sankisiu utworzono 6 kwietnia 2019 utworzono 6 kwietnia 2019 Witam Od jakiegoś czasu wyskakuje mi taki syf jak na filmiku poniżej. Są to różne reklamy ale też strony porno które mogą odtworzyć dzieci , bo też kożystają z komputera . Proszę podpowiedzcie mi który antywirus mam kupić , który sobie z tym poradzi napewno . Instalowałem antywirusy z okresami próbnymi ale to nie pomogło a nie chcę wyrzucić pieniędzy w błoto . https://www.youtube.com/watch?v=ED3Wwh49ojI&t=2s Pozdrawiam
Twój_Anioł_Stróż komentarz 7 kwietnia 2019 komentarz 7 kwietnia 2019 1) Użyj >Adw-cleaner najpierw kliknij na SKANUJ (SCAN), a dopiero po zakończeniu skanowania, gdy uaktywni się przycisk USUŃ (CLEANING), to kliknij na niego. Pokaż raport z niego "C" 2) Zrób logi z FRST > http://www.forumpc.pl/topic/277786-nieingerencyjne-narzędzia-do-tworzenia-logów-systemowych/?p=2010191 przed skanem zaznacz: Additional.txt Shortcut.txt, Nie ma idealnego Antywirusa.
sankisiu komentarz 9 kwietnia 2019 Autor komentarz 9 kwietnia 2019 Dziękuję za odpowiedz , Adw cleaner używałem już wcześniej ale nie pomógł. Zrobiłewm te logi . Dodam że te "reklamy" wyskakują nawet gdy nie używam przeglądarki. FRST.txt Addition.txt Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 17.03.2019 Uruchomiony przez kisiu (administrator) PC (09-04-2019 10:14:41) Uruchomiony z C:\Users\kisiu\Downloads Załadowane profile: kisiu (Dostępne profile: kisiu) Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe () [Brak podpisu cyfrowego] C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe (SSS) [Brak podpisu cyfrowego] C:\Windows\System32\AudioDeviceService.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (Disc Soft Ltd -> Disc Soft Ltd) C:\Programy (x86)\DAEMON Tools Pro\DTShellHlp.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\kisiu\AppData\Roaming\uTorrent\uTorrent.exe (The Chromium Authors) [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\chrome.exe (The Chromium Authors) [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\chrome.exe (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe (The Chromium Authors) [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\chrome.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\WargamingErrorMonitor.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Solid State System) [Brak podpisu cyfrowego] C:\Program Files (x86)\FOX Audio 7.1\FOX Audio 7.1.exe (Logitech, Inc. -> ) C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\kisiu\AppData\Roaming\uTorrent\updates\3.5.5_45146\utorrentie.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\kisiu\AppData\Roaming\uTorrent\updates\3.5.5_45146\utorrentie.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\kisiu\AppData\Roaming\uTorrent\helper\helper.exe (DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe (Sony) [Brak podpisu cyfrowego] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (The Chromium Authors) [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\chrome.exe (The Chromium Authors) [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\chrome.exe (The Chromium Authors) [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\chrome.exe (The Chromium Authors) [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\chrome.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (BitTorrent Inc -> BitTorrent Inc.) C:\Users\kisiu\AppData\Roaming\uTorrent\updates\3.5.5_45146\utorrentie.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7560296 2011-12-12] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [17987704 2017-10-20] (Logitech Inc -> Logitech Inc.) HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation -> Intel Corporation) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-04] (Intel Corporation -> Intel Corporation) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech, Inc. -> Logitech Inc.) HKLM-x32\...\Run: [FOX Audio 7.1] => C:\Program Files (x86)\FOX Audio 7.1\FOX Audio 7.1.exe [10112000 2018-09-08] (Solid State System) [Brak podpisu cyfrowego] HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Programy (x86)\DAEMON Tools Pro\DTAgent.exe [3125280 2013-10-17] (Disc Soft Ltd -> Disc Soft Ltd) HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\Run: [uTorrent] => C:\Users\kisiu\AppData\Roaming\uTorrent\uTorrent.exe [1998008 2019-03-27] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\Run: [Steam] => "D:\GRY\empire total war\Steam.exe" -silent HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\Run: [Chromium] => c:\users\kisiu\appdata\local\chromium\application\chrome.exe [4186112 2017-10-10] (The Chromium Authors) [Brak podpisu cyfrowego] HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\Run: [GoogleChromeAutoLaunch_32DDCD28EB50287FE7DC37108CCB8AA6] => C:\Users\kisiu\AppData\Local\chromium\Application\chrome.exe [4186112 2017-10-10] (The Chromium Authors) [Brak podpisu cyfrowego] HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2540408 2019-04-03] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\MountPoints2: F - F:\Setup.exe HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\MountPoints2: {300b106e-4891-11e9-9a71-10bf48bd0261} - H:\startme.exe HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\MountPoints2: {957e3bed-173e-11e9-bf89-10bf48bd0261} - G:\startme.exe HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\MountPoints2: {e02735b1-adc6-11e8-b236-806e6f6e6963} - E:\Bin\ASSETUP.exe HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [175392 2012-09-21] (Logitech, Inc. -> Logitech Inc.) HKLM\...\Drivers32: [MSVideo] => C:\Windows\system32\vfwwdm32.dll [68096 2010-11-21] (Microsoft Windows -> Microsoft Corporation) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-09-21] (Logitech, Inc. -> Logitech Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\Installer\chrmstp.exe [2019-03-21] (Google LLC -> Google Inc.) CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 31.11.202.254 37.8.214.2 Tcpip\..\Interfaces\{02D36EB0-F2CD-4D7F-9A0F-02BD2C5A82C4}: [DhcpNameServer] 31.11.202.254 37.8.214.2 Internet Explorer: ================== HKU\S-1-5-21-226745190-3671943294-1066845545-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://googl.pl/ SearchScopes: HKLM-x32 -> DefaultScope - brak wartości BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-05-21] (Hewlett-Packard Company -> Hewlett-Packard Co.) BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-05-21] (Hewlett-Packard Company -> Hewlett-Packard Co.) Toolbar: HKU\S-1-5-21-226745190-3671943294-1066845545-1000 -> Brak nazwy - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Brak pliku Toolbar: HKU\S-1-5-21-226745190-3671943294-1066845545-1000 -> Brak nazwy - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Brak pliku FireFox: ======== FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2018-09-01] [Przestarzałe] [Brak podpisu cyfrowego] FF HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-08-28] (Nero AG -> Nero AG) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-27] (Google Inc -> Google LLC) Chrome: ======= CHR HomePage: Default -> hxxp://google.pl/ CHR StartupUrls: Default -> "hxxp://google.pl/" CHR Session Restore: Default -> [funkcja włączona] CHR Profile: C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default [2019-04-09] CHR Extension: (Prezentacje) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-16] CHR Extension: (Norton Password Manager) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\admmjipmmciaobhojoghlmleefbicajg [2019-03-29] CHR Extension: (Dokumenty) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-16] CHR Extension: (Dysk Google) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-09-27] CHR Extension: (YouTube) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-16] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-04-04] CHR Extension: (Arkusze) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-16] CHR Extension: (Video Downloader PLUS) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2019-04-01] CHR Extension: (Dokumenty Google offline) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-16] CHR Extension: (Avast Online Security) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-02-19] CHR Extension: (Chomikuj.pl) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\mabmeicndgkgfompmmdkijoamfleoadk [2018-09-16] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-16] CHR Extension: (SpeakIt!) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgeolalilifpodheeocdmbhehgnkkbak [2019-04-01] CHR Extension: (Gmail) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-09-16] CHR Extension: (Chrome Media Router) - C:\Users\kisiu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-13] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [496008 2018-08-27] (Advanced Micro Devices, Inc. -> AMD) R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [189952 2018-08-27] () [Brak podpisu cyfrowego] S3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\x64\aswidsagenta.exe [8188768 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R2 AudioDeviceService; C:\Windows\system32\AudioDeviceService.exe [2711552 2018-09-08] (SSS) [Brak podpisu cyfrowego] S2 AUEPLauncher; C:\Program Files (x86)\AMD\Performance Profile Client\AUEPLauncher.exe [7680 2018-08-27] () [Brak podpisu cyfrowego] S2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [324000 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-02-16] (BattlEye Innovations e.K. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2018-09-03] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [Brak podpisu cyfrowego] R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [Brak podpisu cyfrowego] R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1037824 2009-09-20] (Hewlett-Packard Co.) [Brak podpisu cyfrowego] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation -> Intel Corporation) R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [225400 2017-10-20] (Logitech Inc -> Logitech Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [Brak podpisu cyfrowego] S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-03-12] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-03-12] (Electronic Arts, Inc. -> Electronic Arts) S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2436936 2019-02-25] (Overwolf Ltd -> Overwolf LTD) R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [Brak podpisu cyfrowego] R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU CO LTD -> DEVGURU Co., LTD.) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation) R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2198016 2018-11-20] (Sony) [Brak podpisu cyfrowego] ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [223624 2018-08-27] (Advanced Micro Devices, Inc. -> ) R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [46801288 2018-08-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [578440 2018-08-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [201240 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdrivera.sys [230344 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R0 aswbidsh; C:\Windows\System32\drivers\aswbidsha.sys [201768 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R0 aswblog; C:\Windows\System32\drivers\aswbloga.sys [346592 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R0 aswbuniv; C:\Windows\System32\drivers\aswbuniva.sys [59496 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [185072 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [46384 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42288 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [163208 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [111800 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87432 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1028680 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469272 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [208472 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [380464 2018-12-20] (AVAST Software s.r.o. -> AVAST Software) R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2017-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) S3 CisUtMonitor; C:\Windows\System32\DRIVERS\CisUtMonitor.sys [33360 2014-08-07] (Software Security Systems -> CrystalIdea Software) S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2018-09-01] (Disc Soft Ltd -> Disc Soft Ltd) R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2011-07-12] (Paragon Technologie GmbH -> Paragon Software Group) R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech) R3 LGJoyXlCore; C:\Windows\System32\drivers\LGJoyXlCore.sys [67736 2017-10-20] (Logitech Inc -> Logitech Inc.) R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2017-10-20] (Logitech -> Logitech Inc.) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [274416 2019-04-09] (Malwarebytes Corporation -> Malwarebytes) S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 UAExt; C:\Windows\System32\DRIVERS\UAExt.sys [65456 2018-09-08] (Solid State System Co., Ltd -> Solid State System.) S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-04-09 10:14 - 2019-04-09 10:15 - 000023070 _____ C:\Users\kisiu\Downloads\FRST.txt 2019-04-09 10:14 - 2019-04-09 10:14 - 000000000 ____D C:\FRST 2019-04-09 10:13 - 2019-04-09 10:13 - 002434048 _____ (Farbar) C:\Users\kisiu\Downloads\FRST64.exe 2019-04-09 09:59 - 2019-04-09 09:59 - 000274416 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2019-04-09 09:58 - 2019-04-09 10:06 - 000000000 ____D C:\Users\kisiu\AppData\LocalLow\uTorrent 2019-04-06 10:49 - 2019-04-06 10:49 - 000000045 _____ C:\Users\kisiu\AppData\Roaming\WB.CFG 2019-04-05 15:56 - 2019-04-05 15:56 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\booking-nativefier-9f4f54 2019-04-05 15:54 - 2019-04-05 15:54 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\Wargaming.net 2019-04-05 15:54 - 2019-04-05 15:54 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net 2019-04-05 15:54 - 2019-04-05 15:54 - 000000000 ____D C:\ProgramData\Wargaming.net 2019-04-05 15:54 - 2019-04-05 15:54 - 000000000 ____D C:\Games 2019-04-05 15:53 - 2019-04-05 15:53 - 006426528 _____ (Wargaming.net (c) 2009-2018 ) C:\Users\kisiu\Downloads\world_of_tanks_install_eu_bt5yg5cqaile.exe 2019-04-05 15:49 - 2019-04-05 15:49 - 000002255 _____ C:\Users\kisiu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk 2019-04-05 15:49 - 2019-04-05 15:49 - 000002247 _____ C:\Users\kisiu\Desktop\Chromium.lnk 2019-04-05 15:49 - 2019-04-05 15:49 - 000000000 ____D C:\Windows\System32\Tasks\updane 2019-04-05 15:49 - 2019-04-05 15:49 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\Rusoce 2019-04-05 15:49 - 2019-04-05 15:49 - 000000000 ____D C:\Users\kisiu\AppData\Local\chromium 2019-04-05 15:48 - 2019-04-05 15:49 - 000000000 ____D C:\Users\kisiu\AppData\Local\{D0A1E6FD-F409-8A45-9991-AFADBDF95335} 2019-04-05 15:48 - 2019-04-05 15:48 - 000002951 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.lnk 2019-04-05 15:48 - 2019-04-05 15:48 - 000002939 _____ C:\Users\Public\Desktop\Booking.lnk 2019-04-05 15:48 - 2019-04-05 15:48 - 000002312 _____ C:\Users\kisiu\Desktop\Goodgame Empire.lnk 2019-04-05 15:48 - 2019-04-05 15:48 - 000001280 _____ C:\Users\kisiu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HowToRemove.lnk 2019-04-05 15:48 - 2019-04-05 15:48 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Goodgame Empire 2019-04-05 15:48 - 2019-04-05 15:48 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\Goodgame Empire 2019-04-05 15:48 - 2019-04-05 15:48 - 000000000 ____D C:\Program Files (x86)\Booking 2019-04-05 15:46 - 2019-04-05 15:46 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\World of Tanks 2019-04-05 15:46 - 2019-04-05 15:46 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks 2019-04-05 15:45 - 2019-04-05 15:45 - 000002596 _____ C:\Users\kisiu\Desktop\WarThunder.lnk 2019-04-05 15:45 - 2019-04-05 15:45 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\WarThunder 2019-04-05 15:45 - 2019-04-05 15:45 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder 2019-04-04 13:47 - 2019-04-04 13:47 - 000120672 _____ C:\Users\kisiu\Downloads\Złe wychowanie Cameron Post _ The Miseducation of Cameron Post [2018] [480p] [BRRip] [XViD] [AC3 MORS] [Lektor PL].torrent 2019-04-04 13:47 - 2019-04-04 13:47 - 000035263 _____ C:\Users\kisiu\Downloads\Pulapka Czasu _2018_ [DUAL] [BRRip] [720p] [XviD] [AC3 LTN] [Lektor PL].torrent 2019-04-04 13:47 - 2019-04-04 13:47 - 000028946 _____ C:\Users\kisiu\Downloads\Zabójczy Bóg _ Killing God _ Matar a Dios _2017_ [HDTV] [XviD FmX] [Lektor PL].torrent 2019-04-04 13:47 - 2019-04-04 13:47 - 000028895 _____ C:\Users\kisiu\Downloads\Krzysiu gdzie jesteś_ _ Christopher Robin [2018] [BDRip] [XviD KiT] [Dubbing PL].torrent 2019-04-03 22:34 - 2019-04-03 22:34 - 000028939 _____ C:\Users\kisiu\Downloads\Rockaway _2017_ [WEB DL] [XviD KiT] [Lektor PL].torrent 2019-04-03 22:33 - 2019-04-03 22:33 - 000012153 _____ C:\Users\kisiu\Downloads\Paweł apostoł Chrystusa Paul Apostle of Christ [2018] [480p] [HDTV] [XViD] [AC3 H1] [Dubbing PL].torrent 2019-04-03 22:30 - 2019-04-03 22:30 - 000255203 _____ C:\Users\kisiu\Downloads\Operacja Morze Czerwone _ Operation Red Sea _ Hong hai xing dong [2018] [720p] [BRRip] [XviD] [AC3 A75] [Lektor PL].torrent 2019-04-03 22:30 - 2019-04-03 22:30 - 000035772 _____ C:\Users\kisiu\Downloads\Operacja Overlord _ Overlord [2018] [480p] [BRRip] [XViD] [AC3 MORS] [Lektor PL].torrent 2019-04-03 22:29 - 2019-04-03 22:29 - 000028930 _____ C:\Users\kisiu\Downloads\Mission Impossible _ Fallout [2018] [BDRip] [XviD KiT] [Lektor PL].torrent 2019-04-03 22:29 - 2019-04-03 22:29 - 000028909 _____ C:\Users\kisiu\Downloads\Sorry to Bother You [2018] [BRRip] [XViD MORS] [Napisy PL].torrent 2019-04-03 22:28 - 2019-04-03 22:28 - 000028962 _____ C:\Users\kisiu\Downloads\Źle się dzieje w El Royale _ Bad Times at the El Royale [2018] [BDRip] [XViD MORS] [Lektor PL&#8203;].torrent 2019-04-03 22:28 - 2019-04-03 22:28 - 000028912 _____ C:\Users\kisiu\Downloads\Bez litości 2 _ The Equalizer 2 [2018] [BDRip] [XviD KiT] [Lektor PL].torrent 2019-04-03 22:27 - 2019-04-03 22:27 - 000015231 _____ C:\Users\kisiu\Downloads\Śmiertelnie mroźna zima _ Dead of Winter [1987] [480p] [BRRip] [XviD] [AC3 LTN] [Lektor PL].torrent 2019-04-03 22:25 - 2019-04-03 22:25 - 000016416 _____ C:\Users\kisiu\Downloads\Powstanie zwykłych ludzi [2004] [WEBRip] [XviD] [AC3 H1] [PL].torrent 2019-04-03 21:34 - 2019-04-03 21:34 - 000121689 _____ C:\Users\kisiu\Downloads\Ziemia Święta _ Holy Lands [2018] [480p] [WEB DL] [XviD] [AC3 MR] [Lektor PL].torrent 2019-04-03 21:32 - 2019-04-03 21:32 - 000015206 _____ C:\Users\kisiu\Downloads\Dom otwarty _ The Open House _2018_ [NF] [WEB DL] [Xvid KiT] [LEKTOR PL].torrent 2019-04-03 21:31 - 2019-04-03 21:31 - 000195316 _____ C:\Users\kisiu\Downloads\30 nocy seksu _ 30 Nights [2018] [720p] [WEB DL] [XviD] [AC3 LTS] [Lektor PL].torrent 2019-04-03 21:30 - 2019-04-03 21:30 - 000028960 _____ C:\Users\kisiu\Downloads\Replikanci _ Replicas _2018_ [BDRip] [XviD KiT] [Lektor PL].torrent 2019-04-03 21:28 - 2019-04-03 21:28 - 000014941 _____ C:\Users\kisiu\Downloads\Bez śladu The Vanishing Keepers _2018_ [BDRip] [XviD KiT] [Lektor PL] [fredziucha09].torrent 2019-04-03 21:27 - 2019-04-03 21:27 - 000021645 _____ C:\Users\kisiu\Downloads\Przynęta _ Serenity _2019_ [480p][BRRip] [D.D.5.1] [XviD] [AC3-M3Q] [LEKTOR PL].torrent 2019-04-03 21:25 - 2019-04-03 21:25 - 000015867 _____ C:\Users\kisiu\Downloads\Zabójcze maszyny Mortal Engines _2018_ [BDRip] [XviD KiT] [Dubbing PL] [dabrjarek].torrent 2019-03-31 23:28 - 2019-03-31 23:28 - 000506701 _____ C:\Users\kisiu\Downloads\FV_3165158077_211.pdf 2019-03-31 23:07 - 2019-03-31 23:07 - 000059923 _____ C:\Users\kisiu\Downloads\Umowa_o_pozyczke_CDE0011171596.pdf 2019-03-31 22:49 - 2019-03-31 22:49 - 000121083 _____ C:\Users\kisiu\Downloads\Umowa z podpisem.pdf 2019-03-31 22:26 - 2019-03-31 22:26 - 000035658 _____ C:\Users\kisiu\Downloads\595402093650_2019-03-25.pdf 2019-03-29 01:07 - 2019-03-29 01:07 - 000000000 _____ C:\Users\kisiu\Desktop\Nowy dokument tekstowy.txt 2019-03-29 01:05 - 2019-03-29 01:05 - 000455271 _____ C:\Users\kisiu\Downloads\Zaświadczenie-o-dochodach-EWR.pdf 2019-03-29 01:02 - 2019-03-29 01:02 - 000007248 _____ C:\Users\kisiu\Downloads\Lohnsteuer_2018_8 (2).pdf 2019-03-29 01:01 - 2019-03-29 01:01 - 000007248 _____ C:\Users\kisiu\Downloads\Lohnsteuer_2018_8 (1).pdf 2019-03-28 14:20 - 2019-03-28 15:44 - 000000000 ____D C:\Users\kisiu\AppData\Local\BitTorrentHelper 2019-03-28 00:44 - 2019-03-28 00:44 - 000000000 ____D C:\Users\kisiu\.cache 2019-03-28 00:32 - 2019-03-28 00:32 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files 2019-03-28 00:32 - 2019-03-28 00:32 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack 2019-03-28 00:31 - 2019-03-28 00:34 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\DVDVideoSoft 2019-03-28 00:31 - 2019-03-28 00:31 - 036420904 _____ (Digital Wave Ltd ) C:\Users\kisiu\Downloads\FreeYouTubeDownload_4.1.93.325_d.exe 2019-03-28 00:31 - 2019-03-28 00:31 - 002137576 _____ ( ) C:\Users\kisiu\Downloads\pobierz_Free_youtube_download_V4.1.93.325_4262109778.exe 2019-03-28 00:27 - 2019-03-28 00:29 - 000000000 ____D C:\Users\kisiu\Downloads\plaga 2019-03-28 00:03 - 2019-03-28 00:03 - 000001203 _____ C:\Users\kisiu\Desktop\Any Video Converter.lnk 2019-03-28 00:03 - 2019-03-28 00:03 - 000000000 ____D C:\Users\kisiu\Documents\Any Video Converter 2019-03-28 00:03 - 2019-03-28 00:03 - 000000000 ____D C:\Program Files (x86)\Anvsoft 2019-03-28 00:02 - 2019-03-28 00:02 - 055770968 _____ C:\Users\kisiu\Downloads\avc-free.exe 2019-03-28 00:02 - 2019-03-28 00:02 - 002282309 _____ ( ) C:\Users\kisiu\Downloads\Any-Video-Converter-13038-AsystentPobierania_2796296389.exe 2019-03-28 00:02 - 2019-03-28 00:02 - 000000000 ____D C:\ProgramData\McAfee 2019-03-27 23:50 - 2019-03-27 23:50 - 000001320 _____ C:\Users\kisiu\Desktop\Kontynuuj instalację xVideoServiceThief.lnk 2019-03-27 23:48 - 2019-03-27 23:48 - 004359168 _____ (Xesc & Technology) C:\Users\kisiu\Downloads\xVST_2_5_2_windows_static.exe 2019-03-27 23:48 - 2019-03-27 23:48 - 002282309 _____ ( ) C:\Users\kisiu\Downloads\xVideoServiceThief-17683-AsystentPobierania_0960543276.exe 2019-03-27 23:11 - 2019-03-27 23:11 - 003760040 _____ (FDRLab.com ) C:\Users\kisiu\Downloads\video_converter_setup.exe 2019-03-27 23:06 - 2019-03-27 23:06 - 002282309 _____ ( ) C:\Users\kisiu\Downloads\YouTube-Downloader-HD-45506-AsystentPobierania_3664111762.exe 2019-03-20 09:30 - 2019-03-20 09:36 - 000000000 ____D C:\Users\kisiu\Desktop\Nowy folder (10) 2019-03-17 10:50 - 2019-03-17 10:50 - 000000000 ____D C:\Users\kisiu\Desktop\zdjęcia.wideo sylwia 2019-03-17 10:49 - 2019-03-17 10:49 - 000000000 ____D C:\Users\kisiu\Desktop\Nowy folder (9) 2019-03-17 10:49 - 2019-03-17 10:49 - 000000000 ____D C:\Users\kisiu\Desktop\Nowy folder (8) 2019-03-15 16:03 - 2019-03-15 16:03 - 000000000 ____D C:\ProgramData\Riot Games 2019-03-15 16:02 - 2019-03-15 16:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends 2019-03-15 16:02 - 2019-03-15 16:02 - 000000826 _____ C:\Users\Public\Desktop\League of Legends.lnk 2019-03-15 16:02 - 2008-07-12 09:18 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2019-03-15 16:02 - 2008-07-12 09:18 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2019-03-15 16:02 - 2008-07-12 09:18 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2019-03-14 21:29 - 2019-03-14 21:29 - 000000000 ____D C:\Riot Games 2019-03-14 21:28 - 2019-03-14 21:28 - 099175840 _____ (Riot Games, Inc) C:\Users\kisiu\Desktop\League of Legends installer EUNE.exe 2019-03-13 15:30 - 2019-02-16 07:32 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2019-03-13 15:30 - 2019-02-16 07:30 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2019-03-13 15:30 - 2019-02-10 18:41 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2019-03-13 15:30 - 2019-02-10 18:41 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll 2019-03-13 15:30 - 2019-02-10 18:41 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll 2019-03-13 15:30 - 2019-02-10 18:29 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2019-03-13 15:30 - 2019-02-10 18:29 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2019-03-13 15:30 - 2019-02-10 18:29 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2019-03-13 15:30 - 2019-02-10 18:28 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe 2019-03-13 15:30 - 2019-02-10 18:28 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2019-03-13 15:30 - 2019-02-10 18:10 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys 2019-03-13 15:30 - 2019-02-10 18:09 - 