API tools faq
paste
Guest User

Untitled

a guest
Aug 30th, 2020
129
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 47.59 KB | None | 0 0
raw download clone embed print report
  1. Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 29-08-2020
  2. Uruchomiony przez tobayashi (administrator) PC1 (30-08-2020 13:55:33)
  3. Uruchomiony z C:\Users\tobayashi\Desktop
  4. Załadowane profile: tobayashi
  5. Platform: Windows 8.1 Pro (Update) (X64) Język: Polski (Polska)
  6. Domyślna przeglądarka: FF
  7. Tryb startu: Normal
  8. Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Procesy (filtrowane) =================
  11.  
  12. (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
  13.  
  14. (ABBYY SOLUTIONS LIMITED -> ABBYY) C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe
  15. (Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
  16. (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
  17. (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
  18. (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
  19. (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13>
  20. (MPC-HC Team) [Brak podpisu cyfrowego] C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe
  21. (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
  22. (Open-Shell) [Brak podpisu cyfrowego] C:\Program Files\Open-Shell\StartMenu.exe
  23. (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
  24. (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
  25. (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
  26. (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe <7>
  27. (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
  28. (Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\tobayashi\AppData\Local\Vivaldi\Application\update_notifier.exe
  29. (Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\tobayashi\AppData\Local\Vivaldi\Application\vivaldi.exe <12>
  30. (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
  31. (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
  32. (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
  33. (VMware, Inc. -> VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
  34.  
  35. ==================== Rejestr (filtrowane) ===================
  36.  
  37. (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
  38.  
  39. HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [224768 2019-10-26] (Open-Shell) [Brak podpisu cyfrowego]
  40. HKU\S-1-5-21-3746824727-3175080848-809881633-1001\...\Run: [Vivaldi Update Notifier] => C:\Users\tobayashi\AppData\Local\Vivaldi\Application\update_notifier.exe [1906760 2020-08-19] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
  41. HKU\S-1-5-21-3746824727-3175080848-809881633-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3377440 2020-07-31] (Valve -> Valve Corporation)
  42. HKU\S-1-5-21-3746824727-3175080848-809881633-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
  43. HKU\S-1-5-21-3746824727-3175080848-809881633-1001\...\Run: [ABBYY Screenshot Reader Retail] => [X]
  44. HKLM\...\Windows x64\Print Processors\Canon MG4200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDB9.DLL [30208 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
  45. HKLM\...\Print\Monitors\Canon BJ Language Monitor MG4200 series: C:\Windows\system32\CNMLMB9.DLL [389120 2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
  46. Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2020-08-07]
  47. ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
  48. Startup: C:\Users\tobayashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2020-08-20]
  49. ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Brak podpisu cyfrowego]
  50. GroupPolicy: Ograniczenia ? <==== UWAGA
  51.  
  52. ==================== Zaplanowane zadania (filtrowane) ============
  53.  
  54. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  55.  
  56. Task: {0006ED7C-6868-45BE-97E5-F5CEB3C49F42} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\Windows\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
  57. Task: {2D3D37F2-7BD3-439F-9BAB-8CFEA08A3170} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-05-29] () [Brak podpisu cyfrowego]
  58. Task: {330DC232-CFFA-41FF-8F3C-953D84011363} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [660688 2020-08-26] (Mozilla Corporation -> Mozilla Foundation)
  59. Task: {6CF7EDE7-1A75-48EA-A143-95A936C9D74D} - System32\Tasks\{28B709C3-6403-4898-8E94-5A84DC3DCC75} => C:\Windows\system32\pcalua.exe -a C:\Users\tobayashi\Downloads\mednafen-1.24.3-win64\mednaffe.exe -d C:\Users\tobayashi\Downloads\mednafen-1.24.3-win64
  60. Task: {B169B08F-E6E4-4330-B5CF-B14CFC926836} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [7658200 2017-06-30] (Piriform Ltd -> Piriform Ltd)
  61. Task: {B7097598-5704-4089-9924-F4B71DD9F7F6} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
  62. Task: {C4B6FC04-39F0-4785-95CE-F8CCF5BEEE03} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_Plugin.exe [1475640 2020-08-29] (Adobe Inc. -> Adobe)
  63. Task: {E78A5C2C-FD6A-4FAA-86D0-1C767C4E2D60} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
  64. Task: {F763BA17-25A7-4939-9A16-00CCDCB4E95A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-29] (Adobe Inc. -> Adobe)
  65. Task: {FFC020AB-BAEA-4BBC-B0BB-6472BC04BECB} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3087184 2020-03-10] (Intel(R) Software Development Products -> Intel Corporation)
  66.  
  67. (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
  68.  
  69.  
  70. ==================== Internet (filtrowane) ====================
  71.  
  72. (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
  73.  
  74. Winsock: Catalog9 11 C:\Windows\SysWOW64\vsocklib.dll [42296 2019-08-14] (VMware, Inc. -> VMware, Inc.)
  75. Winsock: Catalog9 12 C:\Windows\SysWOW64\vsocklib.dll [42296 2019-08-14] (VMware, Inc. -> VMware, Inc.)
  76. Winsock: Catalog9-x64 11 C:\Windows\system32\vsocklib.dll [46392 2019-08-14] (VMware, Inc. -> VMware, Inc.)
  77. Winsock: Catalog9-x64 12 C:\Windows\system32\vsocklib.dll [46392 2019-08-14] (VMware, Inc. -> VMware, Inc.)
  78. Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
  79. Tcpip\..\Interfaces\{BEB6B873-40D9-423D-B61B-8D9E9153AD6A}: [DhcpNameServer] 192.168.1.1
  80.  
