Skocz do zawartości

Rekomendowane odpowiedzi

----------------->>@akan

 

Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego:

HKU\S-1-5-21-1622003101-2412608323-405720128-1001\...\Run: [tomek] => explorer.exe hxxp://dinoraptzor.org <==== UWAGA

Task: {D984C250-4EAB-4F12-9DEE-371C5A6266D6} - System32\Tasks\tomek => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v tomek /t REG_SZ /d "explorer.exe hxxp://dinoraptzor.org" <==== UWAGA

S3 cpuz149; \??\C:\Windows\temp\cpuz149\cpuz149_x64.sys [X]

FirewallRules: [{E8E995CB-2E1F-4450-A501-266771FBC8C0}] => (Allow) C:\Users\tomek\AppData\Roaming\uTorrent\uTorrent.exe Brak pliku

FirewallRules: [{0C16F246-5A01-4916-B44A-A3E6B0A89D74}] => (Allow) C:\Users\tomek\AppData\Roaming\uTorrent\uTorrent.exe Brak pliku

Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}

EmptyTemp:

Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).

 

Napisz, czy problem znikł?

 

F.

Edytowane przez filutka78

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

--------------->@Ninja3

 

Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego:

HKU\S-1-5-21-3608961304-2865050879-2188661705-1001\...\Run: [D] => cmd.exe /c start www.dinoraptzor.org

Task: {5D33E86D-D66D-44B3-AECF-46EF8178B19B} - System32\Tasks\D => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v D /t REG_SZ /d "cmd.exe /c start www.dinoraptzor.org"

C:\Users\D\Downloads\Fixlog.txt

RemoveDirectory: C:\Users\D\Downloads\FRST-OlderVersion

Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}

FirewallRules: [{CD94E17B-E452-4327-9CFF-4F14B46A320A}] => (Block) %ProgramFiles% (x86)\Fallout 4\Fallout4.exe Brak pliku

FirewallRules: [TCP Query User{DE500302-71EF-4C3B-8053-A28685258E84}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe Brak pliku

FirewallRules: [uDP Query User{616FC12C-D56F-4568-9EE5-8655661C26F2}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe Brak pliku

FirewallRules: [TCP Query User{30CDE3A0-73D3-447E-8C68-D8A5F4555F4B}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe Brak pliku

FirewallRules: [uDP Query User{FD2673C2-CCC7-4AB2-9FF9-EC9883478978}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe Brak pliku

EmptyTemp:

Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).

 

Napisz, czy problem znikł?

 

Masz przestarzałą wersję Javy, więc zainstaluj nowszą wersję, wg tej strony > https://www.fixitpc.pl/topic/5-dezynfekcja-kroki-finalizujące-temat/?tab=comments#comment-179769

Wybierz pobieranie z "java.com", bo tam nie trzeba się rejestrować.

Podczas instalacji dopilnuj, by ta nowa wersja Javy odinstalowała stare wersje, które teraz masz.

 

F.

Edytowane przez filutka78

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

Udało się - problem znikł:) Serdeczne dzięki za pomoc:)

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

Cześć wszystkim,

 

Bardzo proszę o pomoc.

 

FRST

http://www.wklejto.pl/832903

 

ADDITION

http://www.wklejto.pl/832904

 

Dziękuję :)

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach
Napisano (edytowane)

------------->>@Bababartek

 

Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego:

HKU\S-1-5-21-4078899910-3642941960-483390580-1002\...\Run: [barte] => explorer.exe hxxp://dinoraptzor.org <==== UWAGA

Task: {240ADED9-D117-4ACB-BECF-F629C9E733B7} - System32\Tasks\Barte => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Barte /t REG_SZ /d "explorer.exe hxxp://dinoraptzor.org" <==== UWAGA

S3 RNDBWM; "C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe" [X]

S2 SmartByte Network Service x64; "C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe"

S2 DpmLiteDrv; \??\c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys [X]

S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]

S3 TASCAM_US322_US366_USB; \SystemRoot\System32\Drivers\tus322us366u.sys [X]

S3 TASCAM_US366_MIDI; \SystemRoot\system32\drivers\tus322us366m.sys [X]

S3 TASCAM_US366_WDM; \SystemRoot\system32\drivers\tus322us366a.sys [X]

Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}

EmptyTemp:

Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).

 

Napisz, czy problem znikł?

 

F.

Edytowane przez filutka78

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

------------->>@Bababartek

 

Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego:

 

Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).

 

Napisz, czy problem znikł?

 

F.

 

 

Dzięki za szybkie działanie.

Problem rozwiązany, i przeglądarka śmiga duuużo szybciej :)

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

Ponownie proszę o pomoc. Przeglądarka ledwo chodzi ale cały czas odnoszę wrażenie że NordVpn aplikacja i Norton IS strasznie mulą...

 

FRST

Additional

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

----------------@pieczyk111

 

Nic tu nie wskazuje na istnienie jakiejkolwiek infekcji.

 

Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego:

HKLM\...\Policies\Explorer: [HideSCAHealth] 1

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA

HKU\S-1-5-21-137582407-2077981888-2002052014-1001\...\Run: [Opera Browser Assistant] => C:\Users\PIECZYK & PAULISZTA\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3004440 2020-04-29] (Opera Software AS -> Opera Software)

Task: {0D8A27C7-8F79-4575-A26B-405EAB8A932E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [126152 2020-04-10] (Mozilla Corporation -> Mozilla Foundation)

Task: {23920831-9F0F-4790-B60F-A9A31A317A0C} - System32\Tasks\Core Temp Autostart PIECZYK & PAULISZTA => C:\Program Files\Core Temp\Core Temp.exe [1011592 2019-08-30] (ALCPU -> ALCPU)

Task: {CB3DE742-8D55-437E-85A3-C3712BD2A06A} - System32\Tasks\Opera scheduled assistant Autoupdate 1582740199 => C:\Users\PIECZYK & PAULISZTA\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-04-29] (Opera Software AS -> Opera Software)

EmptyTemp:

Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).

 

F.

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

Przeskanowałem dr web i sporo wyczyścił. Możliwe że spisał się bardzo dobrze. Dzięki!

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

Dzień dobry. Wiem że wątek dotyczy dinoraptzora ale obecnie mam problem z exinariuminfo. Temat raczej podobny. W regedit w run niby sie coś wyświetla typu Random ale wyskakuje błąd usunięcia. Oczywiście logi z FRSTa zrobione i zamieszczam poniżej. Jedynie w głównym pliku znalazłem dwie linijki na jego temat. Proszę o pomoc i z góry dziękuję.

 

FRST = http://wklejto.pl/836289

Addition = http://wklejto.pl/836291

Shortcut = http://wklejto.pl/836292

 

Jeśli można to prosze również o usunięcie zbędnych plików.

