Untitled

Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 23.09.2018
Uruchomiony przez MM (administrator)  DESKTOP-I12L1H2 (26-09-2018 08:49:44)
Uruchomiony z C:\Users\MM\Desktop
Załadowane profile: MM (Dostępne profile: defaultuser0 & MM)
Platform: Windows 10 Home Wersja 1803 17134.285 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: FF)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ABBYY) C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Apple Inc.) C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epintegrationservice.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epprotectedservice.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epag.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\bdredline.exe
() C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epupdateservice.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epsecurityservice.exe
(Copyright (c) 2018 Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiLogger\ZAM.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epconsole.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
() C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\SIV\thermald.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiLogger\ZAM.exe
(Dexpot GbR) C:\Program Files (x86)\Dexpot\dexpot.exe
(Dexpot GbR) C:\Program Files (x86)\Dexpot\Dexpot64.exe
(Dexpot GbR) C:\Program Files (x86)\Dexpot\plugins\DexControl.exe
(File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.0.7.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Comfort Software Group) C:\Program Files\HotVirtualKeyboard\hvk.exe
(Comfort Software Group) C:\Program Files\HotVirtualKeyboard\hvkcm64.exe
(AppWork GmbH) C:\Users\MM\AppData\Local\JDownloader v2.0\JDownloader2.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera_crashreporter.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Opera Software) C:\Users\MM\AppData\Local\Programs\Opera\55.0.2994.61\opera.exe
(Microsoft Corporation) C:\Windows\System32\mstsc.exe
(Sagra) C:\Users\MM\AppData\Local\Apps\2.0\BG7P9EC0.3QH\9OW5MWNR.3EB\inte..tion_b7c4138963821941_0002.0001_78af0f4ec8094500\IntegraExpress.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Pitrinec Software) C:\Program Files (x86)\PerfectKeyboard\PerfectKeyboard.exe
(Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Rejestr (filtrowane) ===========================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8852224 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-27] (Intel Corporation)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiLogger\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
HKLM-x32\...\Run: [Sound Blaster X-Fi MB 3] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB3\Sound Blaster X-Fi MB3\SBXFIMB3.exe [2112512 2015-06-12] (Creative Technology Ltd)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3237808 2018-01-09] (Dominik Reichl)
HKLM-x32\...\Run: [DT BEN] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [121096 2016-02-12] (Portrait Displays, Inc.)
HKLM-x32\...\Run: [KeyScrambler] => C:\Program Files (x86)\KeyScrambler\keyscrambler.exe [515600 2017-04-23] (QFX Software Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-27] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [51440 2018-04-11] (Copyright (c) 2018 Plays.tv, LLC)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2017-05-30] (Raptr, Inc)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [8192 2013-04-29] ()
HKLM-x32\...\RunOnce: [SIV] => C:\Program Files (x86)\Gigabyte\SIV\sivro.exe [12072 2015-11-12] (GIGA-BYTE TECHNOLOGY CO., LTD.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-648680627-2052121901-1332167063-1001\...\Run: [Dexpot] => C:\Program Files (x86)\Dexpot\dexpot.exe [1843704 2016-07-19] (Dexpot GbR)
HKU\S-1-5-21-648680627-2052121901-1332167063-1001\...\Run: [ABBYY Screenshot Reader Retail] => [X]
HKU\S-1-5-21-648680627-2052121901-1332167063-1001\...\Run: [Spotify Web Helper] => C:\Users\MM\AppData\Roaming\Spotify\SpotifyWebHelper.exe [782736 2018-08-25] (Spotify Ltd)
HKU\S-1-5-21-648680627-2052121901-1332167063-1001\...\Run: [Spotify] => C:\Users\MM\AppData\Roaming\Spotify\Spotify.exe [21894544 2018-08-25] (Spotify Ltd)
AppInit_DLLs: C:\PROGRA~2\KEYCRY~1\KeyCrypt64(2).dll => C:\Program Files (x86)\KeyCryptSDK\KeyCrypt64(2).dll [94568 2017-01-19] (Zemana Ltd.)
AppInit_DLLs-x32: C:\PROGRA~2\KEYCRY~1\KeyCrypt32(2).dll => C:\Program Files (x86)\KeyCryptSDK\KeyCrypt32(2).dll [85864 2017-01-19] (Zemana Ltd.)

