REKLAMA

FRST.txt

Nie mogę otworzyć wiadomości poczty w Windows Live Mail Win 7 64 bit

Takie informacje uzyskałem po skanowaniu


Pobierz plik - link do postu

Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 28-06-2020
Uruchomiony przez EAR (administrator) LEMI (LENOVO HuronRiver Platform) (29-06-2020 21:40:48)
Uruchomiony z C:\Users\EAR\Downloads
Załadowane profile: EAR
Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(Adobe Inc. - & gt; Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. - & gt; Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. - & gt; Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Arvato Digital Services Canada Inc - & gt; arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Autodata Limited) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
(Broadcom Corporation - & gt; Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Broadcom Corporation - & gt; Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(CHENGDU YIWO Tech Development Co., Ltd. - & gt; ) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
(CHENGDU YIWO Tech Development Co., Ltd. - & gt; CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(CyberLink - & gt; CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Huawei Technologies Co., Ltd. - & gt; ) C:\ProgramData\DatacardService\HWDeviceService64.exe
(Huawei Technologies Co., Ltd. - & gt; ) C:\ProgramData\MobilNET\OnlineUpdate\ouc.exe
(Huawei Technologies Co., Ltd. - & gt; Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Intel Corporation - Mobile Wireless Group - & gt; Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation - Mobile Wireless Group - & gt; Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation - & gt; Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - & gt; Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Lexmark International, Inc. - & gt; ) C:\Windows\System32\lxeccoms.exe
(Microsoft Corporation - & gt; Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation - & gt; Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\EXCEL.EXE & lt; 2 & gt;
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\dllhost.exe & lt; 2 & gt;
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Mozilla Corporation - & gt; Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe & lt; 10 & gt;
(Nero AG - & gt; Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor Corp.) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files\Realtek\RtLED\RtLED.exe
(Realtek Semiconductor Corp.) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files\Realtek\RtLED\RtLEDService.exe
(StarWind Software) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Synaptics Incorporated - & gt; Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated - & gt; Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer Germany GmbH - & gt; TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(VMware, Inc. - & gt; VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe
(VMware, Inc. - & gt; VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
(VMware, Inc. - & gt; VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(VMware, Inc. - & gt; VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(WESTERN DIGITAL TECHNOLOGIES - & gt; Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(WESTERN DIGITAL TECHNOLOGIES - & gt; Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe

==================== Rejestr (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [SynTPEnh] = & gt; C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2538280 2010-12-22] (Synaptics Incorporated - & gt; Synaptics Incorporated)
HKLM\...\Run: [Windows Mobile-based device management] = & gt; C:\windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation - & gt; Microsoft Corporation)
HKLM\...\Run: [MSC] = & gt; c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation - & gt; Microsoft Corporation)
HKLM\...\Run: [] = & gt; [X]
HKLM-x32\...\Run: [] = & gt; [X]
HKU\S-1-5-21-2833287781-791539493-3595644906-1001\...\Run: [] = & gt; [X]
HKU\S-1-5-21-2833287781-791539493-3595644906-1001\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-2833287781-791539493-3595644906-1001\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-2833287781-791539493-3595644906-1001\...\Policies\system: [shell] explorer.exe & lt; ==== UWAGA
HKU\S-1-5-18\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-18\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows - & gt; Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [101376 2009-07-14] (Microsoft Windows - & gt; Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\Lexmark Pro800-Pro900 Series Print Processor: C:\Windows\System32\spool\prtprocs\x64\lxecdrpp.dll [189440 2009-11-04] (Microsoft Windows Hardware Compatibility Publisher - & gt; )
HKLM\...\Print\Monitors\Brother PT-7600 Monitor: C:\windows\system32\PT76L.DLL [51200 2007-12-21] (Brother Industries, ltd. - & gt; Brother Industries, Ltd.)
HKLM\...\Print\Monitors\CUSTPDF Writer Monitor x86: C:\windows\system32\custmon64.dll [87040 2010-12-10] () [Brak podpisu cyfrowego] [Plik w użyciu]
HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\windows\system32\hpinkstsB011LM.dll [328552 2012-01-11] (Hewlett Packard - & gt; Hewlett-Packard Co.)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\windows\system32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows - & gt; Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllwn7: C:\windows\system32\hpzllwn7.dll [51712 2009-07-14] (Microsoft Windows - & gt; Hewlett-Packard Company)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows - & gt; Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Pro800-Pro900 Series Port: C:\windows\system32\lxeclmpm.dll [892416 2009-12-09] (Microsoft Windows Hardware Compatibility Publisher - & gt; )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.116\Installer\chrmstp.exe [2020-06-27] (Google LLC - & gt; Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] - & gt; C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2011-02-15] (Broadcom Corporation - & gt; Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{7C2CDE72-05FD-4829-980A-EFBAD05B7697}] - & gt; C:\windows\system32\ImageReog.dll [2011-05-29] (Lenovo) [Brak podpisu cyfrowego] [Plik w użyciu]
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] - & gt; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2012-07-17] (Microsoft Corporation - & gt; Microsoft Corp.)
AppInit_DLLs: C:\windows\system32\nvinitx.dll = & gt; C:\windows\system32\nvinitx.dll [170360 2017-03-17] (NVIDIA Corporation PE Sign v2016 - & gt; NVIDIA Corporation)
AppInit_DLLs-x32: C:\windows\SysWOW64\nvinit.dll = & gt; C:\windows\SysWOW64\nvinit.dll [148016 2017-03-17] (NVIDIA Corporation PE Sign v2016 - & gt; NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2011-05-29]
ShortcutTarget: Bluetooth.lnk - & gt; C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation - & gt; Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk [2011-05-29]
ShortcutTarget: SRS Premium Sound.lnk - & gt; C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe (SRS Labs, Inc - & gt; SRS Labs, Inc.)
GroupPolicy: Ograniczenia ? & lt; ==== UWAGA
GroupPolicy\User: Ograniczenia ? & lt; ==== UWAGA
GroupPolicyUsers\S-1-5-21-2833287781-791539493-3595644906-1006\User: Ograniczenia & lt; ==== UWAGA
CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia & lt; ==== UWAGA

==================== Zaplanowane zadania (filtrowane) ============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {071EC221-885D-440B-B4E2-21D2A529560B} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728184 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
Task: {111C444B-0BE1-4F5D-B465-5B6B3FEC9B31} - System32\Tasks\GoogleUpdateTaskMachineUA = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-11] (Google Inc - & gt; Google Inc.)
Task: {1396E907-D915-4EF3-B143-18A12F9E6CB2} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1693816 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
Task: {1588B16A-5697-4482-98E8-EC7A50D1BF64} - System32\Tasks\GoogleUpdateTaskMachineCore = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-05-11] (Google Inc - & gt; Google Inc.)
Task: {16402FAC-D98C-48E0-8E1A-D3274AEEC74F} - System32\Tasks\MirageAgent = & gt; C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2010-12-05] (CyberLink - & gt; CyberLink)
Task: {1B6F96F1-CE67-4B88-8DFE-7442DD92938D} - System32\Tasks\{FCEDCE86-E694-4F2E-A3CD-DABBAA9E6D5F} = & gt; C:\windows\system32\pcalua.exe -a C:\windows\SysWOW64\DivXControlPanelApplet.cpl -c DivX Control Panel
Task: {1C458B90-7867-42FC-8C70-51093013DE59} - System32\Tasks\AdobeAAMUpdater-1.0-lemi-EAR = & gt; C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated - & gt; Adobe Systems Incorporated)
Task: {31404DB2-5405-47B9-9F92-DC5D169C243E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649336 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
Task: {338AFB63-AFD7-4F69-8645-9DDFD193CFBE} - System32\Tasks\{1E23673F-2156-4864-888C-8D9A601631BF} = & gt; " c:\program files\internet explorer\iexplore.exe " hxxp://ui.skype.com/ui/0/7.0.0.102/pl/abandoninstall?page=tsProgressBar
Task: {39B58831-FAD2-48EC-88F8-5D51B6D2EE9C} - System32\Tasks\User_Feed_Synchronization-{F1E6BA4C-0CBF-42B1-8D38-BA8EA525051A} = & gt; C:\windows\system32\msfeedssync.exe [13312 2014-10-18] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Task: {4EEA49AA-6857-4B03-8638-AE6018DABB49} - System32\Tasks\AdobeGCInvoker-1.0 = & gt; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-05-05] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
Task: {556C6145-606A-4CD1-9371-83CB600554F3} - System32\Tasks\{9BC4D476-7083-4313-B853-8E1CCDD24AE7} = & gt; C:\windows\system32\pcalua.exe -a C:\Users\EAR\Downloads\IN8STW09WW5.exe -d C:\Users\EAR\Downloads
Task: {55898ACA-809D-46E7-8213-593117DE8676} - System32\Tasks\Avast Software\Overseer = & gt; C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. - & gt; Avast Software)
Task: {567DD604-EA82-4219-9DF3-E6DE3DA67479} - System32\Tasks\Adobe Flash Player NPAPI Notifier = & gt; C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-09] (Adobe Inc. - & gt; Adobe)
Task: {584311BC-3301-496E-B509-1492218EF949} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater = & gt; Command(1): %windir%\system32\rundll32.exe - & gt; aepdu.dll,AePduRunUpdate
Task: {584311BC-3301-496E-B509-1492218EF949} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater = & gt; Command(2): %windir%\system32\rundll32.exe - & gt; invagent.dll,RunUpdate -noappraiser
Task: {59625D50-0B1D-420F-977D-EBAFDD02D758} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan = & gt; c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {5E993048-DA15-4653-A480-9BBBFCE20103} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack = & gt; C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {63E57E19-07AB-44AB-8824-818E7F1ED6E2} - System32\Tasks\{7D0AF6A1-B7C5-4FDA-8846-0354143937F4} = & gt; C:\windows\system32\pcalua.exe -a " G:\radziut\Autko VW Passat\Etka7\ODBLOKOWANIE SEAT SKODA\AKTE7Mfs.exe " -d " G:\radziut\Autko VW Passat\Etka7\ODBLOKOWANIE SEAT SKODA "
Task: {6994E5A3-D4B8-48CF-936F-0D86501167D8} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-LEMI = & gt; C:\windows\ehome\McxTask.exe [37376 2009-07-14] (Microsoft Windows - & gt; Microsoft Corporation)
Task: {6E7CE2C4-23D2-46F7-B8ED-CCC8DFFCBB56} - \AdobeFlashPlayerUpdate 2 - & gt; Brak pliku & lt; ==== UWAGA
Task: {70E8050C-FCF5-4D3A-BFE3-A107390C3474} - System32\Tasks\Trigger KMS Activation = & gt; C:\Program Files\KMSnano\TriggerKMS.exe
Task: {71BF4D00-B2FC-49B0-B540-051E0081B02E} - System32\Tasks\{209EC96C-945E-4949-9383-5697434CF2BE} = & gt; C:\windows\system32\pcalua.exe -a " C:\Users\EAR\Desktop\NetLimiter nl3setup.exe " -d C:\Users\EAR\Desktop
Task: {776BD05A-089F-4D89-BF7D-77310B343126} - System32\Tasks\{BE115052-F2DB-485C-AA20-F018BF572887} = & gt; C:\windows\system32\pcalua.exe -a " C:\Downloads\Kaspersky Internet Security 2011\242.Kaspersky - Internet Security 2011 - [11.0.0.400]\242.exe " -d " C:\Downloads\Kaspersky Internet Security 2011\242.Kaspersky - Internet Security 2011 - [11.0.0.400] "
Task: {7A021919-C853-41EA-9FF9-904A8FC52FA2} - \EOSv3 Scheduler onLogOn - & gt; Brak pliku & lt; ==== UWAGA
Task: {7B5C3820-DFFC-421F-900A-CF45120DFA25} - \EOSv3 Scheduler onTime - & gt; Brak pliku & lt; ==== UWAGA
Task: {7D42AFC5-1A33-4513-97F0-F8E226E94DBE} - System32\Tasks\{348E539F-2B2A-43C7-AACC-A1B117ACBFF7} = & gt; C:\windows\system32\pcalua.exe -a " C:\Users\EAR\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5GQUB469\eMule0.50a-Installer.exe " -d C:\Users\EAR\Desktop
Task: {7F99FA71-983D-46B4-9F7D-E1E1B3943B47} - System32\Tasks\{D20662DA-ECEF-439E-9010-30AAC55C74E5} = & gt; C:\windows\system32\pcalua.exe -a C:\Users\EAR\Downloads\caoz19ww.exe -d C:\Users\EAR\Downloads
Task: {838C8CED-CD26-41F4-A8EA-3AE2A790173B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
Task: {8A3ED6BC-CB58-4DAC-A4C8-65F77EFE3259} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [728184 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
Task: {93A656B6-7F53-44B0-8059-4267D661BA09} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser = & gt; Command(3): %windir%\system32\rundll32.exe - & gt; appraiser.dll,DailyGatedCheck
Task: {93A656B6-7F53-44B0-8059-4267D661BA09} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser = & gt; Command(4): %windir%\system32\rundll32.exe - & gt; aepdu.dll,AePduRunUpdate -nolegacy
Task: {94C9CD8B-45CD-444A-9DDB-10D8882E96B2} - System32\Tasks\{AD921FDF-7258-4F7A-9568-F7C4726DAE51} = & gt; C:\windows\system32\pcalua.exe -a H:\Install.exe -d H:\
Task: {95060BAF-9AB7-4A35-9A3B-805F6E6D7214} - System32\Tasks\PrivaZer_SkipUAC = & gt; C:\Program Files (x86)\PrivaZer\PrivaZer.exe [17282680 2020-03-01] (Goversoft LLC - & gt; Goversoft LLC)
Task: {959239FE-E22E-447E-9CDB-15BCD1B56F10} - System32\Tasks\{6B601A5B-8349-4384-9901-91198550B1E0} = & gt; C:\windows\system32\pcalua.exe -a G:\ie6setupOe.exe -d G:\
Task: {9C3AD688-B1B8-4BA9-8B77-3E3D0DD9B723} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436856 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
Task: {9F3E5CCF-5CD4-4520-B704-B83AEA5C667B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 = & gt; C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {A6FCD729-036F-49C9-8FD2-2B089C76FA29} - System32\Tasks\Adobe Acrobat Update Task = & gt; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. - & gt; Adobe Systems)
Task: {AE1132FE-0965-44F5-878D-0542DC89AF46} - \AdobeFlashPlayerUpdate - & gt; Brak pliku & lt; ==== UWAGA
Task: {AF003AF0-A8B0-40CF-B285-28A182AA6298} - System32\Tasks\DivXUpdate = & gt; C:\Program Files (x86)\Common Files\DivX Shared\DivX Update\DivXUpdate.exe [68568 2017-08-02] (DivX, LLC - & gt; DivX, LLC)
Task: {AFBCCD84-4C8A-42CF-8159-4008A78D9176} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat = & gt; C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {BDF2EAD4-4D2A-4BAF-B545-BBA92A89F86A} - System32\Tasks\{B8998431-118F-4B6B-81A1-2D4776675647} = & gt; C:\windows\system32\pcalua.exe -a C:\Users\EAR\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=sien
Task: {BEDD8144-D7A6-4F9D-8301-7E18674BDAEF} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task = & gt; {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {C2A7E0E7-021F-41BA-94A7-522CF114BF1E} - System32\Tasks\Adobe Flash Player Updater = & gt; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-09] (Adobe Inc. - & gt; Adobe)
Task: {D43B9AB6-C6E5-4787-B4AF-E3CF4F821C18} - System32\Tasks\samsung = & gt; C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBCore.exe [1893672 2010-04-03] (Nero AG - & gt; Nero AG)
Task: {D68779FE-FF67-413E-AE1B-8CFA2D3DCDC5} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B = & gt; C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [124624 2020-06-04] (Mozilla Corporation - & gt; Mozilla Foundation)
Task: {D7096852-4D70-481B-A6E4-F12C8E099E78} - \NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - & gt; Brak pliku & lt; ==== UWAGA
Task: {DD92F9D2-526C-4D74-A2D0-FACB3F45005E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn = & gt; C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {E7F03077-A373-4D19-AAFB-87AA734A12DA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649336 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
Task: {F6189345-1E1C-4398-86E9-8F2680E826D9} - System32\Tasks\{A668A35E-2211-43AB-ADC8-4F9578F317DE} = & gt; " c:\program files (x86)\internet explorer\iexplore.exe " hxxp://ui.skype.com/ui/0/6.3.0.107/pl/abandoninstall?page=tsProgressBar
Task: {F6BA8087-AA7F-4D75-835A-822D3637E3CB} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask = & gt; {0358b920-0ac7-461f-98f4-58e32cd89148} C:\windows\system32\wininet.dll [2427392 2015-06-20] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)


