Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 10-06-2019 01 Uruchomiony przez Marcin (administrator) MARDSK (Gigabyte Technology Co., Ltd. Z97X-Gaming 5) (10-06-2019 20:27:17) Uruchomiony z C:\Users\Marcin\Desktop Załadowane profile: Marcin (Dostępne profile: Marcin) Platform: Windows 10 Pro Wersja 1809 17763.529 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe (Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\Adguard.exe (Adguard Software Limited -> Adguard Software Ltd) C:\Program Files (x86)\Adguard\AdguardSvc.exe (Alexandr Irza) [Brak podpisu cyfrowego] C:\Program Files (x86)\Volume2\Volume2.exe (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe (Alexey Nicolaychuk -> ) C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\SIV\thermald.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\Gigabyte\GService\GCloud.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe (Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe (Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Kristjan Skutta -> ) E:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe (Kristjan Skutta -> ) E:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Open Source Developer, Phillip Gibbons -> Highresolution Enterprises) D:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe (Support.com, Inc. -> SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8844032 2016-07-30] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [29696 2013-01-25] (Creative Technology Ltd.) [Brak podpisu cyfrowego] HKLM\...\Run: [XMouseButtonControl] => D:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1570512 2017-12-23] (Open Source Developer, Phillip Gibbons -> Highresolution Enterprises) HKLM-x32\...\Run: [Bonus.SSR.FR12] => D:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [1517088 2015-09-09] (ABBYY Production LLC -> ABBYY Production LLC.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO) HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1163264 2012-09-25] () [Brak podpisu cyfrowego] HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [Volume2] => C:\Program Files (x86)\Volume2\Volume2.exe [4797952 2018-06-23] (Alexandr Irza) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [405032 2019-05-08] (Corsair Memory, Inc. -> Corsair Memory, Inc.) HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\Run: [YoloMouse] => C:\Program Files\YoloMouse\YoloMouse.exe [222720 2019-04-29] () [Brak podpisu cyfrowego] HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46506040 2019-04-09] (Google LLC -> ) HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [9198512 2019-04-09] (Support.com, Inc. -> SUPERAntiSpyware) HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\Run: [Adguard] => C:\Program Files (x86)\Adguard\Adguard.exe [4158824 2019-05-30] (Adguard Software Limited -> Adguard Software Ltd) HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\Policies\Explorer: [HideSCAVolume] 0 HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\Policies\Explorer: [] HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\MountPoints2: {0c545546-3b2a-11e8-83ba-8afa5cf34226} - "I:\OnePlus_setup.exe" /s HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\MountPoints2: {584e1afa-36cb-11e9-848b-fcaa14985a33} - "I:\autorun.exe" HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\MountPoints2: {584e1c0a-36cb-11e9-848b-fcaa14985a33} - "I:\HiSuiteDownLoader.exe" HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\MountPoints2: {62a74d03-d4ca-11e6-834d-feea4f36b78c} - "J:\OnePlus_setup.exe" /s HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\MountPoints2: {9f9aa564-7cb8-11e9-84ac-fcaa14985a33} - "I:\OnePlus_setup.exe" /s HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\MountPoints2: {f7125063-7ece-11e9-84b3-fcaa14985a33} - "I:\OnePlus_setup.exe" /s HKLM\...\Drivers32: [VIDC.RTV1] => c:\windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Brak podpisu cyfrowego] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8237E44A-0054-442C-B6B6-EA0509993955}] -> C:\Program Files (x86)\Google\Chrome Beta\Application\75.0.3770.80\Installer\chrmstp.exe [2019-06-04] (Google LLC -> Google LLC) GroupPolicy: Ograniczenia ? <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {01B11490-3F2C-4775-B94C-F97DAEC3D430} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation) Task: {0573A1DD-9C3A-4477-AE48-2A3AC3C0414C} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {0857197E-371C-4471-9A9A-669CB9488C0F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-08] (Microsoft Corporation -> Microsoft Corporation) Task: {086B3E27-6FBA-4B3C-8BBC-7763A151D172} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-27] (Google Inc -> Google Inc.) Task: {114B0DF1-E90C-4713-A373-C2103830CD8F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA Task: {14F22C46-9573-4197-9E3A-17AF60BC0080} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849720 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1742BCE8-FDB7-4442-8D53-7BBCFA680E1B} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-08] (Microsoft Corporation -> Microsoft Corporation) Task: {18C491EA-FE66-4998-BAF7-9905B82D5FAE} - System32\Tasks\RTSS => C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe [259176 2018-10-27] (Alexey Nicolaychuk -> ) Task: {1CBE6B0E-0223-4CDD-BAA4-0024BA4F0694} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA Task: {1CD87ECB-8451-4BBC-96CC-AAC1532992CD} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-08] (Microsoft Corporation -> Microsoft Corporation) Task: {23A53B86-F652-48EF-A37B-35CE990BE524} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [4107248 2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) Task: {23DC5299-298D-469B-BACF-7D194F83BCE2} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {24BADE77-3E09-435F-98E8-28AF214A0752} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849720 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {31FB974A-46DB-4399-8C3E-9C86B02E9542} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {329D7B7B-FF27-48FE-AD0D-4C40EE647A51} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA Task: {33C7C915-2833-4E30-A734-A8AA9B3B5EEB} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426416 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {34642A8B-F6A4-42E8-A7F0-89113611A6E1} - System32\Tasks\SUPERAntiSpyware Scheduled Task f31906e0-dcc0-478d-b69f-5748c3391323 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944 2013-11-07] (SUPERAntiSpyware.com -> SUPERAdBlocker.com) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {4680F8EF-5C3F-414B-871C-075E5D7119CE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4470312 2019-06-08] (Microsoft Corporation -> Microsoft Corporation) Task: {4F58ECFC-3D06-481A-AC16-88373C7D9263} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [591160 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {566232BF-B143-40AC-94BF-69C96E18B88F} - System32\Tasks\SUPERAntiSpyware Scheduled Task 60eb1bec-61de-4c40-a7ec-761b892efd42 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944 2013-11-07] (SUPERAntiSpyware.com -> SUPERAdBlocker.com) Task: {5926305B-CFD0-4194-BBD2-6206808BFA84} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [31232 2018-09-15] (Microsoft Windows -> Microsoft Corporation) Task: {5C8CBBF4-321A-4606-BE6A-E58461908DF1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation) Task: {6743630D-6F3F-47C2-A074-E0FC5CBF1806} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4470312 2019-06-08] (Microsoft Corporation -> Microsoft Corporation) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {7FFDE0FD-B045-4798-B5B4-605FACE8D05D} - System32\Tasks\e-pity2017_styczen => D:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [1377248 2018-04-28] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8D411648-01FB-4C40-8976-D2556DBE0D37} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd) Task: {929B22C9-4F3F-4D5A-9F68-EBF69F375441} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA Task: {9C8DED20-18BA-4573-9306-D967E0B922E4} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877368 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9DBF9D27-0585-4DEA-8D05-97D8208B56A7} - System32\Tasks\Sonel\Sonel Analysis 3\Marcin\Start Sonel Analysis 3 => Launcher.exe Task: {A441B9DC-0079-46C6-88C3-A3D44020BE65} - System32\Tasks\e-pity2017_kwiecien => D:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [1377248 2018-04-28] (e-file sp. z o.o. -> e-file sp. z o.o. sp. k.) Task: {B0EAA177-2DA9-4DEF-A73E-5C3B29E82364} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253872 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) Task: {B8D84E7D-8425-4ADD-8A29-307D8C896E2F} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {BB156FBF-C7E4-4350-AE6B-7EC4B1E2C61F} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877368 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C928B83D-46B1-436A-956A-D749AACDCB55} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877368 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CA33F2AB-BDEA-4302-A455-0318890AB2FE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-27] (Google Inc -> Google Inc.) Task: {CBA8534B-C0FF-4D0E-8970-8E8FD5A1467D} - \WPD\SqmUpload_S-1-5-21-885117350-1244477085-751266186-1001 -> Brak pliku <==== UWAGA Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {CE3CF0DB-E25C-45F9-A477-6B923E64E9F0} - \Microsoft\Windows\Setup\gwx\rundetector -> Brak pliku <==== UWAGA Task: {D12B2958-FBF9-4C79-B24B-90BCB5764328} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-17] (Piriform Software Ltd -> Piriform Software Ltd) Task: {D79E6E2F-564F-4BF1-8CA6-2C7854BEBC72} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {D8FB3FB9-DC61-4B56-8423-27AAFF634EDD} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877368 2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E102505F-8B0D-46F4-BABB-3AD967FBDF09} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {E5D11462-7EFB-4C0A-BFF0-39BB074B10D6} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {E7F714F6-C18B-4B43-A731-8A476F65D9D6} - \Microsoft\Windows\Setup\EOONotify -> Brak pliku <==== UWAGA Task: {EBD441A3-AD9A-4A85-846B-87F38581312F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-08] (Microsoft Corporation -> Microsoft Corporation) Task: {EDCDBB83-4148-47B8-B384-F205ABDE18F6} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {F30906F7-BC96-4A90-8495-269A5246DC8F} - System32\Tasks\ASUS Live Update Task Schedule => C:\Program Files (x86)\ASUS\GPU Tweak\ASUSLiveUpdate.exe Task: {F82292BF-09F7-4002-A634-B79FAA4A8106} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {F9945FB9-9900-4613-A589-5739604EA0B1} - System32\Tasks\Sonel\Sonel Analysis 3\Marcin\Start WiFi Pairing Wizard => Launcher.exe Task: {FD7CE3DB-5B89-407C-AA65-20A07EEA18FB} - System32\Tasks\{81E65D8B-8FC3-4CFE-9FBF-435EFD15A8EB} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\DIFX\D0E162E165AA2A2B\DPInst.exe" -c /u C:\Windows\system32\DRVSTORE\xqhdrv_651851341C5331542B6D842199A73F37E1707251\xqhdrv.inf Task: {FE0A8F11-27CE-4E5E-A215-09CF6CEE4012} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [745256 2018-09-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 60eb1bec-61de-4c40-a7ec-761b892efd42.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task f31906e0-dcc0-478d-b69f-5748c3391323.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{053ba4bc-2f71-444e-bb2b-0b80732ae749}: [NameServer] 192.168.1.1 Tcpip\..