==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8de0f978-0204-4679-8f27-1a012806e28e}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a77c91dc-6a1d-4cb5-abdc-ea4b991e4fe0}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-648680627-2052121901-1332167063-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00
SearchScopes: HKU\S-1-5-21-648680627-2052121901-1332167063-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
SearchScopes: HKU\S-1-5-21-648680627-2052121901-1332167063-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-10\bin\jp2ssv.dll [2018-03-23] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2017-08-15] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2018-09-19] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation)

Edge:
======
Edge Extension: (AdBlock) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.4.0.0_neutral__c1wakc4j0nefm [2018-01-11]

FireFox:
========
FF DefaultProfile: nany7hdy.MM-1506843086437
FF DefaultProfile: 2pq4xiop.MAMA
FF ProfilePath: C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1 [2018-09-22]
FF Session Restore: Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1 -> [funkcja włączona]
FF Extension: (ConsistentHTTPS) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\consistent-https@tanalin.com.xpi [2017-10-01]
FF Extension: (Ghostery) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\firefox@ghostery.com.xpi [2017-10-30]
FF Extension: (HTTPS Everywhere) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\https-everywhere@eff.org.xpi [2017-11-02]
FF Extension: (Private Tab) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\privateTab@infocatcher.xpi [2017-08-31] [Przestarzałe]
FF Extension: (Profile Folder Button) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\ProfileFolderButton@schuzak.jp.xpi [2017-09-03] [Przestarzałe]
FF Extension: (S3.Translator) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\s3google@translator.xpi [2017-11-07]
FF Extension: (Safe Browsing Version 4 (temporary add-on)) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\sbv4-gradual-rollout@mozilla.com.xpi [2017-10-04] [Przestarzałe]
FF Extension: (Super Start) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\superstart@enjoyfreeware.org [2017-07-24] [Przestarzałe]
FF Extension: (uBlock Origin) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\uBlock0@raymondhill.net.xpi [2017-11-10]
FF Extension: (FlashGot) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-08-31] [Przestarzałe]
FF Extension: (DownThemAll!) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2017-08-31] [Przestarzałe]
FF Extension: (ProfileSwitcher) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\q4038wma.Unnamed Profile 1\Extensions\{fa8476cf-a98c-4e08-99b4-65a69cb4b7d4}.xpi [2017-09-03] [Przestarzałe]
FF ProfilePath: C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA [2018-09-22]
FF Session Restore: Mozilla\Firefox\Profiles\8fv6knvj.GTA -> [funkcja włączona]
FF Extension: (Disconnect) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\2.0@disconnect.me.xpi [2017-09-10]
FF Extension: (Ghostery) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\firefox@ghostery.com.xpi [2017-09-03]
FF Extension: (HTTPS Everywhere) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\https-everywhere@eff.org.xpi [2017-09-10] [Przestarzałe]
FF Extension: (Decentraleyes) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2017-09-03] [Przestarzałe]
FF Extension: (Privacy Badger) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2017-09-10]
FF Extension: (Private Tab) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\privateTab@infocatcher.xpi [2017-08-31] [Przestarzałe]
FF Extension: (Profile Folder Button) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\ProfileFolderButton@schuzak.jp.xpi [2017-09-03] [Przestarzałe]
FF Extension: (S3.Google Translator) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\s3google@translator.xpi [2017-09-03] [Przestarzałe]
FF Extension: (SSleuth) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\ssleuth@github.xpi [2017-08-31] [Przestarzałe]
FF Extension: (Tab Groups) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\tabgroups@quicksaver.xpi [2017-08-31] [Przestarzałe]
FF Extension: (uBlock Origin) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\uBlock0@raymondhill.net.xpi [2017-09-03]
FF Extension: (All-in-One Sidebar) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2017-09-10] [Przestarzałe]
FF Extension: (FlashGot) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2017-08-31] [Przestarzałe]
FF Extension: (Speed Dial) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\{6c3bd1f7-54d6-400f-b074-03b70bab4d71}.xpi [2017-09-10]
FF Extension: (NoScript) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2017-08-31] [Przestarzałe]