==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Winsock: Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation - & gt; Microsoft Corp.)
Winsock: Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648 2012-07-17] (Microsoft Corporation - & gt; Microsoft Corp.)
Winsock: Catalog9 12 C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll [338480 2010-01-22] (VMware, Inc. - & gt; VMware, Inc.)
Winsock: Catalog9 13 C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll [338480 2010-01-22] (VMware, Inc. - & gt; VMware, Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation - & gt; Microsoft Corp.)
Winsock: Catalog5-x64 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760 2012-07-17] (Microsoft Corporation - & gt; Microsoft Corp.)
Winsock: Catalog9-x64 12 C:\Program Files (x86)\VMware\VMware Workstation\x64\vsocklib.dll [438320 2010-01-22] (VMware, Inc. - & gt; VMware, Inc.)
Winsock: Catalog9-x64 13 C:\Program Files (x86)\VMware\VMware Workstation\x64\vsocklib.dll [438320 2010-01-22] (VMware, Inc. - & gt; VMware, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{08B1E7C2-90D4-48E8-A81C-9BDB80CEDB27}: [NameServer] 213.158.199.1 213.158.199.5
Tcpip\..\Interfaces\{770F95C5-8E07-4C0D-9CAE-93F1026C7BC5}: [DhcpNameServer] 37.8.214.2 31.11.202.254
Tcpip\..\Interfaces\{B616DC67-7F8B-4791-895F-7E2EBE434414}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{B7B1AD58-C0BC-4204-B0BE-583788569105}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=ds & ts=1417352750 & from=sien & uid=WDCXWD7500BPVT-24HXZT1_WD-WX11A411477214772 & q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.v9.com?type=hp & ts=1435564677 & from=mych123 & uid=wdcxwd7500bpvt-24hxzt1_wd-wx11a411477214772 & z=a1b589d322f52b05f19c128g9z0cew5waq5z6qeb1g
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=ds & ts=1417352750 & from=sien & uid=WDCXWD7500BPVT-24HXZT1_WD-WX11A411477214772 & q={searchTerms}
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie & ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie & ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.v9.com?type=hp & ts=1435564677 & from=mych123 & uid=wdcxwd7500bpvt-24hxzt1_wd-wx11a411477214772 & z=a1b589d322f52b05f19c128g9z0cew5waq5z6qeb1g
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.v9.com?type=hp & ts=1435564677 & from=mych123 & uid=wdcxwd7500bpvt-24hxzt1_wd-wx11a411477214772 & z=a1b589d322f52b05f19c128g9z0cew5waq5z6qeb1g
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSSE
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.v9.com?type=hp & ts=1435564677 & from=mych123 & uid=wdcxwd7500bpvt-24hxzt1_wd-wx11a411477214772 & z=a1b589d322f52b05f19c128g9z0cew5waq5z6qeb1g
HKU\S-1-5-21-2833287781-791539493-3595644906-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.pl/
HKU\S-1-5-21-2833287781-791539493-3595644906-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie & ar=iesearch
HKU\S-1-5-21-2833287781-791539493-3595644906-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?type=ds & ts=1431679915 & z=46377ac524991b49b781953g5z4c8g7qcm2tet2ecc & from=wpm05153 & uid=WDCXWD7500BPVT-24HXZT1_WD-WX11A411477214772 & q={searchTerms}
URLSearchHook: HKLM-x32 - & gt; Domyślne = {FE69C007-C452-4d3e-86D2-1730DF8BC871}
URLSearchHook: HKLM-x32 - SimilarSites - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files (x86)\SimilarSites\similarsites.dll (SimilarWeb Ltd. - & gt; SimilarGroup) [Brak podpisu cyfrowego] [Plik w użyciu]
URLSearchHook: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; Domyślne = {FE69C007-C452-4d3e-86D2-1730DF8BC871}
URLSearchHook: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - SimilarSites - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files (x86)\SimilarSites\similarsites.dll (SimilarWeb Ltd. - & gt; SimilarGroup) [Brak podpisu cyfrowego] [Plik w użyciu]
SearchScopes: HKLM - & gt; DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
SearchScopes: HKLM-x32 - & gt; DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://www.bing.com/search?q={searchTerms} & form=MSSEDF & pc=MSSE
SearchScopes: HKLM-x32 - & gt; {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://www.bing.com/search?q={searchTerms} & form=MSSEDF & pc=MSSE
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://www.bing.com/search?q={searchTerms} & form=MSSEDF & pc=MSSE
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; 9E0D781B26FB4DCD9F2DAC54A31DCCCC URL = hxxp://do-search.com/web/?utm_source=b & utm_medium= & utm_campaign=install_ie & utm_content=ds & from= & uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A & ts=1420373293 & type=default & q={searchTerms}
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://do-search.com/web/?utm_source=b & utm_medium= & utm_campaign=install_ie & utm_content=ds & from= & uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A & ts=1420373293 & type=default & q={searchTerms}
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://do-search.com/web/?utm_source=b & utm_medium= & utm_campaign=install_ie & utm_content=ds & from= & uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A & ts=1420373293 & type=default & q={searchTerms}
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; {3A2604E7-F54A-433F-85B9-50BCA7C42D2E} URL = hxxp://do-search.com/web/?utm_source=b & utm_medium= & utm_campaign=install_ie & utm_content=ds & from= & uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A & ts=1420373293 & type=default & q={searchTerms}
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://www.bing.com/search?q={searchTerms} & form=MSSEDF & pc=MSSE
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://do-search.com/web/?utm_source=b & utm_medium= & utm_campaign=install_ie & utm_content=ds & from= & uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A & ts=1420373293 & type=default & q={searchTerms}
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://do-search.com/web/?utm_source=b & utm_medium= & utm_campaign=install_ie & utm_content=ds & from= & uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A & ts=1420373293 & type=default & q={searchTerms}
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; {D0B1B582-DD03-4651-A312-7879DD9A6370} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; {D2915538-F13F-4284-BE60-346D13B80ABE} URL = hxxp://do-search.com/web/?utm_source=b & utm_medium= & utm_campaign=install_ie & utm_content=ds & from= & uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A & ts=1420373293 & type=default & q={searchTerms}
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://do-search.com/web/?utm_source=b & utm_medium= & utm_campaign=install_ie & utm_content=ds & from= & uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A & ts=1420373293 & type=default & q={searchTerms}
SearchScopes: HKU\S-1-5-21-2833287781-791539493-3595644906-1001 - & gt; {FEA6DDD5-E41A-43FD-B5D8-254FC9AA622D} URL = hxxp://do-search.com/web/?utm_source=b & utm_medium= & utm_campaign=install_ie & utm_content=ds & from= & uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A & ts=1420373293 & type=default & q={searchTerms}
BHO: Skype for Business Browser Helper - & gt; {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - & gt; C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2020-04-15] (Microsoft Corporation - & gt; Microsoft Corporation)
BHO: Groove GFS Browser Helper - & gt; {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - & gt; C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation - & gt; Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - & gt; {9030D464-4C02-4ABF-8ECC-5164760863C6} - & gt; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation - & gt; Microsoft Corp.)
BHO: Office Document Cache Handler - & gt; {B4F3A835-0E21-4959-BA22-42B3008E02FF} - & gt; C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation - & gt; Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - & gt; {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - & gt; C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation - & gt; Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper - & gt; {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - & gt; C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2020-04-15] (Microsoft Corporation - & gt; Microsoft Corporation)
BHO-x32: BitComet Helper - & gt; {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - & gt; C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll [2013-11-29] (Shanghai Comet Network Technology - & gt; BitComet)
BHO-x32: Groove GFS Browser Helper - & gt; {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - & gt; C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation - & gt; Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-24] (Oracle America, Inc. - & gt; Oracle Corporation)
BHO-x32: IEExtension.VDownloaderBHO - & gt; {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} - & gt; C:\windows\assembly\GAC_MSIL\IEExtension\1.0.0.876__c8e1c1f3d6d8e203\IEExtension.dll [2013-01-08] (Vitzo) [Brak podpisu cyfrowego] [Plik w użyciu]
BHO-x32: Pomocnik logowania za pomocą konta Microsoft - & gt; {9030D464-4C02-4ABF-8ECC-5164760863C6} - & gt; C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corporation - & gt; Microsoft Corp.)
BHO-x32: Office Document Cache Handler - & gt; {B4F3A835-0E21-4959-BA22-42B3008E02FF} - & gt; C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation - & gt; Microsoft Corporation)
BHO-x32: Brak nazwy - & gt; {B69F34DD-F0F9-42DC-9EDD-957187DA688D} - & gt; Brak pliku
BHO-x32: Microsoft SkyDrive Pro Browser Helper - & gt; {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - & gt; C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation - & gt; Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-24] (Oracle America, Inc. - & gt; Oracle Corporation)
Toolbar: HKLM-x32 - Brak nazwy - {41ED1FD7-8C37-4806-AF9E-D5238A30E56F} - Brak pliku
Toolbar: HKLM-x32 - SimilarSites - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files (x86)\SimilarSites\similarsites.dll [2012-12-03] (SimilarWeb Ltd. - & gt; SimilarGroup) [Brak podpisu cyfrowego] [Plik w użyciu]
DPF: HKLM {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} hxxp://office.microsoft.com/sites/production/ieawsdc32.cab
DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: HKLM-x32 {0742B9EF-8C83-41CA-BFBA-830A59E23533} hxxps://oas.support.microsoft.com/ActiveX/MSDcode.cab
DPF: HKLM-x32 {611E065A-3391-4EE5-85C7-1F56719D0F58} hxxps://csou.benefia.pl/csouhtmlcommon/components/FIATCOMMON2.CAB
DPF: HKLM-x32 {FD3BEB0C-AB43-4253-9146-C371D48FBE0D} hxxp://31.41.209.42:37780/web.cab
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - Brak pliku
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\system32\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - Brak pliku
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\system32\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - Brak pliku
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
Handler-x32: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2015-07-02] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]

