ADVERTISEMENT

FRST.txt

Sprawdzenie logów FRST i procesu WMI Provider Host w tle

Witam, proszę o sprawdzenie logów FRST jak i również sprawdzić działający proces w tle który widzę w menadżerze o nazwie "WMI Provider Host"


Download file - link to post

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-07-2017
Ran by Marcin (administrator) on DESKTOP-C6PBEUH (12-07-2017 00:40:47)
Running from C:\Users\Marcin\Downloads
Loaded Profiles: Marcin & Gość_1 (Available Profiles: Marcin & Gość_1)
Platform: Windows 10 Education Version 1703 (X64) Language: Angielski (Stany Zjednoczone)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Micro-Star International Co., Ltd.) C:\Windows\SysWOW64\MSIService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\IntelCpHeciSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\igfxEM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17054.14711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\igfxEM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\Dragon Gaming Center\Dragon Gaming Center.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.410_none_9e914f9d2d85dacb\TiWorker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] = & gt; C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] = & gt; C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8783616 2015-12-11] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] = & gt; " C:\Windows\system32\rundll32.exe " C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [HP Software Update] = & gt; C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKU\S-1-5-21-1927083698-1589502933-3373986345-1001\...\Run: [Steam] = & gt; C:\Program Files (x86)\Steam\steam.exe [3062048 2017-07-06] (Valve Corporation)
HKU\S-1-5-21-1927083698-1589502933-3373986345-1001\...\Run: [EADM] = & gt; C:\Program Files (x86)\Origin\Origin.exe [3048312 2017-06-15] (Electronic Arts)
HKU\S-1-5-21-1927083698-1589502933-3373986345-1001\...\Run: [DAEMON Tools Lite Automount] = & gt; C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4701888 2017-04-24] (Disc Soft Ltd)
HKU\S-1-5-21-1927083698-1589502933-3373986345-1001\...\Run: [HP ENVY 4500 series (NET)] = & gt; C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [3487240 2014-07-21] (Hewlett-Packard Development Company, LP)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{99eed587-eef8-417a-8cdf-d16ae626354b}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
BHO: Lync Browser Helper - & gt; {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - & gt; C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-07-07] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper - & gt; {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - & gt; C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-07-07] (Microsoft Corporation)
BHO-x32: Lync Browser Helper - & gt; {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - & gt; C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-06-17] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper - & gt; {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - & gt; C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-07-07] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-07-07] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-07-07] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-07-07] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-07-07] (Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - & gt; C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-02-28] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - & gt; C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-02-28] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp - & gt; C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-02-28] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf - & gt; C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-02-28] (Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - & gt; C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-05-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - & gt; C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-24] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-24] (Google Inc.)

Chrome:
=======
CHR HomePage: Default - & gt; about:blank
CHR StartupUrls: Default - & gt; " " , " hxxp://www.initialpage123.com/?z=caf76b03d45d70ec9b829b9g9z1t5w3q7g3q2b7tdz & from=amz & uid=ADATAXSP900NS38_2G2920002877 & type=hp "
CHR Profile: C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default [2017-07-12]
CHR Extension: (Prezentacje Google) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-05-24]
CHR Extension: (Dokumenty Google) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-24]
CHR Extension: (Dysk Google) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-24]
CHR Extension: (YouTube) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-24]
CHR Extension: (Arkusze Google) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-24]
CHR Extension: (AdBlock) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-26]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-24]
CHR Extension: (Adblock Pro) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2017-05-24]
CHR Extension: (Gmail) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-24]
CHR Extension: (Chrome Media Router) - C:\Users\Marcin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-08]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1536520 2017-05-09] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [4411592 2017-06-23] (Microsoft Corporation)
R3 cphs; C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\IntelCpHeciSvc.exe [285696 2017-03-21] (Intel Corporation)
S3 cplspcon; C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\IntelCpHDCPSvc.exe [463360 2017-03-21] (Intel Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-04-24] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [383016 2017-05-23] (EasyAntiCheat Ltd)
R2 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659592 2017-02-24] (Foxit Software Inc.)
R2 igfxCUIService2.0.0.0; C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\igfxCUIService.exe [324096 2017-03-21] (Intel Corporation)
R2 Micro Star SCM; C:\Windows\SysWOW64\MSIService.exe [160768 2009-07-09] (Micro-Star International Co., Ltd.) [File not signed]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-06-21] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-06-21] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-06-08] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [450168 2017-06-21] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2168208 2017-06-15] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3148184 2017-06-15] (Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-19] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [279104 2017-05-16] (Synaptics Incorporated)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AndnetBus; C:\Windows\System32\drivers\lgandnetbus64.sys [20992 2015-01-21] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (LG Electronics Inc.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2017-05-24] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2017-05-24] (Disc Soft Ltd)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [244744 2017-04-13] (Intel Corporation)
R3 igfx; C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4ac0038ddc82c1c6\igdkmd64.sys [11070432 2017-03-21] (Intel Corporation)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.)