014635520 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2019-03-13 15:30 - 2019-02-10 18:09 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2019-03-13 15:30 - 2019-02-10 18:09 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2019-03-13 15:30 - 2019-02-10 18:09 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2019-03-13 15:30 - 2019-02-10 18:09 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2019-03-13 15:30 - 2019-02-10 18:09 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2019-03-13 15:30 - 2019-02-10 18:09 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2019-03-13 15:30 - 2019-02-10 18:09 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll 2019-03-13 15:30 - 2019-02-10 18:09 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll 2019-03-13 15:30 - 2019-02-10 18:09 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2019-03-13 15:30 - 2019-02-10 18:09 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll 2019-03-13 15:30 - 2019-02-10 18:09 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2019-03-13 15:30 - 2019-02-10 18:09 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll 2019-03-13 15:30 - 2019-02-10 18:08 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll 2019-03-13 15:30 - 2019-02-10 18:07 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2019-03-13 15:30 - 2019-02-10 18:07 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2019-03-13 15:30 - 2019-02-10 18:07 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2019-03-13 15:30 - 2019-02-10 18:07 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2019-03-13 15:30 - 2019-02-10 18:02 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys 2019-03-13 15:30 - 2019-02-10 17:50 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe 2019-03-13 15:30 - 2019-02-10 17:49 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2019-03-13 15:30 - 2019-02-10 17:49 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2019-03-13 15:30 - 2019-02-10 17:38 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe 2019-03-13 15:30 - 2019-02-10 17:38 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe 2019-03-13 15:28 - 2019-03-06 05:18 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2019-03-13 15:28 - 2019-03-06 05:18 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2019-03-13 15:28 - 2019-03-06 05:14 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2019-03-13 15:28 - 2019-03-06 05:14 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2019-03-13 15:28 - 2019-03-06 05:13 - 005552872 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2019-03-13 15:28 - 2019-03-06 05:13 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2019-03-13 15:28 - 2019-03-06 05:12 - 001664360 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:04 - 004055784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2019-03-13 15:28 - 2019-03-06 05:04 - 003960552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2019-03-13 15:28 - 2019-03-06 05:02 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2019-03-13 15:28 - 2019-03-06 05:01 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 05:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 04:45 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2019-03-13 15:28 - 2019-03-06 04:45 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2019-03-13 15:28 - 2019-03-06 04:45 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2019-03-13 15:28 - 2019-03-06 04:44 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2019-03-13 15:28 - 2019-03-06 04:42 - 003228160 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2019-03-13 15:28 - 2019-03-06 04:42 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2019-03-13 15:28 - 2019-03-06 04:41 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2019-03-13 15:28 - 2019-03-06 04:41 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys 2019-03-13 15:28 - 2019-03-06 04:41 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll 2019-03-13 15:28 - 2019-03-06 04:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2019-03-13 15:28 - 2019-03-06 04:38 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2019-03-13 15:28 - 2019-03-06 04:38 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2019-03-13 15:28 - 2019-03-06 04:38 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2019-03-13 15:28 - 2019-03-06 04:38 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2019-03-13 15:28 - 2019-03-06 04:38 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2019-03-13 15:28 - 2019-03-06 04:38 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2019-03-13 15:28 - 2019-03-06 04:37 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2019-03-13 15:28 - 2019-03-06 04:37 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys 2019-03-13 15:28 - 2019-03-06 04:37 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys 2019-03-13 15:28 - 2019-03-06 04:37 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys 2019-03-13 15:28 - 2019-03-06 04:37 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys 2019-03-13 15:28 - 2019-03-06 04:37 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2019-03-13 15:28 - 2019-03-06 04:37 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2019-03-13 15:28 - 2019-03-06 04:37 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2019-03-13 15:28 - 2019-03-06 04:37 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2019-03-13 15:28 - 2019-03-06 04:37 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2019-03-13 15:28 - 2019-03-06 04:36 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2019-03-13 15:28 - 2019-03-06 04:36 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 04:36 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 04:36 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2019-03-13 15:28 - 2019-03-06 04:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2019-03-13 15:28 - 2019-03-05 04:44 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2019-03-13 15:28 - 2019-03-05 04:44 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2019-03-13 15:28 - 2019-03-05 04:44 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys 2019-03-13 15:28 - 2019-02-27 00:41 - 000397104 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2019-03-13 15:28 - 2019-02-26 23:47 - 000348984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2019-03-13 15:28 - 2019-02-26 09:57 - 025737216 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2019-03-13 15:28 - 2019-02-26 09:46 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2019-03-13 15:28 - 2019-02-26 09:45 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2019-03-13 15:28 - 2019-02-26 09:33 - 002902528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2019-03-13 15:28 - 2019-02-26 09:32 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2019-03-13 15:28 - 2019-02-26 09:31 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2019-03-13 15:28 - 2019-02-26 09:31 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2019-03-13 15:28 - 2019-02-26 09:31 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2019-03-13 15:28 - 2019-02-26 09:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2019-03-13 15:28 - 2019-02-26 09:25 - 020281856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2019-03-13 15:28 - 2019-02-26 09:25 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2019-03-13 15:28 - 2019-02-26 09:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2019-03-13 15:28 - 2019-02-26 09:22 - 005777920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2019-03-13 15:28 - 2019-02-26 09:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2019-03-13 15:28 - 2019-02-26 09:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2019-03-13 15:28 - 2019-02-26 09:20 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2019-03-13 15:28 - 2019-02-26 09:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2019-03-13 15:28 - 2019-02-26 09:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2019-03-13 15:28 - 2019-02-26 09:19 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2019-03-13 15:28 - 2019-02-26 09:12 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2019-03-13 15:28 - 2019-02-26 09:09 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2019-03-13 15:28 - 2019-02-26 09:07 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2019-03-13 15:28 - 2019-02-26 09:07 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2019-03-13 15:28 - 2019-02-26 09:06 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2019-03-13 15:28 - 2019-02-26 09:06 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2019-03-13 15:28 - 2019-02-26 09:05 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2019-03-13 15:28 - 2019-02-26 09:04 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2019-03-13 15:28 - 2019-02-26 09:03 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2019-03-13 15:28 - 2019-02-26 09:02 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2019-03-13 15:28 - 2019-02-26 09:02 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2019-03-13 15:28 - 2019-02-26 09:01 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2019-03-13 15:28 - 2019-02-26 09:00 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2019-03-13 15:28 - 2019-02-26 08:59 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2019-03-13 15:28 - 2019-02-26 08:58 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2019-03-13 15:28 - 2019-02-26 08:58 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2019-03-13 15:28 - 2019-02-26 08:57 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2019-03-13 15:28 - 2019-02-26 08:57 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2019-03-13 15:28 - 2019-02-26 08:57 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2019-03-13 15:28 - 2019-02-26 08:56 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2019-03-13 15:28 - 2019-02-26 08:54 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2019-03-13 15:28 - 2019-02-26 08:49 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2019-03-13 15:28 - 2019-02-26 08:46 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2019-03-13 15:28 - 2019-02-26 08:44 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2019-03-13 15:28 - 2019-02-26 08:44 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2019-03-13 15:28 - 2019-02-26 08:43 - 015284224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2019-03-13 15:28 - 2019-02-26 08:43 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2019-03-13 15:28 - 2019-02-26 08:43 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2019-03-13 15:28 - 2019-02-26 08:43 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2019-03-13 15:28 - 2019-02-26 08:41 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2019-03-13 15:28 - 2019-02-26 08:41 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2019-03-13 15:28 - 2019-02-26 08:41 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2019-03-13 15:28 - 2019-02-26 08:41 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2019-03-13 15:28 - 2019-02-26 08:39 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2019-03-13 15:28 - 2019-02-26 08:38 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2019-03-13 15:28 - 2019-02-26 08:35 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2019-03-13 15:28 - 2019-02-26 08:33 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2019-03-13 15:28 - 2019-02-26 08:31 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2019-03-13 15:28 - 2019-02-26 08:31 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2019-03-13 15:28 - 2019-02-26 08:30 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2019-03-13 15:28 - 2019-02-26 08:29 - 013681664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2019-03-13 15:28 - 2019-02-26 08:29 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2019-03-13 15:28 - 2019-02-26 08:18 - 001557504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2019-03-13 15:28 - 2019-02-26 08:12 - 004386304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2019-03-13 15:28 - 2019-02-26 08:09 - 001332224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2019-03-13 15:28 - 2019-02-26 08:07 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2019-03-13 15:28 - 2019-02-26 08:06 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2019-03-13 15:28 - 