wklejto.pl

Dodane przez: ~Anonim (2019-01-16 14:51) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
527.
528.
529.
530.
531.
532.
533.
534.
535.
536.
537.
538.
539.
540.
541.
542.
543.
544.
545.
546.
547.
548.
549.
550.
551.
552.
553.
554.
555.
556.
557.
558.
559.
560.
561.
562.
563.
564.
565.
566.
567.
568.
569.
570.
571.
572.
573.
574.
575.
576.
577.
578.
579.
580.
581.
582.
583.
584.
585.
586.
587.
588.
589.
590.
591.
592.
593.
594.
595.
596.
597.
598.
599.
600.
601.
602.
603.
604.
605.
606.
607.
608.
609.
610.
611.
612.
613.
614.
615.
616.
617.
618.
619.
620.
621.
622.
623.
624.
625.
626.
627.
628.
629.
630.
631.
632.
633.
634.
635.
636.
637.
638.
639.
640.
641.
642.
643.
644.
645.
646.
647.
648.
649.
650.
651.
652.
653.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14.01.2019 01
Uruchomiony przez User (administrator)  USER-KOMPUTER (16-01-2019 14:49:50)
Uruchomiony z C:\Users\User\Desktop
Załadowane profile: User (Dostępne profile: User)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Opera)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Procesy (filtrowane) =================
 
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
 
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\68.0.3440.11\remoting_host.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\68.0.3440.11\remoting_host.exe
(CloudBees, Inc.) C:\ProgramData\Microsoft\Windows\EventSvc\eventsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
() C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
( ) C:\ProgramData\Microsoft\Windows\EventSvc\work0.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
( ) C:\Users\User\AppData\Local\NtvHost\native.exe.bkfl
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files\CCleaner\QB1SAU\UpdateInstall.exe
() C:\Program Files (x86)\BNQN\562024673.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Epic Privacy Browser) C:\Users\User\AppData\Local\Epic Privacy Browser\Installer\EpicUpdate.exe
() C:\Program Files\CCleaner\QB1SAU\jEQsB&zwOR.exe
(D) C:\Program Files\FRHY50TII0\FRHY50TII.exe
(Shut ) C:\Users\User\AppData\Roaming\pr51vffphzt\ryb5rr13tjr.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
() C:\Users\User\AppData\Local\Temp\is-785QM.tmp\ryb5rr13tjr.tmp
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
( ) C:\Users\User\AppData\Roaming\ybnu4rkvt30\auabsekrliz.exe
() C:\Users\User\AppData\Local\Temp\is-25PIN.tmp\auabsekrliz.tmp
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(4T36PKJY) C:\Program Files\DP9DWCLWIG\4LS14IJ05.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
() C:\ProgramData\{70487616-7048-7048-704876160365}\lsm.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
( ) C:\Users\User\AppData\Local\NtvHost\native.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Opera Software) C:\Program Files (x86)\Opera\57.0.3098.116\opera.exe
 
==================== Rejestr (filtrowane) ===========================
 
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8842496 2016-06-24] (Realtek Semiconductor)
HKLM\...\Run: [DisplayWidget] => C:\Program Files\Portrait Displays\ASUS DisplayWidget\DisplayWidget.exe [3986752 2017-07-26] (Portrait Displays, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-03-23] (Intel Corporation)
HKLM\...\RunOnce: [OMEWPRODUCT_] => C:\Program Files\CCleaner\QB1SAU\ltalqxfwt2.exe [137728 2019-01-15] () <==== UWAGA
HKLM\...\RunOnce: [reqrvkbotla] => C:\Program Files (x86)\BNQN\562024673.exe [869376 2019-01-15] ()
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Run: [Epic Privacy Browser Installer] => C:\Users\User\AppData\Local\Epic Privacy Browser\Installer\EpicUpdate.exe [509096 2018-08-19] (Epic Privacy Browser)
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9292504 2016-12-21] (Piriform Ltd)
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-07-29] (Disc Soft Ltd)
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Run: [jEQsB&zwOR.exe] => C:\Program Files\CCleaner\QB1SAU\jEQsB&zwOR.exe [302080 2019-01-15] ()
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Run: [SnowyStar] => C:\Windows\rss\csrss.exe [4826112 2019-01-15] () <==== UWAGA
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7407392 2019-01-15] (Lavasoft)
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Run: [CloudNet] => C:\Users\User\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe [683008 2019-01-16] (EpicNet Inc.) <==== UWAGA
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Run: [BFUS2O88PG0QF5I] => C:\Program Files\FRHY50TII0\FRHY50TII.exe [832512 2019-01-15] (D)
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Run: [9608098] => C:\Users\User\AppData\Roaming\pr51vffphzt\ryb5rr13tjr.exe [1477701 2019-01-15] (Shut )
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Run: [3171011] => C:\Users\User\AppData\Roaming\ybnu4rkvt30\auabsekrliz.exe [1274011 2019-01-16] ( )
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Run: [RHFH152MVQWU0XI] => C:\Program Files\DP9DWCLWIG\4LS14IJ05.exe [925696 2019-01-16] (4T36PKJY)
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] ()
HKLM\...\Drivers32-x32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] ()
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\Installer\chrmstp.exe [2018-06-26] (Google Inc.)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Shortcut to Primary output from Start (Active).lnk [2019-01-15]
ShortcutTarget: Shortcut to Primary output from Start (Active).lnk -> C:\Users\User\AppData\Roaming\Microsoft\Installer\{C443A4A4-EA71-432E-AA2B-1A06C60A5A3F}\_FE6F3BD9BBC8C10B754E56.exe ()
GroupPolicy: Ograniczenia - Chrome <==== UWAGA
CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA
 
