Sality nie ma Proces który obciąża jak go wyłączę - to obciążenie przełącza się automatycznie na inny proces... I terminala też jest Ostatno dr.web wykrył virut.56
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x86) Wersja: 07-08-2020
Uruchomiony przez admin (administrator) ADMIN-KOMPUTER (Hewlett-Packard HP EliteBook 6930p) (08-08-2020 16:20:06)
Uruchomiony z C:\Users\admin\Desktop
Załadowane profile: admin
Platform: Microsoft Windows 7 Professional (X86) Język: Polski (Polska)
Internet Explorer Wersja 8 (Domyślna przeglądarka: IE)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
() [Brak podpisu cyfrowego] C:\Program Files\Common Files\Teradyne\TDSNetSetup.exe
(Adobe Systems, Incorporated - & gt; Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apache Software Foundation) [Brak podpisu cyfrowego] C:\Program Files\GlobalTIS\tomcat\bin\tomcat6.exe
(Disc Soft Ltd - & gt; Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe
(Disc Soft Ltd - & gt; Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(Flexera Software, Inc.) [Brak podpisu cyfrowego] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Microsoft Dynamic Code Publisher - & gt; Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Rainbow Technologies) [Brak podpisu cyfrowego] C:\Windows\System32\spnsrvnt.exe
(Sun Microsystems, Inc. - & gt; Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jusched.exe & lt; 2 & gt;
(Synaptics Incorporated - & gt; Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated - & gt; Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Teradyne Diagnostic Solutions Ltd) [Brak podpisu cyfrowego] C:\Program Files\Mazda Motor Corporation\IDS\Runtime\CodeServeD.exe
(Teradyne Diagnostic Solutions Ltd) [Brak podpisu cyfrowego] C:\Program Files\Mazda Motor Corporation\IDS\Runtime\XMLRegistryD.exe
(Teradyne Ltd) [Brak podpisu cyfrowego] C:\Program Files\Mazda Motor Corporation\IDS\Runtime\DetectionManager.exe
(Teradyne Ltd) [Brak podpisu cyfrowego] C:\Program Files\Mazda Motor Corporation\IDS\Runtime\EngineeringFeedback.exe
(Teradyne Ltd) [Brak podpisu cyfrowego] C:\Program Files\Mazda Motor Corporation\IDS\Runtime\ProbeTickHandler.exe
(Teradyne Ltd) [Brak podpisu cyfrowego] C:\Program Files\Mazda Motor Corporation\IDS\Runtime\Starburst.exe
(Teradyne Ltd) [Brak podpisu cyfrowego] C:\Program Files\Mazda Motor Corporation\IDS\Runtime\TDSNetConfig.exe
(The WinBar Team) [Brak podpisu cyfrowego] C:\Program Files\WinBar\WinBar.exe
(Transaction Software, D 81829 Munich) [Brak podpisu cyfrowego] C:\Program Files\GlobalTIS\transbase\tbkern32.exe
(Transaction Software, D 81829 Munich) [Brak podpisu cyfrowego] C:\Program Files\GlobalTIS\transbase\tbmux32.exe
(VMware, Inc. - & gt; VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
(VMware, Inc. - & gt; VMware, Inc.) C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
(VMware, Inc. - & gt; VMware, Inc.) C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
(VMware, Inc. - & gt; VMware, Inc.) C:\Windows\System32\vmnat.exe
(VMware, Inc. - & gt; VMware, Inc.) C:\Windows\System32\vmnetdhcp.exe
==================== Rejestr (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [KTSInit] = & gt; [X]
HKLM\...\Run: [SynTPEnh] = & gt; C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1721640 2010-05-14] (Synaptics Incorporated - & gt; Synaptics Incorporated)
HKLM\...\Run: [vmware-tray.exe] = & gt; C:\Program Files\VMware\VMware Workstation\vmware-tray.exe [111696 2013-08-27] (VMware, Inc. - & gt; VMware, Inc.)
HKLM\...\Run: [jv16 PT (System Startup Check)] = & gt; " C:\Program Files\jv16 PowerTools\jv16pt_PreWorker2.exe " /SysStartupCheck /PT: " C:\Program Files\jv16 PowerTools\ "
HKLM\...\Run: [jv16 PT (Startup Optimizer)] = & gt; " C:\Program Files\jv16 PowerTools\jv16pt_PreWorker2.exe " /StartupOptimizer /PT: " C:\Program Files\jv16 PowerTools\ "
HKLM\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files\Java\jre6\bin\jusched.exe [148888 2020-08-08] (Sun Microsystems, Inc. - & gt; Sun Microsystems, Inc.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe [26112 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
HKU\S-1-5-19\...\Run: [Sidebar] = & gt; C:\Program Files\Windows Sidebar\Sidebar.exe [1183744 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
HKU\S-1-5-19\...\RunOnce: [mctadmin] = & gt; C:\Windows\System32\mctadmin.exe [93696 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
HKU\S-1-5-20\...\Run: [Sidebar] = & gt; C:\Program Files\Windows Sidebar\Sidebar.exe [1183744 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
HKU\S-1-5-20\...\RunOnce: [mctadmin] = & gt; C:\Windows\System32\mctadmin.exe [121344 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
HKU\S-1-5-21-3210922533-3354420170-2914847325-1000\...\Run: [DAEMON Tools Pro Agent] = & gt; C:\Program Files\DAEMON Tools Pro\DTAgent.exe [3829008 2020-08-08] (Disc Soft Ltd) [Brak podpisu cyfrowego]
HKU\S-1-5-21-3210922533-3354420170-2914847325-1000\...\MountPoints2: G - G:\dpselect.exe
HKU\S-1-5-21-3210922533-3354420170-2914847325-1000\...\MountPoints2: {1f2031ca-d950-11ea-b432-005056c00008} - G:\dpselect.exe
Startup: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RT-Automatyczne aktualizacje-AKP.lnk [2020-08-05]
ShortcutTarget: RT-Automatyczne aktualizacje-AKP.lnk - & gt; C:\Ross-Tech\VCDS-AKP\VCDS.exe (Brak pliku)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\APIMonitor Disable.lnk [2020-08-08]
ShortcutTarget: APIMonitor Disable.lnk - & gt; C:\Program Files\ETAS\ES6516 VCI Software\J2534 Configuration\J2534ConfigApp.exe (ETAS Group) [Brak podpisu cyfrowego]
AlternateShell:
==================== Zaplanowane zadania (filtrowane) ============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {14DC4D94-B856-4318-926A-67F613A255A4} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask = & gt; C:\Windows\ehome\mcupdate.exe [185856 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {180C50C8-A936-44CD-BF80-00C4B775BAE2} - System32\Tasks\{30AE9F93-2CE3-4158-9C4A-7F1F19AD9029} = & gt; C:\Windows\system32\pcalua.exe -a " E:\Programy\Sterowniki hp 6930\sp47728.exe " -d " E:\Programy\Sterowniki hp 6930 "
Task: {1CD7633B-41BC-4B75-90FA-2E28BA4A451D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask = & gt; C:\Windows\ehome\mcupdate.exe [213504 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {22242847-5C81-4069-A3E7-EC65E274304B} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask = & gt; C:\Windows\ehome\mcupdate.exe [213504 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {2375F586-1009-41FB-B54E-30D8AF2B781D} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary = & gt; C:\Program Files\Windows Media Player\wmpnscfg.exe [75264 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {23B78F02-3708-4C11-997D-CAE10DC6DCEF} - System32\Tasks\{4AF9F803-9CE4-4313-8CAE-4E29B4132F2D} = & gt; C:\Windows\system32\pcalua.exe -a " E:\Programy\Systemowe\NET Framework 3.5 - FULL WERSJA!!!.exe " -d E:\Programy\Systemowe
Task: {2C59ECAF-3A27-4640-9F4B-519B05BDD70F} - System32\Tasks\Microsoft\Windows\MUI\LPRemove = & gt; C:\Windows\system32\lpremove.exe [71680 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {3442D3AF-2BFC-470B-9E97-AB808EB1DEAB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {3BB63B44-94B8-4DBE-8512-25B67EB60EAC} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {3DCCE967-632A-4598-A003-EA4391E22B6D} - System32\Tasks\{DC948D23-8ECB-4037-9142-47FBC3111197} = & gt; E:\Programy\Systemowe\NET Framework 3.5 - FULL WERSJA!!!.exe [206692864 2020-08-08] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {3F74B0C8-08F6-44FA-B882-0918BC31E0C8} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {528832F5-8BBF-421F-8D9B-06C2F0EDC0FA} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {56D0C582-6614-4029-BDAC-BE011355B952} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {5B184694-64C3-4633-94C5-945B3FA561D6} - System32\Tasks\Microsoft\Windows\WindowsBackup\ConfigNotification = & gt; C:\Windows\System32\sdclt.exe [1141248 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {60158C7A-6808-42CD-95EE-AFD9A57925DB} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter = & gt; C:\Windows\system32\appidpolicyconverter.exe [96768 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {62CF4BFB-0A97-42B2-A3BB-25B51F6AA206} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart = & gt; C:\Windows\ehome\ehrec.exe [67584 