wklejto.pl

Dodane przez: ~Anonim (2018-06-07 22:09) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
OTL logfile created on: 2018-06-07 16:31:20 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = D:\Users\ja\Downloads
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17843)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
15,92 Gb Total Physical Memory | 10,92 Gb Available Physical Memory | 68,59% Memory free
21,92 Gb Paging File | 17,00 Gb Available in Paging File | 77,57% Paging File free
Paging file location(s): c:\pagefile.sys 3072 3072d:\pagef [Binary data over 200 bytes]
 
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files (x86)
Drive C: | 820,51 Gb Total Space | 480,42 Gb Free Space | 58,55% Space Free | Partition Type: NTFS
Drive D: | 110,90 Gb Total Space | 27,86 Gb Free Space | 25,12% Space Free | Partition Type: NTFS
Drive G: | 100,00 Mb Total Space | 70,31 Mb Free Space | 70,32% Space Free | Partition Type: NTFS
 
Computer Name: DANUTA1PUTIN | User Name: ja | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2018-06-07 13:02:46 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\ja\Downloads\OTL.exe
PRC - [2018-05-22 22:48:28 | 000,994,256 | ---- | M] (Google Inc.) -- D:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe
PRC - [2018-05-11 12:50:54 | 002,128,872 | ---- | M] (Adobe Systems, Incorporated) -- D:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
PRC - [2018-05-11 12:50:52 | 002,321,384 | ---- | M] (Adobe Systems, Incorporated) -- D:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
PRC - [2018-05-01 14:51:38 | 000,075,136 | ---- | M] () -- D:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2018-04-30 23:01:12 | 057,816,920 | ---- | M] (Discord Inc.) -- D:\Users\ja\AppData\Local\Discord\app-0.0.301\Discord.exe
PRC - [2018-04-13 06:21:02 | 000,417,416 | ---- | M] (Logitech Inc.) -- D:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
PRC - [2017-09-08 11:36:06 | 004,490,200 | ---- | M] (Akamai Technologies, Inc.) -- D:\Users\ja\AppData\Local\Akamai\netsession_win.exe
PRC - [2016-08-17 14:43:10 | 000,499,000 | ---- | M] () -- D:\Windows\SysWOW64\spdsvc.exe
PRC - [2016-06-03 05:19:32 | 000,426,040 | ---- | M] (NVIDIA Corporation) -- D:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
PRC - [2016-05-02 08:02:13 | 002,398,776 | ---- | M] (NVIDIA Corporation) -- D:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2016-05-02 07:59:20 | 001,881,144 | ---- | M] (NVIDIA Corporation) -- D:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2014-03-06 10:08:50 | 000,292,848 | ---- | M] (Intel Corporation) -- D:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
PRC - [2014-02-07 02:03:18 | 000,031,192 | ---- | M] (Autodesk, Inc.) -- D:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
PRC - [2013-10-28 04:02:24 | 000,238,160 | ---- | M] (Huawei Technologies Co., Ltd.) -- D:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2013-10-26 11:45:14 | 000,651,856 | ---- | M] () -- D:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe
PRC - [2013-09-16 12:18:28 | 000,390,616 | ---- | M] (Intel Corporation) -- D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2013-09-16 12:17:42 | 000,169,432 | ---- | M] (Intel Corporation) -- D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2013-08-30 21:18:18 | 000,287,592 | ---- | M] (Intel Corporation) -- D:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2013-08-30 21:18:16 | 000,015,720 | ---- | M] (Intel Corporation) -- D:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2009-01-26 15:31:16 | 002,144,088 | RHS- | M] (Safer Networking Limited) -- C:\Programy\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009-01-26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Programy\Spybot - Search & Destroy\SDWinSec.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2018-05-26 23:23:42 | 009,820,504 | ---- | M] () -- \\?\D:\Users\ja\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node
MOD - [2018-05-10 21:47:58 | 001,728,344 | ---- | M] () -- \\?\D:\Users\ja\AppData\Roaming\discord\0.0.301\modules\discord_overlay2\discord_overlay2.node
MOD - [2018-05-03 13:17:37 | 001,249,112 | ---- | M] () -- \\?\D:\Users\ja\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node
MOD - [2018-05-03 13:17:36 | 002,760,536 | ---- | M] () -- \\?\D:\Users\ja\AppData\Roaming\discord\0.0.301\modules\discord_contact_import\discord_contact_import.node
MOD - [2018-05-03 13:17:02 | 001,578,840 | ---- | M] () -- \\?\D:\Users\ja\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node
MOD - [2018-05-03 13:16:56 | 001,530,712 | ---- | M] () -- \\?\D:\Users\ja\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node
MOD - [2018-05-03 13:16:55 | 002,722,648 | ---- | M] () -- \\?\D:\Users\ja\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node
MOD - [2018-05-03 13:16:55 | 000,512,856 | ---- | M] () -- \\?\D:\Users\ja\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node
MOD - [2018-04-30 23:01:12 | 001,937,752 | ---- | M] () -- D:\Users\ja\AppData\Local\Discord\app-0.0.301\libglesv2.dll
MOD - [2018-04-30 23:01:12 | 001,891,672 | ---- | M] () -- D:\Users\ja\AppData\Local\Discord\app-0.0.301\ffmpeg.dll
MOD - [2018-04-30 23:01:12 | 000,095,576 | ---- | M] () -- D:\Users\ja\AppData\Local\Discord\app-0.0.301\libegl.dll
MOD - [2018-04-21 11:46:57 | 001,116,672 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\337b695e6732b68207504a83b242b77c\System.ServiceModel.Web.ni.dll
MOD - [2018-04-21 11:46:52 | 003,034,624 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\e060dce4f5208d23b113a76c35fcd064\System.IdentityModel.ni.dll