\Interfaces\{196ce080-2228-4c3d-bbb1-8da4efc0b192}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{e964a67e-48f2-43b8-acde-c7bbac0bc1b7}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-885117350-1244477085-751266186-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.pl/?gws_rd=ssl BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2018-11-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-02] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2018-11-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-06] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-11-02] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-02] (Oracle America, Inc. -> Oracle Corporation) Toolbar: HKLM-x32 - Brak nazwy - {D53D09FE-B1AC-4EE8-AE26-FD43D8B4B62F} - Brak pliku Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation) FireFox: ======== FF DefaultProfile: dzll7oc4.default FF ProfilePath: C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\dzll7oc4.default [2019-06-10] FF Homepage: Mozilla\Firefox\Profiles\dzll7oc4.default -> hxxps://www.google.pl/ FF Session Restore: Mozilla\Firefox\Profiles\dzll7oc4.default -> [funkcja włączona] FF NewTabOverride: Mozilla\Firefox\Profiles\dzll7oc4.default -> Enabled: pavel.sherbakov@gmail.com FF NewTabOverride: Mozilla\Firefox\Profiles\dzll7oc4.default -> Enabled: wolnelektury-pl@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\dzll7oc4.default -> Enabled: wikipedia@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\dzll7oc4.default -> Enabled: pwn-pl@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\dzll7oc4.default -> Enabled: ddg@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\dzll7oc4.default -> Enabled: allegro-pl@search.mozilla.org FF NewTabOverride: Mozilla\Firefox\Profiles\dzll7oc4.default -> Enabled: google@search.mozilla.org FF Extension: (English United States Dictionary) - C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\dzll7oc4.default\Extensions\@unitedstatesenglishdictionary.xpi [2018-12-01] FF Extension: (hotfix-update-xpi-intermediate) - C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\dzll7oc4.default\Extensions\hotfix-update-xpi-intermediate@mozilla.com.xpi [2019-05-19] FF Extension: (Enhanced Steam) - C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\dzll7oc4.default\Extensions\jid1-YdiFiTEkQgInxA@jetpack.xpi [2019-02-02] FF Extension: (New Tab Page) - C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\dzll7oc4.default\Extensions\pavel.sherbakov@gmail.com.xpi [2019-06-06] FF Extension: (LastPass: Free Password Manager) - C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\dzll7oc4.default\Extensions\support@lastpass.com.xpi [2019-06-09] FF Extension: (Viewhance) - C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\dzll7oc4.default\Extensions\{00000c4c-fcfd-49bc-9f0d-78db44456c9c}.xpi [2019-04-06] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx] FF Extension: (Imagus) - C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\dzll7oc4.default\Extensions\{00000f2a-7cde-4f20-83ed-434fcb420d71}.xpi [2019-05-14] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx] FF Extension: (Looty! Stash search for Path of Exile) - C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\dzll7oc4.default\Extensions\{4afffdc5-f4d1-4ffe-b9c2-6a052626cd1b}.xpi [2019-05-03] FF Extension: (Greasemonkey) - C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Profiles\dzll7oc4.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2019-05-10] FF HKLM\...\Firefox\Extensions: [soda_pdf_desktop_conv@sodapdf.com] - C:\Program Files\Soda PDF Desktop\resources\sodapdfdesktopfirefoxextension => nie znaleziono FF HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2019-04-19] [UpdateUrl:hxxps://data.internetdownloadmanager.com/idmmzcc3/update.json] FF HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Marcin\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\Marcin\AppData\Roaming\IDM\idmmzcc5 [2018-03-17] [Przestarzałe] [Brak podpisu cyfrowego] FF HKU\S-1-5-21-885117350-1244477085-751266186-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Przestarzałe] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_148.dll [2018-11-17] (Adobe Systems Incorporated -> ) FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_148.dll [2018-11-17] (Adobe Systems Incorporated -> ) FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-11-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Brak pliku] FF Plugin HKU\S-1-5-21-885117350-1244477085-751266186-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-01-24] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.) FF Plugin HKU\S-1-5-21-885117350-1244477085-751266186-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Brak pliku] Chrome: ======= CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-04-19] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-04-19] CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] - hxxps://clients2.google.com/service/update2/crx StartMenuInternet: Google Chrome Beta - C:\Program Files (x86)\Google\Chrome Beta\Application\chrome.exe ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com) S4 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1145928 2016-02-24] (Autodesk, Inc -> Autodesk Inc.) R2 Adguard Service; C:\Program Files (x86)\Adguard\AdguardSvc.exe [136040 2019-05-30] (Adguard Software Limited -> Adguard Software Ltd) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [382424 2018-01-05] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S4 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2016-09-05] (Autodesk, Inc -> Autodesk, Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1863688 2016-06-22] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11145800 2019-05-29] (Microsoft Corporation -> Microsoft