==================== Internet (filtrowane) ====================
 
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
 
Tcpip\Parameters: [DhcpNameServer] 31.11.202.254 37.8.214.2
Tcpip\..\Interfaces\{7D59FF45-F2FF-4ED2-BCFD-5EAEC4F25645}: [DhcpNameServer] 31.11.202.254 37.8.214.2
Tcpip\..\Interfaces\{9FB8A1B0-7156-4E41-990A-08D41F0D0026}: [DhcpNameServer] 31.11.202.254 37.8.214.2
 
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <==== UWAGA
HKU\S-1-5-21-2765039487-2702460980-1030939640-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10477_754_190115
SearchScopes: HKU\S-1-5-21-2765039487-2702460980-1030939640-1000 -> {BDF61FAE-9D19-40F0-8F34-688DEB334CA9} URL = hxxp://securedsearch.lavasoft.com/results.php?pr=vmn&id=webcompa&ent=ch_WCYID10477_754_190115&q={searchTerms}
BHO: YoutubeAdBlock -> {984AFA40-4BEC-457F-AEDE-FE3404A646FA} -> C:\Program Files (x86)\VKkhWVSisIE\ttHPqYxw.dll [2019-01-15] ()
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-11-05] (Oracle Corporation)
BHO-x32: YoutubeAdBlock -> {984AFA40-4BEC-457F-AEDE-FE3404A646FA} -> C:\Program Files (x86)\VKkhWVSisIE\klkqqkg4.dll [2019-01-15] ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-05] (Oracle Corporation)
 
FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-11-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-05] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-12-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-12-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-06-26] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-06-26] (Google Inc.)
FF Plugin HKU\S-1-5-21-2765039487-2702460980-1030939640-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-07-14] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2765039487-2702460980-1030939640-1000: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=3 -> C:\Users\User\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [2018-08-19] (Epic Privacy Browser)
FF Plugin HKU\S-1-5-21-2765039487-2702460980-1030939640-1000: @updates.epicbrowser.com/Epic Privacy Browser Installer;version=9 -> C:\Users\User\AppData\Local\Epic Privacy Browser\Installer\1.3.27.13\npEpicUpdate3.dll [2018-08-19] (Epic Privacy Browser)
 
Chrome: 
=======
CHR NewTab: Default ->  Not-active:"chrome-extension://hkinpmnmgagffnojkoikofjkbpddafii/index.html"
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2019-01-15]
CHR Extension: (Slides) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-03]
CHR Extension: (Audiotool) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkgoccjhfjgjedhkiefaclppgbmoobnk [2017-08-04]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-03]
CHR Extension: (uBlock Origin) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-01-15]
CHR Extension: (chrome_filter) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckmacbeppcdljgndmfmjaoeofhdmgkim [2019-01-15]
CHR Extension: (Perseid Meteor Shower) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebnnmaidekkikikpjeldibcdgkomjioi [2018-09-29]
CHR Extension: (Sheets) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Chrome Remote Desktop) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2018-10-09]
CHR Extension: (Google Docs Offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-01-15]
CHR Extension: (Adblocker for Youtube™) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjokomechjchekkcnccjpmgakmjgoaom [2019-01-15] [UpdateUrl: hxxps://clients88.google.com/service/update2/crx] <==== UWAGA
CHR Extension: (Google Slides Offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhlndfpoakfhkbjfjmhofiknighclpdj [2019-01-15] [UpdateUrl: hxxps://clients88.google.com/service/update2/crx] <==== UWAGA
CHR Extension: (Kodak Black HD Wallpapers Hip Hop Music Theme) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkinpmnmgagffnojkoikofjkbpddafii [2018-10-29]
CHR Extension: (Twitch Now) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2018-09-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-03]
CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-26]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2019-01-15]
CHR Extension: (chrome_filter) - C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\ckmacbeppcdljgndmfmjaoeofhdmgkim [2019-01-15]
CHR Extension: (__MSG_appName__) - C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\gjokomechjchekkcnccjpmgakmjgoaom [2019-01-15] [UpdateUrl: hxxps://clients88.google.com/service/update2/crx] <==== UWAGA
 