2019-02-22 05:07 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll 2019-03-13 15:28 - 2019-02-22 05:07 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll 2019-03-13 15:28 - 2019-02-22 04:56 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll 2019-03-13 15:28 - 2019-02-22 04:55 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll 2019-03-13 15:28 - 2019-02-22 04:35 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll 2019-03-13 15:28 - 2019-02-16 08:02 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2019-03-13 15:28 - 2019-02-16 08:02 - 000972288 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2019-03-13 15:28 - 2019-02-16 08:02 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2019-03-13 15:28 - 2019-02-16 08:02 - 000516608 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll 2019-03-13 15:28 - 2019-02-16 08:02 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2019-03-13 15:28 - 2019-02-16 08:02 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll 2019-03-13 15:28 - 2019-02-16 08:01 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll 2019-03-13 15:28 - 2019-02-16 07:50 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2019-03-13 15:28 - 2019-02-16 07:50 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2019-03-13 15:28 - 2019-02-16 07:50 - 000321536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2019-03-13 15:28 - 2019-02-16 07:50 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll 2019-03-13 15:28 - 2019-02-16 07:33 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll 2019-03-13 15:28 - 2019-02-15 18:09 - 000485888 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2019-03-13 15:28 - 2019-02-15 18:09 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll 2019-03-13 15:28 - 2019-02-15 18:09 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll 2019-03-13 15:28 - 2019-02-15 17:58 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2019-03-13 15:28 - 2019-02-15 17:58 - 000320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll 2019-03-13 15:28 - 2019-02-15 17:40 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe 2019-03-13 15:28 - 2019-02-15 17:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe 2019-03-13 15:28 - 2019-02-15 17:40 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe 2019-03-13 15:28 - 2019-02-15 17:38 - 000360960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe 2019-03-13 15:28 - 2019-02-15 17:38 - 000053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe 2019-03-13 15:28 - 2019-02-15 17:38 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe 2019-03-13 15:28 - 2019-02-15 17:38 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll 2019-03-13 15:28 - 2019-02-10 18:10 - 001680104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2019-03-13 15:28 - 2019-02-10 17:36 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys 2019-03-13 15:28 - 2019-02-10 17:36 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys 2019-03-13 15:28 - 2019-02-10 17:36 - 000195584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys 2019-03-13 15:28 - 2019-02-10 17:35 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys 2019-03-13 15:28 - 2019-02-08 18:08 - 002009088 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2019-03-13 15:28 - 2019-02-08 18:08 - 001889280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2019-03-13 15:28 - 2019-02-08 18:08 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2019-03-13 15:28 - 2019-02-08 18:08 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2019-03-13 15:28 - 2019-02-08 18:07 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll 2019-03-13 15:28 - 2019-02-08 17:59 - 001391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2019-03-13 15:28 - 2019-02-08 17:59 - 001241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2019-03-13 15:28 - 2019-02-08 17:59 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll 2019-03-13 15:28 - 2019-02-08 17:59 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll 2019-03-13 15:28 - 2019-02-08 17:59 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2019-03-13 15:28 - 2019-02-07 18:06 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\brdgcfg.dll 2019-03-13 15:28 - 2019-02-07 18:06 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\bridgeres.dll 2019-03-13 15:28 - 2019-02-07 18:01 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys 2019-03-13 15:28 - 2019-02-07 17:46 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\bridgeunattend.exe 2019-03-13 15:28 - 2019-02-03 17:36 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys 2019-03-13 15:28 - 2019-01-04 18:13 - 000143592 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2019-03-13 15:28 - 2019-01-04 18:07 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2019-03-13 15:28 - 2019-01-04 16:05 - 002862592 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2019-03-13 15:28 - 2019-01-04 16:05 - 001635328 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2019-03-13 15:28 - 2019-01-04 16:05 - 000799744 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2019-03-13 15:28 - 2019-01-04 16:05 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2019-03-13 15:28 - 2019-01-04 16:05 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2019-03-13 15:28 - 2019-01-04 16:05 - 000451584 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2019-03-13 15:28 - 2019-01-04 16:05 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2019-03-13 15:28 - 2019-01-04 16:05 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2019-03-13 15:28 - 2019-01-03 18:10 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2019-03-13 15:28 - 2019-01-03 17:55 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2019-03-10 13:57 - 2019-03-10 13:57 - 000000000 ____D C:\Users\kisiu\AppData\Local\STAR WARS Battlefront II ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-04-09 10:14 - 2018-09-01 19:28 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\uTorrent 2019-04-09 10:12 - 2009-07-14 06:45 - 000022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2019-04-09 10:12 - 2009-07-14 06:45 - 000022064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2019-04-09 10:08 - 2018-12-20 15:25 - 000000034 _____ C:\Windows\AvEmUpdate.ini 2019-04-09 10:04 - 2011-04-12 15:21 - 003142670 _____ C:\Windows\system32\perfh015.dat 2019-04-09 10:04 - 2011-04-12 15:21 - 000968220 _____ C:\Windows\system32\perfc015.dat 2019-04-09 10:04 - 2009-07-14 07:13 - 000006208 _____ C:\Windows\system32\PerfStringBackup.INI 2019-04-09 09:58 - 2018-12-20 12:59 - 000000000 _____ C:\Windows\SysWOW64\last.dump 2019-04-09 09:58 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2019-04-06 23:13 - 2018-09-01 12:03 - 000065536 _____ C:\Windows\system32\spu_storage.bin 2019-04-06 21:02 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2019-04-06 10:45 - 2018-09-02 00:52 - 000000000 ____D C:\Users\kisiu\Desktop\GRY DZIECI 2019-04-05 18:11 - 2018-09-02 00:37 - 000000000 ____D C:\Users\kisiu\Documents\Euro Truck Simulator 2 2019-04-05 15:49 - 2018-09-02 00:44 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\.minecraft 2019-04-03 21:40 - 2018-10-25 21:41 - 000000000 ____D C:\Program Files (x86)\Origin 2019-03-31 21:37 - 2019-02-25 22:44 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2019-03-28 00:44 - 2018-09-02 00:44 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\Anvsoft 2019-03-28 00:44 - 2018-09-01 11:28 - 000000000 ____D C:\Users\kisiu 2019-03-28 00:34 - 2018-09-01 19:25 - 000000000 ____D C:\Programy 2019-03-27 22:52 - 2018-09-01 11:34 - 000003480 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2019-03-27 22:52 - 2018-09-01 11:34 - 000003352 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2019-03-27 22:49 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF 2019-03-27 22:39 - 2018-12-20 11:24 - 000004170 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2019-03-26 20:27 - 2018-09-02 00:44 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\Origin 2019-03-26 20:27 - 2018-09-01 23:24 - 000000000 ____D C:\ProgramData\Origin 2019-03-26 16:14 - 2018-11-02 11:32 - 000000910 _____ C:\Users\Public\Desktop\STAR WARS Battlefront II.lnk 2019-03-21 14:53 - 2018-09-16 19:52 - 000002234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-03-21 14:53 - 2018-09-16 19:52 - 000002193 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2019-03-17 19:59 - 2018-10-19 20:58 - 000001346 _____ C:\Users\kisiu\Desktop\Roblox Player.lnk 2019-03-17 19:59 - 2018-10-19 20:58 - 000001165 _____ C:\Users\kisiu\Desktop\Roblox Studio.lnk 2019-03-17 19:59 - 2018-09-02 00:44 - 000000000 ____D C:\Users\kisiu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox 2019-03-17 18:54 - 2018-12-12 21:40 - 000000114 _____ C:\Users\kisiu\Desktop\USB Disk Format Tool.url 2019-03-15 19:39 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache 2019-03-14 18:28 - 2009-07-14 06:45 - 000269584 _____ C:\Windows\system32\FNTCACHE.DAT 2019-03-14 16:35 - 2018-09-03 12:59 - 000000000 ___SD C:\Windows\system32\CompatTel 2019-03-14 16:35 - 2018-09-03 12:59 - 000000000 ____D C:\Windows\system32\appraiser 2019-03-14 16:35 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\Dism 2019-03-14 16:35 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Dism 2019-03-14 16:13 - 2018-10-09 21:45 - 000000000 ____D C:\Windows\system32\MRT 2019-03-14 15:53 - 2018-10-09 21:44 - 127411920 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe ==================== Pliki w katalogu głównym wybranych folderów ======= 2018-09-16 18:46 - 2018-09-16 18:59 - 000000004 _____ () C:\ProgramData\lock.dat 2018-09-02 00:44 - 2018-06-10 23:44 - 000000068 _____ () C:\Users\kisiu\AppData\Roaming\nero_photoshow_express.txt 2019-04-06 10:49 - 2019-04-06 10:49 - 000000045 _____ () C:\Users\kisiu\AppData\Roaming\WB.CFG 2018-09-02 00:38 - 2017-02-16 19:43 - 000000032 _____ () C:\Users\kisiu\AppData\Local\origins.ini 2019-01-13 16:23 - 2019-01-13 16:23 - 050496864 _____ (Sony) C:\Users\kisiu\AppData\Local\pcc.exe 2018-09-02 00:38 - 2018-05-15 00:28 - 000007606 _____ () C:\Users\kisiu\AppData\Local\resmon.resmoncfg Niektóre pliki w TEMP: ==================== 2009-06-09 11:59 - 2009-06-09 11:59 - 001103080 ____N (Techland) C:\Users\kisiu\AppData\Local\Temp\CoJBiBLauncher.exe 2009-02-02 18:07 - 2009-02-02 18:07 - 001909770 _____ (Adobe Systems Incorporated) C:\Users\kisiu\AppData\Local\Temp\FP_AX_MSI_INSTALLER.exe 2018-10-31 21:36 - 2019-03-06 05:01 - 001114112 _____ (Microsoft Corporation) C:\Users\kisiu\AppData\Local\Temp\kernel32.dll 2019-04-05 15:47 - 2019-04-05 15:47 - 002293120 _____ (Mebi ) C:\Users\kisiu\AppData\Local\Temp\minecraft-1-13-2-ks_1468168120.exe 2018-09-01 12:06 - 2018-09-01 12:07 - 495897448 _____ (AMD Inc.) C:\Users\kisiu\AppData\Local\Temp\tmpF3C0.exe 2019-01-13 16:24 - 2019-01-13 16:24 - 050051080 _____ (Sony) C:\Users\kisiu\AppData\Local\Temp\xcsEE55.tmp.exe 2019-03-27 23:50 - 2019-03-27 23:50 - 002282309 _____ ( ) C:\Users\kisiu\AppData\Local\Temp\xVideoServiceThief-17683-AsystentPobierania_0960543276.exe 2006-05-24 06:10 - 2006-05-24 06:10 - 000455600 ____R (Macrovision Corporation) C:\Users\kisiu\AppData\Local\Temp\_is8E3A.exe 2011-12-22 04:31 - 2011-12-22 04:31 - 000457496 ____R (Macrovision Corporation) C:\Users\kisiu\AppData\Local\Temp\_is9C0F.exe Niektóre zerobajtowe pliki/foldery: ========================== C:\Windows\SysWOW64\mmc.exe C:\Windows\SysWOW64\wdc.dll C:\Windows\System32\mstscax.dll ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\dllhost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\dllhost.exe => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2019-04-03 22:08 ==================== Koniec FRST.txt ============================ Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 17.03.2019 Uruchomiony przez kisiu (09-04-2019 10:16:48) Uruchomiony z C:\Users\kisiu\Downloads Windows 7 Home Premium Service Pack 1 (X64) (2018-09-01 09:28:46) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-226745190-3671943294-1066845545-500 - Administrator - Disabled) Gość (S-1-5-21-226745190-3671943294-1066845545-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-226745190-3671943294-1066845545-1002 - Limited - Enabled) kisiu (S-1-5-21-226745190-3671943294-1066845545-1000 - Administrator - Enabled) => C:\Users\kisiu ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\uTorrent) (Version: 3.5.5.45146 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (HKLM\...