Corporation) R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2651840 2019-04-11] (Comodo Security Solutions, Inc. -> COMODO) R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [50728 2019-05-08] (Corsair Memory, Inc. -> Corsair Memory, Inc.) R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142768 2018-09-12] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2018-10-25] (FUTUREMARK INC -> Futuremark) R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [Brak podpisu cyfrowego] S3 GalaxyClientService; D:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [791112 2019-05-10] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7172680 2018-12-20] (GOG Sp. z o.o. -> GOG.com) S3 GoogleChromeBetaElevationService; C:\Program Files (x86)\Google\Chrome Beta\Application\75.0.3770.80\elevation_service.exe [1098224 2019-06-04] (Google LLC -> Google LLC) R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128944 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes) S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [123824 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2303792 2019-05-10] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; D:\Program Files (x86)\Origin\OriginWebHelperService.exe [3175216 2019-05-10] (Electronic Arts, Inc. -> Electronic Arts) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5382448 2019-04-09] (Microsoft Windows Publisher -> Microsoft Corporation) R2 Wallpaper Engine Service; E:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\wallpaperservice32_c.exe [346600 2018-02-05] (Kristjan Skutta -> ) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3831576 2019-05-22] (Microsoft Corporation -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [89560 2018-09-05] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-04-14] (ASUSTeK Computer Inc. -> ) S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17872 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO) R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [43416 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [849048 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [51672 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO) R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45968 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21904 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> Corsair) R3 cpuz148; C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [44648 2019-06-10] (CPUID S.A.R.L.U. -> CPUID) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-09-23] (Disc Soft Ltd -> Disc Soft Ltd) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes) S3 etdrv; C:\Windows\etdrv.sys [25640 2015-06-01] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider) S3 etocdrv; C:\WINDOWS\etocdrv.sys [15584 2013-10-31] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Giga-Byte Technology CO., LTD.) S3 gdrv; C:\Windows\gdrv.sys [26192 2018-12-11] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider) R3 gdrv2; C:\WINDOWS\gdrv2.sys [32720 2018-10-05] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-10-07] (Martin Malik - REALiX -> REALiX(tm)) R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [134280 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO) R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-30] (Comodo Security Solutions, Inc. -> COMODO) R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-09-15] (Microsoft Windows -> Qualcomm Atheros, Inc.) S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2016-09-11] (Logitech Inc -> Logitech Inc.) S3 LGSHidFilt; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [64280 2016-06-14] (Logitech -> Logitech Inc.) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [199768 2019-06-10] (Malwarebytes Corporation -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [127136 2019-06-10] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73912 2019-06-10] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-06-10] (Malwarebytes Corporation -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [117344 2019-06-10] (Malwarebytes Corporation -> Malwarebytes) R2 mi2c; C:\WINDOWS\system32\drivers\mi2c.sys [20784 2019-01-15] (AOC International (Europe) GmbH -> Nicomsoft Ltd.) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_37ec54c19854e219\nvlddmkm.sys [20747736 2019-04-10] (NVIDIA Corporation -> NVIDIA Corporation) R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2016-07-26] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2016-07-26] (MiniTool Solution Ltd -> ) S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated) R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com) S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] (Intel(R) Code Signing External -> ) S2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.) S3 SIVDriver; C:\WINDOWS\system32\Drivers\SIVX64.sys [189584 2018-09-14] (RH Software -> Ray Hinchliffe) R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2018-09-15] (Microsoft Windows -> Microsoft Corporation) S3 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2016-01-01] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) S3 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-06-10 20:27 - 2019-06-10 20:28 - 000046548 _____ C:\Users\Marcin\Desktop\FRST.txt 2019-06-10 20:25 - 2019-06-10 20:25 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2019-06-10 20:25 - 2019-06-10 20:25 - 000199768 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2019-06-10 20:25 - 2019-06-10 20:25 - 000127136 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2019-06-10 20:25 - 2019-06-10 20:25 - 000117344 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2019-06-10 20:25 - 2019-06-10 20:25 - 000073912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2019-06-10 