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {6B7AC694-8D6D-481B-9DD8-2A3A741ADA6D} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem = & gt; C:\Windows\System32\powercfg.exe [59392 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {731E9C62-95B5-4C8C-AB64-4CC591C9FF5B} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask = & gt; C:\Windows\system32\RAServer.exe [101888 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {75B41C0B-FE1A-4880-9E9A-B75ABBB03012} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver = & gt; C:\Windows\system32\DFDWiz.exe [68608 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {7D3C7871-A917-4EF0-82E8-5F0A96423051} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask = & gt; C:\Windows\system32\BthUdTask.exe [45568 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {8A16BB51-AFB6-4865-943A-9A35365AE6AE} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {8EB308F8-9470-4A5F-98AF-46BEB07972A5} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {95043958-1D5F-4FEF-8EDF-6791FB585E78} - System32\Tasks\User_Feed_Synchronization-{05EAA91E-2D85-4EA4-A35C-20ED16FBDFFA} = & gt; C:\Windows\system32\msfeedssync.exe [12800 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {9B9FD38B-6817-4DB5-AE82-9DD2549D198D} - System32\Tasks\{A586F4B7-F2B2-4132-940A-C185A370E109} = & gt; C:\SIDIS\home\bin\ADM.exe
Task: {A6394592-54CE-4E93-8D64-1A068F462632} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator = & gt; C:\Windows\System32\wsqmcons.exe [265216 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {B058137C-9774-42BA-A21F-CB6199C89EF5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate = & gt; C:\Windows\ehome\mcupdate.exe [213504 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {B393924B-DFD9-4CA9-9C26-5092B089C0AA} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {B9BEE219-C29E-4310-819C-147A5A0E045E} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag = & gt; C:\Windows\system32\defrag.exe [176128 2009-07-14] (Microsoft Corp.) [Brak podpisu cyfrowego]
Task: {B9DF5001-1FF6-4CBA-86B7-2874BB1882D9} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {BEF75177-96DF-4C89-AE55-137DB3B09A63} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask = & gt; C:\Windows\ehome\mcupdate.exe [213504 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {C765ED96-0BDE-489D-BA7F-848838CC848F} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {C90440A0-6D8F-423F-8F42-83EEF05CE708} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck = & gt; C:\Windows\system32\appidcertstorecheck.exe [16896 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {D02BA804-8732-40EB-8E0D-85918B67181D} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan = & gt; c:\program files\windows defender\MpCmdRun.exe [157184 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {D21F6024-191F-4454-BBBC-09A650DA2549} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent = & gt; C:\Windows\system32\aitagent.exe [130560 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {D869FC6A-678B-4B5F-BA88-C7604F8B9C91} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry = & gt; C:\Windows\ehome\MCUpdate.exe [213504 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {DE8699D2-8A05-42F7-8A85-5162AF47D26A} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting = & gt; C:\Windows\system32\wermgr.exe [53760 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego] & lt; ==== UWAGA
Task: {E26D068E-99D5-4747-95FB-D2A5AEC44091} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {E4C72DC9-21A9-41C7-90DA-06CF8DA0C622} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB = & gt; C:\Program Files\Mozilla Firefox\default-browser-agent.exe [108752 2020-07-21] (Mozilla Corporation - & gt; Mozilla Foundation)
Task: {EF19EEF9-6424-4E22-A7EF-EC221F1B2D87} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask = & gt; C:\Windows\ehome\mcupdate.exe [213504 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {F1841EBA-3B48-497A-9393-E7F432336592} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {F7B2A4E6-9649-4910-910D-62BE8B682FAE} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks = & gt; C:\Windows\ehome\ehPrivJob.exe [235520 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
Task: {F93C7104-998A-4A38-B935-775A3138B3C3} - System32\Tasks\Microsoft\Windows\Location\Notifications = & gt; C:\Windows\System32\LocationNotifications.exe [99840 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Winsock: Catalog9 12 C:\Windows\system32\vsocklib.dll [63568 2013-08-15] (VMware, Inc. - & gt; VMware, Inc.)
Winsock: Catalog9 13 C:\Windows\system32\vsocklib.dll [63568 2013-08-15] (VMware, Inc. - & gt; VMware, Inc.)
Tcpip\Parameters: [DhcpNameServer] 62.233.233.233 87.204.204.204 192.168.1.1
Tcpip\..\Interfaces\{B803287C-1155-4819-8470-70058478AD07}: [DhcpNameServer] 62.233.233.233 87.204.204.204 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-3210922533-3354420170-2914847325-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp
BHO: CGMFragment Class - & gt; {0695F52A-89A2-4246-81B5-AFAD2D3B865F} - & gt; C:\Program Files\Ematek\MetaWeb\MetaBHO.dll [2007-01-20] () [Brak podpisu cyfrowego]
BHO: Adobe PDF Link Helper - & gt; {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - & gt; C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06] (Adobe Systems, Incorporated - & gt; Adobe Systems Incorporated)
BHO: Brak nazwy - & gt; {1E1B2879-88FF-11D2-8D96-D7ACAC95951F} - & gt; Brak pliku
BHO: TM_BHO Class - & gt; {60EC89B7-367D-402B-8C55-30FAEB32A705} - & gt; C:\Program Files\Mazda Motor Corporation\IDS\Runtime\TMCtrlBHO.dll [2012-08-19] (Teradyne Ltd) [Brak podpisu cyfrowego]
BHO: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files\Java\jre6\bin\jp2ssv.dll [2020-08-08] (Sun Microsystems, Inc.) [Brak podpisu cyfrowego]
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
FireFox:
========
FF DefaultProfile: b3uiejo3.default
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\b3uiejo3.default [2020-08-08]
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\n1xj2n6h.default-release [2020-08-08]
FF Plugin: Adobe Reader - & gt; C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2011-06-06] (Adobe Systems, Incorporated - & gt; Adobe Systems Inc.)
==================== Usługi (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S3 ALG; C:\Windows\System32\alg.exe [59392 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
R3 DetectionManager; C:\Program Files\Mazda Motor Corporation\IDS\Runtime\DetectionManager.exe [364544 2012-08-19] (Teradyne Ltd) [Brak podpisu cyfrowego]
R3 Disc Soft Bus Service; C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe [2216208 2014-11-24] (Disc Soft Ltd - & gt; Disc Soft Ltd)
S3 ehRecvr; C:\Windows\ehome\ehRecvr.exe [567296 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 ehSched; C:\Windows\ehome\ehsched.exe [94720 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 Fax; C:\Windows\system32\fxssvc.exe [532992 2020-08-06] (Microsoft Corporation) [Brak podpisu cyfrowego]
R2 GLOBALTISTB; C:\Program Files\GlobalTIS\transbase\tbmux32.exe [316928 2010-08-11] (Transaction Software, D 81829 Munich) [Brak podpisu cyfrowego]
R2 GlobalTISTC6; C:\Program Files\GlobalTIS\tomcat\BIN\tomcat6.exe [61440 2010-03-10] (Apache Software Foundation) [Brak podpisu cyfrowego]
S3 MSDTC; C:\Windows\System32\msdtc.exe [134144 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 msiserver; C:\Windows\System32\msiexec.exe /V [73216 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 RpcLocator; C:\Windows\system32\locator.exe [9216 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [12800 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
R2 SuperProServer; C:\Windows\system32\spnsrvnt.exe [126976 2001-10-22] (Rainbow Technologies) [Brak podpisu cyfrowego]
S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [204800 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 vds; C:\Windows\System32\vds.exe [452608 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
R2 VMAuthdService; C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [86096 2013-08-27] (VMware, Inc. - & gt; VMware, Inc.)
R2 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [358480 2013-08-27] (VMware, Inc. - & gt; VMware, Inc.)
R2 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [719416 2013-08-26] (VMware, Inc. - & gt; VMware, Inc.)
R2 VMware NAT Service; C:\Windows\system32\vmnat.exe [437328 2013-08-27] (VMware, Inc. - & gt; VMware, Inc.)