\{55D55008-E5F6-47D6-B16F-B2A40D4D145F}) (Version: 6.2.1 - Hewlett-Packard) Hidden ACP Application (HKLM\...\{8F2E67C6-A42E-D017-4D7E-85CCA72B53ED}) (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden Adobe Flash Player 10 ActiveX (HKLM-x32\...\{922E8525-AC7E-4294-ACAA-43712D4423C0}) (Version: 10.0.22.87 - Adobe Systems, Inc.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.8.2 - Advanced Micro Devices, Inc.) Any Video Converter 6.3.1 (HKLM-x32\...\Any Video Converter) (Version: 6.3.1 - Anvsoft) ARK - Survival Evolved (HKLM-x32\...\ARK - Survival Evolved_is1) (Version: 0.2.3.8 - Instinct Games) Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software) Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts) Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking) Branding64 (HKLM\...\{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden BufferChm (HKLM-x32\...\{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}) (Version: 130.0.331.000 - Hewlett-Packard) Hidden CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden Copy (HKLM-x32\...\{FAF26102-09D7-4C58-AB01-0D59A2E517CA}) (Version: 130.0.366.000 - Hewlett-Packard) Hidden DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 5.4.0.0377 - Disc Soft Ltd) Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 130.0.0.0 - Hewlett-Packard) Hidden DeviceDiscovery (HKLM-x32\...\{21A2F5EE-1DC5-488A-BE7E-E526F8C61488}) (Version: 130.0.372.000 - Hewlett-Packard) Hidden DJ_AIO_06_F4500_SW_MIN (HKLM-x32\...\{497072FE-0A75-4E5C-A5B7-EB1FA67F66F1}) (Version: 130.0.406.000 - Hewlett-Packard) Hidden Empire Total War wersja 1.5.0 (HKLM-x32\...\Empire Total War_is1) (Version: 1.5.0 - Sega) Epic Games Launcher (HKLM-x32\...\{522E8303-E0B1-4E70-B42C-67C8312AA507}) (Version: 1.1.163.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden F4500 (HKLM-x32\...\{55A7B938-3D1E-4819-A87B-F83E736EF52E}) (Version: 130.0.406.000 - Hewlett-Packard) Hidden Fernbus Simulator (HKLM-x32\...\Fernbus Simulator_is1) (Version: - ) FOX Audio 7.1 (HKLM-x32\...\SSS16xxAudioExt) (Version: 5.3.2016.10 - Sharkoon) Goodgame Empire (HKLM-x32\...\Goodgame Empire) (Version: - ) <==== UWAGA Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.86 - Google Inc.) Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.57 - Google Inc.) Hidden GPBaseService2 (HKLM-x32\...\{63FF21C9-A810-464F-B60A-3111747B1A6D}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP) HP Deskjet F4500 Printer Driver Software 13.0 Rel .6 (HKLM\...\{7F08A772-2816-4F46-84F1-49578502AD28}) (Version: 13.0 - HP) HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP) HP Print Projects 1.0 (HKLM\...\HP Print Projects) (Version: 1.0 - HP) HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP) HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP) HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 130.0.282.000 - Hewlett-Packard) Hidden hpPrintProjects (HKLM-x32\...\{C75CDBA2-3C86-481e-BD10-BDDA758F9DFF}) (Version: 130.0.303.000 - Hewlett-Packard) Hidden HPProductAssistant (HKLM-x32\...\{C43326F5-F135-4551-8270-7F7ABA0462E1}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden HPSSupply (HKLM-x32\...\{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden hpWLPGInstaller (HKLM-x32\...\{07FB17D8-7DB6-4F06-80C4-8BE1719CB6A1}) (Version: 130.0.303.000 - Hewlett-Packard) Hidden Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.1.209 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation) Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation) KeyDominator2 (HKLM-x32\...\BloodyKeyboard) (Version: 17.09.0001 - Bloody) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc) Logitech G Spark (HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\Overwolf_khjpncbfpphgbaimacmhmhbojhbcjiadkcjnhnkc) (Version: 1.2.22 - Overwolf app) Logitech Gaming Software 8.96 (HKLM\...\Logitech Gaming Software) (Version: 8.96.88 - Logitech Inc.) Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.) Malwarebytes (wersja 3.7.1.2839) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes) MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nero 2016 (HKLM-x32\...\{4297E807-5633-466A-8AC0-5AC48D310471}) (Version: 17.0.02000 - Nero AG) Nero 2016 Content Pack (HKLM-x32\...\{006F5CFF-ED35-41AF-9B2A-F52B0F545BF4}) (Version: 17.0.00200 - Nero AG) Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2000 - Nero AG) Network64 (HKLM\...\{05EFBF37-0E52-4579-875C-7EEF0DFB4FCB}) (Version: 130.0.572.000 - Hewlett-Packard) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.36.23506 - Electronic Arts, Inc.) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.125.0.27 - Overwolf Ltd.) Paragon Partition Manager™ 10.0 Professional Special Edition (HKLM\...\{A35001F0-F1E4-11DD-A38B-005056C00008}) (Version: 90.00.0003 - Paragon Software) Prerequisite installer (HKLM-x32\...\{5F284483-EE8D-447E-BEBE-2BF13B08C4BF}) (Version: 17.0.0002 - Nero AG) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6526 - Realtek Semiconductor Corp.) Roblox Player for kisiu (HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\roblox-player) (Version: - Roblox Corporation) Roblox Studio for kisiu (HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\roblox-studio) (Version: - Roblox Corporation) Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Hidden Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.51.0 - SAMSUNG Electronics Co., Ltd.) Scan (HKLM-x32\...\{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18091.6 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18091.6 - Samsung Electronics Co., Ltd.) SmartWebPrinting (HKLM-x32\...\{68A10D12-0D0F-4212-BDE6-D87FAD32A8FA}) (Version: 130.0.373.000 - Hewlett-Packard) Hidden SolutionCenter (HKLM-x32\...\{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}) (Version: 130.0.373.000 - Hewlett-Packard) Hidden SoulCalibur 6 (HKLM-x32\...\SoulCalibur 6_is1) (Version: - ) STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.7.32019 - Electronic Arts) Stashimi Stub Installer (HKLM-x32\...\{910B539D-F257-46C8-9CB8-6C95EFF9CF22}) (Version: 18.001.1 - Nero AG) Hidden Status (HKLM-x32\...\{AE8705FB-E13C-40A9-8A2D-68D6733FBFC2}) (Version: 130.0.373.000 - Hewlett-Packard) Hidden Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve) Stronghold 3 (HKLM-x32\...\Stronghold 3_is1) (Version: - ) Toolbox (HKLM-x32\...\{6BBA26E9-AB03-4FE7-831A-3535584CA002}) (Version: 130.0.648.000 - Hewlett-Packard) Hidden TrayApp (HKLM-x32\...\{DC0A5F99-FD66-433F-9D3A-05DCBA64BE42}) (Version: 130.0.376.000 - Hewlett-Packard) Hidden Two Point Hospital MULTi9 - ElAmigos wersja 1.5.21458 (HKLM-x32\...\{2D56628D-FA17-4CFC-A577-9F573E9FA8FA}_is1) (Version: 1.5.21458 - SEGA) Uninstall Tool (HKLM\...\Uninstall Tool_is1) (Version: 3.4.1 - CrystalIDEA Software, Inc.) Unknown Device Identifier 9.01 (HKLM\...\Unknown Device Identifier_is1) (Version: 9.01 - Huntersoft) Unravel™ (HKLM-x32\...\{5105E605-9EE7-4050-9CC0-005093BBF89A}) (Version: 1.0.0.0 - Electronic Arts, Inc.) Usługa Xperia Companion (HKLM\...\{AEEFEB49-3F89-4B0E-9031-56563B8F7D4E}) (Version: 2.3.7.0 - Sony) Hidden Wargaming.net Game Center (HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\Wargaming.net Game Center) (Version: 19.1.0.3996 - Wargaming.net) WarThunder (HKLM-x32\...\WarThunder) (Version: - ) <==== UWAGA WebReg (HKLM-x32\...\{43CDF946-F5D9-4292-B006-BA0D92013021}) (Version: 130.0.132.017 - Hewlett-Packard) Hidden Wiedźmin: Edycja rozszerzona wersja 1.6 (HKLM-x32\...\Wiedźmin: Edycja rozszerzona_is1) (Version: 1.6 - CD Projekt RED) WinRAR 5.10 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH) Wolfenstein II The New Colossus MULTi8 - ElAmigos wersja 1.0 u7 (HKLM-x32\...\{83A4188A-0AA2-4306-9219-368BE2EB362D}_is1) (Version: 1.0 u7 - Bethesda Softworks) World of Tanks (HKLM-x32\...\World of Tanks) (Version: - ) World of Tanks EU (HKU\S-1-5-21-226745190-3671943294-1066845545-1000\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net) Xperia Companion (HKLM-x32\...\{128ab02b-3b93-4490-8304-8b16d7d1564f}) (Version: 2.3.7.0 - Sony) Xperia Companion (HKLM-x32\...\{8F6C5405-9677-4516-BCB0-775128C31874}) (Version: 2.3.7.0 - Sony) Hidden ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShA64.dll [2018-12-20] (AVAST Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShA64.dll [2018-12-20] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShA64.dll [2018-12-20] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [DaemonShellExtImage] -> {40966797-8FFE-46C8-9EF8-7003F33CCF0F} => C:\Programy (x86)\DAEMON Tools Pro\DTShl64.dll [2013-10-17] (Disc Soft Ltd -> Disc Soft Ltd) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Programy\WinRAR\rarext.dll [2014-06-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Programy\WinRAR\rarext32.dll [2014-06-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [DaemonShellExtDrive] -> {A5415364-784A-41A5-B47A-D452909CA8FF} => C:\Programy (x86)\DAEMON Tools Pro\DTShl64.dll [2013-10-17] (Disc Soft Ltd -> Disc Soft Ltd) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShA64.dll [2018-12-20] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google) ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Brak pliku ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-08-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShA64.dll [2018-12-20] (AVAST Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Brak pliku ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Programy\WinRAR\rarext.dll [2014-06-13] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Programy\WinRAR\rarext32.dll [2014-06-13] (win.rar GmbH -> Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0694942E-0715-4C6E-8246-15B5F6AE9EAC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {174F40D2-0E9C-4B03-AC5B-B254F483011A} - System32\Tasks\RunUninstallTool_SkipUac => C:\Programy\Uninstall Tool\UninstallTool.exe (crystalidea.com -> CrystalIDEA Software) [Brak podpisu cyfrowego] Task: {18C0BAEA-C9C9-4942-B8B9-E5AC7CBD9C48} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software) Task: {23D030C5-208A-42FE-BFE2-CA9C40980B52} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {28D0B0BB-70E2-40E3-9529-E95CBD59C6DC} - System32\Tasks\{157ABC98-0412-4168-B8A4-D2E2FA943AC0} => C:\Windows\system32\pcalua.exe -a "D:\dowland torrent\Nero 2016 Platinum v17.0.02000 + Crack [TechTools.net]\Nero 2016 Platinum v17.0.02000 + Crack [TechTools.net]\setup.exe" -d "D:\dowland torrent\Nero 2016 Platinum v17.0.02000 + Crack [TechTools.net]\Nero 2016 Platinum v17.0.02000 + Crack [TechTools.net]" Task: {32F2A4C2-7E09-41A1-A54E-072B5E3E080C} - System32\Tasks\Trojan Killer => C:\Programy\GridinSoft Trojan Killer\trojankiller.exe Task: {336CB79B-B1D5-44D6-B4C2-E570B80D494B} - System32\Tasks\{84CDF2E8-67AF-4C91-8B60-B0DC75B78AA2} => E:\PCFormat.exe Task: {382CE564-FB86-45EA-AC64-3AC6033C8B9A} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe (Overwolf Ltd -> Overwolf LTD) Task: {3CDC66D1-6315-47AD-BAE4-E70A63DD0DF4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {44D7B074-72CB-49AF-8460-B320DE9837E6} - System32\Tasks\{33390668-2737-4169-8876-F3485948B6DA} => E:\PCFormat.exe Task: {4934B951-C168-47B8-A087-051AE43B9D45} - System32\Tasks\{B22CEDD1-A2BB-43B3-9914-DF783345160A} => E:\PCFormat.exe Task: {80558A65-0F97-4C5C-A0BC-295A946A5E32} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {94BE3578-A1BA-410F-B5D7-BB2C2A4DEE87} - \58D9CDE8-5C02-81F6-3836-7823DD5F629D -> Brak pliku <==== UWAGA Task: {99E2F092-8A9E-4E81-A317-FEC9A1AB26FA} - System32\Tasks\{9571405C-816B-48E4-A42E-EFBA521ACA9E} => C:\Windows\system32\pcalua.exe -a "G:\instalki programów\ANTYWIRUSY\Outpost Firewall PRO 4.0 PL\Outpost Firewall PRO 4.0 PL\Outpost Firewall PRO 4.0 PL.exe" -d "G:\instalki programów\ANTYWIRUSY\Outpost Firewall PRO 4.0 PL\Outpost Firewall PRO 4.0 PL" Task: {C471536A-6406-42ED-8B8C-2526E6D62A5B} - System32\Tasks\updane\{1D21170E-9BF9-4524-712F-3681BEB42103} => C:\Users\kisiu\AppData\Roaming\Rusoce\updane.exe () [Brak podpisu cyfrowego] Task: {EC8FA8E7-85AB-4015-8973-1911B38E2592} - System32\Tasks\Avast Emergency Update => C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software) Task: {EF4DEFFA-96F0-4851-9358-7A3404737E9F} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe (Nero AG -> Nero AG) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] Shortcut: C:\Users\kisiu\Desktop\SuperFrog.lnk -> D:\GRY\SFrog-Key.bat () Shortcut: C:\Users\kisiu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SuperFrog (Nieoficjalna wersja pod Windows)\SuperFrog.lnk -> D:\GRY\SFrog-Key.bat () Shortcut: C:\Users\kisiu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Uninstаll Tool.lnk -> C:\Programy\Uninstall Tool\UninstallTool.exe (CrystalIDEA Software) <==== Cyrillic ShortcutWithArgument: C:\Users\kisiu\Desktop\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://go.playmmogames.com/aff_c?offer_id=698&aff_id=1034&source=3&aff_sub2=74RJAuqMSQDuhj11mo07dfKAPCa8hTp06YUyJipaHP2jshz998oTipJgAAAN60C0Qie&click_id=483b72afcd4ca97bbff6f5eb0c9ef4a3620be5f3 --app-window-size=1920,1080 ShortcutWithArgument: C:\Users\kisiu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks\World of Tanks.