FireFox:
========
FF DefaultProfile: n0weatap.default-1452796475472-1528195963337
FF ProfilePath: C:\Users\EAR\AppData\Roaming\Mozilla\Firefox\Profiles\5p4nvpd3.default [nie znaleziono] & lt; ==== UWAGA
FF ProfilePath: C:\Users\EAR\AppData\Roaming\Mozilla\Firefox\Profiles\n0weatap.default-1452796475472-1528195963337 [2020-06-29]
FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25] [Przestarzałe]
FF HKLM\...\Firefox\Extensions: [{3ea54411-9f2a-4a18-a93a-84312350f7c1}] - C:\Program Files\shopperz12082015\Firefox = & gt; nie znaleziono
FF HKLM-x32\...\Firefox\Extensions: [support@vdownloader.com] - C:\Program Files\VDownloader\Addons\FireFox
FF Extension: (VDownloader) - C:\Program Files\VDownloader\Addons\FireFox [2013-01-08] [Przestarzałe] [Brak podpisu cyfrowego]
FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\virtualKeyboard@kaspersky.ru = & gt; nie znaleziono
FF HKLM-x32\...\Firefox\Extensions: [KavAntiBanner@Kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\KavAntiBanner@kaspersky.ru = & gt; nie znaleziono
FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\FFExt\linkfilter@kaspersky.ru = & gt; nie znaleziono
FF HKLM-x32\...\Firefox\Extensions: [quick_searchff@gmail.com] - C:\Users\EAR\AppData\Roaming\Mozilla\Firefox\Profiles\5p4nvpd3.default\extensions\quick_searchff@gmail.com = & gt; nie znaleziono
FF HKLM-x32\...\Firefox\Extensions: [sweetsearch@gmail.com] - C:\Users\EAR\AppData\Roaming\Mozilla\Firefox\Profiles\5p4nvpd3.default\extensions\sweetsearch@gmail.com = & gt; nie znaleziono
FF HKLM-x32\...\Firefox\Extensions: [{3ea54411-9f2a-4a18-a93a-84312350f7c1}] - C:\Program Files\shopperz12082015\Firefox = & gt; nie znaleziono
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-09] (Adobe Inc. - & gt; )
FF Plugin: @microsoft.com/GENUINE - & gt; disabled [Brak pliku]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - & gt; c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - & gt; C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.8 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN - & gt; VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN - & gt; VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect - & gt; C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-06-04] (Adobe Systems Incorporated - & gt; Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - & gt; C:\windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-09] (Adobe Inc. - & gt; )
FF Plugin-x32: @adobe.com/ShockwavePlayer - & gt; C:\windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll [2013-04-03] (Adobe Systems, Inc.) [Brak podpisu cyfrowego] [Plik w użyciu]
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - & gt; C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2017-11-21] (DivX, LLC - & gt; DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-24] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-24] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - & gt; disabled [Brak pliku]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - & gt; C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-04-15] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - & gt; c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - & gt; C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - & gt; C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - & gt; C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - & gt; C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - & gt; C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 - & gt; C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - & gt; C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2013-04-19] (Nokia - & gt; )
FF Plugin-x32: Adobe Reader - & gt; C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. - & gt; Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - & gt; C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-06-04] (Adobe Systems Incorporated - & gt; Adobe Systems)
FF Plugin-x32: Web Components - & gt; C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [2014-08-12] () [Brak podpisu cyfrowego] [Plik w użyciu]
FF Plugin HKU\S-1-5-21-2833287781-791539493-3595644906-1001: temasys.com.sg/TemWebRTCPlugin - & gt; C:\Users\EAR\AppData\Roaming\Tem\TemWebRTCPlugin\0.8.909\npTemWebRTCPlugin.dll [2018-10-17] (Temasys Communications Pte Ltd - & gt; Temasys)
FF Plugin HKU\S-1-5-21-2833287781-791539493-3595644906-1001: vitzo.com/VDownloader - & gt; C:\Program Files\VDownloader\Addons\npVDownloader.dll [2011-08-18] (Vitzo) [Brak podpisu cyfrowego] [Plik w użyciu]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\EAR\AppData\Local\Google\Chrome\User Data\Default [2020-06-29]
CHR Extension: (Adobe Acrobat) - C:\Users\EAR\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-04-24]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\EAR\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-06]
CHR Extension: (Chrome Media Router) - C:\Users\EAR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-24]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [eoccbpoodnckjdnackiffhjfkogfhnhh] - C:\Program Files\VDownloader\Addons\Chrome.crx [2013-01-08]
CHR HKLM-x32\...\Chrome\Extension: [gjajpkikblccgefaibcafkfbanllpefi] - C:\Users\EAR\AppData\Roaming\7go\7go.crx & lt; nie znaleziono & gt;
CHR HKLM-x32\...\Chrome\Extension: [hidjnkeodmholilgafgdlgmgggbhnigl] - C:\Users\EAR\AppData\Roaming\SimilarSites\similarsites.crx [2012-12-03]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]

==================== Usługi (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-09] (Adobe Inc. - & gt; Adobe)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-05-05] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-05-05] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
R2 Autodata Limited License Service; C:\Program Files (x86)\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe [72704 2012-08-29] (Autodata Limited) [Brak podpisu cyfrowego] [Plik w użyciu]
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [956192 2011-02-15] (Broadcom Corporation - & gt; Broadcom Corporation.)
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [40080 2017-08-30] (CHENGDU YIWO Tech Development Co., Ltd. - & gt; CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego] [Plik w użyciu]
R2 FontCache; C:\windows\system32\FntCache.dll [1179136 2015-04-20] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2013-04-10] (Huawei Technologies Co., Ltd. - & gt; )
S3 IEEtwCollectorService; C:\windows\system32\IEEtwCollector.exe [114688 2015-06-20] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
S2 KMService; C:\windows\SysWOW64\srvany.exe [8192 2014-02-12] () [Brak podpisu cyfrowego] [Plik w użyciu]
S2 lxecCATSCustConnectService; C:\windows\system32\spool\DRIVERS\x64\3\\lxecserv.exe [45736 2010-04-14] (Lexmark International, Inc. - & gt; Lexmark International, Inc.)
R2 lxec_device; C:\windows\system32\lxeccoms.exe [1052328 2010-04-14] (Lexmark International, Inc. - & gt; )
R2 lxec_device; C:\windows\SysWOW64\lxeccoms.exe [598696 2010-04-14] (Lexmark International, Inc. - & gt; )
S2 MobilNET. RunOuc; C:\Program Files (x86)\MobilNET\UpdateDog\ouc.exe [650320 2013-08-14] (Huawei Technologies Co., Ltd. - & gt; )
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation - & gt; Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-11-02] (Intel Corporation - Mobile Wireless Group - & gt; )
S3 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [233456 2017-07-04] (Netgear Incorporated - & gt; NETGEAR)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation - & gt; Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [464440 2017-03-17] (NVIDIA Corporation - & gt; NVIDIA Corporation)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (Arvato Digital Services Canada Inc - & gt; arvato digital services llc)
R2 RapiMgr; C:\windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation - & gt; Microsoft Corporation)
R2 RtLedService; C:\Program Files\Realtek\RtLED\RtLEDService.exe [311296 2010-09-30] (Realtek Semiconductor Corp.) [Brak podpisu cyfrowego] [Plik w użyciu]
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Brak podpisu cyfrowego] [Plik w użyciu]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13109264 2020-06-22] (TeamViewer Germany GmbH - & gt; TeamViewer Germany GmbH)
S3 ufad-ws60; C:\Program Files (x86)\VMware\VMware Workstation\vmware-ufad.exe [191024 2009-10-12] (VMware, Inc. - & gt; VMware, Inc.)
R2 WcesComm; C:\windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation - & gt; Microsoft Corporation)
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1049464 2016-04-19] (WESTERN DIGITAL TECHNOLOGIES - & gt; Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [314744 2016-04-19] (WESTERN DIGITAL TECHNOLOGIES - & gt; Western Digital Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows - & gt; Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480 2012-07-17] (Microsoft Corporation - & gt; Microsoft Corp.)
R2 NvTelemetryContainer; " C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe " -s NvTelemetryContainer -f " C:\ProgramData\NVIDIA\NvTelemetryContainer.log " -l 3 -d " C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin "

===================== Sterowniki (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 ampa; C:\windows\system32\ampa.sys [38320 2016-12-25] (CHENGDU AOMEI Tech Co., Ltd. - & gt; )
U5 AppMgmt; C:\windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Windows - & gt; Microsoft Corporation) & lt; ==== UWAGA (Brak ServiceDLL)
S1 ASPI32; C:\Windows\SysWow64\Drivers\ASPI32.sys [25244 1999-09-10] (Adaptec) [Brak podpisu cyfrowego] [Plik w użyciu]
S3 athrusb; C:\windows\System32\DRIVERS\athrxusb.sys [1075712 2008-07-29] (Atheros Communications, Inc.) [Brak podpisu cyfrowego] [Plik w użyciu]
S3 athur; C:\windows\System32\DRIVERS\athurx.sys [1847296 2010-01-05] (Microsoft Windows Hardware Compatibility Publisher - & gt; Atheros Communications, Inc.)
R3 clwvd; C:\windows\System32\DRIVERS\clwvd.sys [31088 2010-12-05] (CyberLink - & gt; CyberLink Corporation)
R0 EUBAKUP; C:\windows\System32\drivers\eubakup.sys [66040 2016-12-06] (CHENGDU YIWO Tech Development Co., Ltd. - & gt; CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego] [Plik w użyciu]
R0 EUBKMON; C:\windows\System32\drivers\EUBKMON.sys [53240 2016-12-06] (CHENGDU YIWO Tech Development Co., Ltd. - & gt; ) [Brak podpisu cyfrowego] [Plik w użyciu]
R1 EUDSKACS; C:\windows\system32\drivers\eudskacs.sys [23544 2016-12-06] (CHENGDU YIWO Tech Development Co., Ltd. - & gt; CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego] [Plik w użyciu]
R1 EUFDDISK; C:\windows\system32\drivers\EuFdDisk.sys [197624 2016-12-06] (CHENGDU YIWO Tech Development Co., Ltd. - & gt; CHENGDU YIWO Tech Development Co., Ltd) [Brak podpisu cyfrowego] [Plik w użyciu]
S3 ew_hwusbdev; C:\windows\System32\DRIVERS\ew_hwusbdev.sys [109568 2013-01-25] (Microsoft Windows Hardware Compatibility Publisher - & gt; Huawei Technologies Co., Ltd.)
S3 ew_usbenumfilter; C:\windows\System32\DRIVERS\ew_usbenumfilter.sys [14976 2012-12-22] (Microsoft Windows Hardware Compatibility Publisher - & gt; Huawei Technologies Co., Ltd.)
S2 Hardlock; C:\windows\system32\drivers\hardlock.sys [296448 2005-06-14] (Aladdin Knowledge Systems Ltd.) [Brak podpisu cyfrowego] [Plik w użyciu]
S3 huawei_cdcacm; C:\windows\System32\DRIVERS\ew_jucdcacm.sys [110592 2013-03-04] (Microsoft Windows Hardware Compatibility Publisher - & gt; Huawei Technologies Co., Ltd.)
R3 huawei_enumerator; C:\windows\System32\DRIVERS\ew_jubusenum.sys [91648 2013-03-04] (Microsoft Windows Hardware Compatibility Publisher - & gt; Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\windows\System32\DRIVERS\ew_juextctrl.sys [30720 2013-03-04] (Microsoft Windows Hardware Compatibility Publisher - & gt; Huawei Technologies Co., Ltd.)
S3 huawei_wwanecm; C:\windows\System32\DRIVERS\ew_juwwanecm.sys [246272 2013-06-29] (Microsoft Windows Hardware Compatibility Publisher - & gt; Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\windows\System32\DRIVERS\ewusbmdm.sys [226048 2013-03-04] (Microsoft Windows Hardware Compatibility Publisher - & gt; Huawei Technologies Co., Ltd.)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation - & gt; Microsoft Corporation)
R1 MpKslDrv; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A643F1F7-DC29-4353-B895-77405B5A632D}\MpKslDrv.sys [43232 2020-06-29] (Microsoft Windows - & gt; Microsoft Corporation)
R3 NisDrv; C:\windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation - & gt; Microsoft Corporation)
S3 nmwcd; C:\windows\System32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher - & gt; Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher - & gt; Nokia)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\System32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
R3 nvvhci; C:\windows\System32\DRIVERS\nvvhci.sys [57976 2017-05-03] (NVIDIA Corporation - & gt; NVIDIA Corporation)
S3 pccsmcfd; C:\windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher - & gt; Nokia)
R0 pwdrvio; C:\windows\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd - & gt; )
S3 pwdspio; C:\windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd - & gt; )
R0 sptd; C:\windows\System32\Drivers\sptd.sys [564824 2013-05-23] (Duplex Secure Ltd - & gt; Duplex Secure Ltd.)
R3 SPUVCbv; C:\windows\System32\Drivers\usbvideo.sys [185344 2013-07-12] (Microsoft Windows - & gt; Microsoft Corporation)
S3 upperdev; C:\windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher - & gt; Nokia)
S3 USBAAPL64; C:\windows\System32\Drivers\usbaapl64.sys [52736 2012-04-25] (Apple, Inc.) [Brak podpisu cyfrowego] [Plik w użyciu]
S3 UsbserFilt; C:\windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher - & gt; Nokia)
R2 VMnetBridge; C:\windows\System32\DRIVERS\vmnetbridge.sys [45104 2010-01-22] (VMware, Inc. - & gt; VMware, Inc.)
S3 WDC_SAM; C:\windows\System32\DRIVERS\wdcsam64_prewin8.sys [23200 2016-04-19] (Microsoft Windows Hardware Compatibility Publisher - & gt; Western Digital Technologies)
R3 wdkmd; C:\windows\System32\DRIVERS\WDKMD.sys [42392 2010-12-01] (Wireless Display - & gt; Intel Corporation)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [121840 2009-07-21] (CyberLink - & gt; CyberLink)
U3 a933ctwm; C:\Windows\System32\Drivers\a933ctwm.sys [0 0000-00-00] (Advanced Micro Devices) & lt; ==== UWAGA (zerobajtowy plik/folder)
U3 axq5e230; C:\Windows\System32\Drivers\axq5e230.sys [0 0000-00-00] (Advanced Micro Devices) & lt; ==== UWAGA (zerobajtowy plik/folder)
S1 aioumowi; \??\C:\windows\system32\drivers\aioumowi.sys [X]
U3 aswbdisk; Brak ImagePath
S3 ATICDSDr; \??\C:\Users\EAR\AppData\Local\Temp\ATICDSDr.sys [X] & lt; ==== UWAGA
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
U2 CLKMSVC10_3A60B698; Brak ImagePath
U2 CLKMSVC10_C3B3B687; Brak ImagePath
U2 DriverService; Brak ImagePath
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
S1 faqynoqi; \??\C:\windows\system32\drivers\faqynoqi.sys [X]
S3 GDPkIcpt; \??\C:\windows\system32\drivers\PktIcpt.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
U2 IAStorDataMgrSvc; Brak ImagePath
U2 idealife Update Service; Brak ImagePath
U3 IGRS; Brak ImagePath
U2 IviRegMgr; Brak ImagePath
S1 mnizzham; \??\C:\windows\system32\drivers\mnizzham.sys [X]
S3 NLNdisMP; system32\DRIVERS\nlndis.sys [X]
S3 NLNdisPT; system32\DRIVERS\nlndis.sys [X]
U2 Oasis2Service; Brak ImagePath
S1 odrczsay; \??\C:\windows\system32\drivers\odrczsay.sys [X]
U2 PCCarerServic; Brak ImagePath
S1 qghuppdl; \??\C:\windows\system32\drivers\qghuppdl.sys [X]
U2 ReadyComm.DirectRouter; Brak ImagePath
U2 RichVideo; Brak ImagePath
U2 SoftwareService; Brak ImagePath
U2 Stereo Service; Brak ImagePath
S2 vstor2; \??\C:\Program Files (x86)\Common Files\VMware\VMware Virtual Image Editing\vstor2.sys [X]

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc (utworzone) ===================