S2 VMwareHostd; C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe [14401104 2013-08-27] (VMware, Inc. - & gt; )
S3 wbengine; C:\Windows\system32\wbengine.exe [1202688 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Windows - & gt; Microsoft Corporation)
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [136192 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1148928 2009-07-14] (Microsoft Corporation) [Brak podpisu cyfrowego]
R2 TDSNetSetup; " C:\Program Files\Common Files\Teradyne\TDSNetSetup.exe " " C:\Program Files\Mazda Motor Corporation\IDS\Runtime "
===================== Sterowniki (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R3 AgereSoftModem; C:\Windows\System32\DRIVERS\AGRSM.sys [1035776 2009-07-14] (Microsoft Windows - & gt; LSI Corp)
R3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [25000 2020-08-08] (Disc Soft Ltd - & gt; Disc Soft Ltd)
S3 evserial7; C:\Windows\System32\DRIVERS\evserial7.sys [59680 2011-06-16] (General Motors - & gt; ELTIMA Software)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [58184 2010-03-30] (Future Technology Devices International Ltd - & gt; FTDI Ltd.)
S3 FTSER2K; C:\Windows\System32\drivers\ftser2k.sys [73096 2012-05-18] (Future Technology Devices International Ltd - & gt; FTDI Ltd.)
R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [43192 2013-08-26] (VMware, Inc. - & gt; VMware, Inc.)
S3 RT-USB; C:\Windows\System32\drivers\RT-USB.SYS [80256 2014-05-12] (Ross-Tech, LLC - & gt; Ross-Tech LLC)
S3 sbusb_vista; C:\Windows\System32\DRIVERS\sbusb_vista.sys [104576 2012-08-13] (Microsoft Corporation) [Brak podpisu cyfrowego]
R2 Sentinel; C:\Windows\System32\Drivers\SENTINEL.SYS [73216 2001-04-06] () [Brak podpisu cyfrowego]
S3 Sntnlusb; C:\Windows\System32\Drivers\SNTNLUSB.SYS [20288 2001-04-06] (Rainbow Technologies Inc.) [Brak podpisu cyfrowego]
S3 USB-100; C:\Windows\System32\DRIVERS\RTL8150.SYS [22016 2013-11-02] (Microsoft Windows Hardware Compatibility Publisher - & gt; Realtek)
R3 VMnetAdapter; C:\Windows\System32\DRIVERS\vmnetadapter.sys [17104 2013-08-27] (VMware, Inc. - & gt; VMware, Inc.)
R2 VMnetBridge; C:\Windows\System32\DRIVERS\vmnetbridge.sys [37456 2013-08-27] (VMware, Inc. - & gt; VMware, Inc.)
R2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [26192 2013-08-27] (VMware, Inc. - & gt; VMware, Inc.)
R2 VMparport; C:\Windows\system32\Drivers\VMparport.sys [24272 2013-08-27] (VMware, Inc. - & gt; VMware, Inc.)
S3 vmusb; C:\Windows\System32\DRIVERS\vmusb.sys [31928 2013-08-26] (VMware, Inc. - & gt; VMware, Inc.)
R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [65488 2013-08-27] (VMware, Inc. - & gt; VMware, Inc.)
R3 VSBC7; C:\Windows\System32\DRIVERS\evsbc7.sys [34080 2011-06-16] (General Motors - & gt; ELTIMA Software)
R2 vstor2-mntapi20-shared; C:\Windows\System32\drivers\vstor2-mntapi20-shared.sys [23632 2013-02-22] (VMware, Inc. - & gt; VMware, Inc.)
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc (utworzone) ===================
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2020-08-08 16:20 - 2020-08-08 16:23 - 000023980 _____ C:\Users\admin\Desktop\FRST.txt
2020-08-08 16:19 - 2020-08-08 16:18 - 002041856 ____N (Farbar) C:\Users\admin\Desktop\FRST.exe
2020-08-08 16:08 - 2020-08-08 16:08 - 000002036 _____ C:\Users\Public\Desktop\DS150E.lnk
2020-08-08 16:08 - 2020-08-08 16:08 - 000002036 _____ C:\ProgramData\Desktop\DS150E.lnk
2020-08-08 16:07 - 2020-08-08 16:07 - 000000000 ____D C:\Program Files\Delphi Diagnostics
2020-08-08 15:54 - 2009-11-25 11:47 - 001130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2020-08-08 15:54 - 2009-11-25 11:47 - 000297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2020-08-08 15:54 - 2009-11-25 11:47 - 000295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2020-08-08 15:54 - 2009-11-25 11:47 - 000099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2020-08-08 15:54 - 2009-11-25 11:47 - 000049472 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2020-08-08 15:50 - 2020-08-08 15:50 - 000002998 _____ C:\Windows\system32\Tasks\{DC948D23-8ECB-4037-9142-47FBC3111197}
2020-08-08 15:47 - 2020-08-08 15:47 - 000003180 _____ C:\Windows\system32\Tasks\{4AF9F803-9CE4-4313-8CAE-4E29B4132F2D}
2020-08-08 15:39 - 2020-08-08 15:39 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2020-08-08 15:37 - 2020-08-08 15:37 - 000148888 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaws.exe
2020-08-08 15:37 - 2020-08-08 15:37 - 000144792 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaw.exe
2020-08-08 15:37 - 2020-08-08 15:37 - 000144792 _____ (Sun Microsystems, Inc.) C:\Windows\system32\java.exe
2020-08-08 15:17 - 2020-08-08 16:21 - 000000000 ____D C:\Users\admin\AppData\LocalLow\Mozilla
2020-08-08 15:17 - 2020-08-08 15:17 - 000000000 ____D C:\Users\admin\AppData\Roaming\Mozilla
2020-08-08 15:17 - 2020-08-08 15:17 - 000000000 ____D C:\Users\admin\AppData\Local\Mozilla
2020-08-08 15:16 - 2020-08-08 15:41 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2020-08-08 15:16 - 2020-08-08 15:39 - 000001121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-08-08 15:16 - 2020-08-08 15:39 - 000001109 _____ C:\Users\Public\Desktop\Firefox.lnk
2020-08-08 15:16 - 2020-08-08 15:39 - 000001109 _____ C:\ProgramData\Desktop\Firefox.lnk
2020-08-08 15:16 - 2020-08-08 15:39 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-08-08 15:16 - 2020-08-08 15:18 - 000000000 ____D C:\ProgramData\Mozilla
2020-08-08 15:14 - 2020-08-08 15:14 - 000334088 _____ (Mozilla) C:\Users\admin\Downloads\Firefox Installer.exe
2020-08-08 15:12 - 2020-08-08 15:50 - 000000000 ____D C:\Users\admin\AppData\Local\ElevatedDiagnostics
2020-08-08 15:09 - 2020-08-08 16:21 - 000000000 ____D C:\FRST
2020-08-08 14:33 - 2020-08-08 14:33 - 000000000 ____D C:\Users\admin\AppData\Roaming\FLEXnet
2020-08-08 14:31 - 2020-08-08 14:32 - 013778944 _____ C:\Windows\system32\config\SYSTEM.jv16pt_bak
2020-08-08 14:05 - 2020-08-08 14:08 - 000000000 ___SD C:\Program Files\jv16 PowerTools
2020-08-08 14:05 - 2020-08-08 14:05 - 000001006 _____ C:\Users\admin\Desktop\jv16 PowerTools.lnk
2020-08-08 14:05 - 2020-08-08 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\jv16 PowerTools
2020-08-08 14:04 - 2018-05-31 09:06 - 010656596 _____ ( ) C:\Users\admin\Desktop\jv16 PowerTools 4.2.0.1774 pl-full.exe
2020-08-08 14:03 - 2020-08-08 14:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2020-08-08 14:03 - 2020-08-08 14:03 - 000000000 ____D C:\Program Files\7-Zip
2020-08-08 14:03 - 2020-08-08 13:21 - 010586039 ____N C:\Users\admin\Desktop\jv16 PowerTools 4.2.0.1774 pl full.rar
2020-08-08 10:36 - 2003-12-04 16:07 - 000000696 _____ C:\Windows\system32\jetodbc.rsp
2020-08-08 10:35 - 2020-08-08 10:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ETAS
2020-08-08 10:35 - 2020-08-08 10:35 - 000000000 ____D C:\Program Files\ETAS
2020-08-08 10:33 - 2020-08-08 10:33 - 000000000 ____D C:\Program Files\Common Files\Teradyne
2020-08-08 10:33 - 2012-08-13 05:45 - 000104576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbusb_vista.sys
2020-08-08 10:32 - 2020-08-08 10:32 - 000001866 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Software Updates.lnk
2020-08-08 10:32 - 2012-08-12 07:17 - 000471040 _____ C:\Windows\system32\zip.exe
2020-08-08 10:32 - 2012-08-12 07:17 - 000000586 _____ C:\Windows\system32\unzip.exe.manifest
2020-08-08 10:31 - 2020-08-08 10:34 - 000000000 ____D C:\Program Files\Mazda Motor Corporation