FF Extension: (DownThemAll!) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2017-08-31] [Przestarzałe]
FF Extension: (ProfileSwitcher) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\8fv6knvj.GTA\Extensions\{fa8476cf-a98c-4e08-99b4-65a69cb4b7d4}.xpi [2017-09-03] [Przestarzałe]
FF ProfilePath: C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437 [2018-09-26]
FF Homepage: Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437 -> moz-extension://51986992-cdde-4298-b32a-75daf88df709/dial.html
FF NewTab: Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437 -> chrome://fvd.speeddial/content/fvd_about_blank.html
FF Session Restore: Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437 -> [funkcja włączona]
FF NewTabOverride: Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437 -> Enabled: admin@fastaddons.com_GroupSpeedDial
FF NewTabOverride: Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437 -> Disabled: pavel.sherbakov@gmail.com
FF NewTabOverride: Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437 -> Disabled: {83a9ecbd-0360-4fee-8822-233ed92cf930}
FF Extension: (Firefox Multi-Account Containers) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\@testpilot-containers.xpi [2018-04-06]
FF Extension: (Group Speed Dial) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\admin@fastaddons.com_GroupSpeedDial.xpi [2018-09-14]
FF Extension: (Bloody Vikings!) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\bloodyvikings@ffs.bplaced.net.xpi [2018-01-02]
FF Extension: (Rapids) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\download@rapids.pl.xpi [2018-04-05]
FF Extension: (HTTPS Everywhere) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\https-everywhere@eff.org.xpi [2018-09-20]
FF Extension: (Google search link fix) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\jid0-XWJxt5VvCXkKzQK99PhZqAn7Xbg@jetpack.xpi [2018-03-22]
FF Extension: (Decentraleyes) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2018-09-16]
FF Extension: (Privacy Badger) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2018-09-21]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2018-08-02]
FF Extension: (Context Search) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\olivier.debroqueville@gmail.com.xpi [2018-06-22]
FF Extension: (S3.Translator) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\s3google@translator.xpi [2018-09-12]
FF Extension: (AntiGameOrigin v6) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\shole@ogame.us.xpi [2018-09-14]
FF Extension: (TrafficLight) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\trafficlight@bitdefender.com.xpi [2018-08-29]
FF Extension: (uBlock Origin) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\uBlock0@raymondhill.net.xpi [2018-09-23]
FF Extension: (uMatrix) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\uMatrix@raymondhill.net.xpi [2018-08-28]
FF Extension: (1-Click YouTube Video Downloader) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2018-08-26]
FF Extension: (Reverse Image Search) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\{0da2e603-21ba-4422-8049-b6d9e013ed84}.xpi [2018-08-07]
FF Extension: (Youtube to MP3 Converter - YTMP3.EU) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\{37115292-022c-4500-a5da-95738388073a}.xpi [2018-06-04]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2018-09-23]
FF Extension: (500px save) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\Extensions\{bb818126-3f7a-4dd1-95ce-bf4f08bbedf8}.xpi [2018-08-29]
FF Extension: (Firefox Monitor) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\features\{a8d51229-8056-45ce-98af-0c1d406f6a77}\fxmonitor@mozilla.org.xpi [2018-09-23]
FF Extension: (Telemetry coverage) - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\features\{a8d51229-8056-45ce-98af-0c1d406f6a77}\telemetry-coverage-bug1487578@mozilla.org.xpi [2018-09-23] [Przestarzałe]
FF SearchPlugin: C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\searchplugins\dodatki-dla-firefox.xml [2015-03-16]
FF SearchPlugin: C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\searchplugins\duckduckgo.xml [2014-09-21]
FF SearchPlugin: C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\searchplugins\filmwebpl.xml [2015-02-19]
FF SearchPlugin: C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\searchplugins\googlemaps.xml [2014-09-21]
FF SearchPlugin: C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\nany7hdy.MM-1506843086437\searchplugins\thepiratebayorg.xml [2014-09-21]
FF ProfilePath: C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default [2018-09-22]
FF Session Restore: 8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default -> [funkcja włączona]
FF Extension: (DownThemAll! AntiContainer) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\anticontainer@downthemall.net.xpi [2017-09-21] [Przestarzałe]