  81. Internet Explorer:
  82. ==================
  83. HKU\S-1-5-21-3746824727-3175080848-809881633-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/en-gb/?ocid=iehp
  84. SearchScopes: HKU\S-1-5-21-3746824727-3175080848-809881633-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D060320-N0550A21ABFDD9D88F4162B1F&form=CONBDF&conlogo=CT3332016&q={searchTerms}
  85. SearchScopes: HKU\S-1-5-21-3746824727-3175080848-809881633-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D060320-N0550A21ABFDD9D88F4162B1F&form=CONBDF&conlogo=CT3332016&q={searchTerms}
  86. BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Open-Shell\ClassicExplorer64.dll [2019-10-26] (Open-Shell) [Brak podpisu cyfrowego]
  87. BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Open-Shell\ClassicIEDLL_64.dll [2019-10-26] (Open-Shell) [Brak podpisu cyfrowego]
  88. BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Open-Shell\ClassicExplorer32.dll [2019-10-26] (Open-Shell) [Brak podpisu cyfrowego]
  89. BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Open-Shell\ClassicIEDLL_32.dll [2019-10-26] (Open-Shell) [Brak podpisu cyfrowego]
  90. Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Open-Shell\ClassicExplorer64.dll [2019-10-26] (Open-Shell) [Brak podpisu cyfrowego]
  91. Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Open-Shell\ClassicExplorer32.dll [2019-10-26] (Open-Shell) [Brak podpisu cyfrowego]
  92.  
  93. Edge:
  94. ======
  95. Edge Profile: C:\Users\tobayashi\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-23]
  96.  
  97. FireFox:
  98. ========
  99. FF DefaultProfile: 46bxx60q.default
  100. FF ProfilePath: C:\Users\tobayashi\AppData\Roaming\Mozilla\Firefox\Profiles\46bxx60q.default [2020-06-03]
  101. FF NewTab: Mozilla\Firefox\Profiles\46bxx60q.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=IC150206&iDate=2020-06-03 02:02:34&bName=&bitmask=0450
  102. FF ProfilePath: C:\Users\tobayashi\AppData\Roaming\Mozilla\Firefox\Profiles\wl0no301.default-release [2020-08-30]
  103. FF Homepage: Mozilla\Firefox\Profiles\wl0no301.default-release -> about:blank
  104. FF NewTab: Mozilla\Firefox\Profiles\wl0no301.default-release -> hxxps://defaultsearch.co/homepage?hp=1&pId=IC150206&iDate=2020-06-03 02:02:34&bName=&bitmask=0450
  105. FF Notifications: Mozilla\Firefox\Profiles\wl0no301.default-release -> hxxps://webchat.freenode.net
  106. FF Extension: (uBlock Origin) - C:\Users\tobayashi\AppData\Roaming\Mozilla\Firefox\Profiles\wl0no301.default-release\Extensions\uBlock0@raymondhill.net.xpi [2020-08-22]
  107. FF Extension: (User-Agent Switcher) - C:\Users\tobayashi\AppData\Roaming\Mozilla\Firefox\Profiles\wl0no301.default-release\Extensions\user-agent-switcher@ninetailed.ninja.xpi [2020-08-21]
  108. FF Extension: (Video DownloadHelper) - C:\Users\tobayashi\AppData\Roaming\Mozilla\Firefox\Profiles\wl0no301.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-06-03]
  109. FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_414.dll [2020-08-29] (Adobe Inc. -> )
  110. FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
  111. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_414.dll [2020-08-29] (Adobe Inc. -> )
  112.  
  113. ==================== Usługi (filtrowane) ===================
  114.  
  115. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  116.  
  117. "MpKslDrv" => serwis nie został odblokowany. <==== UWAGA
  118. HKLM\SYSTEM\ControlSet001\Services\MpKslDrv => \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9141190C-FE40-4510-B9DA-8207CEDF4241}\MpKslDrv.sys <==== UWAGA (Rootkit!/Zablokowana usługa)
  119.  
  120. R2 ABBYY.Licensing.FineReader.ScreenshotReader.9.0; C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe [759048 2009-05-15] (ABBYY SOLUTIONS LIMITED -> ABBYY)
  121. S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2020-08-20] (Adobe Systems) [Brak podpisu cyfrowego]
  122. S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-29] (Adobe Inc. -> Adobe)
  123. S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8646752 2020-08-11] (BattlEye Innovations e.K. -> )
  124. R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7138296 2020-08-30] (Malwarebytes Inc -> Malwarebytes)
  125. S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [32648 2020-08-06] (SteelSeries ApS -> )
  126. R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13109264 2020-06-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
  127. S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
  128. S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
  129.  
  130. ===================== Sterowniki (filtrowane) ===================
  131.  
  132. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  133.  
  134. R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153312 2020-08-30] (Malwarebytes Corporation -> Malwarebytes)
  135. R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [217088 2020-08-30] (Malwarebytes Inc -> Malwarebytes)
  136. R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [197280 2020-08-30] (Malwarebytes Inc -> Malwarebytes)
  137. R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73880 2020-08-30] (Malwarebytes Inc -> Malwarebytes)
  138. R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-08-30] (Malwarebytes Inc -> Malwarebytes)
  139. R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [131232 2020-08-30] (Malwarebytes Inc -> Malwarebytes)
  140. R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [46408 2019-12-23] (SteelSeries ApS -> SteelSeries ApS)
  141. R3 sshid; C:\Windows\System32\drivers\sshid.sys [46544 2019-12-23] (SteelSeries ApS -> SteelSeries ApS)
  142. R2 VMnetBridge; C:\Windows\system32\DRIVERS\vmnetbridge.sys [66368 2020-06-05] (VMware, Inc. -> VMware, Inc.)
  143. R0 vsock; C:\Windows\System32\DRIVERS\vsock.sys [103224 2019-08-14] (VMware, Inc. -> VMware, Inc.)
  144. S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
  145. S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
  146. S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
  147. S3 GENERICDRV; \??\C:\Users\tobayashi\Desktop\Nowy folder (2)\50608-system\afuwin64\amifldrv64.sys [X]
  148.  
  149. ==================== NetSvcs (filtrowane) ===================
  150.  
  151. (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
  152.  
  153.  
  154. ==================== Jeden miesiąc (utworzone) ===================
  155.  
  156. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  157.  