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach
Napisano (edytowane)

----------------->>@McMicy

 

1) W Google Chrome jest ustawiony jako domyśny profil adware (nazwa na dysku ChromeDefaultData, ale w opcjach prawdopodobnie user0)

Uruchom Google Chrome

> Naciśnij klawisze: lewy Alt+F i kliknij przycisk Ustawienia >

> Sekcja: OSOBY

>zaznacz (wybierz): user0

kliknij znaczek X znajdujący się po prawej stronie

 

 

2)Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego:

HKU\S-1-5-21-3879942778-644574129-854283783-1000\...\Run: [Ola] => cmd.exe /c start www.exinariuminix.info

GroupPolicy: Ograniczenia ? <==== UWAGA

GroupPolicy\User: Ograniczenia ? <==== UWAGA

Task: {17D4D52C-8A9A-4F78-8856-BAB7762E0C1F} - System32\Tasks\{B7428ADB-CA19-4C8E-B3F2-12DBA364231A} => C:\Windows\system32\pcalua.exe -a L:\Assassins_Creed_III_-_The_Tyranny_of_King_Washington_DLC_A.exe -d L:\

Task: {40E744C4-E481-4ED9-AC2B-D842CA9B728F} - System32\Tasks\Chocosyledusy Update => C:\Program Files (x86)\Chocosyledusy\chcUpdateTsk.exe <==== UWAGA

RemoveDirectory: C:\Program Files (x86)\Chocosyledusy

Task: {8CA8B81C-A9BA-48C0-8A96-25CA23C27B18} - System32\Tasks\{36E9E5FC-F600-458D-A5B1-36CDF83CCB96} => C:\Windows\system32\pcalua.exe -a "F:\OtherDriver\Intel SCT\Setup.exe" -d "F:\OtherDriver\Intel SCT" -c -s

Task: {A5DBD587-9CBC-48B5-BDB7-33D756DC9C6F} - System32\Tasks\{2FD886B5-C19A-4B8C-A7E3-2AB6E525B7DB} => C:\Windows\system32\pcalua.exe -a C:\Windows\unvise32qt.exe -c C:\Windows\system32\QuickTime\Uninstall.log

Task: {C368A87B-518F-4B5E-845C-0F2A6C31814F} - System32\Tasks\{466C2EB2-1044-4CA2-B0DD-B30B5D2048F7} => C:\Windows\system32\pcalua.exe -a F:\setup.exe -d F:\

Task: {CFBC7D44-73F8-49DE-BE2E-740DB2F0863F} - System32\Tasks\Ola => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Ola /t REG_SZ /d "cmd.exe /c start www.exinariuminix.info"

Task: {E6574659-57B5-4F87-8145-D90C9C7365A1} - System32\Tasks\{C21880DE-5EBF-44B2-9C09-71F31D7940CD} => C:\Windows\system32\pcalua.exe -a F:\INSTALL\_Setup.exe -d F:\INSTALL

SearchScopes: HKU\S-1-5-21-3879942778-644574129-854283783-1000 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL =

FF NewTab: Profiles\qv46k45n.default -> hxxp://d2ucfwpxlh3zh3.cloudfront.net/?ts=AHEqC3UqA3YoBU..&v=20160718&uid=7BEF495FF65BA36FE233CB47F6FCE95B&ptid=amz&mode=loadm

FF HomepageOverride: Profiles\qv46k45n.default -> Enabled: homepage@mail.ru

FF NewTabOverride: Profiles\qv46k45n.default -> Enabled: {a38384b3-2d1d-4f36-bc22-0f7ae402bcd7}

FF NewTabOverride: Profiles\qv46k45n.default -> Enabled: homepage@mail.ru

CHR DefaultProfile: ChromeDefaultData

CHR Profile: C:\Users\Ola\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-05-16] <==== UWAGA

S4 MSIClock_CC; "C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe" [X]

S4 MSICOMM_CC; "C:\Program Files (x86)\MSI\Command Center\MSICommService.exe" [X]

S4 MSICPU_CC; "C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe" [X]

S4 MSISMB_CC; "C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe" [X]

S4 MSISuperIO_CC; "C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe" [X]

S3 dgderdrv; System32\drivers\dgderdrv.sys [X]

S3 MSICDSetup; \??\F:\CDriver64.sys [X]

S3 NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys [X]

S3 NTIOLib_FastBoot; \??\C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [X]

S3 NTIOLib_MSIDDR_CC; \??\C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [X]

S1 prisafe; \SystemRoot\System32\drivers\prisafe.sys [X]

Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}

EmptyTemp:

Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).

 

Napisz, czy problem znikł?

 

F.

Edytowane przez filutka78

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

----------------------->>@Yogurt111

Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego:

Cytat

HKU\S-1-5-21-660425544-3307512551-589252026-1001\...\Run: [Yogurt] => cmd.exe /c start www.dinoraptzor.org

Task: {3EA56BB4-F3A1-4E75-A569-2ADFE7225E7C} - System32\Tasks\Yogurt => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Yogurt /t REG_SZ /d "cmd.exe /c start www.dinoraptzor.org"
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}
FirewallRules: [{797E9B4F-8B7A-41C4-AFE2-69CF5EB6D357}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe No File
FirewallRules: [{D4C837C1-4F6F-41BD-ACA5-1D684402A8A0}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe No File
SearchScopes: HKU\S-1-5-21-660425544-3307512551-589252026-1001 -> DefaultScope {C7B0C337-0954-4DFD-A813-F20002BF1AB9} URL =
SearchScopes: HKU\S-1-5-21-660425544-3307512551-589252026-1001 -> {C7B0C337-0954-4DFD-A813-F20002BF1AB9} URL =
CHR NewTab: Default ->  Not-active:"chrome-extension://cdpdahhialadknchijcdphjglniogmmk/load.html"
S4 Denuvo Kuser Data Driver 1.0.0.7; \??\E:\A Total War Saga - ToB\Denuvo64.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X]
EmptyTemp:


Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).

 

Napisz, czy problem znikł?

 

F.

Edytowane przez filutka78

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach
2 godziny temu, filutka78 napisał:

Dinoraptzor???
A co to takiego??? ;)
Ps.
Pomogło!!!

Wielkie dzięki ;)

Pozdrawiam zamaszyście... ;)

 

Edytowane przez Yogurt111

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

Pomóż błagam

Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 06-09-2020
Uruchomiony przez marci (administrator)  LAPTOP-5R7CBIVE (Acer Predator PT515-51) (08-09-2020 11:39:06)
Uruchomiony z C:\Users\marci\Downloads
Załadowane profile: marci
Platform: Windows 10 Home Wersja 1909 18363.1016 (X64) Język: Polski (Polska)
Domyślna przeglądarka: IE
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\PredatorSense Service\PSAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\PredatorSense Service\PSAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\PredatorSense Service\PSSvc.exe
(Acer Incorporated) C:\Program Files\WindowsApps\AcerIncorporated.PredatorSenseV30_3.0.3136.0_x64__48frkmn4z8aw4\Win32\PredatorSense.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett Packard -> Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Intel Corporation -> ) C:\Windows\ThunderboltService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_9196e89091d8bdbb\esif_uf.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0a3294d3216a4a83\jhi_service.exe
(Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_767e7683f9ad126c\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_767e7683f9ad126c\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_eb5bf44599b2ba32\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_eb5bf44599b2ba32\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e335ebb186115025\RstMwService.exe
(McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\CSP\3.7.124.0\McCSPServiceHost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <2>
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\VSCore_20_6\mcapexe.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\commsapps.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13110.41006.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12008.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_23611a14acdc0e84\Display.NvContainer\NVDisplay.Container.exe <2>
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Rivet Networks LLC -> CloudBees, Inc.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe
(Rivet Networks LLC -> CloudBees, Inc.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe
(Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAP.exe
(Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_d5839c9d7c0bda64\WavesSysSvc64.exe