MOD - [2018-04-21 11:46:50 | 019,939,328 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\2db768fdc0ca1f00d5f3488c963ad190\System.ServiceModel.ni.dll
MOD - [2018-04-21 11:22:26 | 013,564,416 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\30da8fa10e06e0f8e06a23dd42775744\System.Windows.Forms.ni.dll
MOD - [2018-04-21 11:22:23 | 000,993,792 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\46a1c421b74e2db0acf8f48f96fcc460\System.Configuration.ni.dll
MOD - [2018-04-21 11:22:22 | 007,684,096 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\9b3323c270e11b1c7785ed988e60ff92\System.Core.ni.dll
MOD - [2018-04-21 11:22:21 | 007,576,064 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\3d3f60c73523fe26dafd69911d7a0e02\System.Xml.ni.dll
MOD - [2018-04-21 11:22:19 | 002,841,088 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\9c544e977c420f7a94f0892097b8a6a7\System.Runtime.Serialization.ni.dll
MOD - [2018-04-21 11:22:18 | 002,032,128 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\5d6247236b53d2db261f5f10eb6ad29d\System.Xaml.ni.dll
MOD - [2018-04-21 11:22:18 | 001,645,568 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\161bf26ea58a00810515847a2c551741\System.Drawing.ni.dll
MOD - [2018-04-21 11:22:18 | 000,802,304 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\8668b61d526100cf5acb802c57f29f9c\System.ServiceModel.Internals.ni.dll
MOD - [2018-04-21 11:22:17 | 000,118,272 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\67849d7735cb99c03d3a8add69b211b4\SMDiagnostics.ni.dll
MOD - [2018-04-21 11:22:16 | 010,336,768 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\System\7f93837e87869a6f9b9c7d21e544bd78\System.ni.dll
MOD - [2018-04-21 11:22:12 | 020,491,776 | ---- | M] () -- D:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\c63857e47a917e45ff227d52324d08a1\mscorlib.ni.dll
MOD - [2016-06-03 09:38:10 | 000,020,536 | ---- | M] () -- D:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
MOD - [2016-05-02 08:02:09 | 000,020,536 | ---- | M] () -- D:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2018-04-21 11:36:12 | 003,460,072 | ---- | M] (Flexera Software LLC) [Auto | Running] -- D:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe -- (FlexNet Licensing Service 64)
SRV:[b]64bit:[/b] - [2018-04-13 06:21:04 | 000,206,472 | ---- | M] (Logitech Inc.) [Auto | Running] -- D:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe -- (LogiRegistryService)
SRV:[b]64bit:[/b] - [2016-07-11 15:56:37 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2016-05-02 07:58:46 | 001,165,368 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- D:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV:[b]64bit:[/b] - [2016-05-02 07:55:38 | 002,522,680 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- D:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe -- (NvStreamSvc)
SRV:[b]64bit:[/b] - [2016-05-02 07:55:33 | 003,634,232 | ---- | M] (NVIDIA Corporation) [On_Demand | Running] -- D:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe -- (NvStreamNetworkSvc)
SRV:[b]64bit:[/b] - [2015-12-11 14:04:40 | 000,344,168 | ---- | M] (Intel Corporation) [Auto | Running] -- D:\Windows\SysNative\igfxCUIService.exe -- (igfxCUIService1.0.0.0)
SRV:[b]64bit:[/b] - [2014-04-30 16:33:52 | 000,337,776 | ---- | M] (arvato digital services llc) [Auto | Running] -- D:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2_x64)
SRV:[b]64bit:[/b] - [2014-01-17 18:37:48 | 003,816,176 | ---- | M] (Intel® Corporation) [Auto | Running] -- D:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:[b]64bit:[/b] - [2014-01-17 18:37:30 | 000,284,912 | ---- | M] () [On_Demand | Stopped] -- D:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:[b]64bit:[/b] - [2014-01-17 18:37:08 | 000,632,048 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- D:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:[b]64bit:[/b] - [2014-01-17 18:36:42 | 000,154,864 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- D:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:[b]64bit:[/b] - [2013-08-30 21:18:16 | 000,015,720 | ---- | M] (Intel Corporation) [Auto | Running] -- D:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV:[b]64bit:[/b] - [2013-08-27 14:32:30 | 000,828,376 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- D:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2013-08-27 14:32:14 | 000,747,520 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- D:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2018-06-01 21:02:10 | 001,672,992 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- D:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2018-05-30 09:22:42 | 000,328,648 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Programy\Nortonik\Engine\22.14.2.13\NortonSecurity.exe -- (NortonSecurity)
SRV - [2018-05-22 22:48:28 | 000,994,256 | ---- | M] (Google Inc.) [Auto | Running] -- D:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaCacheService.exe -- (GoogleIMEJaCacheService)
SRV - [2018-05-11 12:50:54 | 002,128,872 | ---- | M] (Adobe Systems, Incorporated) [Auto | Running] -- D:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe -- (AGSService)
SRV - [2018-05-11 12:50:52 | 002,321,384 | ---- | M] (Adobe Systems, Incorporated) [Auto | Running] -- D:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe -- (AGMService)
SRV - [2018-05-08 21:59:48 | 000,272,384 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- D:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2018-05-01 14:51:38 | 000,075,136 | ---- | M] () [Auto | Running] -- D:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2018-04-25 22:17:43 | 005,745,672 | ---- | M] () [On_Demand | Stopped] -- D:\Program Files (x86)\Common Files\BattlEye\BEService.exe -- (BEService)