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://cpm.wargaming.net/ogu5s4c4/?pub_id=112&xid=nYgnC5iiAJwmciilN86IFVfICMUiiisOiiVR9m4kGKJ6KU2Gfj1x9gIjipJgAAAKy4ZU0ie --app-window-size=1920,1080 ShortcutWithArgument: C:\Users\kisiu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://go.playmmogames.com/aff_c?offer_id=698&aff_id=1034&source=3&aff_sub2=74RJAuqMSQDuhj11mo07dfKAPCa8hTp06YUyJipaHP2jshz998oTipJgAAAN60C0Qie&click_id=483b72afcd4ca97bbff6f5eb0c9ef4a3620be5f3 --app-window-size=1920,1080 ShortcutWithArgument: C:\Users\kisiu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://go.playmmogames.com/aff_c?offer_id=698&aff_id=1034&source=3&aff_sub2=74RJAuqMSQDuhj11mo07dfKAPCa8hTp06YUyJipaHP2jshz998oTipJgAAAN60C0Qie&click_id=483b72afcd4ca97bbff6f5eb0c9ef4a3620be5f3 --app-window-size=1920,1080 ShortcutWithArgument: C:\Users\kisiu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\World of Tanks.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://cpm.wargaming.net/ogu5s4c4/?pub_id=112&xid=nYgnC5iiAJwmciilN86IFVfICMUiiisOiiVR9m4kGKJ6KU2Gfj1x9gIjipJgAAAKy4ZU0ie --app-window-size=1920,1080 ==================== Załadowane moduły (filtrowane) ============== 2018-08-27 09:59 - 2018-08-27 09:59 - 000189952 _____ () [Brak podpisu cyfrowego] C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe 2018-09-02 22:53 - 2018-09-08 19:17 - 002711552 _____ (SSS) [Brak podpisu cyfrowego] C:\Windows\system32\AudioDeviceService.exe 2008-12-03 20:05 - 2008-12-03 20:05 - 000071680 _____ (Hewlett-Packard) [Brak podpisu cyfrowego] c:\windows\system32\hpzinw12.dll 2018-05-04 15:54 - 2018-05-04 15:54 - 000325632 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 069968896 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll 2018-05-04 15:54 - 2018-05-04 15:54 - 003406848 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2018-05-04 15:54 - 2018-05-04 15:54 - 006045184 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2018-08-27 10:12 - 2018-08-27 10:12 - 005766144 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2018-05-04 15:54 - 2018-05-04 15:54 - 003233792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2018-05-04 15:54 - 2018-05-04 15:54 - 000964096 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2018-05-04 15:54 - 2018-05-04 15:54 - 000109568 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll 2018-05-04 15:54 - 2018-05-04 15:54 - 000279552 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 005523456 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000282624 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 003281408 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000194560 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 001336320 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000015360 _____ () [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\libEGL.DLL 2018-05-04 15:55 - 2018-05-04 15:55 - 002519040 _____ () [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000032256 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000039936 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000034304 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000237056 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000025600 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll 2018-05-04 15:54 - 2018-05-04 15:54 - 000328704 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000025600 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000024064 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000481792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000018432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000311296 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000018432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000018432 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000049152 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll 2018-05-04 15:55 - 2018-05-04 15:55 - 000089600 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2019-04-05 15:49 - 2017-10-10 12:05 - 004186112 _____ (The Chromium Authors) [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\chrome.exe 2018-09-02 22:53 - 2018-09-08 19:17 - 010112000 _____ (Solid State System) [Brak podpisu cyfrowego] C:\Program Files (x86)\FOX Audio 7.1\FOX Audio 7.1.exe 2008-12-03 20:05 - 2008-12-03 20:05 - 000089600 _____ (Hewlett-Packard) [Brak podpisu cyfrowego] c:\windows\system32\hpzipm12.dll 2018-11-20 15:57 - 2018-11-20 15:57 - 002198016 _____ (Sony) [Brak podpisu cyfrowego] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe 2009-09-20 11:55 - 2009-09-20 11:55 - 001037824 _____ (Hewlett-Packard Co.) [Brak podpisu cyfrowego] c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll 2009-05-21 22:03 - 2009-05-21 22:03 - 000133120 _____ (Hewlett-Packard Co.) [Brak podpisu cyfrowego] c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll 2009-05-21 22:03 - 2009-05-21 22:03 - 000213504 _____ (Hewlett-Packard Co.) [Brak podpisu cyfrowego] c:\program files (x86)\hp\digital imaging\bin\hpqddcmn.dll 2009-05-21 22:13 - 2009-05-21 22:13 - 000248832 _____ (Hewlett-Packard Co.) [Brak podpisu cyfrowego] c:\program files (x86)\hp\digital imaging\bin\hpqcxs08.dll 2018-10-25 21:41 - 2019-01-29 21:58 - 005089792 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2018-10-25 21:41 - 2019-01-29 21:58 - 005841920 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Gui.dll 2018-10-25 21:41 - 2019-01-29 21:58 - 005487104 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Core.dll 2018-10-25 21:41 - 2019-01-29 21:58 - 001177600 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Network.dll 2018-10-25 21:41 - 2019-01-29 21:58 - 000184832 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\Qt5Xml.dll 2018-10-25 21:41 - 2019-01-29 21:58 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\LIBEAY32.dll 2018-10-25 21:41 - 2019-01-29 21:58 - 001611264 _____ (The Qt Company Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2018-10-25 21:41 - 2019-01-29 21:58 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Brak podpisu cyfrowego] C:\Program Files (x86)\Origin\ssleay32.dll 2018-09-01 19:52 - 2016-04-02 17:03 - 000003072 _____ (ADMIN@CRACK) [Brak podpisu cyfrowego] C:\Programy (x86)\DAEMON Tools Pro\MSIMG32.dll 2019-04-05 15:49 - 2017-10-10 12:05 - 000427520 _____ (The Chromium Authors) [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\63.0.3237.0\chrome_elf.dll 2019-04-05 15:49 - 2017-10-10 12:05 - 036962304 _____ (The Chromium Authors) [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\63.0.3237.0\chrome.dll 2019-02-15 15:54 - 2019-02-15 15:54 - 000487424 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\ba930fb409e49a4d2cc25b3747e1cd5d\IAStorUtil.ni.dll 2018-09-01 11:43 - 2011-11-29 20:03 - 000032768 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\pl-PL\IAStorIcon.resources.dll 2018-09-01 11:43 - 2011-11-29 20:00 - 001319424 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IntelVisualDesign.dll 2018-09-01 11:43 - 2011-11-29 20:03 - 000004608 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\pl-PL\IntelVisualDesign.resources.dll 2018-12-14 11:06 - 2018-12-14 11:06 - 000014336 _____ (Intel Corp.) [Brak podpisu cyfrowego] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\5e75a429d99af9d75e3b7a07cda6bbb5\IAStorCommon.ni.dll 2018-09-01 11:43 - 2011-11-29 20:00 - 000175616 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorUIHelper.dll 2018-09-01 11:45 - 2012-01-04 21:57 - 000073728 ____R (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll 2019-04-05 15:49 - 2017-10-10 12:05 - 049775616 _____ (The Chromium Authors) [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\63.0.3237.0\chrome_child.dll 2019-04-05 15:49 - 2017-10-10 12:05 - 003148800 _____ () [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\63.0.3237.0\libglesv2.dll 2019-04-05 15:49 - 2017-10-10 12:05 - 000078848 _____ () [Brak podpisu cyfrowego] C:\Users\kisiu\AppData\Local\chromium\Application\63.0.3237.0\libegl.dll 2019-02-25 22:44 - 2019-03-31 21:37 - 003084800 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll 2019-02-25 22:44 - 2019-03-31 21:37 - 005139968 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll 2019-02-25 22:44 - 2019-03-31 21:37 - 005010944 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll 2019-02-25 22:44 - 2019-03-31 21:37 - 002950144 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll 2019-02-25 22:44 - 2019-03-31 21:37 - 002234880 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll 2019-02-25 22:44 - 2019-03-31 21:37 - 004571648 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll 2019-02-25 22:44 - 2019-03-31 21:37 - 000438272 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll 2019-02-25 22:44 - 2019-03-31 21:37 - 001181184 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll 2019-02-25 22:44 - 2019-03-31 21:37 - 000124928 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll 2019-03-31 21:37 - 2019-03-31 21:37 - 000026112 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll 2019-03-31 21:37 - 2019-03-31 21:37 - 000020992 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll 2019-02-25 22:44 - 2019-03-31 21:37 - 000259584 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll 2019-03-31 21:37 - 2019-03-31 21:37 - 000014848 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll 2019-03-31 21:37 - 2019-03-31 21:37 - 000729088 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll 2019-03-31 21:37 - 2019-03-31 21:37 - 000073216 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll 2019-03-31 21:37 - 2019-03-31 21:37 - 000179712 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll 2019-03-31 21:37 - 2019-03-31 21:37 - 000014848 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll 2019-03-31 21:37 - 2019-03-31 21:37 - 000014848 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll 2019-03-31 21:37 - 2019-03-31 21:37 - 000101888 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll 2019-02-25 22:44 - 2019-03-31 21:37 - 000035328 _____ (The Qt Company Ltd.) [Brak podpisu cyfrowego] C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll 2019-02-15 15:54 - 2019-02-15 15:54 - 000019968 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\4657cf634b2b93294745b3913759b82a\IAStorDataMgrSvc.ni.exe 2019-02-15 15:54 - 2019-02-15 15:54 - 000225280 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\71339dd50e6fed4bd3ab2cc30c837bcd\IAStorDataMgr.ni.dll 2019-02-15 15:54 - 2019-02-15 15:54 - 000172032 _____ () [Brak podpisu cyfrowego] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\cb8a7580c52f2b4e4a65f2a98c3ae621\IsdiInterop.ni.dll 2018-09-01 11:43 - 2011-11-29 20:00 - 000059392 _____ () [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2018-09-01 11:43 - 2011-11-29 19:41 - 000278016 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\ISDI.dll 2018-09-01 11:43 - 2011-11-29 20:03 - 000007680 _____ (Intel Corporation) [Brak podpisu cyfrowego] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\pl-PL\IAStorDataMgr.resources.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [462] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2019-01-04 17:45 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static HKU\S-1-5-21-226745190-3671943294-1066845545-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\kisiu\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 31.11.202.254 - 37.8.214.