  158. 2020-08-30 13:55 - 2020-08-30 13:55 - 000015462 _____ C:\Users\tobayashi\Desktop\FRST.txt
  159. 2020-08-30 13:55 - 2020-08-30 13:55 - 000000000 ____D C:\FRST
  160. 2020-08-30 13:54 - 2020-08-30 13:54 - 000197280 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
  161. 2020-08-30 13:54 - 2020-08-30 13:54 - 000131232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
  162. 2020-08-30 13:54 - 2020-08-30 13:54 - 000073880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
  163. 2020-08-30 13:54 - 2020-08-30 13:54 - 000000000 ____D C:\Users\tobayashi\AppData\LocalLow\IGDump
  164. 2020-08-30 13:47 - 2020-08-30 13:47 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
  165. 2020-08-30 13:47 - 2020-08-30 13:47 - 000217088 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
  166. 2020-08-30 13:47 - 2020-08-30 13:47 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
  167. 2020-08-30 13:47 - 2020-08-30 13:47 - 000001976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
  168. 2020-08-30 13:47 - 2020-08-30 13:47 - 000001964 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
  169. 2020-08-30 13:47 - 2020-08-30 13:47 - 000001964 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
  170. 2020-08-30 13:47 - 2020-08-30 13:47 - 000000000 ____D C:\Users\tobayashi\AppData\Local\mbam
  171. 2020-08-30 13:47 - 2020-08-30 13:47 - 000000000 ____D C:\ProgramData\Malwarebytes
  172. 2020-08-30 13:46 - 2020-08-30 13:46 - 002040904 _____ (Malwarebytes) C:\Users\tobayashi\Desktop\MBSetup.exe
  173. 2020-08-30 13:46 - 2020-08-30 13:46 - 000000000 ____D C:\Program Files\Malwarebytes
  174. 2020-08-30 13:39 - 2020-08-30 13:40 - 002298880 _____ (Farbar) C:\Users\tobayashi\Desktop\FRST64.exe
  175. 2020-08-30 01:57 - 2020-08-30 01:57 - 000000692 _____ C:\Users\tobayashi\AppData\Local\recently-used.xbel
  176. 2020-08-30 01:44 - 2020-08-30 01:44 - 000000000 ____D C:\Users\tobayashi\Downloads\Misja SpaceX - powrót z kosmosu - Space Launch Splashdown (2020) [720p] [HDTV] [XViD] [AC3-H1] [Lektor PL]
  177. 2020-08-29 21:55 - 2020-08-29 21:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDjView
  178. 2020-08-29 21:55 - 2020-08-29 21:55 - 000000000 ____D C:\Program Files\WinDjView
  179. 2020-08-29 21:54 - 2020-08-29 21:54 - 002934033 _____ (Andrew Zhezherun) C:\Users\tobayashi\Desktop\WinDjView-2.1-Setup.exe
  180. 2020-08-29 21:52 - 2020-08-29 21:52 - 000743519 _____ C:\Users\tobayashi\Desktop\Atari800WinPLus4.1.rar
  181. 2020-08-29 21:50 - 2020-08-29 21:51 - 057946432 _____ C:\Users\tobayashi\Desktop\gambler_74-1999-12.djvu
  182. 2020-08-29 21:50 - 2020-08-29 21:50 - 056288141 _____ C:\Users\tobayashi\Desktop\reset_32-1999-12.djvu
  183. 2020-08-29 21:50 - 2020-08-29 21:50 - 007200479 _____ C:\Users\tobayashi\Desktop\reset_34-2000-2.djvu
  184. 2020-08-29 21:49 - 2020-08-29 21:50 - 066031244 _____ C:\Users\tobayashi\Desktop\reset_30-1999-10.djvu
  185. 2020-08-29 21:47 - 2020-08-29 21:48 - 123825043 _____ C:\Users\tobayashi\Desktop\secret_service_94-2001-10.djvu
  186. 2020-08-29 21:46 - 2020-08-29 21:47 - 129536441 _____ C:\Users\tobayashi\Desktop\secret_service_75-2000-1.djvu
  187. 2020-08-29 21:46 - 2020-08-29 21:47 - 061148409 _____ C:\Users\tobayashi\Desktop\gry_komputerowe-2000-4.djvu
  188. 2020-08-29 17:32 - 2020-08-29 17:32 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\ScummVM
  189. 2020-08-29 17:29 - 2020-08-29 17:29 - 000000000 ____D C:\Users\tobayashi\Desktop\FIFA Soccer 96 (1995)
  190. 2020-08-29 17:21 - 2020-08-29 17:21 - 001163487 _____ C:\Users\tobayashi\Desktop\FIFA Soccer 95 (USA, Europe) (En,Fr,De,Es).zip
  191. 2020-08-29 17:18 - 2020-08-29 17:18 - 000001668 _____ C:\Users\Public\Desktop\Hopkins FBI PL.lnk
  192. 2020-08-29 17:18 - 2020-08-29 17:18 - 000001668 _____ C:\ProgramData\Desktop\Hopkins FBI PL.lnk
  193. 2020-08-29 17:18 - 2020-08-29 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Hopkins FBI PL
  194. 2020-08-29 14:27 - 2020-08-29 14:27 - 000001087 _____ C:\Users\Public\Desktop\D-Fend Reloaded.lnk
  195. 2020-08-29 14:27 - 2020-08-29 14:27 - 000001087 _____ C:\ProgramData\Desktop\D-Fend Reloaded.lnk
  196. 2020-08-29 14:27 - 2020-08-29 14:27 - 000000000 ____D C:\Users\tobayashi\D-Fend Reloaded
  197. 2020-08-29 14:27 - 2020-08-29 14:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\D-Fend Reloaded
  198. 2020-08-29 14:27 - 2020-08-29 14:27 - 000000000 ____D C:\Program Files (x86)\D-Fend Reloaded
  199. 2020-08-29 14:26 - 2020-08-29 14:26 - 016048953 _____ (Written by Alexander Herzog) C:\Users\tobayashi\Desktop\D-Fend-Reloaded-1.4.4-Setup.exe
  200. 2020-08-29 14:24 - 2020-08-29 14:24 - 000001827 _____ C:\Users\tobayashi\Desktop\Ace Ventura.lnk
  201. 2020-08-29 14:24 - 2020-08-29 14:24 - 000000000 ____D C:\Users\tobayashi\Desktop\Ace_Ventura_PL
  202. 2020-08-29 14:24 - 2020-08-29 14:24 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Ventura
  203. 2020-08-29 14:24 - 2020-08-29 14:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ace Ventura
  204. 2020-08-29 14:24 - 2020-08-29 14:24 - 000000000 ____D C:\Program Files (x86)\Ace Ventura
  205. 2020-08-29 14:23 - 2020-08-29 14:24 - 187401917 _____ C:\Users\tobayashi\Desktop\Ace_Ventura_PL.rar
  206. 2020-08-29 14:22 - 2020-08-29 14:23 - 237740333 _____ (Extragry.pl) C:\Users\tobayashi\Desktop\HOPKINS FBI.exe
