wklejto.pl

Dodane przez: ~Anonim (2020-09-08 13:04) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
527.
528.
529.
530.
531.
532.
533.
534.
535.
536.
537.
538.
539.
540.
541.
542.
543.
544.
545.
546.
547.
548.
549.
550.
551.
552.
553.
554.
555.
556.
557.
558.
559.
560.
561.
562.
563.
564.
565.
566.
567.
568.
569.
570.
571.
572.
573.
574.
575.
576.
577.
578.
579.
580.
581.
582.
583.
584.
585.
586.
587.
588.
589.
590.
591.
592.
593.
594.
595.
596.
597.
598.
599.
600.
601.
602.
603.
604.
605.
606.
607.
608.
609.
610.
611.
612.
613.
614.
615.
616.
617.
618.
619.
620.
621.
622.
623.
624.
625.
626.
627.
628.
629.
630.
631.
632.
633.
634.
635.
636.
637.
638.
639.
640.
641.
642.
643.
644.
645.
646.
647.
648.
649.
650.
651.
652.
653.
654.
655.
656.
657.
658.
659.
660.
661.
662.
663.
664.
665.
666.
667.
668.
669.
670.
671.
672.
673.
674.
675.
676.
677.
678.
679.
680.
681.
682.
683.
684.
685.
686.
687.
688.
689.
690.
691.
692.
693.
694.
695.
696.
697.
698.
699.
700.
701.
702.
703.
704.
705.
706.
707.
708.
709.
710.
711.
712.
713.
714.
715.
716.
717.
718.
719.
720.
721.
722.
723.
724.
725.
726.
727.
728.
729.
730.
731.
732.
733.
734.
735.
736.
737.
738.
739.
740.
741.
742.
743.
744.
745.
746.
747.
748.
749.
750.
751.
752.
753.
754.
755.
756.
757.
758.
759.
760.
761.
762.
763.
764.
765.
766.
767.
768.
769.
770.
771.
772.
773.
774.
775.
776.
777.
778.
779.
780.
781.
782.
783.
784.
785.
786.
787.
788.
789.
790.
791.
792.
793.
794.
795.
796.
797.
798.
799.
800.
801.
802.
803.
804.
805.
806.
807.
808.
809.
810.
811.
812.
813.
814.
815.
816.
817.
818.
819.
820.
821.
822.
823.
824.
825.
826.
827.
828.
829.
830.
831.
832.
833.
834.
835.
836.
837.
838.
839.
840.
841.
842.
843.
844.
845.
846.
847.
848.
849.
850.
851.
852.
853.
854.
855.
856.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 06-09-2020
Uruchomiony przez OEM1 (administrator)  ANOVI (LENOVO 20250) (07-09-2020 13:59:15)
Uruchomiony z C:\Users\OEM1\Desktop\FRST
Załadowane profile: OEM1
Platform: Windows 10 Home Wersja 1909 18363.1016 (X64) Język: Polski (Polska)
Domyślna przeglądarka: FF
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 
==================== Procesy (filtrowane) =================
 
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
 
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Chaos Software Ltd. -> ) [Brak podpisu cyfrowego] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe
(Chaos Software Ltd. -> ) C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe
(Chaos Software Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\swrm.exe
(Chaos Software, Ltd) [Brak podpisu cyfrowego] C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vrayneui-win32-x64\vrayneui.exe <5>
(Dolby Laboratories, Inc. -> Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe <2>
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\MobileBrServ\mbbService.exe
(IDT, Inc.) [Brak podpisu cyfrowego] C:\Program Files\IDT\WDM\stacsv64.exe
(IDT, Inc.) [Brak podpisu cyfrowego] C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Intel Wireless Display -> Intel) C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
(Intel(R) Corporation) [Brak podpisu cyfrowego] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2007.1.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20032.12611.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11>
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Trimble Inc. -> ) C:\Program Files\SketchUp\SketchUp 2020\sketchup_webhelper.exe <2>
(Trimble Inc. -> Trimble, Inc.) [Brak podpisu cyfrowego] C:\Program Files\SketchUp\SketchUp 2020\SketchUp.exe
(WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(ZWCAD Software Co.,LTD -> ) C:\Program Files\ZWSOFT\ZWCAD 2018\ZWCAD.exe
 
==================== Rejestr (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
 