R1 MpKsl7ddcb515; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BF82EDA1-2A1B-4064-8872-43AE03C91F6D}\MpKsl7ddcb515.sys [44928 2017-07-12] (Microsoft Corporation)
R3 Netwtw04; C:\Windows\System32\drivers\Netwtw04.sys [7218176 2017-03-18] (Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_9b7717e891662118\nvlddmkm.sys [14461344 2017-06-09] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-06-21] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48248 2017-06-21] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [57976 2017-06-21] (NVIDIA Corporation)
U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [779232 2016-08-04] (Realsil Semiconductor Corporation)
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [418784 2016-10-27] (Realsil Semiconductor Corporation)
S3 SDFRd; C:\Windows\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 sshid; C:\Windows\System32\drivers\sshid.sys [45928 2017-01-10] (SteelSeries ApS)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
R3 WINIO; C:\Program Files (x86)\MSI\Dragon Gaming Center\winio64.sys [15160 2010-06-07] ()

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-12 00:40 - 2017-07-12 00:41 - 00017823 _____ C:\Users\Marcin\Downloads\FRST.txt
2017-07-12 00:39 - 2017-07-12 00:39 - 02435584 _____ (Farbar) C:\Users\Marcin\Downloads\FRST64.exe
2017-07-11 21:40 - 2017-07-11 22:20 - 2124591029 _____ C:\Users\Gość_1\Downloads\Laurka-20170711T193517Z-001.zip
2017-07-11 21:40 - 2017-07-11 22:00 - 684903411 _____ C:\Users\Gość_1\Downloads\Laurka-20170711T193517Z-002.zip
2017-07-11 21:33 - 2017-07-11 21:33 - 00000000 ____D C:\Users\Gość_1\AppData\Roaming\WinRAR
2017-07-11 21:21 - 2017-07-11 21:34 - 681968705 _____ C:\Users\Gość_1\Downloads\Laurka-20170711T191209Z-002.zip
2017-07-11 21:13 - 2017-07-11 21:13 - 00000000 ____D C:\Users\Gość_1\Desktop\dla tesciowj
2017-07-11 21:13 - 2017-07-11 21:13 - 00000000 ____D C:\Users\Gość_1\Desktop\dla mamy
2017-07-11 00:47 - 2017-07-11 00:47 - 00028933 _____ C:\Users\Marcin\Downloads\przelew (1).pdf
2017-07-08 23:45 - 2017-07-08 23:45 - 00000000 ____D C:\Users\Gość_1\AppData\Roaming\Origin
2017-07-08 23:45 - 2017-07-08 23:45 - 00000000 ____D C:\Users\Gość_1\AppData\Local\Origin
2017-07-08 23:45 - 2017-07-08 23:45 - 00000000 ____D C:\Users\Gość_1\.QtWebEngineProcess
2017-07-08 23:45 - 2017-07-08 23:45 - 00000000 ____D C:\Users\Gość_1\.Origin
2017-07-08 19:55 - 2017-07-08 19:55 - 01202184 _____ (Adobe Systems Incorporated) C:\Users\Gość_1\Downloads\flashplayer26pp_xa_install.exe
2017-07-08 19:55 - 2017-07-08 19:55 - 00000000 ____D C:\Users\Gość_1\AppData\Local\Adobe
2017-07-08 18:47 - 2017-07-08 18:47 - 05377472 _____ C:\Users\Gość_1\Downloads\Tibia_Setup.exe
2017-07-08 12:25 - 2017-07-08 13:23 - 00000000 ____D C:\Users\Marcin\Documents\The Witcher 3
2017-07-08 12:25 - 2017-07-08 12:25 - 00000000 ____D C:\Users\Marcin\ansel
2017-07-08 12:20 - 2017-07-08 12:20 - 00000960 _____ C:\Users\Public\Desktop\The Witcher® 3 - Wild Hunt.lnk
2017-07-08 12:20 - 2017-07-08 12:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2017-07-08 12:09 - 2017-07-08 12:09 - 00000000 ____D C:\GOG Games
2017-07-06 19:26 - 2017-07-06 19:26 - 00028933 _____ C:\Users\Marcin\Downloads\przelew.pdf
2017-07-05 14:25 - 2017-07-05 14:25 - 00067018 _____ C:\Users\Marcin\Downloads\FAKTURA-F_30014889_06_17-KONTO_24613325.pdf
2017-07-05 14:25 - 2017-07-05 14:25 - 00065758 _____ C:\Users\Marcin\Downloads\FAKTURA-F_30192613_05_17-KONTO_24613325.pdf
2017-07-05 14:25 - 2017-07-05 14:25 - 00062304 _____ C:\Users\Marcin\Downloads\24613325_F_30474521_04_17_F.pdf
2017-07-05 13:16 - 2017-07-05 13:23 - 00000000 ____D C:\Users\Marcin\AppData\LocalLow\Daybreak Game Company
2017-07-05 13:16 - 2017-07-05 13:16 - 00000000 ____D C:\Users\Marcin\AppData\Local\SCE
2017-07-05 13:16 - 2017-07-05 13:16 - 00000000 ____D C:\Users\Marcin\AppData\Local\Daybreak Game Company
2017-07-04 11:06 - 2017-07-04 11:06 - 00275032 _____ C:\Users\Gość_1\Downloads\FV_07 2017.pdf
2017-07-04 11:01 - 2017-07-04 11:01 - 00000000 ____D C:\Users\Gość_1\AppData\Local\CEF
2017-07-03 14:07 - 2017-07-03 14:07 - 00000882 _____ C:\Users\Marcin\Desktop\PCSuite_contact_20170703T140713.csv
2017-07-03 14:06 - 2017-07-03 14:06 - 00000000 ____D C:\Users\Marcin\Documents\LG PC Suite
2017-07-03 13:20 - 2017-07-03 13:46 - 00000000 ____D C:\Users\Marcin\AppData\Roaming\LG Electronics
2017-07-03 13:19 - 2017-07-03 13:19 - 00000000 ____D C:\Users\Marcin\AppData\Local\LG Electronics
2017-07-03 13:19 - 2017-07-03 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG PC Suite
2017-07-03 13:18 - 2017-07-03 13:18 - 00000000 ____D C:\Program Files (x86)\LG Electronics
2017-06-30 17:04 - 2017-06-30 17:10 - 00000000 ____D C:\Users\Marcin\Desktop\justyna
2017-06-30 17:02 - 2017-06-30 17:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2017-06-30 13:34 - 2017-06-30 13:34 - 00000000 ____D C:\Windows\LastGood
2017-06-30 13:34 - 2017-06-21 09:07 - 00179320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2017-06-30 13:34 - 2017-06-21 09:07 - 00146552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2017-06-26 15:36 - 2017-06-26 15:36 - 00001040 _____ C:\Users\Public\Desktop\UltraISO.lnk
2017-06-26 15:36 - 2017-06-26 15:36 - 00000000 ____D C:\Users\Marcin\Documents\My ISO Files
2017-06-26 15:36 - 2017-06-26 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
2017-06-26 15:36 - 2017-06-26 15:36 - 00000000 ____D C:\Program Files (x86)\UltraISO
2017-06-26 11:45 - 2017-07-12 00:40 - 00000000 ____D C:\FRST
2017-06-21 12:16 - 2017-06-21 12:18 - 00000000 ____D C:\Users\Marcin\AppData\Roaming\IrfanView
2017-06-20 20:52 - 2017-06-20 20:52 - 00002213 _____ C:\Users\Public\Desktop\HP ENVY 4500 series.lnk
2017-06-20 20:52 - 2017-06-20 20:52 - 00000000 ____D C:\Users\Marcin\AppData\Roaming\HpUpdate
2017-06-20 20:52 - 2017-06-20 20:52 - 00000000 ____D C:\ProgramData\Visan
2017-06-20 20:52 - 2017-06-20 20:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-06-20 20:52 - 2017-06-20 20:52 - 00000000 ____D C:\ProgramData\HP Photo Creations
2017-06-20 20:52 - 2017-06-20 20:52 - 00000000 ____D C:\Program Files (x86)\HP Photo Creations
2017-06-20 20:52 - 2017-06-20 20:52 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2017-06-20 20:52 - 2014-07-21 16:31 - 00763912 ____N (Hewlett-Packard Development Company, LP) C:\Windows\system32\HPDiscoPMC511.dll
2017-06-20 20:51 - 2017-06-20 20:52 - 00000000 ____D C:\Program Files (x86)\HP