SRV - [2018-04-18 22:51:15 | 008,135,752 | ---- | M] (GOG.com) [On_Demand | Stopped] -- D:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe -- (GalaxyCommunication)
SRV - [2018-04-18 22:50:39 | 000,663,624 | ---- | M] (GOG.com) [On_Demand | Stopped] -- C:\Gry\GOG Galaxy\GalaxyClientService.exe -- (GalaxyClientService)
SRV - [2018-03-09 00:24:28 | 000,774,272 | ---- | M] (EasyAntiCheat Ltd) [On_Demand | Stopped] -- D:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe -- (EasyAntiCheat)
SRV - [2018-03-07 17:00:50 | 003,480,720 | ---- | M] (Disc Soft Ltd) [On_Demand | Running] -- C:\Programy\DAEMON Tools Lite\DiscSoftBusServiceLite.exe -- (Disc Soft Lite Bus Service)
SRV - [2017-04-21 14:53:36 | 000,107,656 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- D:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2016-08-17 14:43:10 | 000,499,000 | ---- | M] () [Auto | Running] -- D:\Windows\SysWow64\\spdsvc.exe -- (Samsung Printer Dianostics Service)
SRV - [2016-06-03 05:19:32 | 000,426,040 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- D:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe -- (Stereo Service)
SRV - [2016-05-02 07:59:20 | 001,881,144 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- D:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2015-12-11 14:04:34 | 000,279,144 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- D:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2014-02-07 02:03:18 | 000,031,192 | ---- | M] (Autodesk, Inc.) [Auto | Running] -- D:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2013-10-28 04:02:26 | 000,351,824 | ---- | M] () [Auto | Running] -- D:\ProgramData\DatacardService\HWDeviceService64.exe -- (HWDeviceService64.exe)
SRV - [2013-10-26 11:45:14 | 000,651,856 | ---- | M] () [Auto | Stopped] -- C:\Programy\PLAY ONLINE\UpdateDog\ouc.exe -- (PLAY ONLINE. RunOuc)
SRV - [2013-09-25 15:35:06 | 000,282,112 | ---- | M] (Brother Industries, Ltd.) [On_Demand | Stopped] -- D:\Program Files (x86)\Browny02\BrYNSvc.exe -- (BrYNSvc)
SRV - [2013-09-16 12:18:28 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013-09-16 12:17:42 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2018-06-05 14:07:22 | 000,099,920 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:[b]64bit:[/b] - [2018-05-30 05:54:37 | 000,566,912 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symnets.sys -- (SymNetS)
DRV:[b]64bit:[/b] - [2018-05-30 05:54:19 | 001,942,096 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symefasi64.sys -- (SymEFASI)
DRV:[b]64bit:[/b] - [2018-05-30 05:54:09 | 001,015,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\wpctrldrv.sys -- (wpCtrlDrv_NGC)
DRV:[b]64bit:[/b] - [2018-05-30 05:52:32 | 000,307,792 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\ironx64.sys -- (SymIRON)
DRV:[b]64bit:[/b] - [2018-05-30 05:51:34 | 000,187,520 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\ccsetx64.sys -- (ccSet_NGC)
DRV:[b]64bit:[/b] - [2018-05-30 05:51:15 | 000,838,224 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\srtsp64.sys -- (SRTSP)
DRV:[b]64bit:[/b] - [2018-05-30 05:51:15 | 000,049,232 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\srtspx64.sys -- (SRTSPX)
DRV:[b]64bit:[/b] - [2018-03-10 21:51:36 | 000,047,672 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\dtliteusbbus.sys -- (dtliteusbbus)
DRV:[b]64bit:[/b] - [2018-03-10 21:50:28 | 000,030,264 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\dtlitescsibus.sys -- (dtlitescsibus)
DRV:[b]64bit:[/b] - [2017-10-20 05:29:22 | 000,067,736 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\LGJoyXlCore.sys -- (LGJoyXlCore)
DRV:[b]64bit:[/b] - [2017-10-20 05:29:22 | 000,036,496 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\LGBusEnum.sys -- (LGBusEnum)
DRV:[b]64bit:[/b] - [2017-10-20 05:29:22 | 000,026,008 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\LGVirHid.sys -- (LGVirHid)
DRV:[b]64bit:[/b] - [2016-08-16 03:18:34 | 000,159,936 | ---- | M] (MBB) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\usb2ser.sys -- (wdm_usb)
DRV:[b]64bit:[/b] - [2016-06-03 09:38:10 | 000,039,992 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- D:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:[b]64bit:[/b] - [2016-05-02 07:55:28 | 000,028,216 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- D:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:[b]64bit:[/b] - [2016-05-02 00:15:40 | 000,034,552 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:[b]64bit:[/b] - [2016-04-14 07:38:19 | 000,056,384 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:[b]64bit:[/b] - [2015-11-20 13:11:28 | 004,924,304 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2015-06-21 22:13:48 | 000,014,184 | ---- | M] (Logitech) [Kernel | Auto | Stopped] -- D:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys -- (LGCoreTemp)
DRV:[b]64bit:[/b] - [2015-03-31 02:57:56 | 000,460,048 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2014-12-29 06:07:36 | 000,049,304 | ---- | M] (Visicom Media Inc.) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\mcvidrv.sys -- (ManyCam)
DRV:[b]64bit:[/b] - [2014-12-29 05:56:08 | 000,035,992 | ---- | M] (Visicom Media Inc.) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\mcaudrv_x64.sys -- (mcaudrv_simple)
DRV:[b]64bit:[/b] - [2014-08-06 20:15:50 | 000,014,136 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\hidkmdf.sys -- (hidkmdf)