2020-08-08 10:31 - 2020-08-08 10:31 - 000001964 _____ C:\Users\Public\Desktop\IDS.lnk
2020-08-08 10:31 - 2020-08-08 10:31 - 000001964 _____ C:\ProgramData\Desktop\IDS.lnk
2020-08-08 10:31 - 2020-08-08 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mazda Motor Corporation
2020-08-08 10:29 - 2020-08-08 10:29 - 000000000 ____D C:\ProgramData\Mazda Motor Company
2020-08-08 10:27 - 2020-08-08 10:27 - 000025000 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtscsibus.sys
2020-08-08 10:26 - 2020-08-08 14:56 - 000000000 ____D C:\Program Files\DAEMON Tools Pro
2020-08-08 10:26 - 2020-08-08 10:29 - 000000000 ____D C:\Users\admin\AppData\Roaming\DAEMON Tools Pro
2020-08-08 10:26 - 2020-08-08 10:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro
2020-08-08 10:26 - 2020-08-08 10:26 - 000000000 ____D C:\ProgramData\DAEMON Tools Pro
2020-08-07 14:14 - 2020-08-07 14:14 - 000000578 _____ C:\Users\Public\Desktop\Galletto Win7.lnk
2020-08-07 14:14 - 2020-08-07 14:14 - 000000578 _____ C:\ProgramData\Desktop\Galletto Win7.lnk
2020-08-07 14:14 - 2020-08-07 14:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Galletto Win7
2020-08-07 14:09 - 2020-08-07 14:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FGTech
2020-08-07 14:09 - 2013-07-06 22:51 - 000000412 _____ C:\Windows\system32\regkey.dat
2020-08-07 14:09 - 2013-03-29 16:53 - 000206144 _____ C:\Windows\system32\fgt2xx.dll
2020-08-07 14:09 - 2013-03-29 16:46 - 001542784 _____ (FTDI Ltd.) C:\Windows\system32\ftd2xx.dll
2020-08-07 14:09 - 2010-03-30 14:28 - 000120136 _____ (FTDI Ltd.) C:\Windows\system32\ftbusui.dll
2020-08-07 14:09 - 2010-03-30 14:28 - 000058184 _____ (FTDI Ltd.) C:\Windows\system32\Drivers\ftdibus.sys
2020-08-07 14:09 - 2010-03-30 14:27 - 000197952 _____ (FTDI Ltd.) C:\Windows\system32\FTLang.dll
2020-08-07 14:08 - 2020-08-07 14:14 - 000000000 ____D C:\FGTech
2020-08-07 13:54 - 2020-08-07 13:54 - 000001008 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Uninstall 6.lnk
2020-08-07 13:54 - 2020-08-07 13:54 - 000000996 _____ C:\Users\Public\Desktop\Total Uninstall 6.lnk
2020-08-07 13:54 - 2020-08-07 13:54 - 000000996 _____ C:\ProgramData\Desktop\Total Uninstall 6.lnk
2020-08-07 13:54 - 2020-08-07 13:54 - 000000000 ____D C:\ProgramData\Martau
2020-08-07 13:54 - 2020-08-07 13:54 - 000000000 ____D C:\Program Files\Total Uninstall 6
2020-08-06 23:24 - 2020-08-06 23:24 - 000000000 ____D C:\ProgramData\Ford Motor Company
2020-08-06 18:51 - 2020-08-08 14:37 - 000000000 ____D C:\ProgramData\Doctor Web
2020-08-06 18:51 - 2020-08-06 19:51 - 000000000 ____D C:\Users\admin\Doctor Web
2020-08-06 16:55 - 2020-08-06 16:55 - 000000000 _____ C:\ProgramData\.reglicinfosrv
2020-08-06 16:38 - 2020-08-06 20:01 - 000212992 _____ C:\Windows\system32\unzip.exe
2020-08-06 16:38 - 2020-08-06 16:38 - 000000000 __RSH C:\MSDOS.SYS
2020-08-06 16:38 - 2020-08-06 16:38 - 000000000 __RSH C:\IO.SYS
2020-08-06 16:38 - 2020-08-06 16:38 - 000000000 ____D C:\Program Files\MSXML 4.0
2020-08-06 16:38 - 2012-08-12 07:17 - 000296960 _____ (Stirling Technologies, Inc.) C:\Windows\uninst.exe
2020-08-06 16:36 - 2013-11-02 09:33 - 000348160 _____ (Microsoft Corporation) C:\Windows\system32\msvcr71.dll
2020-08-06 16:36 - 2013-11-02 09:33 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\MFC71ENU.DLL
2020-08-06 16:36 - 2013-11-02 09:33 - 000012048 _____ (Microsoft Corporation) C:\Windows\system32\mmdrv.dll
2020-08-06 16:35 - 2020-08-06 16:35 - 000000000 ____D C:\ProgramData\Macrovision
2020-08-06 16:35 - 2020-08-06 16:35 - 000000000 ____D C:\ProgramData\FLEXnet
2020-08-06 16:35 - 2013-11-02 09:33 - 000022016 _____ (Realtek ) C:\Windows\system32\Drivers\RTL8150.SYS
2020-08-06 16:21 - 2020-08-06 16:21 - 223972448 _____ C:\Users\admin\Downloads\rajx1wlm.exe
2020-08-06 16:15 - 2020-08-06 16:15 - 000003166 _____ C:\Windows\system32\Tasks\{30AE9F93-2CE3-4158-9C4A-7F1F19AD9029}
2020-08-05 18:57 - 2020-08-06 20:00 - 000001024 _____ C:\sjar.pif
2020-08-05 09:42 - 2020-08-05 09:42 - 000000714 _____ C:\Users\admin\Desktop\VCDSLoader — skrót.lnk
2020-08-05 09:34 - 2020-08-05 09:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VCDS-AKP
2020-08-05 09:34 - 2020-08-05 09:34 - 000000000 ____D C:\Program Files\DIFX
2020-08-05 09:33 - 2020-08-05 09:33 - 000000000 ____D C:\Ross-Tech
2020-08-04 21:53 - 2001-08-10 01:26 - 000278581 _____ (Microsoft Corporation) C:\Windows\system32\temp.002
2020-08-04 21:45 - 2020-08-04 21:45 - 000000025 _____ C:\Windows\filelist
2020-08-04 21:25 - 2020-08-04 21:25 - 000002928 _____ C:\Windows\system32\Tasks\{A586F4B7-F2B2-4132-940A-C185A370E109}
2020-08-04 20:42 - 2020-08-04 21:08 - 000000260 _____ C:\SecureIDInterfaceProtocol.txt
2020-08-04 20:42 - 2020-08-04 21:08 - 000000260 _____ C:\OCommunicationProtocol.txt
2020-08-04 20:38 - 2001-08-10 01:26 - 000278581 _____ (Microsoft Corporation) C:\Windows\system32\temp.001
2020-08-04 20:37 - 2008-08-07 13:58 - 000000037 _____ C:\Windows\system32\conmansrv.ini
2020-08-04 20:35 - 2020-08-04 20:35 - 000000000 ____D C:\Windows\Downloaded Installations
2020-08-04 20:35 - 2020-08-04 20:35 - 000000000 ____D C:\Program Files\Altova
2020-08-04 20:35 - 2009-01-22 02:13 - 001328968 _____ (Microsoft Corporation) C:\Windows\system32\msxml4.dll
2020-08-04 20:35 - 2009-01-22 02:12 - 000088904 _____ (Microsoft Corporation) C:\Windows\system32\msxml4r.dll
2020-08-04 20:35 - 2008-02-07 18:32 - 000000047 _____ C:\Windows\NETEDIC.INI
2020-08-04 20:35 - 2008-02-07 18:32 - 000000047 _____ C:\Windows\HWEDIC.INI
2020-08-04 20:35 - 2008-02-07 18:17 - 000143360 _____ (Softing AG, D-85540 Haar/Munich, hxxp://www.softing.com) C:\Windows\CANusbM.dll
2020-08-04 20:35 - 2004-09-20 14:17 - 000118784 _____ (OPC Foundation) C:\Windows\system32\OpcEnum.exe
2020-08-04 20:35 - 2004-09-20 14:17 - 000098304 _____ (OPC Foundation) C:\Windows\system32\opcProxy.dll
2020-08-04 20:35 - 2004-09-20 14:17 - 000069632 _____ (OPC Foundation) C:\Windows\system32\opc_aeps.dll
2020-08-04 20:35 - 2004-09-20 14:17 - 000061440 _____ (OPC Foundation) C:\Windows\system32\opcComn_PS.dll
2020-08-04 20:35 - 2003-02-18 21:24 - 000316912 _____ (Global Majic Software, Inc.) C:\Windows\system32\Strip.ocx
2020-08-04 20:35 - 2003-02-06 00:57 - 000120304 _____ (Global Majic Software, Inc.) C:\Windows\system32\Toggle.ocx
2020-08-04 20:35 - 2003-02-06 00:51 - 000202224 _____ (Global Majic Software, Inc.) C:\Windows\system32\Slider.ocx
2020-08-04 20:35 - 2003-02-06 00:48 - 000194032 _____ (Global Majic Software, Inc.) C:\Windows\system32\Selector.ocx
2020-08-04 20:35 - 2003-02-06 00:45 - 000153072 _____ (Global Majic Software, Inc.) C:\Windows\system32\Percent.ocx
2020-08-04 20:35 - 2003-02-06 00:42 - 000112112 _____ (Global Majic Software, Inc.) C:\Windows\system32\Odometer.ocx
2020-08-04 20:35 - 2003-02-06 00:33 - 000120304 _____ (Global Majic Software, Inc.) C:\Windows\system32\NumLed.ocx
2020-08-04 20:35 - 2003-02-06 00:30 - 000218608 _____ (Global Majic Software, Inc.) C:\Windows\system32\Lgauge.ocx
2020-08-04 20:35 - 2003-02-06 00:27 - 000128496 _____ (Global Majic Software, Inc.) C:\Windows\system32\Led.ocx
2020-08-04 20:35 - 2003-02-06 00:23 - 000230896 _____ (Global Majic Software, Inc.) C:\Windows\system32\Knob.ocx
2020-08-04 20:35 - 2003-02-06 00:19 - 000239088 _____ (Global Majic Software, Inc.) C:\Windows\system32\AGauge.ocx