  207. 2020-08-29 14:13 - 2020-08-29 14:14 - 152747144 _____ (VMware, Inc.) C:\Users\tobayashi\Desktop\VMware-player-15.5.6-16341506.exe
  208. 2020-08-29 13:46 - 2020-08-29 13:46 - 000000000 ____D C:\Users\tobayashi\Downloads\Wielkie konstrukcje III Rzeszy (2020) [S01E01] [480p] [HDTV] [XViD] [AC3-H1] [Lektor PL]
  209. 2020-08-29 13:45 - 2020-08-29 13:45 - 000000000 ____D C:\Users\tobayashi\Downloads\Królowe życia (2020) [S09E02] [WEB-DL] [x264-H-1] [PL]
  210. 2020-08-29 13:00 - 2020-08-29 13:00 - 000004518 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
  211. 2020-08-29 13:00 - 2020-08-29 13:00 - 000004382 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
  212. 2020-08-28 23:26 - 2020-08-28 23:29 - 669662535 _____ C:\Users\tobayashi\Downloads\Parszywa dwunastka 3 Zabójcza misja.mp4
  213. 2020-08-28 23:23 - 2020-08-28 23:26 - 733906944 _____ C:\Users\tobayashi\Downloads\Parszywa dwunastka 2 (1985) pl - Następna misja.avi
  214. 2020-08-28 13:59 - 2020-08-28 21:58 - 000000000 ____D C:\Users\tobayashi\Downloads\kz3
  215. 2020-08-28 12:35 - 2020-08-29 08:57 - 000000000 ____D C:\Users\tobayashi\Desktop\rpcs3-v0.0.11-10800-43172918_win64
  216. 2020-08-28 12:28 - 2020-08-29 09:12 - 000000000 ____D C:\Users\tobayashi\Desktop\Nowy folder
  217. 2020-08-28 12:09 - 2020-08-28 12:10 - 026683711 _____ C:\Users\tobayashi\Desktop\rpcs3-v0.0.11-10800-43172918_win64.7z
  218. 2020-08-28 11:42 - 2020-08-28 11:43 - 003570047 _____ C:\Users\tobayashi\Desktop\e456.rar
  219. 2020-08-28 09:53 - 2020-08-28 10:33 - 000000000 ____D C:\Users\tobayashi\Documents\Virtual Machines
  220. 2020-08-28 09:52 - 2020-08-28 10:33 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\VMware
  221. 2020-08-28 09:52 - 2020-08-28 10:33 - 000000000 ____D C:\Users\tobayashi\AppData\Local\VMware
  222. 2020-08-28 09:46 - 2020-08-28 09:46 - 000000030 _____ C:\Users\tobayashi\Documents\win98se.txt
  223. 2020-08-28 00:27 - 2020-08-28 00:30 - 007229603 _____ C:\Users\tobayashi\Desktop\Cyf01.rar
  224. 2020-08-28 00:25 - 2020-08-28 00:25 - 000000000 ____D C:\Users\tobayashi\Desktop\replays
  225. 2020-08-28 00:22 - 2020-08-28 00:22 - 000017202 _____ C:\Users\tobayashi\Desktop\[pobrano z www.immortaltorrent.pl] Królowe życia (2020) [S09E01] [WEB-DL] [x264-H-1] [PL].torrent
  226. 2020-08-27 23:00 - 2020-08-27 23:00 - 000013161 _____ C:\Users\tobayashi\Desktop\[pobrano z www.immortaltorrent.pl] Kuchenne Rewolucje (2020) [S21E05] [720p] [WEB-DL] [x264-H1] [PL].torrent
  227. 2020-08-27 13:51 - 2020-08-29 17:18 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\Extragry.pl
  228. 2020-08-27 13:51 - 2020-08-29 17:18 - 000000000 ____D C:\Gry
  229. 2020-08-27 13:51 - 2020-08-27 13:51 - 000001752 _____ C:\Users\Public\Desktop\Wacki - Kosmiczna Rozgrywka.lnk
  230. 2020-08-27 13:51 - 2020-08-27 13:51 - 000001752 _____ C:\ProgramData\Desktop\Wacki - Kosmiczna Rozgrywka.lnk
  231. 2020-08-27 13:51 - 2020-08-27 13:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Wacki - Kosmiczna Rozgrywka
  232. 2020-08-27 13:49 - 2020-08-27 13:49 - 000000918 _____ C:\Users\Public\Desktop\Grandia II Anniversary Edition.lnk
  233. 2020-08-27 13:49 - 2020-08-27 13:49 - 000000918 _____ C:\ProgramData\Desktop\Grandia II Anniversary Edition.lnk
  234. 2020-08-27 13:49 - 2020-08-27 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grandia II Anniversary Edition
  235. 2020-08-27 12:57 - 2020-08-30 12:23 - 000000000 ____D C:\ProgramData\VMware
  236. 2020-08-27 12:57 - 2020-08-27 12:57 - 001852906 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
  237. 2020-08-27 12:57 - 2020-08-27 12:57 - 000001204 _____ C:\Users\Public\Desktop\VMware Workstation 15 Player.lnk
  238. 2020-08-27 12:57 - 2020-08-27 12:57 - 000001204 _____ C:\ProgramData\Desktop\VMware Workstation 15 Player.lnk
  239. 2020-08-27 12:57 - 2020-08-27 12:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
  240. 2020-08-27 12:57 - 2020-08-27 12:57 - 000000000 ____D C:\Program Files\Common Files\VMware
  241. 2020-08-27 12:57 - 2020-08-27 12:57 - 000000000 ____D C:\Program Files (x86)\VMware
  242. 2020-08-27 12:57 - 2020-06-05 00:19 - 001304280 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll
  243. 2020-08-27 12:57 - 2020-06-05 00:18 - 000408624 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
  244. 2020-08-27 12:57 - 2020-06-05 00:18 - 000379440 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
  245. 2020-08-27 12:57 - 2020-06-05 00:18 - 000116536 _____ (VMware, Inc.) C:\Windows\system32\vnetinst.dll
  246. 2020-08-27 12:57 - 2020-06-05 00:18 - 000045880 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnet.sys
  247. 2020-08-27 12:57 - 2020-06-05 00:18 - 000043840 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
  248. 2020-08-27 12:57 - 2020-06-05 00:12 - 000102200 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys
  249. 2020-08-27 12:57 - 2020-04-16 08:16 - 000083264 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys
  250. 2020-08-27 12:57 - 2019-08-14 01:36 - 000103224 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys
  251. 2020-08-27 12:57 - 2019-08-14 01:36 - 000046392 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
  252. 2020-08-27 12:57 - 2019-08-14 01:36 - 000042296 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