DRV:[b]64bit:[/b] - [2014-03-07 14:05:46 | 000,533,232 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2014-03-07 14:05:46 | 000,034,544 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:[b]64bit:[/b] - [2014-03-06 10:08:20 | 000,020,464 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- D:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:[b]64bit:[/b] - [2014-03-06 10:08:18 | 000,791,024 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:[b]64bit:[/b] - [2014-03-06 10:08:18 | 000,370,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:[b]64bit:[/b] - [2014-02-18 19:48:28 | 000,901,848 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2013-11-15 10:35:24 | 008,046,288 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:[b]64bit:[/b] - [2013-10-24 10:50:32 | 000,444,632 | ---- | M] (Realsil Semiconductor Corporation) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\RtsPer.sys -- (RTSPER)
DRV:[b]64bit:[/b] - [2013-09-16 12:17:42 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2013-09-03 12:01:00 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- D:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:[b]64bit:[/b] - [2013-08-30 21:18:02 | 000,644,968 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- D:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2013-08-30 21:18:02 | 000,028,008 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- D:\Windows\SysNative\drivers\iaStorF.sys -- (iaStorF)
DRV:[b]64bit:[/b] - [2013-08-21 06:31:40 | 000,204,568 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm)
DRV:[b]64bit:[/b] - [2013-08-21 06:31:40 | 000,103,576 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus)
DRV:[b]64bit:[/b] - [2013-06-29 11:17:56 | 000,246,272 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\ew_juwwanecm.sys -- (huawei_wwanecm)
DRV:[b]64bit:[/b] - [2013-03-04 10:32:48 | 000,110,592 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\ew_jucdcacm.sys -- (huawei_cdcacm)
DRV:[b]64bit:[/b] - [2013-03-04 10:32:48 | 000,091,648 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- D:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV:[b]64bit:[/b] - [2013-03-04 10:32:48 | 000,030,720 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\ew_juextctrl.sys -- (huawei_ext_ctrl)
DRV:[b]64bit:[/b] - [2012-12-22 03:46:11 | 000,014,976 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV:[b]64bit:[/b] - [2010-11-21 05:25:00 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2010-11-21 05:24:15 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2010-11-21 05:24:15 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010-11-21 05:24:15 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2010-11-21 05:24:15 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- D:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010-11-21 05:24:14 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- D:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-07-14 02:09:50 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\usb80236.sys -- (usbrndis6)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- D:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009-03-02 15:12:18 | 000,011,576 | ---- | M] (Samsung Electronics) [Kernel | Auto | Running] -- D:\Windows\SysNative\drivers\SSPORT.SYS -- (SSPORT)
DRV:[b]64bit:[/b] - [2009-03-02 15:12:14 | 000,053,816 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Stopped] -- D:\Windows\SysNative\drivers\DGIVECP.SYS -- (DgiVecp)
DRV - [2018-05-22 19:23:58 | 001,298,000 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Programy\Nortonik\NortonData\22.7.0.76\Definitions\IPSDefs\20180605.063\IDSvia64.sys -- (IDSVia64)
DRV - [2018-05-01 02:48:31 | 001,879,632 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Programy\Nortonik\NortonData\22.7.0.76\Definitions\BASHDefs\20180604.001\BHDrvx64.sys -- (BHDrvx64)
DRV - [2018-03-24 11:17:46 | 000,153,168 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- D:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2018-03-23 19:53:54 | 000,507,984 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- D:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- D:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pl
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 5D 81 28 8F 50 A4 D1 01  [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {85A60A59-D3D8-468F-B598-FB4393789EF4}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\..\SearchScopes\{85A60A59-D3D8-468F-B598-FB4393789EF4}: "URL" = https://www.google.pl/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}: "URL" = https://pl.search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10301__161005__yaie&p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@cuminas.jp/DjVuPlugin: D:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll (Cuminas Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: D:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll ( Microsoft Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: D:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: D:\Program Files\TabletPlugins\npWacomTabletPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@cuminas.jp/DjVuPlugin: C:\Programy\DjVu\npdjvu.dll (Cuminas Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: D:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.45.2: D:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2: D:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: D:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: D:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: D:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: D:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: D:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: D:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll File not found
FF - HKCU\Software\MozillaPlugins\@my.com/Games: D:\Users\ja\AppData\Local\MyComGames\NPMyComDetector.dll (MY.COM B.V.)