2020-08-04 19:31 - 2020-08-07 09:34 - 000004358 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{05EAA91E-2D85-4EA4-A35C-20ED16FBDFFA}
2020-08-04 19:31 - 2020-08-04 19:31 - 000032768 _____ C:\Users\admin\Documents\EasyBCD Backup (2020-08-04).bcd
2020-08-04 19:30 - 2020-08-04 19:30 - 000001175 _____ C:\Users\Public\Desktop\EasyBCD 2.3.lnk
2020-08-04 19:30 - 2020-08-04 19:30 - 000001175 _____ C:\ProgramData\Desktop\EasyBCD 2.3.lnk
2020-08-04 19:30 - 2020-08-04 19:30 - 000000000 ____D C:\Users\admin\AppData\Local\NeoSmart_Technologies
2020-08-04 19:30 - 2020-08-04 19:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NeoSmart Technologies
2020-08-04 19:29 - 2020-08-04 19:29 - 000000000 ____D C:\Program Files\NeoSmart Technologies
2020-08-04 19:18 - 2020-08-04 19:18 - 000000000 ____D C:\Program Files\Diagnose-BK
2020-08-04 00:16 - 2020-08-06 23:44 - 000000000 ____D C:\Users\admin\AppData\Roaming\VMware
2020-08-04 00:16 - 2020-08-06 23:41 - 000000000 ____D C:\Users\admin\AppData\Local\VMware
2020-08-03 23:55 - 2013-08-15 18:25 - 000063824 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys
2020-08-03 23:55 - 2013-08-15 18:24 - 000063568 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2020-08-03 23:54 - 2013-08-27 12:43 - 000776272 _____ (VMware, Inc.) C:\Windows\system32\vnetlib.dll
2020-08-03 23:54 - 2013-08-27 12:42 - 000437328 _____ (VMware, Inc.) C:\Windows\system32\vmnat.exe
2020-08-03 23:54 - 2013-08-27 12:42 - 000358480 _____ (VMware, Inc.) C:\Windows\system32\vmnetdhcp.exe
2020-08-03 23:54 - 2013-08-27 12:42 - 000026192 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
2020-08-03 23:53 - 2020-08-08 15:58 - 000000000 ____D C:\ProgramData\VMware
2020-08-03 23:53 - 2020-08-03 23:53 - 000002085 _____ C:\Users\Public\Desktop\VMware Workstation.lnk
2020-08-03 23:53 - 2020-08-03 23:53 - 000002085 _____ C:\ProgramData\Desktop\VMware Workstation.lnk
2020-08-03 23:53 - 2020-08-03 23:53 - 000001024 _____ C:\Windows\system32\%TMP%
2020-08-03 23:53 - 2020-08-03 23:53 - 000000000 ____D C:\Users\Public\Documents\Shared Virtual Machines
2020-08-03 23:53 - 2020-08-03 23:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
2020-08-03 23:53 - 2020-08-03 23:53 - 000000000 ____D C:\ProgramData\Documents\Shared Virtual Machines
2020-08-03 23:53 - 2020-08-03 23:53 - 000000000 ____D C:\Program Files\VMware
2020-08-03 23:53 - 2020-08-03 23:53 - 000000000 ____D C:\Program Files\Common Files\VMware
2020-08-03 23:53 - 2013-08-26 23:33 - 000043192 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys
2020-08-03 23:53 - 2013-08-26 23:33 - 000031928 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmusb.sys
2020-08-03 23:31 - 2020-08-04 21:53 - 000000000 ____D C:\Program Files\D-PDU API
2020-08-03 23:20 - 2020-08-06 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\General Motors
2020-08-03 23:20 - 2020-08-03 23:20 - 000002266 _____ C:\Users\Public\Desktop\Tech2Win.lnk
2020-08-03 23:20 - 2020-08-03 23:20 - 000002266 _____ C:\ProgramData\Desktop\Tech2Win.lnk
2020-08-03 23:20 - 2020-08-03 23:20 - 000000000 ____D C:\ProgramData\General Motors
2020-08-03 23:10 - 2020-08-03 23:38 - 000000000 ____D C:\Users\admin\sps
2020-08-03 23:07 - 2020-08-03 23:07 - 000000000 __SHD C:\ProgramData\{89B1D07E-940E-4E51-BC46-84F8AED8F38F}
2020-08-03 23:07 - 2020-08-03 23:07 - 000000000 ____D C:\Users\Public\General Motors
2020-08-03 22:58 - 2020-08-03 23:01 - 000000000 ____D C:\Users\admin\sas
2020-08-03 22:56 - 2020-08-03 23:20 - 000000000 ____D C:\Program Files\General Motors
2020-08-03 22:56 - 2011-06-16 14:56 - 000059680 _____ (ELTIMA Software) C:\Windows\system32\Drivers\evserial7.sys
2020-08-03 22:55 - 2020-08-03 22:55 - 000000000 ____D C:\ProgramData\.dls
2020-08-03 22:52 - 2020-08-03 22:52 - 000000000 ____D C:\Users\admin\.tis2web
2020-08-03 22:52 - 2020-08-03 22:52 - 000000000 ____D C:\ProgramData\GM
2020-08-03 22:51 - 2020-08-03 23:28 - 000000000 ____D C:\Program Files\GM
2020-08-03 22:51 - 2020-08-03 22:51 - 000000000 ____D C:\Program Files\Ematek
2020-08-03 22:50 - 2020-08-03 22:55 - 000000000 ____D C:\ProgramData\.t2web
2020-08-03 22:50 - 1998-10-29 15:45 - 000334336 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2020-08-03 22:49 - 2020-08-08 15:37 - 000410984 _____ (Sun Microsystems, Inc.) C:\Windows\system32\deploytk.dll
2020-08-03 22:49 - 2020-08-03 22:49 - 000000000 ____D C:\Program Files\Java
2020-08-03 22:42 - 2020-08-03 22:42 - 000001362 _____ C:\Users\admin\Downloads\tis2web
2020-08-03 22:41 - 2020-08-03 22:41 - 000000000 ____D C:\Windows\system32\appmgmt
2020-08-03 22:31 - 2020-08-03 22:31 - 000000000 ____D C:\Users\admin\tech2view
2020-08-03 22:30 - 2020-08-03 22:56 - 000000000 ____D C:\Users\admin\swdl
2020-08-03 22:26 - 2020-08-03 22:26 - 000000000 ____D C:\Users\admin\tis2web
2020-08-03 21:44 - 2020-08-03 21:44 - 000000000 ____D C:\Users\admin\AppData\Roaming\Adobe
2020-08-03 21:44 - 2020-08-03 21:44 - 000000000 ____D C:\Users\admin\AppData\LocalLow\Adobe
2020-08-03 21:44 - 2020-08-03 21:44 - 000000000 ____D C:\Users\admin\AppData\Local\Adobe
2020-08-03 21:42 - 2020-08-03 21:42 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2020-08-03 21:42 - 2020-08-03 21:42 - 000000000 ____D C:\Program Files\Adobe
2020-08-03 21:41 - 2020-08-03 21:42 - 000000000 ____D C:\ProgramData\Adobe
2020-08-03 21:40 - 2020-08-03 21:40 - 000011218 _____ C:\Users\admin\Downloads\registration.pdf
2020-08-03 21:23 - 2020-08-03 21:23 - 000001853 _____ C:\Users\Public\Desktop\GlobalTIS.lnk
2020-08-03 21:23 - 2020-08-03 21:23 - 000001853 _____ C:\ProgramData\Desktop\GlobalTIS.lnk
2020-08-03 21:23 - 2020-08-03 21:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GlobalTIS
2020-08-03 21:18 - 2020-08-03 22:17 - 000000000 ____D C:\Users\admin\AppData\Roaming\WinRAR
2020-08-03 21:18 - 2020-08-03 21:18 - 000000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-08-03 21:18 - 2020-08-03 21:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-08-03 21:18 - 2020-08-03 21:18 - 000000000 ____D C:\Program Files\WinRAR
2020-08-03 21:16 - 2020-08-03 21:38 - 000000000 ____D C:\Program Files\GlobalTIS
2020-08-03 21:16 - 2020-08-03 21:23 - 000000000 ___HD C:\Program Files\Zero G Registry
2020-08-03 21:16 - 2020-08-03 21:16 - 000000000 ____D C:\Windows\system32\RNBOSENT
2020-08-03 21:16 - 2001-10-22 03:20 - 000126976 _____ (Rainbow Technologies) C:\Windows\system32\spnsrvnt.exe
2020-08-03 21:16 - 2001-04-06 07:11 - 000073216 _____ C:\Windows\system32\Drivers\SENTINEL.SYS
2020-08-03 21:16 - 2001-04-06 07:11 - 000049152 _____ C:\Windows\system32\SNTI386.DLL
2020-08-03 21:16 - 2001-04-06 07:11 - 000020288 _____ (Rainbow Technologies Inc.) C:\Windows\system32\Drivers\SNTNLUSB.SYS
2020-08-03 21:16 - 2001-04-06 07:11 - 000009949 ____N C:\Windows\system32\SENTINEL.HLP
2020-08-03 21:12 - 2020-08-03 21:12 - 000000000 ___HD C:\Users\admin\InstallAnywhere
2020-08-03 21:11 - 2020-08-03 21:25 - 000009842 _____ C:\stderr
2020-08-03 21:11 - 2020-08-03 21:25 - 000000147 _____ C:\stdout
2020-08-03 21:10 - 2020-08-03 21:10 - 000000000 ____D C:\ProgramData\Sun
2020-08-03 21:09 - 2020-08-03 21:09 - 000000000 ____D C:\Users\admin\AppData\LocalLow\Sun
2020-08-01 16:43 - 2020-08-01 16:43 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2020-08-01 16:43 - 2020-08-01 16:43 - 000000000 ____D C:\swsetup
2020-08-01 16:43 - 2020-08-01 16:43 - 000000000 ____D C:\Program Files\Synaptics
