Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 03.03.2019 01 Uruchomiony przez kubas (administrator) DESKTOP-9RKIVEH (05-03-2019 19:59:00) Uruchomiony z C:\Users\kubas\Desktop Załadowane profile: kubas (Dostępne profile: kubas) Platform: Windows 10 Home Wersja 1803 17134.590 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\AdguardSvc.exe (Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (Golden Frog, GmbH.) [Brak podpisu cyfrowego] C:\Program Files (x86)\VyprVPN\VyprVPNService.exe (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe (Kristjan Skutta -> ) C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe (Lavasoft Limited -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe (Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Hi-Rez Studios) [Brak podpisu cyfrowego] A:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (Privax Limited -> Privax Limited) B:\HMA! Pro VPN\VpnSvc.exe (CYBERGHOST S.A. -> CyberGhost S.A.) C:\Program Files\CyberGhost 7\CyberGhost.Service.exe (Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Kristjan Skutta -> ) C:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper64.exe (NZXT -> ) C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe () [Brak podpisu cyfrowego] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19021.10411.0_x64__8wekyb3d8bbwe\Video.UI.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Discord Inc. -> Discord Inc.) C:\Users\kubas\AppData\Local\Discord\app-0.0.304\Discord.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe (Discord Inc. -> Discord Inc.) C:\Users\kubas\AppData\Local\Discord\app-0.0.304\Discord.exe (Discord Inc. -> Discord Inc.) C:\Users\kubas\AppData\Local\Discord\app-0.0.304\Discord.exe (Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\Adguard.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Discord Inc. -> Discord Inc.) C:\Users\kubas\AppData\Local\Discord\app-0.0.304\Discord.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe (Nota Inc. -> Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\XTREME GAMING ENGINE\Xtreme.exe (Firebit OU -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe (Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\OpenWith.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18388936 2018-06-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [60074328 2018-06-25] (Discord Inc. -> Discord Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [Adobe Creative Cloud] => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [Discord] => C:\Users\kubas\AppData\Local\Discord\app-0.0.304\Discord.exe [81747288 2019-01-15] (Discord Inc. -> Discord Inc.) HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [EpicGamesLauncher] => "A:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [Steam] => "a:\steam\steam.exe" -silent HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [Windscribe] => "C:\Program Files (x86)\Windscribe\Windscribe.exe" -os_restart HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [utweb] => "C:\Users\kubas\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [GoogleChromeAutoLaunch_07408285EEA88DFD28736084DA945D5C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1708016 2019-03-01] (Google LLC -> Google Inc.) HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [5735784 2018-10-30] (Adguard Software Limited -> Adguard Software Ltd) HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [World of Tanks] => A:\JaPierdole\World_of_Tanks\WargamingGameUpdater.exe [3139936 2018-06-25] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [TheTundra] => "C:\Users\kubas\Desktop\WoT - The Tundra.exe" -autostart HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [Wargaming.net Game Center] => "A:\Wargaming.net\GameCenter\wgc.exe" --background '' HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 7\CyberGhost.exe [903376 2019-02-20] (CYBERGHOST S.A. -> CyberGhost S.A.) HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3113768 2019-02-19] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3435760 2019-01-03] (Razer USA Ltd. -> ) HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [GameJoltClient] => "A:\GameJoltClient\GameJoltClient.exe" run -- --silent-start HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [2399112 2019-02-12] (Nota Inc. -> Nota Inc.) HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Winlogon: [Shell] %comspec% <==== UWAGA HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\...\Command Processor: @mode 20,5 & tasklist /FI "IMAGENAME eq SoundMixer.exe" 2>NUL | find /I /N "SoundMixer.exe">NUL && exit & if exist "C:\Users\kubas\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" ( start /MIN "" "C:\Users\kubas\AppData\Roaming\Microsoft\SoundMixer\SoundMixer.exe" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) <==== UWAGA HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3435760 2019-01-03] (Razer USA Ltd. -> ) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\Installer\chrmstp.exe [2019-03-05] (Google LLC -> Google Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2019-02-06] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HMA! Pro VPN.lnk [2019-01-15] ShortcutTarget: HMA! Pro VPN.lnk -> B:\HMA! Pro VPN\Vpn.exe (Privax Limited -> Privax Limited) Startup: C:\Users\kubas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE AORUS GRAPHICS ENGINE.lnk [2018-06-25] ShortcutTarget: GIGABYTE AORUS GRAPHICS ENGINE.lnk -> B:\AORUS ENGINE\autorun.exe (Brak pliku) Startup: C:\Users\kubas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE XTREME GAMING ENGINE.lnk [2018-06-26] ShortcutTarget: GIGABYTE XTREME GAMING ENGINE.lnk -> C:\Program Files (x86)\GIGABYTE\XTREME GAMING ENGINE\autorun.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) Startup: C:\Users\kubas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2019-02-14] ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited) Startup: C:\Users\kubas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2019-01-03] ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: 104.129.56.137 wiiu.titlekeys.gq Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{bd915ac8-5a54-4b9d-ae2d-b8dcd2823b97}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{f6d41244-1523-442a-8708-0041f5537391}: [DhcpNameServer] 10.2.66.1 Internet Explorer: ================== HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP HKU\S-1-5-21-3752557973-4294329266-2156447855-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com SearchScopes: HKU\S-1-5-21-3752557973-4294329266-2156447855-1001 -> {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} URL = hxxp://securedsearch.lavasoft.com/results.php?pr=vmn&id=webcompa&ent=ch_WCYID10454__180811&q={searchTerms} BHO: Brak nazwy -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> C:\Users\kubas\Desktop\PLIKI\OldNewExplorer64.dll [2017-08-16] (www.startisback.com) [Brak podpisu cyfrowego] BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-10-20] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-20] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Brak nazwy -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} -> C:\Users\kubas\Desktop\PLIKI\OldNewExplorer32.dll [2017-08-16] (www.startisback.com) [Brak