 
 
[2016-10-28 05:31:28 | 000,003,027 | ---- | M] () -- \searchplugins\google-lavasoft.xml
 
O1 HOSTS File: ([2016-07-17 19:01:18 | 000,001,207 | ---- | M]) - D:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       down.baidu2016.com
O1 - Hosts: 127.0.0.1       123.sogou.com
O1 - Hosts: 127.0.0.1       www.czzsyzgm.com
O1 - Hosts: 127.0.0.1       www.czzsyzxl.com
O1 - Hosts: 127.0.0.1       union.baidu2019.com
O1 - Hosts: 127.0.0.1 lmlicenses.wip4.adobe.com
O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
O1 - Hosts: 127.0.0.1 na1r.services.adobe.com
O1 - Hosts: 127.0.0.1 hlrcv.stage.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com 
O1 - Hosts: 127.0.0.1 activate.adobe.com
O2:[b]64bit:[/b] - BHO: (Norton Identity Safety) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Programy\Nortonik\Engine\22.14.2.13\coIEPlg.dll (Symantec Corporation)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programy\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Norton Identity Safety) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Programy\Nortonik\Engine32\22.14.2.13\coIEPlg.dll (Symantec Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll (Oracle Corporation)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programy\Nortonik\Engine\22.14.2.13\coIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programy\Nortonik\Engine32\22.14.2.13\coIEPlg.dll (Symantec Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IAStorIcon] D:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Launch LCore] D:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [NvBackend] D:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg_Dolby] D:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] D:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg_LENOVO_MICPKEY] D:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] D:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [ShadowPlay] D:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [SynLenovoGestureMgr] D:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe (Synaptics)
O4 - HKLM..\Run: [Google Japanese Input Prelauncher] D:\Program Files (x86)\Google\Google Japanese Input\GoogleIMEJaBroker32.exe (Google Inc.)
O4 - HKLM..\Run: [USB3MON] D:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKCU..\Run: []  File not found
O4 - HKCU..\Run: [Akamai NetSession Interface] D:\Users\ja\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKCU..\Run: [Discord] D:\Users\ja\AppData\Local\Discord\app-0.0.301\Discord.exe (Discord Inc.)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Programy\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - Startup: D:\Users\ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\helper.lnk = D:\Users\ja\AppData\Roaming\WindowsServices\helper.vbs ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer:  = 
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programy\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: localhost ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: webcompanion.com ([]http in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 212.2.127.253
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{457384C3-779B-4F7E-BE67-B33A6CBA54C1}: DhcpNameServer = 192.168.1.1 212.2.127.253
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{52826DD5-F6E8-4223-8370-7FBFAE4B329B}: DhcpNameServer = 89.108.195.20 185.89.185.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{52826DD5-F6E8-4223-8370-7FBFAE4B329B}: NameServer = 89.108.195.20 185.89.185.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E1A42FA4-61C6-400B-93D1-D812F30240D2}: DhcpNameServer = 192.168.1.1 212.2.127.253
O20:[b]64bit:[/b] - AppInit_DLLs: (D:\Windows\system32\nvinitx.dll) - D:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (D:\Windows\SysWOW64\nvinit.dll) - D:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - D:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (D:\Windows\system32\userinit.exe) - D:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - D:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (D:\Windows\system32\userinit.exe) - D:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2018-04-21 11:09:44 | 000,000,000 | ---D | M] - D:\Autodesk -- [ NTFS ]
O33 - MountPoints2\{41edfcd5-103d-11e6-9a67-f0761cfc56e5}\Shell - "" = AutoRun
O33 - MountPoints2\{41edfcd5-103d-11e6-9a67-f0761cfc56e5}\Shell\AutoRun\command - "" = H:\Setup.bat
O33 - MountPoints2\{a6b827da-2b57-11e7-a08f-e376790f1c2b}\Shell - "" = AutoRun
O33 - MountPoints2\{a6b827da-2b57-11e7-a08f-e376790f1c2b}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2018-06-07 12:44:52 | 000,000,000 | ---D | C] -- D:\Users\ja\Desktop\pendrive pierozki
[2018-06-07 12:38:46 | 000,000,000 | ---D | C] -- D:\Program Files (x86)\UsbFix
[2018-06-05 14:07:18 | 000,000,000 | R--D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
[2018-06-02 19:31:09 | 000,000,000 | ---D | C] -- D:\Users\ja\Documents\Syberia 2 Saves
[2018-06-02 13:21:30 | 000,000,000 | ---D | C] -- D:\Users\ja\Documents\Rockstar Games
