Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 29-08-2020 Uruchomiony przez Manderigon (administrator) DESKTOP-DNN817P (MSI MS-7823) (29-08-2020 17:16:30) Uruchomiony z C:\Users\Manderigon\Desktop Załadowane profile: Manderigon Platform: Windows 10 Pro Wersja 1903 18362.1016 (X64) Język: Polski (Polska) Domyślna przeglądarka: "C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe" -- "%1" Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (ArtistScope Pty Ltd -> ArtistScope Pty Ltd) C:\Program Files\Common Files\ArtistScope\CSHelper64.exe (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe <28> (Discord Inc. -> Discord Inc.) C:\Users\Manderigon\AppData\Local\Discord\app-0.0.307\Discord.exe <6> (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe (Hewlett-Packard Company -> HP) C:\Windows\System32\HPSIsvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.INSERTGT\MSSQL\Binn\sqlservr.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\NisSrv.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (ShareX Team) [Brak podpisu cyfrowego] E:\PROGRAMY\ShareX\ShareX.exe (TCB Networks -> ) E:\PROGRAMY\StrokeIt\strokeit.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) E:\PROGRAMY\SteamCopy\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) E:\PROGRAMY\SteamCopy\steam.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [C:\WINDOWS\system32\V0770Ext.ax] => C:\WINDOWS\system32\RegSvr32.exe /s C:\WINDOWS\system32\V0770Ext.ax HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [315880 2018-01-05] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) HKLM-x32\...\Run: [C:\WINDOWS\System32\V0770Ext.ax] => C:\WINDOWS\system32\RegSvr32.exe /s C:\WINDOWS\System32\V0770Ext.ax HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-14] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-182544699-194492311-1001362138-1001\...\Run: [Discord] => C:\Users\Manderigon\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.) HKU\S-1-5-21-182544699-194492311-1001362138-1001\...\Run: [EpicGamesLauncher] => "D:\GRY\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent HKU\S-1-5-21-182544699-194492311-1001362138-1001\...\Run: [StrokeIt] => E:\PROGRAMY\StrokeIt\strokeit.exe [26248 2010-01-03] (TCB Networks -> ) HKU\S-1-5-21-182544699-194492311-1001362138-1001\...\Run: [com.squirrel.Myki] => C:\Users\Manderigon\AppData\Local\myki\app-1.2.1\Myki.exe HKU\S-1-5-21-182544699-194492311-1001362138-1001\...\Run: [WindowGrid] => C:\Users\Manderigon\Desktop\WindowGrid.exe HKU\S-1-5-21-182544699-194492311-1001362138-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Manderigon\AppData\Local\Microsoft\Teams\Update.exe [2350776 2020-06-10] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-182544699-194492311-1001362138-1001\...\Run: [71F9021F026223CE7A4460BC6D2A963B7CFCC9E7._service_run] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=service /prefetch:8 HKU\S-1-5-21-182544699-194492311-1001362138-1001\...\RunOnce: [Application Restart #2] => C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe [2075816 2020-08-27] (Brave Software, Inc. -> Brave Software, Inc.) HKU\S-1-5-21-182544699-194492311-1001362138-1001\...\MountPoints2: {87f66940-6571-11ea-8f50-d43d7eb89479} - "V:\setup.exe" HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [239704 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\...\Print\Monitors\Advanced TCP/IP Port Monitor: C:\WINDOWS\system32\mvtcpmon.dll [541184 2009-06-25] (Marvell Semiconductor, Inc.) [Brak podpisu cyfrowego] HKLM\...\Print\Monitors\HP1100LM: C:\WINDOWS\system32\HP1100LM.DLL [288768 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [62552 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\Installer\chrmstp.exe [2020-08-19] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\85.1.13.82\Installer\chrmstp.exe [2020-08-27] (Brave Software, Inc.) [Brak podpisu cyfrowego] Startup: C:\Users\Manderigon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DesktopHut.lnk [2019-05-09] ShortcutTarget: DesktopHut.lnk -> C:\Users\Manderigon\Desktop\DesktopHut App v4.0.0\DesktopHut.exe (Brak pliku) Startup: C:\Users\Manderigon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2020-04-08] ShortcutTarget: ShareX.lnk -> E:\PROGRAMY\ShareX\ShareX.exe (ShareX Team) [Brak podpisu cyfrowego] GroupPolicy: Ograniczenia ? <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0485CAA5-031D-48F3-A346-55DFEF03BD53} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {0D91A757-9C37-4F7F-9BEC-0BC295CAFFE5} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-06-27] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {1604C308-B2F9-4DFD-81DF-51075A8E889F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation) Task: {215EAC0D-2221-4F97-BD4A-DD5596D5B8D4} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {22A69C06-5E6F-451D-A18B-183346D5428F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155488 2020-08-15] (Microsoft Corporation -> Microsoft Corporation) Task: {336FF5BB-D39D-4EFC-BC67-3EA759D3E71E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {40BA1897-1C19-4D0A-9D49-A30BD2E9EEE6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-04-25] (Google Inc -> Google Inc.) Task: {4533D1B4-CB51-47A5-B3B6-A4D6134205D9} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {4E810C35-1F3C-4A78-A71B-C22188A40627} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5725080 2020-08-08] (Microsoft Corporation -> Microsoft Corporation) Task: {5811DC55-8E97-4320-A45F-C45297A61EB6} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-06-27] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {66F56B18-88AC-4166-8E06-15487EECF821} - System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-DNN817P-Manderigon => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [315880 2018-01-05] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) Task: {6A5AA7DC-DBFF-43F6-917C-1C24E0A17DDA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {7207C3FF-69C0-409B-B11F-6FCFCA9450B6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-04-25] (Google Inc -> Google Inc.) Task: {731665FA-7C02-42FA-8707-BC2D4ADBBEC0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {75EDEB6F-8404-4EBE-8F22-908BFCE3C2C7} - System32\Tasks\WpsUpdateTask_Manderigon => E:\POBRANE\Brave\WPSOfficePortable\App\office6\wpsupdate.exe Task: {77671168-AFA5-4610-9465-246CA298C42F} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation) Task: {7EB03EC9-0BE6-43F3-A76F-D3D0B9BB89A0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [155488 2020-08-15] (Microsoft Corporation -> Microsoft Corporation) Task: {80539C11-193A-457A-ABE7-3CF38625D065} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {87FB35B8-04EE-4382-BE9F-4690348A6161} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe Task: {88A7C420-3273-4CCE-BC3B-28D8B0EB8532} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8ABF1AF8-1AFA-4538-9FCC-6296A167C1E9} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [862 2019-04-30] () [Brak podpisu cyfrowego] Task: {8D599D32-47A6-4376-BDFF-29DCCFBD6C95} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-182544699-194492311-1001362138-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {A3CD8B54-2BBA-4EFB-A41E-3F358E507279} - System32\Tasks\update-S-1-5-21-182544699-194492311-1001362138-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {B28BFD78-A444-4F6B-870D-C694E1713D50} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BD5C0FB5-E1B3-487A-804B-3BAF6E9115CA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {BDEB1297-3FFA-49B3-9595-702FBF152F39} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5725080 2020-08-08] (Microsoft Corporation -> Microsoft Corporation) Task: {C94C0BFF-2CD9-4CAB-9EAB-B17AA339A211} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C9739C39-1D53-4862-9FE9-8CED13713C5E} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe Task: {CBD18773-D542-4F23-B3FF-626F4566ED92} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D2C764A1-58F1-4529-BCC0-A5F81A4AD3CC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E4843E9A-AE3D-42DC-AFB4-31EA4CD4C305} - System32\Tasks\WindowGrid => C:\Users\Manderigon\Desktop\WindowGrid.exe Task: {F83B6612-5D2A-4058-9F0E-7A47AFF0FB13} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23819120 2020-08-05] (Microsoft Corporation -> Microsoft Corporation) Task: {FA899E0D-1EA7-4346-B1CA-B63A8DA2ADB0} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe Task: {FEA270B7-2579-4E1B-94A0-9A7452F218FB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FF53633B-63AF-4E0A-A7EC-E0C8E166A07A} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-182544699-194492311-1001362138-1005 => C:\Users\Manderigon\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\update-S-1-5-21-182544699-194492311-1001362138-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) ProxyServer: [S-1-5-21-182544699-194492311-1001362138-1001] => 127.0.0.1:8080 Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.5.1 Tcpip\..\Interfaces\{05b9f9c7-45d9-4aa5-b397-5e76fedd3c8b}: [DhcpNameServer] 62.179.1.60 62.179.1.61 Tcpip\..\Interfaces\{1c42a961-0f24-4b87-9790-eb469754aedc}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{74f098df-0800-4a0d-9a2b-3391a6c7c386}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{74f098df-0800-4a0d-9a2b-3391a6c7c386}: [DhcpNameServer] 192.168.5.1 Tcpip\..\Interfaces\{89666ea6-7b57-428a-be7e-7b7b9da3a9d8}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{89666ea6-7b57-428a-be7e-7b7b9da3a9d8}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{9d928082-3ba8-4f19-9b45-5f0573fbf14b}: [DhcpNameServer] 10.25.31.1 Tcpip\..\Interfaces\{d7657e12-3de1-48ec-9f7b-6c6eb84845d9}: [DhcpNameServer] 100.100.24.23 100.100.24.24 Internet Explorer: ================== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-9.0.1\bin\jp2ssv.dll [2018-01-16] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-27] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-27] (Oracle America, Inc. -> Oracle Corporation) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-08-08] (Microsoft Corporation -> Microsoft Corporation) Edge: ====== Edge Profile: C:\Users\Manderigon\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-29] FireFox: ======== FF DefaultProfile: yo1nyfvd.default-1558879300349 FF ProfilePath: C:\Users\Manderigon\AppData\Roaming\Mozilla\Firefox\Profiles\yo1nyfvd.default-1558879300349 [2020-08-18] FF Notifications: Mozilla\Firefox\Profiles\yo1nyfvd.default-1558879300349 -> hxxps://hivekodypromocyjne.pl; hxxps://www1.ecleneue.com FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension FF Extension: (SmartPrintButton) - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2011-01-26] [Przestarzałe] [Brak podpisu cyfrowego] FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => nie znaleziono FF HKLM-x32\...