2020-08-01 16:36 - 2020-08-01 16:36 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2020-08-01 08:54 - 2020-08-01 08:54 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 160017
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 181268
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 181237
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 181015
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 180213
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 180113
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 180015
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 177056
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 172459
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 172259
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 171905
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 1717E7
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 171205
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 17108A
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 170756
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 170607
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 170507
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 17038A
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 17020A
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 17002A
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 160565
2020-08-01 08:51 - 2020-08-01 08:51 - 000000000 ____D C:\Users\admin\Documents\ABRITES software for ID 160165
2020-08-01 08:50 - 2020-08-06 16:34 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2020-08-01 08:50 - 2020-08-01 08:50 - 000000000 ____D C:\ProgramData\Package Cache
2020-08-01 08:49 - 2012-05-18 18:34 - 000073096 _____ (FTDI Ltd.) C:\Windows\system32\Drivers\ftser2k.sys
2020-08-01 08:49 - 2012-05-18 18:34 - 000069000 _____ (FTDI Ltd.) C:\Windows\system32\ftcserco.dll
2020-08-01 08:49 - 2012-05-18 18:34 - 000052616 _____ (FTDI Ltd.) C:\Windows\system32\ftserui2.dll
2020-07-31 00:11 - 2020-07-31 00:11 - 000001469 _____ C:\Users\admin\Desktop\Bosch EsiTronic.lnk
2020-07-31 00:07 - 2020-07-31 00:10 - 000000000 ____D C:\Users\admin\Documents\ESItronic
2020-07-30 23:41 - 2020-08-02 21:48 - 000008192 __RSH C:\BOOTSECT.BAK
2020-07-30 23:41 - 2020-07-30 22:52 - 000000000 ____D C:\Windows\Panther
2020-07-30 23:41 - 2009-07-14 03:38 - 000383562 __RSH C:\bootmgr
2020-07-30 23:37 - 2020-07-31 00:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bosch ESI[tronic]
2020-07-30 23:37 - 2020-07-30 23:37 - 000000000 ____D C:\ProgramData\Bosch
2020-07-30 23:37 - 2012-12-05 14:39 - 000434688 _____ (Robert Bosch GmbH Franz-Oechsle-Strasse 4 D-73207 Plochingen Germany) C:\Windows\system32\rbsys.cpl
2020-07-30 23:37 - 1998-11-17 12:44 - 000358912 _____ (InstallShield Software Corporation ) C:\Windows\IsUn0407.exe
2020-07-30 23:36 - 2020-08-07 13:50 - 000003493 _____ C:\Windows\RbSystem.ini
2020-07-30 23:36 - 2013-11-02 09:33 - 001060864 _____ (Microsoft Corporation) C:\Windows\system32\MFC71.dll
2020-07-30 23:36 - 2013-11-02 09:33 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71.dll
2020-07-30 23:36 - 2004-04-23 12:37 - 000127488 _____ (AxoNet Software GmbH) C:\Windows\system32\awn32b.dll
2020-07-30 23:36 - 2003-03-19 04:03 - 000544768 _____ (Microsoft Corporation) C:\Windows\system32\msvcr71d.dll
2020-07-30 23:36 - 2002-01-05 12:40 - 000487424 _____ (Microsoft Corporation) C:\Windows\system32\msvcp70.dll
2020-07-30 23:36 - 2002-01-05 12:37 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\msvcr70.dll
2020-07-30 23:36 - 2001-12-19 23:03 - 000036864 ____H (Vincenzo Giordano) C:\Windows\system32\psvince.dll
2020-07-30 23:34 - 2020-07-30 23:37 - 000000000 ____D C:\Bosch_PR
2020-07-30 23:32 - 2020-08-06 20:13 - 000000000 ____D C:\Program Files\WinBar
2020-07-30 23:32 - 2020-07-31 00:03 - 000000000 ____D C:\Users\admin\AppData\Roaming\WinBar
2020-07-30 23:32 - 2020-07-30 23:32 - 000000000 ____D C:\ProgramData\WinBar
2020-07-30 23:32 - 2020-07-30 23:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinBar
2020-07-30 23:29 - 2012-08-21 14:23 - 000036864 _____ C:\Windows\system32\xcd73532.dll
2020-07-30 23:29 - 2000-07-07 18:07 - 000126464 _____ (LEAD Technologies, Inc.) C:\Windows\system32\Ltefx80n.dll
2020-07-30 23:29 - 2000-07-07 18:07 - 000027136 _____ (LEAD Technologies, Inc.) C:\Windows\system32\Lttwn80n.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 001355776 _____ (Microsoft Corporation) C:\Windows\system32\msvbvm50.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000640512 _____ (Microsoft Corporation) C:\Windows\system32\Oc30.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000609584 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.ocx
2020-07-30 23:29 - 2000-07-05 15:04 - 000428032 _____ (LEAD Technologies, Inc.) C:\Windows\system32\Ltkrn80n.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000397312 _____ (Microsoft Corporation) C:\Windows\system32\msrdo20.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000244232 _____ (Microsoft Corporation) C:\Windows\system32\msflxgrd.ocx
2020-07-30 23:29 - 2000-07-05 15:04 - 000200704 _____ (Sheridan Software Systems, Inc.) C:\Windows\system32\threed32.ocx
2020-07-30 23:29 - 2000-07-05 15:04 - 000164144 _____ (Microsoft Corporation) C:\Windows\system32\comct232.ocx
2020-07-30 23:29 - 2000-07-05 15:04 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\rdocurs.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000114688 _____ (LEAD Technologies, Inc.) C:\Windows\system32\Lftif80n.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\cmctlde.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000095744 _____ (LEAD Technologies, Inc.) C:\Windows\system32\Ltimg80n.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000082960 _____ (Microsoft Corporation) C:\Windows\system32\picclp32.ocx
2020-07-30 23:29 - 2000-07-05 15:04 - 000074752 _____ (LEAD Technologies, Inc.) C:\Windows\system32\Ltfil80n.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\rdo20de.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000064512 _____ (LEAD Technologies, Inc.) C:\Windows\system32\Lffax80n.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000042496 _____ (Microsoft Corporation) C:\Windows\system32\flxgdde.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\cmdlgde.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\cmct2de.dll
2020-07-30 23:29 - 2000-07-05 15:04 - 000010240 _____ (Microsoft Corporation) C:\Windows\system32\pcclpde.dll
2020-07-30 23:29 - 1998-10-08 15:58 - 000012800 _____ () C:\Windows\system32\PWUtility.dll
2020-07-30 23:29 - 1997-07-22 20:21 - 000099866 _____ (Microsoft Corporation) C:\Windows\system32\vb5de.dll
2020-07-30 23:29 - 1997-06-10 19:12 - 000373248 _____ (LEAD Technologies, Inc.) C:\Windows\system32\Ltocx80n.ocx
2020-07-30 23:29 - 1997-02-26 01:00 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\mfc40loc.dll
2020-07-30 23:29 - 1997-01-12 01:00 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\dtccm.dll
2020-07-30 23:29 - 1997-01-12 01:00 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\adme.dll
2020-07-30 23:29 - 1997-01-12 01:00 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\dtcutil.dll
2020-07-30 23:29 - 1997-01-12 01:00 - 000007168 _____ () C:\Windows\system32\dtctrace.dll
2020-07-30 23:28 - 2020-08-03 21:42 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-07-30 23:28 - 2020-07-30 23:28 - 000000000 ____D C:\Windows\system32\Adobe