[2018-06-02 13:09:00 | 000,000,000 | ---D | C] -- D:\Program Files\Rockstar Games
[2018-06-02 13:06:57 | 000,000,000 | ---D | C] -- D:\Program Files (x86)\Rockstar Games
[2018-06-02 13:04:21 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
[2018-06-02 12:01:09 | 000,000,000 | ---D | C] -- D:\ProgramData\Rockstar Games
[2018-05-13 12:21:08 | 000,000,000 | ---D | C] -- D:\Users\ja\AppData\Local\Stories
[1 D:\Windows\SysWow64\*.tmp files -> D:\Windows\SysWow64\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2018-06-07 16:10:27 | 000,019,920 | -H-- | M] () -- D:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2018-06-07 16:10:27 | 000,019,920 | -H-- | M] () -- D:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2018-06-07 16:00:29 | 000,067,584 | --S- | M] () -- D:\Windows\bootstat.dat
[2018-06-07 12:53:27 | 001,673,940 | ---- | M] () -- D:\Windows\SysNative\PerfStringBackup.INI
[2018-06-07 12:53:27 | 000,741,710 | ---- | M] () -- D:\Windows\SysNative\perfh015.dat
[2018-06-07 12:53:27 | 000,655,502 | ---- | M] () -- D:\Windows\SysNative\perfh009.dat
[2018-06-07 12:53:27 | 000,156,750 | ---- | M] () -- D:\Windows\SysNative\perfc015.dat
[2018-06-07 12:53:27 | 000,122,872 | ---- | M] () -- D:\Windows\SysNative\perfc009.dat
[2018-06-07 12:51:20 | 000,087,732 | ---- | M] () -- D:\Users\ja\Desktop\s3.JPG
[2018-06-07 12:50:28 | 000,085,149 | ---- | M] () -- D:\Users\ja\Desktop\s2.JPG
[2018-06-07 12:49:58 | 000,084,778 | ---- | M] () -- D:\Users\ja\Desktop\s1.JPG
[2018-06-07 12:42:30 | 000,001,893 | ---- | M] () -- D:\Users\ja\Desktop\UsbFix Anti-Malware.lnk
[2018-06-07 12:15:46 | 000,001,081 | ---- | M] () -- D:\Users\ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\helper.lnk
[2018-06-07 12:15:10 | 013,761,792 | ---- | M] () -- D:\Users\ja\Desktop\fabryka.pln
[2018-06-07 12:14:19 | 000,058,325 | ---- | M] () -- D:\Users\ja\Desktop\fabryka.pdf
[2018-06-05 14:07:22 | 000,099,920 | ---- | M] (Symantec Corporation) -- D:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2018-06-05 14:07:22 | 000,010,396 | ---- | M] () -- D:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2018-06-05 14:07:22 | 000,000,873 | ---- | M] () -- D:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2018-06-05 10:18:22 | 001,447,044 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\Cat.DB
[2018-06-05 10:18:22 | 001,047,053 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\VT20180502.020
[2018-05-30 09:18:36 | 000,000,196 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\isolate.ini
[2018-05-30 05:54:37 | 000,566,912 | ---- | M] (Symantec Corporation) -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symnets.sys
[2018-05-30 05:54:37 | 000,468,616 | ---- | M] (Symantec Corporation) -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symtdiv.sys
[2018-05-30 05:54:36 | 000,008,586 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symnet64.cat
[2018-05-30 05:54:36 | 000,000,842 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symnet64.inf
[2018-05-30 05:54:19 | 001,942,096 | ---- | M] (Symantec Corporation) -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symefasi64.sys
[2018-05-30 05:54:19 | 000,024,584 | ---- | M] (Symantec Corporation) -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symelam.sys
[2018-05-30 05:54:19 | 000,010,345 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symelam64.cat
[2018-05-30 05:54:19 | 000,008,606 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symefasi64.cat
[2018-05-30 05:54:19 | 000,002,522 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symefasi64.inf
[2018-05-30 05:54:19 | 000,001,157 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symelam.inf
[2018-05-30 05:54:18 | 001,047,053 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\symvtcer.dat
[2018-05-30 05:54:09 | 001,015,592 | ---- | M] (Symantec Corporation) -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\wpctrldrv.sys
[2018-05-30 05:54:09 | 000,008,468 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\wpctrldrv.cat
[2018-05-30 05:54:09 | 000,001,579 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\wpctrldrv.inf
[2018-05-30 05:52:32 | 000,307,792 | ---- | M] (Symantec Corporation) -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\ironx64.sys
[2018-05-30 05:52:32 | 000,008,580 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\iron.cat
[2018-05-30 05:52:32 | 000,000,767 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\iron.inf
[2018-05-30 05:51:34 | 000,187,520 | ---- | M] (Symantec Corporation) -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\ccsetx64.sys
[2018-05-30 05:51:34 | 000,008,592 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\ccsetx64.cat
[2018-05-30 05:51:34 | 000,000,854 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\ccsetx64.inf
[2018-05-30 05:51:15 | 000,838,224 | ---- | M] (Symantec Corporation) -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\srtsp64.sys
[2018-05-30 05:51:15 | 000,049,232 | ---- | M] (Symantec Corporation) -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\srtspx64.sys