FF Extension: (Cookie AutoDelete) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\CookieAutoDelete@kennydo.com.xpi [2017-09-17]
FF Extension: (Ghostery – Bloker reklam chroniący prywatność) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\firefox@ghostery.com.xpi [2018-05-27]
FF Extension: (Private Tab) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\privateTab@infocatcher.xpi [2018-05-27] [Przestarzałe]
FF Extension: (S3.Translator) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\s3google@translator.xpi [2018-05-27]
FF Extension: (AntiGameOrigin v6) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\shole@ogame.us.xpi [2018-06-01]
FF Extension: (uBlock Origin) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\uBlock0@raymondhill.net.xpi [2018-05-27]
FF Extension: (All-in-One Sidebar) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2017-09-17] [Przestarzałe]
FF Extension: (Bulk Media Downloader) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\{72b2e02b-3a71-4895-886c-fd12ebe36ba3}.xpi [2017-11-10]
FF Extension: (Context Search) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\{902D2C4A-457A-4EF9-AD43-7014562929FF}.xpi [2017-11-17] [Przestarzałe]
FF Extension: (Synology Download Manager) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\{b17c0686-033c-4d03-b526-b16c99998c98}.xpi [2018-04-05]
FF Extension: (DownThemAll!) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2017-09-21] [Przestarzałe]
FF Extension: (ProfileSwitcher) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2w4w4qj2.default\Extensions\{fa8476cf-a98c-4e08-99b4-65a69cb4b7d4}.xpi [2018-06-01] [Przestarzałe]
FF ProfilePath: C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2pq4xiop.MAMA [2018-09-24]
FF Homepage: 8pecxstudios\Cyberfox\Profiles\2pq4xiop.MAMA -> hxxps://www.google.pl/
FF Extension: (Disconnect) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2pq4xiop.MAMA\Extensions\2.0@disconnect.me.xpi [2018-03-09]
FF Extension: (HTTPS Everywhere) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2pq4xiop.MAMA\Extensions\https-everywhere@eff.org.xpi [2018-09-20]
FF Extension: (Private Tab) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2pq4xiop.MAMA\Extensions\privateTab@infocatcher.xpi [2018-05-18] [Przestarzałe]
FF Extension: (uBlock Origin) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2pq4xiop.MAMA\Extensions\uBlock0@raymondhill.net.xpi [2018-09-24]
FF Extension: (ProfileSwitcher) - C:\Users\MM\AppData\Roaming\8pecxstudios\Cyberfox\Profiles\2pq4xiop.MAMA\Extensions\{fa8476cf-a98c-4e08-99b4-65a69cb4b7d4}.xpi [2018-05-19] [Przestarzałe]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-12] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2016-11-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @java.com/DTPlugin,version=13.0.0.0 -> C:\Program Files\Java\jre-10\bin\dtplugin\npDeployJava1.dll [2018-03-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=13.0.0.0 -> C:\Program Files\Java\jre-10\bin\plugin2\npjp2.dll [2018-03-23] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-12-30] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-12] ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2016-11-28] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2016-12-30] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-09-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-09-21] (Google Inc.)

Chrome:
=======
CHR NewTab: Default -> "active": false,
            "entry": "chrome-extension://nojmdpdonbmklficaelienijmndhgjij/productnewtab.html"

CHR DefaultSearchURL: Default -> hxxps://search.mysearch.com/web?q={searchTerms}&redirect=CWU
CHR DefaultSearchKeyword: Default -> askws
CHR DefaultSuggestURL: Default -> hxxps://lss.sse-iacapps.com/lss/api?token=be3b0df7-25c9-39e3-86fb-ba89d85a0912&q={searchTerms}
CHR Session Restore: Default -> [funkcja włączona]
CHR Profile: C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default [2018-09-21]
CHR Extension: (Dokumenty) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-21]
CHR Extension: (Dysk Google) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-23]
CHR Extension: (YouTube) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-23]
CHR Extension: (uBlock Origin) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2018-09-21]
CHR Extension: (MySearch) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcbbjhgjjpgffmhhldiocphgfhclcnoj [2018-08-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-21]
CHR Extension: (RusVPN - Free VPN service) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipncndjamdcmphkgngojegjblibadbe [2018-08-26]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-21]
CHR Extension: (StreamFrenzy) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nojmdpdonbmklficaelienijmndhgjij [2018-08-26]