podpisu cyfrowego] BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-10-05] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-10-05] (Oracle America, Inc. -> Oracle Corporation) FireFox: ======== FF DefaultProfile: i4d3n0wj.default FF ProfilePath: C:\Users\kubas\AppData\Roaming\Mozilla\Firefox\Profiles\i4d3n0wj.default [2019-03-05] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_142.dll [2019-02-12] (Adobe Systems Incorporated -> ) FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-20] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [Brak pliku] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_142.dll [2019-02-12] (Adobe Systems Incorporated -> ) FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [Brak podpisu cyfrowego] FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB) FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [Brak podpisu cyfrowego] FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-10-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-10-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-11-29] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-11-29] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [Brak pliku] Chrome: ======= CHR DefaultSearchURL: Default -> hxxps://defaultsearch.co/?q={searchTerms} CHR DefaultSearchKeyword: Default -> Adaware Secure CHR Session Restore: Default -> [funkcja włączona] CHR Profile: C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default [2019-03-05] CHR Extension: (Prezentacje) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-06-30] CHR Extension: (Dokumenty) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-30] CHR Extension: (Dysk Google) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-06-30] CHR Extension: (YouTube) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-30] CHR Extension: (Arkusze) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-06-30] CHR Extension: (Dokumenty Google offline) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-30] CHR Extension: (Twitch Now) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2018-09-30] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-30] CHR Extension: (Material Dark) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\npadhaijchjemiifipabpmeebeelbmpd [2018-10-14] CHR Extension: (Gmail) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-06-30] CHR Extension: (Chrome Media Router) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-07] CHR Extension: (Enhancer for YouTube™) - C:\Users\kubas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponfpcnoihfmfllpaingbgckeeldkhle [2019-03-03] CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AALSvc; C:\AlphaAntiLeak\AAL\bin\server\AALSvc.exe [2911800 2018-08-17] (Constantin Schreiber -> ) R2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [136040 2018-10-30] (Adguard Software Limited -> Adguard Software Ltd) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818136 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) S2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [2126120 2019-02-06] (philandro Software GmbH -> ) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-02-07] (BattlEye Innovations e.K. -> ) R2 CG7Service; C:\Program Files\CyberGhost 7\CyberGhost.Service.exe [93904 2019-02-20] (CYBERGHOST S.A. -> CyberGhost S.A.) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-12-09] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) U2 HiPatchService; A:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2018-06-11] (Hi-Rez Studios) [Brak podpisu cyfrowego] R2 HmaProVpn; B:\HMA! Pro VPN\VpnSvc.exe [5766720 2019-02-15] (Privax Limited -> Privax Limited) R2 ibtsiva; C:\Windows\system32\ibtsiva.exe [541896 2018-05-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) S3 mracsvc; C:\Windows\System32\mracsvc.exe [11749648 2019-01-24] (Mail.Ru LLC -> LLC Mail.Ru) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-02-19] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-02-19] (Electronic Arts, Inc. -> Electronic Arts) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2019-01-17] (Even Balance, Inc. -> ) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2019-01-17] (Even Balance, Inc. -> ) R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [449152 2018-05-16] (Razer USA Ltd. -> Razer Inc.) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943752 2018-05-14] (Razer USA Ltd. -> Razer Inc.) R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2018-12-18] (Razer USA Ltd. -> Razer Inc) R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [285424 2019-01-03] (Razer USA Ltd. -> ) R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [535424 2018-12-18] (Razer USA Ltd. -> Razer Inc.) R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [290352 2018-12-19] (Razer USA Ltd. -> Razer Inc.) S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [157480 2018-08-02] (Microsoft Corporation -> Microsoft Corporation) R2 VyprVPN; C:\Program Files (x86)\VyprVPN\VyprVPNService.exe [309248 2019-01-17] (Golden Frog, GmbH.) [Brak podpisu cyfrowego] R2 Wallpaper Engine Service; C:\SteamLibrary\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [354808 2019-01-03] (Kristjan Skutta -> ) R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25888 2018-08-11] (Lavasoft Limited -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-02-23] (Microsoft Corporation -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-02-23] (Microsoft Corporation -> Microsoft Corporation) R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [18264 2017-09-27] (Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AALProtect; C:\AlphaAntiLeak\AAL\bin\server\AALProtect.sys [31888 2018-08-17] (OOO AMEKS -> ) R1 adgnetworkwfpdrv; C:\Windows\System32\drivers\adgnetworkwfpdrv.sys [89560 2018-09-05] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R1 BadlionAnticheat; C:\Windows\system32\drivers\BadlionAnticheat.sys [792088 2019-02-13] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 cpuz146; C:\Windows\temp\cpuz146\cpuz146_x64.sys [52824 2019-03-05] (CPUID -> CPUID) S3 gdrv; C:\Windows\gdrv.sys [26792 2018-06-25] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-06-25] (Martin Malik - REALiX -> REALiX(tm)) R3 iaLPSS2_GPIO2; C:\Windows\System32\drivers\iaLPSS2_GPIO2.sys [123520 2018-05-02] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) R0 iaStorAC; C:\Windows\System32\drivers\iaStorAC.sys [943120 2018-07-01] (Intel(R) Rapid Storage Technology -> Intel Corporation) R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [136728 2018-05-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [38424 2017-09-15] (Intel Corporation -> Intel Corporation) S3 mracdrv; C:\Windows\System32\drivers\mracdrv.sys [10962696 2019-01-24] (Mail.Ru LLC -> LLC Mail.Ru) S3 Netwtw04; C:\Windows\System32\drivers\Netwtw04.sys [7689728 2018-04-12] (Microsoft Windows -> Intel Corporation) R3 Netwtw06; C:\Windows\System32\drivers\Netwtw06.sys [8810336 2018-07-01] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9db4450b8107f59a\nvlddmkm.sys [20420352 2018-12-01] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation) R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [49544 2018-09-13] (Razer USA Ltd. -> Razer