Opera: 
=======
OPR Extension: (AdBlock) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\aobdicepooefnbaeokijohmhjlleamfj [2016-09-11]
OPR Extension: (chrome_filter) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\ckmacbeppcdljgndmfmjaoeofhdmgkim [2019-01-15]
OPR Extension: (Adblocker for Youtube™) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\gdnmnimlojenlbhdjifnpbeiegfndnoo [2019-01-15]
OPR Extension: (Dark Skin for Youtube™) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\jmbefbhbhjgnjbegmnhmakmmldnfogcd [2017-04-25]
OPR Extension: (Adblock Plus) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2018-12-04]
 
==================== Usługi (filtrowane) ====================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7211968 2018-08-07] ()
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\68.0.3440.11\remoting_host.exe [72536 2018-05-31] (Google Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-07-29] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-03-08] (EasyAntiCheat Ltd)
R2 EventSvc; C:\ProgramData\Microsoft\Windows\EventSvc\eventsvc.exe [360448 2018-07-24] (CloudBees, Inc.) [Brak podpisu cyfrowego] <==== UWAGA
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [787440 2018-12-06] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [787440 2018-12-06] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2279232 2018-12-18] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3139400 2018-12-18] (Electronic Arts)
S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2017-07-19] ()
S2 SysSvc; C:\Users\User\AppData\Local\NtvHost\syssvc.exe [360448 2019-01-15] (CloudBees, Inc.) [Brak podpisu cyfrowego] <==== UWAGA
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25888 2019-01-15] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WinDefender; C:\Windows\windefender.exe [0 ] () <==== UWAGA (zerobajtowy plik/folder)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
 
===================== Sterowniki (filtrowane) ======================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R1 72DC5DA98E53; C:\Windows\72DC5DA98E53.sys [621928 2019-01-15] (VideoDriver)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-08-22] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-08-22] (Disc Soft Ltd)
S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
S3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-05-27] ()
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [261032 2019-01-15] (Malwarebytes)
S3 netr28ux; C:\Windows\System32\DRIVERS\netr28ux.sys [2212496 2016-08-20] (MediaTek Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2018-10-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [74576 2018-10-01] (NVIDIA Corporation)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [43256 2017-07-18] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137208 2017-08-05] (Razer, Inc.)
R3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [46408 2017-06-02] (SteelSeries ApS)
R3 sshid; C:\Windows\System32\DRIVERS\sshid.sys [54560 2018-01-09] (SteelSeries ApS)
R3 Winmon; C:\Windows\System32\drivers\Winmon.sys [0 ] () <==== UWAGA (zerobajtowy plik/folder)
R3 WinmonFS; C:\Windows\System32\drivers\WinmonFS.sys [0 ] (Windows (R) Win 7 DDK provider) <==== UWAGA (zerobajtowy plik/folder)
R1 WinmonProcessMonitor; C:\Windows\System32\drivers\WinmonProcessMonitor.sys [36096 2019-01-15] () [Brak podpisu cyfrowego]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
S3 GPU-Z; \??\C:\Users\User\AppData\Local\Temp\GPU-Z.sys [X] <==== UWAGA
 
==================== NetSvcs (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
 