\Firefox\Extensions: [{EBA722F5-038F-4CAF-9EE2-545A221628BC}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.5.4.24\coFFPlgn => nie znaleziono FF HKU\S-1-5-21-182544699-194492311-1001362138-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Manderigon\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => nie znaleziono FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_151.dll [2017-08-31] (Adobe Systems Incorporated -> ) FF Plugin: @java.com/DTPlugin,version=12.0.1 -> C:\Program Files\Java\jre-9.0.1\bin\dtplugin\npDeployJava1.dll [2018-01-16] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=12.0.1.0 -> C:\Program Files\Java\jre-9.0.1\bin\plugin2\npjp2.dll [2018-01-16] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [Brak pliku] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_151.dll [2017-08-31] (Adobe Systems Incorporated -> ) FF Plugin-x32: @artistscope.com/PDFReaderWeb -> C:\Program Files (x86)\CopySafe PDF Reader\npPDFReaderWeb.dll [Brak pliku] FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=3 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-06-27] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @tools.brave.com/BraveSoftware Update;version=9 -> C:\Program Files (x86)\BraveSoftware\Update\1.3.99.0\npBraveUpdate3.dll [2019-06-27] (Brave Software, Inc. -> BraveSoftware Inc.) FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> D:\PROGRAMY\VLC\npvlc.dll [Brak pliku] FF Plugin-x32: adobe.com/AdobeExManDetect -> D:\PROGRAMY\Photo\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [Brak pliku] FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [Brak pliku] FF Plugin HKU\S-1-5-21-182544699-194492311-1001362138-1001: @artistscope.com/PDFReaderWeb -> C:\Program Files (x86)\CopySafe PDF Reader\npPDFReaderWeb.dll [Brak pliku] Chrome: ======= CHR Profile: C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default [2020-08-18] CHR Notifications: Default -> hxxp://localhost; hxxps://attacomsian.com; hxxps://gauntface.github.io; hxxps://hivekodypromocyjne.pl; hxxps://hivekodypromocyjne.push-ad.com; hxxps://serviceworke.rs; hxxps://tests.peter.sh; hxxps://web-push-book.gauntface.com CHR HomePage: Default -> hxxp://komixxy.pl/ CHR StartupUrls: Default -> "hxxps://www.google.pl/?gws_rd=cr" CHR DefaultSearchKeyword: Default -> google.pl_ CHR Extension: (Dokumenty) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12] CHR Extension: (Dysk Google) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17] CHR Extension: (YouTube) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-25] CHR Extension: (uBlock Origin) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-08-18] CHR Extension: (SaferVPN Proxy - Free & Fast Privacy App) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\cocfojppfigjeefejbpfmedgjbpchcng [2020-08-18] CHR Extension: (Arkusze) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12] CHR Extension: (Dokumenty Google offline) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-08-18] CHR Extension: (ScriptBlock) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcdjknjpbnhdoabbngpmfekaecnpajba [2018-06-14] CHR Extension: (Skyrim: Book of the Dragonborn Theme) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioigkhgefneinlgdahhpddckbpofpnfi [2017-07-18] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-10] CHR Extension: (Click&Clean App) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2019-12-10] CHR Extension: (Gmail) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-16] CHR Extension: (Chrome Media Router) - C:\Users\Manderigon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-08-18] CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - D:\PROGRAMY\Internet Download Manager\IDMGCExt.crx CHR HKU\S-1-5-21-182544699-194492311-1001362138-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2319848 2018-01-05] (Adobe Systems Incorporated -> Adobe Systems, Incorporated) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8567960 2020-03-25] (BattlEye Innovations e.K. -> ) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-06-27] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [159368 2019-06-27] (Brave Software, Inc. -> BraveSoftware Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10566536 2020-08-05] (Microsoft Corporation -> Microsoft Corporation) R2 CSHelper; C:\Program Files\Common Files\ArtistScope\CSHelper64.exe [361552 2019-03-07] (ArtistScope Pty Ltd -> ArtistScope Pty Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-09-15] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 HPSIService; C:\WINDOWS\system32\HPSIsvc.exe [127800 2010-04-07] (Hewlett-Packard Company -> HP) R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation -> Microsoft Corporation) R2 MSSQL$INSERTGT; C:\Program Files\Microsoft SQL Server\MSSQL12.INSERTGT\MSSQL\Binn\sqlservr.exe [372416 2016-06-18] (Microsoft Corporation -> Microsoft Corporation) S3 neardapache; E:\PROGRAMY\Neard-1.8.0\core\libs\nssm\nssm.exe [294912 2020-04-19] () [Brak podpisu cyfrowego] S3 neardfilezilla; E:\PROGRAMY\Neard-1.8.0\bin\filezilla\current\FileZilla Server.exe [859304 2017-04-25] (Tim Kosse -> FileZilla Project) S3 neardmailhog; E:\PROGRAMY\Neard-1.8.0\core\libs\nssm\nssm.exe [294912 2020-04-19] () [Brak podpisu cyfrowego] S3 neardmariadb; E:\PROGRAMY\Neard-1.8.0\bin\mariadb\current\bin\mysqld.exe [13992872 2020-04-04] (MariaDB Corporation Ab -> ) S3 neardmemcached; E:\PROGRAMY\Neard-1.8.0\core\libs\nssm\nssm.exe [294912 2020-04-19] () [Brak podpisu cyfrowego] S3 neardmongodb; E:\PROGRAMY\Neard-1.8.0\bin\mongodb\current\bin\mongod.exe [36109312 2020-04-05] (MongoDB, Inc) [Brak podpisu cyfrowego] S3 neardmysql; E:\PROGRAMY\Neard-1.8.0\bin\mysql\current\bin\mysqld.exe [46692160 2019-05-24] (Oracle America, Inc. -> ) S3 neardpostgresql; E:\PROGRAMY\Neard-1.8.0\bin\postgresql\current\bin\pg_ctl.exe [106496 2019-05-24] (PostgreSQL Global Development Group) [Brak podpisu cyfrowego] S3 neardsvn; E:\PROGRAMY\Neard-1.8.0\bin\svn\current\svnserve.exe [165376 2016-11-28] (hxxp://subversion.apache.org/) [Brak podpisu