  253. 2020-08-27 12:52 - 2020-08-27 12:52 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\Ashampoo Cover Studio 2017
  254. 2020-08-27 12:52 - 2020-08-27 12:52 - 000000000 ____D C:\Users\tobayashi\AppData\Local\Ashampoo
  255. 2020-08-27 12:52 - 2020-08-27 12:52 - 000000000 ____D C:\ProgramData\Ashampoo
  256. 2020-08-26 14:06 - 2020-08-27 12:49 - 000000000 ____D C:\Users\tobayashi\Desktop\MAMEUI64
  257. 2020-08-26 04:04 - 2020-08-26 04:04 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
  258. 2020-08-26 02:26 - 2020-08-26 08:33 - 000000000 ____D C:\Program Files\Mozilla Firefox
  259. 2020-08-24 17:48 - 2020-08-24 17:48 - 000000000 ____D C:\Users\tobayashi\AppData\Local\NFS Underground 2
  260. 2020-08-24 11:41 - 2020-08-24 11:42 - 000000000 ____D C:\Users\tobayashi\.gradle
  261. 2020-08-24 11:41 - 2020-08-24 11:41 - 000000000 ____D C:\Users\tobayashi\AndroidStudioProjects
  262. 2020-08-24 10:14 - 2019-12-26 15:10 - 000191544 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelHaxm.sys
  263. 2020-08-24 10:11 - 2020-08-24 10:11 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\Google
  264. 2020-08-24 10:11 - 2020-08-24 10:11 - 000000000 ____D C:\Users\tobayashi\AppData\Local\Android
  265. 2020-08-24 10:11 - 2020-08-24 10:11 - 000000000 ____D C:\Users\tobayashi\.AndroidStudio4.0
  266. 2020-08-24 10:08 - 2020-08-24 10:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Android Studio
  267. 2020-08-24 10:07 - 2020-08-27 13:22 - 000000000 ____D C:\Program Files\Android
  268. 2020-08-23 12:32 - 2020-08-23 12:33 - 000000000 ____D C:\Users\tobayashi\Desktop\Marta
  269. 2020-08-20 13:28 - 2020-08-20 13:28 - 000326969 _____ C:\Users\tobayashi\Downloads\MAME_0.209_ROMs_merged_archive.torrent
  270. 2020-08-20 13:07 - 2020-08-20 13:07 - 000000000 ____D C:\Users\tobayashi\Documents\Updater
  271. 2020-08-20 13:06 - 2020-08-29 13:00 - 000000000 ____D C:\Users\tobayashi\AppData\Local\Adobe
  272. 2020-08-20 13:05 - 2020-08-20 13:05 - 000002101 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help Center.lnk
  273. 2020-08-20 13:04 - 2020-08-20 13:05 - 000000000 ____D C:\Program Files (x86)\Adobe
  274. 2020-08-20 13:04 - 2020-08-20 13:04 - 000002083 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge.lnk
  275. 2020-08-20 13:04 - 2020-08-20 13:04 - 000002061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS2.lnk
  276. 2020-08-20 13:04 - 2020-08-20 13:04 - 000002058 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ImageReady CS2.lnk
  277. 2020-08-20 13:04 - 2020-08-20 13:04 - 000000000 ____D C:\Users\Public\Documents\Adobe PDF
  278. 2020-08-20 13:04 - 2020-08-20 13:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
  279. 2020-08-20 13:04 - 2020-08-20 13:04 - 000000000 ____D C:\ProgramData\Documents\Adobe PDF
  280. 2020-08-20 13:04 - 2020-08-20 13:04 - 000000000 ____D C:\ProgramData\Adobe
  281. 2020-08-20 13:01 - 2020-08-20 13:01 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
  282. 2020-08-20 13:01 - 2020-08-20 13:01 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\IrfanView
  283. 2020-08-20 13:01 - 2020-08-20 13:01 - 000000000 ____D C:\Program Files\IrfanView
  284. 2020-08-20 10:34 - 2020-08-15 05:51 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
  285. 2020-08-20 10:34 - 2020-08-15 05:51 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
  286. 2020-08-20 10:34 - 2020-08-15 05:36 - 000428544 _____ (Microsoft Corporation) C:\Windows\system32\rasplap.dll
  287. 2020-08-20 10:34 - 2020-08-15 05:16 - 000033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
  288. 2020-08-20 10:34 - 2020-08-15 05:16 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
  289. 2020-08-20 10:34 - 2020-08-15 05:05 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
  290. 2020-08-20 10:34 - 2020-08-15 05:05 - 000401408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasplap.dll
  291. 2020-08-20 10:34 - 2020-08-15 04:55 - 000963072 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
  292. 2020-08-20 10:34 - 2020-08-15 04:48 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
  293. 2020-08-20 10:34 - 2020-08-15 04:42 - 000796160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
  294. 2020-08-20 10:34 - 2020-08-15 04:39 - 000424448 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
  295. 2020-08-20 10:34 - 2020-08-15 04:35 - 000856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
  296. 2020-08-20 10:34 - 2020-08-15 04:28 - 000542720 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
  297. 2020-08-20 10:34 - 2020-08-15 04:26 - 000700928 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
  298. 2020-08-20 10:34 - 2020-08-15 04:24 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprapi.dll
  299. 2020-08-20 10:34 - 2020-08-15 04:16 - 000629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
  300. 2020-08-18 15:45 - 2020-08-18 15:47 - 210017366 _____ C:\Users\tobayashi\Downloads\Secret Service - 75 [2000] (01).pdf
  301. 2020-08-18 15:45 - 2020-08-18 15:46 - 176437542 _____ C:\Users\tobayashi\Downloads\Secret Service - 59 [1998] (07-08).pdf
  302. 2020-08-18 15:44 - 2020-08-18 15:46 - 176077090 _____ C:\Users\tobayashi\Downloads\Secret Service - 58 [1998] (06).pdf