19:58 - 2019-06-10 20:27 - 000000000 ____D C:\FRST 2019-06-10 19:58 - 2019-06-10 19:58 - 000000000 ____D C:\Users\Marcin\Desktop\FRST-OlderVersion 2019-06-10 19:57 - 2019-06-10 19:58 - 002418688 _____ (Farbar) C:\Users\Marcin\Desktop\FRST64.exe 2019-06-10 19:56 - 2019-06-10 19:58 - 000000000 ____D C:\AdwCleaner 2019-06-10 19:56 - 2019-06-10 19:56 - 007025360 _____ (Malwarebytes) C:\Users\Marcin\Desktop\adwcleaner_7.3.exe 2019-06-10 19:46 - 2019-06-10 20:25 - 000000526 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task f31906e0-dcc0-478d-b69f-5748c3391323.job 2019-06-10 19:46 - 2019-06-10 20:25 - 000000526 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 60eb1bec-61de-4c40-a7ec-761b892efd42.job 2019-06-10 19:46 - 2019-06-10 19:46 - 000003750 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task f31906e0-dcc0-478d-b69f-5748c3391323 2019-06-10 19:46 - 2019-06-10 19:46 - 000003668 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 60eb1bec-61de-4c40-a7ec-761b892efd42 2019-06-10 19:46 - 2019-06-10 19:46 - 000000000 ____D C:\Users\Marcin\AppData\Roaming\SUPERAntiSpyware.com 2019-06-10 19:46 - 2019-06-10 19:46 - 000000000 ____D C:\Users\Marcin\AppData\Local\mbam 2019-06-10 19:45 - 2019-06-10 19:46 - 000000000 ____D C:\Program Files\SUPERAntiSpyware 2019-06-10 19:45 - 2019-06-10 19:45 - 041581920 _____ (SUPERAntiSpyware) C:\Users\Marcin\Desktop\SUPERAntiSpyware.exe 2019-06-10 19:45 - 2019-06-10 19:45 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2019-06-10 19:45 - 2019-06-10 19:45 - 000001849 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk 2019-06-10 19:45 - 2019-06-10 19:45 - 000000000 ____D C:\Users\Marcin\AppData\Local\mbamtray 2019-06-10 19:45 - 2019-06-10 19:45 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com 2019-06-10 19:45 - 2019-06-10 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware 2019-06-10 19:45 - 2019-06-10 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2019-06-10 19:45 - 2019-06-10 19:45 - 000000000 ____D C:\ProgramData\Malwarebytes 2019-06-10 19:45 - 2019-06-10 19:45 - 000000000 ____D C:\Program Files\Malwarebytes 2019-06-10 19:45 - 2019-02-01 12:20 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2019-06-10 19:45 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2019-06-10 19:44 - 2019-06-10 19:45 - 063182216 _____ (Malwarebytes ) C:\Users\Marcin\Desktop\mb3-setup-37469.37469-3.7.1.2839-1.0.586-1.0.10430.exe 2019-06-10 19:39 - 2019-06-10 19:39 - 000000000 ____D C:\Users\Default\AppData\Roaming\Adguard Software Ltd 2019-06-10 19:39 - 2019-06-10 19:39 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Adguard Software Ltd 2019-06-09 14:24 - 2019-06-09 14:24 - 000000000 ____D C:\Users\Marcin\AppData\Local\Detective 2019-06-09 14:08 - 2019-06-09 14:08 - 000000000 ____D C:\Users\Marcin\Documents\Spacelight 2019-06-09 14:04 - 2019-06-09 14:04 - 000000000 ____D C:\Users\Marcin\AppData\LocalLow\Spacelight Studio 2019-06-09 10:32 - 2019-06-09 10:32 - 000000223 _____ C:\Users\Marcin\Desktop\Through Abandoned The Refuge.url 2019-06-09 10:32 - 2019-06-09 10:32 - 000000222 _____ C:\Users\Marcin\Desktop\Through Abandoned The Forest.url 2019-06-09 10:29 - 2019-06-09 11:34 - 000000000 ____D C:\Users\Marcin\AppData\LocalLow\KrutovGames 2019-06-09 09:45 - 2019-06-09 09:45 - 000000222 _____ C:\Users\Marcin\Desktop\Nelly Cootalot Spoonbeaks Ahoy! HD.url 2019-06-08 17:48 - 2019-06-08 17:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narzędzia pakietu Microsoft Office 2019-06-04 20:36 - 2019-06-04 20:47 - 000178925 _____ C:\Users\Marcin\Desktop\oswiadczenie-o-odstapieniu-od-umowy-zawartej-na-odleglosc.pdf 2019-06-02 12:49 - 2019-06-02 12:54 - 000015683 _____ C:\ToolLog.txt 2019-05-30 17:08 - 2019-05-30 17:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google 2019-05-30 17:08 - 2019-05-30 17:08 - 000000000 ____D C:\Program Files\Google 2019-05-30 17:02 - 2019-05-30 17:08 - 000000000 ____D C:\Users\Marcin\Desktop\Nowy folder 2019-05-25 11:31 - 2019-05-25 11:31 - 000000000 ____D C:\Program Files (x86)\OnePlus USB Drivers 2019-05-25 11:26 - 2019-05-25 11:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minimal ADB and Fastboot 2019-05-25 11:16 - 2019-05-25 11:16 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf 2019-05-25 11:16 - 2019-05-25 11:16 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2019-05-25 11:07 - 2019-05-25 11:12 - 000000000 ____D C:\Program Files (x86)\android-sdk-windows 2019-05-24 16:19 - 2019-05-24 16:19 - 000001199 _____ C:\Users\Public\Desktop\iCUE.lnk 2019-05-24 16:19 - 2019-05-24 16:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair 2019-05-24 16:18 - 2019-05-24 16:18 - 000000000 ____D C:\Program Files (x86)\Corsair 2019-05-23 16:50 - 2019-05-23 16:50 - 000065417 _____ C:\Users\Marcin\Desktop\cw_2019_05_34087.pdf 2019-05-22 21:20 - 2019-05-22 21:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoMapa 2019-05-22 19:07 - 2019-05-22 19:07 - 026809856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 023439360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 020816384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 018999808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 017484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 015221248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 012869120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 012162048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 007884288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 007724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 007645608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 006926336 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 006545280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 