cyfrowego] R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2017-05-24] (Even Balance, Inc. -> ) S2 Rockstar Service; E:\PROGRAMY\RockstarLauncher\RockstarService.exe [1453184 2020-08-05] (Rockstar Games, Inc. -> Rockstar Games) S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6149984 2020-08-12] (Microsoft Windows Publisher -> Microsoft Corporation) S4 SQLAgent$INSERTGT; C:\Program Files\Microsoft SQL Server\MSSQL12.INSERTGT\MSSQL\Binn\SQLAGENT.EXE [613056 2016-06-18] (Microsoft Corporation -> Microsoft Corporation) S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [187904 2017-09-28] (Microsoft Corporation) [Brak podpisu cyfrowego] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13216784 2020-04-09] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 VBoxSDS; E:\PROGRAMY\VirtualBox\VBoxSDS.exe [744968 2020-02-18] (Oracle Corporation -> Oracle Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\NisSrv.exe [2169568 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MsMpEng.exe [128376 2020-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.242\WsAppService.exe [495720 2018-08-29] (Wondershare Technology Co.,Ltd -> Wondershare) S2 Aruba Service; D:\PROGRAMY\Aruba-VIA\arubanetsvc.exe [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-04-18] (WDKTestCert build,131474841775766162 -> Apple Inc.) S3 arubavnic; C:\WINDOWS\System32\drivers\arubavnic.sys [35664 2009-12-18] (Aruba Networks, Inc. -> Aruba Networks) S3 arubavnicl2; C:\WINDOWS\System32\drivers\arubavnicl2.sys [37112 2019-06-20] (Microsoft Windows Hardware Compatibility Publisher -> Aruba, a Hewlett Packard Enterprise company) S3 BazisPortableCDBus; C:\WINDOWS\System32\drivers\BazisPortableCDBus.sys [283480 2020-03-25] (Sysprogs OU -> Sysprogs OU) R1 CSDriver; C:\Program Files\Common Files\ArtistScope\CSDriver64.sys [61424 2019-03-07] (ArtistScope Pty Ltd -> ) R1 ElRawDisk; C:\WINDOWS\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation -> EldoS Corporation) S3 EvolveVirtualAdapter; C:\WINDOWS\System32\drivers\evolve.sys [21656 2018-04-27] (Echobit, LLC -> Echobit, LLC) R3 fwdrv; C:\WINDOWS\System32\drivers\fwdrv.sys [27840 2014-03-22] (Web Solution Mart -> Web Solution Mart) S3 hmatap; C:\WINDOWS\System32\drivers\hmatap.sys [36456 2017-10-31] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [58792 2017-03-05] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.) S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.) S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [20480 2012-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.) R3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2019-03-19] (Microsoft Windows -> MediaTek Inc.) R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [69744 2019-12-17] (Insecure.Com LLC -> Insecure.Com LLC.) R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) R1 RsFx0320; C:\WINDOWS\System32\DRIVERS\RsFx0320.sys [250048 2016-06-18] (Microsoft Corporation -> Microsoft Corporation) R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> ) R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> ) R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project) S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project) R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [237312 2020-02-19] (Oracle Corporation -> Oracle Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [78216 2020-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [430320 2020-08-05] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98520 2020-08-05] (Microsoft Windows -> Microsoft Corporation) R3 wod0205; C:\WINDOWS\System32\drivers\wod0205.sys [33160 2011-04-23] (Secure Plus d.o.o. -> WeOnlyDo Software) S3 xhunter1; C:\WINDOWS\xhunter1.sys [55704 2018-11-23] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2020-08-16] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation) U4 npcap_wifi; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-08-29 17:16 - 2020-08-29 17:17 - 000036835 ____C C:\Users\Manderigon\Desktop\FRST.txt 2020-08-29 17:15 - 2020-08-29 17:16 - 000000000 ____D C:\FRST 2020-08-29 17:14 - 2020-08-29 17:14 - 002298880 ____C (Farbar) C:\Users\Manderigon\Desktop\FRST64.exe 2020-08-29 16:07 - 2020-08-29 16:08 - 2260889979 ____C C:\Users\Manderigon\Desktop\SouthParkS03.zip 2020-08-29 15:58 - 2020-08-29 15:58 - 000001823 ____C C:\Users\Manderigon\Desktop\South Park.txt 2020-08-29 14:59 - 2020-08-29 15:16 - 000000000 ____D C:\WINDOWS\pss 2020-08-29 14:51 - 2020-03-11 00:04 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys 2020-08-29 01:55 - 2020-08-29 01:55 - 000002358 ____C C:\Users\Manderigon\Desktop\Microsoft Edge.lnk 2020-08-28 16:40 - 2020-08-28 16:40 - 008658304 _____ () C:\Users\Manderigon\Downloads\XboxInstaller.exe 2020-08-27 19:31 - 2020-08-27 19:32 - 000000000 ____D C:\WINDOWS\LastGood.Tmp 2020-08-27 19:30 - 2020-08-14 00:59 - 001371344 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2020-08-27 19:30 - 2020-08-14 00:59 - 001371344 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2020-08-27 19:30 - 2020-08-14 00:58 - 001780944 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2020-08-27 19:30 - 2020-08-14 00:58 - 001780944 _____ C:\WINDOWS\system32\vulkaninfo.exe 2020-08-27 19:30 - 2020-08-14 00:58 - 001086672 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2020-08-27 19:30 - 2020-08-14 00:58 - 001086672 _____ C:\WINDOWS\system32\vulkan-1.dll 2020-08-27 19:30 - 2020-08-14 00:58 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2020-08-27 19:30 - 2020-08-14 00:58 - 000946392 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2020-08-27 19:30 - 2020-08-14 00:58 - 