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2020-06-29 21:40 - 2020-06-29 21:43 - 000059222 _____ C:\Users\EAR\Downloads\FRST.txt
2020-06-29 21:40 - 2020-06-29 21:42 - 000000000 ____D C:\FRST
2020-06-29 21:39 - 2020-06-29 21:39 - 002291712 _____ (Farbar) C:\Users\EAR\Downloads\FRST64.exe
2020-06-29 12:46 - 2020-06-29 12:46 - 042135552 _____ C:\Users\EAR\Downloads\the-bat-professional-edition-9-1-18.msi
2020-06-29 12:21 - 2020-06-29 12:21 - 003937120 _____ ( ) C:\Users\EAR\Downloads\the-bat-professional-edition-9-1-18-ks_1837678354.exe
2020-06-29 10:25 - 2020-06-29 10:25 - 000001334 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2020-06-29 10:25 - 2020-06-29 10:25 - 000001265 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2020-06-29 10:25 - 2020-06-29 10:25 - 000000000 ____D C:\windows\pl
2020-06-29 10:24 - 2020-06-29 10:24 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2020-06-29 10:24 - 2020-06-29 10:24 - 000001418 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2020-06-29 10:23 - 2020-06-29 10:23 - 000000000 ____D C:\Program Files\Windows Live
2020-06-29 10:23 - 2014-03-31 21:06 - 000058056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fssfltr.sys
2020-06-29 10:22 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_7.dll
2020-06-29 10:22 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_7.dll
2020-06-29 10:22 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_5.dll
2020-06-29 10:22 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_5.dll
2020-06-29 10:22 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_43.dll
2020-06-29 10:22 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_43.dll
2020-06-29 10:19 - 2020-06-29 10:19 - 000002174 _____ C:\Users\EAR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2020-06-29 10:19 - 2020-06-29 10:19 - 000002104 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2020-06-29 10:19 - 2020-06-29 10:19 - 000002104 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2020-06-29 10:19 - 2020-06-29 10:19 - 000000000 ___RD C:\Users\EAR\OneDrive
2020-06-29 10:19 - 2020-06-29 10:19 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2020-06-29 10:15 - 2020-06-29 10:15 - 140522160 _____ (Microsoft Corporation) C:\Users\EAR\Downloads\windows-live-mail-2012-16-4-3528-0331.exe
2020-06-29 10:12 - 2020-06-29 10:13 - 003937120 _____ ( ) C:\Users\EAR\Downloads\windows-live-mail-2012-16-4-3528-0331-ks_3978677296.exe
2020-06-28 18:49 - 2020-06-28 18:50 - 165371640 _____ (Avira Operations GmbH & Co. KG) C:\Users\EAR\Downloads\avira_antivirus_en-us.exe
2020-06-28 16:50 - 2015-12-16 20:55 - 000069120 _____ (Microsoft Corporation) C:\windows\system32\nlsbres.dll
2020-06-28 16:50 - 2015-12-16 20:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\kbdgeoqw.dll
2020-06-28 16:50 - 2015-12-16 20:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZEL.DLL
2020-06-28 16:50 - 2015-12-16 20:53 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\KBDAZE.DLL
2020-06-28 16:50 - 2015-12-16 20:48 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZE.DLL
2020-06-28 16:50 - 2015-12-16 20:48 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\kbdgeoqw.dll
2020-06-28 16:50 - 2015-12-16 20:48 - 000006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDAZEL.DLL
2020-06-28 16:50 - 2015-12-16 20:47 - 000069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlsbres.dll
2020-06-28 16:50 - 2015-12-16 16:38 - 000419928 _____ C:\windows\SysWOW64\locale.nls
2020-06-28 16:50 - 2015-12-16 16:37 - 000419928 _____ C:\windows\system32\locale.nls
2020-06-28 14:27 - 2015-07-30 15:13 - 000124624 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2020-06-28 14:27 - 2015-07-30 15:13 - 000103120 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2020-06-28 13:46 - 2020-06-28 13:46 - 000002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2020-06-28 12:40 - 2019-02-21 06:12 - 000631680 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2020-06-28 12:40 - 2019-02-21 06:10 - 005552360 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2020-06-28 12:40 - 2019-02-21 06:10 - 000708328 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2020-06-28 12:40 - 2019-02-21 06:09 - 000262376 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2020-06-28 12:40 - 2019-02-21 06:09 - 000154856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2020-06-28 12:40 - 2019-02-21 06:09 - 000095464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2020-06-28 12:40 - 2019-02-21 06:08 - 001664360 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 001211392 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000236032 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2020-06-28 12:40 - 2019-02-21 06:07 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 001472512 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 001162752 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000419840 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 06:06 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:59 - 001314104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2020-06-28 12:40 - 2019-02-21 05:58 - 004055784 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2020-06-28 12:40 - 2019-02-21 05:58 - 003960552 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2020-06-28 12:40 - 2019-02-21 05:56 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000556032 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:56 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:42 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2020-06-28 12:40 - 2019-02-21 05:42 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2020-06-28 12:40 - 2019-02-21 05:42 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2020-06-28 12:40 - 2019-02-21 05:41 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2020-06-28 12:40 - 2019-02-21 05:39 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2020-06-28 12:40 - 2019-02-21 05:39 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2020-06-28 12:40 - 2019-02-21 05:38 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2020-06-28 12:40 - 2019-02-21 05:38 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2020-06-28 12:40 - 2019-02-21 05:38 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2020-06-28 12:40 - 2019-02-21 05:36 - 000464384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2020-06-28 12:40 - 2019-02-21 05:36 - 000406016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2020-06-28 12:40 - 2019-02-21 05:36 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2020-06-28 12:40 - 2019-02-21 05:36 - 000169984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2020-06-28 12:40 - 2019-02-21 05:36 - 000161280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2020-06-28 12:40 - 2019-02-21 05:36 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2020-06-28 12:40 - 2019-02-21 05:35 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2020-06-28 12:40 - 2019-02-21 05:35 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2020-06-28 12:40 - 2019-02-21 05:35 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2020-06-28 12:40 - 2019-02-21 05:35 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2020-06-28 12:40 - 2019-02-21 05:35 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2020-06-28 12:40 - 2019-02-21 05:35 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\npfs.sys
2020-06-28 12:40 - 2019-02-21 05:35 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2020-06-28 12:40 - 2019-02-21 05:34 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2020-06-28 12:40 - 2019-02-21 05:34 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2020-06-28 12:40 - 2019-02-21 05:34 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2020-06-28 12:40 - 2019-02-21 05:34 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2020-06-28 12:40 - 2019-02-21 05:34 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:34 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:34 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:34 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2020-06-28 12:40 - 2019-02-21 05:34 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2020-06-28 12:40 - 2019-02-10 18:41 - 012574208 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2020-06-28 12:40 - 2019-02-10 18:41 - 011411968 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 003207168 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 001329664 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 001177088 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 001005056 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptui.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000988160 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmv2clt.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000744960 _____ (Microsoft Corporation) C:\windows\SysWOW64\blackbox.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000617984 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmdrmsdk.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscp.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\AUDIOKSE.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000406016 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmmgrtn.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000373248 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioEng.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000265216 _____ (Microsoft Corporation) C:\windows\SysWOW64\msnetobj.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000195072 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioSes.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000103424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000080896 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsp.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000046592 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssign32.dll
2020-06-28 12:40 - 2019-02-10 18:41 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mferror.dll
2020-06-28 12:40 - 2019-02-10 18:29 - 000008192 _____ (Microsoft Corporation) C:\windows\SysWOW64\spwmp.dll
2020-06-28 12:40 - 2019-02-10 18:29 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdxm.ocx
2020-06-28 12:40 - 2019-02-10 18:29 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxmasf.dll
2020-06-28 12:40 - 2019-02-10 18:28 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\rrinstaller.exe
2020-06-28 12:40 - 2019-02-10 18:28 - 000023040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfpmp.exe
2020-06-28 12:40 - 2019-02-10 18:10 - 000094440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2020-06-28 12:40 - 2019-02-10 18:09 - 014635520 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2020-06-28 12:40 - 2019-02-10 18:09 - 012574720 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2020-06-28 12:40 - 2019-02-10 18:09 - 001574400 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2020-06-28 12:40 - 2019-02-10 18:09 - 000782848 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2020-06-28 12:40 - 2019-02-10 18:09 - 000499712 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2020-06-28 12:40 - 2019-02-10 18:09 - 000371712 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2020-06-28 12:40 - 2019-02-10 18:09 - 000229376 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2020-06-28 12:40 - 2019-02-10 18:09 - 000187904 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2020-06-28 12:40 - 2019-02-10 18:09 - 000037376 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2020-06-28 12:40 - 2019-02-10 18:09 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2020-06-28 12:40 - 2019-02-10 18:09 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2020-06-28 12:40 - 2019-02-10 18:09 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2020-06-28 12:40 - 2019-02-10 18:09 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 004120576 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 001484800 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 001202176 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 001068544 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000641024 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000632320 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000433152 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000325632 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000284672 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000206848 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000190976 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000141824 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000081920 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\mssign32.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2020-06-28 12:40 - 2019-02-10 18:08 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2020-06-28 12:40 - 2019-02-10 18:07 - 000842240 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2020-06-28 12:40 - 2019-02-10 18:07 - 000680448 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2020-06-28 12:40 - 2019-02-10 18:07 - 000438784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2020-06-28 12:40 - 2019-02-10 18:07 - 000295936 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2020-06-28 12:40 - 2019-02-10 18:02 - 000663552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2020-06-28 12:40 - 2019-02-10 17:50 - 000055808 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2020-06-28 12:40 - 2019-02-10 17:49 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2020-06-28 12:40 - 2019-02-10 17:49 - 000024576 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2020-06-28 12:40 - 2019-02-10 17:38 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2020-06-28 12:40 - 2019-02-10 17:38 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2020-06-28 12:40 - 2018-11-18 04:56 - 000459632 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