Inc) R3 RzDev_005c; C:\Windows\System32\drivers\RzDev_005c.sys [51696 2018-04-22] (Razer USA Ltd. -> Razer Inc) R3 RzDev_0221; C:\Windows\System32\drivers\RzDev_0221.sys [51696 2018-04-22] (Razer USA Ltd. -> Razer Inc) S3 tap-tb-0901; C:\Windows\System32\drivers\tap-tb-0901.sys [38656 2018-07-31] (TunnelBear, Inc. -> The OpenVPN Project) S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [36496 2018-06-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project) S3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [44976 2018-06-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 tapvyprvpn; C:\Windows\System32\drivers\tapvyprvpn.sys [44896 2018-06-08] (Golden Frog, GmbH -> The OpenVPN Project) S3 tapwindscribe0901; C:\Windows\System32\drivers\tapwindscribe0901.sys [54896 2018-02-01] (Windscribe Limited -> The OpenVPN Project) S3 vjoy; C:\Windows\System32\drivers\vjoy.sys [57976 2017-04-06] (Shaul Eizikovich -> Shaul Eizikovich) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-02-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [333792 2019-02-23] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [62432 2019-02-23] (Microsoft Windows -> Microsoft Corporation) R3 WinRing0_1_2_0; C:\Program Files (x86)\NZXT\CAM\CAM_V3.sys [14544 2019-03-05] (Noriyuki MIYAZAKI -> OpenLibSys.org) S3 cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [X] S1 goomaluz; \??\C:\Windows\system32\drivers\goomaluz.sys [X] S1 htvdhsqe; \??\C:\Windows\system32\drivers\htvdhsqe.sys [X] S1 lwjcespk; \??\C:\Windows\system32\drivers\lwjcespk.sys [X] S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-03-05 19:59 - 2019-03-05 19:59 - 000032241 ____C C:\Users\kubas\Desktop\FRST.txt 2019-03-05 19:52 - 2019-03-05 19:53 - 000017059 _____ C:\Users\kubas\Downloads\FRST.txt 2019-03-05 19:45 - 2019-03-05 19:46 - 000000068 _____ C:\Users\kubas\.node_repl_history 2019-03-05 19:30 - 2019-03-05 19:30 - 000002446 _____ C:\Users\kubas\Downloads\StrawpollcomBot-master.zip 2019-03-05 19:16 - 2019-03-05 19:17 - 000005108 _____ C:\Users\kubas\Downloads\Fixlog.txt 2019-03-05 19:15 - 2019-03-05 19:52 - 000000000 ____D C:\FRST 2019-03-05 19:15 - 2019-03-05 19:15 - 002434560 _____ (Farbar) C:\Users\kubas\Desktop\FRST64.exe 2019-03-05 19:11 - 2019-03-05 19:11 - 000007508 _____ C:\Users\kubas\Downloads\strawpoll-voting-bot-master.zip 2019-03-05 19:03 - 2019-03-05 19:04 - 000003282 _____ C:\Users\kubas\Downloads\smtp_proxies.zip 2019-03-05 19:00 - 2019-03-05 19:00 - 000000000 ___DC C:\Users\kubas\AppData\Local\NuGet 2019-03-05 19:00 - 2019-03-05 19:00 - 000000000 ____D C:\Users\kubas\.nuget 2019-03-05 18:57 - 2019-03-05 18:57 - 000019616 _____ C:\Users\kubas\Downloads\Strawpoll.me-Bot-master.zip 2019-03-05 18:53 - 2019-03-05 18:55 - 036394324 _____ C:\Users\kubas\Downloads\ZeroDay-93983d5de95f9296c7bdedba7ebc8924425716ca (1).zip 2019-03-05 17:20 - 2019-03-05 19:38 - 000000000 ____D C:\Program Files (x86)\Gyazo 2019-03-05 17:20 - 2019-03-05 17:20 - 000003544 _____ C:\Windows\System32\Tasks\GyazoUpdateTaskMachineDaily 2019-03-05 17:20 - 2019-03-05 17:20 - 000003408 _____ C:\Windows\System32\Tasks\GyazoUpdateTaskMachine 2019-03-05 17:20 - 2019-03-05 17:20 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\Gyazo 2019-03-05 17:20 - 2019-03-05 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo 2019-03-05 17:19 - 2019-03-05 17:19 - 009923576 _____ (Nota Inc. ) C:\Users\kubas\Downloads\Gyazo-3.5.4.exe 2019-03-04 22:22 - 2019-03-04 22:22 - 000730639 _____ C:\Users\kubas\Downloads\Adobe_Photoshop_20.0.2_x64_Patch-MPT.zip 2019-03-04 22:22 - 2019-03-04 22:22 - 000000003 _____ C:\Users\kubas\Downloads\Password.txt 2019-03-03 13:31 - 2019-03-03 13:31 - 000009514 _____ C:\Users\kubas\Downloads\sicklegit.cfg 2019-03-03 11:26 - 2019-03-03 11:26 - 000008438 _____ C:\Users\kubas\Downloads\pies.cfg 2019-03-03 11:22 - 2019-03-03 11:22 - 000009081 _____ C:\Users\kubas\Downloads\66666.cfg 2019-03-02 19:58 - 2019-03-02 19:58 - 000019696 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_169596572029051.dll 2019-03-02 18:15 - 2019-03-02 18:15 - 000036469 _____ C:\Users\kubas\Downloads\lls 2019-03-02 15:07 - 2019-03-02 15:07 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\csgohvh 2019-03-02 15:06 - 2019-03-02 15:06 - 000075910 _____ C:\Users\kubas\Downloads\styles_p.zip 2019-03-02 15:03 - 2019-03-02 15:03 - 000175104 _____ C:\Users\kubas\Downloads\texashook.dll 2019-03-02 14:41 - 2019-03-02 14:41 - 000269824 _____ C:\Users\kubas\Downloads\freecheatV004.dll 2019-03-02 12:18 - 2019-03-02 12:18 - 000036953 _____ C:\Users\kubas\Downloads\endless_silence (2) 2019-02-28 22:04 - 2019-02-28 22:04 - 041785261 _____ C:\Users\kubas\Downloads\takeout-20190228T204424Z-001.zip 2019-02-28 15:01 - 2019-02-28 15:01 - 000019696 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_185225250527612.dll 2019-02-28 14:34 - 2019-02-28 14:34 - 000036953 _____ C:\Users\kubas\Downloads\endless_silence (1) 2019-02-27 10:14 - 2019-02-27 10:15 - 060519000 _____ () C:\Users\kubas\Downloads\cf25freeSetup.exe 2019-02-27 09:25 - 2019-02-27 09:25 - 000008396 _____ C:\Users\kubas\Downloads\perois.cfg 2019-02-25 19:11 - 2019-02-25 19:11 - 000360448 _____ C:\Users\kubas\Downloads\skeet.dll 2019-02-25 19:09 - 2019-02-25 19:09 - 001540608 _____ C:\Users\kubas\Downloads\getze.us.dll 2019-02-24 16:27 - 2019-02-24 16:27 - 000897024 _____ C:\Users\kubas\Downloads\purves_4.0 (1).dll 2019-02-23 16:43 - 2019-02-23 16:43 - 006212056 _____ (pepsoft.org) C:\Users\kubas\Downloads\worldpainter_2.5.10.exe 2019-02-22 21:36 - 2019-02-22 21:36 - 000008438 _____ C:\Users\kubas\Downloads\666.cfg 2019-02-22 16:57 - 2019-02-22 16:57 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\EasyAntiCheat 2019-02-22 13:26 - 2019-03-04 22:14 - 000000000 ___DC C:\Users\kubas\Desktop\SSY I INNY COW 2019-02-22 11:56 - 2019-02-22 11:56 - 000049709 _____ C:\Users\kubas\Downloads\senseuimenu-master (1).zip 2019-02-22 11:50 - 2019-02-22 11:50 - 000036953 _____ C:\Users\kubas\Downloads\endless_silence 2019-02-22 11:31 - 2019-02-22 11:31 - 000008358 _____ C:\Users\kubas\Downloads\beanerboi (2).cfg 2019-02-15 18:04 - 2019-02-15 18:04 - 015334087 _____ C:\Users\kubas\Downloads\Remix Beta.rar 2019-02-15 12:45 - 2019-02-15 12:46 - 030304559 _____ C:\Users\kubas\Downloads\ZeroDay-93983d5de95f9296c7bdedba7ebc8924425716ca.zip 2019-02-15 12:45 - 2019-02-15 12:45 - 000073482 _____ C:\Users\kubas\Downloads\jarfix.exe 2019-02-15 12:45 - 2019-02-15 12:45 - 000001853 _____ C:\Users\kubas\Downloads\HWID.jar 2019-02-15 12:34 - 2019-02-15 12:34 - 000000018 ____C C:\Users\kubas\AppData\Roaming\app-auth-token 2019-02-15 12:33 - 2019-02-15 12:34 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\Authenticator 2019-02-15 12:31 - 2019-02-15 12:31 - 038376846 _____ C:\Users\kubas\Downloads\Authenticator.zip 2019-02-15 11:01 - 2019-02-15 11:02 - 040020365 _____ C:\Users\kubas\Downloads\Sigma.zip 2019-02-15 10:38 - 2019-02-15 10:38 - 002260957 _____ C:\Users\kubas\Downloads\mybb_1819.zip 2019-02-15 10:06 - 2019-02-15 10:06 - 000000119 _____ C:\Users\kubas\Downloads\imgui.ini 2019-02-14 17:15 - 2019-02-14 17:15 - 000669008 _____ C:\Users\kubas\Downloads\UCtGnMWpCcoRZVWxkVKp3Ulg.htm 2019-02-14 17:15 - 2019-02-14 17:15 - 000661294 _____ C:\Users\kubas\Downloads\UCtGnMWpCcoRZVWxkVKp3Ulg (1).htm 2019-02-14 17:15 - 2019-02-14 17:15 - 000660976 _____ C:\Users\kubas\Downloads\UCtGnMWpCcoRZVWxkVKp3Ulg (2).htm 2019-02-14 17:15 - 2019-02-14 17:15 - 000425457 _____ C:\Users\kubas\Downloads\pobrane.htm 2019-02-14 17:15 - 2019-02-14 17:15 - 000410979 _____ C:\Users\kubas\Downloads\pobrane (1).htm 2019-02-14 15:30 - 2019-02-14 15:30 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\malsary.space 2019-02-14 15:28 - 2019-02-14 15:28 - 001027584 _____ C:\Users\kubas\Downloads\malsary.dll 2019-02-14 15:15 - 2019-02-14 15:18 - 075224749 _____ C:\Users\kubas\Downloads\Archive-3d4d.zip 2019-02-14 12:28 - 2019-02-14 12:28 - 713141518 _____ C:\Users\kubas\Downloads\VRSpecter's CS Guns (1).rar 2019-02-14 11:48 - 2019-02-14 11:52 - 075221635 _____ C:\Users\kubas\Downloads\Pandas Exhibition Fixed by Panda.zip 2019-02-14 11:27 - 2019-02-14 11:27 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\org.jackhuang.hmcl.Launcher 2019-02-14 11:20 - 2019-02-14 11:20 - 002690156 _____ (huanghongxun) C:\Users\kubas\Downloads\HMCL-3.2.121.exe 2019-02-14 11:20 - 2019-02-14 11:20 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\.hmcl 2019-02-14 11:17 - 2019-02-14 11:17 - 002855437 _____ C:\Users\kubas\Downloads\HMCL-11820e31a85d8989e41d97476712b07e7094b190.zip 2019-02-14 11:13 - 2019-02-14 11:13 - 000000000 ___DC C:\Users\kubas\Documents\MEGAsync Downloads 2019-02-14 11:12 - 2019-02-14 11:12 - 000000000 ___DC C:\Users\kubas\Documents\MEGAsync 2019-02-14 11:11 - 2019-02-14 11:11 - 000000000 ___DC C:\Users\kubas\AppData\Local\Mega Limited 2019-02-14 11:11 - 2019-02-14 11:11 - 000000000 ____D C:\Windows\System32\Tasks\MEGA 2019-02-14 11:11 - 2019-02-14 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGAsync 2019-02-14 11:11 - 2019-02-14 11:11 - 000000000 ____D C:\ProgramData\MEGAsync 2019-02-13 18:31 - 2019-02-13 18:31 - 000178101 _____ C:\Users\kubas\Downloads\Chocapic13 V6 High (1).zip 2019-02-13 18:30 - 2019-02-13 18:30 - 000196912 _____ C:\Users\kubas\Downloads\Chocapic13 V6 Ultra.zip 2019-02-13 18:30 - 2019-02-13 18:30 - 000178101 _____ C:\Users\kubas\Downloads\Chocapic13 V6 High.zip 2019-02-13 17:54 - 2019-02-13 17:54 - 000196835 _____ C:\Users\kubas\Downloads\Chocapic13 V6 Extreme.zip 2019-02-13 17:52 - 2019-02-13 17:52 - 000824512 _____ C:\Users\kubas\Downloads\Chocapic13 V7.1 Extreme.zip 2019-02-13 16:42 - 2019-02-13 16:42 - 000036966 _____ C:\Users\kubas\Downloads\loli_police 2019-02-13 16:40 - 2019-02-13 16:40 - 000041113 _____ C:\Users\kubas\Downloads\senseuimenu-master.zip 2019-02-13 14:45 - 2019-02-13 14:45 - 000262144 _____ C:\Users\kubas\Downloads\INT (1).dll 2019-02-13 13:26 - 2019-02-13 13:26 - 033542144 _____ C:\Users\kubas\Downloads\EpicInstaller-7.16.0.msi 2019-02-13 13:24 - 2019-02-14 11:04 - 000000000 __HDC C:\Users\kubas\AppData\Roaming\SubDir 2019-02-13 13:07 - 2019-02-13 13:07 - 000900096 _____ C:\Users\kubas\Downloads\purves_5.dll 2019-02-13 12:57 - 2019-02-13 12:57 - 000544256 _____ C:\Users\kubas\Downloads\Cheat_5.dll 2019-02-13 12:49 - 2019-02-13 12:49 - 010229760 _____ C:\Users\kubas\Downloads\xp-bot.dll 2019-02-13 12:49 - 2019-02-13 12:49 - 000014880 _____ C:\Users\kubas\Downloads\test.cfg 2019-02-13 12:41 - 2019-02-06 08:54 - 004527584 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe 2019-02-13 12:41 - 2019-02-06 08:53 - 001634704 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll 2019-02-13 12:41 - 2019-02-06 08:32 - 003648512 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys 2019-02-13 12:41 - 2019-02-06 08:30 - 004052992 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2019-02-13 12:41 - 2019-02-06 08:11 - 001454648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll 2019-02-13 12:41 - 2019-02-06 07:52 - 004053504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2019-02-13 12:41 - 2019-02-06 07:52 - 002891776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys 2019-02-13 12:41 - 2019-02-06 04:01 - 001989040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2019-02-13 12:41 - 2019-02-06 04:01 - 001221432 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe 2019-02-13 12:41 - 2019-02-06 04:01 - 001029944 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe 2019-02-13 12:41 - 2019-02-06 04:01 - 000720480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll 2019-02-13 12:41 - 2019-02-06 04:01 - 000076088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys 2019-02-13 12:41 - 2019-02-06 04:00 - 009084432 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2019-02-13 12:41 - 2019-02-06 04:00 - 007520112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll 2019-02-13 12:41 - 2019-02-06 04:00 - 006572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-02-13 12:41 - 2019-02-06 04:00 - 002719760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2019-02-13 12:41 - 2019-02-06 04:00 - 002465792 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2019-02-13 12:41 - 2019-02-06 04:00 - 002421264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2019-02-13 12:41 - 2019-02-06 04:00 - 001130568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll 2019-02-13 12:41 - 2019-02-06 04:00 - 001098272 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll 2019-02-13 12:41 - 2019-02-06 04:00 - 000945680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys 2019-02-13 12:41 - 2019-02-06 04:00 - 000899728 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll 2019-02-13 12:41 - 2019-02-06 04:00 - 000376120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys 2019-02-13 12:41 - 2019-02-06 04:00 - 000043536 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe 2019-02-13 12:41 - 2019-02-06 03:59 - 001922064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys 2019-02-13 12:41 - 2019-02-06 03:52 - 022014464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll 2019-02-13 12:41 - 2019-02-06 03:45 - 019404288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2019-02-13 12:41 - 2019-02-06 03:42 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2019-02-13 12:41 - 2019-02-06 03:41 - 025853952 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll 2019-02-13 12:41 - 2019-02-06 03:41 - 005307392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2019-02-13 12:41 - 2019-02-06 03:40 - 005792256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll 2019-02-13 12:41 - 2019-02-06 03:38 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll 2019-02-13 12:41 - 2019-02-06 03:38 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2019-02-13 12:41 - 2019-02-06 03:37 - 004515840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2019-02-13 12:41 - 2019-02-06 03:37 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll 2019-02-13 12:41 - 2019-02-06 03:33 - 022714880 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2019-02-13 12:41 - 2019-02-06 03:29 - 004865536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2019-02-13 12:41 - 2019-02-06 03:28 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2019-02-13 12:41 - 2019-02-06 03:27 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll 2019-02-13 12:41 - 2019-02-06 03:27 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll 2019-02-13 12:41 - 