FRST.txt

Jak usunąć wirusa gmaegames.pro/redirect, gdy AdwCleaner i Avast zawodzą?

Mam ten sam problem co autor, i nic nie pomaga w usunięciu... Adwcleaner i avast, defender nic nie widzą... Wydzieliłem jako nowy temat. Nie podpinaj się pod cudze wątki. RADU23

Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 09.01.2019 01
Uruchomiony przez CrooliC (administrator) DESKTOP-94C63EF (12-01-2019 14:28:48)
Uruchomiony z C:\Users\CrooliC\Desktop\Nowy folder
Załadowane profile: CrooliC (Dostępne profile: CrooliC)
Platform: Windows 10 Home Wersja 1803 17134.523 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Opera)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegisterService.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\ProgramData\MobileBrServ\mbbService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Hi-Rez Studios) E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
(MSI) C:\Windows\SysWOW64\muachost.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
() C:\Huion Tablet\Huion Tablet.exe
(Valve Corporation) E:\Steam\Steam.exe
(Thesycon Software Solutions GmbH & Co. KG) C:\Program Files\LOUD Technologies Inc\Mackie USB Driver\W10_x64\Mackie_CplApp.exe
(Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegister.exe
(MSI) C:\Windows\SysWOW64\muachost.exe
(MSI) C:\Windows\SysWOW64\muachost.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files\Opera\57.0.3098.116\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
(Opera Software) C:\Program Files\Opera\57.0.3098.116\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [SecurityHealth] = & gt; C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [IAStorIcon] = & gt; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-08-25] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] = & gt; C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9235936 2017-10-04] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] = & gt; C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] = & gt; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems, Incorporated)
HKLM\...\Run: [XboxStat] = & gt; C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [TabletDriver] = & gt; C:\Huion Tablet\Huion Tablet.exe [217496 2018-08-28] ()
HKLM-x32\...\Run: [MSIRegister] = & gt; C:\MSI\MSIRegister\MSIRegister.exe [1262544 2017-07-11] (Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Super Charger] = & gt; C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1022928 2017-07-28] (MSI)
HKLM-x32\...\Run: [PWRISOVM.EXE] = & gt; C:\Program Files\PowerISO\PWRISOVM.EXE [455136 2018-02-28] (Power Software Ltd)
HKLM-x32\...\Run: [Adobe Creative Cloud] = & gt; C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] = & gt; C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] = & gt; C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [490760 2013-08-19] (CyberLink Corp.)
HKLM-x32\...\Run: [AvastUI.exe] = & gt; C:\Program Files\AVAST Software\Avast\AvLaunch.exe [261512 2019-01-12] (AVAST Software)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] = & gt; C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] = & gt; C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-1052853646-1771976291-2616205079-1001\...\Run: [Steam] = & gt; E:\Steam\steam.exe [3133216 2019-01-05] (Valve Corporation)
HKU\S-1-5-21-1052853646-1771976291-2616205079-1001\...\Run: [] = & gt; [X]
HKU\S-1-5-21-1052853646-1771976291-2616205079-1001\...\Run: [Power2GoExpress8] = & gt; [X]
HKU\S-1-5-21-1052853646-1771976291-2616205079-1001\...\Run: [CrooliC] = & gt; cmd.exe /c start www.dipladoks.org
HKU\S-1-5-21-1052853646-1771976291-2616205079-1001\...\MountPoints2: D - " D:\setup.exe "
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-18] (Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Huion Tablet.lnk [2018-08-28]
ShortcutTarget: Huion Tablet.lnk - & gt; C:\Huion Tablet\Huion Tablet.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mackie USB Driver Control Panel Autostart.lnk [2018-03-30]
ShortcutTarget: Mackie USB Driver Control Panel Autostart.lnk - & gt; C:\Program Files\LOUD Technologies Inc\Mackie USB Driver\W10_x64\Mackie_CplApp.exe (Thesycon Software Solutions GmbH & Co. KG)

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{0b850f7f-e504-476e-9953-1081f720dfc7}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{1bacdc40-ee8e-4fc9-927c-c3a1335f95c2}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{1ca9189a-ad08-4d78-9c7c-9541931f1239}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{5d669505-bae3-44d2-9574-3019de86c452}: [DhcpNameServer] 192.168.8.1 192.168.8.1

Internet Explorer:
==================

FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect - & gt; C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems)
FF Plugin-x32: @nvidia.com/3DVision - & gt; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-10-10] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - & gt; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-10-10] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - & gt; C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\CrooliC\AppData\Local\Google\Chrome\User Data\Default [2018-12-18]