2020-06-28 12:40 - 2018-11-18 04:44 - 000634272 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2020-06-28 12:40 - 2018-11-18 04:43 - 000467856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2020-06-28 12:40 - 2018-11-18 04:43 - 000297984 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll
2020-06-28 12:40 - 2018-11-18 04:43 - 000249352 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcryptprimitives.dll
2020-06-28 12:40 - 2016-01-22 08:18 - 000961024 _____ (Microsoft Corporation) C:\windows\system32\CPFilters.dll
2020-06-28 12:40 - 2016-01-22 08:18 - 000723968 _____ (Microsoft Corporation) C:\windows\system32\EncDec.dll
2020-06-28 12:40 - 2016-01-22 08:04 - 000642048 _____ (Microsoft Corporation) C:\windows\SysWOW64\CPFilters.dll
2020-06-28 12:40 - 2016-01-22 08:04 - 000535040 _____ (Microsoft Corporation) C:\windows\SysWOW64\EncDec.dll
2020-06-28 12:40 - 2015-12-08 23:53 - 000509952 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2020-06-28 12:40 - 2015-12-08 21:07 - 000624640 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2020-06-28 12:39 - 2016-05-14 00:09 - 003156480 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2020-06-28 12:39 - 2016-05-14 00:09 - 000192512 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2020-06-28 12:39 - 2016-05-14 00:09 - 000098816 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2020-06-28 12:39 - 2016-05-14 00:07 - 000091136 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2020-06-28 12:39 - 2016-05-13 23:55 - 002607104 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2020-06-28 12:39 - 2016-05-13 23:53 - 000709120 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2020-06-28 12:39 - 2016-05-13 23:53 - 000037888 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2020-06-28 12:39 - 2016-05-13 23:52 - 000140288 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2020-06-28 12:39 - 2016-05-13 23:52 - 000037888 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2020-06-28 12:39 - 2016-05-13 23:52 - 000036864 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2020-06-28 12:39 - 2016-05-13 23:52 - 000012288 _____ (Microsoft Corporation) C:\windows\system32\wu.upgrade.ps.dll
2020-06-28 12:39 - 2016-05-13 23:50 - 000174080 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2020-06-28 12:39 - 2016-05-13 23:38 - 000573440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2020-06-28 12:39 - 2016-05-13 23:38 - 000093696 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2020-06-28 12:39 - 2016-05-13 23:38 - 000035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2020-06-28 12:39 - 2016-05-13 23:38 - 000030208 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2020-06-28 12:39 - 2016-05-12 19:14 - 000862208 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2020-06-28 12:39 - 2016-05-12 19:14 - 000084992 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2020-06-28 12:39 - 2016-05-12 17:18 - 000572416 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2020-06-28 12:39 - 2016-05-12 17:18 - 000090624 _____ (Microsoft Corporation) C:\windows\SysWOW64\olepro32.dll
2020-06-28 12:39 - 2016-05-12 17:18 - 000067584 _____ (Microsoft Corporation) C:\windows\SysWOW64\asycfilt.dll
2020-06-28 12:39 - 2016-05-04 19:21 - 000114408 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2020-06-28 12:39 - 2016-05-04 19:17 - 003244032 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2020-06-28 12:39 - 2016-05-04 19:17 - 002365440 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2020-06-28 12:39 - 2016-05-04 19:17 - 000504320 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2020-06-28 12:39 - 2016-05-04 19:17 - 000337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2020-06-28 12:39 - 2016-05-04 19:17 - 000025088 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimsg.dll
2020-06-28 12:39 - 2016-05-04 19:17 - 000025088 _____ (Microsoft Corporation) C:\windows\system32\msimsg.dll
2020-06-28 12:39 - 2016-05-04 19:16 - 000070144 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2020-06-28 12:39 - 2016-05-04 17:04 - 000128512 _____ (Microsoft Corporation) C:\windows\system32\msiexec.exe
2020-06-28 12:39 - 2016-05-04 16:55 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\msiexec.exe
2020-06-28 12:39 - 2016-03-16 20:50 - 000156672 _____ (Microsoft Corporation) C:\windows\system32\mtxoci.dll
2020-06-28 12:39 - 2016-03-16 20:28 - 000176128 _____ (Microsoft Corporation) C:\windows\SysWOW64\msorcl32.dll
2020-06-28 12:39 - 2016-03-16 20:28 - 000111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\mtxoci.dll
2020-06-28 12:39 - 2015-07-15 05:19 - 000052736 _____ (Microsoft Corporation) C:\windows\system32\basesrv.dll
2020-06-28 12:38 - 2015-12-08 23:54 - 002285056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2020-06-28 12:38 - 2015-12-08 23:54 - 001620992 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL
2020-06-28 12:38 - 2015-12-08 23:54 - 001568768 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVENCOD.DLL
2020-06-28 12:38 - 2015-12-08 23:54 - 001325056 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMSPDMOE.DLL
2020-06-28 12:38 - 2015-12-08 23:54 - 000902144 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMADMOD.DLL
2020-06-28 12:38 - 2015-12-08 23:54 - 000815616 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMADMOE.DLL
2020-06-28 12:38 - 2015-12-08 23:54 - 000740352 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmpmde.dll
2020-06-28 12:38 - 2015-12-08 23:54 - 000739328 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMSPDMOD.DLL
2020-06-28 12:38 - 2015-12-08 23:54 - 000665088 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVXENCD.DLL
2020-06-28 12:38 - 2015-12-08 23:54 - 000541184 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVSDECD.DLL
2020-06-28 12:38 - 2015-12-08 23:54 - 000358400 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVSENCD.DLL
2020-06-28 12:38 - 2015-12-08 23:54 - 000154112 _____ (Microsoft Corporation) C:\windows\SysWOW64\VIDRESZR.DLL
2020-06-28 12:38 - 2015-12-08 23:53 - 000970240 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2adec.dll
2020-06-28 12:38 - 2015-12-08 23:53 - 000829952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSMPEG2ENC.DLL
2020-06-28 12:38 - 2015-12-08 23:53 - 000609280 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFWMAAEC.DLL
2020-06-28 12:38 - 2015-12-08 23:53 - 000415744 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP4SDECD.DLL
2020-06-28 12:38 - 2015-12-08 23:53 - 000241152 _____ (Microsoft Corporation) C:\windows\SysWOW64\MPG4DECD.DLL
2020-06-28 12:38 - 2015-12-08 23:53 - 000241152 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP43DECD.DLL
2020-06-28 12:38 - 2015-12-08 23:53 - 000206848 _____ (Microsoft Corporation) C:\windows\SysWOW64\RESAMPLEDMO.DLL
2020-06-28 12:38 - 2015-12-08 23:53 - 000206848 _____ (Microsoft Corporation) C:\windows\SysWOW64\qasf.dll
2020-06-28 12:38 - 2015-12-08 23:53 - 000193536 _____ (Microsoft Corporation) C:\windows\SysWOW64\ksproxy.ax
2020-06-28 12:38 - 2015-12-08 23:53 - 000153600 _____ (Microsoft Corporation) C:\windows\SysWOW64\COLORCNV.DLL
2020-06-28 12:38 - 2015-12-08 23:53 - 000079872 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP3DMOD.DLL
2020-06-28 12:38 - 2015-12-08 23:53 - 000067584 _____ (Microsoft Corporation) C:\windows\SysWOW64\devenum.dll
2020-06-28 12:38 - 2015-12-08 23:53 - 000053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfvdsp.dll
2020-06-28 12:38 - 2015-12-08 23:53 - 000004608 _____ (Microsoft Corporation) C:\windows\SysWOW64\ksuser.dll
2020-06-28 12:38 - 2015-12-08 21:07 - 002777088 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2020-06-28 12:38 - 2015-12-08 21:07 - 001955328 _____ (Microsoft Corporation) C:\windows\system32\WMVENCOD.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 001888768 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 001575424 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOE.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 001307136 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2adec.dll
2020-06-28 12:38 - 2015-12-08 21:07 - 001232896 _____ (Microsoft Corporation) C:\windows\system32\WMADMOD.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 001160192 _____ (Microsoft Corporation) C:\windows\system32\MSMPEG2ENC.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 001153024 _____ (Microsoft Corporation) C:\windows\system32\WMADMOE.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 001026048 _____ (Microsoft Corporation) C:\windows\system32\wmpmde.dll
2020-06-28 12:38 - 2015-12-08 21:07 - 001010688 _____ (Microsoft Corporation) C:\windows\system32\mcmde.dll
2020-06-28 12:38 - 2015-12-08 21:07 - 000978944 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOD.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000666112 _____ (Microsoft Corporation) C:\windows\system32\WMVSDECD.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000653824 _____ (Microsoft Corporation) C:\windows\system32\MP4SDECD.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000642048 _____ (Microsoft Corporation) C:\windows\system32\WMVXENCD.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000484864 _____ (Microsoft Corporation) C:\windows\system32\MFWMAAEC.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000447488 _____ (Microsoft Corporation) C:\windows\system32\WMVSENCD.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000378880 _____ (Microsoft Corporation) C:\windows\system32\SysFxUI.dll
2020-06-28 12:38 - 2015-12-08 21:07 - 000292352 _____ (Microsoft Corporation) C:\windows\system32\VIDRESZR.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000254464 _____ (Microsoft Corporation) C:\windows\system32\qasf.dll
2020-06-28 12:38 - 2015-12-08 21:07 - 000225792 _____ (Microsoft Corporation) C:\windows\system32\RESAMPLEDMO.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000224768 _____ (Microsoft Corporation) C:\windows\system32\MPG4DECD.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000223744 _____ (Microsoft Corporation) C:\windows\system32\MP43DECD.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000189952 _____ (Microsoft Corporation) C:\windows\system32\COLORCNV.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000100864 _____ (Microsoft Corporation) C:\windows\system32\MP3DMOD.DLL
2020-06-28 12:38 - 2015-12-08 21:07 - 000076288 _____ (Microsoft Corporation) C:\windows\system32\devenum.dll
2020-06-28 12:38 - 2015-12-08 21:07 - 000070144 _____ (Microsoft Corporation) C:\windows\system32\mfvdsp.dll
2020-06-28 12:38 - 2015-12-08 21:07 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\ksuser.dll
2020-06-28 12:38 - 2015-12-08 21:06 - 000250880 _____ (Microsoft Corporation) C:\windows\system32\ksproxy.ax
2020-06-28 12:38 - 2015-12-08 20:54 - 000116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2020-06-28 12:38 - 2015-12-08 20:12 - 000230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2020-06-28 12:38 - 2015-12-08 20:11 - 000005632 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmkaud.sys
2020-06-28 12:38 - 2015-07-23 02:02 - 001390592 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2020-06-28 12:38 - 2015-07-23 02:02 - 000879104 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2020-06-28 12:38 - 2015-07-22 19:53 - 000635392 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2020-06-28 12:38 - 2015-07-22 18:48 - 000041984 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll
2020-06-28 12:38 - 2015-07-16 21:12 - 006131200 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2020-06-28 12:38 - 2015-07-16 21:12 - 000856064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdvidcrl.dll
2020-06-28 12:38 - 2015-07-16 21:12 - 000053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2020-06-28 12:38 - 2015-07-16 21:11 - 007077376 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2020-06-28 12:38 - 2015-07-16 21:11 - 001057792 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2020-06-28 12:38 - 2015-07-16 21:11 - 000062976 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2020-06-28 12:38 - 2015-07-15 20:10 - 001743360 _____ (Microsoft Corporation) C:\windows\system32\sysmain.dll
2020-06-28 12:38 - 2015-07-11 15:15 - 000429568 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2020-06-28 12:38 - 2014-08-29 04:07 - 003179520 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2020-06-28 12:38 - 2014-05-08 11:32 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll
2020-06-28 12:37 - 2016-08-29 17:31 - 014183424 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2020-06-28 12:37 - 2016-08-29 17:31 - 001941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2020-06-28 12:37 - 2016-08-29 17:12 - 012880384 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2020-06-28 12:37 - 2016-08-29 17:12 - 001806848 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2020-06-28 12:37 - 2016-08-29 17:12 - 001499648 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2020-06-28 12:37 - 2016-08-29 17:04 - 003229696 _____ (Microsoft Corporation) C:\windows\explorer.exe