==================== Rejestr (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_d5839c9d7c0bda64\WavesSvc64.exe [1464728 2019-01-31] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [833824 2019-01-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [MouseDriver] => TiltWheelMouse.exe
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7651840 2020-08-12] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [OnScreen Control] => C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreenStartUpApp.exe [1786808 2018-03-14] (LG Electronics Inc. -> TODO: <Company name>)
HKLM-x32\...\Run: [DualControl] => C:\Program Files (x86)\LG Electronics\Dual Controller\bin\DualControlStartupApp.exe [1788344 2018-12-27] (LG Electronics Inc. -> LG Electronics Inc)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2383359632-2395771874-720806480-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2383359632-2395771874-720806480-1001\...\Run: [marci] => explorer.exe hxxp://exinariuminix.info <==== UWAGA
HKU\S-1-5-21-2383359632-2395771874-720806480-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [807936 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\hpfpp101: C:\Windows\System32\spool\prtprocs\x64\hpfpp101.dll [253440 2010-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\hpf3l101.dll: C:\Windows\system32\hpf3l101.dll [138752 2010-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )

==================== Zaplanowane zadania (filtrowane) ============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {0008BB61-D33C-404F-AB4E-7D97F90C1E0D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0E76DF68-516F-4522-9EEA-AF73F72CF14B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0E886E7B-DE92-4E00-93C7-1D34453EA841} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {140AC294-7110-4EB8-96C0-BF2AD386EB77} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-27] (Dropbox, Inc -> Dropbox, Inc.)
Task: {16FFB5A0-2B54-477B-BDFC-D43F6E1B0608} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-04-27] (Google Inc -> Google Inc.)
Task: {2FD3BC80-731E-4160-AE0E-7D1445DA15A5} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {35F18242-07BB-4BB9-9E9C-7E94D3267986} - System32\Tasks\McAfee\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.10.620\mcdatrep.exe [1881392 2020-08-25] (McAfee, Inc. -> McAfee, LLC.)
Task: {395322BB-74C2-4F08-B9B6-9E7BABC3054E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {39AA8F41-4D00-4F0C-9163-F086F0C4BCCB} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473920 2018-12-12] (Acer Incorporated -> Acer Incorporated)
Task: {460F95B0-E3FF-4CA8-94A4-65DB94A5E62E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-04-27] (Google Inc -> Google Inc.)
Task: {4D4FAC63-96F0-4605-99EE-7967259DC79F} - System32\Tasks\PredatorSense UI => C:\Program Files\Acer\PredatorSense Service\PSLauncher.exe [580888 2019-10-09] (Acer Incorporated -> Acer Incorporated)
Task: {4FB5EBD0-32D5-4597-8274-2FFB4752B1FB} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
Task: {5149637F-EE75-47A3-9AE6-E5B9537C1CB0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1336400 2020-07-08] (Adobe Inc. -> Adobe Inc.)
Task: {5C717F34-6373-426B-A03B-782CFC93527D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5F523A2E-C39E-4974-A5AE-8CB25507F3F3} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {67074EB9-D0CA-4CEB-842F-1D2ADD50CB38} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6EFAB91A-7E71-4216-B87A-36CA2BC3EC11} - System32\Tasks\CareCenter\HP Digital Imaging Monitor.lnk_FolderCommonAppdata => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [276328 2011-04-29] (Hewlett Packard -> Hewlett-Packard Co.)
Task: {743AC056-6EC1-4A95-B778-C532421D83DC} - System32\Tasks\PredatorSense => C:\Program Files\Acer\PredatorSense Service\PSLauncher.exe [580888 2019-10-09] (Acer Incorporated -> Acer Incorporated)
Task: {8DD1DF02-B527-4C07-924F-53EE3968DEF8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {95730219-852A-47B8-AD98-F66453D5AF13} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [4194704 2020-07-22] (McAfee, Inc. -> McAfee, LLC)
Task: {9F65CE74-0D9F-45E0-919F-C12F8985B9C1} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe
Task: {A46D5C5F-CFF7-4A10-AE9C-8737C8763FC3} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [764640 2020-06-09] (McAfee, LLC -> McAfee, LLC)
Task: {A675D357-7BA7-407C-8B8B-F6E474D0506A} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation)
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" został odblokowany. <==== UWAGA
Task: {AF86A102-C9F7-4009-8362-F6A0D5A578E4} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1077064 2020-07-24] (McAfee, LLC -> McAfee, LLC)
Task: {B0B4DDFA-4D5C-47C0-A6F5-2984AFD85E50} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-27] (Dropbox, Inc -> Dropbox, Inc.)
Task: {BCA04B5A-673D-4C4F-ABB7-B2521AACBB7F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD0EAEB3-C16C-434A-9E9E-82E3747330D8} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C3840E99-9EC5-46A1-AC80-E7E95E227731} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {CEC72987-49B3-43CB-860B-D0B0A19ED201} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {D76C6ACD-4135-46FD-8852-C8218FA93434} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E6220409-D29D-4BD2-BEC7-4E54602779CD} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1077064 2020-07-24] (McAfee, LLC -> McAfee, LLC)
Task: {F22A522F-0C72-4119-A82A-2271897E91EB} - System32\Tasks\marci => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v marci /t REG_SZ /d "explorer.exe hxxp://exinariuminix.info" <==== UWAGA
Task: {F4A4F52E-50BD-4764-A448-181431036AD6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [660688 2020-09-02] (Mozilla Corporation -> Mozilla Foundation)

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{572efbcf-8ac7-4ba9-b4ea-4de018883952}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a7f451be-1764-40e9-ab1b-3092bc7f50ec}: [DhcpNameServer] 172.10.128.12

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2383359632-2395771874-720806480-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-2383359632-2395771874-720806480-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-2383359632-2395771874-720806480-1001 -> DefaultScope {B2A5DA2B-CACB-45E3-8AC3-09D29FD4C56B} URL =
SearchScopes: HKU\S-1-5-21-2383359632-2395771874-720806480-1001 -> {B2A5DA2B-CACB-45E3-8AC3-09D29FD4C56B} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2016-10-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-03-31] (McAfee, LLC -> McAfee, LLC)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-03-31] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-18] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKU\S-1-5-21-2383359632-2395771874-720806480-1001 -> Brak nazwy - {EF293C5A-9F37-49FD-91C4-2B867063FC54} -  Brak pliku
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2017-02-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2017-02-01] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2020-07-28] (McAfee, LLC -> McAfee, LLC)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2020-07-28] (McAfee, LLC -> McAfee, LLC)

Edge:
======
Edge Notifications: HKU\S-1-5-21-2383359632-2395771874-720806480-1001 -> hxxps://www.facebook.com
Edge DefaultProfile: Default
Edge Profile: C:\Users\marci\AppData\Local\Microsoft\Edge\User Data\Default [2020-09-08]

FireFox:
========
FF DefaultProfile: 2ns3hh4n.default-1599557387499
FF ProfilePath: C:\Users\marci\AppData\Roaming\Mozilla\Firefox\Profiles\2ns3hh4n.default-1599557387499 [2020-09-08]
FF Extension: (Amazon Assistant for Firefox) - C:\Users\marci\AppData\Roaming\Mozilla\Firefox\Profiles\2ns3hh4n.default-1599557387499\Extensions\abb-acer@amazon.com.xpi [2020-09-08] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Polski Language Pack) - C:\Users\marci\AppData\Roaming\Mozilla\Firefox\Profiles\2ns3hh4n.default-1599557387499\Extensions\langpack-pl@firefox.mozilla.org.xpi [2020-09-08]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com.xpi [2017-12-09] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Polski Language Pack) - C:\Program Files\Mozilla Firefox\distribution\extensions\langpack-pl@firefox.mozilla.org.xpi [2018-09-05]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2020-09-02] [Przestarzałe]
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2020-07-28] (McAfee, LLC -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2020-07-28] (McAfee, LLC -> )
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-10-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-01-08]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKU\S-1-5-21-2383359632-2395771874-720806480-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\marci\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2019-05-08]
CHR HKU\S-1-5-21-2383359632-2395771874-720806480-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam]