2017-06-20 20:51 - 2017-06-20 20:51 - 00000057 _____ C:\ProgramData\Ament.ini
2017-06-20 20:51 - 2017-06-20 20:51 - 00000000 ____D C:\ProgramData\HP
2017-06-20 20:51 - 2017-06-20 20:51 - 00000000 ____D C:\Program Files\HP
2017-06-20 20:50 - 2017-06-20 20:52 - 00000000 ____D C:\Users\Marcin\AppData\Local\HP
2017-06-20 20:11 - 2017-06-20 20:12 - 00000000 ____D C:\Users\Gość_1\AppData\Roaming\Foxit Software
2017-06-20 20:11 - 2017-06-20 20:11 - 00359992 _____ C:\Users\Gość_1\Documents\Warszawa, 04.pdf
2017-06-20 20:11 - 2017-06-20 20:11 - 00000000 ____D C:\Users\Gość_1\AppData\Local\MicrosoftEdge
2017-06-20 19:08 - 2017-06-20 19:08 - 00417010 _____ C:\Users\Gość_1\Downloads\Karta do głosowania_2017.pdf
2017-06-19 23:14 - 2017-06-19 23:14 - 00000000 ____D C:\Users\Gość_1\AppData\Local\Comms
2017-06-19 23:00 - 2017-07-04 11:01 - 00000000 ____D C:\Users\Gość_1\AppData\Local\NVIDIA Corporation
2017-06-19 22:59 - 2017-06-19 22:59 - 00002506 _____ C:\Users\Gość_1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-19 22:59 - 2017-06-19 22:59 - 00000000 ___RD C:\Users\Gość_1\OneDrive
2017-06-19 22:58 - 2017-07-11 21:07 - 00000000 ____D C:\Users\Gość_1\AppData\Local\CrashDumps
2017-06-19 22:58 - 2017-07-11 21:06 - 00000000 __SHD C:\Users\Gość_1\IntelGraphicsProfiles
2017-06-19 22:58 - 2017-07-09 02:26 - 00000000 ____D C:\Users\Gość_1
2017-06-19 22:58 - 2017-07-08 19:05 - 00000000 ____D C:\Users\Gość_1\AppData\Local\Packages
2017-06-19 22:58 - 2017-06-20 15:44 - 00000000 ____D C:\Users\Gość_1\AppData\Local\Google
2017-06-19 22:58 - 2017-06-20 15:37 - 00002302 _____ C:\Users\Gość_1\Desktop\Google Chrome.lnk
2017-06-19 22:58 - 2017-06-19 22:58 - 00000020 ___SH C:\Users\Gość_1\ntuser.ini
2017-06-19 22:58 - 2017-06-19 22:58 - 00000000 _SHDL C:\Users\Gość_1\Documents\My Pictures
2017-06-19 22:58 - 2017-06-19 22:58 - 00000000 ____D C:\Users\Gość_1\AppData\Roaming\Adobe
2017-06-19 22:58 - 2017-06-19 22:58 - 00000000 ____D C:\Users\Gość_1\AppData\Local\VirtualStore
2017-06-19 22:58 - 2017-06-19 22:58 - 00000000 ____D C:\Users\Gość_1\AppData\Local\TileDataLayer
2017-06-19 22:58 - 2017-06-19 22:58 - 00000000 ____D C:\Users\Gość_1\AppData\Local\Publishers
2017-06-19 22:58 - 2017-06-19 22:58 - 00000000 ____D C:\Users\Gość_1\AppData\Local\NVIDIA
2017-06-19 22:58 - 2017-06-19 22:58 - 00000000 ____D C:\Users\Gość_1\AppData\Local\DBG
2017-06-19 22:58 - 2017-06-19 22:58 - 00000000 ____D C:\Users\Gość_1\AppData\Local\ConnectedDevicesPlatform
2017-06-18 12:11 - 2017-06-18 12:11 - 00000000 ____D C:\Users\Marcin\AppData\Local\Tibia
2017-06-18 12:05 - 2017-06-18 12:19 - 00000000 ____D C:\Users\Marcin\AppData\Roaming\Tibia
2017-06-18 12:05 - 2016-12-21 13:38 - 06811648 _____ (CipSoft GmbH) C:\Users\Marcin\Desktop\Hexera.exe
2017-06-18 12:05 - 2016-12-17 03:46 - 02081670 _____ C:\Users\Marcin\Desktop\Tibia.dat
2017-06-18 12:05 - 2016-11-29 15:08 - 04064636 _____ C:\Users\Marcin\Desktop\Tibia.pic
2017-06-18 12:05 - 2016-11-29 14:47 - 184719314 _____ C:\Users\Marcin\Desktop\Tibia.spr
2017-06-16 02:11 - 2017-06-16 02:11 - 00000000 ____D C:\Users\Marcin\AppData\Local\PAYDAY 2
2017-06-16 02:10 - 2017-06-16 02:10 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2017-06-15 15:51 - 2017-06-15 15:51 - 00000000 ____D C:\Windows\LastGood.Tmp
2017-06-14 01:04 - 2017-06-03 12:15 - 01596600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2017-06-14 01:04 - 2017-06-03 12:15 - 00750560 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2017-06-14 01:04 - 2017-06-03 12:15 - 00382368 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-06-14 01:04 - 2017-06-03 12:14 - 01147296 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2017-06-14 01:04 - 2017-06-03 12:14 - 01024928 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2017-06-14 01:04 - 2017-06-03 12:10 - 00130464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2017-06-14 01:04 - 2017-06-03 12:09 - 08318880 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-06-14 01:04 - 2017-06-03 12:09 - 01003624 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-06-14 01:04 - 2017-06-03 12:08 - 02969880 _____ (Microsoft Corporation) C:\Windows\system32\CoreUIComponents.dll
2017-06-14 01:04 - 2017-06-03 12:07 - 00923048 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2017-06-14 01:04 - 2017-06-03 12:07 - 00119712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-06-14 01:04 - 2017-06-03 12:02 - 02444192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-06-14 01:04 - 2017-06-03 12:01 - 05477096 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2017-06-14 01:04 - 2017-06-03 12:00 - 00872472 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2017-06-14 01:04 - 2017-06-03 12:00 - 00321376 _____ (Microsoft Corporation) C:\Windows\system32\capauthz.dll
2017-06-14 01:04 - 2017-06-03 12:00 - 00219040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2017-06-14 01:04 - 2017-06-03 11:59 - 01409048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-06-14 01:04 - 2017-06-03 11:59 - 00626528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2017-06-14 01:04 - 2017-06-03 11:59 - 00311200 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-06-14 01:04 - 2017-06-03 11:59 - 00259400 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2017-06-14 01:04 - 2017-06-03 11:58 - 21352696 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-06-14 01:04 - 2017-06-03 11:58 - 07904784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-06-14 01:04 - 2017-06-03 11:58 - 00660384 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2017-06-14 01:04 - 2017-06-03 11:58 - 00254176 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-06-14 01:04 - 2017-06-03 11:57 - 00371616 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-06-14 01:04 - 2017-06-03 11:56 - 02228120 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystems64.dll
2017-06-14 01:04 - 2017-06-03 11:56 - 01854880 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2017-06-14 01:04 - 2017-06-03 11:56 - 01693600 _____ (Microsoft Corporation) C:\Windows\system32\AppVIntegration.dll
2017-06-14 01:04 - 2017-06-03 11:56 - 01458592 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntSubsystemController.dll
2017-06-14 01:04 - 2017-06-03 11:56 - 00848288 _____ (Microsoft Corporation) C:\Windows\system32\AppVOrchestration.dll
2017-06-14 01:04 - 2017-06-03 11:56 - 00846752 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe
