03-05 18:44 - 2015-03-05 18:44 - 00047616 _____ () C:\Program Files\SteelSeries\SteelSeries Engine 3\x2api.dll 2015-07-08 08:58 - 2015-07-08 08:58 - 00292352 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe 2015-07-10 13:00 - 2015-07-10 18:34 - 01784320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2015-09-12 19:28 - 2015-09-12 19:28 - 00049152 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.25.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll 2015-07-10 13:00 - 2015-07-10 13:00 - 00215352 _____ () c:\windows\system32\WerEtw.dll 2015-09-12 18:42 - 2015-09-12 18:42 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-09-12 18:41 - 2015-09-12 18:41 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-09-13 02:31 - 2015-09-13 02:31 - 02962944 _____ () C:\Program Files\AVAST Software\Avast\defs\15091205\algo.dll 2015-09-13 18:07 - 2015-09-13 18:07 - 02962944 _____ () C:\Program Files\AVAST Software\Avast\defs\15091300\algo.dll 2015-09-12 18:26 - 2015-09-13 18:04 - 00619840 _____ () C:\Users\xhimo\AppData\Local\Temp\0Kraken0502DevProps.dll 2015-09-12 18:45 - 2015-08-28 02:17 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libglesv2.dll 2015-09-12 18:45 - 2015-08-28 02:17 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\libegl.dll 2015-09-05 03:42 - 2015-09-05 03:42 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll 2015-09-13 18:04 - 2015-09-13 18:04 - 00098816 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32api.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00110080 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\pywintypes27.dll 2015-09-13 18:04 - 2015-09-13 18:04 - 00364544 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\pythoncom27.dll 2015-09-13 18:04 - 2015-09-13 18:04 - 00045568 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\_socket.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 01161216 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\_ssl.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00320512 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32com.shell.shell.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00713216 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\_hashlib.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 01176576 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\wx._core_.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00806400 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\wx._gdi_.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00816128 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\wx._windows_.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 01067008 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\wx._controls_.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00733184 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\wx._misc_.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00682496 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\pysqlite2._sqlite.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00087552 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\_ctypes.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00119808 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32file.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00108544 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32security.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00007168 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\hashobjs_ext.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00068096 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\usb_ext.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00167936 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32gui.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00018432 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32event.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00128512 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\_elementtree.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00127488 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\pyexpat.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00013824 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\common.time34.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00036864 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\_psutil_windows.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00038912 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32inet.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00011264 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32crypt.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00077312 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\wx._html2.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00027136 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\_multiprocessing.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00020480 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\_yappi.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00035840 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32process.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00686080 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\unicodedata.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00123392 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\wx._wizard.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00024064 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32pipe.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00010240 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\select.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00025600 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32pdh.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00525640 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\windows._lib_cacheinvalidation.