006441472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 005297152 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 005112792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 004627456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 004588536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 003983872 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 003426816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 003344896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 002999808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 002928640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 002777736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 002690048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 002638336 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 002627600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 002276192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2019-05-22 19:07 - 2019-05-22 19:07 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2019-05-22 19:07 - 2019-05-22 19:07 - 001860608 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001860096 ____R (The ICU Project) C:\WINDOWS\system32\icuin.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001761280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001750016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001700312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-05-22 19:07 - 2019-05-22 19:07 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001618944 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuin.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001483872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001342904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-05-22 19:07 - 2019-05-22 19:07 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001298952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001260048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2019-05-22 19:07 - 2019-05-22 19:07 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 001229312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 001180184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 001048592 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\assignedaccessmanagersvc.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000924160 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000887808 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000758688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000651064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000618496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessManager.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000615440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000586040 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000555232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000515152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000451104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000427688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 000351744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000292664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000287912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 000282424 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000262160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000247608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000196920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 000152400 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000125528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000114648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000091424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe 2019-05-22 19:07 - 2019-05-22 19:07 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismp6.sys 2019-05-22 19:07 - 2019-05-22 19:07 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll 2019-05-22 19:07 - 2019-05-22 19:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2019-05-22 19:07 - 2019-05-22 19:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2019-05-22 19:07 - 2019-05-22 19:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2019-05-22 19:07 - 2019-05-22 19:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2019-05-22 19:07 - 2019-05-22 19:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2019-05-22 19:07 - 2019-05-22 19:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2019-05-22 19:07 - 2019-05-22 19:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2019-05-22 19:07 - 2019-05-22 19:07 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2019-05-21 19:14 - 2019-05-21 19:16 - 000000000 ____D C:\Users\Marcin\AppData\Roaming\Comodo 2019-05-20 19:09 - 2019-05-21 17:59 - 000014115 _____ C:\Users\Marcin\Desktop\Zeszyt1.xlsx 2019-05-19 22:19 - 2019-05-19 22:19 - 000110234 _____ C:\Users\Marcin\Desktop\Shogun-1.0.0.hideout 2019-05-19 22:18 - 2019-05-19 22:18 - 000112926 _____ C:\Users\Marcin\Desktop\asdasd.hideout 2019-05-19 21:27 - 2019-06-02 18:18 - 000112976 _____ C:\Users\Marcin\Desktop\Forgotten Temple-1.0.0.hideout 2019-05-19 21:23 - 2019-05-19 21:23 - 000021826 _____ C:\Users\Marcin\Desktop\celestial_hideout_19052019.hideout 2019-05-19 21:20 - 2019-05-19 21:20 - 000005916 _____ C:\Users\Marcin\Desktop\luxorious_hideout_19052019.hideout 2019-05-19 21:18 - 2019-05-19 21:18 - 000020412 _____ C:\Users\Marcin\Desktop\overgrown_hideout_19052019.hideout 2019-05-19 10:50 - 2019-05-19 10:52 - 000000000 ____D C:\Users\Marcin\Desktop\ssdiagnostic 2019-05-14 22:24 - 2019-05-14 22:24 - 007879680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 006072320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 