2019-02-06 03:27 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys 2019-02-13 12:41 - 2019-02-06 03:27 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2019-02-13 12:41 - 2019-02-06 03:26 - 007599616 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll 2019-02-13 12:41 - 2019-02-06 03:26 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2019-02-13 12:41 - 2019-02-06 03:26 - 000174592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll 2019-02-13 12:41 - 2019-02-06 03:26 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll 2019-02-13 12:41 - 2019-02-06 03:25 - 000736256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2019-02-13 12:41 - 2019-02-06 03:25 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll 2019-02-13 12:41 - 2019-02-06 03:24 - 004937728 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2019-02-13 12:41 - 2019-02-06 03:24 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll 2019-02-13 12:41 - 2019-02-06 03:22 - 000960512 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll 2019-02-13 12:41 - 2019-02-06 03:22 - 000885760 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll 2019-02-13 12:41 - 2019-01-12 03:28 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll 2019-02-13 12:41 - 2019-01-09 18:42 - 004716032 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll 2019-02-13 12:41 - 2019-01-09 18:41 - 012730368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2019-02-13 12:41 - 2019-01-09 18:40 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll 2019-02-13 12:41 - 2019-01-09 18:36 - 001054720 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe 2019-02-13 12:41 - 2019-01-09 10:55 - 011919872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2019-02-13 12:41 - 2019-01-09 10:55 - 000150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll 2019-02-13 12:41 - 2019-01-09 09:55 - 001285432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2019-02-13 12:41 - 2019-01-09 09:48 - 000527368 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2019-02-13 12:41 - 2019-01-09 06:59 - 000611848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2019-02-13 12:41 - 2019-01-09 06:44 - 000078688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll 2019-02-13 12:41 - 2019-01-09 06:43 - 006043496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll 2019-02-13 12:41 - 2019-01-09 06:43 - 004789944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2019-02-13 12:41 - 2019-01-09 06:43 - 002253480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2019-02-13 12:41 - 2019-01-09 06:43 - 001981280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2019-02-13 12:41 - 2019-01-09 06:43 - 000607376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2019-02-13 12:41 - 2019-01-09 06:43 - 000287640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2019-02-13 12:41 - 2019-01-09 06:43 - 000129088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2019-02-13 12:41 - 2019-01-09 06:42 - 001035232 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe 2019-02-13 12:41 - 2019-01-09 06:42 - 000092704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys 2019-02-13 12:41 - 2019-01-09 06:40 - 002765336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2019-02-13 12:41 - 2019-01-09 06:40 - 000432952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys 2019-02-13 12:41 - 2019-01-09 06:40 - 000090872 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll 2019-02-13 12:41 - 2019-01-09 06:39 - 007436016 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll 2019-02-13 12:41 - 2019-01-09 06:39 - 004404720 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2019-02-13 12:41 - 2019-01-09 06:39 - 002571632 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2019-02-13 12:41 - 2019-01-09 06:39 - 000789696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2019-02-13 12:41 - 2019-01-09 06:39 - 000349656 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2019-02-13 12:41 - 2019-01-09 06:39 - 000260800 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2019-02-13 12:41 - 2019-01-09 06:39 - 000175416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys 2019-02-13 12:41 - 2019-01-09 06:39 - 000164192 _____ (Microsoft Corporation) C:\Windows\system32\rmclient.dll 2019-02-13 12:41 - 2019-01-09 06:39 - 000085472 _____ (Microsoft Corporation) C:\Windows\system32\svchost.exe 2019-02-13 12:41 - 2019-01-09 06:33 - 016597504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2019-02-13 12:41 - 2019-01-09 06:32 - 013878272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2019-02-13 12:41 - 2019-01-09 06:29 - 008188928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2019-02-13 12:41 - 2019-01-09 06:27 - 004710912 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll 2019-02-13 12:41 - 2019-01-09 06:27 - 004384256 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll 2019-02-13 12:41 - 2019-01-09 06:27 - 001587712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll 2019-02-13 12:41 - 2019-01-09 06:26 - 006661632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2019-02-13 12:41 - 2019-01-09 06:26 - 003396608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll 2019-02-13 12:41 - 2019-01-09 06:26 - 002966016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll 2019-02-13 12:41 - 2019-01-09 06:25 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\spacebridge.dll 2019-02-13 12:41 - 2019-01-09 06:24 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll 2019-02-13 12:41 - 2019-01-09 06:23 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll 2019-02-13 12:41 - 2019-01-09 06:23 - 001189888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll 2019-02-13 12:41 - 2019-01-09 06:22 - 001551360 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll 2019-02-13 12:41 - 2019-01-09 06:22 - 001395200 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll 2019-02-13 12:41 - 2019-01-09 06:22 - 000624640 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll 2019-02-13 12:41 - 2019-01-09 06:22 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll 2019-02-13 12:41 - 2019-01-09 06:22 - 000333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll 2019-02-13 12:41 - 2019-01-09 06:21 - 002173440 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll 2019-02-13 12:41 - 2019-01-09 06:20 - 001000448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll 2019-02-13 12:41 - 2019-01-09 06:20 - 000916480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll 2019-02-13 12:41 - 2019-01-09 06:20 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll 2019-02-13 12:41 - 2019-01-09 06:19 - 000678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2019-02-13 12:41 - 2019-01-09 06:19 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll 2019-02-13 12:41 - 2019-01-09 06:19 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll 2019-02-13 12:41 - 2019-01-09 06:19 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll 2019-02-13 12:41 - 2019-01-09 06:18 - 000195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll 2019-02-13 12:41 - 2019-01-08 04:06 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll 2019-02-13 12:40 - 2019-02-06 08:35 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll 2019-02-13 12:40 - 2019-02-06 08:30 - 001662464 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll 2019-02-13 12:40 - 2019-02-06 08:30 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll 2019-02-13 12:40 - 2019-02-06 07:57 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll 2019-02-13 12:40 - 2019-02-06 07:52 - 001470976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll 2019-02-13 12:40 - 2019-02-06 04:01 - 000566568 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe 2019-02-13 12:40 - 2019-02-06 04:01 - 000134968 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll 2019-02-13 12:40 - 2019-02-06 04:01 - 000033576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NtlmShared.dll 2019-02-13 12:40 - 2019-02-06 04:00 - 001257904 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2019-02-13 12:40 - 2019-02-06 04:00 - 001140680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2019-02-13 12:40 - 2019-02-06 04:00 - 000466960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2019-02-13 12:40 - 2019-02-06 04:00 - 000038792 _____ (Microsoft Corporation) C:\Windows\system32\NtlmShared.dll 2019-02-13 12:40 - 2019-02-06 03:59 - 001457248 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2019-02-13 12:40 - 2019-02-06 03:59 - 000983128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2019-02-13 12:40 - 2019-02-06 03:59 - 000144288 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2019-02-13 12:40 - 2019-02-06 03:40 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll 2019-02-13 12:40 - 2019-02-06 03:28 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll 2019-02-13 12:40 - 2019-02-06 03:26 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys 2019-02-13 12:40 - 2019-02-06 03:23 - 000393216 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll 2019-02-13 12:40 - 2019-02-06 03:21 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys 2019-02-13 12:40 - 2019-02-06 02:04 - 000001314 _____ C:\Windows\system32\tcbres.wim 2019-02-13 12:40 - 2019-01-12 09:56 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll 2019-02-13 12:40 - 2019-01-09 19:08 - 000309560 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2019-02-13 12:40 - 2019-01-09 18:57 - 000720536 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2019-02-13 12:40 - 2019-01-09 18:41 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll 2019-02-13 12:40 - 2019-01-09 18:35 - 002919936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll 2019-02-13 12:40 - 2019-01-09 11:14 - 000607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2019-02-13 12:40 - 2019-01-09 06:43 - 001620264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2019-02-13 12:40 - 2019-01-09 06:43 - 000581592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll 2019-02-13 12:40 - 2019-01-09 06:43 - 000127744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rmclient.dll 2019-02-13 12:40 - 2019-01-09 06:43 - 000071456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe 2019-02-13 12:40 - 2019-01-09 06:40 - 001063224 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi 2019-02-13 12:40 - 2019-01-09 06:40 - 000226104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2019-02-13 12:40 - 2019-01-09 06:39 - 001943128 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2019-02-13 12:40 - 2019-01-09 06:39 - 000713264 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll 2019-02-13 12:40 - 2019-01-09 06:39 - 000269624 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll 2019-02-13 12:40 - 2019-01-09 06:29 - 002500096 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe 2019-02-13 12:40 - 2019-01-09 06:24 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll 2019-02-13 12:40 - 2019-01-09 06:24 - 000157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spacebridge.dll 2019-02-13 12:40 - 2019-01-09 06:23 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll 2019-02-13 12:40 - 2019-01-09 06:23 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll 2019-02-13 12:40 - 2019-01-09 06:23 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll 2019-02-13 12:40 - 2019-01-09 06:23 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll 2019-02-13 12:40 - 2019-01-09 06:23 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll 2019-02-13 12:40 - 2019-01-09 06:23 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CapabilityAccessManagerClient.dll 2019-02-13 12:40 - 2019-01-09 06:22 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll 2019-02-13 12:40 - 2019-01-09 06:22 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll 2019-02-13 12:40 - 2019-01-09 06:22 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll 2019-02-13 12:40 - 2019-01-09 06:21 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll 2019-02-13 12:40 - 2019-01-09 06:21 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll 2019-02-13 12:40 - 2019-01-09 06:20 - 000607232 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll 2019-02-13 12:40 - 2019-01-09 05:34 - 000806320 _____ C:\Windows\SysWOW64\locale.nls 2019-02-13 12:40 - 2019-01-09 05:34 - 000806320 _____ C:\Windows\system32\locale.nls 2019-02-13 12:40 - 2019-01-08 10:08 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll 2019-02-13 12:40 - 2019-01-08 04:06 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll 2019-02-13 12:40 - 2019-01-08 04:06 - 000000072 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin 2019-02-13 12:39 - 2019-02-13 12:39 - 000506368 _____ C:\Users\kubas\Downloads\alpha.dll 2019-02-13 12:33 - 2019-02-13 12:33 - 001543168 _____ () C:\Users\kubas\Downloads\azuuware-cracked.exe 2019-02-12 15:02 - 2019-02-12 15:02 - 000114296 _____ C:\Users\kubas\Downloads\stickrpghook_[unknowncheats.me]_.rar 2019-02-12 10:08 - 2019-02-12 10:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends 2019-02-10 12:30 - 2019-02-10 12:30 - 000008358 _____ C:\Users\kubas\Downloads\beanerboi (1).cfg 2019-02-10 12:30 - 2019-02-10 12:30 - 000008300 _____ C:\Users\kubas\Downloads\hvh (3).cfg 2019-02-09 19:00 - 2019-02-09 19:01 - 713141518 _____ C:\Users\kubas\Downloads\VRSpecter's CS Guns.rar 2019-02-08 16:42 - 2019-02-08 16:42 - 000002305 _____ C:\Users\kubas\Downloads\wishful-blue.theme.css.zip 2019-02-08 16:42 - 2019-02-08 16:42 - 000002155 _____ C:\Users\kubas\Downloads\Aurora.theme.css.zip 2019-02-08 16:42 - 2019-02-08 16:42 - 000002155 _____ C:\Users\kubas\Downloads\Aurora.theme.css (1).zip 2019-02-08 16:38 - 2019-02-08 16:38 - 000002050 _____ C:\Users\kubas\Downloads\chemical.theme.css.zip 2019-02-08 16:38 - 2019-02-08 16:38 - 000002050 _____ C:\Users\kubas\Downloads\chemical.theme.css (1).zip 2019-02-08 16:35 - 2019-02-08 16:35 - 000134656 _____ () C:\Users\kubas\Downloads\EnhancedDiscord.exe 2019-02-08 16:35 - 2019-02-08 16:35 - 000000000 ____D C:\Users\kubas\Downloads\EnhancedDiscord 2019-02-07 22:56 - 2019-02-07 22:56 - 000062840 _____ C:\Users\kubas\Downloads\bameware (1).wav 2019-02-07 22:53 - 2019-02-07 22:53 - 000042677 _____ C:\Users\kubas\Downloads\moan.zip 2019-02-07 22:49 - 2019-02-07 22:49 - 000179448 _____ C:\Users\kubas\Downloads\Killsounds.rar 2019-02-07 22:49 - 2019-02-07 22:49 - 000162511 _____ C:\Users\kubas\Downloads\xb4u4e91nm.zip 2019-02-07 22:48 - 2019-02-07 