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [DolbyTrayApp] => c:\program files (x86)\Dolby Home Theater v4\pcee4.exe [508656 2012-08-31] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-09-14] (Lenovo (Beijing) Limited -> Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15794160 2013-12-11] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80368 2013-12-11] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [185648 2020-09-01] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-07-04] (IDT, Inc.) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-30] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
HKLM-x32\...\Run: [Family Tree Builder Update] => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [17497264 2017-08-22] (MyHeritage (USA) Inc. -> MyHeritage)
HKLM-x32\...\Run: [PDFHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2013-04-08] (Brother Industries, Ltd.) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4522496 2013-03-22] (Brother Industries, Ltd.) [Brak podpisu cyfrowego]
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672 2015-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro)
HKLM-x32\...\Run: [kissq] => C:\Users\OEM1\AppData\Local\Temp\kissq.exe************* <==== UWAGA
HKU\S-1-5-21-3948835319-1470083923-2527900465-1002\...\Run: [oiawmlye] => "C:\Users\OEM1\smmdoxoq.exe"
HKU\S-1-5-21-3948835319-1470083923-2527900465-1002\...\Policies\Explorer: [] 
HKU\S-1-5-21-3948835319-1470083923-2527900465-1002\...\MountPoints2: {4d724360-7245-11e5-beb3-0c8bfdc58e3c} - "E:\AutoRun.exe" 
HKU\S-1-5-18\...\Winlogon: [Shell] C:\WINDOWS\explorer.exe [4625184 2020-08-12] (Microsoft Windows -> Microsoft Corporation) <==== UWAGA
HKLM\...\Print\Monitors\PDFill Writer Monitor: C:\Program Files (x86)\PlotSoft\PDFill\PDFWriter\Driver\PDFillWriterMon.dll [36176 2016-11-19] (PlotSoft LLC -> Windows (R) Codename Longhorn DDK provider)
HKLM\Software\...\AppCompatFlags\Custom\GDFirewallTray.exe: [{97a7185d-397f-4652-a72c-d3a08820d734}.sdb] -> G DATA Firewall Helper
HKLM\Software\...\AppCompatFlags\InstalledSDB\{97a7185d-397f-4652-a72c-d3a08820d734}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{97a7185d-397f-4652-a72c-d3a08820d734}.sdb [2018-01-09]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.83\Installer\chrmstp.exe [2020-08-26] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{d0869df6-64b0-4289-b483-9bff61394420}] -> 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2018-02-19]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Network Server.lnk [2018-02-19]
ShortcutTarget: Network Server.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA
 
==================== Zaplanowane zadania (filtrowane) ============
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {169008FB-DB4B-4B28-83D4-25900121FBDF} - \Microsoft\Windows\Setup\EOSNotify -> Brak pliku <==== UWAGA
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {40E43975-BC66-440D-84E4-D510D04948B5} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5284BC6E-002B-4A4A-95B0-FD83FFFACB56} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208208 2020-08-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {5D91DCBA-C166-454B-AB2D-B59FEDF059D6} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [508656 2012-08-31] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {70B916D5-8679-4A74-9EDB-1C6FC136148D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {82EC1418-6214-4435-A9BB-74D0DBC24EB8} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [660688 2020-09-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {8BC5A2D6-73D5-4907-B192-7BFD784534E0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8C0F405E-2363-4C76-A7CB-566E80C8D6CF} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {8C82226F-0F32-4F0D-BEA6-917F8B51363F} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe [257824 2013-03-08] (Intel® Services Manager -> Intel Corporation)
Task: {A0D38D8D-CA09-4DA3-A0A1-D51BDB4A8CCE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1336400 2020-07-08] (Adobe Inc. -> Adobe Inc.)
Task: {A5E94A94-05EF-4540-B6E1-6F722628FB58} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A66C71FF-F2F3-4DE4-B785-7411F2EE56BD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3506584 2020-08-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {B65F3AA6-BBB0-47FD-9191-8023334AF129} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3506584 2020-08-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD3D208E-0001-406C-AD7D-E1FD34EFF637} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C3FF86F8-00D3-41B0-829F-388A94A683D1} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208208 2020-08-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CBF6DB39-7472-497A-8C69-D305EDF2E36E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF29DBA1-F8E3-4CBB-8BBB-C0F870B2007D} - System32\Tasks\ISM-UpdateService-e57b59e7-5862-4250-9ce0-76fb411dc0d2-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe [257824 2013-03-08] (Intel® Services Manager -> Intel Corporation)
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {EEB1A82A-8D9D-4630-9CF6-73EA2F11D039} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23545792 2020-07-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {F3CBCCB7-7EA9-472D-89E6-2D5CD3C25C79} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23545792 2020-07-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {FA11181A-2E79-4D69-BE77-0539E65D272C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FEFD72D0-BB3D-412F-A172-6C376571D1AF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
 
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
 
 
==================== Internet (filtrowane) ====================
 
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
 
Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{053dd367-583b-473b-8db6-c5d315ff98cd}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{06fcaafb-4feb-4474-aa3e-01e30efd1d78}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{424d92ab-05ec-48e9-9965-3c1850745972}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{70781391-7A33-45D7-AE83-C4463FBA7033}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8233300d-9300-420c-a06e-bfe36bf52359}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{C422DD51-B4DD-46E5-A97F-57367085D184}: [DhcpNameServer] 192.168.0.1
 