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == Załączenie wejścia w fixlist spowoduje jego usunięcie. MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe -overwolfsilent ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{0B2C4F26-3154-493D-AA4B-BA32203A0569}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{C0E851A9-66BD-4CD7-B94C-E2C590A5D205}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) [Brak podpisu cyfrowego] FirewallRules: [{58F89609-B0A0-4277-97E5-613332F227DD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{78E7CA8B-FB71-4435-94A6-B566687D64E4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett-Packard) [Brak podpisu cyfrowego] FirewallRules: [{FB930841-DC7C-43E3-9C09-8166B200603C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{606C6A46-5DE8-4B76-A10E-75C7E1E4BB14}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe () [Brak podpisu cyfrowego] FirewallRules: [{852B1AE4-4469-479A-BE20-50DC1C171BD2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{F6621542-0042-4A48-BFA3-8C1EEE8E30ED}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett-Packard) [Brak podpisu cyfrowego] FirewallRules: [{9A9AF042-916F-41AD-99E1-AD6D4BE52812}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{A06FE283-7F9F-41AD-A3E4-B4A8ACB8D219}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe (Hewlett-Packard Co.) [Brak podpisu cyfrowego] FirewallRules: [{75B67229-FA9A-46DF-BF03-A76C37E2D692}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Hewlett-Packard) [Brak podpisu cyfrowego] FirewallRules: [{603D5036-DC39-43D1-AFCD-E3083D7A89DA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{E9AB1E94-B753-42BC-84FC-B232DB84A460}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{71A4EBFA-73E3-4BF8-A5BE-11B851CF2DD9}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe Brak pliku FirewallRules: [{76210736-B603-45DD-B0A3-130B508A13D0}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe (Hewlett-Packard Company -> Hewlett-Packard Co.) FirewallRules: [{5FA99A5D-30FC-4A14-81A6-C09326378CB2}] => (Allow) C:\Users\kisiu\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{45134300-277F-4031-BC17-31FC810DAD5D}] => (Allow) C:\Users\kisiu\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{C43266F0-D8D1-4B3E-9553-723476188514}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [UDP Query User{88047A6C-D934-400F-BAAE-2BBD25DD98F0}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [{56D50FB6-A546-406C-A155-40842C57E139}] => (Allow) C:\Programy\Nero\Nero 2016\Nero Burning ROM\StartNBR.exe (Nero AG -> Nero AG) FirewallRules: [{3BC50D1F-34CC-410F-9D25-C966BE4E1336}] => (Allow) C:\Programy\Nero\KM\NMDllHost.exe (Nero AG -> Nero AG) FirewallRules: [{CCF9B58A-7FB7-4DAB-90A4-56731D156566}] => (Allow) C:\Programy\Nero\Nero 2016\Nero Burning ROM\nero.exe (Nero AG -> Nero AG) FirewallRules: [TCP Query User{7B4F36F7-0A2D-4B0C-815D-A094CAEBFA4F}D:\gry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\gry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{D8948E0A-44C8-441B-82A8-10B6E643D2ED}D:\gry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\gry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{AFC5677A-12F2-40A5-BF51-74FECA722DFA}D:\gry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\gry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{880A81CD-F327-46CF-8E34-FD67E861DB2B}D:\gry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\gry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{FD18A020-9943-40FF-AE48-33B4DF71B90E}D:\gry\epic games\fortnite\fortnitegame\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\gry\epic games\fortnite\fortnitegame\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{BAA66FC9-F471-44C1-A435-E3BD0DF67186}D:\gry\epic games\fortnite\fortnitegame\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\gry\epic games\fortnite\fortnitegame\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{C1590CDA-8A42-4CCD-AE64-B7A9BD9179EE}] => (Allow) D:\GRY\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{A59EF5B1-1FD5-4619-A679-CA85777C7054}] => (Allow) D:\GRY\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{88AA46FA-CB84-4D27-A007-626466858A48}] => (Allow) D:\GRY\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{70EDED22-6F55-4619-84D7-64714727B5D9}] => (Allow) D:\GRY\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{7FB2349B-57E0-4806-AC39-F8D8D11306A5}D:\gry\steam\steamapps\common\dying light\devtools\dyinglightplayer.exe] => (Allow) D:\gry\steam\steamapps\common\dying light\devtools\dyinglightplayer.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [UDP Query User{3799D233-4201-443E-9D9B-72DBFB42B251}D:\gry\steam\steamapps\common\dying light\devtools\dyinglightplayer.exe] => (Allow) D:\gry\steam\steamapps\common\dying light\devtools\dyinglightplayer.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [TCP Query User{788AD7D2-215F-4BA9-9334-91E3E3292ABF}D:\gry\steam\steamapps\common\dying light\dyinglightgame.exe] => (Allow) D:\gry\steam\steamapps\common\dying light\dyinglightgame.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [UDP Query User{986E4EA6-D3C7-479C-BB11-611609B49207}D:\gry\steam\steamapps\common\dying light\dyinglightgame.exe] => (Allow) D:\gry\steam\steamapps\common\dying light\dyinglightgame.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{EFE397AE-8634-4460-9D24-DD76E50D9F6F}] => (Allow) D:\GRY\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [{F27422C6-ACFF-4AF8-8D05-A48679ABA703}] => (Allow) D:\GRY\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> ) FirewallRules: [TCP Query User{084AE077-7F13-4970-ADCA-E392C645E323}D:\gry\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Block) D:\gry\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe Brak pliku FirewallRules: [UDP Query User{F433DB02-A7B8-4CC0-B0B4-34E3B3FAE702}D:\gry\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Block) D:\gry\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe Brak pliku FirewallRules: [{E2E23CF3-E030-488B-9284-FA357E61A2D8}] => (Allow) D:\GRY\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [{F4CBC744-C33D-4EDB-89A7-453508012D91}] => (Allow) D:\GRY\Origin Games\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [{9BF9DA1C-D9B1-4F00-84FD-74FCCEB14402}] => (Allow) D:\GRY\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [{F91B9818-CC15-49DD-8107-A01062C09BA1}] => (Allow) D:\GRY\Origin Games\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [{40297D2D-A665-4FA7-8B9C-8DF03ACB4F89}] => (Allow) D:\GRY\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{D2E5CF51-1192-4F87-A263-0A5BC6B9304E}] => (Allow) D:\GRY\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{4E0D5100-1F85-472E-9A37-3A0FDCA94672}] => (Allow) D:\GRY\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{8EB08AE6-C20A-4062-92C0-39C0E4F5707B}] => (Allow) D:\GRY\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{5D9F6D2D-E556-4470-9E68-8A335478A0E0}] => (Allow) D:\GRY\Steam\steamapps\common\This War of Mine\This War of Mine.exe (Marek Ziemak -> ) FirewallRules: [{5CF589A1-D418-4F18-9DBE-B4823DDF1DDC}] => (Allow) D:\GRY\Steam\steamapps\common\This War of Mine\This War of Mine.exe (Marek Ziemak -> ) FirewallRules: [{B588477B-11E8-42DC-8255-15FE1981E53A}] => (Allow) D:\GRY\Steam\steamapps\common\This War of Mine\Storyteller.exe () [Brak podpisu cyfrowego] FirewallRules: [{CDBF1480-CD23-4C25-9F99-4D546ABE0B81}] => (Allow) D:\GRY\Steam\steamapps\common\This War of Mine\Storyteller.exe () [Brak podpisu cyfrowego] FirewallRules: [{690432CD-33E3-4198-9BC2-E5DDBE10274F}] => (Allow) D:\GRY\Steam\steamapps\common\303 Squadron\Squadron303.exe (Epic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [{E56921AE-DAC1-49D1-8A1B-D745A1514614}] => (Allow) D:\GRY\Steam\steamapps\common\303 Squadron\Squadron303.exe (Epic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{ACD2917D-DC2C-4610-BAD8-CC39D93DAE00}D:\gry\steam\steamapps\common\303 squadron\squadron303\binaries\win64\squadron303-win64-shipping.exe] => (Allow) D:\gry\steam\steamapps\common\303 squadron\squadron303\binaries\win64\squadron303-win64-shipping.exe (Epic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{5EB6424C-4579-4BE6-9086-6CC8FC7DC051}D:\gry\steam\steamapps\common\303 squadron\squadron303\binaries\win64\squadron303-win64-shipping.exe] => (Allow) D:\gry\steam\steamapps\common\303 squadron\squadron303\binaries\win64\squadron303-win64-shipping.exe (Epic Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{65869195-CDE4-4BC0-9D4D-3202C89F26B6}D:\gry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) D:\gry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{FCB5777A-B0BB-47DC-BF1D-D22D503048DD}D:\gry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) D:\gry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{E8D77539-BBB2-43B0-A80B-F3AEE6551B9E}D:\gry\epic games\fortnite\fortnitegame\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\gry\epic games\fortnite\fortnitegame\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{4DBF1368-0B86-4A13-943E-94B8EA266EF1}D:\gry\epic games\fortnite\fortnitegame\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) D:\gry\epic games\fortnite\fortnitegame\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{5207C032-1199-4594-AE5D-70B35C4D7E50}] => (Allow) D:\GRY\empire total war\Steam.exe Brak pliku FirewallRules: [{6A0D6774-6201-4739-9E6E-FEE600D7DF18}] => (Allow) D:\GRY\empire total war\Steam.exe Brak pliku FirewallRules: [{B38BE46E-FBC4-463A-82E1-7715AB4937D8}] => (Allow) D:\GRY\empire total war\bin\cef\cef.win7x64\steamwebhelper.exe Brak pliku FirewallRules: [{B47DD3A5-E416-42A6-9125-6A2FCBC0838A}] => (Allow) D:\GRY\empire total war\bin\cef\cef.win7x64\steamwebhelper.exe Brak pliku FirewallRules: [TCP Query User{F718B5B8-86D8-454E-9584-4A1455976965}D:\gry\stronghold 3\bin\win32_release\stronghold3.exe] => (Block) D:\gry\stronghold 3\bin\win32_release\stronghold3.exe () [Brak podpisu cyfrowego] FirewallRules: [UDP Query User{AE6901DF-0676-4A1A-9FF9-324DD7500A73}D:\gry\stronghold 3\bin\win32_release\stronghold3.exe] => (Block) D:\gry\stronghold 3\bin\win32_release\stronghold3.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{94C15C3E-9D17-4475-8789-3DE8E0C70A87}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [UDP Query User{46FB83FE-0B14-41AD-9593-05178EFB00E6}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.) FirewallRules: [{8CF985EE-276B-4013-B9B2-45285463C552}] => (Allow) C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe Brak pliku FirewallRules: [{C1EAB556-0AA6-4079-BD0B-0ED62F572DFD}] => (Allow) C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe Brak pliku FirewallRules: [{AFBEDB5C-B4F5-4CA5-A577-8D8D2CAFFF35}] => (Allow) C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software) FirewallRules: [{B1A89928-703E-47B8-8EDC-D6C5527090A0}] => (Allow) C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software) FirewallRules: [{5B29298D-E066-4E7D-B38D-606E6BD46531}] => (Allow) D:\GRY\empire total war\SteamApps\common\ValhallaHills\ValhallaHills.exe Brak pliku FirewallRules: [{2DEEF32D-ABDA-4FCB-8C79-F0302271CA6F}] => (Allow) D:\GRY\empire total war\SteamApps\common\ValhallaHills\ValhallaHills.exe Brak pliku FirewallRules: [TCP Query User{7B69C881-53E7-4DA0-BAEF-B87C7B1CAE99}D:\gry\empire total war\steamapps\common\valhallahills\valhallahills\binaries\win64\valhallahills-win64-shipping.exe] => (Allow) D:\gry\empire total war\steamapps\common\valhallahills\valhallahills\binaries\win64\valhallahills-win64-shipping.exe Brak pliku FirewallRules: [UDP Query User{4D26EF64-0B7E-4811-907C-6C2624E1708C}D:\gry\empire total war\steamapps\common\valhallahills\valhallahills\binaries\win64\valhallahills-win64-shipping.exe] => (Allow) D:\gry\empire total war\steamapps\common\valhallahills\valhallahills\binaries\win64\valhallahills-win64-shipping.exe Brak pliku FirewallRules: [{D3325F08-E95F-433F-9A35-B4200EC5329F}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony) FirewallRules: [{23D245BC-AB01-4A7F-AEA0-808581BD0E94}] => (Allow) D:\GRY\empire total war\SteamApps\common\Counter-Strike Global Offensive\csgo.exe Brak pliku FirewallRules: [{DFA5ECA5-695B-4085-9379-905E2A6D7ADF}] => (Allow) D:\GRY\empire total