CHR Extension: (Gmail) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-23]
CHR Extension: (Chrome Media Router) - C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-09-21]
CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR Extension: (Translator) - C:\Users\MM\AppData\Roaming\Opera Software\Opera Stable\Extensions\cnbpedcoekjafichoehopgaaldogogch [2018-09-18]
OPR Extension: (uBlock Origin) - C:\Users\MM\AppData\Roaming\Opera Software\Opera Stable\Extensions\kccohkcpppjjkkjppopfnflnebibpida [2018-08-28]
OPR Extension: (Tłumacz Google) - C:\Users\MM\AppData\Roaming\Opera Software\Opera Stable\Extensions\mchdgimobfnilobnllpdnompfjkkfdmi [2018-09-18]
StartMenuInternet: (HKLM) OperaStable - C:\Users\MM\AppData\Local\Programs\Opera\Launcher.exe

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 ABBYY.Licensing.FineReader.ScreenshotReader.9.0; C:\Program Files (x86)\ABBYY Screenshot Reader\NetworkLicenseServer.exe [759048 2009-05-15] (ABBYY)
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2015-07-27] (Advanced Micro Devices) [Brak podpisu cyfrowego]
R2 Bonjour Service; C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe [390504 2017-04-19] (Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058392 2017-12-12] (Microsoft Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2016-12-29] (Creative Labs) [Brak podpisu cyfrowego]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2016-12-29] (Creative Labs) [Brak podpisu cyfrowego]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [406016 2011-09-14] (Creative Technology Ltd) [Brak podpisu cyfrowego]
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [137480 2016-02-12] (Portrait Displays, Inc.)
R2 epag; C:\Program Files\Bitdefender\Endpoint Security\epag.exe [3835864 2018-09-25] (Bitdefender)
R2 EPIntegrationService; C:\Program Files\Bitdefender\Endpoint Security\EPIntegrationService.exe [98144 2018-05-24] (Bitdefender)
R2 EPProtectedService; C:\Program Files\Bitdefender\Endpoint Security\EPProtectedService.exe [98144 2018-09-25] (Bitdefender)
R2 epredline; C:\Program Files\Bitdefender\Endpoint Security\bdredline.exe [2384904 2018-09-25] (Bitdefender)
R2 EPSecurityService; C:\Program Files\Bitdefender\Endpoint Security\EPSecurityService.exe [98136 2018-05-24] (Bitdefender)
R2 EPUpdateService; C:\Program Files\Bitdefender\Endpoint Security\EPUpdateService.exe [98144 2018-05-24] (Bitdefender)
R2 gadjservice; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [16896 2015-04-14] () [Brak podpisu cyfrowego]
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [682056 2018-06-09] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8174664 2018-06-09] (GOG.com)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [62760 2015-11-12] (GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-27] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [457432 2016-11-01] (Rivet Networks)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2216256 2018-09-13] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3087176 2018-09-13] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1967432 2018-06-20] (Overwolf LTD)
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [55024 2018-04-11] (Copyright (c) 2018 Plays.tv, LLC)
S3 QFXUpdateService; C:\Program Files (x86)\KeyScrambler\x64\QFXUpdateService.exe [86544 2017-04-23] ()
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11644656 2018-08-13] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [106904 2018-08-03] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiLogger\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [297672 2015-07-16] (Advanced Micro Devices)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc.)
S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2016-12-25] ()
S3 ampa; C:\WINDOWS\SysWOW64\ampa.sys [38320 2016-12-25] ()
R3 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1291896 2018-09-25] (BitDefender S.R.L. Bucharest, ROMANIA)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-07-22] (Advanced Micro Devices)
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1723552 2018-05-24] (BitDefender)
S3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [880912 2018-05-24] (BitDefender)
R3 bddevflt; C:\Program Files\Bitdefender\Endpoint Security\bddevflt.sys [106992 2018-05-24] (BitDefender LLC)
S0 BDElam; C:\WINDOWS\System32\drivers\bdelam.sys [23032 2018-05-24] (Bitdefender)
R1 Bdfwfpf; C:\Program Files\Bitdefender\Endpoint Security\bdfwfpf.sys [130840 2018-05-24] (BitDefender LLC)
R0 bdupflt; C:\WINDOWS\System32\drivers\bdupflt.sys [65760 2018-06-28] ()
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [145736 2016-09-19] (Rivet Networks, LLC.)
R1 epp; C:\EEK\bin64\epp.sys [124552 2016-11-23] (Emsisoft Ltd)
S3 etocdrv; C:\WINDOWS\etocdrv.sys [15584 2013-10-31] (Giga-Byte Technology CO., LTD.)