000455400 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2020-08-27 19:30 - 2020-08-14 00:58 - 000349928 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2020-08-27 19:30 - 2020-08-14 00:56 - 000675216 _____ C:\WINDOWS\system32\nvofapi64.dll 2020-08-27 19:30 - 2020-08-14 00:56 - 000541928 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2020-08-27 19:30 - 2020-08-14 00:55 - 002078104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2020-08-27 19:30 - 2020-08-14 00:55 - 001570720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2020-08-27 19:30 - 2020-08-14 00:55 - 001485544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2020-08-27 19:30 - 2020-08-14 00:55 - 001146256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2020-08-27 19:30 - 2020-08-14 00:55 - 000811256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2020-08-27 19:30 - 2020-08-14 00:55 - 000669432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2020-08-27 19:30 - 2020-08-14 00:55 - 000555936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2020-08-27 19:30 - 2020-08-14 00:54 - 006653328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2020-08-27 19:30 - 2020-08-14 00:54 - 005882600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2020-08-27 19:30 - 2020-08-14 00:54 - 003916688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2020-08-27 19:30 - 2020-08-14 00:54 - 002376080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2020-08-27 19:30 - 2020-08-14 00:54 - 001722088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445206.dll 2020-08-27 19:30 - 2020-08-14 00:54 - 001482992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445206.dll 2020-08-27 19:30 - 2020-08-13 02:43 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll 2020-08-27 19:21 - 2020-08-27 19:24 - 000000000 ___DC C:\Users\Manderigon\Documents\Rockstar Games 2020-08-27 14:52 - 2017-07-28 20:51 - 000040736 _____ C:\WINDOWS\system32\Drivers\SteamStreamingMicrophone.sys 2020-08-27 14:52 - 2017-07-21 07:42 - 000040736 _____ C:\WINDOWS\system32\Drivers\SteamStreamingSpeakers.sys 2020-08-26 13:32 - 2020-08-29 15:15 - 000000000 ____D C:\Users\Manderigon\AppData\Local\ElevatedDiagnostics 2020-08-24 13:53 - 2020-08-24 13:53 - 000022032 _____ C:\Users\Manderigon\Downloads\South.Park.S04.PLSUB.1080p.BluRay.x265-Joy.torrent 2020-08-24 13:41 - 2020-08-24 13:41 - 000000000 ____D C:\Users\Manderigon\AppData\Local\Axiom UI 2020-08-24 13:04 - 2020-08-24 13:04 - 029422123 _____ C:\Users\Manderigon\Downloads\Axiom.FFmpeg.7z 2020-08-24 12:43 - 2020-08-24 12:43 - 000021550 _____ C:\Users\Manderigon\Downloads\South.Park.S02.PLSUB.1080p.BluRay.x265-Joy.torrent 2020-08-24 12:41 - 2020-08-24 12:41 - 000056479 _____ C:\Users\Manderigon\Downloads\South.Park.S01.1080p.WEB-DL.AAC2.0.H.264-CtrlHD.torrent 2020-08-21 01:13 - 2020-08-21 01:13 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2020-08-21 01:13 - 2020-08-10 10:38 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll 2020-08-21 01:13 - 2020-08-10 10:37 - 000905528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll 2020-08-19 20:41 - 2020-08-19 20:50 - 000013692 _____ C:\Users\Manderigon\Desktop\mary-rozliczenie.xlsx 2020-08-19 14:58 - 2020-08-19 14:58 - 000001541 _____ C:\Users\Manderigon\Downloads\result.zip 2020-08-19 14:58 - 2020-08-19 14:58 - 000000000 ____D C:\Users\Manderigon\Downloads\result 2020-08-16 20:04 - 2020-08-16 20:05 - 000000000 ____D C:\Users\Manderigon\.BigNox 2020-08-16 20:04 - 2020-08-16 20:04 - 000000761 ____C C:\Users\Manderigon\Desktop\Multi-Drive.lnk 2020-08-16 20:04 - 2020-08-16 20:04 - 000000700 ____C C:\Users\Manderigon\Desktop\Nox.lnk 2020-08-16 20:04 - 2020-08-16 20:04 - 000000000 ____D C:\Program Files (x86)\Bignox 2020-08-12 21:50 - 2020-08-12 21:50 - 000684675 _____ C:\Users\Manderigon\Downloads\Leżaki.pdf 2020-08-12 21:49 - 2020-08-12 21:49 - 009925883 _____ C:\Users\Manderigon\Downloads\Bilety.pdf 2020-08-12 21:48 - 2020-08-12 21:48 - 007708988 _____ C:\Users\Manderigon\Downloads\Program imprez fiszki - Verano.pdf 2020-08-12 21:47 - 2020-08-12 21:47 - 009553045 _____ C:\Users\Manderigon\Downloads\Program imprez - Holtur.pdf 2020-08-12 00:44 - 2020-08-12 00:44 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 022642688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 009932088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 007758848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 007270912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 006294528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 006074552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 005904896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 005849872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 005767224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 005003824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 004611072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 004129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 003806208 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 003743056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 003516416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 003368616 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2020-08-12 00:44 - 2020-08-12 00:44 - 002950808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-08-12 00:44 - 2020-08-12 00:44 - 002766952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2020-08-12 00:44 - 2020-08-12 00:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2020-08-12 00:44 - 2020-08-12 00:44 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 