2017-06-14 01:04 - 2017-06-03 11:56 - 00844696 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntStreamingManager.dll
2017-06-14 01:04 - 2017-06-03 11:56 - 00697760 _____ (Microsoft Corporation) C:\Windows\system32\AppVCatalog.dll
2017-06-14 01:04 - 2017-06-03 11:56 - 00672672 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2017-06-14 01:04 - 2017-06-03 11:56 - 00399264 _____ (Microsoft Corporation) C:\Windows\system32\AppVScripting.dll
2017-06-14 01:04 - 2017-06-03 11:55 - 02681760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-06-14 01:04 - 2017-06-03 11:36 - 01150784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-06-14 01:04 - 2017-06-03 11:35 - 02259768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreUIComponents.dll
2017-06-14 01:04 - 2017-06-03 11:28 - 23677440 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-06-14 01:04 - 2017-06-03 11:26 - 00266640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capauthz.dll
2017-06-14 01:04 - 2017-06-03 11:23 - 20373920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-06-14 01:04 - 2017-06-03 11:23 - 06760024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-06-14 01:04 - 2017-06-03 11:23 - 00573856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2017-06-14 01:04 - 2017-06-03 11:21 - 01516448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2017-06-14 01:04 - 2017-06-03 11:20 - 00583160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2017-06-14 01:04 - 2017-06-03 11:14 - 03673088 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-06-14 01:04 - 2017-06-03 11:14 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\PerceptionSimulationExtensions.dll
2017-06-14 01:04 - 2017-06-03 11:14 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2017-06-14 01:04 - 2017-06-03 11:14 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2017-06-14 01:04 - 2017-06-03 11:14 - 00047104 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2017-06-14 01:04 - 2017-06-03 11:12 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2017-06-14 01:04 - 2017-06-03 11:11 - 02958848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-06-14 01:04 - 2017-06-03 11:11 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-06-14 01:04 - 2017-06-03 11:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2017-06-14 01:04 - 2017-06-03 11:11 - 00038912 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2017-06-14 01:04 - 2017-06-03 11:11 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2017-06-14 01:04 - 2017-06-03 11:11 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-06-14 01:04 - 2017-06-03 11:10 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-06-14 01:04 - 2017-06-03 11:10 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-06-14 01:04 - 2017-06-03 11:10 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCredentialDeployment.exe
2017-06-14 01:04 - 2017-06-03 11:09 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-06-14 01:04 - 2017-06-03 11:09 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\devicengccredprov.dll
2017-06-14 01:04 - 2017-06-03 11:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2017-06-14 01:04 - 2017-06-03 11:09 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-06-14 01:04 - 2017-06-03 11:07 - 23682048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-06-14 01:04 - 2017-06-03 11:07 - 00778240 _____ C:\Windows\system32\MBR2GPT.EXE
2017-06-14 01:04 - 2017-06-03 11:07 - 00721920 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2017-06-14 01:04 - 2017-06-03 11:07 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe
2017-06-14 01:04 - 2017-06-03 11:07 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-06-14 01:04 - 2017-06-03 11:06 - 00551936 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2017-06-14 01:04 - 2017-06-03 11:05 - 20506624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-06-14 01:04 - 2017-06-03 11:05 - 07336448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2017-06-14 01:04 - 2017-06-03 11:05 - 01878016 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-06-14 01:04 - 2017-06-03 11:05 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-06-14 01:04 - 2017-06-03 11:05 - 00169984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devicengccredprov.dll
2017-06-14 01:04 - 2017-06-03 11:04 - 12787200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-06-14 01:04 - 2017-06-03 11:04 - 00925696 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-06-14 01:04 - 2017-06-03 11:04 - 00805888 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2017-06-14 01:04 - 2017-06-03 11:03 - 19336192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-06-14 01:04 - 2017-06-03 11:03 - 01260544 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2017-06-14 01:04 - 2017-06-03 11:03 - 00467456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2017-06-14 01:04 - 2017-06-03 11:02 - 08245760 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-06-14 01:04 - 2017-06-03 11:01 - 06726656 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2017-06-14 01:04 - 2017-06-03 11:01 - 02804736 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-06-14 01:04 - 2017-06-03 11:00 - 03379200 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-06-14 01:04 - 2017-06-03 11:00 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-06-14 01:04 - 2017-06-03 11:00 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2017-06-14 01:04 - 2017-06-03 10:59 - 04730368 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-06-14 01:04 - 2017-06-03 10:59 - 02672128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-06-14 01:04 - 2017-06-03 10:59 - 02625024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2017-06-14 01:04 - 2017-06-03 10:59 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-06-14 01:04 - 2017-06-03 10:59 - 02056192 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-06-14 01:04 - 2017-06-03 10:59 - 01293824 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-06-14 01:04 - 2017-06-03 10:59 - 01142784 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2017-06-14 01:04 - 2017-06-03 10:59 - 00975360 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2017-06-14 01:04 - 2017-06-03 10:59 - 00636416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2017-06-14 01:04 - 2017-06-03 10:58 - 05961216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-06-14 