Internet Explorer:
==================
HKU\S-1-5-21-3948835319-1470083923-2527900465-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BC180101&iDate=2020-09-07 06:14:47&bName=
HKU\S-1-5-21-3948835319-1470083923-2527900465-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-3948835319-1470083923-2527900465-1002 -> DefaultScope {FCC97E89-460F-4C53-B3A9-98C0F26E5419} URL = 
SearchScopes: HKU\S-1-5-21-3948835319-1470083923-2527900465-1002 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3948835319-1470083923-2527900465-1002 -> {FCC97E89-460F-4C53-B3A9-98C0F26E5419} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation) [Brak podpisu cyfrowego]
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2020-06-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
 
Edge: 
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\OEM1\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-07]
 
FireFox:
========
FF DefaultProfile: ivzczqft.default
FF ProfilePath: C:\Users\OEM1\AppData\Roaming\Mozilla\Firefox\Profiles\ivzczqft.default [2020-09-07]
FF Homepage: Mozilla\Firefox\Profiles\ivzczqft.default -> hxxps://www.google.pl/
FF NewTab: Mozilla\Firefox\Profiles\ivzczqft.default -> hxxps://securesearch.org/homepage?hp=2&pId=BC180101&iDate=2020-09-07 06:14:47&bName=
FF Session Restore: Mozilla\Firefox\Profiles\ivzczqft.default -> [funkcja włączona]
FF Notifications: Mozilla\Firefox\Profiles\ivzczqft.default -> hxxps://www.castorama.pl
FF NewTabOverride: Mozilla\Firefox\Profiles\ivzczqft.default -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\ivzczqft.default -> Enabled: allegro-pl@search.mozilla.org
FF Extension: (Group Speed Dial) - C:\Users\OEM1\AppData\Roaming\Mozilla\Firefox\Profiles\ivzczqft.default\Extensions\admin@fastaddons.com_GroupSpeedDial.xpi [2020-08-31]
FF Extension: ([Disabled by Firefox]) - C:\Users\OEM1\AppData\Roaming\Mozilla\Firefox\Profiles\ivzczqft.default\Extensions\info@browser-privacy.com.xpi [2019-10-26]
FF Extension: (Voice Fill) - C:\Users\OEM1\AppData\Roaming\Mozilla\Firefox\Profiles\ivzczqft.default\Extensions\speaktome@mozilla.com.xpi [2020-05-20]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nie znaleziono
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_161.dll [2018-02-24] (Adobe Systems Incorporated -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_161.dll [2018-02-24] (Adobe Systems Incorporated -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-05-17] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-05-17] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-05-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-08-17] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-09-07]
 
Chrome: 
=======
CHR DefaultProfile: Guest Profile
CHR Profile: C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default [2020-09-07]
CHR Extension: (Prezentacje) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-14]
CHR Extension: (Dokumenty) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-15]
CHR Extension: (Dysk Google) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-15]
CHR Extension: (YouTube) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-15]
CHR Extension: (GetTvStreaming now) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default\Extensions\eapidpndnccdodipicmiadbohabggnfh [2020-09-07]
CHR Extension: (Arkusze) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-23]
CHR Extension: (d8yI+Hf7rX) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmhhjgkfljopbpcgjaoieimllognfd [2020-09-07]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-12]
CHR Extension: (Gmail) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-17]
CHR Extension: (Chrome Media Router) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-02]
CHR Profile: C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-09-07]
CHR Extension: (d8yI+Hf7rX) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\Guest Profile\Extensions\jlhmhhjgkfljopbpcgjaoieimllognfd [2020-09-07]
CHR Profile: C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\System Profile [2020-09-07]
CHR Extension: (d8yI+Hf7rX) - C:\Users\OEM1\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\jlhmhhjgkfljopbpcgjaoieimllognfd [2020-09-07]
 
==================== Usługi (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-07-08] (Adobe Inc. -> Adobe Inc.)
R2 BrcmSetSecurity; C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [101536 2013-05-28] (Intel Wireless Display -> Intel)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Brak podpisu cyfrowego]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9479608 2020-07-29] (Microsoft Corporation -> Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-09-01] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2371760 2020-09-01] (ESET, spol. s r.o. -> ESET)
R2 Huawei E3372; C:\ProgramData\MobileBrServ\mbbservice.exe [240720 2014-03-07] (Huawei Technologies Co., Ltd. -> )
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Brak podpisu cyfrowego]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [156104 2013-06-04] (Intel Corporation-Mobile Wireless Group -> Intel Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [337920 2013-07-04] (IDT, Inc.) [Brak podpisu cyfrowego]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12001112 2019-08-07] (TeamViewer GmbH -> TeamViewer GmbH)
R2 VRLService; C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe [20309016 2020-09-07] (Chaos Software Ltd. -> )
R2 vrswrm-service; C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe [90176 2020-09-07] (Chaos Software Ltd. -> ) [Brak podpisu cyfrowego]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S2 Main Service; C:\Program Files (x86)\MachinerData\AudioShellApp.exe 1 [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
 