CHR Extension: (Prezentacje) - C:\Users\CrooliC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-30]
CHR Extension: (Dokumenty) - C:\Users\CrooliC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-30]
CHR Extension: (Dysk Google) - C:\Users\CrooliC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-03-30]
CHR Extension: (YouTube) - C:\Users\CrooliC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-30]
CHR Extension: (Arkusze) - C:\Users\CrooliC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\CrooliC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-28]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\CrooliC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-10]
CHR Extension: (Gmail) - C:\Users\CrooliC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\CrooliC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR Extension: (Flash Video Downloader (FVD)) - C:\Users\CrooliC\AppData\Roaming\Opera Software\Opera Stable\Extensions\neacgcjokggofibnbfapeaejhclmpple [2018-04-10]

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-12] (Adobe Systems Incorporated)
R2 AESMService; C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe [3772120 2017-02-26] (Intel Corporation)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7834368 2019-01-12] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357816 2019-01-12] (AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-01-12] (AVAST Software)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-08-26] (EasyAntiCheat Ltd)
U2 HiPatchService; E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2018-03-28] (Hi-Rez Studios) [Brak podpisu cyfrowego]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [17992 2017-08-25] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [742704 2017-09-20] (Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [668472 2017-09-20] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [197264 2017-09-25] (Intel Corporation)
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [237424 2014-03-31] () [Brak podpisu cyfrowego]
R2 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [128976 2017-07-11] (Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [174032 2017-07-28] (MSI)
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [30904 2017-10-17] (Micro-Star Int'l Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [787440 2018-12-06] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [787440 2018-12-06] (NVIDIA Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-11] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-11] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; " C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe " -s NVDisplay.ContainerLocalSystem -f " C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log " -l 3 -d " C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem " -r -p 30000
R2 NvTelemetryContainer; " C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe " -s NvTelemetryContainer -f " C:\ProgramData\NVIDIA\NvTelemetryContainer.log " -l 3 -d " C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins " -r

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37304 2019-01-12] (AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [203488 2019-01-12] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [220688 2019-01-12] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196264 2019-01-12] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320888 2019-01-12] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [58160 2019-01-12] (AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-12] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [239808 2019-01-12] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46584 2019-01-12] (AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42488 2019-01-12] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [166472 2019-01-12] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111992 2019-01-12] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88144 2019-01-12] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034056 2019-01-12] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [474648 2019-01-12] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218056 2019-01-12] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [380144 2019-01-12] (AVAST Software)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R3 loudusbaudio; C:\WINDOWS\System32\drivers\loudusbaudio.sys [275104 2017-08-24] (Thesycon Software Solutions GmbH & Co. KG)
R3 loudusbaudioks; C:\WINDOWS\system32\DRIVERS\loudusbaudioks.sys [52896 2017-08-24] (Thesycon Software Solutions GmbH & Co. KG)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a5e9eb9bc021c27a\nvlddmkm.sys [20337080 2018-10-11] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2018-10-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2018-10-01] (NVIDIA Corporation)