01:04 - 2017-06-03 10:58 - 02650112 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2017-06-14 01:04 - 2017-06-03 10:58 - 02516480 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-06-14 01:04 - 2017-06-03 10:58 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-06-14 01:04 - 2017-06-03 10:58 - 01046016 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2017-06-14 01:04 - 2017-06-03 10:58 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2017-06-14 01:04 - 2017-06-03 10:57 - 11870720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-06-14 01:04 - 2017-06-03 10:57 - 06535168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-06-14 01:04 - 2017-06-03 10:57 - 05557760 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2017-06-14 01:04 - 2017-06-03 10:57 - 02829824 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-06-14 01:04 - 2017-06-03 10:57 - 01675264 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2017-06-14 01:04 - 2017-06-03 10:57 - 01248768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-06-14 01:04 - 2017-06-03 10:57 - 00797184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-06-14 01:04 - 2017-06-03 10:56 - 06292992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-06-14 01:04 - 2017-06-03 10:55 - 03656192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-06-14 01:04 - 2017-06-03 10:55 - 02132480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-06-14 01:04 - 2017-06-03 10:55 - 01019904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-06-14 01:04 - 2017-06-03 10:54 - 02341376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2017-06-14 01:04 - 2017-06-03 10:54 - 02298368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2017-06-14 01:04 - 2017-06-03 10:54 - 00794112 _____ (Microsoft Corporation) C:\Windows\system32\pwcreator.exe
2017-06-14 01:04 - 2017-06-03 10:53 - 04559360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2017-06-14 01:04 - 2017-06-03 10:51 - 00064512 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe
2017-06-14 01:04 - 2017-05-20 11:13 - 01333136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-06-14 01:04 - 2017-05-20 10:55 - 00606960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-06-14 01:04 - 2017-05-20 10:48 - 04469832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-06-14 01:04 - 2017-05-20 10:47 - 01474800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-06-14 01:04 - 2017-05-20 10:46 - 05821496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-06-14 01:04 - 2017-05-20 10:46 - 01266544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2017-06-14 01:04 - 2017-05-20 10:46 - 00754080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2017-06-14 01:04 - 2017-05-20 10:45 - 00349600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-06-14 01:04 - 2017-05-20 10:44 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2017-06-14 01:04 - 2017-05-20 10:44 - 00181664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2017-06-14 01:04 - 2017-05-20 10:43 - 05802968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-06-14 01:04 - 2017-05-20 10:43 - 04672848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-06-14 01:04 - 2017-05-20 10:43 - 02424016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-06-14 01:04 - 2017-05-20 10:43 - 01529384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-06-14 01:04 - 2017-05-20 10:43 - 01455592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2017-06-14 01:04 - 2017-05-20 10:43 - 01120864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2017-06-14 01:04 - 2017-05-20 10:43 - 00354400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2017-06-14 01:04 - 2017-05-20 10:29 - 13840384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-06-14 01:04 - 2017-05-20 10:29 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2017-06-14 01:04 - 2017-05-20 10:27 - 02199552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-06-14 01:04 - 2017-05-20 10:27 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2017-06-14 01:04 - 2017-05-20 10:26 - 00059904 _____ C:\Windows\SysWOW64\xboxgipsynthetic.dll
2017-06-14 01:04 - 2017-05-20 10:26 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2017-06-14 01:04 - 2017-05-20 10:25 - 00826368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NPSMDesktopProvider.dll
2017-06-14 01:04 - 2017-05-20 10:25 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll
2017-06-14 01:04 - 2017-05-20 10:24 - 00362496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-06-14 01:04 - 2017-05-20 10:23 - 06728192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-06-14 01:04 - 2017-05-20 10:22 - 01292288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-06-14 01:04 - 2017-05-20 10:22 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2017-06-14 01:04 - 2017-05-20 10:22 - 00394240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DictationManager.dll
2017-06-14 01:04 - 2017-05-20 10:21 - 01984000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceFlows.DataModel.dll
2017-06-14 01:04 - 2017-05-20 10:21 - 00476672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2017-06-14 01:04 - 2017-05-20 10:21 - 00444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2017-06-14 01:04 - 2017-05-20 10:20 - 00807424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2017-06-14 01:04 - 2017-05-20 10:20 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-06-14 01:04 - 2017-05-20 10:20 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2017-06-14 01:04 - 2017-05-20 10:20 - 00354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2017-06-14 01:04 - 2017-05-20 10:19 - 05719040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2017-06-14 01:04 - 2017-05-20 10:18 - 01450496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2017-06-14 01:04 - 2017-05-20 10:17 - 00952832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2017-06-14 01:04 - 2017-05-20 10:17 - 00909312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-06-14 01:04 - 2017-05-20 10:17 - 00329728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2017-06-14 01:04 - 2017-05-20 10:17 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cldapi.dll
2017-06-14 01:04 - 2017-05-20 10:16 - 05225984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2017-06-14 01:04 - 2017-05-20 10:16 - 03667456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-06-14 01:04 - 2017-05-20 10:16 - 02588160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll
2017-06-14 01:04 - 2017-05-20 10:16 - 00899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2017-06-14 01:04 - 2017-05-20 10:15 - 02088960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
2017-06-14 01:04 - 2017-05-20 10:14 - 04417024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2017-06-14 01:04 - 2017-05-20 10:14 - 04056576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2017-06-14 01:04 - 2017-05-20 10:14 - 02679296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2017-06-14 01:04 - 2017-05-20 10:14 - 02211328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
2017-06-14 01:04 - 2017-05-20 10:14 - 01035264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2017-06-14 01:04 - 2017-05-20 10:11 - 01536512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2017-06-14 01:04 - 2017-05-20 10:10 - 00332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2017-06-14 01:04 - 2017-05-20 10:10 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NPSM.dll
2017-06-14 01:04 - 2017-05-20 10:10 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2017-06-14 01:04 - 2017-05-20 10:08 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RstrtMgr.dll
2017-06-14 01:04 - 2017-05-20 09:08 - 01459728 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-06-14 01:04 - 2017-05-20 09:08 - 00543648 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2017-06-14 01:04 - 2017-05-20 09:07 - 00287648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2017-06-14 01:04 - 2017-05-20 09:03 - 00777400 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-06-14 01:04 - 2017-05-20 08:59 - 00112544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2017-06-14 01:04 - 2017-05-20 08:58 - 00188824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2017-06-14 01:04 - 2017-05-20 08:56 - 04847928 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-06-14 01:04 - 2017-05-20 08:56 - 00712608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2017-06-14 01:04 - 2017-05-20 08:56 - 00370928 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-06-14 01:04 - 2017-05-20 08:55 - 07325584 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-06-14 01:04 - 2017-05-20 08:55 - 01911752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-06-14 01:04 - 2017-05-20 08:55 - 01506712 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2017-06-14 01:04 - 2017-05-20 08:55 - 01055648 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2017-06-14 01:04 - 2017-05-20 08:55 - 00961952 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2017-06-14 01:04 - 2017-05-20 08:55 - 00211872 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2017-06-14 01:04 - 2017-05-20 08:54 - 00730016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2017-06-14 01:04 - 2017-05-20 08:54 - 00546208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2017-06-14 01:04 - 2017-05-20 08:54 - 00144288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2017-06-14 01:04 - 2017-05-20 08:53 - 00654976 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2017-06-14 01:04 - 2017-05-20 08:53 - 00411040 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-06-14 01:04 - 2017-05-20 08:53 - 00363424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2017-06-14 01:04 - 2017-05-20 08:53 - 00335808 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2017-06-14 01:04 - 2017-05-20 08:53 - 00255904 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2017-06-14 01:04 - 2017-05-20 08:52 - 04709528 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-06-14 01:04 - 2017-05-20 08:52 - 01700408 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2017-06-14 01:04 - 2017-05-20 08:51 - 06551856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-06-14 01:04 - 2017-05-20 08:51 - 02604256 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-06-14 01:04 - 2017-05-20 08:51 - 01670496 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2017-06-14 01:04 - 2017-05-20 08:51 - 01219560 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2017-06-14 01:04 - 2017-05-20 08:51 - 00406064 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2017-06-14 01:04 - 2017-05-20 08:48 - 00387928 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2017-06-14 01:04 - 2017-05-20 08:10 - 00809472 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthSSO.dll
2017-06-14 01:04 - 2017-05-20 08:10 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2017-06-14 01:04 - 2017-05-20 08:10 - 00361472 _____ (Microsoft Corporation) C:\Windows\system32\ConhostV2.dll
2017-06-14 01:04 - 2017-05-20 08:10 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\winsrvext.dll
2017-06-14 01:04 - 2017-05-20 08:10 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksthunk.sys
2017-06-14 01:04 - 2017-05-20 08:09 - 17365504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-06-14 01:04 - 2017-05-20 08:09 - 02199552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-06-14 01:04 - 2017-05-20 08:09 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2017-06-14 01:04 - 2017-05-20 08:08 - 00086016 _____ C:\Windows\system32\xboxgipsynthetic.dll
2017-06-14 01:04 - 2017-05-20 08:08 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2017-06-14 01:04 - 2017-05-20 08:08 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys
2017-06-14 01:04 - 2017-05-20 08:07 - 00277504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xboxgip.sys
2017-06-14 01:04 - 2017-05-20 08:07 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSaveExt.dll
2017-06-14 01:04 - 2017-05-20 08:07 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\snmptrap.exe
2017-06-14 01:04 - 2017-05-20 08:06 - 00866816 _____ (Microsoft Corporation) C:\Windows\system32\NPSMDesktopProvider.dll
2017-06-14 01:04 - 2017-05-20 08:06 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll
2017-06-14 01:04 - 2017-05-20 08:06 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.SharedPC.AccountManager.dll
2017-06-14 01:04 - 2017-05-20 08:05 - 07931392 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-06-14 01:04 - 2017-05-20 08:05 - 00518144 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2017-06-14 01:04 - 2017-05-20 08:03 - 08331264 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2017-06-14 01:04 - 2017-05-20 08:03 - 00892416 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2017-06-14 01:04 - 2017-05-20 08:03 - 00549888 _____ (Microsoft Corporation) C:\Windows\system32\DictationManager.dll