==================== Jeden miesiąc (utworzone) ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2019-01-16 14:49 - 2019-01-16 14:50 - 000021829 _____ C:\Users\User\Desktop\FRST.txt
2019-01-16 14:49 - 2019-01-16 14:49 - 000000000 ____D C:\FRST
2019-01-16 14:48 - 2019-01-16 14:48 - 002427904 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2019-01-16 14:41 - 2019-01-16 14:41 - 000003484 _____ C:\Windows\System32\Tasks\ScheduledUpdate
2019-01-16 14:41 - 2019-01-16 14:41 - 000000000 ____D C:\Users\User\AppData\Roaming\ybnu4rkvt30
2019-01-16 14:41 - 2019-01-16 14:41 - 000000000 ____D C:\Program Files\DP9DWCLWIG
2019-01-15 23:44 - 2019-01-15 23:44 - 000000000 ____D C:\Users\User\AppData\Roaming\pr51vffphzt
2019-01-15 23:44 - 2019-01-15 23:44 - 000000000 ____D C:\Program Files\FRHY50TII0
2019-01-15 23:38 - 2019-01-16 14:44 - 000000000 ____D C:\Users\User\AppData\Local\NtvHost
2019-01-15 23:38 - 2019-01-16 14:44 - 000000000 ____D C:\Users\User\AppData\Local\GoogleChromeUserData
2019-01-15 23:38 - 2019-01-15 23:43 - 000000000 ____D C:\Users\User\AppData\Local\GoogleChromeApplication
2019-01-15 23:37 - 2019-01-16 14:43 - 000000034 _____ C:\Users\Public\Documents\{DE764086-1C0A-4DD3-90BA-0B93BDD794BE}
2019-01-15 23:37 - 2019-01-15 23:37 - 000000000 ____D C:\Users\User\AppData\Roaming\yyqaiepfq0f
2019-01-15 23:37 - 2019-01-15 23:37 - 000000000 ____D C:\Program Files\D81NQQN4NE
2019-01-15 23:27 - 2019-01-15 23:27 - 006161408 _____ C:\Users\User\AppData\Local\dump007.dat
2019-01-15 23:26 - 2019-01-15 23:26 - 000000009 _____ C:\Users\User\rstr2.ini
2019-01-15 23:23 - 2019-01-15 23:23 - 678461809 _____ C:\Windows\MEMORY.DMP
2019-01-15 23:21 - 2019-01-15 23:21 - 000000000 ____D C:\Users\User\AppData\Roaming\EpicNet Inc
2019-01-15 23:20 - 2019-01-15 23:20 - 002076672 _____ C:\Users\User\Downloads\1343974d-cb3a-4b20-b918-4444315af56c.tmp
2019-01-15 23:20 - 2019-01-15 23:20 - 000002890 _____ C:\Windows\System32\Tasks\UXshqEpiPQcXH2
2019-01-15 23:20 - 2019-01-15 23:20 - 000000000 ____D C:\Users\User\AppData\Roaming\Lavasoft
2019-01-15 23:20 - 2019-01-15 23:20 - 000000000 ____D C:\Users\User\AppData\Local\Lavasoft
2019-01-15 23:20 - 2019-01-15 23:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2019-01-15 23:20 - 2019-01-15 23:20 - 000000000 ____D C:\ProgramData\BuHcEEPgNwocAWVB
2019-01-15 23:20 - 2019-01-15 23:20 - 000000000 ____D C:\Program Files (x86)\VKkhWVSisIE
2019-01-15 23:20 - 2019-01-15 23:20 - 000000000 ____D C:\Program Files (x86)\qUgzYKxVLnesC
2019-01-15 23:20 - 2019-01-15 23:20 - 000000000 ____D C:\Program Files (x86)\ooxzIAzTqruiVIszQdR
2019-01-15 23:20 - 2019-01-15 23:20 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2019-01-15 23:20 - 2019-01-15 23:20 - 000000000 ____D C:\Program Files (x86)\hUmbquBpttZU2
2019-01-15 23:20 - 2019-01-15 23:20 - 000000000 ____D C:\Program Files (x86)\fHDlqDVwU
2019-01-15 23:19 - 2019-01-16 14:42 - 000003184 _____ C:\Windows\System32\Tasks\csrss
2019-01-15 23:19 - 2019-01-15 23:20 - 000000000 ____D C:\Program Files (x86)\utzZkkanmIUn
2019-01-15 23:19 - 2019-01-15 23:19 - 005552360 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlmp.exe
2019-01-15 23:19 - 2019-01-15 23:19 - 000634272 _____ (Microsoft Corporation) C:\Windows\system32\osloader.exe
2019-01-15 23:19 - 2019-01-15 23:19 - 000621928 _____ (VideoDriver) C:\Windows\72DC5DA98E53.sys
2019-01-15 23:19 - 2019-01-15 23:19 - 000036096 _____ C:\Windows\system32\Drivers\WinmonProcessMonitor.sys
2019-01-15 23:19 - 2019-01-15 23:19 - 000000000 ____D C:\ProgramData\Lavasoft
2019-01-15 23:19 - 2019-01-15 23:19 - 000000000 ____D C:\Program Files (x86)\SmartData
2019-01-15 23:18 - 2019-01-16 00:03 - 000000266 __RSH C:\ProgramData\ntuser.pol
2019-01-15 23:18 - 2019-01-15 23:18 - 000003612 _____ C:\Windows\System32\Tasks\{B3D4721F-355D-974F-049C-14587AF260C0}
2019-01-15 23:18 - 2019-01-15 23:18 - 000003500 _____ C:\Windows\System32\Tasks\Microsoft LocalManager[Windows 7 Home Premium]
2019-01-15 23:18 - 2019-01-15 23:18 - 000002156 _____ C:\Users\User\Desktop\TigerTrade.lnk
2019-01-15 23:18 - 2019-01-15 23:18 - 000001146 _____ C:\Users\User\Desktop\foldershare.lnk
2019-01-15 23:18 - 2019-01-15 23:18 - 000001088 _____ C:\Users\User\Desktop\Adult Dating.lnk
2019-01-15 23:18 - 2019-01-15 23:18 - 000001080 _____ C:\Users\User\Desktop\Win iPhone X.lnk
2019-01-15 23:18 - 2019-01-15 23:18 - 000000004 _____ C:\ProgramData\ext.dat
2019-01-15 23:18 - 2019-01-15 23:18 - 000000003 _____ C:\Users\User\AppData\Local\wbem.ini
2019-01-15 23:18 - 2019-01-15 23:18 - 000000000 __SHD C:\ProgramData\{70487616-7048-7048-704876160365}
2019-01-15 23:18 - 2019-01-15 23:18 - 000000000 ____D C:\Users\User\AppData\Local\WhiteClick LLC
2019-01-15 23:18 - 2019-01-15 23:18 - 000000000 ____D C:\Users\User\AppData\Local\WhiteClick
2019-01-15 23:18 - 2019-01-15 23:18 - 000000000 ____D C:\ProgramData\{C07738BB-3F1B-0AC0-6322-438663C51AD7}
2019-01-15 23:18 - 2019-01-15 23:18 - 000000000 ____D C:\ProgramData\{0D7B7A0D-7DAD-C7CC-D560-4F4BD587161A}
2019-01-15 23:18 - 2019-01-15 23:18 - 000000000 ____D C:\Program Files (x86)\TigerTrade
2019-01-15 23:18 - 2019-01-15 23:18 - 000000000 ____D C:\Program Files (x86)\foldershare
2019-01-15 23:18 - 2019-01-15 23:18 - 000000000 ____D C:\Program Files (x86)\BNQN
2019-01-15 23:17 - 2019-01-15 23:17 - 002076672 _____ C:\Users\User\Desktop\Download_Driver_easy_2018_rar.exe
2019-01-15 23:13 - 2019-01-15 23:16 - 000000000 ____D C:\Users\User\AppData\Roaming\Easeware
2019-01-15 23:13 - 2019-01-15 23:13 - 004118960 _____ (Easeware ) C:\Users\User\Desktop\DriverEasy_Setup.exe
2019-01-15 20:37 - 2019-01-15 20:37 - 000261032 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-01-12 20:49 - 2019-01-15 23:20 - 000000000 ____D C:\thaw
2019-01-12 20:49 - 2019-01-12 20:49 - 000000000 ____D C:\Program Files (x86)\Aspyr Media, Inc
2019-01-12 20:48 - 2019-01-12 20:48 - 001489634 _____ C:\Users\User\Desktop\GONESMOD.zip
2019-01-12 20:26 - 2019-01-12 20:26 - 000000000 ____D C:\Games
2019-01-12 04:09 - 2019-01-12 04:09 - 000000000 ____D C:\Users\User\AppData\Roaming\IsolatedStorage
2019-01-12 04:09 - 2019-01-12 04:09 - 000000000 ____D C:\Users\User\AppData\Local\Solvusoft_Corporation