22:48 - 000049196 _____ C:\Users\kubas\Downloads\Click.wav 2019-02-06 21:03 - 2019-02-06 21:03 - 000008300 _____ C:\Users\kubas\Downloads\beanerboi.cfg 2019-02-06 18:40 - 2019-02-06 18:40 - 000037161 _____ C:\Users\kubas\Downloads\owned_disapointment 2019-02-06 16:21 - 2019-02-06 16:22 - 000000000 ____D C:\ProgramData\AnyDesk 2019-02-06 16:21 - 2019-02-06 16:21 - 000000000 ____D C:\Program Files (x86)\AnyDesk 2019-02-06 16:11 - 2019-02-06 16:11 - 002126120 _____ C:\Users\kubas\Downloads\AnyDesk.exe 2019-02-06 16:11 - 2019-02-06 16:11 - 002126120 _____ C:\Users\kubas\Downloads\AnyDesk (1).exe 2019-02-06 16:11 - 2019-02-06 16:11 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\AnyDesk 2019-02-06 16:07 - 2019-02-06 16:07 - 000000000 ____D C:\Windows\system32\ar 2019-02-05 22:33 - 2019-02-05 22:41 - 632950997 _____ C:\Users\kubas\Downloads\Models for Bypassing sv_pure.rar 2019-02-05 18:36 - 2019-02-05 18:36 - 000008268 _____ C:\Users\kubas\Downloads\onetapped.cfg 2019-02-05 14:22 - 2019-02-05 14:22 - 006014383 _____ C:\Users\kubas\Downloads\cheat_modules (2).rar 2019-02-04 21:30 - 2019-02-04 21:30 - 010235904 _____ C:\Users\kubas\Downloads\onetap (2).exe 2019-02-04 15:13 - 2019-02-04 15:13 - 000036625 _____ C:\Users\kubas\Downloads\Roblox_KOT 2019-02-03 23:00 - 2019-02-03 23:00 - 000008209 _____ C:\Users\kubas\Downloads\naice (1).cfg 2019-02-03 23:00 - 2019-02-03 23:00 - 000007888 _____ C:\Users\kubas\Downloads\hvh (2).cfg 2019-02-03 22:00 - 2019-02-03 22:00 - 005081919 _____ C:\Users\kubas\Downloads\JJSploit v4-Installer (1).exe 2019-02-03 21:55 - 2019-02-03 21:55 - 000782336 _____ () C:\Users\kubas\Downloads\Multiple_ROBLOX.exe 2019-02-03 21:26 - 2019-02-03 21:26 - 000639244 _____ C:\Users\kubas\Downloads\Future (1).rar 2019-02-03 20:46 - 2019-02-03 20:46 - 004465572 _____ C:\Users\kubas\Downloads\mad_city_script__update__3b588.zip 2019-02-03 20:27 - 2019-02-03 20:27 - 003681196 _____ C:\Users\kubas\Downloads\Proxo_Reborn_V1.6.rar 2019-02-03 20:26 - 2019-02-03 20:26 - 005081919 _____ C:\Users\kubas\Downloads\JJSploit v4-Installer.exe 2019-02-03 16:47 - 2019-02-03 16:47 - 000008268 _____ C:\Users\kubas\Downloads\HvH (1).cfg 2019-02-03 14:58 - 2019-02-02 19:31 - 010235904 ____C C:\Users\kubas\Desktop\onetap.exe 2019-02-03 14:55 - 2019-02-03 14:57 - 000000431 _____ C:\ProgramData\SteamAccountGenerator.ini 2019-02-03 14:55 - 2019-02-03 14:55 - 002506897 _____ C:\Users\kubas\Downloads\steam acc gene.zip 2019-02-03 14:55 - 2019-02-03 14:55 - 001022252 _____ C:\Users\kubas\Downloads\Release.7z 2019-02-03 14:50 - 2019-02-03 14:50 - 000377147 _____ C:\Users\kubas\Downloads\Ally's Generator_mpgh.net.zip 2019-02-03 14:45 - 2019-02-03 14:45 - 006014383 _____ C:\Users\kubas\Downloads\cheat_modules (1).rar 2019-02-03 14:14 - 2019-02-03 14:14 - 006014383 _____ C:\Users\kubas\Downloads\cheat_modules.rar 2019-02-03 13:01 - 2019-02-03 13:02 - 010235904 _____ C:\Users\kubas\Downloads\onetap (1).exe 2019-02-03 12:36 - 2019-02-03 12:36 - 000008209 _____ C:\Users\kubas\Downloads\kitty-legit.cfg 2019-02-03 12:21 - 2019-02-03 12:21 - 000035383 _____ C:\Users\kubas\Downloads\psilentscout 2019-02-03 12:16 - 2019-02-03 12:17 - 000008209 _____ C:\Users\kubas\Downloads\naice.cfg 2019-02-03 01:05 - 2019-02-03 01:05 - 000008251 _____ C:\Users\kubas\Downloads\WeeWooV3_1.cfg 2019-02-03 00:17 - 2019-02-03 00:17 - 000008443 _____ C:\Users\kubas\Downloads\flurry.cfg ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-03-05 19:59 - 2018-10-01 19:40 - 000000000 ____D C:\ProgramData\Adguard 2019-03-05 19:51 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-03-05 19:45 - 2018-06-25 12:45 - 000000000 ____D C:\Users\kubas 2019-03-05 19:28 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps 2019-03-05 19:28 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\AppReadiness 2019-03-05 19:24 - 2018-06-25 12:47 - 001763504 _____ C:\Windows\system32\PerfStringBackup.INI 2019-03-05 19:24 - 2018-04-12 16:51 - 000782334 _____ C:\Windows\system32\perfh015.dat 2019-03-05 19:24 - 2018-04-12 16:51 - 000151496 _____ C:\Windows\system32\perfc015.dat 2019-03-05 19:24 - 2018-04-12 00:36 - 000000000 ____D C:\Windows\INF 2019-03-05 19:20 - 2019-01-17 20:12 - 000000000 ____D C:\ProgramData\Origin 2019-03-05 19:20 - 2019-01-17 18:42 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\Origin 2019-03-05 19:20 - 2018-06-25 12:46 - 000000000 ____D C:\ProgramData\NVIDIA 2019-03-05 19:19 - 2019-01-17 20:13 - 000000000 ____D C:\Program Files (x86)\Origin 2019-03-05 19:19 - 2018-07-16 14:56 - 000003468 _____ C:\Windows\System32\Tasks\CAM 2019-03-05 19:19 - 2018-06-26 11:24 - 000003480 _____ C:\Windows\System32\Tasks\Launcher GIGABYTE XTREME GAMING ENGINE 2019-03-05 19:19 - 2018-06-25 20:58 - 000000000 ____D C:\Program Files (x86)\Origin Games 2019-03-05 19:18 - 2018-10-01 19:40 - 000000000 ____D C:\Program Files (x86)\Adguard 2019-03-05 19:18 - 2018-06-25 17:42 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-03-05 19:18 - 2018-04-11 22:04 - 000524288 _____ C:\Windows\system32\config\BBI 2019-03-05 19:04 - 2018-06-26 20:58 - 000000000 ___DC C:\Users\kubas\AppData\Local\CrashDumps 2019-03-05 18:56 - 2018-12-29 18:22 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\.minecraft 2019-03-05 18:55 - 2018-06-25 16:38 - 000000000 ____D C:\Program Files (x86)\Minecraft 2019-03-05 18:51 - 2018-08-02 09:37 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\aalgui 2019-03-05 17:20 - 2018-06-25 13:18 - 000000059 ____C C:\Users\kubas\AppData\Local\UserProducts.xml 2019-03-05 17:20 - 2018-06-25 13:18 - 000000000 ____D C:\Program Files (x86)\Skillbrains 2019-03-05 16:56 - 2018-08-23 23:47 - 000000000 ___DC C:\Users\kubas\AppData\Local\Adobe 2019-03-05 16:53 - 2018-06-30 13:26 - 000002310 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-03-05 16:53 - 2018-06-25 17:42 - 000000000 ____D C:\Windows\system32\SleepStudy 2019-03-04 22:31 - 2018-06-25 13:21 - 000000000 ___DC C:\Users\kubas\Desktop\PLIKI 2019-03-02 18:44 - 2018-11-13 23:00 - 000000000 ___DC C:\Users\kubas\AppData\Local\ElevatedDiagnostics 2019-03-01 22:35 - 2018-06-25 13:01 - 000000000 ___DC C:\Users\kubas\AppData\Local\D3DSCache 2019-03-01 20:14 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\LiveKernelReports 2019-03-01 18:55 - 2018-11-17 18:50 - 000000000 ____D C:\Program Files\rempl 2019-02-28 19:26 - 2018-06-25 13:14 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\discord 2019-02-28 19:26 - 2018-06-25 12:45 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2019-02-26 18:06 - 2018-06-25 12:50 - 000003976 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-02-26 18:06 - 2018-06-25 12:50 - 000003940 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-02-26 18:06 - 2018-06-25 12:49 - 000004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-02-26 18:06 - 2018-06-25 12:49 - 000004106 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-02-26 18:06 - 2018-06-25 12:49 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-02-26 18:06 - 2018-06-25 12:49 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-02-26 18:06 - 2018-06-25 12:49 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-02-26 18:06 - 2018-06-25 12:49 - 000003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-02-26 