===================== Sterowniki (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
R1 4A08219E0C44; C:\WINDOWS\4A08219E0C44.sys [25368 2020-09-07] (大连纵梦网络科技有限公司 -> FsFilter Network) [Brak podpisu cyfrowego]
R3 AMPPAL; C:\WINDOWS\System32\drivers\AMPPAL.sys [165344 2013-05-01] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider)
R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [95232 2012-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Alcor Micro, Corp.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [158512 2020-09-01] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106640 2020-09-01] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-06-07] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [195976 2020-09-01] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [53064 2020-09-01] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [79552 2020-09-01] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116488 2020-09-01] (ESET, spol. s r.o. -> ESET)
R3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2018-02-02] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.)
R3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [550912 2013-07-04] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [206744 2013-05-28] (Intel Wireless Display -> Windows (R) Win 7 DDK provider)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [118200 2016-12-22] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)
 
==================== NetSvcs (filtrowane) ===================
 
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
 
 
==================== Jeden miesiąc (utworzone) ===================
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2020-09-07 12:39 - 2020-09-07 12:39 - 000000000 ____D C:\Users\OEM1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chaos Group
2020-09-07 12:34 - 2020-09-07 12:34 - 000000000 ____D C:\Users\OEM1\Desktop\Nowy folder (8)
2020-09-07 12:33 - 2020-09-07 12:33 - 006774388 _____ C:\Users\OEM1\Downloads\Materiales1.rar
2020-09-07 11:10 - 2020-09-07 11:14 - 000000000 ____D C:\Users\OEM1\Desktop\hijackthis
2020-09-07 11:10 - 2020-09-07 11:12 - 000000000 ____D C:\Users\OEM1\Desktop\FRST
2020-09-07 10:30 - 2020-09-07 14:00 - 000000000 ____D C:\FRST
2020-09-07 08:15 - 2020-09-07 09:43 - 000000000 ____D C:\Users\OEM1\AppData\Local\c847fbdf-d2f9-458e-be32-39eaea0643df
2020-09-07 08:15 - 2020-09-07 08:15 - 000025368 _____ (FsFilter Network) C:\WINDOWS\4A08219E0C44.sys
2020-09-07 08:15 - 2020-09-07 08:15 - 000000561 _____ C:\Users\OEM1\AppData\Local\bowsakkdestx.txt
2020-09-07 08:15 - 2020-09-07 08:15 - 000000000 ____D C:\SystemID
2020-09-07 08:14 - 2020-09-07 10:05 - 000000000 ____D C:\Users\OEM1\AppData\Roaming\cs02lggi4j2
2020-09-07 08:14 - 2020-09-07 09:06 - 000000000 ____D C:\Program Files (x86)\MachinerData
2020-09-07 08:14 - 2020-09-07 08:58 - 000000000 ____D C:\Users\OEM1\AppData\Local\ScrSnap
2020-09-07 08:14 - 2020-09-07 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winyl
2020-09-07 08:14 - 2020-09-07 08:52 - 000000000 ____D C:\Program Files (x86)\Winyl
2020-09-07 08:14 - 2020-09-07 08:27 - 000000000 ____D C:\ProgramData\OYT0EZ0JFBH3DL3RWN0MTGE4O
2020-09-07 08:14 - 2020-09-07 08:27 - 000000000 ____D C:\Program Files (x86)\azdos
2020-09-07 08:14 - 2020-09-07 08:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AudioShell
2020-09-07 08:14 - 2020-09-07 08:19 - 000000000 ____D C:\Program Files (x86)\AudioShell
2020-09-07 08:14 - 2020-09-07 08:16 - 000000000 ____D C:\Users\OEM1\AppData\Local\8396137f-0182-4d14-b669-f8e4299acae6
2020-09-07 08:14 - 2020-09-07 08:14 - 008620544 _____ C:\Users\OEM1\AppData\Local\agent.dat
2020-09-07 08:14 - 2020-09-07 08:14 - 002174281 _____ C:\Users\OEM1\AppData\Local\Newstring.tst
2020-09-07 08:14 - 2020-09-07 08:14 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2020-09-07 08:14 - 2020-09-07 08:14 - 001134592 _____ C:\Users\OEM1\AppData\Local\Saonix.exe
2020-09-07 08:14 - 2020-09-07 08:14 - 001134592 _____ C:\Users\OEM1\AppData\Local\Newstring.exe
2020-09-07 08:14 - 2020-09-07 08:14 - 000440120 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll
2020-09-07 08:14 - 2020-09-07 08:14 - 000334288 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll
2020-09-07 08:14 - 2020-09-07 08:14 - 000144848 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll
2020-09-07 08:14 - 2020-09-07 08:14 - 000141312 _____ C:\Users\OEM1\AppData\Local\installer.dat
2020-09-07 08:14 - 2020-09-07 08:14 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2020-09-07 08:14 - 2020-09-07 08:14 - 000126464 _____ C:\Users\OEM1\AppData\Local\noah.dat
2020-09-07 08:14 - 2020-09-07 08:14 - 000126464 _____ C:\Users\OEM1\AppData\Local\lobby.dat
2020-09-07 08:14 - 2020-09-07 08:14 - 000083784 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll
2020-09-07 08:14 - 2020-09-07 08:14 - 000071712 _____ C:\Users\OEM1\AppData\Local\Config.xml
2020-09-07 08:14 - 2020-09-07 08:14 - 000068019 _____ C:\Users\OEM1\AppData\Local\Saonix.tst
2020-09-07 08:14 - 2020-09-07 08:14 - 000043520 _____ C:\Users\OEM1\AppData\Local\ApplicationHosting.dat
2020-09-07 08:14 - 2020-09-07 08:14 - 000018432 _____ C:\Users\OEM1\AppData\Local\Main.dat
2020-09-07 08:14 - 2020-09-07 08:14 - 000016464 _____ C:\Users\OEM1\AppData\Local\InstallationConfiguration.xml