==================== Usługi (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-07-08] (Adobe Inc. -> Adobe Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-27] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-04-27] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-08-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4132456 2019-04-27] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Brak podpisu cyfrowego]
S4 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2656880 2019-01-31] (Rivet Networks LLC -> Rivet Networks)
S3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [72800 2019-01-31] (Rivet Networks LLC -> CloudBees, Inc.)
S4 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [913640 2020-03-31] (McAfee, LLC -> McAfee, LLC)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_20_6\McApExe.exe [768256 2020-07-27] (McAfee, LLC -> McAfee, LLC)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.7.124.0\\McCSPServiceHost.exe [2726312 2020-07-29] (McAfee, LLC -> McAfee, LLC)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [644200 2020-06-02] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [644200 2020-06-02] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [644200 2020-06-02] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1743864 2020-08-06] (McAfee, LLC -> McAfee, LLC)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego]
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4221040 2020-07-29] (McAfee, LLC -> McAfee, LLC)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Brak podpisu cyfrowego]
R3 PSSvc; C:\Program Files\Acer\PredatorSense Service\PSSvc.exe [979736 2019-10-09] (Acer Incorporated -> Acer Incorporated)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [953464 2019-06-18] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [936568 2019-06-18] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2019-06-20] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [287472 2019-06-24] (Razer USA Ltd. -> Razer Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1453184 2020-08-05] (Rockstar Games, Inc. -> Rockstar Games)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [532864 2019-06-20] (Razer USA Ltd. -> Razer Inc.)
R2 TbtHostControllerService; C:\WINDOWS\ThunderboltService.exe [119736 2019-01-09] (Intel Corporation -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 xTendSoftAPService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [72808 2019-01-31] (Rivet Networks LLC -> CloudBees, Inc.)
R2 xTendUtilityService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [72816 2019-01-31] (Rivet Networks LLC -> CloudBees, Inc.)
S2 ACCSvc; "C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_23611a14acdc0e84\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_23611a14acdc0e84\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 QALSvc; "C:\Program Files\Acer\Quick Access Service\QALSvc.exe" [X]
S3 QASvc; "C:\Program Files\Acer\Quick Access Service\QASvc.exe" [X]
S3 UEIPSvc; "C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe" [X]

===================== Sterowniki (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [75704 2020-06-09] (McAfee, Inc. -> McAfee, LLC)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-04-27] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-04-27] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 e3xw10x64; C:\WINDOWS\System32\drivers\e3xw10x64.sys [1138136 2018-12-13] (Realtek Semiconductor Corp. -> Realtek)
S3 FTDIBUS; C:\WINDOWS\system32\drivers\ftdibus.sys [129448 2017-09-19] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
S3 FTSER2K; C:\WINDOWS\system32\drivers\ftser2k.sys [89792 2017-09-19] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [218960 2020-05-26] (McAfee, LLC -> McAfee, Inc.)
S3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [151688 2019-01-31] (Rivet Networks LLC -> Rivet Networks, LLC.)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [529848 2020-06-09] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [382392 2020-06-09] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85928 2020-06-09] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [521656 2020-06-09] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [1006008 2020-06-09] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [595896 2020-06-07] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [107960 2020-06-07] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [116664 2020-06-09] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252344 2020-06-09] (McAfee, Inc. -> McAfee, LLC)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [167824 2020-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [49032 2019-01-16] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_021e; C:\WINDOWS\System32\drivers\RzDev_021e.sys [51688 2018-04-22] (Razer USA Ltd. -> Razer Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-11] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc (utworzone) ===================