2019-01-12 04:09 - 2019-01-12 04:09 - 000000000 ____D C:\ProgramData\IsolatedStorage
2019-01-12 03:44 - 2019-01-12 03:44 - 000000554 _____ C:\Users\User\Desktop\Nowy dokument tekstowy.txt
2019-01-12 00:57 - 2019-01-12 00:57 - 000000221 _____ C:\Users\User\Desktop\Call of Duty Modern Warfare 3 - Multiplayer.url
2019-01-09 16:46 - 2018-12-29 00:42 - 000396888 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-01-09 16:46 - 2018-12-28 23:52 - 000348760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-01-09 16:46 - 2018-12-28 21:03 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-01-09 16:46 - 2018-12-28 21:02 - 005552360 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-01-09 16:46 - 2018-12-28 21:02 - 001680616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-01-09 16:46 - 2018-12-28 21:02 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-01-09 16:46 - 2018-12-28 21:02 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-01-09 16:46 - 2018-12-28 21:02 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-01-09 16:46 - 2018-12-28 21:02 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-01-09 16:46 - 2018-12-28 21:01 - 001664360 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:59 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:51 - 004055272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-01-09 16:46 - 2018-12-28 20:51 - 003960552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-01-09 16:46 - 2018-12-28 20:50 - 001314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:48 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:34 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-01-09 16:46 - 2018-12-28 20:34 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-01-09 16:46 - 2018-12-28 20:34 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-01-09 16:46 - 2018-12-28 20:34 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-01-09 16:46 - 2018-12-28 20:31 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-01-09 16:46 - 2018-12-28 20:31 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-01-09 16:46 - 2018-12-28 20:31 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-01-09 16:46 - 2018-12-28 20:30 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-01-09 16:46 - 2018-12-28 20:28 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-01-09 16:46 - 2018-12-28 20:28 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-01-09 16:46 - 2018-12-28 20:28 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-01-09 16:46 - 2018-12-28 20:27 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-01-09 16:46 - 2018-12-28 20:27 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-01-09 16:46 - 2018-12-28 20:27 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-01-09 16:46 - 2018-12-28 20:27 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-01-09 16:46 - 2018-12-28 20:27 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-01-09 16:46 - 2018-12-28 20:27 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-01-09 16:46 - 2018-12-28 20:27 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-01-09 16:46 - 2018-12-28 20:27 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-01-09 16:46 - 2018-12-28 20:27 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-01-09 16:46 - 2018-12-28 20:27 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-01-09 16:46 - 2018-12-28 20:26 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-01-09 16:46 - 2018-12-28 20:26 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:26 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:26 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 20:26 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-01-09 16:46 - 2018-12-28 19:09 - 000419608 _____ C:\Windows\SysWOW64\locale.nls
2019-01-09 16:46 - 2018-12-28 19:09 - 000419608 _____ C:\Windows\system32\locale.nls
2019-01-09 16:46 - 2018-12-28 01:01 - 025738240 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-01-09 16:46 - 2018-12-28 00:50 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-01-09 16:46 - 2018-12-28 00:50 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-01-09 16:46 - 2018-12-28 00:38 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-01-09 16:46 - 2018-12-28 00:37 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-01-09 16:46 - 2018-12-28 00:36 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-01-09 16:46 - 2018-12-28 00:36 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-01-09 16:46 - 2018-12-28 00:36 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-01-09 16:46 - 2018-12-28 00:36 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-01-09 16:46 - 2018-12-28 00:31 - 005778944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-01-09 16:46 - 2018-12-28 00:29 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-01-09 16:46 - 2018-12-28 00:28 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-01-09 16:46 - 2018-12-28 00:26 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-01-09 16:46 - 2018-12-28 00:25 - 020279808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-01-09 16:46 - 2018-12-28 00:25 - 000790016 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-01-09 16:46 - 2018-12-28 00:25 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-01-09 16:46 - 2018-12-28 00:25 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-01-09 16:46 - 2018-12-28 00:24 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-01-09 16:46 - 2018-12-28 00:17 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-01-09 16:46 - 2018-12-28 00:17 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-01-09 16:46 - 2018-12-28 00:14 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-01-09 16:46 - 2018-12-28 00:07 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-01-09 16:46 - 2018-12-28 00:07 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-01-09 16:46 - 2018-12-28 00:06 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-01-09 16:46 - 2018-12-28 00:05 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-01-09 16:46 - 2018-12-28 00:05 