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [5707264 2018-04-12] (Realtek Semiconductor Corporation )
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] ()
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] ()
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [22016 2018-04-12] (Microsoft Corporation)
R3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-03-16] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2018-12-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2018-12-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-11] (Microsoft Corporation)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2019-01-12 14:18 - 2019-01-12 14:28 - 000000000 ____D C:\Users\CrooliC\Desktop\Nowy folder
2019-01-12 12:55 - 2019-01-12 14:28 - 000000000 ____D C:\FRST
2019-01-12 12:43 - 2019-01-12 12:43 - 000002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2019-01-12 12:43 - 2019-01-12 12:43 - 000002152 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2019-01-12 12:43 - 2019-01-12 12:43 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\AVAST Software
2019-01-12 12:43 - 2019-01-12 12:43 - 000000000 ____D C:\Users\CrooliC\AppData\Local\AVAST Software
2019-01-12 12:42 - 2019-01-12 12:42 - 001034056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000474648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000380144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000361352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-01-12 12:42 - 2019-01-12 12:42 - 000320888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000239808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000220688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000218056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000203488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000196264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000166472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000111992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000088144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000058160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000046584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000042488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000037304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000015488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2019-01-12 12:42 - 2019-01-12 12:42 - 000003990 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-01-12 12:42 - 2019-01-12 12:42 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-01-12 12:42 - 2019-01-12 12:42 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2019-01-12 12:41 - 2019-01-12 12:42 - 000000000 ____D C:\ProgramData\AVAST Software
2019-01-12 12:41 - 2019-01-12 12:41 - 000000000 ____D C:\Program Files\AVAST Software
2019-01-12 10:48 - 2019-01-12 10:49 - 000000000 ____D C:\AdwCleaner
2019-01-11 20:23 - 2019-01-11 20:23 - 000000000 __HDC C:\ProgramData\{140CE139-D0F4-4EF9-9A3D-86818D04297A}
2019-01-11 19:33 - 2019-01-11 19:33 - 000000000 ____D C:\Users\CrooliC\Documents\Naughty Seal Audio
2019-01-11 19:33 - 2019-01-11 19:33 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\Naughty Seal Audio
2019-01-11 19:33 - 2019-01-11 19:33 - 000000000 ____D C:\ProgramData\Naughty Seal Audio
2019-01-11 19:33 - 2019-01-11 19:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Naughty Seal Audio
2019-01-09 20:52 - 2019-01-09 20:52 - 029238280 _____ C:\Users\CrooliC\Downloads\Sample Pack Afro Trap And Loops Prod DR MAFIA BEATS.rar
2019-01-09 20:05 - 2019-01-09 20:05 - 000064827 _____ C:\WINDOWS\unins001.dat
2019-01-09 20:05 - 2019-01-09 20:04 - 000718497 _____ C:\WINDOWS\unins001.exe
2019-01-09 19:09 - 2019-01-09 19:09 - 000000108 _____ C:\Users\CrooliC\AppData\Local\kritadisplayrc
2019-01-09 15:47 - 2019-01-09 15:47 - 000002261 _____ C:\Users\CrooliC\Downloads\Daredevil_Theme.mid
2019-01-09 15:00 - 2019-01-09 15:44 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\Synthesia
2019-01-09 14:59 - 2019-01-09 15:00 - 024869448 _____ (Synthesia LLC) C:\Users\CrooliC\Downloads\Synthesia-10.5-installer.exe
2019-01-09 11:05 - 2019-01-01 14:50 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-01-09 11:05 - 2019-01-01 14:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll
2019-01-09 11:05 - 2019-01-01 14:46 - 012710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-09 11:05 - 2019-01-01 14:45 - 000714752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2019-01-09 11:05 - 2019-01-01 14:45 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2019-01-09 11:05 - 2019-01-01 14:43 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-09 11:05 - 2019-01-01 14:20 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-09 11:05 - 2019-01-01 14:20 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll
2019-01-09 11:05 - 2019-01-01 14:18 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2019-01-09 11:05 - 2019-01-01 14:17 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2019-01-09 11:05 - 2019-01-01 08:14 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-09 11:05 - 2019-01-01 08:14 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-09 11:05 - 2019-01-01 08:14 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-09 11:05 - 2019-01-01 08:14 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-09 11:05 - 2019-01-01 08:14 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-01-09 11:05 - 2019-01-01 08:14 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-01-09 11:05 - 2019-01-01 08:13 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-09 11:05 - 2019-01-01 08:13 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-09 11:05 - 2019-01-01 08:13 - 000709728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-01-09 11:05 - 2019-01-01 08:13 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-09 11:05 - 2019-01-01 08:13 - 000170808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-09 11:05 - 2019-01-01 08:12 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-09 11:05 - 2019-01-01 08:12 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-09 11:05 - 2019-01-01 08:12 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-09 11:05 - 2019-01-01 08:12 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-09 11:05 - 2019-01-01 08:12 - 002421288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-09 11:05 - 2019-01-01 08:12 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-01-09 11:05 - 2019-01-01 08:12 - 000268304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-09 11:05 - 2019-01-01 08:12 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-09 11:05 - 2019-01-01 08:12 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-09 11:05 - 2019-01-01 07:55 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-09 11:05 - 2019-01-01 07:50 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-09 11:05 - 2019-01-01 07:50 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-09 11:05 - 2019-01-01 07:48 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-01-09 11:05 - 2019-01-01 07:48 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-09 11:05 - 2019-01-01 07:48 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2019-01-09 11:05 - 2019-01-01 07:47 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-09 11:05 - 2019-01-01 07:47 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-01-09 11:05 - 2019-01-01 07:46 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-01-09 11:05 - 2019-01-01 07:46 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-01-09 11:05 - 2019-01-01 07:46 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-09 11:05 - 2019-01-01 07:45 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-09 11:05 - 2019-01-01 07:45 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-09 11:05 - 2019-01-01 07:45 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-01-09 11:05 - 2019-01-01 07:44 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-01-09 11:05 - 2019-01-01 07:44 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-09 11:05 - 2019-01-01 07:44 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-09 11:05 - 2019-01-01 07:44 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2019-01-09 11:05 - 2019-01-01 07:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-09 11:05 - 2019-01-01 07:43 - 001805312 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-09 11:05 - 2019-01-01 07:42 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-09 11:05 - 2019-01-01 07:42 - 002247680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-09 11:05 - 2019-01-01 07:42 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-09 11:05 - 2019-01-01 07:42 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-09 11:05 - 2019-01-01 07:41 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-09 11:05 - 2019-01-01 07:41 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-09 11:05 - 2019-01-01 07:41 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-09 11:05 - 2019-01-01 07:41 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-09 11:05 - 2019-01-01 07:37 - 006571584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-09 11:05 - 2019-01-01 07:37 - 002478664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-09 11:05 - 2019-01-01 07:37 - 002253696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-09 11:05 - 2019-01-01 07:37 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-09 11:05 - 2019-01-01 07:37 - 000880048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2019-01-09 11:05 - 2019-01-01 07:37 - 000581808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-01-09 11:05 - 2019-01-01 07:37 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-09 11:05 - 2019-01-01 07:29 - 022016512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-09 11:05 - 2019-01-01 07:22 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-09 11:05 - 2019-01-01 07:17 