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00017408 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32profile.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00022528 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\win32ts.pyd 2015-09-13 18:04 - 2015-09-13 18:04 - 00078848 _____ () C:\Users\xhimo\AppData\Local\Temp\_MEI49722\wx._animate.pyd 2015-09-12 18:42 - 2015-09-12 18:42 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-09-12 19:08 - 2014-11-26 03:12 - 40622592 _____ () C:\Users\xhimo\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll 2015-09-12 19:09 - 2014-11-26 03:12 - 00911360 _____ () C:\Users\xhimo\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll 2015-09-12 19:08 - 2014-11-26 03:12 - 00134144 _____ () C:\Users\xhimo\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll 2015-09-12 18:45 - 2015-08-28 02:17 - 16393032 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.85\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (filtrowane) ========= ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service" ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-428852305-4060775940-176336373-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\xhimo\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{52750629-b07e-47cf-ba20-abb49dfb5a2f}.jpg DNS Servers: 217.113.224.134 - 217.113.224.35 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows - funkcja włączona. ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe FirewallRules: [{E1F19D0D-7541-4896-9250-D0009F5645AD}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{E66F29BB-CAC7-47D8-A809-1323D3568C0B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{ECD28943-7490-4D97-8CBA-20A511A009C9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{872A1376-835B-42E7-AAF5-F52448E157A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{E44F01CD-91CE-4FC5-9187-4B9D48D31797}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{2BE49B70-C5B9-4075-8A6F-08CB4971144B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{8F1336E0-A4C6-44FD-8D17-D203FD074370}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{1C98D165-6F11-4943-A088-C9B12B4494A5}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{176C8A05-B436-4FCD-8255-EB8CB1C9A492}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{04F95C54-5A24-4938-87BD-06B7D6005604}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{CBE77A79-99CC-465B-AFD9-052D5B438F70}] => (Allow) E:\Steam\bin\steamwebhelper.exe FirewallRules: [{03CA8BE5-BAFD-4CB7-9449-5B8D3B6447C6}] => (Allow) E:\Steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{4D71211A-BC26-4BE1-BBD5-ECE726D29562}E:\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) E:\steam\steamapps\common\counter-strike global offensive\csgo.exe FirewallRules: [UDP Query User{5DA375AE-0815-4C17-89AC-E3E4953140FD}E:\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) E:\steam\steamapps\common\counter-strike global offensive\csgo.exe FirewallRules: [{BA274F53-5708-4158-85A2-369FEF38DFF4}] => (Allow) E:\Steam\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe FirewallRules: [{6B9C5BBD-D59C-471F-AE92-B0A1080108C0}] => (Allow) E:\Steam\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (09/13/2015 04:45:26 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIMOKPC) Description: Aktywacja aplikacji Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI nie powiodła się. Błąd: -2144927141. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (09/13/2015 01:40:12 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: AUDIODG.EXE, wersja: 10.0.10240.16384, sygnatura czasowa: 0x559f3a8d Nazwa modułu powodującego błąd: Kraken0502lfx.dll_unloaded, wersja: 6.2.9200.20789, sygnatura czasowa: 0x537eff9b Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000002ab980 Identyfikator procesu powodującego błąd: 0x276c Godzina uruchomienia aplikacji powodującej błąd: 0xAUDIODG.EXE0 Ścieżka aplikacji powodującej błąd: AUDIODG.EXE1 Ścieżka modułu powodującego błąd: AUDIODG.EXE2 Identyfikator raportu: AUDIODG.EXE3 Pełna nazwa pakietu powodującego błąd: AUDIODG.EXE4 Identyfikator aplikacji względem pakietu powodującego błąd: AUDIODG.EXE5 Error: (09/12/2015 08:40:45 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: HIMOKPC) Description: Działanie pakietu windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel zostało zakończone, ponieważ operacja wstrzymywania pakietu trwała zbyt długo. Error: (09/12/2015 07:04:46 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIMOKPC) Description: Aktywacja aplikacji Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI nie powiodła się. Błąd: -2144927141. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (09/12/2015 07:04:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIMOKPC) Description: Aktywacja aplikacji Microsoft.MicrosoftEdge_8wekyb3d8bbwe!MicrosoftEdge nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (09/12/2015 07:03:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: HIMOKPC) Description: Działanie pakietu Microsoft.MicrosoftEdge_20.10240.16384.0_neutral__8wekyb3d8bbwe+MicrosoftEdge#{facff0f8-5434-4297-af6e-e45d10507dd1} zostało zakończone, ponieważ operacja wstrzymywania pakietu trwała zbyt długo. Error: (09/12/2015 07:03:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: HIMOKPC) Description: Działanie pakietu Microsoft.MicrosoftEdge_20.10240.16384.0_neutral__8wekyb3d8bbwe+MicrosoftEdge#{ce61291c-0664-4e4b-b6e7-fd0c304ddb40} zostało zakończone, ponieważ operacja wstrzymywania pakietu trwała zbyt długo. Error: (09/12/2015 07:03:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: HIMOKPC) Description: Działanie pakietu Microsoft.MicrosoftEdge_20.10240.16384.0_neutral__8wekyb3d8bbwe+MicrosoftEdge#{b88b3931-c0ce-41e2-9f43-b1ca80f3f878} zostało