2020-07-30 23:28 - 2020-07-30 23:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bosch Online Support
2020-07-30 23:28 - 2020-07-30 23:28 - 000000000 ____D C:\Program Files\Common Files\Spielberg DMS
2020-07-30 23:28 - 2010-11-01 18:26 - 000487424 _____ C:\Windows\esi_kl02.dat
2020-07-30 23:28 - 2005-01-19 16:42 - 000606208 _____ (Summit Software Company) C:\Windows\system32\igsnrn22.dll
2020-07-30 23:28 - 2005-01-19 16:42 - 000557056 _____ (SnowBound Software Corporation (www.Snowbnd.com)) C:\Windows\system32\snbd10dm.dll
2020-07-30 23:28 - 2005-01-19 16:42 - 000531968 _____ (SnowBound Software Corporation (www.Snowbnd.com)) C:\Windows\system32\snbd9dm.dll
2020-07-30 23:28 - 2005-01-19 16:42 - 000526336 _____ (SnowBound Software Corporation (www.Snowbnd.com)) C:\Windows\system32\snbd8w98.dll
2020-07-30 23:28 - 2005-01-19 16:42 - 000385536 _____ (Summit Software Company) C:\Windows\system32\igsncm22.dll
2020-07-30 23:28 - 2005-01-19 16:42 - 000125952 _____ (Summit Software Company) C:\Windows\system32\igsnpb22.dll
2020-07-30 23:28 - 2005-01-19 16:42 - 000086528 _____ (Summit Software Company) C:\Windows\system32\Igsncx22.dll
2020-07-30 23:28 - 2005-01-19 16:42 - 000038400 _____ (Summit Software Company) C:\Windows\system32\igsnol22.dll
2020-07-30 23:28 - 2005-01-19 16:42 - 000033280 _____ (Snowbound Software Corporation (www.Snowbnd.com)) C:\Windows\system32\snbdpl1.dll
2020-07-30 23:28 - 2005-01-19 16:42 - 000006967 _____ C:\Windows\system32\Browser.men
2020-07-30 23:28 - 2005-01-19 16:42 - 000006958 _____ C:\Windows\system32\browser.exa
2020-07-30 23:28 - 2004-05-04 11:17 - 002060288 _____ (Micrografx) C:\Windows\system32\acgm.dll
2020-07-30 23:28 - 2003-02-14 16:31 - 000655360 _____ C:\Windows\system32\dslang32.dll
2020-07-30 23:28 - 2001-07-03 20:05 - 000671744 _____ (Dieter Spielberg Document Management Software GmbH) C:\Windows\system32\DSScan.ocx
2020-07-30 23:28 - 2001-02-02 15:48 - 000123664 _____ (Microsoft Corporation) C:\Windows\system32\MSJINT35.DLL
2020-07-30 23:28 - 2000-08-21 00:00 - 001388544 _____ (Microsoft Corporation) C:\Windows\system32\temp.000
2020-07-30 23:28 - 2000-05-22 01:00 - 001066176 _____ (Microsoft Corporation) C:\Windows\system32\MSCOMCTL.OCX
2020-07-30 23:28 - 2000-05-22 01:00 - 000140488 _____ (Microsoft Corporation) C:\Windows\system32\COMDLG32.OCX
2020-07-30 23:28 - 2000-02-10 21:50 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\MSJTER35.DLL
2020-07-30 23:28 - 2000-02-01 15:45 - 000327680 _____ C:\Windows\system32\ldf251.dll
2020-07-30 23:28 - 1999-03-24 02:06 - 001046288 _____ (Microsoft Corporation) C:\Windows\system32\msjet35.dll
2020-07-30 23:28 - 1998-12-04 10:13 - 000415504 _____ (Microsoft Corporation) C:\Windows\system32\msrepl35.dll
2020-07-30 23:28 - 1998-06-18 01:00 - 000089360 _____ (Microsoft Corporation) C:\Windows\system32\vb5db.dll
2020-07-30 23:28 - 1997-06-23 02:00 - 000252176 _____ (Microsoft Corporation) C:\Windows\system32\Msrd2x35.dll
2020-07-30 23:28 - 1996-11-08 02:48 - 000368912 _____ (Microsoft Corporation) C:\Windows\system32\vbar332.dll
2020-07-30 23:25 - 2020-07-30 23:28 - 000000000 ____D C:\Program Files\Bosch
2020-07-30 23:25 - 2020-07-30 23:25 - 000000000 ____D C:\ESI
2020-07-30 23:24 - 2020-08-07 13:50 - 000000737 _____ C:\Windows\ESIDATA.ini
2020-07-30 23:24 - 1998-10-07 12:54 - 000354816 _____ (InstallShield Software Corporation) C:\Windows\IsUn0415.exe
2020-07-30 23:20 - 2020-08-03 16:09 - 000000000 __SHD C:\Users\admin\wc
2020-07-30 23:20 - 2020-07-30 23:20 - 000000000 __SHD C:\Users\admin\AppData\Roaming\wyUpdate AU
2020-07-30 23:19 - 2020-07-30 23:19 - 000000108 _____ C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2020-07-30 23:19 - 2020-07-30 23:19 - 000000000 ____D C:\ProgramData\Common Diagnostics
2020-07-30 23:18 - 2020-08-08 15:24 - 000057560 _____ C:\Users\admin\AppData\Local\GDIPFONTCACHEV1.DAT
2020-07-30 22:57 - 2020-08-08 16:18 - 001676344 _____ C:\Windows\system32\PerfStringBackup.INI
2020-07-30 22:54 - 2020-07-30 22:54 - 000000848 _____ C:\Users\admin\Desktop\Downloads.lnk
2020-07-30 22:52 - 2020-08-08 15:40 - 000000000 ____D C:\Users\admin
2020-07-30 22:52 - 2020-08-04 20:41 - 000000000 ____D C:\Users\admin\AppData\Local\VirtualStore
2020-07-30 22:52 - 2020-07-30 22:52 - 000001425 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2020-07-30 22:52 - 2020-07-30 22:52 - 000000020 ___SH C:\Users\admin\ntuser.ini
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Public\Documents\Moje wideo
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Public\Documents\Moje obrazy
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Public\Documents\Moja muzyka
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default\Ustawienia lokalne
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default\Szablony
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default\Moje dokumenty
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default\Menu Start
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default\Documents\Moje wideo
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default\Documents\Moje obrazy
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default\Documents\Moja muzyka
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default\Dane aplikacji
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historia
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default User\Ustawienia lokalne
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default User\Szablony
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default User\Moje dokumenty
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default User\Menu Start
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default User\Documents\Moje wideo
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default User\Documents\Moje obrazy
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default User\Documents\Moja muzyka
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default User\Dane aplikacji
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historia
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Dane aplikacji
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\admin\Ustawienia lokalne
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\admin\Szablony
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\admin\Moje dokumenty
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\admin\Menu Start
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\admin\Documents\Moje wideo
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\admin\Documents\Moje obrazy
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\admin\Documents\Moja muzyka
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\admin\Dane aplikacji
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\admin\AppData\Local\Historia
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\Users\admin\AppData\Local\Dane aplikacji
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\ProgramData\Ulubione
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\ProgramData\Szablony
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\ProgramData\Pulpit
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\ProgramData\Menu Start
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\ProgramData\Dokumenty
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\ProgramData\Documents\Moje wideo