2017-06-14 01:04 - 2017-05-20 08:03 - 00527360 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-06-14 01:04 - 2017-05-20 08:03 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Display.dll
2017-06-14 01:04 - 2017-05-20 08:03 - 00427008 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2017-06-14 01:04 - 2017-05-20 08:02 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\WindowManagement.dll
2017-06-14 01:04 - 2017-05-20 08:02 - 00601088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Launcher.dll
2017-06-14 01:04 - 2017-05-20 08:01 - 02347520 _____ (Microsoft Corporation) C:\Windows\system32\DeviceFlows.DataModel.dll
2017-06-14 01:04 - 2017-05-20 08:01 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2017-06-14 01:04 - 2017-05-20 08:01 - 00590848 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-06-14 01:04 - 2017-05-20 08:01 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2017-06-14 01:04 - 2017-05-20 08:01 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-06-14 01:04 - 2017-05-20 08:01 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2017-06-14 01:04 - 2017-05-20 08:01 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2017-06-14 01:04 - 2017-05-20 08:01 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\embeddedmodesvc.dll
2017-06-14 01:04 - 2017-05-20 08:00 - 01078272 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2017-06-14 01:04 - 2017-05-20 08:00 - 01067008 _____ (Microsoft Corporation) C:\Windows\system32\XboxNetApiSvc.dll
2017-06-14 01:04 - 2017-05-20 08:00 - 00846848 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2017-06-14 01:04 - 2017-05-20 08:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2017-06-14 01:04 - 2017-05-20 08:00 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\cldapi.dll
2017-06-14 01:04 - 2017-05-20 07:59 - 01818624 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2017-06-14 01:04 - 2017-05-20 07:59 - 01468416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-06-14 01:04 - 2017-05-20 07:59 - 01141760 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2017-06-14 01:04 - 2017-05-20 07:59 - 01028608 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2017-06-14 01:04 - 2017-05-20 07:59 - 00972800 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2017-06-14 01:04 - 2017-05-20 07:59 - 00687104 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-06-14 01:04 - 2017-05-20 07:59 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2017-06-14 01:04 - 2017-05-20 07:58 - 03784704 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
2017-06-14 01:04 - 2017-05-20 07:58 - 03135488 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2017-06-14 01:04 - 2017-05-20 07:58 - 01886208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-06-14 01:04 - 2017-05-20 07:58 - 01046016 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2017-06-14 01:04 - 2017-05-20 07:58 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2017-06-14 01:04 - 2017-05-20 07:58 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2017-06-14 01:04 - 2017-05-20 07:57 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-06-14 01:04 - 2017-05-20 07:56 - 02730496 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2017-06-14 01:04 - 2017-05-20 07:56 - 01076736 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2017-06-14 01:04 - 2017-05-20 07:55 - 04396032 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-06-14 01:04 - 2017-05-20 07:55 - 03332096 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2017-06-14 01:04 - 2017-05-20 07:55 - 02499584 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2017-06-14 01:04 - 2017-05-20 07:55 - 01102848 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2017-06-14 01:04 - 2017-05-20 07:54 - 04707840 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-06-14 01:04 - 2017-05-20 07:54 - 04537344 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2017-06-14 01:04 - 2017-05-20 07:54 - 03803136 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-06-14 01:04 - 2017-05-20 07:54 - 02938880 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2017-06-14 01:04 - 2017-05-20 07:54 - 01275904 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2017-06-14 01:04 - 2017-05-20 07:52 - 01356800 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-06-14 01:04 - 2017-05-20 07:52 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2017-06-14 01:04 - 2017-05-20 07:52 - 00557568 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2017-06-14 01:04 - 2017-05-20 07:52 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2017-06-14 01:04 - 2017-05-20 07:51 - 01706496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2017-06-14 01:04 - 2017-05-20 07:51 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2017-06-14 01:04 - 2017-05-20 07:50 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2017-06-14 01:04 - 2017-05-20 07:50 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\NPSM.dll
2017-06-14 01:04 - 2017-05-20 07:48 - 02438656 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2017-06-14 01:04 - 2017-05-20 07:48 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll
2017-06-14 01:04 - 2017-05-20 07:47 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2017-06-14 01:04 - 2017-05-20 07:47 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\RstrtMgr.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-12 00:39 - 2017-03-18 22:51 - 00000000 ____D C:\Windows\CbsTemp
2017-07-12 00:35 - 2017-05-23 17:29 - 00000000 ____D C:\ProgramData\NVIDIA
2017-07-12 00:34 - 2017-05-23 17:58 - 00000000 ____D C:\Program Files (x86)\Steam
2017-07-12 00:33 - 2017-05-23 17:11 - 00000000 __SHD C:\Users\Marcin\IntelGraphicsProfiles
2017-07-12 00:32 - 2017-05-23 16:56 - 00000000 ____D C:\Windows\system32\SleepStudy
2017-07-11 21:16 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\AppReadiness
2017-07-11 17:56 - 2017-05-24 01:31 - 00000000 ____D C:\ProgramData\Origin
2017-07-11 17:56 - 2017-05-23 17:01 - 00000000 ____D C:\Users\Marcin
2017-07-11 17:29 - 2017-05-24 12:09 - 00000000 ____D C:\Users\Marcin\AppData\Roaming\TS3Client
2017-07-11 14:58 - 2017-05-24 01:33 - 00000000 ____D C:\Users\Marcin\AppData\Roaming\Origin
2017-07-11 11:47 - 2017-05-25 16:00 - 00000000 ____D C:\Users\Marcin\Desktop\Dokumenty