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-01-09 16:46 - 2018-12-28 00:04 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-01-09 16:46 - 2018-12-28 00:04 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-01-09 16:46 - 2018-12-28 00:03 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-01-09 16:46 - 2018-12-28 00:03 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-01-09 16:46 - 2018-12-28 00:03 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-01-09 16:46 - 2018-12-28 00:02 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-01-09 16:46 - 2018-12-28 00:01 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-01-09 16:46 - 2018-12-27 23:59 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-01-09 16:46 - 2018-12-27 23:59 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-01-09 16:46 - 2018-12-27 23:58 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-01-09 16:46 - 2018-12-27 23:56 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-01-09 16:46 - 2018-12-27 23:55 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-01-09 16:46 - 2018-12-27 23:55 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-01-09 16:46 - 2018-12-27 23:55 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-01-09 16:46 - 2018-12-27 23:50 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-01-09 16:46 - 2018-12-27 23:48 - 015284224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-01-09 16:46 - 2018-12-27 23:48 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-01-09 16:46 - 2018-12-27 23:48 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-01-09 16:46 - 2018-12-27 23:47 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-01-09 16:46 - 2018-12-27 23:46 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-01-09 16:46 - 2018-12-27 23:45 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-01-09 16:46 - 2018-12-27 23:43 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-01-09 16:46 - 2018-12-27 23:42 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-01-09 16:46 - 2018-12-27 23:42 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-01-09 16:46 - 2018-12-27 23:39 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-01-09 16:46 - 2018-12-27 23:39 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-01-09 16:46 - 2018-12-27 23:37 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-01-09 16:46 - 2018-12-27 23:36 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-01-09 16:46 - 2018-12-27 23:33 - 004860416 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-01-09 16:46 - 2018-12-27 23:33 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-01-09 16:46 - 2018-12-27 23:31 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-01-09 16:46 - 2018-12-27 23:29 - 013680640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-01-09 16:46 - 2018-12-27 23:29 - 002060288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-01-09 16:46 - 2018-12-27 23:29 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-01-09 16:46 - 2018-12-27 23:28 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-01-09 16:46 - 2018-12-27 23:22 - 001555968 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-01-09 16:46 - 2018-12-27 23:11 - 004386816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-01-09 16:46 - 2018-12-27 23:11 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-01-09 16:46 - 2018-12-27 23:07 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-01-09 16:46 - 2018-12-27 23:06 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-01-09 16:46 - 2018-12-08 04:08 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2019-01-09 16:46 - 2018-12-08 04:08 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2019-01-09 16:46 - 2018-12-08 04:08 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2019-01-09 16:46 - 2018-12-08 04:08 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2019-01-09 16:46 - 2018-12-08 04:08 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2019-01-09 16:46 - 2018-12-08 04:08 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2019-01-09 16:46 - 2018-12-08 03:56 - 000081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2019-01-09 16:46 - 2018-12-08 03:56 - 000061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2019-01-09 16:46 - 2018-12-08 03:56 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ndptsp.tsp
2019-01-09 16:46 - 2018-12-08 03:47 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2019-01-09 16:46 - 2018-12-08 03:47 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2019-01-09 16:46 - 2018-12-08 03:47 - 000024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2019-01-09 16:46 - 2018-12-08 03:41 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2019-01-09 16:46 - 2018-12-08 03:41 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2019-01-09 16:46 - 2018-12-08 03:41 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2019-01-09 16:46 - 2018-12-07 16:33 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-01-09 00:15 - 2019-01-09 00:15 - 000000040 _____ C:\Users\User\Desktop\server.txt
2019-01-08 23:57 - 2019-01-08 23:57 - 000000363 _____ C:\Users\User\Desktop\Komputer — skrót.lnk
2019-01-08 23:22 - 2019-01-08 23:42 - 000000000 ____D C:\Users\User\AppData\Roaming\CitizenFX
2019-01-08 23:10 - 2019-01-11 00:42 - 000000000 ____D C:\Users\User\Desktop\fove
2019-01-08 23:01 - 2019-01-08 23:23 - 000000000 ____D C:\Users\User\AppData\Local\DigitalEntitlements
2019-01-08 22:23 - 2019-01-08 23:08 - 000000000 ____D C:\Users\User\AppData\Local\FiveM
2019-01-08 22:23 - 2019-01-08 22:23 - 000002061 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM Singleplayer.lnk
2019-01-08 22:23 - 2019-01-08 22:23 - 000002053 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM.lnk
2019-01-08 21:51 - 2019-01-08 21:52 - 000000081 _____ C:\Users\User\Desktop\spodnie.txt
2019-01-05 15:18 - 2019-01-05 15:18 - 000148761 _____ C:\Users\User\Downloads\Potwierdzenie wykonania przelewu.pdf
2018-12-31 02:24 - 2019-01-11 00:52 - 000000000 ____D C:\Users\User\Desktop\foto
2018-12-24 19:22 - 2018-12-24 19:22 - 000019696 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_48953392646533.dll
 