[2018-05-30 05:51:15 | 000,008,511 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\srtspx64.cat
[2018-05-30 05:51:15 | 000,008,508 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\srtsp64.cat
[2018-05-30 05:51:15 | 000,001,465 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\srtsp64.inf
[2018-05-30 05:51:15 | 000,001,446 | ---- | M] () -- D:\Windows\SysNative\drivers\NGCx64\160E020.00D\srtspx64.inf
[2018-05-24 15:04:04 | 000,196,238 | ---- | M] () -- D:\Users\ja\Desktop\6.JPG
[2018-05-24 14:59:20 | 000,084,615 | ---- | M] () -- D:\Users\ja\Desktop\5.JPG
[2018-05-24 14:48:48 | 000,214,938 | ---- | M] () -- D:\Users\ja\Desktop\4.JPG
[2018-05-24 14:48:06 | 000,204,293 | ---- | M] () -- D:\Users\ja\Desktop\3.JPG
[2018-05-24 14:47:13 | 000,240,238 | ---- | M] () -- D:\Users\ja\Desktop\2.JPG
[2018-05-24 14:42:54 | 000,181,943 | ---- | M] () -- D:\Users\ja\Desktop\1.JPG
[2018-05-24 13:37:41 | 000,000,568 | RHS- | M] () -- D:\ProgramData\ntuser.pol
[1 D:\Windows\SysWow64\*.tmp files -> D:\Windows\SysWow64\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2018-06-07 12:51:20 | 000,087,732 | ---- | C] () -- D:\Users\ja\Desktop\s3.JPG
[2018-06-07 12:50:28 | 000,085,149 | ---- | C] () -- D:\Users\ja\Desktop\s2.JPG
[2018-06-07 12:49:57 | 000,084,778 | ---- | C] () -- D:\Users\ja\Desktop\s1.JPG
[2018-06-07 12:38:52 | 000,001,893 | ---- | C] () -- D:\Users\ja\Desktop\UsbFix Anti-Malware.lnk
[2018-06-07 12:15:46 | 000,001,081 | ---- | C] () -- D:\Users\ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\helper.lnk
[2018-06-07 12:15:02 | 013,761,792 | ---- | C] () -- D:\Users\ja\Desktop\fabryka.pln
[2018-06-07 12:14:17 | 000,058,325 | ---- | C] () -- D:\Users\ja\Desktop\fabryka.pdf
[2018-05-24 15:04:04 | 000,196,238 | ---- | C] () -- D:\Users\ja\Desktop\6.JPG
[2018-05-24 14:59:20 | 000,084,615 | ---- | C] () -- D:\Users\ja\Desktop\5.JPG
[2018-05-24 14:48:47 | 000,214,938 | ---- | C] () -- D:\Users\ja\Desktop\4.JPG
[2018-05-24 14:48:06 | 000,204,293 | ---- | C] () -- D:\Users\ja\Desktop\3.JPG
[2018-05-24 14:47:13 | 000,240,238 | ---- | C] () -- D:\Users\ja\Desktop\2.JPG
[2018-05-24 14:42:54 | 000,181,943 | ---- | C] () -- D:\Users\ja\Desktop\1.JPG
[2018-04-08 23:20:12 | 000,189,248 | ---- | C] () -- D:\Windows\SysWow64\PnkBstrB.exe
[2018-04-08 23:20:02 | 000,075,136 | ---- | C] () -- D:\Windows\SysWow64\PnkBstrA.exe
[2018-02-01 14:20:44 | 000,000,039 | ---- | C] () -- D:\Windows\SysWow64\Stats.ini
[2017-11-25 18:43:47 | 000,000,500 | ---- | C] () -- D:\Windows\SysWow64\drivers\dcompbg200.dat
[2017-11-25 18:43:47 | 000,000,500 | ---- | C] () -- D:\Windows\d_iclink175.ini
[2017-11-25 18:43:46 | 000,000,500 | ---- | C] () -- D:\Windows\i_iclink445.ini
[2017-11-25 18:43:46 | 000,000,500 | ---- | C] () -- D:\Windows\SysWow64\drivers\fcompbg291.dat
[2017-06-21 18:51:49 | 000,000,568 | RHS- | C] () -- D:\ProgramData\ntuser.pol
[2017-03-06 18:12:34 | 000,000,152 | ---- | C] () -- D:\Windows\ODBC.INI
[2017-03-06 18:12:11 | 000,000,185 | ---- | C] () -- D:\Windows\ODBCINST.INI
[2016-12-05 00:35:59 | 002,078,208 | ---- | C] () -- D:\Windows\SysWow64\DlgSearchEngine.dll
[2016-12-05 00:35:59 | 000,499,000 | ---- | C] () -- D:\Windows\SysWow64\spdsvc.exe
[2016-12-05 00:35:59 | 000,094,208 | ---- | C] () -- D:\Windows\SysWow64\ssdevm.dll
[2016-12-05 00:35:32 | 000,471,040 | ---- | C] () -- D:\Windows\ssndii.exe
[2016-10-06 00:33:33 | 000,002,904 | ---- | C] () -- D:\Windows\SysWow64\LavasoftTcpServiceOff.ini
[2016-09-29 16:54:26 | 000,000,173 | ---- | C] () -- D:\Users\ja\AppData\Local\msmathematics.qat.ja
[2016-09-02 18:17:04 | 000,045,056 | ---- | C] () -- D:\Windows\SysWow64\BRTCPCON.DLL
[2016-09-02 18:17:04 | 000,000,114 | ---- | C] () -- D:\Windows\SysWow64\BRLMW03A.INI
[2016-06-15 05:07:07 | 000,129,824 | ---- | C] () -- D:\Windows\SysWow64\vulkan-1.dll
[2016-06-15 05:07:07 | 000,040,224 | ---- | C] () -- D:\Windows\SysWow64\vulkaninfo.exe
[2016-06-15 05:02:41 | 035,115,456 | ---- | C] () -- D:\Windows\SysWow64\nvcompiler.dll
[2016-06-15 05:02:41 | 008,733,608 | ---- | C] () -- D:\Windows\SysWow64\nvptxJitCompiler.dll
[2016-06-15 05:02:41 | 000,565,392 | ---- | C] () -- D:\Windows\SysWow64\nvfatbinaryLoader.dll
[2016-06-14 05:36:57 | 000,007,613 | ---- | C] () -- D:\Users\ja\AppData\Local\recently-used.xbel
[2016-05-07 17:01:43 | 000,000,034 | ---- | C] () -- D:\Users\ja\AppData\Roaming\AdobeWLCMCache.dat
[2016-05-02 18:02:31 | 000,013,827 | ---- | C] () -- D:\Users\ja\AppData\Local\WiDiSetupLog.20160502.180231.wdl
[2016-05-02 16:58:09 | 000,000,153 | ---- | C] () -- D:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2016-05-02 10:58:33 | 000,014,947 | ---- | C] () -- D:\Users\ja\AppData\Local\WiDiSetupLog.20160502.105833.wdl
[2016-05-02 10:53:34 | 000,016,597 | ---- | C] () -- D:\Users\ja\AppData\Local\WiDiSetupLog.20160502.105334.wdl
[2016-05-02 00:26:39 | 000,015,040 | ---- | C] () -- D:\Users\ja\AppData\Local\WiDiSetupLog.20160502.002639.wdl
[2016-05-02 00:19:33 | 000,000,000 | -H-- | C] () -- D:\ProgramData\DP45977C.lfl
[2016-05-02 00:12:07 | 000,013,816 | ---- | C] () -- D:\Users\ja\AppData\Local\WiDiSetupLog.20160502.001207.wdl