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-01-09 11:05 - 2019-01-01 07:16 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-09 11:05 - 2019-01-01 07:16 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-01-09 11:05 - 2019-01-01 07:16 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2019-01-09 11:05 - 2019-01-01 07:15 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-01-09 11:05 - 2019-01-01 07:15 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-09 11:05 - 2019-01-01 07:15 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-09 11:05 - 2019-01-01 07:15 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-01-09 11:05 - 2019-01-01 07:14 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-09 11:05 - 2019-01-01 07:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-09 11:05 - 2019-01-01 07:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-09 11:05 - 2019-01-01 07:13 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-09 11:05 - 2019-01-01 07:13 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-09 11:05 - 2019-01-01 07:13 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-01-09 11:05 - 2019-01-01 07:12 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-09 11:05 - 2019-01-01 07:12 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-09 11:05 - 2019-01-01 07:12 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-09 11:05 - 2019-01-01 07:12 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2019-01-09 11:05 - 2019-01-01 06:23 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-01-09 11:05 - 2018-12-19 05:49 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-07 17:48 - 2019-01-07 17:48 - 000718497 _____ C:\WINDOWS\unins000.exe
2019-01-07 17:48 - 2019-01-07 17:48 - 000008154 _____ C:\WINDOWS\unins000.dat
2019-01-07 17:48 - 2013-10-09 12:18 - 000311296 _____ C:\WINDOWS\system32\r8bsrc.dll
2019-01-07 17:48 - 2011-05-23 23:59 - 005857280 _____ C:\WINDOWS\system32\MtxVec.Spld4.dll
2019-01-07 17:48 - 2010-01-08 00:27 - 019656192 _____ (DewResearch) C:\WINDOWS\system32\MtxVec.Lapack4d.dll
2019-01-07 17:48 - 2010-01-08 00:27 - 015143424 _____ (DewResearch) C:\WINDOWS\system32\MtxVec.Fft.dll
2019-01-07 17:48 - 2010-01-08 00:27 - 008947712 _____ (DewResearch) C:\WINDOWS\system32\MtxVec.Random.dll
2019-01-07 17:48 - 2010-01-08 00:27 - 006683648 _____ (DewResearch) C:\WINDOWS\system32\MtxVec.Vmld.dll
2019-01-07 17:48 - 2010-01-08 00:27 - 002355200 _____ (DewResearch) C:\WINDOWS\system32\MtxVec.Sparse4d.dll
2019-01-07 17:48 - 2010-01-06 22:33 - 002354176 _____ C:\WINDOWS\system32\MtxVec.Vml4d.dll
2019-01-07 17:48 - 2008-11-06 05:29 - 000543928 _____ (Intel Corporation) C:\WINDOWS\system32\libiomp5md.dll
2019-01-07 14:38 - 2019-01-12 10:54 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\Plogue
2019-01-07 14:38 - 2019-01-07 14:38 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\Plogue Art et Technologie, Inc
2019-01-07 14:37 - 2019-01-07 14:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plogue
2019-01-07 14:37 - 2019-01-07 14:37 - 000000000 ____D C:\Program Files\Plogue
2019-01-06 22:54 - 2019-01-06 22:54 - 000000000 __HDC C:\ProgramData\{E773067E-73F3-4EC3-8DE2-A5A5A881CD44}
2019-01-06 22:54 - 2019-01-06 22:54 - 000000000 __HDC C:\ProgramData\{6718B739-E410-4946-AEF2-3C4D285DA260}
2019-01-06 22:54 - 2019-01-06 22:54 - 000000000 __HDC C:\ProgramData\{47BD9C62-D13D-4477-BBB7-775CFDD3DD90}
2019-01-06 22:54 - 2019-01-06 22:54 - 000000000 __HDC C:\ProgramData\{29717DE6-69BF-4629-B743-C10C0EB6114F}
2019-01-06 22:53 - 2019-01-06 22:53 - 000000000 __HDC C:\ProgramData\{F01FDEBE-19FE-4843-B081-BF0240C4A7E5}
2019-01-06 22:48 - 2019-01-06 22:48 - 000000000 __HDC C:\ProgramData\{92919916-8ED1-4FD4-ACE4-04FDC01ADD64}
2019-01-06 22:48 - 2019-01-06 22:48 - 000000000 ____D C:\Users\Public\Documents\Native Instruments
2019-01-06 22:44 - 2019-01-06 22:44 - 000000000 __HDC C:\ProgramData\{81CEA7FA-B451-421B-A524-E55974D1B295}
2019-01-06 22:34 - 2019-01-07 14:25 - 000000000 ____D C:\Users\CrooliC\Documents\Native Instruments
2019-01-06 22:31 - 2019-01-06 22:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2019-01-06 22:31 - 2019-01-06 22:31 - 000000000 __HDC C:\ProgramData\{47094A79-73AA-41BF-BEB3-757A1003C902}
2019-01-06 22:26 - 2019-01-06 22:27 - 060632900 _____ C:\Users\CrooliC\Downloads\Native_Access_Installer.zip
2019-01-06 21:21 - 2019-01-06 21:21 - 000000000 ____D C:\Program Files\Vstplugins
2019-01-06 21:15 - 2019-01-06 21:25 - 000000000 ____D C:\Users\CrooliC\Documents\Flux
2019-01-06 21:15 - 2019-01-06 21:25 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\Flux
2019-01-06 21:15 - 2019-01-06 21:15 - 000000000 ____D C:\Users\Public\Flux
2019-01-06 21:13 - 2019-01-06 21:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flux
2019-01-06 21:13 - 2019-01-06 21:13 - 000000000 ____D C:\ProgramData\Apple
2019-01-06 19:46 - 2019-01-06 19:46 - 000000000 ____D C:\Users\CrooliC\Documents\brunsandspork
2019-01-06 19:46 - 2019-01-06 19:46 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\brunsandspork