==================== Jeden miesiąc (zmodyfikowane) ========
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2019-01-16 14:48 - 2016-08-04 11:09 - 000000000 ____D C:\ProgramData\NVIDIA
2019-01-16 14:44 - 2018-12-15 14:32 - 000003030 _____ C:\Windows\System32\Tasks\MSIAfterburner
2019-01-16 14:42 - 2018-08-19 22:31 - 000000000 ____D C:\Users\User\AppData\Local\Epic Privacy Browser
2019-01-16 14:38 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-01-15 23:56 - 2018-01-07 01:20 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2019-01-15 23:51 - 2009-07-14 05:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-01-15 23:51 - 2009-07-14 05:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-01-15 23:37 - 2016-08-04 10:39 - 000000000 ____D C:\ProgramData\Intel
2019-01-15 23:25 - 2017-12-09 16:43 - 000000266 __RSH C:\Users\User\ntuser.pol
2019-01-15 23:21 - 2018-11-13 22:19 - 000000000 ____D C:\Program Files (x86)\Przyspiesz
2019-01-15 23:19 - 2016-09-06 17:14 - 000000000 ____D C:\Program Files (x86)\Steam
2019-01-15 23:18 - 2017-07-20 21:29 - 000000000 ____D C:\Program Files\CCleaner
2019-01-15 23:18 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\GroupPolicy
2019-01-15 23:17 - 2016-08-20 12:19 - 000000000 ____D C:\Users\User\Desktop\Wszystko
2019-01-15 21:07 - 2018-07-12 21:41 - 000000000 ____D C:\Program Files (x86)\Origin
2019-01-12 20:47 - 2016-08-20 22:10 - 000000000 ____D C:\Windows\System32\Tasks\Games
2019-01-12 03:52 - 2016-09-14 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-01-12 00:57 - 2017-04-08 21:01 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-01-11 22:16 - 2016-08-20 12:21 - 000000000 ____D C:\ProgramData\Origin
2019-01-11 21:19 - 2016-08-20 12:25 - 000000000 ____D C:\Users\User\AppData\Roaming\Origin
2019-01-11 21:18 - 2016-09-14 20:04 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-01-11 15:10 - 2011-04-12 14:21 - 000740098 _____ C:\Windows\system32\perfh015.dat
2019-01-11 15:10 - 2011-04-12 14:21 - 000155672 _____ C:\Windows\system32\perfc015.dat
2019-01-11 15:10 - 2009-07-14 06:13 - 001669190 _____ C:\Windows\system32\PerfStringBackup.INI
2019-01-11 15:10 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-01-11 01:21 - 2017-10-15 20:01 - 000000000 ____D C:\Users\User\AppData\Roaming\discord
2019-01-11 00:55 - 2016-08-20 12:14 - 000000000 ____D C:\Program Files (x86)\Opera
2019-01-11 00:43 - 2016-12-07 21:33 - 000000000 ____D C:\Users\User\AppData\Roaming\TS3Client
2019-01-10 16:38 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2019-01-10 14:50 - 2018-06-19 22:16 - 000000062 _____ C:\Users\User\Desktop\dane.txt
2019-01-09 18:29 - 2016-08-04 02:31 - 001640860 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-01-09 18:28 - 2016-08-06 20:42 - 000000000 ____D C:\Windows\system32\MRT
2019-01-09 18:26 - 2016-08-06 20:42 - 132790320 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-01-08 22:34 - 2016-08-20 23:00 - 000000000 ____D C:\Users\User\AppData\Local\Rockstar Games
2019-01-08 22:34 - 2016-08-20 22:12 - 000000000 ____D C:\Users\User\Documents\Rockstar Games
2019-01-08 22:34 - 2016-08-20 22:12 - 000000000 ____D C:\Program Files\Rockstar Games
2019-01-08 22:34 - 2016-08-20 22:12 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2018-12-30 15:36 - 2018-12-15 13:59 - 000000000 ____D C:\Program Files\AMD
2018-12-29 18:06 - 2009-07-14 06:08 - 000032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-12-26 23:28 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2018-12-26 17:03 - 2016-09-11 20:18 - 000000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics
2018-12-25 00:11 - 2018-12-15 13:48 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2018-12-20 17:37 - 2017-11-21 16:15 - 000000000 ____D C:\Users\User\Documents\Euro Truck Simulator 2
 