004883968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 004660736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 003905536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 003602944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 001062400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2019-05-14 22:24 - 2019-05-14 22:24 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000317240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys 2019-05-14 22:24 - 2019-05-14 22:24 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2019-05-14 22:24 - 2019-05-14 22:24 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2019-05-14 22:24 - 2019-05-14 22:24 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2019-05-14 22:24 - 2019-05-14 22:24 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2019-05-14 22:23 - 2019-05-14 22:23 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 001641616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 001395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000807464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2019-05-14 22:23 - 2019-05-14 22:23 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000660992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000508432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2019-05-14 22:23 - 2019-05-14 22:23 - 000449376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000444944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2019-05-14 22:23 - 2019-05-14 22:23 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000254952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys 2019-05-14 22:23 - 2019-05-14 22:23 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys 2019-05-14 22:23 - 2019-05-14 22:23 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2019-05-14 22:23 - 2019-05-14 22:23 - 000203272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000202768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys 2019-05-14 22:23 - 2019-05-14 22:23 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys 2019-05-14 22:23 - 2019-05-14 22:23 - 000198456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys 2019-05-14 22:23 - 2019-05-14 22:23 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2019-05-14 22:23 - 2019-05-14 22:23 - 000179728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys 2019-05-14 22:23 - 2019-05-14 22:23 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000177976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2019-05-14 22:23 - 2019-05-14 22:23 - 000163240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe 2019-05-14 22:23 - 2019-05-14 22:23 - 000147736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe 2019-05-14 22:23 - 2019-05-14 22:23 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2019-05-14 22:23 - 2019-05-14 22:23 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe 2019-05-14 22:23 - 2019-05-14 22:23 - 000066688 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll 2019-05-14 22:23 - 2019-05-14 22:23 - 000055792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-06-10 20:28 - 2018-11-10 11:31 - 000000000 ____D C:\ProgramData\Adguard 2019-06-10 20:27 - 2018-10-27 11:06 - 000000000 ____D C:\Users\Marcin\AppData\LocalLow\Mozilla 2019-06-10 20:26 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-06-10 20:25 - 2019-04-17 16:31 - 000000000 ____D C:\ProgramData\NVIDIA 2019-06-10 20:25 - 2018-12-02 20:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-06-10 20:25 - 2018-11-10 11:31 - 000000000 ____D C:\Program Files (x86)\Adguard 2019-06-10 20:24 - 2018-09-15 08:09 - 000262144 _____ C:\WINDOWS\system32\config\BBI 2019-06-10 20:24 - 2017-01-21 14:40 - 002219292 _____ C:\WINDOWS\system32\Drivers\fvstore.dat 2019-06-10 20:24 - 2015-12-23 00:05 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat 2019-06-10 20:18 - 2018-10-27 11:06 - 000000000 ____D C:\Users\Marcin\AppData\Roaming\Mozilla 2019-06-10 19:58 - 2017-10-07 20:18 - 000000000 ____D C:\Users\Marcin\AppData\Roaming\IObit 2019-06-10 19:58 - 2017-10-07 20:18 - 000000000 ____D C:\ProgramData\IObit 2019-06-10 19:50 - 2018-12-02 20:53 - 001768480 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-06-10 19:50 - 2018-09-15 18:43 - 000784346 _____ C:\WINDOWS\system32\perfh015.dat 2019-06-10 19:50 - 2018-09-15 18:43 - 000152144 _____ C:\WINDOWS\system32\perfc015.dat 2019-06-10 19:50 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF 2019-06-10 19:45 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-06-10 19:41 - 2018-12-02 20:49 - 000003126 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner 2019-06-10 19:41 - 2018-10-27 11:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-06-10 19:41 - 2018-03-05 21:14 - 000000000 ____D C:\Users\Marcin\AppData\Roaming\qBittorrent 2019-06-10 19:41 - 2016-01-16 14:24 - 000000000 ____D C:\Users\Marcin\AppData\Roaming\AIMP 2019-06-10 19:40 - 2018-03-17 09:31 - 000000000 ____D C:\Users\Marcin\AppData\Roaming\DMCache 2019-06-10 19:39 - 2018-11-10 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adguard 2019-06-10 19:39 - 2015-05-26 19:10 - 000000000 ____D C:\ProgramData\Package Cache 2019-06-10 19:36 - 2015-06-21 14:48 - 000000000 ____D C:\Users\Marcin\Documents\Pliki programu Outlook 2019-06-10 19:29 - 2018-12-02 20:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-06-09 18:49 - 2017-11-17 16:02 - 000000000 ____D C:\Users\Marcin\AppData\Local\Packages 2019-06-09 17:22 - 2015-06-20 23:46 - 000000000 ____D C:\Users\Marcin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2019-06-09 10:01 - 2017-03-18 11:16 - 000000000 ____D C:\Users\Marcin\AppData\Local\UnrealEngine 2019-06-08 17:48 - 2019-04-14 12:47 - 000002610 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype dla firm.lnk 2019-06-08 