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2020-09-08 11:39 - 2020-09-08 11:39 - 000033355 _____ C:\Users\marci\Downloads\FRST.txt
2020-09-08 11:38 - 2020-09-08 11:39 - 000000000 ____D C:\FRST
2020-09-08 11:38 - 2020-09-08 11:38 - 000000000 ____D C:\Users\marci\Downloads\FRST-OlderVersion
2020-09-08 11:34 - 2020-09-08 11:38 - 002297344 _____ (Farbar) C:\Users\marci\Downloads\FRST64.exe
2020-09-06 21:21 - 2020-09-06 21:21 - 001627016 _____ C:\Users\marci\Downloads\Umowa Spółki z o.o.(2).pdf
2020-09-06 21:21 - 2020-09-06 21:21 - 001627016 _____ C:\Users\marci\Downloads\Umowa Spółki z o.o.(1).pdf
2020-09-04 00:20 - 2020-09-04 00:20 - 000000000 ____D C:\Users\marci\AppData\Local\ElevatedDiagnostics
2020-09-03 22:23 - 2020-09-03 22:23 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-09-03 22:23 - 2020-08-13 03:47 - 000039824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2020-09-03 22:22 - 2020-08-14 01:04 - 001780960 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-09-03 22:22 - 2020-08-14 01:04 - 001780960 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-09-03 22:22 - 2020-08-14 01:04 - 001371360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-09-03 22:22 - 2020-08-14 01:04 - 001371360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-09-03 22:22 - 2020-08-14 01:04 - 001086688 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-09-03 22:22 - 2020-08-14 01:04 - 001086688 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-09-03 22:22 - 2020-08-14 01:04 - 000946400 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-09-03 22:22 - 2020-08-14 01:04 - 000946400 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-09-03 22:22 - 2020-08-14 01:04 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-09-03 22:22 - 2020-08-14 01:04 - 000349928 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-09-03 22:22 - 2020-08-14 01:01 - 001485544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-09-03 22:22 - 2020-08-14 01:01 - 001146256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-09-03 22:22 - 2020-08-14 01:01 - 001018768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-09-03 22:22 - 2020-08-14 01:01 - 000816360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-09-03 22:22 - 2020-08-14 01:01 - 000675224 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-09-03 22:22 - 2020-08-14 01:01 - 000669416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-09-03 22:22 - 2020-08-14 01:01 - 000582904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-09-03 22:22 - 2020-08-14 01:01 - 000555920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-09-03 22:22 - 2020-08-14 01:01 - 000541928 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-09-03 22:22 - 2020-08-14 01:00 - 006653328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-09-03 22:22 - 2020-08-14 01:00 - 005882600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-09-03 22:22 - 2020-08-14 01:00 - 002376080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-09-03 22:22 - 2020-08-14 01:00 - 002078096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-09-03 22:22 - 2020-08-14 01:00 - 001570704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-09-03 22:22 - 2020-08-14 01:00 - 000811240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-09-03 22:22 - 2020-08-14 01:00 - 000656784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-09-03 22:22 - 2020-08-14 01:00 - 000443624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-09-03 22:22 - 2020-08-14 00:59 - 003916688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-09-03 22:22 - 2020-08-14 00:59 - 000849640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-09-03 22:22 - 2020-08-14 00:58 - 004707696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-09-03 22:22 - 2020-08-13 03:47 - 000077891 _____ C:\WINDOWS\system32\nvinfo.pb
2020-09-03 22:15 - 2020-03-04 14:54 - 001804784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01011.dll
2020-09-03 22:15 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-09-03 10:57 - 2020-09-03 10:57 - 000364505 _____ C:\Users\marci\Downloads\powierzchnia_uzytkowa_pomocnicza.pdf
2020-09-03 10:56 - 2020-09-03 10:56 - 000071910 _____ C:\Users\marci\Downloads\PZT_konin _ 0. Story(4).pdf
2020-09-03 10:47 - 2020-09-03 10:47 - 000762964 _____ C:\Users\marci\Downloads\20 konin - Picture # 17(2).pdf
2020-09-03 10:47 - 2020-09-03 10:47 - 000762964 _____ C:\Users\marci\Downloads\20 konin - Picture # 17(1).pdf
2020-09-03 10:47 - 2020-09-03 10:47 - 000078101 _____ C:\Users\marci\Downloads\PZT_konin _ 0. Story(3).pdf
2020-09-03 10:47 - 2020-09-03 10:47 - 000078101 _____ C:\Users\marci\Downloads\PZT_konin _ 0. Story(2).pdf
2020-09-03 10:40 - 2020-09-03 10:40 - 000206613 _____ C:\Users\marci\Downloads\konin mapa foto(3).pdf
2020-09-03 10:40 - 2020-09-03 10:40 - 000206613 _____ C:\Users\marci\Downloads\konin mapa foto(2).pdf
2020-09-03 10:32 - 2020-09-03 10:32 - 000062261 _____ C:\Users\marci\Downloads\FS 42_2020.pdf
2020-09-03 10:31 - 2020-09-03 10:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-09-02 17:18 - 2020-09-02 17:18 - 000393518 _____ C:\Users\marci\Downloads\doc04072520200831093358.pdf
2020-09-02 17:18 - 2020-09-02 17:18 - 000393518 _____ C:\Users\marci\Downloads\doc04072520200831093358(1).pdf
2020-09-02 13:57 - 2020-09-02 13:57 - 000254039 _____ C:\Users\marci\Downloads\GD50584120decyzja.pdf
2020-09-02 13:44 - 2020-09-02 13:44 - 003545657 _____ C:\Users\marci\Downloads\CCF_000071.pdf
2020-09-02 13:44 - 2020-09-02 13:44 - 003545657 _____ C:\Users\marci\Downloads\CCF_000071(1).pdf
2020-09-02 13:24 - 2020-09-02 13:24 - 000153063 _____ C:\Users\marci\Downloads\Korekta Faktury VAT - Ratuszna.pdf
2020-09-02 12:48 - 2020-09-03 22:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-09-02 12:42 - 2020-09-02 12:42 - 002495203 _____ C:\Users\marci\Downloads\PDF_.PDF
2020-09-02 12:41 - 2020-09-02 12:41 - 000042980 _____ C:\Users\marci\Downloads\F_2783_9_2020.pdf
2020-09-02 12:41 - 2020-09-02 12:41 - 000042980 _____ C:\Users\marci\Downloads\F_2783_9_2020(1).pdf
2020-09-01 19:07 - 2020-09-01 19:07 - 000164751 _____ C:\Users\marci\Downloads\none
2020-09-01 16:30 - 2020-09-01 16:30 - 000150231 _____ C:\Users\marci\Downloads\FakturaVAT BCHO 05-08-2020 popr.pdf
2020-09-01 15:42 - 2020-09-01 15:42 - 000093144 _____ C:\Users\marci\Downloads\Faktura NOWA SIENNA 9.pdf
2020-09-01 15:38 - 2020-09-01 15:38 - 000279733 _____ C:\Users\marci\Downloads\7S RZUT POPR.pdf
2020-09-01 15:38 - 2020-09-01 15:38 - 000224419 _____ C:\Users\marci\Downloads\8S ŚCIANY POPR.pdf
2020-09-01 15:36 - 2020-09-01 15:36 - 000728718 _____ C:\Users\marci\Downloads\rzuty i kłady - Rumin 12.08.2020.pdf
2020-09-01 15:36 - 2020-09-01 15:36 - 000728718 _____ C:\Users\marci\Downloads\rzuty i kłady - Rumin 12.08.2020(1).pdf
2020-09-01 15:18 - 2020-09-01 15:18 - 001533714 _____ C:\Users\marci\Downloads\-faktura_zrodlowa_Veolia_wyst_082020.pdf
2020-09-01 15:18 - 2020-09-01 15:18 - 001367361 _____ C:\Users\marci\Downloads\-faktura_zrodlowa_ENEA_wyst_082020_Biurowiec.pdf
2020-09-01 15:18 - 2020-09-01 15:18 - 000188111 _____ C:\Users\marci\Downloads\-faktura_zrodlowa_F_10003144_08_20_12..AXPO_wyst_082020_biurowiec.pdf
2020-08-31 13:34 - 2020-08-31 13:34 - 001286733 _____ C:\Users\marci\Downloads\Informacja o Przejmującym POJAZDY - 07-2020.pdf
2020-08-31 13:34 - 2020-08-31 13:34 - 000144470 _____ C:\Users\marci\Downloads\KIK - SPÓŁKI.pdf
2020-08-31 13:07 - 2020-08-31 13:08 - 000000000 ____D C:\AdwCleaner
2020-08-31 13:07 - 2020-08-31 13:07 - 008414384 _____ (Malwarebytes) C:\Users\marci\Downloads\AdwCleaner 8.0.7.exe
2020-08-28 19:28 - 2020-08-28 19:28 - 000468726 _____ C:\Users\marci\Downloads\oswiadczenie-i-klauzula-dla-przejmujacego-rodo.pdf
2020-08-28 19:11 - 2020-08-28 19:11 - 000406925 _____ C:\Users\marci\Downloads\wniosek-o-cesj-umowy-leasingu-operacyjnego_okr.pdf
2020-08-27 16:42 - 2020-08-27 16:42 - 000050220 _____ C:\Users\marci\Downloads\faktura-proforma-3-07-2020.pdf
2020-08-27 16:41 - 2020-08-27 16:41 - 000050048 _____ C:\Users\marci\Downloads\faktura-proforma-9-08-2020.pdf
2020-08-27 16:41 - 2020-08-27 16:41 - 000049470 _____ C:\Users\marci\Downloads\faktura-proforma-10-08-2020.pdf
2020-08-27 13:29 - 2020-08-27 13:29 - 000724487 _____ C:\Users\marci\Downloads\20 konin - Picture # 18(1).pdf
2020-08-27 13:29 - 2020-08-27 13:29 - 000605451 _____ C:\Users\marci\Downloads\20 konin - Picture # 11(1).pdf
2020-08-27 13:29 - 2020-08-27 13:29 - 000078101 _____ C:\Users\marci\Downloads\PZT_konin _ 0. Story(1).pdf
2020-08-27 13:28 - 2020-08-27 13:28 - 000565990 _____ C:\Users\marci\Downloads\20tka TYŁ Elevation.pdf
2020-08-27 13:28 - 2020-08-27 13:28 - 000522567 _____ C:\Users\marci\Downloads\20 konin - Picture # 13(1).pdf
2020-08-27 13:28 - 2020-08-27 13:28 - 000230025 _____ C:\Users\marci\Downloads\20_OPIS_.pdf
2020-08-27 13:28 - 2020-08-27 13:28 - 000206613 _____ C:\Users\marci\Downloads\konin mapa foto(1).pdf
2020-08-26 18:43 - 2020-08-26 18:46 - 000000000 ____D C:\Users\marci\OneDrive\Dokumenty\Rockstar Games
2020-08-26 18:43 - 2020-08-26 18:46 - 000000000 ____D C:\Users\marci\AppData\Local\Rockstar Games