2017-07-11 11:34 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-07-09 21:53 - 2017-05-24 01:18 - 01195958 _____ C:\Windows\system32\perfh015.dat
2017-07-09 21:53 - 2017-05-24 01:18 - 00270478 _____ C:\Windows\system32\perfc015.dat
2017-07-09 21:53 - 2017-05-23 17:04 - 02977402 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-09 21:47 - 2017-05-23 16:56 - 00386160 _____ C:\Windows\system32\FNTCACHE.DAT
2017-07-09 21:47 - 2017-05-23 16:56 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-09 21:46 - 2017-03-18 13:40 - 00786432 _____ C:\Windows\system32\config\BBI
2017-07-08 21:37 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\LiveKernelReports
2017-07-08 21:37 - 2017-03-18 23:01 - 00000000 ____D C:\Windows\INF
2017-07-08 12:20 - 2017-05-23 17:53 - 00000000 ____D C:\ProgramData\Package Cache
2017-07-08 02:04 - 2017-05-24 01:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-07-07 20:37 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-06-30 13:35 - 2017-05-24 01:38 - 00004000 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:35 - 2017-05-23 18:41 - 00001449 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-06-30 13:35 - 2017-05-23 18:40 - 00003994 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:35 - 2017-05-23 17:29 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-06-30 13:34 - 2017-05-23 18:40 - 00004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:34 - 2017-05-23 18:40 - 00003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:34 - 2017-05-23 18:40 - 00003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:34 - 2017-05-23 18:40 - 00003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:34 - 2017-05-23 18:40 - 00003696 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:34 - 2017-05-23 18:40 - 00003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-06-30 13:34 - 2017-05-23 17:54 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-06-30 13:34 - 2017-05-23 17:29 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-06-29 13:57 - 2017-05-24 01:33 - 00000000 ____D C:\Program Files (x86)\Origin
2017-06-27 06:16 - 2017-05-24 13:00 - 00002238 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-22 15:36 - 2017-05-23 17:02 - 00003292 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task v2
2017-06-22 15:36 - 2017-05-23 17:02 - 00002414 _____ C:\Users\Marcin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-22 15:36 - 2017-05-23 17:02 - 00000000 ___RD C:\Users\Marcin\OneDrive
2017-06-21 18:19 - 2017-05-23 17:01 - 00000000 ____D C:\Users\Marcin\AppData\Local\Packages
2017-06-21 12:17 - 2017-05-23 21:00 - 00000000 ____D C:\Users\Marcin\AppData\Local\CrashDumps
2017-06-21 09:07 - 2017-05-23 18:40 - 01903224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2017-06-21 09:07 - 2017-05-23 18:40 - 01755256 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2017-06-21 09:07 - 2017-05-23 18:40 - 01489528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2017-06-21 09:07 - 2017-05-23 18:40 - 01317496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2017-06-21 09:07 - 2017-05-23 18:40 - 00121464 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2017-06-21 09:07 - 2017-05-23 18:37 - 00057976 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2017-06-21 09:07 - 2017-05-23 18:37 - 00048248 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-06-20 22:58 - 2017-05-23 18:40 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2017-06-19 22:58 - 2017-05-23 17:01 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-17 19:39 - 2017-05-24 20:57 - 00004702 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-06-17 19:39 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-06-17 19:39 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\system32\Macromed
2017-06-15 22:13 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\rescache
2017-06-14 01:17 - 2017-03-18 23:03 - 00000000 ___SD C:\Windows\SysWOW64\F12
2017-06-14 01:17 - 2017-03-18 23:03 - 00000000 ___SD C:\Windows\system32\F12
2017-06-14 01:17 - 2017-03-18 23:03 - 00000000 ___RD C:\Program Files\Windows Defender
2017-06-14 01:17 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2017-06-14 01:17 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\system32\oobe
2017-06-14 01:17 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\system32\appraiser
2017-06-14 01:17 - 2017-03-18 23:03 - 00000000 ____D C:\Windows\ShellExperiences
2017-06-14 01:17 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-06-14 01:17 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-06-14 01:08 - 2017-05-23 20:22 - 00000000 ____D C:\Windows\system32\MRT
2017-06-14 01:05 - 2017-05-23 20:22 - 133627792 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-06-14 00:47 - 2017-05-24 20:57 - 00004522 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-06-13 12:46 - 2017-05-24 12:22 - 00000671 _____ C:\Users\Public\Desktop\FIFA 17.lnk

==================== Files in the root of some directories =======

2017-06-20 20:51 - 2017-06-20 20:51 - 0000057 _____ () C:\ProgramData\Ament.ini
2017-05-23 17:07 - 2017-05-23 17:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
2017-06-21 12:18 - 2016-08-21 11:17 - 0138720 _____ (Irfan Skiljan, IrfanView) C:\Users\Marcin\AppData\Local\Temp\iv_uninstall.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe = & gt; File is digitally signed
C:\Windows\system32\wininit.exe = & gt; File is digitally signed
C:\Windows\explorer.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\explorer.exe = & gt; File is digitally signed
C:\Windows\system32\svchost.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\svchost.exe = & gt; File is digitally signed
C:\Windows\system32\services.exe = & gt; File is digitally signed
C:\Windows\system32\User32.dll = & gt; File is digitally signed
C:\Windows\SysWOW64\User32.dll = & gt; File is digitally signed
C:\Windows\system32\userinit.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\userinit.exe = & gt; File is digitally signed
C:\Windows\system32\rpcss.dll = & gt; File is digitally signed
C:\Windows\system32\dnsapi.dll = & gt; File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll = & gt; File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys = & gt; File is digitally signed

LastRegBack: 2017-07-05 12:17

==================== End of FRST.txt ============================