war\SteamApps\common\Counter-Strike Global Offensive\csgo.exe Brak pliku FirewallRules: [TCP Query User{A680CBAE-E8EF-41E1-B839-5A5F04508000}D:\gry\origin games\battlefield 1\bf1.exe] => (Block) D:\gry\origin games\battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [UDP Query User{F6D3960A-250A-4DAF-B0AB-40794364EC9C}D:\gry\origin games\battlefield 1\bf1.exe] => (Block) D:\gry\origin games\battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [{DF8AB7AF-4632-4DDA-BC40-931952684D4E}] => (Allow) D:\GRY\Steam\steamapps\common\Thief Simulator\thief.exe () [Brak podpisu cyfrowego] FirewallRules: [{AAB6310D-BB41-4A2C-95E1-F5BD14ED14E8}] => (Allow) D:\GRY\Steam\steamapps\common\Thief Simulator\thief.exe () [Brak podpisu cyfrowego] FirewallRules: [{9EA90695-E7CC-40D4-BE3B-A7644D9B04B0}] => (Allow) D:\GRY\Steam\steamapps\common\Car Mechanic Simulator 2018\cms2018.exe () [Brak podpisu cyfrowego] FirewallRules: [{2D731FD6-B7F8-4A79-A883-8BB374BC972E}] => (Allow) D:\GRY\Steam\steamapps\common\Car Mechanic Simulator 2018\cms2018.exe () [Brak podpisu cyfrowego] FirewallRules: [{6ACE0666-4727-4D8D-ADCA-CA61FFACD190}] => (Allow) D:\GRY\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{CBE9340B-4CD3-4371-BB59-76373ADD14CA}] => (Allow) D:\GRY\Steam\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{DCA8FA03-FB7E-4397-94A3-A1D1C2EE2AC0}] => (Allow) D:\GRY\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{35C92B5A-0589-4CAA-9DF4-96D0DD58A2DB}] => (Allow) D:\GRY\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland) FirewallRules: [{854E1DD8-4E18-47C4-BE76-224D846578CE}] => (Allow) D:\GRY\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe (WB Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [{A2EB46D9-3586-426B-9CC8-E14352DCA91D}] => (Allow) D:\GRY\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe (WB Games, Inc.) [Brak podpisu cyfrowego] FirewallRules: [{A3EC4CC7-6164-485B-8447-C89A107B4E9A}] => (Allow) D:\GRY\Steam\steamapps\common\Tropico 5\Tropico5Steam.exe (Haemimont Games) [Brak podpisu cyfrowego] FirewallRules: [{432BB809-172C-4325-9D6B-ACD2CC10F1E8}] => (Allow) D:\GRY\Steam\steamapps\common\Tropico 5\Tropico5Steam.exe (Haemimont Games) [Brak podpisu cyfrowego] FirewallRules: [{27BE9E9D-AB6F-48D1-B4E7-4BCB0FFEB337}] => (Allow) D:\GRY\Steam\steamapps\common\Sniper Elite 4\Launcher\SniperElite4.exe () [Brak podpisu cyfrowego] FirewallRules: [{7AB7E57A-EA15-47E8-B385-3FCD43F25EF2}] => (Allow) D:\GRY\Steam\steamapps\common\Sniper Elite 4\Launcher\SniperElite4.exe () [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{F4CEF806-D68C-4ACE-ADE6-13C5768B7955}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe (Riot Games, Inc. -> ) FirewallRules: [UDP Query User{CA18B573-2E5A-448E-B1FD-26FDB86C1DC2}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe (Riot Games, Inc. -> ) FirewallRules: [{748F9A33-1CF1-47E5-9EAC-7D20E64F1513}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) FirewallRules: [{3B965109-9FF9-4AA5-AD63-B3F09C8BD483}] => (Allow) D:\GRY\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{0E876D55-50EE-4C7E-848D-38ED53A88D4E}] => (Allow) D:\GRY\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{79858009-1F79-4687-B647-02106F8CCD2B}] => (Allow) D:\GRY\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{C866B88B-2C1F-495E-9A73-33BC6C5AB3A0}] => (Allow) D:\GRY\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.) FirewallRules: [{FA7D90A2-3A68-44FF-A473-7A85B98F94E0}] => (Allow) C:\Users\kisiu\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) [Brak podpisu cyfrowego] FirewallRules: [TCP Query User{0663F7C9-945F-4960-B507-1A966E072DEE}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) FirewallRules: [UDP Query User{9A79E67D-9027-41B8-B5FF-D1C220231603}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net) ==================== Punkty Przywracania systemu ========================= 18-03-2019 17:10:31 Windows Update 23-03-2019 08:33:36 Windows Update 26-03-2019 16:12:57 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 26-03-2019 16:13:46 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 28-03-2019 14:26:19 Windows Update 31-03-2019 21:38:26 Windows Update 05-04-2019 15:42:19 Installed Minecraft Launcher 06-04-2019 10:50:34 Windows Update ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Deskjet F4500 series Description: Deskjet F4500 series Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318} Manufacturer: HP Service: Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: ZAM Helper Driver Description: ZAM Helper Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: ZAM Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: ZAM Guard Driver Description: ZAM Guard Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: ZAM_Guard Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (04/09/2019 10:04:47 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (04/09/2019 10:04:47 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (04/09/2019 10:04:47 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (04/09/2019 10:00:40 AM) (Source: Performance Profile Client) (EventID: 0) (User: ) Description: Performance Counters are not configured for this system,So Performance Profile Client is not starting. Error: (04/09/2019 10:00:04 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (04/06/2019 08:53:27 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program Explorer.EXE w wersji 6.1.7601.17514 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 6b4 Godzina rozpoczęcia: 01d4eca8c9ee390c Godzina zakończenia: 453 Ścieżka aplikacji: C:\Windows\Explorer.EXE Identyfikator raportu: 40e1baf0-589d-11e9-8144-10bf48bd0261 Error: (04/06/2019 08:48:55 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (04/06/2019 08:48:55 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Dziennik System: ============= Error: (04/09/2019 09:58:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Avast Antivirus z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (04/09/2019 09:58:31 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Avast Antivirus. Error: (04/06/2019 08:44:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Avast Antivirus z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (04/06/2019 08:44:38 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Avast Antivirus. Error: (04/06/2019 08:03:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Avast Antivirus z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (04/06/2019 08:03:10 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Avast Antivirus. Error: (04/06/2019 10:43:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Avast Antivirus z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (04/06/2019 10:43:52 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Avast Antivirus. Windows Defender: =================================== Date: 2019-04-05 15:48:54.507 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz:http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Prifou&threatid=224074 Nazwa:BrowserModifier:Win32/Prifou Id.:224074 Ważność:Wysoki Kategoria:Program modyfikujący przeglądarkę Znaleziona ścieżka:file:C:\Users\kisiu\AppData\Local\Temp\tmp5340036\tufitede.exe;process:pid:6972;process:pid:8020;process:pid:8152 Typ wykrycia:Konkretne Źródło wykrycia:Ochrona w czasie rzeczywistym Stan:Nieznane Użytkownik:\ Nazwa procesu: Date: 2019-04-05 15:48:50.173 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz:http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Prifou&threatid=224074 Nazwa:BrowserModifier:Win32/Prifou Id.:224074 Ważność:Wysoki Kategoria:Program modyfikujący przeglądarkę Znaleziona ścieżka:file:C:\Users\kisiu\AppData\Local\Temp\tmp5340036\tufitede.exe;process:pid:6972;process:pid:8152 Typ wykrycia:Konkretne Źródło wykrycia:Ochrona w czasie rzeczywistym Stan:Nieznane Użytkownik:\ Nazwa procesu: Date: 2019-04-05 15:48:29.079 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz:http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Prifou&threatid=224074 Nazwa:BrowserModifier:Win32/Prifou Id.:224074 Ważność:Wysoki Kategoria:Program modyfikujący przeglądarkę Znaleziona ścieżka:file:C:\Users\kisiu\AppData\Local\Temp\tmp5340036\tufitede.exe;process:pid:6972 Typ wykrycia:Konkretne Źródło wykrycia:Ochrona w czasie rzeczywistym Stan:Nieznane Użytkownik:\ Nazwa procesu: Date: 2018-09-16 18:54:14.794 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz:http://go.microsoft.com/fwlink/?linkid=37020&name=Adware:Win32/Adposhel&threatid=226527 Nazwa:Adware:Win32/Adposhel Id.:226527 Ważność:Wysoki Kategoria:Adware Znaleziona ścieżka:file:C:\ProgramData\73fc82df-bdf8-480f-b0fd-1cc1f368934b\SystemConsole.exe;process:pid:7856 Typ wykrycia:Konkretne Źródło wykrycia:System Stan:Nieznane Użytkownik:ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Date: 2018-09-16 18:50:43.033 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz:http://go.microsoft.com/fwlink/?linkid=37020&name=Adware:Win32/Adposhel&threatid=226527 Nazwa:Adware:Win32/Adposhel Id.:226527 Ważność:Wysoki Kategoria:Adware Znaleziona ścieżka:file:C:\ProgramData\73fc82df-bdf8-480f-b0fd-1cc1f368934b\SystemConsole.exe Typ wykrycia:Konkretne Źródło wykrycia:System Stan:Nieznane Użytkownik:ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Date: 2018-09-16 19:17:05.632 Description: Produkt Windows Defender napotkał błąd podczas próby załadowania podpisów i podejmie próbę powrotu do znanego zestawu dobrych podpisów. Podpisy objęte próbą:Bieżące Kod błędu:0x80070002 Opis błędu:Nie można odnaleźć określonego pliku. Wersja podpisu:0.0.0.0 Wersja aparatu:0.0.0.0 CodeIntegrity: =================================== Date: 2018-09-02 20:45:57.864 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-09-02 20:45:57.844 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-09-02 00:54:34.079 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-09-02 00:54:34.049 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-09-02 00:34:29.776 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-09-02 00:34:29.746 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-09-01 23:16:12.849 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-09-01 23:16:12.833 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz Procent pamięci w użyciu: 30% Całkowita pamięć fizyczna: 16335.8 MB Dostępna pamięć fizyczna: 11398.39 MB Całkowita pamięć wirtualna: 32669.75 MB Dostępna pamięć wirtualna: 26844.16 MB ==================== Dyski ================================ Drive c: (Nowy) (Fixed) (Total:878.81 GB) (Free:661.82 GB) NTFS Drive d: () (Fixed) (Total:1915.6 GB) (Free:780.79 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 2794.5 GB) (Disk ID: 73D5AB30) Partition: GPT. ==================== Koniec Addition.txt ============================
Twój_Anioł_Stróż komentarz 9 kwietnia 2019 komentarz 9 kwietnia 2019 (edytowane) Z logów wynika, że korzystasz z różnych gier - najprawdopodobniej do którejś z nich były przyklejone reklamy, więc teraz będą już zawsze. Tego się nie da wykryć. Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego: Cytuj Task: {94BE3578-A1BA-410F-B5D7-BB2C2A4DEE87} - \58D9CDE8-5C02-81F6-3836-7823DD5F629D -> Brak pliku <==== UWAGA Task: {99E2F092-8A9E-4E81-A317-FEC9A1AB26FA} - System32\Tasks\{9571405C-816B-48E4-A42E-EFBA521ACA9E} => C:\Windows\system32\pcalua.exe -a "G:\instalki programów\ANTYWIRUSY\Outpost Firewall PRO 4.0 PL\Outpost Firewall PRO 4.0 PL\Outpost Firewall PRO 4.0 PL.exe" -d "G:\instalki programów\ANTYWIRUSY\Outpost Firewall PRO 4.0 PL\Outpost Firewall PRO 4.0 PL" Task: {C471536A-6406-42ED-8B8C-2526E6D62A5B} - System32\Tasks\updane\{1D21170E-9BF9-4524-712F-3681BEB42103} => C:\Users\kisiu\AppData\Roaming\Rusoce\updane.exe () [Brak podpisu cyfrowego] CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA RemoveDirectory: C:\Users\kisiu\AppData\Roaming\Rusoce Toolbar: HKU\S-1-5-21-226745190-3671943294-1066845545-1000 -> Brak nazwy - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Brak pliku Toolbar: HKU\S-1-5-21-226745190-3671943294-1066845545-1000 -> Brak nazwy - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Brak pliku S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"} EmptyTemp: Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW). .
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.