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\ProgramData\Documents\Moje obrazy
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\ProgramData\Documents\Moja muzyka
2020-07-30 22:52 - 2020-07-30 22:52 - 000000000 _SHDL C:\ProgramData\Dane aplikacji
2020-07-30 22:52 - 2009-07-14 10:28 - 000000000 ____D C:\Users\admin\AppData\Roaming\Media Center Programs
2020-07-30 22:49 - 2020-07-30 22:49 - 000001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2020-07-30 22:49 - 2020-07-30 22:49 - 000001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2020-07-30 22:47 - 2020-07-30 22:47 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
==================== Jeden miesiąc (zmodyfikowane) ==================
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2020-08-08 16:18 - 2009-07-14 10:07 - 000742616 _____ C:\Windows\system32\perfh015.dat
2020-08-08 16:18 - 2009-07-14 10:07 - 000156684 _____ C:\Windows\system32\perfc015.dat
2020-08-08 16:18 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2020-08-08 16:01 - 2009-07-14 06:34 - 000009600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-08-08 16:01 - 2009-07-14 06:34 - 000009600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-08-08 15:58 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-08-08 15:12 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system32\NDF
2020-08-08 15:03 - 2009-07-14 04:03 - 028835840 _____ C:\Windows\system32\config\SOFTWARE.jv16pt_bak2
2020-08-08 15:03 - 2009-07-14 04:03 - 000262144 _____ C:\Windows\system32\config\DEFAULT.jv16pt_bak2
2020-08-08 14:31 - 2009-07-14 06:33 - 000265896 _____ C:\Windows\system32\FNTCACHE.DAT
2020-08-08 12:45 - 2009-07-14 01:43 - 006387200 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2020-08-06 20:02 - 2009-07-14 02:24 - 003415552 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2020-08-06 20:01 - 2009-07-14 02:14 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-08-06 20:01 - 2009-07-14 02:10 - 000136192 _____ (Microsoft Corporation) C:\Windows\system32\SoundRecorder.exe
2020-08-06 20:01 - 2009-07-14 02:02 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\tskill.exe
2020-08-06 20:01 - 2009-07-14 02:01 - 001043968 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2020-08-06 20:01 - 2009-07-14 01:57 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\taskkill.exe
2020-08-06 20:01 - 2009-07-14 01:48 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\SnippingTool.exe
2020-08-06 20:01 - 2009-07-14 01:41 - 000189952 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2020-08-06 20:01 - 2009-07-14 01:41 - 000189952 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2020-08-06 20:01 - 2009-07-14 01:40 - 000387072 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeui.exe
2020-08-06 20:01 - 2009-07-14 01:23 - 000272896 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2020-08-06 20:01 - 2009-07-14 01:23 - 000220672 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe
2020-08-06 20:00 - 2009-07-14 01:51 - 000229888 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2020-08-06 20:00 - 2009-07-14 01:40 - 000123392 _____ (Microsoft Corporation) C:\Windows\system32\control.exe
2020-08-06 20:00 - 2009-07-14 01:40 - 000096768 _____ (Microsoft Corporation) C:\Windows\system32\isoburn.exe
2020-08-06 20:00 - 2009-07-14 01:40 - 000026624 _____ (Microsoft Corporation) C:\Windows\system32\grpconv.exe
2020-08-06 20:00 - 2009-07-14 01:32 - 001411584 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2020-08-06 20:00 - 2009-07-14 01:25 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\colorcpl.exe
2020-08-06 20:00 - 2009-07-14 01:22 - 000311808 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
2020-08-06 20:00 - 2009-07-14 01:20 - 000313344 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2020-08-06 20:00 - 2009-07-14 01:20 - 000244224 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe
2020-08-06 20:00 - 2009-07-14 01:16 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\dinotify.exe
2020-08-06 20:00 - 2009-07-14 01:12 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\BdeUnlockWizard.exe
2020-08-06 19:59 - 2009-07-14 02:15 - 000812544 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe
2020-08-06 19:59 - 2009-07-14 02:09 - 000288768 _____ (Microsoft Corporation) C:\Windows\system32\unregmp2.exe
2020-08-06 19:59 - 2009-07-14 01:43 - 000186368 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2020-08-06 19:59 - 2009-07-14 01:41 - 000364544 _____ (Microsoft Corporation) C:\Windows\system32\StikyNot.exe
2020-08-06 19:59 - 2009-07-14 01:39 - 000532992 _____ (Microsoft Corporation) C:\Windows\system32\DisplaySwitch.exe
2020-08-06 19:59 - 2009-07-14 01:23 - 001141248 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2020-08-06 19:59 - 2009-07-14 01:20 - 000546816 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2020-08-06 19:59 - 2009-07-14 01:20 - 000142848 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe
2020-08-06 19:58 - 2009-07-14 01:41 - 000786432 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2020-08-06 19:56 - 2009-07-14 06:52 - 000000000 ____D C:\Program Files\DVD Maker
2020-08-06 19:56 - 2009-07-14 02:15 - 000532992 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe
2020-08-06 19:56 - 2009-07-14 01:51 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\bthudtask.exe
2020-08-06 19:56 - 2009-07-14 01:41 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2020-08-06 19:56 - 2009-07-14 01:41 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\rundll32.exe
2020-08-06 19:56 - 2009-07-14 01:27 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2020-08-06 19:55 - 2009-07-14 06:52 - 000000000 ____D C:\Program Files\Windows Sidebar
2020-08-06 19:55 - 2009-07-14 01:45 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\LocationNotifications.exe
2020-08-06 19:55 - 2009-07-14 01:39 - 000951808 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2020-08-06 19:55 - 2009-07-14 01:23 - 000596992 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2020-08-06 19:55 - 2009-07-14 01:12 - 000130560 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe
2020-08-06 15:34 - 2009-07-14 04:04 - 000000253 _____ C:\Windows\system.ini
2020-08-03 22:45 - 2009-07-14 06:54 - 000000000 ____D C:\Windows\system32\Tasks\WPD
2020-08-01 08:49 - 2009-07-14 04:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-07-30 23:41 - 2009-07-14 06:52 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2020-07-30 23:37 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system
2020-07-30 23:28 - 2009-07-14 04:04 - 000000509 _____ C:\Windows\win.ini
2020-07-30 22:52 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\rescache
2020-07-30 22:52 - 2009-07-14 04:37 - 000000000 ____D C:\Program Files\Windows NT
2020-07-30 22:49 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system32\sysprep
2020-07-30 22:43 - 2009-07-14 10:28 - 000000000 ____D C:\Windows\CSC
==================== SigCheck ============================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
C:\Windows\system32\userinit.exe
[2009-07-14 01:34] - [2009-07-14 03:14] - 000053760 _____ (Microsoft Corporation) CA37EFB2A0CE9419B9A2C8FC42231DCA
C:\Windows\system32\dllhost.exe
[2009-07-14 01:43] - [2009-07-14 03:14] - 000034816 _____ (Microsoft Corporation) E14DD01FC6FDC404A236DFFF8E5DBE97
==================== Koniec FRST.txt ========================