2020-09-07 08:14 - 2020-09-07 08:14 - 000005568 _____ C:\Users\OEM1\AppData\Local\md.xml
2020-09-07 08:14 - 2020-09-07 08:14 - 000001085 _____ C:\Users\OEM1\Desktop\ScrSnap.lnk
2020-09-07 08:14 - 2020-09-07 08:14 - 000000000 ____D C:\Users\OEM1\AppData\Roaming\Lavasoft
2020-09-07 08:14 - 2020-09-07 08:14 - 000000000 ____D C:\Users\OEM1\AppData\Local\Lavasoft
2020-09-07 08:14 - 2020-09-07 08:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pic
2020-09-07 08:14 - 2020-09-07 08:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2020-09-07 08:14 - 2020-09-07 08:14 - 000000000 ____D C:\ProgramData\Lavasoft
2020-09-07 08:14 - 2020-09-07 08:14 - 000000000 ____D C:\Program Files\4DSLKTGNYA
2020-09-07 08:14 - 2020-09-07 08:14 - 000000000 ____D C:\Program Files (x86)\Seed Trade
2020-09-07 08:14 - 2020-09-07 08:14 - 000000000 ____D C:\Program Files (x86)\Pic
2020-09-07 08:14 - 2020-09-07 08:14 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2020-09-07 08:13 - 2020-09-07 08:27 - 000000000 ____D C:\Program Files (x86)\Sound Pilot
2020-09-07 08:13 - 2020-09-07 08:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sound Pilot
2020-09-03 14:33 - 2020-09-03 19:00 - 000000000 ____D C:\Users\OEM1\AppData\Roaming\vlc
2020-09-03 14:31 - 2020-09-03 14:31 - 000000927 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-09-03 14:31 - 2020-09-03 14:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-09-03 14:31 - 2020-09-03 14:31 - 000000000 ____D C:\Program Files\VideoLAN
2020-09-03 14:29 - 2020-09-03 14:29 - 041824168 _____ C:\Users\OEM1\Downloads\vlc-3.0.11-win64.exe
2020-09-02 23:08 - 2020-09-02 23:28 - 016911931 _____ C:\Users\OEM1\Documents\AutoSave_Bez nazwy_6.skp
2020-09-02 14:43 - 2020-09-03 14:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-09-02 10:54 - 2020-09-02 10:54 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-09-02 08:39 - 2020-09-07 10:05 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-09-01 19:43 - 2020-09-07 10:07 - 000000004 ____H C:\ProgramData\cm-lock
2020-09-01 17:34 - 2020-09-01 17:34 - 000000000 _____ C:\WINDOWS\Minidump\090120-25906-01.dmp
2020-09-01 17:07 - 2020-09-01 17:10 - 002841156 _____ C:\WINDOWS\Minidump\090120-32656-01.dmp
2020-08-31 19:47 - 2020-08-31 19:58 - 000000000 ____D C:\Users\OEM1\Desktop\Nowy folder (7)
2020-08-31 19:45 - 2020-08-31 19:46 - 004188532 _____ C:\Users\OEM1\Downloads\dcc296.zip
2020-08-31 19:05 - 2020-08-31 19:05 - 000002077 _____ C:\Users\OEM1\Desktop\dreamboxEDIT (x64).lnk
2020-08-31 19:05 - 2020-08-31 19:05 - 000002057 _____ C:\Users\OEM1\Desktop\dreamboxEDIT.lnk
2020-08-31 19:05 - 2020-08-31 19:05 - 000000000 ____D C:\Users\OEM1\Documents\dreamboxEDIT
2020-08-31 19:05 - 2020-08-31 19:05 - 000000000 ____D C:\Users\OEM1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dreamboxEDIT
2020-08-31 19:05 - 2020-08-31 19:05 - 000000000 ____D C:\Program Files (x86)\dreamboxEDIT
2020-08-31 19:04 - 2020-08-31 19:04 - 009116866 _____ C:\Users\OEM1\Downloads\dreamboxEDIT_setup_7.2.1.0.zip
2020-08-28 09:20 - 2020-08-31 19:33 - 000000000 ____D C:\Users\OEM1\Desktop\Nowy folder (4)
2020-08-19 17:26 - 2020-08-19 17:26 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-08-19 17:18 - 2020-08-19 17:18 - 000000000 ____D C:\Users\OEM1\AppData\Local\ElevatedDiagnostics
2020-08-12 17:40 - 2020-08-12 17:40 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 006294528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 005904896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 004611072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 004129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 003516416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-08-12 17:40 - 2020-08-12 17:40 - 002950808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-08-12 17:40 - 2020-08-12 17:40 - 002588688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2020-08-12 17:40 - 2020-08-12 17:40 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-08-12 17:40 - 2020-08-12 17:40 - 002259192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2020-08-12 17:40 - 2020-08-12 17:40 - 002138280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-08-12 17:40 - 2020-08-12 17:40 - 001870200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 001836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 001418832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2020-08-12 17:40 - 2020-08-12 17:40 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2020-08-12 17:40 - 2020-08-12 17:40 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000738064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-08-12 17:40 - 2020-08-12 17:40 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000666280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-08-12 17:40 - 2020-08-12 17:40 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2020-08-12 17:40 - 2020-08-12 17:40 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2020-08-12 17:40 - 2020-08-12 17:40 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe
2020-08-12 17:40 - 2020-08-12 17:40 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-08-12 17:40 - 2020-08-12 17:40 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-08-12 17:40 - 2020-08-12 17:40 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 022642688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 007758848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 007270912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 006074552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 005849872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 005767224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 005003824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 003743056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-08-12 17:39 - 2020-08-12 17:39 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-08-12 17:39 - 2020-08-12 17:39 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001740800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001654312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001420320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001282872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-08-12 17:39 - 2020-08-12 17:39 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000897648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000875520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000718336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000690536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000675040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000671040 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000568128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000564488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000379704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-08-12 17:39 - 2020-08-12 17:39 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000124512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-08-12 17:39 - 2020-08-12 17:39 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-08-12 17:39 - 2020-08-12 17:39 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2020-08-12 17:39 - 2020-08-12 17:39 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-08-12 17:39 - 2020-08-12 17:39 - 000000357 _____ C:\WINDOWS\system32\DrtmAuthKeyDelegate_From_20190529_To_20200303.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth1KeyDelegate.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-08-12 17:39 - 2020-08-12 17:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-08-12 17:38 - 2020-08-12 17:38 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 009932088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 007915864 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 007850784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 007583272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 007270728 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 005283776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 004625184 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2020-08-12 17:38 - 2020-08-12 17:38 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 003806208 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 003368616 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 003141632 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 002766952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 002717696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 002698048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 002471936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 002260312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 002136064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 002085632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001756592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-08-12 17:38 - 2020-08-12 17:38 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001665024 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001660536 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001512848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 001482568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-08-12 17:38 - 2020-08-12 17:38 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001182248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001123344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000917800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000875424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000823744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 000822800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 000548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000522688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-08-12 17:38 - 2020-08-12 17:38 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000463168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000369304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-08-12 17:38 - 2020-08-12 17:38 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-08-12 17:38 - 2020-08-12 17:38 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-08-12 17:38 - 2020-08-12 17:38 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-08-12 17:16 - 2020-08-12 17:16 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-08-12 17:16 - 2020-08-12 17:16 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-08-08 11:59 - 2020-08-18 23:46 - 000000000 ____D C:\Users\OEM1\Desktop\zdj do wywołania
 