==================== Pliki w katalogu głównym wybranych folderów =======
 
2019-01-15 23:18 - 2019-01-15 23:18 - 000000004 _____ () C:\ProgramData\ext.dat
1601-01-03 21:26 - 1601-01-03 21:26 - 000186368 ____N (Microsoft Corporation) C:\Users\User\xsfYIZYUoAec.exe
2018-05-20 00:06 - 2018-05-20 00:06 - 039293312 _____ () C:\Users\User\AppData\Roaming\gameboxsetup.exe
2019-01-15 23:27 - 2019-01-15 23:27 - 006161408 _____ () C:\Users\User\AppData\Local\dump007.dat
2019-01-15 23:18 - 2019-01-15 23:18 - 000000003 _____ () C:\Users\User\AppData\Local\wbem.ini
 
Pliki do przeniesienia lub usunięcia:
====================
C:\Program Files\CCleaner\QB1SAU\ltalqxfwt2.exe
C:\Windows\rss\csrss.exe
C:\Users\User\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
 
 
Niektóre pliki w TEMP:
====================
2019-01-15 23:19 - 2019-01-15 23:19 - 001607680 _____ () C:\Users\User\AppData\Local\Temp\1547590742720.exe
2019-01-15 23:18 - 2019-01-15 23:18 - 013205167 _____ (MAL                                                         ) C:\Users\User\AppData\Local\Temp\adpn2uz1i2g.exe
2019-01-15 23:19 - 2019-01-15 23:19 - 001527488 _____ (Microsoft Corporation) C:\Users\User\AppData\Local\Temp\dbghelp.dll
2019-01-15 23:18 - 2019-01-15 23:18 - 000351232 _____ () C:\Users\User\AppData\Local\Temp\DzOaDmWoDA.exe
2019-01-15 23:26 - 2019-01-15 23:44 - 000000000 ____D () C:\Users\User\AppData\Local\Temp\IE8Shims.dll
2019-01-15 23:18 - 2019-01-15 23:18 - 003493888 _____ () C:\Users\User\AppData\Local\Temp\installer_mi.exe
2019-01-15 23:18 - 2019-01-15 23:18 - 000337200 _____ (Google Inc.) C:\Users\User\AppData\Local\Temp\mcasin.exe
2019-01-15 23:18 - 2019-01-15 23:18 - 005354648 _____ (                                                            ) C:\Users\User\AppData\Local\Temp\OneSystemCare.exe
2019-01-15 23:18 - 2019-01-15 23:18 - 000000371 _____ () C:\Users\User\AppData\Local\Temp\PirateChickVPNSetup.exe
2019-01-15 23:18 - 2019-01-15 23:18 - 000474781 _____ (ZRFXRD                                                      ) C:\Users\User\AppData\Local\Temp\pixel.exe
2019-01-15 23:18 - 2019-01-15 23:18 - 025260414 _____ (TigerTrade                                                  ) C:\Users\User\AppData\Local\Temp\snvuvd.exe
2019-01-15 23:18 - 2019-01-15 23:18 - 000968037 _____ (                                                            ) C:\Users\User\AppData\Local\Temp\speedycar.exe
2019-01-15 23:19 - 2019-01-15 23:19 - 000167616 _____ (Microsoft Corporation) C:\Users\User\AppData\Local\Temp\symsrv.dll
2019-01-15 23:18 - 2019-01-15 23:18 - 000386048 _____ () C:\Users\User\AppData\Local\Temp\TigSetup.exe
2019-01-15 23:18 - 2019-01-15 23:18 - 000350720 _____ () C:\Users\User\AppData\Local\Temp\tMp0yXJPmy.exe
2019-01-15 23:20 - 2019-01-15 23:18 - 000099892 _____ () C:\Users\User\AppData\Local\Temp\Uninstall.exe
2019-01-15 23:18 - 2019-01-15 23:18 - 001104315 _____ (WhiteClick LLC                                              ) C:\Users\User\AppData\Local\Temp\whiteclick.exe
2019-01-15 23:18 - 2019-01-15 23:18 - 003766121 _____ () C:\Users\User\AppData\Local\Temp\ybiaq.exe
 
==================== Bamital & volsnap ======================
 
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
 
C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo
C:\Windows\explorer.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\Windows\system32\services.exe => Plik podpisany cyfrowo
C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
 
BCD (recoveryenabled=No -> recoveryenabled=Yes) <==== pomyślnie przywrócono
 
LastRegBack: 2019-01-13 18:04
 
==================== Koniec  FRST.txt ============================
Wygenerowano w 0.139s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!