18:06 - 2018-06-25 12:49 - 000003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-02-26 18:06 - 2018-06-25 12:49 - 000003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-02-26 18:06 - 2018-06-25 12:49 - 000003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2019-02-26 18:06 - 2018-06-25 12:45 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2019-02-26 18:06 - 2018-06-25 12:45 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2019-02-24 15:26 - 2018-06-25 12:46 - 000000000 ___DC C:\Users\kubas\AppData\Local\Packages 2019-02-24 15:10 - 2018-07-10 16:43 - 000000000 ____D C:\ProgramData\Packages 2019-02-24 15:10 - 2018-06-25 12:47 - 000000000 ___DC C:\Users\kubas\AppData\Local\PlaceholderTileLogoFolder 2019-02-24 13:39 - 2018-06-26 17:37 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2019-02-23 16:44 - 2018-07-18 19:02 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\WorldPainter 2019-02-23 11:14 - 2018-06-25 17:42 - 000000000 ____D C:\Windows\system32\Drivers\wd 2019-02-22 21:31 - 2018-06-25 13:20 - 000000000 ___DC C:\Users\kubas\Desktop\GRY 2019-02-22 12:30 - 2018-08-02 09:37 - 000000000 ____D C:\AlphaAntiLeak 2019-02-22 11:27 - 2018-06-26 20:47 - 000000000 ____D C:\Windows\Minidump 2019-02-15 19:02 - 2018-06-26 08:56 - 000000000 ___DC C:\Users\kubas\AppData\Local\Ubisoft Game Launcher 2019-02-15 14:52 - 2018-11-18 19:47 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\Badlion Client 2019-02-15 12:25 - 2018-12-16 20:59 - 000000000 ____D C:\Program Files (x86)\VyprVPN 2019-02-14 21:48 - 2018-11-18 19:51 - 000000000 ___DC C:\Users\kubas\AppData\Local\Badlion Client 2019-02-14 11:37 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\NDF 2019-02-14 11:02 - 2018-06-25 17:42 - 000279096 _____ C:\Windows\system32\FNTCACHE.DAT 2019-02-14 11:01 - 2018-04-12 00:38 - 000000000 ___SD C:\Windows\SysWOW64\F12 2019-02-14 11:01 - 2018-04-12 00:38 - 000000000 ___SD C:\Windows\system32\F12 2019-02-14 11:01 - 2018-04-12 00:38 - 000000000 ___RD C:\Program Files\Windows Defender 2019-02-14 11:01 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\TextInput 2019-02-14 11:01 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\ShellExperiences 2019-02-14 11:01 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\bcastdvr 2019-02-13 13:27 - 2018-06-25 13:44 - 000000809 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk 2019-02-13 12:43 - 2018-04-12 00:30 - 000000000 ____D C:\Windows\CbsTemp 2019-02-13 12:40 - 2018-06-25 16:10 - 000000000 ____D C:\Windows\system32\MRT 2019-02-13 12:38 - 2018-06-25 16:10 - 129330784 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2019-02-13 12:34 - 2018-11-18 19:52 - 000792088 _____ () C:\Windows\system32\Drivers\BadlionAnticheat.sys 2019-02-12 15:11 - 2019-01-02 16:39 - 000000000 ___DC C:\Users\kubas\AppData\Local\.IdentityService 2019-02-12 10:08 - 2018-09-03 13:39 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller 2019-02-12 10:08 - 2018-06-25 12:49 - 000000000 ____D C:\ProgramData\Package Cache 2019-02-12 09:53 - 2018-08-23 23:47 - 000004688 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier 2019-02-12 09:53 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2019-02-12 09:53 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\Macromed 2019-02-07 23:05 - 2018-06-25 18:55 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2019-02-07 13:33 - 2018-04-12 16:53 - 000000000 ____D C:\Windows\OCR 2019-02-06 16:07 - 2018-06-25 13:45 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer 2019-02-06 16:07 - 2018-04-12 16:51 - 000000000 ____D C:\Windows\SysWOW64\winrm 2019-02-06 16:07 - 2018-04-12 16:51 - 000000000 ____D C:\Windows\SysWOW64\WCN 2019-02-06 16:07 - 2018-04-12 16:51 - 000000000 ____D C:\Windows\SysWOW64\slmgr 2019-02-06 16:07 - 2018-04-12 16:51 - 000000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2019-02-06 16:07 - 2018-04-12 16:51 - 000000000 ____D C:\Windows\system32\winrm 2019-02-06 16:07 - 2018-04-12 16:51 - 000000000 ____D C:\Windows\system32\WCN 2019-02-06 16:07 - 2018-04-12 16:51 - 000000000 ____D C:\Windows\system32\slmgr 2019-02-06 16:07 - 2018-04-12 16:51 - 000000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\SysWOW64\oobe 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\SysWOW64\MUI 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\SystemResetPlatform 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\oobe 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\MUI 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\system32\migwiz 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\PolicyDefinitions 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\IME 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\Help 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files\Common Files\system 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2019-02-06 16:07 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2019-02-06 16:07 - 2018-04-11 22:04 - 000000000 ____D C:\Windows\system32\Sysprep 2019-02-06 16:07 - 2018-04-11 22:04 - 000000000 ____D C:\Windows\servicing 2019-02-05 18:43 - 2018-12-11 20:53 - 000000000 ___DC C:\Users\kubas\AppData\Roaming\HYSTSvSLmB ==================== Pliki w katalogu głównym wybranych folderów ======= 2018-10-01 19:41 - 2018-10-01 19:41 - 000000259 _____ () C:\ProgramData\fontcacheev1.dat 2018-12-29 19:50 - 2019-01-28 22:08 - 000001745 ___HC () C:\Users\kubas\AppData\Roaming\.ias 2018-08-03 13:05 - 2018-08-03 13:05 - 000000402 ___HC () C:\Users\kubas\AppData\Roaming\.iasx 2019-02-15 12:34 - 2019-02-15 12:34 - 000000018 ____C () C:\Users\kubas\AppData\Roaming\app-auth-token 2018-08-21 01:08 - 2018-08-21 01:17 - 007800594 ____C () C:\Users\kubas\AppData\Roaming\jre1.8.jar 2018-08-16 15:45 - 2018-08-16 15:45 - 000001167 ____C () C:\Users\kubas\AppData\Roaming\trace_FilterInstaller.1.txt 2018-08-16 15:45 - 2018-08-26 11:08 - 000000905 ____C () C:\Users\kubas\AppData\Roaming\trace_FilterInstaller.txt 2018-08-16 15:45 - 2018-08-26 11:08 - 000000000 ____C () C:\Users\kubas\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt 2019-02-02 19:33 - 2019-03-05 18:35 - 000000036 ____C () C:\Users\kubas\AppData\Roaming\Microsoft\data.ot 2018-08-05 14:34 - 2018-08-05 14:34 - 000000205 ____C () C:\Users\kubas\AppData\Roaming\Microsoft\update.exe.bat 2018-09-22 11:19 - 2018-09-22 11:19 - 000000000 ____C () C:\Users\kubas\AppData\Local\hardware.txt 2018-09-22 11:19 - 2018-09-22 11:19 - 000000000 ____C () C:\Users\kubas\AppData\Local\irc.txt 2018-10-07 10:17 - 2018-10-07 10:18 - 000000410 ____C () C:\Users\kubas\AppData\Local\oobelibMkey.log 2018-06-25 19:31 - 2019-01-12 00:19 - 000007598 ____C () C:\Users\kubas\AppData\Local\resmon.resmoncfg 2018-06-25 13:18 - 2018-06-25 13:18 - 000000003 ____C () C:\Users\kubas\AppData\Local\updater.log 2018-06-25 13:18 - 2019-03-05 17:20 - 000000059 ____C () C:\Users\kubas\AppData\Local\UserProducts.xml ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\dllhost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\dllhost.exe => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo UWAGA: ==> Nie można uzyskać dostępu do BCD. LastRegBack: 2018-06-25 17:42 ==================== Koniec FRST.txt ============================