S3 FTDIBUS; C:\WINDOWS\system32\drivers\ftdibus.sys [129456 2017-08-24] (Future Technology Devices International Ltd.)
S3 FTSER2K; C:\WINDOWS\system32\drivers\ftser2k.sys [89800 2017-08-24] (Future Technology Devices International Ltd.)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [188064 2018-09-25] (BitDefender LLC)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2016-12-30] (REALiX(tm))
R0 Ignis; C:\WINDOWS\System32\drivers\ignis.sys [191592 2018-05-24] (Bitdefender)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2017-06-26] (Highresolution Enterprises [www.highrez.co.uk])
S3 Ke2200; C:\WINDOWS\System32\drivers\e22w8x64.sys [163536 2013-03-20] (Qualcomm Atheros, Inc.)
R3 keycrypt; C:\WINDOWS\System32\DRIVERS\KeyCrypt64.sys [161408 2017-03-22] (Zemana Ltd.)
R3 KeyScrambler; C:\WINDOWS\System32\drivers\keyscrambler.sys [233248 2017-02-19] (QFX Software Corporation)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-04-12] (Qualcomm Atheros, Inc.)
R2 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [610600 2018-09-25] (Bitdefender)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [211704 2018-01-15] (Oracle Corporation)
R1 veracrypt; C:\WINDOWS\System32\drivers\veracrypt.sys [631200 2018-03-25] (IDRIX)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
R1 ZAM; C:\WINDOWS\System32\drivers\zam64.sys [203680 2018-08-09] (Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2018-08-09] (Zemana Ltd.)

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2018-09-26 08:49 - 2018-09-26 08:50 - 000039942 _____ C:\Users\MM\Desktop\FRST.txt
2018-09-26 08:49 - 2018-09-26 08:49 - 000000000 ____D C:\FRST
2018-09-25 16:33 - 2018-09-25 16:33 - 002414080 _____ (Farbar) C:\Users\MM\Desktop\FRST64.exe
2018-09-25 11:41 - 2018-09-26 08:49 - 000851885 _____ C:\WINDOWS\ZAM.krnl.trace
2018-09-25 11:41 - 2018-09-26 08:49 - 000142172 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2018-09-25 10:24 - 2018-09-25 10:24 - 000610600 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\trufos.sys
2018-09-25 10:23 - 2018-09-25 10:23 - 001291896 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\atc.sys
2018-09-25 10:23 - 2018-09-25 10:23 - 000188064 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2018-09-25 10:23 - 2018-09-25 10:23 - 000010154 _____ C:\WINDOWS\system32\Drivers\atc.cat
2018-09-25 10:23 - 2018-09-25 10:23 - 000010039 _____ C:\WINDOWS\system32\Drivers\gzflt.cat
2018-09-24 08:28 - 2018-09-24 08:28 - 000000222 _____ C:\Users\MM\Desktop\Cities Skylines.url
2018-09-24 06:56 - 2018-09-24 06:56 - 000003370 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-648680627-2052121901-1332167063-1001
2018-09-24 06:56 - 2018-09-24 06:56 - 000002398 _____ C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-09-21 09:32 - 2018-09-21 09:32 - 000003568 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-09-21 09:32 - 2018-09-21 09:32 - 000003444 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-09-21 09:32 - 2018-09-21 09:32 - 000002381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-09-16 17:43 - 2018-09-16 17:43 - 000000815 _____ C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2018-09-16 17:43 - 2018-09-16 17:43 - 000000785 _____ C:\Users\MM\Desktop\Start Tor Browser.lnk
2018-09-16 17:43 - 2018-09-16 17:43 - 000000000 ____D C:\Tor Browser
2018-09-16 09:45 - 2018-09-16 09:45 - 000000782 _____ C:\Users\MM\Desktop\Anno — skrót .lnk
2018-09-16 09:45 - 2018-09-16 09:45 - 000000766 _____ C:\Users\MM\Desktop\HS — skrót .lnk
2018-09-15 18:24 - 2018-09-15 18:24 - 000000000 ____D C:\Users\Public\Documents\myplaycity
2018-09-15 18:23 - 2018-09-15 18:23 - 000001324 _____ C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\MyPlayCity Games.lnk
2018-09-15 18:23 - 2018-09-15 18:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPlayCity.com
2018-09-15 09:13 - 2018-09-15 09:22 - 000000102 _____ C:\Users\MM\Desktop\B.txt
2018-09-14 15:35 - 2018-09-14 15:35 - 000004036 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1510162424
2018-09-14 07:06 - 2018-08-31 09:46 - 000542504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-09-14 07:06 - 2018-08-31 09:45 - 000348328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-09-14 07:06 - 2018-08-31 09:43 - 001524152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-09-14 07:06 - 2018-08-31 09:42 - 001636232 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-09-14 07:06 - 2018-08-31 09:27 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-09-14 07:06 - 2018-08-31 09:27 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2018-09-14 07:06 - 2018-08-31 09:26 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2018-09-14 07:06 - 2018-08-31 09:25 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2018-09-14 