2020-06-28 12:37 - 2016-08-29 16:55 - 002972672 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe
2020-06-28 12:37 - 2016-07-07 17:36 - 001896168 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2020-06-28 12:37 - 2016-07-07 17:36 - 000287976 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2020-06-28 12:37 - 2016-07-01 17:31 - 000976896 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2020-06-28 12:37 - 2016-07-01 17:31 - 000084480 _____ (Microsoft Corporation) C:\windows\system32\INETRES.dll
2020-06-28 12:37 - 2016-07-01 17:13 - 000084480 _____ (Microsoft Corporation) C:\windows\SysWOW64\INETRES.dll
2020-06-28 12:37 - 2016-05-12 19:15 - 000105472 _____ (Microsoft Corporation) C:\windows\system32\winipsec.dll
2020-06-28 12:37 - 2016-05-12 19:14 - 000794624 _____ (Microsoft Corporation) C:\windows\system32\gpsvc.dll
2020-06-28 12:37 - 2016-05-12 19:14 - 000502272 _____ (Microsoft Corporation) C:\windows\system32\IPSECSVC.DLL
2020-06-28 12:37 - 2016-05-12 19:14 - 000373760 _____ (Microsoft Corporation) C:\windows\system32\polstore.dll
2020-06-28 12:37 - 2016-05-12 19:14 - 000096256 _____ (Microsoft Corporation) C:\windows\system32\gpapi.dll
2020-06-28 12:37 - 2016-05-12 19:14 - 000075776 _____ (Microsoft Corporation) C:\windows\system32\FwRemoteSvr.dll
2020-06-28 12:37 - 2016-05-12 17:18 - 000274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\polstore.dll
2020-06-28 12:37 - 2016-05-12 17:18 - 000079360 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpapi.dll
2020-06-28 12:37 - 2016-05-12 17:18 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\winipsec.dll
2020-06-28 12:37 - 2016-05-12 17:18 - 000044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\FwRemoteSvr.dll
2020-06-28 12:37 - 2016-05-11 19:02 - 000444928 _____ (Microsoft Corporation) C:\windows\system32\winhttp.dll
2020-06-28 12:37 - 2016-05-11 19:02 - 000327168 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2020-06-28 12:37 - 2016-05-11 19:02 - 000296448 _____ (Microsoft Corporation) C:\windows\system32\ws2_32.dll
2020-06-28 12:37 - 2016-05-11 17:19 - 000351744 _____ (Microsoft Corporation) C:\windows\SysWOW64\winhttp.dll
2020-06-28 12:37 - 2016-05-11 17:19 - 000231424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2020-06-28 12:37 - 2016-05-11 17:19 - 000206336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ws2_32.dll
2020-06-28 12:37 - 2016-05-11 17:11 - 000025088 _____ (Microsoft Corporation) C:\windows\system32\netbtugc.exe
2020-06-28 12:37 - 2016-05-11 17:01 - 000026624 _____ (Microsoft Corporation) C:\windows\SysWOW64\netbtugc.exe
2020-06-28 12:37 - 2016-05-11 16:58 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netbt.sys
2020-06-28 12:37 - 2016-04-14 15:49 - 000603648 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2020-06-28 12:37 - 2016-04-14 15:21 - 000647680 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2020-06-28 12:37 - 2016-03-09 21:00 - 000396800 _____ (Microsoft Corporation) C:\windows\system32\webio.dll
2020-06-28 12:37 - 2016-03-09 20:40 - 000316416 _____ (Microsoft Corporation) C:\windows\SysWOW64\webio.dll
2020-06-28 12:37 - 2016-02-05 20:56 - 000020480 _____ (Microsoft Corporation) C:\windows\system32\tbs.dll
2020-06-28 12:37 - 2016-02-05 20:54 - 000109568 _____ (Microsoft Corporation) C:\windows\system32\fveapibase.dll
2020-06-28 12:37 - 2016-02-05 19:33 - 000015360 _____ (Microsoft Corporation) C:\windows\SysWOW64\tbs.dll
2020-06-28 12:37 - 2016-02-05 03:19 - 000381440 _____ (Microsoft Corporation) C:\windows\system32\mfds.dll
2020-06-28 12:37 - 2016-02-04 20:41 - 000296448 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfds.dll
2020-06-28 12:37 - 2016-02-03 20:07 - 000091648 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBSTOR.SYS
2020-06-28 12:37 - 2016-01-21 02:51 - 000073664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\disk.sys
2020-06-28 12:37 - 2015-12-11 20:57 - 001164800 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2020-06-28 12:37 - 2015-11-16 22:17 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2020-06-28 12:37 - 2015-11-14 01:09 - 000091648 _____ (Microsoft Corporation) C:\windows\system32\mapistub.dll
2020-06-28 12:37 - 2015-11-14 01:09 - 000091648 _____ (Microsoft Corporation) C:\windows\system32\mapi32.dll
2020-06-28 12:37 - 2015-11-14 01:08 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\fixmapi.exe
2020-06-28 12:37 - 2015-11-14 00:50 - 000076800 _____ (Microsoft Corporation) C:\windows\SysWOW64\mapistub.dll
2020-06-28 12:37 - 2015-11-14 00:50 - 000076800 _____ (Microsoft Corporation) C:\windows\SysWOW64\mapi32.dll
2020-06-28 12:37 - 2015-11-14 00:49 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\fixmapi.exe
2020-06-28 12:37 - 2015-11-05 21:05 - 000017408 _____ (Microsoft Corporation) C:\windows\system32\wshrm.dll
2020-06-28 12:37 - 2015-11-05 21:02 - 000014848 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshrm.dll
2020-06-28 12:37 - 2015-10-29 19:50 - 000342016 _____ (Microsoft Corporation) C:\windows\system32\apphelp.dll
2020-06-28 12:37 - 2015-10-29 19:50 - 000072192 _____ (Microsoft Corporation) C:\windows\system32\aelupsvc.dll
2020-06-28 12:37 - 2015-10-29 19:50 - 000023552 _____ (Microsoft Corporation) C:\windows\system32\sdbinst.exe
2020-06-28 12:37 - 2015-10-29 19:50 - 000006656 _____ (Microsoft Corporation) C:\windows\system32\shimeng.dll
2020-06-28 12:37 - 2015-10-29 19:50 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\shimeng.dll
2020-06-28 12:37 - 2015-10-29 19:49 - 000295936 _____ (Microsoft Corporation) C:\windows\SysWOW64\apphelp.dll
2020-06-28 12:37 - 2015-10-29 19:49 - 000020992 _____ (Microsoft Corporation) C:\windows\SysWOW64\sdbinst.exe
2020-06-28 12:37 - 2015-10-13 18:41 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2020-06-28 12:37 - 2015-10-13 18:40 - 000118272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdx.sys
2020-06-28 12:37 - 2015-10-13 06:57 - 000950720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2020-06-28 12:37 - 2015-07-09 19:58 - 001632256 _____ (Microsoft Corporation) C:\windows\system32\dwmcore.dll
2020-06-28 12:37 - 2015-07-09 19:58 - 000082944 _____ (Microsoft Corporation) C:\windows\system32\dwmapi.dll
2020-06-28 12:37 - 2015-07-09 19:57 - 000193536 _____ (Microsoft Corporation) C:\windows\system32\notepad.exe
2020-06-28 12:37 - 2015-07-09 19:57 - 000193536 _____ (Microsoft Corporation) C:\windows\notepad.exe
2020-06-28 12:37 - 2015-07-09 19:42 - 001372160 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmcore.dll
2020-06-28 12:37 - 2015-07-09 19:42 - 000179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\notepad.exe
2020-06-28 12:37 - 2015-07-09 19:42 - 000067584 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmapi.dll
2020-06-28 12:37 - 2015-06-03 22:21 - 000451080 _____ (Microsoft Corporation) C:\windows\system32\fveapi.dll
2020-06-28 12:37 - 2014-12-11 19:47 - 000087040 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe
2020-06-28 12:14 - 2015-11-03 21:04 - 000241664 _____ (Microsoft Corporation) C:\windows\system32\els.dll
2020-06-28 12:14 - 2015-11-03 20:55 - 000179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\els.dll
2020-06-28 11:16 - 2020-06-28 11:16 - 000000338 _____ C:\Users\EAR\Desktop\reindex.bat
2020-06-28 11:15 - 2020-06-28 11:16 - 000000338 _____ C:\Users\EAR\Desktop\Nowy dokument tekstowy.txt
2020-06-27 15:34 - 2020-06-27 15:34 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-06-27 12:43 - 2020-06-27 12:43 - 000028585 _____ C:\ComboFix.txt
2020-06-27 11:49 - 2020-06-27 19:47 - 000000000 ____D C:\ComboFix
2020-06-27 11:46 - 2020-06-27 11:46 - 005659583 ____R (Swearware) C:\Users\EAR\Downloads\ComboFix.exe
2020-06-26 19:01 - 2016-07-07 17:36 - 000377576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2020-06-26 19:01 - 2016-07-07 17:08 - 000046080 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpipreg.sys
2020-06-26 19:01 - 2016-07-01 17:13 - 000741888 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2020-06-26 19:01 - 2015-11-05 11:53 - 000146944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rmcast.sys
2020-06-26 18:40 - 2016-08-29 17:31 - 001867776 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2020-06-26 18:38 - 2016-03-09 20:54 - 000275456 _____ (Microsoft Corporation) C:\windows\system32\InkEd.dll
2020-06-26 18:38 - 2016-03-09 20:34 - 000216064 _____ (Microsoft Corporation) C:\windows\SysWOW64\InkEd.dll
2020-06-26 18:38 - 2016-02-09 11:55 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\seclogon.dll
2020-06-25 22:57 - 2020-06-25 22:57 - 000000000 ____D C:\Users\EAR\AppData\Local\{3B6BA04B-0EBB-4F51-BC20-191F2C0FD9C5}
2020-06-25 15:20 - 2020-06-25 15:20 - 000000000 ____D C:\Users\EAR\Desktop\CAPS OLA
2020-06-25 15:19 - 2020-06-25 15:20 - 000000000 ____D C:\Users\EAR\Desktop\Zasilacz
2020-06-25 15:19 - 2020-06-25 15:19 - 000000000 ____D C:\Users\EAR\Desktop\Sukienka Emi komunijna
2020-06-25 15:17 - 2020-06-25 17:01 - 000000000 ____D C:\Users\EAR\Desktop\monitoring 25-06-2020
2020-06-25 10:56 - 2020-06-25 10:56 - 000000000 ____D C:\Users\EAR\AppData\Local\{3B18AD77-630B-4F41-AF93-E3620F057E17}
2020-06-24 13:28 - 2020-06-24 13:28 - 000000000 ____D C:\Users\EAR\AppData\Local\{842EA67D-450E-4D83-B92A-5C349A3B095C}
2020-06-23 21:34 - 2020-06-23 21:34 - 000000000 ____D C:\Users\EAR\AppData\Local\{3C19A956-7D60-4247-932A-0493C88B46EB}
2020-06-23 09:34 - 2020-06-23 09:34 - 000000000 ____D C:\Users\EAR\AppData\Local\{C53DB651-B31E-4040-AEAA-73CE61ABF0F7}
2020-06-22 14:18 - 2020-06-22 14:19 - 000000000 ____D C:\Users\EAR\AppData\Local\{C49F4998-03DF-41BB-AC43-77F57CA31EE7}
2020-06-21 11:51 - 2020-06-21 11:52 - 000000000 ____D C:\Users\EAR\AppData\Local\{779489D3-A607-4EC9-83CA-A0DD3A13F326}
2020-06-20 18:45 - 2020-06-20 18:45 - 000000000 ____D C:\Users\EAR\AppData\Local\{E17F6098-0F82-47A6-A75E-DCDF919CAB3C}
2020-06-19 21:27 - 2020-06-19 21:27 - 000000000 ____D C:\Users\EAR\AppData\Local\{37BC3007-0FC8-42D2-82A5-314316A01B20}
2020-06-19 09:26 - 2020-06-19 09:26 - 000000000 ____D C:\Users\EAR\AppData\Local\{147F1944-701C-4F09-AED1-52E42062D950}
2020-06-18 21:26 - 2020-06-18 21:26 - 000000000 ____D C:\Users\EAR\AppData\Local\{04A90D26-69AA-4DBA-AD72-B4D943E4E3DC}
2020-06-18 09:26 - 2020-06-18 09:26 - 000000000 ____D C:\Users\EAR\AppData\Local\{179AFD40-A9DD-4997-A1B4-8890FD68DF52}
2020-06-17 20:03 - 2020-06-17 20:03 - 000000000 ____D C:\Users\EAR\AppData\Local\{3AFEF5C3-2475-4A2C-9104-2C0E4E077554}
2020-06-17 08:16 - 2020-06-17 08:17 - 000000000 ____D C:\Users\EAR\Desktop\Nowy folder
2020-06-17 08:03 - 2020-06-17 08:03 - 000000000 ____D C:\Users\EAR\AppData\Local\{5723B1F4-BA53-42E0-AB9C-5BB1B370B395}
2020-06-16 13:42 - 2020-06-16 13:43 - 000000000 ____D C:\Users\EAR\AppData\Local\{5849192E-3CC4-49B3-AF80-E15070B7C39A}
2020-06-15 20:45 - 2020-06-15 20:45 - 000000000 ____D C:\Users\EAR\AppData\Local\{BF3D43F0-DC1A-4121-8579-91C39B39B1E2}
2020-06-15 08:44 - 2020-06-15 08:44 - 000000000 ____D C:\Users\EAR\AppData\Local\{AE245113-59F5-4DF4-A2C1-3148062D0409}
2020-06-12 21:02 - 2020-06-12 21:02 - 000000000 ____D C:\Users\EAR\AppData\Local\{2B13C86E-A7A7-45E4-8939-5B2B5CF345A9}
2020-06-11 21:06 - 2020-06-11 21:06 - 000000000 ____D C:\Users\EAR\AppData\Local\{6C27DEF9-D192-4400-B60F-8607815B7481}
2020-06-11 09:05 - 2020-06-11 09:06 - 000000000 ____D C:\Users\EAR\AppData\Local\{89423860-4650-4F51-ACF8-05EDACC2E141}
2020-06-10 16:53 - 2020-06-10 16:53 - 000000000 ____D C:\Users\EAR\AppData\Local\{C4B8DBAE-1A5C-48EA-8D48-EA25FDC9CF8A}
2020-06-09 20:23 - 2020-06-09 20:23 - 000000000 ____D C:\Users\EAR\AppData\Local\{74ACC31F-5CA5-4F9B-9D8A-F7F6D232F730}
2020-06-09 08:23 - 2020-06-09 08:23 - 000000000 ____D C:\Users\EAR\AppData\Local\{B52C0902-0CA3-48DF-8411-586B4F3FF752}
2020-06-08 12:56 - 2020-06-08 12:56 - 000000000 ____D C:\Users\EAR\AppData\Local\{84A99620-7DE6-48A9-B62D-964DFDE1FD1A}
2020-06-07 17:35 - 2020-06-07 17:35 - 000000831 _____ C:\Users\EAR\Desktop\Pip Pip.lnk
2020-06-07 16:09 - 2020-06-07 16:09 - 000001024 _____ C:\Users\EAR\Desktop\Pulpit nie używane.lnk
2020-06-07 14:44 - 2020-06-07 14:44 - 000000000 ____D C:\Users\EAR\AppData\Local\{4C431FEB-A3A6-4804-8A1D-D3A07CEBF80A}
2020-06-05 20:49 - 2020-06-05 20:49 - 000000000 ____D C:\Users\EAR\AppData\Local\{EBAC6491-3813-4CC7-918A-9A262A665334}
2020-06-05 09:42 - 2020-06-05 09:42 - 000000000 ____D C:\windows\system32\Tasks\Mozilla
2020-06-05 08:48 - 2020-06-05 08:48 - 000000000 ____D C:\Users\EAR\AppData\Local\{BEDEAC5D-C1B2-417C-BC15-DEA3F1373903}
2020-06-04 12:54 - 2020-06-04 12:54 - 000000000 ____D C:\Users\EAR\AppData\Local\{B2F33892-9BC4-4614-97C8-97607F2574A8}
2020-06-04 10:59 - 2020-06-07 14:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-06-03 11:03 - 2020-06-03 11:03 - 000000000 ____D C:\Users\EAR\AppData\Local\{34FF8DC9-4A6F-4E74-BF81-D9B6F71950AD}
2020-06-02 15:04 - 2020-06-02 15:04 - 000000000 ____D C:\Users\EAR\AppData\Local\{C281E710-6180-4F95-A314-BF08CF1EBDE1}
2020-06-01 21:49 - 2020-06-01 21:50 - 000000000 ____D C:\Users\EAR\AppData\Local\{5C322D8D-161D-4934-97CD-50B5365CF6C6}
2020-06-01 09:49 - 2020-06-01 09:49 - 000000000 ____D C:\Users\EAR\AppData\Local\{3EFFF954-4DEB-47B8-949D-A6E7C363AF55}
2020-05-31 14:32 - 2020-05-31 14:32 - 000000000 ____D C:\Users\EAR\AppData\Local\{80879D77-E7A1-4FFA-9D13-B2620DDA0797}
2020-05-30 22:11 - 2020-05-30 22:12 - 000000000 ____D C:\Users\EAR\AppData\Local\{49CA6847-B502-4741-AA7C-A47CACEB1F36}