17:48 - 2019-04-14 12:47 - 000002513 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2019-06-08 17:48 - 2019-04-14 12:47 - 000002501 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2019-06-08 17:48 - 2019-04-14 12:47 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2019-06-08 17:48 - 2019-04-14 12:47 - 000002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk 2019-06-08 17:48 - 2019-04-14 12:47 - 000002480 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2019-06-08 17:48 - 2019-04-14 12:47 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2019-06-08 17:48 - 2019-04-14 12:47 - 000002437 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2019-06-08 17:47 - 2017-03-07 17:19 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2019-06-08 13:47 - 2019-04-20 09:34 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-06-08 13:47 - 2018-10-27 11:06 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-06-08 13:46 - 2017-01-28 13:24 - 000000000 ____D C:\Users\Marcin\AppData\Local\CrashDumps 2019-06-08 08:44 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps 2019-06-08 08:44 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-06-05 16:28 - 2018-07-21 13:19 - 000000771 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk 2019-06-05 16:28 - 2015-06-28 12:14 - 000000000 ____D C:\Users\Marcin\AppData\Roaming\Notepad++ 2019-06-04 22:18 - 2018-10-27 17:53 - 000002362 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome Beta.lnk 2019-06-04 22:18 - 2018-10-27 17:53 - 000002321 _____ C:\Users\Public\Desktop\Google Chrome Beta.lnk 2019-06-02 18:19 - 2018-12-29 12:44 - 000000000 ____D C:\Users\Marcin\Documents\PoE-TradeMacro 2019-06-02 12:49 - 2015-06-20 19:31 - 000000000 ____D C:\Temp 2019-06-01 17:39 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Registration 2019-06-01 14:29 - 2015-06-21 16:02 - 000000000 ____D C:\Users\Marcin\Desktop\wallpapers 2019-05-30 17:08 - 2018-10-27 17:53 - 000000000 ____D C:\Users\Marcin\AppData\Local\Google 2019-05-30 05:29 - 2018-07-11 23:44 - 000000000 ____D C:\ProgramData\Packages 2019-05-28 17:45 - 2018-03-17 09:31 - 000000000 ____D C:\Users\Marcin\AppData\Roaming\IDM 2019-05-28 17:29 - 2018-12-02 20:45 - 000000000 ____D C:\Users\Marcin 2019-05-27 23:19 - 2015-06-25 19:54 - 000000600 _____ C:\Users\Marcin\AppData\Local\PUTTY.RND 2019-05-27 19:48 - 2016-03-27 12:58 - 000000000 ____D C:\Users\Marcin\AppData\Local\Battle.net 2019-05-26 12:22 - 2016-02-14 10:15 - 000000000 ____D C:\ProgramData\Origin 2019-05-25 11:31 - 2017-03-11 11:44 - 000000000 ____D C:\Android 2019-05-25 11:12 - 2015-08-20 20:57 - 000000000 ____D C:\Users\Marcin\.android 2019-05-22 21:20 - 2019-02-26 21:45 - 000070224 _____ C:\AutoMapaSetupLog.txt 2019-05-22 19:40 - 2018-12-02 20:44 - 005274272 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-05-22 19:39 - 2018-09-15 09:33 - 000000000 ___RD C:\Program Files\Windows Defender 2019-05-22 19:39 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-05-22 19:08 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-05-21 19:15 - 2015-12-23 00:04 - 000000000 ____D C:\ProgramData\Comodo 2019-05-19 18:25 - 2018-09-22 13:45 - 000000000 ____D C:\Users\Marcin\AppData\Roaming\Artifex Mundi 2019-05-19 18:25 - 2018-09-22 13:45 - 000000000 ____D C:\Users\Marcin\AppData\Local\Artifex Mundi 2019-05-19 10:50 - 2015-06-02 18:26 - 000000000 ____D C:\ProgramData\TEMP 2019-05-15 09:12 - 2018-12-02 20:49 - 000003568 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2019-05-15 09:12 - 2018-12-02 20:49 - 000003444 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2019-05-14 22:25 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2019-05-14 20:58 - 2015-05-26 20:02 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-05-14 20:54 - 2015-05-26 20:02 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-05-13 23:23 - 2018-09-15 09:36 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2019-05-13 23:23 - 2018-09-15 09:36 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2019-05-11 09:58 - 2018-07-11 23:40 - 000000000 ____D C:\Users\Marcin\AppData\Local\D3DSCache ==================== Pliki w katalogu głównym wybranych folderów ================ 2016-04-16 01:33 - 2018-12-02 20:47 - 000000232 _____ () C:\ProgramData\fontcacheev1.dat 2017-07-02 13:46 - 2017-07-02 13:47 - 000000285 _____ () C:\Users\Marcin\license.reg 2018-02-18 11:21 - 2018-08-19 18:28 - 065348573 _____ () C:\Users\Marcin\AppData\Roaming\Cyberfox_18_08_2018.rar 2017-05-08 22:50 - 2018-08-19 18:08 - 031705637 _____ () C:\Users\Marcin\AppData\Roaming\Pale Moon_18_08_2018.rar 2018-11-07 22:15 - 2018-11-07 22:16 - 000002781 _____ () C:\Users\Marcin\AppData\Roaming\qBittorrent.rar 2019-03-19 19:32 - 2019-03-19 19:32 - 000000960 _____ () C:\Users\Marcin\AppData\Roaming\qnapi.ini 2015-09-14 21:37 - 2015-09-14 21:37 - 000727165 _____ () C:\Users\Marcin\AppData\Roaming\RedThreadGames.rar 2015-12-23 19:35 - 2015-12-23 19:35 - 000015744 _____ () C:\Users\Marcin\AppData\Roaming\Steam.rar 2018-07-23 21:36 - 2018-07-23 21:36 - 000000600 _____ () C:\Users\Marcin\AppData\Roaming\winscp.rnd 2018-10-27 11:25 - 2018-10-27 11:24 - 465347957 _____ () C:\Users\Marcin\AppData\Local\Chrome Beta.rar 2015-06-25 19:54 - 2019-05-27 23:19 - 000000600 _____ () C:\Users\Marcin\AppData\Local\PUTTY.RND 2018-11-07 22:16 - 2018-11-07 22:16 - 014781784 _____ () C:\Users\Marcin\AppData\Local\qBittorrent.rar 2016-01-31 15:28 - 2018-08-19 10:35 - 000007601 _____ () C:\Users\Marcin\AppData\Local\Resmon.ResmonCfg ==================== FLock ================ 2019-06-08 10:07 C:\System Volume Information 2015-05-26 19:05 C:\WINDOWS\CSC ==================== SigCheck =============================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ============================