002698048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2020-08-12 00:44 - 2020-08-12 00:44 - 002588688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL 2020-08-12 00:44 - 2020-08-12 00:44 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL 2020-08-12 00:44 - 2020-08-12 00:44 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 002259192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL 2020-08-12 00:44 - 2020-08-12 00:44 - 002138280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL 2020-08-12 00:44 - 2020-08-12 00:44 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 002085632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001870200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001740800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001665024 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001654312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001482568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2020-08-12 00:44 - 2020-08-12 00:44 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001420320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001418832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001316352 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001282872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2020-08-12 00:44 - 2020-08-12 00:44 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000931328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000897648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000875520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000823744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000738064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL 2020-08-12 00:44 - 2020-08-12 00:44 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000718336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000690536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000675040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000671040 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000666280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL 2020-08-12 00:44 - 2020-08-12 00:44 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2020-08-12 00:44 - 2020-08-12 00:44 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000568128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000564488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2020-08-12 00:44 - 2020-08-12 00:44 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmscan.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000463168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2020-08-12 00:44 - 2020-08-12 00:44 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000379704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL 2020-08-12 00:44 - 2020-08-12 00:44 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL 2020-08-12 00:44 - 2020-08-12 00:44 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-08-12 00:44 - 2020-08-12 00:44 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2020-08-12 00:44 - 2020-08-12 00:44 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000124512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintBrmUi.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys 2020-08-12 00:44 - 2020-08-12 00:44 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys 2020-08-12 00:44 - 2020-08-12 00:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe 2020-08-12 00:44 - 2020-08-12 00:44 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2020-08-12 00:44 - 2020-08-12 00:44 - 000000357 _____ C:\WINDOWS\system32\DrtmAuthKeyDelegate_From_20190529_To_20200303.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth1KeyDelegate.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-08-12 00:44 - 2020-08-12 00:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-08-12 00:43 - 2020-08-12 00:44 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 007915864 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 007850784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 007583272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 007270728 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 005283776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 004625184 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin 2020-08-12 00:43 - 2020-08-12 00:43 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 003984896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-08-12 00:43 - 2020-08-12 00:43 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2020-08-12 00:43 - 2020-08-12 00:43 - 003141632 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 002717696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-08-12 00:43 - 2020-08-12 00:43 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 002471936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 002260312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 002136064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001756592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-08-12 00:43 - 2020-08-12 00:43 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001660536 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001512848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2020-08-12 00:43 - 2020-08-12 00:43 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001182248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001123344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000917800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000875424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2020-08-12 00:43 - 2020-08-12 00:43 