==================== Jeden miesiąc (zmodyfikowane) ==================
 
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
 
2020-09-07 13:54 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-09-07 13:46 - 2020-03-04 02:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-09-07 12:44 - 2017-12-09 00:54 - 000000000 ____D C:\Users\OEM1\AppData\Roaming\vrayneui
2020-09-07 12:39 - 2020-02-11 18:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chaos Group
2020-09-07 12:39 - 2020-02-11 18:50 - 000000000 ____D C:\Program Files\Chaos Group
2020-09-07 12:39 - 2017-12-09 00:54 - 000000000 ____D C:\Users\OEM1\AppData\Roaming\Chaos Group
2020-09-07 12:39 - 2017-12-08 17:34 - 000000000 ____D C:\Program Files\Common Files\ChaosGroup
2020-09-07 12:25 - 2013-12-11 00:13 - 000000000 ____D C:\ProgramData\NVIDIA
2020-09-07 10:57 - 2016-11-17 08:47 - 000000000 ____D C:\Users\OEM1\AppData\LocalLow\Mozilla
2020-09-07 10:12 - 2020-03-04 02:27 - 001770340 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-09-07 10:12 - 2019-03-19 14:23 - 000785768 _____ C:\WINDOWS\system32\perfh015.dat
2020-09-07 10:12 - 2019-03-19 14:23 - 000152530 _____ C:\WINDOWS\system32\perfc015.dat
2020-09-07 10:12 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-09-07 10:07 - 2017-12-09 00:58 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-09-07 10:07 - 2014-12-13 14:32 - 000000000 __SHD C:\Users\OEM1\IntelGraphicsProfiles
2020-09-07 10:06 - 2020-03-04 02:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-09-07 10:06 - 2019-08-21 22:18 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-09-07 10:05 - 2017-12-08 17:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-09-07 09:59 - 2017-12-08 16:29 - 000000000 ____D C:\Users\OEM1\AppData\Local\VirtualStore
2020-09-07 09:34 - 2017-12-08 16:29 - 000000000 ____D C:\Users\OEM1\AppData\Local\Packages
2020-09-07 09:18 - 2017-12-09 11:14 - 000000000 ____D C:\Users\OEM1\AppData\Local\LIBFREDO6_DATA_Dir
2020-09-07 09:10 - 2020-03-04 02:15 - 000000000 ____D C:\Users\OEM1
2020-09-07 08:58 - 2018-12-13 16:48 - 000000000 ____D C:\Users\OEM1\AppData\Local\D3DSCache
2020-09-07 08:20 - 2020-04-16 22:01 - 000000000 _____ C:\Users\OEM1\AppData\Roaming\javvtbb
2020-09-07 08:17 - 2020-03-04 02:15 - 000000000 ____D C:\Users\Administrator
2020-09-07 08:17 - 2013-12-11 00:13 - 000000000 ____D C:\Users\UpdatusUser
2020-09-07 08:17 - 2012-07-26 07:37 - 000000000 ____D C:\Users\Default.migrated
2020-09-07 08:16 - 2018-12-13 13:14 - 000000000 ____D C:\ESD
2020-09-07 08:16 - 2018-12-13 13:11 - 000000000 ___HD C:\$Windows.~WS
2020-09-07 08:16 - 2018-06-21 16:26 - 000000000 ____D C:\Ross-Tech
2020-09-07 08:16 - 2018-01-30 10:29 - 000000000 ____D C:\Autodesk
2020-09-07 08:16 - 2017-12-09 11:37 - 000000000 ____D C:\NVIDIA
2020-09-07 08:16 - 2017-12-08 17:39 - 000000000 ____D C:\1b6dc7096864ec545f4a55f9
2020-09-07 08:16 - 2017-12-08 16:00 - 000000000 ___HD C:\$SysReset
2020-09-07 08:16 - 2017-04-06 10:03 - 000000000 ____D C:\Brother
2020-09-07 08:16 - 2013-12-11 00:28 - 000000000 __SHD C:\UserGuidePDF
2020-09-04 22:46 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-09-04 22:46 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-09-03 14:14 - 2020-05-02 14:19 - 000000000 ____D C:\Users\OEM1\Desktop\woda gaz
2020-09-03 14:14 - 2017-12-08 18:02 - 000001224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-09-02 10:54 - 2017-12-08 17:25 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-09-01 21:51 - 2020-06-05 09:28 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-09-01 21:51 - 2020-06-05 09:28 - 000002297 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-09-01 19:42 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-09-01 19:41 - 2018-11-29 11:54 - 000158512 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2020-09-01 19:41 - 2018-11-29 11:54 - 000106640 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2020-09-01 19:41 - 2018-10-17 16:37 - 000195976 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2020-09-01 19:41 - 2018-10-17 16:37 - 000116488 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2020-09-01 19:41 - 2018-10-17 16:37 - 000079552 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2020-09-01 19:41 - 2018-10-17 16:37 - 000053064 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2020-09-01 17:34 - 2020-04-22 21:36 - 000000000 ____D C:\WINDOWS\Minidump
2020-09-01 17:34 - 2020-01-21 23:32 - 1102306103 _____ C:\WINDOWS\MEMORY.DMP
2020-09-01 17:11 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-08-28 08:44 - 2020-06-05 09:28 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-08-28 08:44 - 2020-06-05 09:28 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-08-26 20:28 - 2019-03-14 11:00 - 000002318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-08-20 17:13 - 2017-12-08 18:16 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-08-19 17:26 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-08-19 17:24 - 2020-05-07 11:36 - 000000000 ____D C:\Program Files\Microsoft Office
2020-08-19 17:18 - 2020-03-04 02:38 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3948835319-1470083923-2527900465-1002
2020-08-19 17:18 - 2020-03-04 02:15 - 000002455 _____ C:\Users\OEM1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-08-19 17:18 - 2018-12-13 15:51 - 000000000 ___RD C:\Users\OEM1\OneDrive
2020-08-17 15:33 - 2020-03-04 02:38 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-08-12 23:21 - 2018-12-13 15:12 - 000000000 ___RD C:\Users\OEM1\3D Objects
2020-08-12 23:21 - 2014-05-06 14:46 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-08-12 23:19 - 2020-03-04 02:08 - 000443784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-08-12 23:15 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-08-12 23:15 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2020-08-12 17:47 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
 