  303. 2020-08-17 14:59 - 2020-08-17 14:59 - 000001324 _____ C:\Users\tobayashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4kvideodownloader.lnk
  304. 2020-08-17 14:57 - 2020-08-24 11:43 - 000000000 ____D C:\Windows\system32\appmgmt
  305. 2020-08-17 14:56 - 2020-08-17 14:56 - 000000000 ____D C:\Users\tobayashi\AppData\Local\4kdownload.com
  306. 2020-08-17 14:22 - 2020-08-27 13:28 - 000000000 ____D C:\Program Files (x86)\Need for Speed Underground 2
  307. 2020-08-17 14:09 - 2020-08-17 14:09 - 000000000 ____D C:\Users\tobayashi\AppData\Local\UnrealEngine
  308. 2020-08-17 14:09 - 2020-08-17 14:09 - 000000000 ____D C:\Users\tobayashi\AppData\Local\Hellbound
  309. 2020-08-17 14:09 - 2020-08-17 14:09 - 000000000 ____D C:\Users\Public\Documents\Steam
  310. 2020-08-17 14:09 - 2020-08-17 14:09 - 000000000 ____D C:\ProgramData\Documents\Steam
  311. 2020-08-15 19:21 - 2020-08-27 13:01 - 000000000 ____D C:\Users\tobayashi\Downloads\filmory
  312. 2020-08-13 17:43 - 2020-08-13 20:49 - 000000000 ____D C:\Users\tobayashi\Downloads\Seriale
  313. 2020-08-13 17:37 - 2020-08-13 17:37 - 000000000 ____D C:\Users\tobayashi\Downloads\Adobe Premiere Pro 2020 14.3.1.45 RePack by KpoJIuK
  314. 2020-08-13 15:19 - 2020-08-13 18:02 - 583450677 _____ C:\Users\tobayashi\Desktop\Vegas_Pro_16.0.0.361_PL.rar
  315. 2020-08-11 22:04 - 2020-08-11 22:04 - 000000000 ____D C:\Users\tobayashi\AppData\Local\Vivox
  316. 2020-08-11 21:54 - 2020-08-06 00:47 - 000477696 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
  317. 2020-08-11 21:54 - 2020-08-06 00:19 - 000367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
  318. 2020-08-11 21:54 - 2020-08-06 00:00 - 001098240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
  319. 2020-08-11 21:54 - 2020-08-04 05:08 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
  320. 2020-08-11 21:54 - 2020-08-04 04:58 - 001483264 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
  321. 2020-08-11 21:54 - 2020-08-04 04:39 - 001441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
  322. 2020-08-11 21:54 - 2020-08-04 04:39 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
  323. 2020-08-11 21:54 - 2020-08-04 04:35 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
  324. 2020-08-11 21:54 - 2020-08-04 04:32 - 001338368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsecedit.dll
  325. 2020-08-11 21:54 - 2020-08-04 04:15 - 000698880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
  326. 2020-08-11 21:54 - 2020-07-23 08:33 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
  327. 2020-08-11 21:54 - 2020-07-19 11:45 - 000431352 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
  328. 2020-08-11 21:54 - 2020-07-19 11:39 - 000376056 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
  329. 2020-08-11 21:54 - 2020-07-19 11:36 - 000955432 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
  330. 2020-08-11 21:54 - 2020-07-19 10:45 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
  331. 2020-08-11 21:54 - 2020-07-19 09:41 - 000950784 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
  332. 2020-08-11 21:54 - 2020-07-19 09:37 - 001756160 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
  333. 2020-08-11 21:54 - 2020-07-19 09:15 - 000453120 _____ (Microsoft Corporation) C:\Windows\system32\upnphost.dll
  334. 2020-08-11 21:54 - 2020-07-19 09:10 - 001730048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
  335. 2020-08-11 21:54 - 2020-07-18 07:36 - 000317176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
  336. 2020-08-11 21:54 - 2020-07-18 07:31 - 000317192 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
  337. 2020-08-11 21:54 - 2020-07-18 07:24 - 000788104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
  338. 2020-08-11 21:54 - 2020-07-18 05:27 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
  339. 2020-08-11 21:54 - 2020-07-18 04:40 - 000772096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
  340. 2020-08-11 21:54 - 2020-07-18 04:38 - 001494016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
  341. 2020-08-11 21:54 - 2020-07-18 04:23 - 000329216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnphost.dll
  342. 2020-08-11 21:54 - 2020-07-18 04:17 - 001548288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
  343. 2020-08-11 21:54 - 2020-07-17 20:19 - 001542672 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
  344. 2020-08-11 21:54 - 2020-07-16 07:20 - 002745080 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
  345. 2020-08-11 21:54 - 2020-07-16 07:18 - 002528696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
  346. 2020-08-11 21:54 - 2020-07-14 09:11 - 001370688 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
  347. 2020-08-11 21:54 - 2020-07-14 05:55 - 025756672 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
  348. 2020-08-11 21:54 - 2020-07-14 05:43 - 004169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
  349. 2020-08-11 21:54 - 2020-07-14 05:31 - 000581120 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
  350. 2020-08-11 21:54 - 2020-07-14 05:19 - 005499392 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
  351. 2020-08-11 21:54 - 2020-07-14 05:19 - 000785408 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
  352. 2020-08-11 21:54 - 2020-07-14 05:15 - 020291584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