==================== Jeden miesiąc (zmodyfikowane) ==================

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2020-06-29 18:13 - 2015-07-06 12:38 - 000003960 _____ C:\windows\system32\Tasks\User_Feed_Synchronization-{F1E6BA4C-0CBF-42B1-8D38-BA8EA525051A}
2020-06-29 15:00 - 2016-11-19 22:24 - 000000000 ____D C:\Users\EAR\AppData\LocalLow\Mozilla
2020-06-29 12:35 - 2009-07-14 06:45 - 000028928 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-06-29 12:35 - 2009-07-14 06:45 - 000028928 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-06-29 12:32 - 2016-12-28 15:09 - 001596848 _____ C:\windows\system32\PerfStringBackup.INI
2020-06-29 12:32 - 2011-05-29 21:22 - 000713224 _____ C:\windows\system32\perfh015.dat
2020-06-29 12:32 - 2011-05-29 21:22 - 000145242 _____ C:\windows\system32\perfc015.dat
2020-06-29 12:32 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2020-06-29 12:31 - 2014-11-05 18:43 - 000000000 ____D C:\ProgramData\Package Cache
2020-06-29 12:31 - 2013-08-11 21:27 - 000000000 ____D C:\ProgramData\Avira
2020-06-29 12:27 - 2016-10-12 15:51 - 000008192 _____ C:\windows\SysWOW64\WDPABKP.dat
2020-06-29 12:26 - 2012-08-27 17:35 - 000000000 ____D C:\ProgramData\VMware
2020-06-29 12:26 - 2011-05-29 13:41 - 000000000 ____D C:\ProgramData\NVIDIA
2020-06-29 12:25 - 2015-02-10 19:16 - 000065536 _____ C:\windows\system32\Ikeext.etl
2020-06-29 12:25 - 2011-10-14 22:14 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-06-29 12:24 - 2011-05-29 14:19 - 000593481 _____ C:\windows\system32\fastboot.set
2020-06-29 12:24 - 2009-07-14 07:08 - 000032604 _____ C:\windows\Tasks\SCHEDLGU.TXT
2020-06-29 12:24 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-06-29 10:25 - 2011-05-29 14:24 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2020-06-29 10:23 - 2011-05-29 14:23 - 000000000 ____D C:\Program Files (x86)\Windows Live
2020-06-29 10:23 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2020-06-29 10:19 - 2011-10-07 21:20 - 000000000 ____D C:\Users\EAR
2020-06-29 09:14 - 2020-03-02 13:39 - 001136640 ___SH C:\Users\EAR\Desktop\Thumbs.db
2020-06-29 08:45 - 2011-10-07 22:58 - 000000000 ____D C:\Users\EAR\AppData\Local\Adobe
2020-06-28 19:29 - 2009-07-14 05:20 - 000000000 ____D C:\windows\rescache
2020-06-28 18:00 - 2020-03-02 13:33 - 000556536 _____ C:\windows\system32\FNTCACHE.DAT
2020-06-28 16:17 - 2011-10-10 15:22 - 001569638 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2020-06-28 15:19 - 2009-07-14 07:09 - 000000000 ____D C:\windows\system32\Tasks\WPD
2020-06-28 15:18 - 2013-02-05 21:18 - 000000000 ___RD C:\Users\EAR\Podcasts
2020-06-28 14:38 - 2013-11-15 16:37 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2020-06-28 14:38 - 2013-11-15 16:37 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2020-06-28 14:35 - 2011-02-22 13:42 - 000000000 ____D C:\windows\ShellNew
2020-06-28 14:35 - 2009-07-14 05:20 - 000000000 ____D C:\windows\SysWOW64\Dism
2020-06-28 14:35 - 2009-07-14 05:20 - 000000000 ____D C:\windows\system32\Dism
2020-06-28 14:31 - 2014-01-10 22:18 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2020-06-28 13:48 - 2009-07-14 04:34 - 000000575 _____ C:\windows\win.ini
2020-06-28 13:46 - 2020-03-02 13:39 - 000149824 _____ C:\Users\EAR\AppData\Local\GDIPFONTCACHEV1.DAT
2020-06-28 13:46 - 2015-07-26 14:28 - 000001912 _____ C:\windows\epplauncher.mif
2020-06-28 13:46 - 2015-07-26 14:28 - 000000000 ____D C:\Program Files\Microsoft Security Client
2020-06-28 13:46 - 2015-07-26 14:28 - 000000000 ____D C:\Program Files (x86)\Microsoft Security Client
2020-06-28 13:41 - 2014-10-31 18:13 - 000000000 ____D C:\windows\system32\MRT
2020-06-28 13:21 - 2011-10-08 08:49 - 120636720 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2020-06-28 13:11 - 2013-11-15 16:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2020-06-28 12:04 - 2019-10-04 10:00 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-06-28 12:04 - 2019-10-04 10:00 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2020-06-27 20:23 - 2011-10-10 15:32 - 000000000 ____D C:\Users\EAR\AppData\Local\Windows Live
2020-06-27 19:48 - 2012-12-18 16:17 - 000000000 ____D C:\Users\Mcx1-LEMI
2020-06-27 19:47 - 2020-05-28 21:58 - 000000000 ____D C:\Users\EAR\Desktop\Win 7 32bit ASUS EeePc
2020-06-27 19:47 - 2011-10-10 21:09 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2020-06-27 19:47 - 2009-07-14 05:20 - 000000000 ____D C:\windows\registration
2020-06-27 19:45 - 2012-06-26 12:39 - 000000000 ____D C:\Qoobox
2020-06-27 19:37 - 2017-03-23 17:16 - 000000000 ____D C:\Users\EAR\AppData\Local\CrashDumps
2020-06-27 18:43 - 2011-10-10 15:32 - 000000000 ____D C:\Users\EAR\AppData\Local\Windows Live Writer
2020-06-27 12:34 - 2009-07-14 04:34 - 000000253 _____ C:\windows\system.ini
2020-06-27 12:28 - 2009-07-14 04:34 - 001064960 _____ C:\windows\system32\config\DEFAULT.bak
2020-06-27 12:28 - 2009-07-14 04:34 - 000032768 _____ C:\windows\system32\config\SECURITY.bak
2020-06-27 12:28 - 2009-07-14 04:34 - 000028672 _____ C:\windows\system32\config\SAM.bak
2020-06-27 12:08 - 2012-06-26 12:40 - 000000000 ____D C:\windows\ERDNT
2020-06-27 11:45 - 2016-05-03 22:04 - 000000000 ____D C:\Pierdoły
2020-06-27 11:31 - 2015-07-28 15:17 - 000000000 ____D C:\windows\system32\appraiser
2020-06-27 11:31 - 2009-07-14 07:32 - 000000000 ____D C:\windows\Offline Web Pages
2020-06-27 11:31 - 2009-07-14 07:32 - 000000000 ____D C:\windows\Downloaded Program Files
2020-06-27 11:31 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\DVD Maker
2020-06-27 11:31 - 2009-07-14 05:20 - 000000000 ____D C:\windows\SysWOW64\ras
2020-06-27 11:31 - 2009-07-14 05:20 - 000000000 ____D C:\windows\SysWOW64\migwiz
2020-06-27 11:31 - 2009-07-14 05:20 - 000000000 ____D C:\windows\system32\ras
2020-06-27 11:31 - 2009-07-14 05:20 - 000000000 ____D C:\windows\system32\migwiz
2020-06-27 11:31 - 2009-07-14 05:20 - 000000000 ____D C:\windows\PolicyDefinitions
2020-06-27 11:30 - 2011-10-10 15:22 - 000000000 ____D C:\windows\system32\Tasks\OfficeSoftwareProtectionPlatform
2020-06-27 11:06 - 2011-05-29 14:14 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-06-27 10:19 - 2011-02-22 13:19 - 000000000 ____D C:\windows\Panther
2020-06-27 09:19 - 2014-10-31 23:26 - 000000000 __SHD C:\Users\EAR\AppData\LocalLow\EmieUserList
2020-06-27 09:19 - 2014-10-31 23:26 - 000000000 __SHD C:\Users\EAR\AppData\LocalLow\EmieSiteList
2020-06-23 15:12 - 2020-03-01 15:21 - 000000000 ____D C:\Users\EAR\Desktop\01-03-2020
2020-06-21 22:16 - 2011-10-09 18:49 - 000000000 ____D C:\Users\EAR\AppData\Roaming\BitComet
2020-06-18 21:16 - 2013-02-18 22:47 - 000000000 ____D C:\Users\EAR\AppData\Roaming\GG
2020-06-15 19:48 - 2012-01-10 22:00 - 000000000 ____D C:\Users\EAR\AppData\Roaming\AIMP3
2020-06-11 12:21 - 2011-12-21 20:30 - 000001908 _____ C:\windows\diagwrn.xml
2020-06-11 12:21 - 2011-12-21 20:30 - 000001908 _____ C:\windows\diagerr.xml
2020-06-09 17:05 - 2018-03-13 23:05 - 000004550 _____ C:\windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-06-09 17:05 - 2013-11-18 10:37 - 000004412 _____ C:\windows\system32\Tasks\Adobe Flash Player Updater
2020-06-09 17:05 - 2012-04-11 12:04 - 000842296 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerApp.exe
2020-06-09 17:05 - 2011-10-07 22:12 - 000175160 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-09 17:05 - 2011-10-07 22:12 - 000000000 ____D C:\windows\SysWOW64\Macromed
2020-06-09 17:05 - 2011-10-07 22:12 - 000000000 ____D C:\windows\system32\Macromed
2020-06-07 16:08 - 2012-10-16 16:16 - 000000000 ___RD C:\Pulpit Lemi
2020-06-07 16:07 - 2013-04-09 14:23 - 000000000 ____D C:\Zdjecia do obróbki
2020-06-07 14:22 - 2012-08-03 10:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-06-03 12:01 - 2019-10-04 10:00 - 000003450 _____ C:\windows\system32\Tasks\AdobeGCInvoker-1.0
2020-06-03 09:18 - 2017-02-22 13:41 - 000002019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-05-31 14:05 - 2018-06-19 15:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-05-31 14:05 - 2011-10-26 08:42 - 000000000 ____D C:\Users\EAR\AppData\Roaming\Skype

==================== Pliki w katalogu głównym wybranych folderów ========

2013-01-08 17:16 - 2010-01-26 11:11 - 000444283 _____ () C:\Program Files\Common Files\WinPcapNmap.exe
2013-08-07 15:13 - 2013-08-07 15:13 - 000099678 _____ () C:\Users\EAR\AppData\Roaming\seesimilar.ico
2013-08-07 15:15 - 2013-08-07 15:13 - 000030894 _____ () C:\Users\EAR\AppData\Roaming\speedanalysis.ico
2012-02-25 15:44 - 2018-12-31 17:55 - 000005120 _____ () C:\Users\EAR\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-09-28 12:41 - 2018-09-28 12:41 - 000000000 _____ () C:\Users\EAR\AppData\Local\oobelibMkey.log
2011-10-07 23:08 - 2011-10-07 23:08 - 000001544 _____ () C:\Users\EAR\AppData\Local\PDLSetup.20111007.230840.txt
2012-02-27 13:40 - 2012-02-27 13:40 - 000001567 _____ () C:\Users\EAR\AppData\Local\PDLSetup.20120227.124004.txt
2012-10-16 16:16 - 2012-10-16 16:16 - 000001567 _____ () C:\Users\EAR\AppData\Local\PDLSetup.20121016.161605.txt
2011-11-07 21:59 - 2012-07-31 14:12 - 000007597 _____ () C:\Users\EAR\AppData\Local\Resmon.ResmonCfg
2018-05-24 15:17 - 2018-05-24 15:17 - 000003215 _____ () C:\Users\EAR\AppData\Local\unins000.dat
2018-05-24 15:17 - 2018-05-24 15:17 - 000011761 _____ () C:\Users\EAR\AppData\Local\unins000.msg

==================== SigCheck ============================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)


LastRegBack: 2020-06-26 12:09
==================== Koniec FRST.txt ========================