==================== Pliki w katalogu głównym wybranych folderów ========
 
2020-09-07 08:14 - 2020-09-07 08:14 - 000334288 _____ (Mozilla Foundation) C:\ProgramData\freebl3.dll
2020-09-07 08:14 - 2020-09-07 08:14 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2020-09-07 08:14 - 2020-09-07 08:14 - 000440120 _____ (Microsoft Corporation) C:\ProgramData\msvcp140.dll
2020-09-07 08:14 - 2020-09-07 08:14 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2020-09-07 08:14 - 2020-09-07 08:14 - 000144848 _____ (Mozilla Foundation) C:\ProgramData\softokn3.dll
2020-09-07 08:14 - 2020-09-07 08:14 - 000083784 _____ (Microsoft Corporation) C:\ProgramData\vcruntime140.dll
2020-03-10 13:59 - 2020-03-10 13:59 - 000014073 _____ () C:\Users\OEM1\AppData\Roaming\asfvcxds.exe
2017-12-08 16:55 - 2017-12-08 16:55 - 000000000 _____ () C:\Users\OEM1\AppData\Roaming\gdfw.log
2017-12-08 16:55 - 2018-12-11 10:07 - 000001558 _____ () C:\Users\OEM1\AppData\Roaming\gdscan.log
2020-04-16 22:01 - 2020-09-07 08:20 - 000000000 _____ () C:\Users\OEM1\AppData\Roaming\javvtbb
2020-09-07 08:14 - 2020-09-07 08:14 - 008620544 _____ () C:\Users\OEM1\AppData\Local\agent.dat
2020-09-07 08:14 - 2020-09-07 08:14 - 000043520 _____ () C:\Users\OEM1\AppData\Local\ApplicationHosting.dat
2020-09-07 08:15 - 2020-09-07 08:15 - 000000561 _____ () C:\Users\OEM1\AppData\Local\bowsakkdestx.txt
2020-09-07 08:14 - 2020-09-07 08:14 - 000071712 _____ () C:\Users\OEM1\AppData\Local\Config.xml
2020-09-07 08:14 - 2020-09-07 08:14 - 000016464 _____ () C:\Users\OEM1\AppData\Local\InstallationConfiguration.xml
2020-09-07 08:14 - 2020-09-07 08:14 - 000141312 _____ () C:\Users\OEM1\AppData\Local\installer.dat
2020-09-07 08:14 - 2020-09-07 08:14 - 000126464 _____ () C:\Users\OEM1\AppData\Local\lobby.dat
2020-09-07 08:14 - 2020-09-07 08:14 - 000018432 _____ () C:\Users\OEM1\AppData\Local\Main.dat
2020-09-07 08:14 - 2020-09-07 08:14 - 000005568 _____ () C:\Users\OEM1\AppData\Local\md.xml
2020-09-07 08:14 - 2020-09-07 08:14 - 001134592 _____ () C:\Users\OEM1\AppData\Local\Newstring.exe
2020-09-07 08:14 - 2020-09-07 08:14 - 002174281 _____ () C:\Users\OEM1\AppData\Local\Newstring.tst
2020-09-07 08:14 - 2020-09-07 08:14 - 000126464 _____ () C:\Users\OEM1\AppData\Local\noah.dat
2020-09-07 08:14 - 2020-09-07 08:14 - 001134592 _____ () C:\Users\OEM1\AppData\Local\Saonix.exe
2020-09-07 08:14 - 2020-09-07 08:14 - 000068019 _____ () C:\Users\OEM1\AppData\Local\Saonix.tst
 
==================== SigCheck ============================
 
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
 
==================== Koniec  FRST.txt ========================
Wygenerowano w 0.017s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!