  353. 2020-08-11 21:54 - 2020-07-14 05:00 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
  354. 2020-08-11 21:54 - 2020-07-14 04:51 - 001993728 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
  355. 2020-08-11 21:54 - 2020-07-14 04:51 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
  356. 2020-08-11 21:54 - 2020-07-14 04:50 - 000653824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
  357. 2020-08-11 21:54 - 2020-07-14 04:43 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
  358. 2020-08-11 21:54 - 2020-07-14 04:42 - 015479296 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
  359. 2020-08-11 21:54 - 2020-07-14 04:42 - 001384448 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
  360. 2020-08-11 21:54 - 2020-07-14 04:30 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
  361. 2020-08-11 21:54 - 2020-07-14 04:29 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
  362. 2020-08-11 21:54 - 2020-07-14 04:27 - 004111872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
  363. 2020-08-11 21:54 - 2020-07-14 04:27 - 001088512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
  364. 2020-08-11 21:54 - 2020-07-14 04:25 - 001559552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
  365. 2020-08-11 21:54 - 2020-07-14 04:25 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
  366. 2020-08-11 21:54 - 2020-07-14 04:21 - 013861888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
  367. 2020-08-11 21:54 - 2020-07-14 04:18 - 001566720 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
  368. 2020-08-11 21:54 - 2020-07-14 04:07 - 004387328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
  369. 2020-08-11 21:54 - 2020-07-14 04:07 - 000801280 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
  370. 2020-08-11 21:54 - 2020-07-14 04:03 - 001341952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
  371. 2020-08-11 21:54 - 2020-07-14 04:01 - 000710656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
  372. 2020-08-11 21:54 - 2020-07-14 02:17 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
  373. 2020-08-11 21:54 - 2020-07-14 02:17 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
  374. 2020-08-11 21:54 - 2020-07-14 02:17 - 000353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
  375. 2020-08-11 21:54 - 2020-07-11 20:33 - 007363320 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
  376. 2020-08-11 21:54 - 2020-07-11 17:40 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
  377. 2020-08-11 21:54 - 2020-07-11 17:29 - 000671744 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
  378. 2020-08-11 21:54 - 2020-07-11 17:17 - 000254976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
  379. 2020-08-11 21:54 - 2020-07-11 17:08 - 000656384 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
  380. 2020-08-11 21:54 - 2020-07-11 17:07 - 000252928 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
  381. 2020-08-11 21:54 - 2020-07-11 16:57 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
  382. 2020-08-11 21:54 - 2020-07-11 16:54 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
  383. 2020-08-11 21:54 - 2020-07-11 16:53 - 001377792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
  384. 2020-08-11 21:54 - 2020-07-11 16:47 - 000092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdSSDP.dll
  385. 2020-08-11 21:54 - 2020-07-10 00:33 - 000629504 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
  386. 2020-08-11 21:54 - 2020-07-10 00:30 - 000464184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
  387. 2020-08-11 21:54 - 2020-07-04 18:06 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
  388. 2020-08-11 21:54 - 2020-07-04 17:46 - 003331584 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
  389. 2020-08-11 21:54 - 2020-07-04 17:35 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msisip.dll
  390. 2020-08-11 21:54 - 2020-07-04 17:23 - 003640832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
  391. 2020-08-11 21:54 - 2020-07-02 23:26 - 000801792 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll
  392. 2020-08-11 21:54 - 2020-06-30 18:27 - 000955904 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
  393. 2020-08-11 21:54 - 2020-06-28 10:16 - 001210112 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
  394. 2020-08-11 21:54 - 2020-06-28 09:30 - 001037584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
  395. 2020-08-11 21:49 - 2020-08-11 21:49 - 000000000 ____D C:\Users\tobayashi\AppData\Local\BattlEye
  396. 2020-08-11 14:53 - 2020-08-24 11:50 - 000000000 ____D C:\Users\tobayashi\AppData\Local\Ubisoft Game Launcher
  397. 2020-08-11 14:53 - 2020-08-11 14:53 - 000000000 ____D C:\ProgramData\Ubisoft
  398. 2020-08-11 14:53 - 2020-08-11 14:53 - 000000000 ____D C:\Program Files (x86)\Ubisoft
  399. 2020-07-31 21:27 - 2020-07-31 21:27 - 000002788 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
  400. 2020-07-31 21:27 - 2020-07-31 21:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
  401. 2020-07-31 21:27 - 2020-07-31 21:27 - 000000000 ____D C:\Program Files\CCleaner
  402.  
  403. ==================== Jeden miesiąc (zmodyfikowane) ==================
  404.  
  405. (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
  406.  