zakończone, ponieważ operacja wstrzymywania pakietu trwała zbyt długo. Error: (09/12/2015 07:02:54 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIMOKPC) Description: Aktywacja aplikacji Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Error: (09/12/2015 07:02:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIMOKPC) Description: Aktywacja aplikacji Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa. Dziennik System: ============= Error: (09/13/2015 06:03:03 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 04:30:20 na 13.09.2015 było nieoczekiwane. Error: (09/13/2015 04:45:26 AM) (Source: DCOM) (EventID: 10010) (User: HIMOKPC) Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca Error: (09/13/2015 04:45:25 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Dostęp do danych użytkownika_Session1 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (09/13/2015 04:45:25 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Magazyn danych użytkownika_Session1 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (09/13/2015 04:45:25 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Dane kontaktowe_Session1 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (09/13/2015 04:45:25 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Synchronizuj hosta_Session1 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (09/13/2015 02:30:20 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 01:45:54 na 13.09.2015 było nieoczekiwane. Error: (09/13/2015 01:13:45 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: właściwe dla aplikacjiLokalnyAktywacja{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}ZARZĄDZANIE NTUSŁUGA LOKALNAS-1-5-19LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (09/13/2015 01:13:45 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: właściwe dla aplikacjiLokalnyAktywacja{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}ZARZĄDZANIE NTUSŁUGA LOKALNAS-1-5-19LocalHost (użycie LRPC)NiedostępnyNiedostępny Error: (09/13/2015 01:13:45 AM) (Source: DCOM) (EventID: 10016) (User: ZARZĄDZANIE NT) Description: właściwe dla aplikacjiLokalnyAktywacja{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}ZARZĄDZANIE NTUSŁUGA LOKALNAS-1-5-19LocalHost (użycie LRPC)NiedostępnyNiedostępny Microsoft Office: ========================= Error: (09/13/2015 04:45:26 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIMOKPC) Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2144927141 Error: (09/13/2015 01:40:12 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: AUDIODG.EXE10.0.10240.16384559f3a8dKraken0502lfx.dll_unloaded6.2.9200.20789537eff9bc000000500000000002ab980276c01d0ed847a11a321C:\Windows\system32\AUDIODG.EXEKraken0502lfx.dll608abeec-64d4-470d-bff2-9b6a71c3fbba Error: (09/12/2015 08:40:45 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: HIMOKPC) Description: windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel Error: (09/12/2015 07:04:46 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIMOKPC) Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2144927141 Error: (09/12/2015 07:04:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIMOKPC) Description: Microsoft.MicrosoftEdge_8wekyb3d8bbwe!MicrosoftEdge-2144927142 Error: (09/12/2015 07:03:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: HIMOKPC) Description: Microsoft.MicrosoftEdge_20.10240.16384.0_neutral__8wekyb3d8bbwe+MicrosoftEdge#{facff0f8-5434-4297-af6e-e45d10507dd1} Error: (09/12/2015 07:03:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: HIMOKPC) Description: Microsoft.MicrosoftEdge_20.10240.16384.0_neutral__8wekyb3d8bbwe+MicrosoftEdge#{ce61291c-0664-4e4b-b6e7-fd0c304ddb40} Error: (09/12/2015 07:03:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: HIMOKPC) Description: Microsoft.MicrosoftEdge_20.10240.16384.0_neutral__8wekyb3d8bbwe+MicrosoftEdge#{b88b3931-c0ce-41e2-9f43-b1ca80f3f878} Error: (09/12/2015 07:02:54 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIMOKPC) Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2144927142 Error: (09/12/2015 07:02:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HIMOKPC) Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2144927142 ==================== Statystyki pamięci =========================== Procesor: AMD Athlon(tm) 64 X2 Dual Core Processor 5600+ Procent pamięci w użyciu: 52% Całkowita pamięć fizyczna: 4095.55 MB Dostępna pamięć fizyczna: 1925.39 MB Całkowita pamięć wirtualna: 5503.55 MB Dostępna pamięć wirtualna: 2879.03 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:65.76 GB) (Free:42.99 GB) NTFS Drive d: (Muzyka i Grafika) (Fixed) (Total:99.51 GB) (Free:99 GB) NTFS Drive e: (Gry) (Fixed) (Total:300 GB) (Free:277.1 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: B307D1CB) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=99.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=300 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=65.8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================[/spoiler]
Zayfi komentarz 13 września 2015 komentarz 13 września 2015 (edytowane) Domyslną przegladarka jest Chrome. Zresetuj ustawienia Wyczyść Google Chrome: Ustawienia > karta Rozszerzenia > odinstaluj jakąkolwiek wtyczkę Ustawienia > karta Ustawienia > Pokaż ustawienia zaawansowane > zjedź na sam spód i uruchom opcję Zresetuj ustawienia przeglądarki. Zakładki i hasła nie zostaną naruszone. Ustawienia > karta Ustawienia > sekcja Wyszukiwanie > klik w Zarządzanie wyszukiwarkami > skasuj z listy wszystko oraz inne niedomyślne śmieci (o ile będą). Zresetuj cache wtyczek. W pasku adresów wpisz chrome://plugins i ENTER. Na liście wtyczek wybierz dowolną i kliknij Wyłącz. Następnie wtyczkę ponownie Włącz.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.