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000822800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-08-12 00:43 - 2020-08-12 00:43 - 000548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000522688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2020-08-12 00:43 - 2020-08-12 00:43 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000369304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000275256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys 2020-08-12 00:43 - 2020-08-12 00:43 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys 2020-08-12 00:43 - 2020-08-12 00:43 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe 2020-08-12 00:43 - 2020-08-12 00:43 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll 2020-08-12 00:43 - 2020-08-12 00:43 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll 2020-08-12 00:39 - 2020-08-12 00:39 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-08-12 00:39 - 2020-08-12 00:39 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-08-09 21:42 - 2020-08-09 21:44 - 000000000 ____D C:\Users\Manderigon\AppData\Roaming\Camlytics 2020-08-09 21:42 - 2020-08-09 21:42 - 038592512 _____ C:\Users\Manderigon\Downloads\camlytics-x86-2.2.1.msi 2020-08-09 21:42 - 2020-08-09 21:42 - 000002461 _____ C:\Users\Public\Desktop\Camlytics.lnk 2020-08-09 21:42 - 2020-08-09 21:42 - 000000444 _____ C:\Users\Manderigon\AppData\Roaming\CSharpAnalytics-MeasurementSession-Camlytics.Watchdog 2020-08-09 21:42 - 2020-08-09 21:42 - 000000444 _____ C:\Users\Manderigon\AppData\Roaming\CSharpAnalytics-MeasurementSession-Camlytics 2020-08-09 21:42 - 2020-08-09 21:42 - 000000000 ____D C:\Users\Manderigon\AppData\Local\Camly 2020-08-09 21:42 - 2020-08-09 21:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camlytics 2020-08-08 21:08 - 2020-08-08 21:08 - 000000000 _____ C:\Users\Manderigon\Downloads\malinaCopy.img 2020-08-08 21:00 - 2020-08-08 21:00 - 016981676 _____ C:\Users\Manderigon\Downloads\Win32DiskImager-1.0.0-binary.zip 2020-08-08 21:00 - 2020-08-08 21:00 - 000000000 ____D C:\Users\Manderigon\Downloads\Win32DiskImager-1.0.0-binary 2020-08-08 19:31 - 2020-08-08 19:43 - 000000000 ____D C:\Users\Manderigon\AppData\Roaming\balena-etcher 2020-08-08 19:29 - 2020-08-08 19:30 - 117796976 _____ (Balena Inc.) C:\Users\Manderigon\Downloads\balenaEtcher-Portable-1.5.102.exe 2020-08-08 19:27 - 2020-08-08 19:28 - 452715448 _____ C:\Users\Manderigon\Downloads\2020-05-27-raspios-buster-lite-armhf.zip 2020-08-08 16:56 - 2020-08-08 16:56 - 002975493 ____C C:\Users\Manderigon\Desktop\O1_QIG.zip ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-08-29 17:15 - 2020-03-22 14:54 - 000000000 ____D C:\Users\Manderigon\AppData\Roaming\vlc 2020-08-29 17:15 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2020-08-29 16:42 - 2019-08-28 00:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-08-29 16:34 - 2018-07-31 14:55 - 000000000 ___DC C:\Users\Manderigon\AppData\Roaming\discord 2020-08-29 15:40 - 2017-04-25 16:43 - 000000000 ___DC C:\Users\Manderigon\AppData\Local\CrashDumps 2020-08-29 15:39 - 2019-08-28 00:56 - 001768484 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-08-29 15:39 - 2019-03-19 13:24 - 000784514 _____ C:\WINDOWS\system32\perfh015.dat 2020-08-29 15:39 - 2019-03-19 13:24 - 000152312 _____ C:\WINDOWS\system32\perfc015.dat 2020-08-29 15:35 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-08-29 15:35 - 2017-04-25 16:40 - 000000000 ____D C:\ProgramData\NVIDIA 2020-08-29 15:33 - 2019-08-28 00:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-08-29 15:33 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-08-29 15:33 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2020-08-29 15:33 - 2019-01-06 16:28 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2020-08-29 15:07 - 2017-05-14 21:11 - 000000000 ___DC C:\Users\Manderigon\AppData\Local\NVIDIA Corporation 2020-08-29 15:05 - 2018-05-01 17:35 - 000000000 ___DC C:\Users\Manderigon\AppData\Local\D3DSCache 2020-08-29 15:02 - 2018-04-28 17:23 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2020-08-29 14:48 - 2017-04-25 17:03 - 000000000 ___DC C:\Users\Manderigon\AppData\Roaming\Spotify 2020-08-29 14:40 - 2017-11-18 15:49 - 000000000 ___DC C:\Users\Manderigon\AppData\Local\Spotify 2020-08-28 16:01 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-08-28 16:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-08-28 14:31 - 2019-08-28 00:48 - 000000000 ____D C:\Users\Manderigon 2020-08-28 13:33 - 2020-06-30 16:09 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-08-27 21:19 - 2018-09-22 13:24 - 000000000 ___DC C:\Users\Manderigon\AppData\Roaming\FileZilla 2020-08-27 21:05 - 2019-09-21 02:25 - 000000000 ____D C:\Program Files\Rockstar Games 2020-08-27 21:05 - 2019-09-21 02:25 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2020-08-27 21:05 - 2018-06-15 14:06 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2020-08-27 20:14 - 2019-06-27 15:09 - 000002424 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2020-08-27 19:31 - 2017-05-14 21:10 - 000000000 ___DC C:\Users\Manderigon\AppData\Local\NVIDIA 2020-08-27 19:24 - 2019-09-21 02:24 - 000000000 ____D C:\Users\Manderigon\AppData\Local\Rockstar Games 2020-08-27 19:21 - 2019-09-21 02:21 - 000000000 ___DC C:\Users\Manderigon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2020-08-26 13:32 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\NDF 2020-08-24 16:53 - 2018-06-02 16:46 - 000000000 ___DC C:\Users\Manderigon\AppData\Roaming\qBittorrent 2020-08-24 12:27 - 2020-06-30 16:09 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-08-24 12:27 - 2020-06-30 