  407. 2020-08-30 13:40 - 2020-05-27 02:27 - 000000000 ____D C:\Users\tobayashi\AppData\Local\OpenShell
  408. 2020-08-30 13:16 - 2020-05-09 18:56 - 000003598 _____ C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3746824727-3175080848-809881633-1001
  409. 2020-08-30 12:37 - 2020-05-09 23:24 - 000000000 ____D C:\Program Files (x86)\Steam
  410. 2020-08-30 12:28 - 2014-11-21 05:46 - 001835936 _____ C:\Windows\system32\PerfStringBackup.INI
  411. 2020-08-30 12:28 - 2014-11-21 05:07 - 000809500 _____ C:\Windows\system32\perfh015.dat
  412. 2020-08-30 12:28 - 2014-11-21 05:07 - 000164820 _____ C:\Windows\system32\perfc015.dat
  413. 2020-08-30 12:28 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
  414. 2020-08-30 12:23 - 2020-07-01 20:20 - 000000000 ____D C:\Program Files (x86)\TeamViewer
  415. 2020-08-30 12:23 - 2020-05-09 20:59 - 000000000 ____D C:\Users\tobayashi\AppData\LocalLow\Mozilla
  416. 2020-08-30 12:23 - 2020-05-09 18:54 - 000000000 ____D C:\ProgramData\NVIDIA
  417. 2020-08-30 12:23 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
  418. 2020-08-30 01:57 - 2020-05-27 21:17 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\deluge
  419. 2020-08-29 16:17 - 2020-05-09 21:11 - 000000374 _____ C:\Users\tobayashi\.vivaldi_reporting_data
  420. 2020-08-29 14:27 - 2020-05-09 18:51 - 000000000 ____D C:\Users\tobayashi
  421. 2020-08-29 14:03 - 2020-06-21 10:58 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
  422. 2020-08-29 13:43 - 2020-05-27 02:26 - 000000000 ____D C:\ProgramData\OpenShell
  423. 2020-08-29 13:00 - 2014-11-21 10:04 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
  424. 2020-08-29 13:00 - 2014-11-21 10:04 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
  425. 2020-08-29 13:00 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\Macromed
  426. 2020-08-29 12:59 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
  427. 2020-08-28 23:37 - 2020-06-15 18:45 - 000000000 ____D C:\Users\tobayashi\Desktop\eBooki
  428. 2020-08-28 09:50 - 2020-06-14 00:41 - 000000000 ____D C:\Users\tobayashi\dwhelper
  429. 2020-08-28 00:35 - 2020-06-09 02:29 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\MPC-HC
  430. 2020-08-27 13:44 - 2020-05-09 21:09 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\AIMP
  431. 2020-08-27 13:31 - 2020-05-11 04:49 - 000000023 _____ C:\Users\tobayashi\Desktop\Nowy dokument tekstowy.txt
  432. 2020-08-27 13:22 - 2020-05-23 14:11 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\Wargaming.net
  433. 2020-08-27 13:21 - 2020-06-10 15:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
  434. 2020-08-27 12:56 - 2020-05-09 18:52 - 000000000 ____D C:\ProgramData\Package Cache
  435. 2020-08-26 08:33 - 2020-05-09 20:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
  436. 2020-08-26 04:04 - 2020-05-09 20:59 - 000000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
  437. 2020-08-26 00:13 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI
  438. 2020-08-24 11:50 - 2020-05-10 00:05 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
  439. 2020-08-24 11:44 - 2020-07-04 06:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hero Editor
  440. 2020-08-24 11:44 - 2020-07-04 06:20 - 000000000 ____D C:\Program Files (x86)\Hero Editor
  441. 2020-08-24 11:44 - 2020-06-10 15:21 - 000000000 ____D C:\Program Files\Blackmagic Design
  442. 2020-08-24 10:14 - 2020-05-09 18:52 - 000000000 ____D C:\Program Files\Intel
  443. 2020-08-24 09:57 - 2020-06-21 10:58 - 000003410 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
  444. 2020-08-24 09:57 - 2020-06-21 10:58 - 000003282 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
  445. 2020-08-23 17:05 - 2020-06-26 11:56 - 000000000 ____D C:\Users\tobayashi\Documents\Euro Truck Simulator 2
  446. 2020-08-22 19:17 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
  447. 2020-08-22 19:17 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\AppReadiness
  448. 2020-08-21 11:48 - 2020-06-26 13:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\THE KING OF FIGHTERS XIV GALAXY EDITION [GOG.com]
  449. 2020-08-21 07:35 - 2013-08-22 15:44 - 000496856 _____ C:\Windows\system32\FNTCACHE.DAT
  450. 2020-08-21 03:59 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\setup
  451. 2020-08-21 03:59 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\setup
  452. 2020-08-20 15:51 - 2020-05-11 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
  453. 2020-08-20 13:07 - 2020-05-09 18:51 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\Adobe
  454. 2020-08-20 12:32 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
  455. 2020-08-20 01:15 - 2020-05-09 21:11 - 000002346 _____ C:\Users\tobayashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
  456. 2020-08-20 01:15 - 2020-05-09 21:10 - 000000000 ____D C:\Users\tobayashi\AppData\Local\Vivaldi
  457. 2020-08-17 14:09 - 2020-06-18 01:45 - 000000000 ____D C:\Windows\SysWOW64\directx
  458. 2020-08-17 14:08 - 2020-06-18 02:09 - 000000000 ____D C:\Temp
  459. 2020-08-14 12:33 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache
  460. 2020-08-13 03:09 - 2013-08-22 16:36 - 000000000 ___RD C:\Windows\ToastData
  461. 2020-08-11 21:49 - 2020-06-26 13:45 - 000000000 ____D C:\Users\tobayashi\Documents\My Games
  462. 2020-08-07 10:24 - 2020-05-09 18:55 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\steelseries-engine-3-client
  463. 2020-07-31 21:28 - 2020-07-01 20:00 - 000000000 ____D C:\Users\tobayashi\AppData\Roaming\TeamViewer
  464. 2020-07-31 21:28 - 2020-06-24 15:23 - 000000000 ____D C:\Users\tobayashi\AppData\Local\CrashDumps
  465. 2020-07-31 21:28 - 2020-05-21 15:20 - 000000000 ____D C:\Windows\Minidump
  466. 2020-07-31 21:28 - 2020-05-09 19:49 - 000000000 ____D C:\Windows\Panther
  467.  
  468. ==================== Pliki w katalogu głównym wybranych folderów ========
  469.  
  470. 2020-07-28 12:02 - 2020-07-28 12:15 - 000003843 _____ () C:\Users\tobayashi\AppData\Local\kdenliverc
  471. 2020-08-30 01:57 - 2020-08-30 01:57 - 000000692 _____ () C:\Users\tobayashi\AppData\Local\recently-used.xbel
  472. 2020-07-28 12:02 - 2020-07-28 12:02 - 000000535 _____ () C:\Users\tobayashi\AppData\Local\user-places.xbel
  473. 2020-07-28 12:02 - 2020-07-28 12:02 - 000000000 _____ () C:\Users\tobayashi\AppData\Local\user-places.xbel.tbcache
  474.  
  475. ==================== SigCheck ============================
  476.  
  477. (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
  478.  
  479.  
  480. LastRegBack: 2020-08-27 13:12
  481. ==================== Koniec FRST.txt ========================
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!