2019-01-06 19:46 - 2019-01-06 19:46 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\brunsandspork
2019-01-06 19:37 - 2019-01-06 19:40 - 056234853 _____ C:\Users\CrooliC\Downloads\grooove_bpb_win.zip
2019-01-06 18:26 - 2019-01-06 18:26 - 000000475 _____ C:\Users\CrooliC\Documents\mtpdk.mid
2019-01-06 18:03 - 2019-01-06 18:03 - 000000000 ____D C:\Users\CrooliC\AppData\Local\VOCALOID5
2019-01-06 18:02 - 2019-01-06 18:03 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\VOCALOID5
2019-01-06 18:02 - 2019-01-06 18:02 - 000000000 ____D C:\Users\CrooliC\AppData\Local\Yamaha
2019-01-06 11:57 - 2019-01-06 12:22 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\ImgBurn
2019-01-06 11:50 - 2019-01-06 11:50 - 003469871 _____ (LIGHTNING UK!) C:\Users\CrooliC\Downloads\SetupImgBurn_2.5.8.0.exe
2019-01-06 11:50 - 2019-01-06 11:50 - 000001950 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2019-01-06 11:50 - 2019-01-06 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2019-01-06 11:50 - 2019-01-06 11:50 - 000000000 ____D C:\Program Files (x86)\ImgBurn
2019-01-06 11:06 - 2019-01-06 11:27 - 2781932875 _____ C:\Users\CrooliC\Downloads\pl_windows_vista_with_sp2_x86_dvd_x15-36306.iso.rar
2019-01-05 20:29 - 2019-01-05 22:45 - 1276578950 _____ C:\Users\CrooliC\Downloads\I tak cię kocham The Big Sick (2017) - Filicc - filiser filmy i seriale online.mp4
2019-01-05 18:12 - 2019-01-05 18:12 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\Cakewalk
2019-01-05 18:11 - 2019-01-05 18:11 - 000000000 ____D C:\Program Files\Cakewalk
2019-01-05 18:10 - 2019-01-05 18:10 - 000000813 _____ C:\Users\Public\Desktop\Cakewalk by BandLab.lnk
2019-01-05 18:10 - 2019-01-05 18:10 - 000000000 ____D C:\Users\CrooliC\Documents\Cakewalk
2019-01-05 18:10 - 2019-01-05 18:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cakewalk
2019-01-05 18:10 - 2019-01-05 18:10 - 000000000 ____D C:\Program Files\Common Files\Propellerhead Software
2019-01-05 18:09 - 2019-01-05 18:11 - 000000000 ____D C:\ProgramData\Cakewalk
2019-01-05 18:09 - 2012-06-20 16:38 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71.dll
2019-01-05 18:09 - 2012-06-20 16:38 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71u.dll
2019-01-05 18:09 - 2012-06-20 16:38 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp71.dll
2019-01-05 18:09 - 2012-06-20 16:38 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp70.dll
2019-01-05 18:09 - 2012-06-20 16:38 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr71.dll
2019-01-05 18:09 - 2012-06-20 16:38 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr70.dll
2019-01-05 17:56 - 2019-01-11 19:35 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\bandlab-assistant
2019-01-05 17:56 - 2019-01-05 17:56 - 000002496 _____ C:\Users\CrooliC\Desktop\BandLab Assistant.lnk
2019-01-05 17:56 - 2019-01-05 17:56 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BandLab
2019-01-05 17:56 - 2019-01-05 17:56 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\BandLab Assistant
2019-01-04 21:13 - 2019-01-04 21:13 - 007127416 _____ (VS Revo Group ) C:\Users\CrooliC\Downloads\revosetup.exe
2019-01-04 21:13 - 2019-01-04 21:13 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2019-01-04 21:13 - 2019-01-04 21:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2019-01-04 21:13 - 2019-01-04 21:13 - 000000000 ____D C:\Program Files\VS Revo Group
2019-01-04 19:44 - 2019-01-04 19:44 - 017015680 _____ C:\Users\CrooliC\Downloads\ccsetup551.zip
2018-12-31 14:04 - 2018-12-31 14:04 - 000003580 _____ C:\WINDOWS\System32\Tasks\CrooliC
2018-12-29 23:23 - 2018-12-30 13:59 - 003141632 _____ C:\Users\CrooliC\Desktop\kapcer coloring.sai
2018-12-29 19:43 - 2018-12-29 20:44 - 1141327769 _____ C:\Users\CrooliC\Downloads\Szpieg ktory mnie rzucił.mp4
2018-12-28 00:21 - 2018-12-28 00:21 - 000000000 ____D C:\Users\CrooliC\AppData\Local\Tempzxpsignb625836836865742
2018-12-28 00:21 - 2018-12-28 00:21 - 000000000 ____D C:\Users\CrooliC\AppData\Local\Tempzxpsigna61687c8a005d795
2018-12-28 00:21 - 2018-12-28 00:21 - 000000000 ____D C:\Users\CrooliC\AppData\Local\Tempzxpsign6d1e2a041503cf26
2018-12-28 00:21 - 2018-12-28 00:21 - 000000000 ____D C:\Users\CrooliC\AppData\Local\Tempzxpsign1c430fe5b59c7520
2018-12-27 23:54 - 2018-12-27 23:54 - 000000681 _____ C:\Users\Public\Desktop\MediBang Paint Pro.lnk
2018-12-27 23:54 - 2018-12-27 23:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Medibang
2018-12-27 23:54 - 2018-12-14 13:42 - 000703696 _____ C:\WINDOWS\system32\MdpThumb64.dll
2018-12-27 23:28 - 2019-01-09 19:09 - 000016945 _____ C:\Users\CrooliC\AppData\Local\kritarc
2018-12-27 23:28 - 2018-12-30 16:33 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\krita
2018-12-27 23:28 - 2018-12-27 23:28 - 000000000 ____D C:\Users\CrooliC\AppData\Local\krita
2018-12-27 23:27 - 2018-12-27 23:27 - 000000737 _____ C:\Users\Public\Desktop\Krita.lnk
2018-12-27 23:27 - 2018-12-27 23:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Krita