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2009-07-14 07:00:09 | 000,000,227 | RHS- | M] () -- D:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = D:\Windows\SysNative\shell32.dll -- [2010-11-21 05:24:20 | 014,174,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2010-11-21 05:24:28 | 012,872,192 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = D:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 05:24:46 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = D:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2018-03-04 18:14:49 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\.mono
[2016-07-13 16:01:04 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\4Media
[2016-07-17 17:22:07 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Abvent_Artlantis6
[2016-07-13 15:58:57 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Audacity
[2018-04-29 21:59:09 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Autodesk
[2017-04-22 00:47:47 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Battle.net
[2016-07-17 15:11:59 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\BitLord
[2017-05-23 11:43:12 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Brighter3D
[2017-06-21 19:00:44 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Chaos Group
[2018-03-10 21:57:25 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\DAEMON Tools Lite
[2018-05-03 13:16:53 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\discord
[2016-08-30 13:41:19 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\DxO Labs
[2017-03-06 21:57:13 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Dynamo
[2018-05-01 13:30:12 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\EasyAntiCheat
[2017-05-23 11:43:12 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\fltk.org
[2016-06-15 00:52:30 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Foxit Software
[2016-11-17 20:43:24 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Graphisoft
[2016-06-01 00:51:42 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\HTC
[2016-08-13 12:31:22 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Indigo Renderer
[2016-12-13 22:46:19 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Install.GS
[2016-12-13 22:47:43 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\IrfanView
[2016-05-14 23:23:33 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\LibreOffice
[2016-11-17 20:43:40 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\MAXON
[2017-11-25 22:19:27 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\McNeel
[2018-03-17 21:34:58 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\NapiProjekt
[2016-07-13 16:13:59 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\NetMedia Providers
[2018-02-01 17:27:11 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Opera Software
[2016-05-07 17:02:06 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\PDAppFlex
[2016-10-06 00:36:30 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\PDF Architect 4
[2016-10-07 07:34:20 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\PDF Producer
[2018-03-12 00:48:13 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Petroglyph
[2016-12-27 20:53:40 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\PhotoScape
[2016-07-13 16:13:59 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Publish Providers
[2018-05-01 14:51:33 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\PunkBuster
[2018-04-15 10:22:24 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\RenPy
[2017-05-16 19:01:03 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\SimLab
[2018-01-14 21:55:31 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\SketchUp
[2016-07-13 16:14:51 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Sony
[2018-06-07 00:28:15 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Spotify
[2016-07-11 13:04:34 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\StepMania 5
[2017-05-23 11:31:58 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Thea Render
[2016-06-10 01:44:44 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Thinstall
[2018-05-03 22:06:46 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\To the Moon - Freebird Games
[2017-05-16 23:02:22 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Trimble Connect for SketchUp
[2017-12-07 23:12:44 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Trimble Navigation Limited
[2016-09-18 16:41:02 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\TwilightV2
[2018-06-05 21:24:18 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\uTorrent
[2017-06-21 18:39:44 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\vrayneui
[2018-02-17 20:56:11 | 000,000,000 | ---D | M] -- D:\Users\ja\AppData\Roaming\Wargaming.net
[2018-06-07 12:15:45 | 000,000,000 | RHSD | M] -- D:\Users\ja\AppData\Roaming\WindowsServices
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
< End of report >
 
Wygenerowano w 0.079s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!