2020-08-26 18:42 - 2020-08-26 18:42 - 000000000 ____D C:\Users\marci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2020-08-26 18:42 - 2020-08-26 18:42 - 000000000 ____D C:\ProgramData\Rockstar Games
2020-08-26 18:39 - 2020-08-26 18:44 - 000000000 ____D C:\Program Files\Rockstar Games
2020-08-26 18:39 - 2020-08-26 18:44 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-08-26 18:39 - 2020-08-26 18:39 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2020-08-26 14:57 - 2020-08-26 14:57 - 000059153 _____ C:\Users\marci\Downloads\historia_operacji_20200826_145757.pdf
2020-08-26 14:45 - 2020-08-26 14:45 - 000053805 _____ C:\Users\marci\Downloads\NK_013_03_20.pdf
2020-08-26 14:45 - 2020-08-26 14:45 - 000053563 _____ C:\Users\marci\Downloads\NK_002_03_20.pdf
2020-08-26 13:34 - 2020-08-26 13:34 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2020-08-26 13:34 - 2020-08-10 10:38 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2020-08-25 15:55 - 2020-08-25 15:55 - 001299746 _____ C:\Users\marci\Downloads\oferta.pdf
2020-08-25 15:55 - 2020-08-25 15:55 - 001299746 _____ C:\Users\marci\Downloads\oferta(1).pdf
2020-08-25 15:31 - 2020-08-25 15:31 - 000051169 _____ C:\Users\marci\Downloads\pf - Sterownik(2).pdf
2020-08-25 15:28 - 2020-08-25 15:28 - 000051169 _____ C:\Users\marci\Downloads\pf - Sterownik.pdf
2020-08-25 15:28 - 2020-08-25 15:28 - 000051169 _____ C:\Users\marci\Downloads\pf - Sterownik(1).pdf
2020-08-25 14:52 - 2020-08-25 14:52 - 001660804 _____ C:\Users\marci\Downloads\Scan.pdf
2020-08-25 13:53 - 2020-08-25 13:53 - 000084913 _____ C:\Users\marci\Downloads\Lokal_mniejszy.pdf
2020-08-25 13:43 - 2020-08-25 13:43 - 000029359 _____ C:\Users\marci\Downloads\Leadenhall 300000.pdf
2020-08-25 13:43 - 2020-08-25 13:43 - 000029359 _____ C:\Users\marci\Downloads\Leadenhall 300000(1).pdf
2020-08-25 13:42 - 2020-08-25 13:42 - 000029376 _____ C:\Users\marci\Downloads\Leadenhall 600000.pdf
2020-08-25 13:41 - 2020-08-25 13:41 - 002193404 _____ C:\Users\marci\Downloads\OWU Generali.pdf
2020-08-25 13:41 - 2020-08-25 13:41 - 000161818 _____ C:\Users\marci\Downloads\Generali z myślą o życiu.pdf
2020-08-25 13:37 - 2020-08-25 13:37 - 000450587 _____ C:\Users\marci\Downloads\BIURO.pdf
2020-08-25 13:37 - 2020-08-25 13:37 - 000450587 _____ C:\Users\marci\Downloads\BIURO(1).pdf
2020-08-25 12:39 - 2020-08-25 12:39 - 000232509 _____ C:\Users\marci\Downloads\ZUSY NOWA SIENNA 07.2020(1).pdf
2020-08-25 12:38 - 2020-08-25 12:38 - 000232509 _____ C:\Users\marci\Downloads\ZUSY NOWA SIENNA 07.2020.pdf
2020-08-19 20:13 - 2020-08-19 20:13 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 022642688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 009932088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 007915864 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 007850784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 007758848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 007583272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 007270912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 007270728 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 006294528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 006074552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 005904896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 005849872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 005767224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 005283776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 005003824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 004625184 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 004611072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 004129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 003806208 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 003743056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 003516416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 003368616 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 003141632 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 002950808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 002766952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-08-19 20:13 - 2020-08-19 20:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-08-19 20:13 - 2020-08-19 20:13 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002717696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 002698048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 002588688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2020-08-19 20:13 - 2020-08-19 20:13 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002471936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-08-19 20:13 - 2020-08-19 20:13 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002260312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002259192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2020-08-19 20:13 - 2020-08-19 20:13 - 002138280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-08-19 20:13 - 2020-08-19 20:13 - 002136064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002085632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001870200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001756592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-08-19 20:13 - 2020-08-19 20:13 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001740800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001665024 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001660536 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001654312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001512848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 001482568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001420320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001418832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-08-19 20:13 - 2020-08-19 20:13 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001282872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-08-19 20:13 - 2020-08-19 20:13 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001182248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001123344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000917800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000897648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000875520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000875424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000823744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000822800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000738064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-08-19 20:13 - 2020-08-19 20:13 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000718336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000690536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000675040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000671040 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000666280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-08-19 20:13 - 2020-08-19 20:13 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000568128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000564488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 000548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000522688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-08-19 20:13 - 2020-08-19 20:13 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000463168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000379704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000369304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2020-08-19 20:13 - 2020-08-19 20:13 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2020-08-19 20:13 - 2020-08-19 20:13 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000124512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-08-19 20:13 - 2020-08-19 20:13 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2020-08-19 20:13 - 2020-08-19 20:13 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-08-19 20:13 - 2020-08-19 20:13 - 000000357 _____ C:\WINDOWS\system32\DrtmAuthKeyDelegate_From_20190529_To_20200303.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth1KeyDelegate.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-08-19 20:13 - 2020-08-19 20:13 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-08-19 20:10 - 2020-07-18 05:07 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-08-19 20:10 - 2020-07-18 04:53 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-08-19 15:17 - 2020-08-19 15:18 - 005068396 _____ C:\Users\marci\Downloads\0000248453271U_996c9fde.pdf
2020-08-19 10:17 - 2020-08-19 10:17 - 000029944 _____ C:\Users\marci\Downloads\DŁUGI.xlsx
2020-08-19 10:14 - 2020-08-19 10:14 - 027072192 _____ (Piriform Software Ltd) C:\Users\marci\Downloads\ccsetup570.exe
2020-08-18 09:29 - 2020-08-18 09:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-08-12 03:35 - 2020-08-12 03:35 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2020-08-12 03:35 - 2020-08-12 03:35 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2020-08-12 03:35 - 2020-08-12 03:35 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2020-08-12 03:35 - 2020-08-12 03:35 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe

==================== Jeden miesiąc (zmodyfikowane) ==================

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2020-09-08 11:29 - 2019-04-27 06:33 - 000000000 ____D C:\Users\marci\AppData\LocalLow\Mozilla
2020-09-08 11:25 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-09-08 11:22 - 2020-03-16 13:21 - 001768484 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-09-08 11:22 - 2019-03-19 14:23 - 000785768 _____ C:\WINDOWS\system32\perfh015.dat
2020-09-08 11:22 - 2019-03-19 14:23 - 000152530 _____ C:\WINDOWS\system32\perfc015.dat
2020-09-08 11:22 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-09-08 11:19 - 2019-03-24 04:37 - 000000000 ____D C:\ProgramData\NVIDIA
2020-09-08 11:17 - 2019-04-27 06:27 - 000000000 __SHD C:\Users\marci\IntelGraphicsProfiles
2020-09-08 11:17 - 2019-03-24 04:49 - 000000000 ____D C:\ProgramData\Acer
2020-09-08 11:17 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-09-08 11:16 - 2020-03-16 13:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-09-08 11:15 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-09-08 11:07 - 2019-04-27 13:32 - 000000000 ____D C:\Users\marci\AppData\Local\Google
2020-09-08 11:07 - 2019-04-27 13:14 - 000000000 ____D C:\Program Files (x86)\Google
2020-09-08 11:01 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-09-07 22:11 - 2020-03-16 13:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee
2020-09-07 22:08 - 2020-03-16 13:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-09-07 21:17 - 2019-12-10 23:30 - 000000000 ____D C:\Users\marci\AppData\Roaming\BitTorrent
2020-09-07 21:17 - 2019-04-27 06:34 - 000000000 ____D C:\Program Files (x86)\Steam
2020-09-04 00:22 - 2019-04-27 06:27 - 000000000 ____D C:\Users\marci\AppData\Local\Packages
2020-09-03 22:25 - 2019-03-24 04:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-09-03 22:24 - 2019-03-24 04:37 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-09-03 22:16 - 2020-03-16 13:19 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-03 22:16 - 2020-03-16 13:19 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-03 22:16 - 2020-03-16 13:19 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-03 22:16 - 2020-03-16 13:19 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-03 22:16 - 2020-03-16 13:19 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-03 22:16 - 2020-03-16 13:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-03 22:16 - 2020-03-16 13:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-03 22:16 - 2020-03-16 13:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-03 22:16 - 2020-03-16 13:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-03 22:16 - 2020-03-16 13:19 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-09-03 22:16 - 2019-03-24 04:37 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-09-03 22:16 - 2019-03-24 04:37 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-09-03 11:54 - 2019-12-24 13:35 - 000013497 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1
2020-09-03 10:31 - 2019-03-24 04:52 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-09-03 09:23 - 2019-11-29 23:05 - 000015556 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
2020-09-03 09:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-09-02 12:38 - 2020-06-09 22:10 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-09-01 15:57 - 2019-04-27 06:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Acer
2020-09-01 15:56 - 2019-03-19 06:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-09-01 14:15 - 2019-11-21 15:49 - 000022364 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-08-31 14:29 - 2019-11-21 14:28 - 000012157 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-08-31 13:14 - 2019-11-21 14:26 - 000018414 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-08-31 13:14 - 2019-11-21 14:26 - 000008589 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-08-31 13:13 - 2019-11-21 14:26 - 000001206 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-08-31 13:13 - 2019-03-24 04:49 - 000000000 ____D C:\Program Files (x86)\Acer
2020-08-31 13:09 - 2020-02-13 15:46 - 000000000 ____D C:\Program Files (x86)\McAfee
2020-08-31 13:08 - 2019-12-28 01:33 - 000012547 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1
2020-08-31 13:08 - 2019-03-24 04:51 - 000000000 ____D C:\Program Files\Acer
2020-08-28 19:40 - 2019-11-26 19:47 - 000011759 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2020-08-27 16:48 - 2019-11-25 20:04 - 000011727 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2020-08-27 16:38 - 2019-12-10 23:30 - 000000000 ____D C:\ProgramData\McAfee
2020-08-27 13:42 - 2020-03-16 13:19 - 000003318 _____ C:\WINDOWS\system32\Tasks\McAfeeLogon
2020-08-27 13:42 - 2020-02-13 15:45 - 000000000 ____D C:\Program Files\Common Files\McAfee
2020-08-27 13:41 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-08-26 18:46 - 2019-04-27 12:04 - 000000000 ____D C:\Users\marci\AppData\Local\D3DSCache
2020-08-26 18:42 - 2019-03-24 04:39 - 000000000 ____D C:\ProgramData\Package Cache
2020-08-26 14:43 - 2019-07-04 23:35 - 000000000 ____D C:\Games
2020-08-26 14:19 - 2019-04-27 15:05 - 000000000 ____D C:\Users\marci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-08-25 10:40 - 2019-04-27 06:27 - 000000000 ___RD C:\Users\marci\3D Objects
2020-08-25 10:40 - 2019-03-24 04:07 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-08-25 10:39 - 2020-03-16 13:12 - 000543192 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-08-25 10:38 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-08-25 10:38 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2020-08-20 10:46 - 2020-03-16 13:19 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2383359632-2395771874-720806480-1001
2020-08-20 10:46 - 2020-03-16 13:13 - 000002411 _____ C:\Users\marci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-08-20 10:46 - 2019-04-27 06:29 - 000000000 ___RD C:\Users\marci\OneDrive
2020-08-20 10:43 - 2020-06-09 22:10 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-08-20 10:43 - 2020-06-09 22:10 - 000003386 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-08-19 20:15 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-08-19 10:14 - 2020-03-16 13:19 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-08-19 10:14 - 2019-04-27 13:23 - 000000867 _____ C:\ProgramData\Pulpit\CCleaner.lnk
2020-08-18 09:29 - 2019-04-27 06:30 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-08-14 00:58 - 2019-11-21 14:24 - 005395088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-08-13 03:47 - 2019-11-21 14:25 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-08-13 03:47 - 2019-11-21 14:25 - 000167824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpcf.sys
2020-08-10 23:30 - 2020-03-16 13:19 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-08-10 10:37 - 2020-02-20 10:22 - 000905528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll

==================== SigCheck ============================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

==================== Koniec  FRST.txt ========================

 

 

i jak to zrobić?

Addition.txt

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

-------------------------------->>@ KRUHY

 

Uruchom FRST. Na klawiaturze naciśnij jednocześnie CTRL+Y.Otworzy się Notatnik - wklej do niego:

Cytat

HKU\S-1-5-21-2383359632-2395771874-720806480-1001\...\Run: [marci] => explorer.exe hxxp://exinariuminix.info <==== UWAGA

Task: {F22A522F-0C72-4119-A82A-2271897E91EB} - System32\Tasks\marci => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v marci /t REG_SZ /d "explorer.exe hxxp://exinariuminix.info" <==== UWAGA
S3 QALSvc; "C:\Program Files\Acer\Quick Access Service\QALSvc.exe" [X]
S3 QASvc; "C:\Program Files\Acer\Quick Access Service\QASvc.exe" [X]
S3 UEIPSvc; "C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe" [X]
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}
RemoveDirectory: C:\Users\marci\Downloads\FRST-OlderVersion
EmptyTemp:

Na klawiaturze naciśnij jednocześnie CTRL+S. W FRST kliknij na Fix (NAPRAW).

 

F.

 

Edytowane przez filutka78

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

Cześć, równo rok temu walczyłem z Dizoraptzorem, teraz wychodzi że jakiś exininariuminix info. Bardzo proszę o pomoc. Eset na pokładzie ale i tak się coś takiego pojawiło. 
Link do logów:
- frst:  http://www.wklejto.pl/901967

- addition: http://www.wklejto.pl/901968

- shortcut: http://www.wklejto.pl/901969

Z góry dzięki.