2018-12-27 23:26 - 2018-12-27 23:27 - 041466848 _____ (Medibang ) C:\Users\CrooliC\Downloads\MediBangPaintProSetup-21.0-64bit.exe
2018-12-27 23:22 - 2018-12-27 23:23 - 103841264 _____ (Krita Foundation) C:\Users\CrooliC\Downloads\krita-x64-4.1.7-setup.exe
2018-12-27 10:54 - 2018-12-27 10:55 - 000000000 ___RD C:\Users\CrooliC\Documents\Scanned Documents
2018-12-27 10:54 - 2018-12-27 10:54 - 000000000 ____D C:\Users\CrooliC\Documents\Fax
2018-12-22 21:26 - 2018-12-22 21:27 - 052230560 _____ ( ) C:\Users\CrooliC\Downloads\MelodicsV2Installer.exe
2018-12-22 00:14 - 2018-12-22 00:14 - 008817362 _____ C:\Users\CrooliC\Downloads\RPS - Shutdown Vol. 1.zip
2018-12-21 17:15 - 2018-12-21 19:15 - 000000000 ____D C:\WINDOWS\Minidump
2018-12-20 09:04 - 2018-12-14 08:29 - 001130760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-12-20 09:04 - 2018-12-14 08:25 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-12-20 09:04 - 2018-12-14 08:21 - 001457240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-12-20 09:04 - 2018-12-14 08:21 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-12-20 09:04 - 2018-12-14 08:21 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-12-20 09:04 - 2018-12-14 08:21 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-12-20 09:04 - 2018-12-14 08:21 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-12-20 09:04 - 2018-12-14 08:10 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-12-20 09:04 - 2018-12-14 08:07 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-12-20 09:04 - 2018-12-14 07:55 - 003396608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-12-20 09:04 - 2018-12-14 07:55 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-12-20 09:04 - 2018-12-14 07:54 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-12-20 09:04 - 2018-12-14 07:54 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-12-20 09:04 - 2018-12-14 07:52 - 002173440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-12-20 09:04 - 2018-12-14 07:52 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-12-20 09:04 - 2018-12-14 07:51 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-12-20 09:04 - 2018-12-14 07:50 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-12-17 09:37 - 2018-12-17 09:37 - 000000000 ____D C:\Users\CrooliC\Desktop\brush_settings_for_paint_tool_sai_by_sirwendigo_d8_by_docwendigo-dbmkvo4
2018-12-15 16:09 - 2018-12-15 16:09 - 000003628 _____ C:\WINDOWS\System32\Tasks\G50NewVer-GmTaskPlan

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2019-01-12 14:27 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-12 14:23 - 2018-05-14 07:59 - 001766926 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-12 14:23 - 2018-04-12 16:51 - 000783372 _____ C:\WINDOWS\system32\perfh015.dat
2019-01-12 14:23 - 2018-04-12 16:51 - 000152032 _____ C:\WINDOWS\system32\perfc015.dat
2019-01-12 14:23 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-01-12 14:19 - 2018-03-30 19:28 - 000000000 ____D C:\ProgramData\NVIDIA
2019-01-12 14:17 - 2018-05-14 07:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-12 14:17 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-12 14:15 - 2018-05-14 07:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-12 12:42 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-01-12 10:56 - 2018-05-14 08:32 - 000000000 ____D C:\Program Files (x86)\Syncrosoft
2019-01-12 10:44 - 2018-04-15 10:53 - 000000000 ____D C:\Users\CrooliC\AppData\Local\Adobe
2019-01-11 22:13 - 2018-04-11 21:49 - 000000000 ____D C:\Program Files\Common Files\VST3
2019-01-11 20:23 - 2018-04-14 13:11 - 000000000 ____D C:\Program Files\Common Files\Native Instruments
2019-01-11 20:22 - 2018-04-01 16:55 - 000000000 ____D C:\Users\CrooliC\AppData\Local\CrashDumps
2019-01-11 14:58 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-09 21:07 - 2018-05-14 07:58 - 000004000 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1522440877
2019-01-09 21:07 - 2018-03-30 21:14 - 000001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk
2019-01-09 21:07 - 2018-03-30 20:58 - 000000000 ____D C:\Program Files\Opera
2019-01-09 20:00 - 2018-03-30 22:11 - 000000000 ____D C:\PaintToolSAI
2019-01-09 11:08 - 2018-05-14 07:54 - 000284624 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-01-09 11:08 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-09 11:08 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-09 11:05 - 2018-03-30 19:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-09 11:04 - 2018-03-30 19:58 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-08 16:41 - 2018-06-08 20:40 - 000004704 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-01-08 16:41 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-01-08 16:41 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-01-07 23:46 - 2018-05-14 18:32 - 000007168 _____ C:\Users\CrooliC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-01-07 14:16 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-06 23:01 - 2018-04-14 13:28 - 000000000 ____D C:\Users\CrooliC\AppData\Local\Native Instruments