16:09 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-08-19 01:07 - 2017-04-25 16:43 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-08-18 23:43 - 2018-08-21 20:56 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-08-18 11:45 - 2017-07-11 00:40 - 000000000 ___DC C:\Users\Manderigon\AppData\LocalLow\Mozilla 2020-08-18 11:43 - 2018-08-21 20:56 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-08-18 11:43 - 2018-08-21 20:56 - 000000000 ____D C:\Program Files\Mozilla Firefox 2020-08-16 20:12 - 2020-03-25 22:39 - 000000297 _____ C:\Users\Manderigon\d4ac4633ebd6440fa397b84f1bc94a3c.7z 2020-08-16 20:12 - 2018-01-16 19:42 - 000000000 ___DC C:\Users\Manderigon\AppData\Local\Nox 2020-08-16 20:05 - 2020-03-25 22:25 - 000000000 ____D C:\Users\Manderigon\Nox_share 2020-08-16 20:05 - 2020-03-25 22:24 - 000000000 ____D C:\Users\Manderigon\vmlogs 2020-08-16 20:05 - 2019-11-27 19:00 - 000000000 ____D C:\Users\Manderigon\.android 2020-08-16 20:05 - 2019-08-05 20:32 - 000000000 ___DC C:\Users\Manderigon\AppData\Local\NoxSrv 2020-08-16 20:04 - 2020-03-25 22:24 - 000000000 ____D C:\Users\Manderigon\AppData\Roaming\NoxSrv 2020-08-16 20:04 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Registration 2020-08-16 20:02 - 2019-05-04 15:58 - 000000074 ____C C:\Users\Manderigon\AppData\Local\update_progress.txt 2020-08-15 20:29 - 2017-04-30 16:08 - 000000000 ____D C:\Program Files\Microsoft Office 2020-08-14 00:55 - 2018-09-25 02:19 - 000656792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2020-08-14 00:51 - 2019-11-21 23:56 - 004707696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2020-08-14 00:51 - 2018-09-25 02:18 - 005395088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2020-08-13 21:41 - 2017-06-21 11:53 - 000000000 ___DC C:\Users\Manderigon\AppData\Local\gtk-2.0 2020-08-13 02:43 - 2018-09-25 02:19 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll 2020-08-13 02:43 - 2018-09-25 02:19 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2020-08-13 02:43 - 2018-09-24 23:02 - 000058596 _____ C:\WINDOWS\system32\nvinfo.pb 2020-08-13 00:15 - 2017-05-15 23:10 - 005491512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2020-08-13 00:15 - 2017-05-15 23:10 - 002634728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2020-08-13 00:15 - 2017-05-15 23:10 - 001759032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2020-08-13 00:15 - 2017-05-15 23:10 - 000991032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2020-08-13 00:15 - 2017-05-15 23:10 - 000195560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2020-08-13 00:15 - 2017-05-15 23:10 - 000122344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2020-08-13 00:15 - 2017-05-15 23:10 - 000083256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2020-08-12 23:35 - 2017-05-15 23:10 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2020-08-12 11:01 - 2017-12-07 10:40 - 000000000 ___RD C:\Users\Manderigon\3D Objects 2020-08-12 11:01 - 2017-04-25 16:38 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-08-12 11:00 - 2019-08-28 00:45 - 005162440 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-08-12 02:05 - 2019-03-19 13:26 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\setup 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Provisioning 2020-08-12 02:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-08-12 02:05 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\servicing 2020-08-11 14:31 - 2017-05-15 23:10 - 009270477 _____ C:\WINDOWS\system32\nvcoproc.bin 2020-08-10 03:05 - 2020-03-25 20:37 - 000000000 ____D C:\Users\Manderigon\.VirtualBox 2020-08-10 03:01 - 2020-03-25 20:37 - 000000000 ____D C:\ProgramData\VirtualBox 2020-08-08 21:33 - 2017-12-07 10:34 - 000000000 ___DC C:\Users\Manderigon\AppData\Local\Packages 2020-08-08 19:29 - 2020-05-27 08:24 - 1853882368 _____ C:\Users\Manderigon\Downloads\2020-05-27-raspios-buster-lite-armhf.img 2020-08-06 21:49 - 2018-11-23 14:23 - 000000000 ___DC C:\Users\Manderigon\AppData\Local\Discord 2020-08-06 21:49 - 2017-08-16 21:47 - 000000000 ___DC C:\Users\Manderigon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc 2020-08-05 14:13 - 2018-03-04 07:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd ==================== Pliki w katalogu głównym wybranych folderów ======== 2020-08-09 21:42 - 2020-08-09 21:42 - 000000444 _____ () C:\Users\Manderigon\AppData\Roaming\CSharpAnalytics-MeasurementSession-Camlytics 2020-08-09 21:42 - 2020-08-09 21:42 - 000000444 _____ () C:\Users\Manderigon\AppData\Roaming\CSharpAnalytics-MeasurementSession-Camlytics.Watchdog 2019-11-26 01:40 - 2019-11-26 01:40 - 000000078 _____ () C:\Users\Manderigon\AppData\Roaming\ICP.dat 2019-04-21 13:30 - 2019-04-21 13:30 - 000000649 ____C () C:\Users\Manderigon\AppData\Roaming\jd-gui.cfg 2018-04-16 16:20 - 2018-04-16 16:20 - 000001496 ____C () C:\Users\Manderigon\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs 2017-08-23 21:17 - 2019-11-10 19:32 - 000000600 ____C () C:\Users\Manderigon\AppData\Local\PUTTY.RND 2020-07-03 17:13 - 2020-03-04 11:02 - 000003405 _____ () C:\Users\Manderigon\AppData\Local\recently-used.xbel 2017-08-02 22:56 - 2020-03-25 23:22 - 000007625 ____C () C:\Users\Manderigon\AppData\Local\Resmon.ResmonCfg 2017-04-25 22:47 - 2017-04-25 22:47 - 000000003 ____C () C:\Users\Manderigon\AppData\Local\updater.log 2019-05-04 15:58 - 2020-08-16 20:02 - 000000074 ____C () C:\Users\Manderigon\AppData\Local\update_progress.txt 2017-04-25 22:47 - 2020-04-20 16:08 - 000000059 ____C () C:\Users\Manderigon\AppData\Local\UserProducts.xml ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================