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach
Napisano (edytowane)
2 godziny temu, McMicy napisał:

Cześć, równo rok temu walczyłem z Dizoraptzorem, teraz wychodzi że jakiś exininariuminix info. Bardzo proszę o pomoc. Eset na pokładzie ale i tak się coś takiego pojawiło. 
Link do logów:
- frst:  http://www.wklejto.pl/901967

- addition: http://www.wklejto.pl/901968

- shortcut: http://www.wklejto.pl/901969

Z góry dzięki.

Odpisałem na pw odnośnie instrukcji usunięcia infekcji.

Edytowane przez toska78

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach
15 godzin temu, Simpelek napisał:

Cześć, mnie też dopadł ten problem. Proszę o pomoc, ESET sobie nie radzi.

- frst http://www.wklejto.pl/921086

- addition http://www.wklejto.pl/921087

Dziękuję za pomoc.

Jeśli jeszcze nie poradziłeś sobie z problemem, uruchom FRST a następnie (poprzez skrót klawiszowy CTRL + Y) otwórz notatnik systemowy. Wklej w nim poniższą zawartość:

Cytat

CustomCLSID: HKU\S-1-5-21-2999298571-901751622-2986351545-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\bkrza\AppData\Local\Microsoft\OneDrive\19.174.0902.0013\amd64\FileSyncShell64.dll => Brak pliku
CustomCLSID: HKU\S-1-5-21-2999298571-901751622-2986351545-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\bkrza\AppData\Local\Microsoft\OneDrive\19.174.0902.0013\amd64\FileSyncShell64.dll => Brak pliku
CustomCLSID: HKU\S-1-5-21-2999298571-901751622-2986351545-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\bkrza\AppData\Local\Microsoft\OneDrive\19.174.0902.0013\amd64\FileSyncShell64.dll => Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Brak pliku
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Brak pliku
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> Brak pliku
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Brak pliku
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Brak pliku
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Brak pliku
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Brak pliku
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> Brak pliku
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Brak pliku
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Brak pliku
AlternateDataStreams: C:\ProgramData\TEMP:4FC01C57 [128]
AlternateDataStreams: C:\Users\bkrza\Dane aplikacji:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\bkrza\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
FirewallRules: [{F5E5BC07-A3A2-4FA7-9258-CB58D811243E}] => (Allow) F:\Gry\Steam\steamapps\common\Torchlight II\Torchlight2.exe => Brak pliku
FirewallRules: [{317A4BFF-9D39-4FDE-AD8D-C5383EB5C45F}] => (Allow) F:\Gry\Might and Magic Heroes VII\Binaries\Win32\MMH7Game-Win32-Shipping.exe => Brak pliku
FirewallRules: [UDP Query User{B7CA6852-7B86-445D-987F-97F1F3D38EFD}F:\gry\gtav\gta5.exe] => (Allow) F:\gry\gtav\gta5.exe => Brak pliku
FirewallRules: [TCP Query User{41C2D2C4-C5A9-40A9-B78B-082F3250C04C}F:\gry\gtav\gta5.exe] => (Allow) F:\gry\gtav\gta5.exe => Brak pliku
FirewallRules: [UDP Query User{3B425584-E77C-40FA-AA22-6D9F2D913D09}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe => Brak pliku
FirewallRules: [TCP Query User{3950DC3C-31DB-4872-8F15-A83252DD827D}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe => Brak pliku
FirewallRules: [{EA94CB05-3D27-4F94-9FF2-522E750F5775}] => (Allow) F:\Gry\Might & Magic Heroes VI\Might & Magic Heroes VI.exe => Brak pliku
FirewallRules: [{7FC46988-5FA1-4F00-85D6-8F82519D79BF}] => (Allow) F:\Gry\Might & Magic Heroes VI\Might & Magic Heroes VI.exe => Brak pliku
FirewallRules: [{01F2ECDA-D17B-4A1A-B21E-47851B1CB5ED}] => (Allow) F:\Gry\Heroes of Might and Magic V Tribes of the East\bin\H5_Game.exe => Brak pliku
FirewallRules: [{529526F6-FC51-4729-A14A-E03E9AC6C242}] => (Allow) F:\Gry\Heroes of Might and Magic V Tribes of the East\bin\H5_Game.exe => Brak pliku
FirewallRules: [UDP Query User{CE30E22B-3B6A-40F8-94C9-6490BB0ADDA3}F:\gry\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\gry\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => Brak pliku
FirewallRules: [TCP Query User{B1D3C2EB-1F46-491A-A7A9-C79141E6E423}F:\gry\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\gry\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => Brak pliku
FirewallRules: [UDP Query User{86EF1EF0-39D5-458A-A130-30E30D81E536}F:\gry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\gry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Brak pliku
FirewallRules: [TCP Query User{4B73EF70-D877-43D4-A734-251E9A651360}F:\gry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\gry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => Brak pliku
FirewallRules: [UDP Query User{C044043A-CD07-4E4E-A30A-44EF4B0CF4D8}F:\gry\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe] => (Allow) F:\gry\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe => Brak pliku
FirewallRules: [TCP Query User{D2454DFF-E122-4748-A8C9-9524044E246E}F:\gry\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe] => (Allow) F:\gry\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe => Brak pliku
FirewallRules: [UDP Query User{84C25886-0F75-43C7-AC1F-7A87A504497A}C:\users\bkrza\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\bkrza\appdata\local\blitz\current\blitz.exe => Brak pliku
FirewallRules: [TCP Query User{50CD46AE-4391-46D2-81A5-263F6FE9BED0}C:\users\bkrza\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\bkrza\appdata\local\blitz\current\blitz.exe => Brak pliku
FirewallRules: [{5C36E6ED-6747-4A09-8B36-8746B6F0E4EC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Brak pliku
FirewallRules: [{752CFC54-6B87-4ADA-B3BF-75F64FF8079B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Brak pliku
HKLM-x32\...\Run: [Babakan] => cmd.exe /k if %date:~6,4%%date:~3,2%%date:~0,2% LEQ 20131027 (exit) else (start hxxp//dinoraptzor.org && exit)
HKU\S-1-5-21-2999298571-901751622-2986351545-1001\...\Run: [com.blitz.app] => C:\Users\bkrza\AppData\Local\Blitz\Update.exe [1849928 2019-11-18] (Swift Media Entertainment, Inc. -> Blitz Inc)
S3 AAErrorPort; C:\Users\bkrza\AppData\Local\Temp\ActiveAnticheat\aaerrport.exe [X] <==== UWAGA
S3 PRProt; \??\C:\Users\bkrza\AppData\Local\Temp\ActiveAnticheat\1223465\active64.sys [X] <==== UWAGA
EmptyTemp:

Poprzez skrót klawiszowy CTRL + S (albo przez Plik -> Zapisz) zapisz zmiany w notatniku a następnie w FRST kliknij na Napraw. Na zakończenie naprawy FRST poprosi o restart systemu.

Udostępnij tę odpowiedź


Odnośnik do odpowiedzi
Udostępnij na innych stronach

Jeśli chcesz dodać odpowiedź, zaloguj się lub zarejestruj nowe konto

Jedynie zarejestrowani użytkownicy mogą komentować zawartość tej strony.

Zarejestruj nowe konto

Załóż nowe konto. To bardzo proste!

Zarejestruj się

Zaloguj się

Posiadasz już konto? Zaloguj się poniżej.

Zaloguj się

  • Ostatnio przeglądający   0 użytkowników

    Brak zarejestrowanych użytkowników przeglądających tę stronę.

×
×
  • Dodaj nową pozycję...