2019-01-06 22:53 - 2018-04-14 13:11 - 000000000 ____D C:\Program Files\Native Instruments
2019-01-06 22:43 - 2018-03-30 17:33 - 000000000 ____D C:\ProgramData\Package Cache
2019-01-06 22:28 - 2018-03-30 20:31 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-01-06 19:44 - 2018-04-30 16:11 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\Maize Sampler Player
2019-01-06 12:08 - 2018-04-18 10:32 - 000000000 ____D C:\ProgramData\CyberLink
2019-01-05 18:10 - 2018-12-02 20:23 - 000000000 ____D C:\ProgramData\Overloud
2019-01-04 22:10 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-04 21:46 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-04 19:45 - 2018-05-13 14:57 - 000000000 ___DC C:\WINDOWS\Panther
2019-01-02 20:41 - 2018-04-12 00:41 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 20:41 - 2018-04-12 00:41 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-02 17:56 - 2018-03-30 22:23 - 000000000 ____D C:\Users\CrooliC\Desktop\Rysunki
2018-12-31 14:05 - 2018-04-09 09:41 - 000000000 ____D C:\ProgramData\Epic
2018-12-28 00:21 - 2018-04-15 10:56 - 000000033 _____ C:\Users\CrooliC\AppData\Roaming\AdobeWLCMCache.dat
2018-12-22 21:28 - 2018-04-01 16:48 - 000000000 ____D C:\Users\CrooliC\AppData\Local\NVIDIA
2018-12-22 00:36 - 2018-05-14 07:55 - 000000000 ____D C:\Users\CrooliC
2018-12-21 14:03 - 2018-05-14 07:58 - 000003688 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-94C63EF-CrooliC
2018-12-20 17:58 - 2018-05-14 07:58 - 000003382 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1052853646-1771976291-2616205079-1001
2018-12-20 17:58 - 2018-05-14 07:55 - 000002462 _____ C:\Users\CrooliC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-12-20 17:58 - 2018-03-30 22:23 - 000000000 ___RD C:\Users\CrooliC\OneDrive
2018-12-19 19:06 - 2018-05-14 07:58 - 000003568 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-12-19 19:06 - 2018-05-14 07:58 - 000003444 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-12-18 11:55 - 2018-09-01 16:12 - 000000000 ____D C:\Users\CrooliC\AppData\Local\My Family Tree
2018-12-18 09:09 - 2018-03-30 20:32 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-16 12:42 - 2018-05-14 07:58 - 000024768 _____ C:\WINDOWS\diagwrn.xml
2018-12-16 12:42 - 2018-05-14 07:58 - 000024768 _____ C:\WINDOWS\diagerr.xml
2018-12-16 12:25 - 2018-04-11 22:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-12-16 12:22 - 2018-09-15 18:23 - 000000000 ___HD C:\$WINDOWS.~BT
2018-12-16 12:22 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\Registration
2018-12-15 18:25 - 2018-04-01 16:48 - 000000000 ____D C:\Users\CrooliC\AppData\Local\NVIDIA Corporation
2018-12-15 18:06 - 2018-03-30 19:28 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-12-15 16:26 - 2018-04-01 16:20 - 000000000 ____D C:\Users\CrooliC\AppData\Local\ElevatedDiagnostics
2018-12-14 23:06 - 2018-04-11 16:25 - 000000000 ____D C:\Users\CrooliC\AppData\Roaming\Overloud
2018-12-14 23:00 - 2018-09-19 22:26 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-14 23:00 - 2018-09-19 22:26 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-14 23:00 - 2018-09-19 22:26 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-14 23:00 - 2018-09-19 22:26 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-14 23:00 - 2018-09-19 22:26 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-14 23:00 - 2018-09-16 19:23 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-14 23:00 - 2018-05-14 07:58 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-14 23:00 - 2018-05-14 07:58 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-14 23:00 - 2018-05-14 07:58 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-14 23:00 - 2018-05-14 07:58 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-14 23:00 - 2018-05-14 07:58 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-12-14 23:00 - 2018-03-30 19:28 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-12-14 23:00 - 2018-03-30 19:28 - 000000000 ____D C:\Program Files\NVIDIA Corporation

==================== Pliki w katalogu głównym wybranych folderów =======

2018-04-15 10:56 - 2018-12-28 00:21 - 000000033 _____ () C:\Users\CrooliC\AppData\Roaming\AdobeWLCMCache.dat
2018-05-14 18:32 - 2019-01-07 23:46 - 000007168 _____ () C:\Users\CrooliC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-01-09 19:09 - 2019-01-09 19:09 - 000000108 _____ () C:\Users\CrooliC\AppData\Local\kritadisplayrc
2018-12-27 23:28 - 2019-01-09 19:09 - 000016945 _____ () C:\Users\CrooliC\AppData\Local\kritarc
2018-09-28 09:35 - 2018-09-28 09:35 - 000000000 _____ () C:\Users\CrooliC\AppData\Local\oobelibMkey.log

==================== Bamital & volsnap ======================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\WINDOWS\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo

LastRegBack: 2018-05-14 07:54

==================== Koniec FRST.txt ============================