07:06 - 2018-08-31 09:25 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2018-09-14 07:06 - 2018-08-31 09:24 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2018-09-14 07:06 - 2018-08-31 09:24 - 000482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2018-09-14 07:06 - 2018-08-31 09:24 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-09-14 07:06 - 2018-08-31 09:23 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-09-14 07:06 - 2018-08-31 09:23 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2018-09-14 07:06 - 2018-08-31 09:22 - 001855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-09-14 07:06 - 2018-08-31 09:22 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-09-14 07:06 - 2018-08-31 08:55 - 001455960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-09-14 07:06 - 2018-08-31 08:53 - 001327504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-09-14 07:06 - 2018-08-31 08:41 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-09-14 07:06 - 2018-08-31 08:41 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2018-09-14 07:06 - 2018-08-31 08:40 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2018-09-14 07:06 - 2018-08-31 08:37 - 001585664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-09-14 07:06 - 2018-08-31 08:37 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2018-09-14 07:06 - 2018-08-31 08:37 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-09-14 07:06 - 2018-08-31 08:36 - 001469952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-09-14 07:06 - 2018-08-31 05:50 - 000273720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-09-14 07:06 - 2018-08-31 05:50 - 000270648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-09-14 07:06 - 2018-08-31 05:44 - 001222440 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-09-14 07:06 - 2018-08-31 05:44 - 001064744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-09-14 07:06 - 2018-08-31 05:44 - 001030952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-09-14 07:06 - 2018-08-31 05:44 - 000568600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-09-14 07:06 - 2018-08-31 05:44 - 000136488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-09-14 07:06 - 2018-08-31 05:44 - 000076256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-09-14 07:06 - 2018-08-31 05:43 - 002719216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-09-14 07:06 - 2018-08-31 05:43 - 000722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-09-14 07:06 - 2018-08-31 05:42 - 009090016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-09-14 07:06 - 2018-08-31 05:42 - 007520064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-09-14 07:06 - 2018-08-31 05:42 - 007436192 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-09-14 07:06 - 2018-08-31 05:42 - 002824672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-09-14 07:06 - 2018-08-31 05:42 - 002461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-09-14 07:06 - 2018-08-31 05:42 - 001767064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2018-09-14 07:06 - 2018-08-31 05:42 - 001458552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-09-14 07:06 - 2018-08-31 05:42 - 001258352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-09-14 07:06 - 2018-08-31 05:42 - 001142000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-09-14 07:06 - 2018-08-31 05:42 - 001097720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-09-14 07:06 - 2018-08-31 05:42 - 000983080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-09-14 07:06 - 2018-08-31 05:42 - 000885928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-09-14 07:06 - 2018-08-31 05:42 - 000632296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2018-09-14 07:06 - 2018-08-31 05:42 - 000604640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-09-14 07:06 - 2018-08-31 05:42 - 000527328 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-09-14 07:06 - 2018-08-31 05:42 - 000494472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-09-14 07:06 - 2018-08-31 05:42 - 000155112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2018-09-14 07:06 - 2018-08-31 05:28 - 006570040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-09-14 07:06 - 2018-08-31 05:28 - 006043680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-09-14 07:06 - 2018-08-31 05:28 - 001989496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-09-14 07:06 - 2018-08-31 05:28 - 001514352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2018-09-14 07:06 - 2018-08-31 05:28 - 001129728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-09-14 07:06 - 2018-08-31 05:28 - 000568568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-09-14 07:06 - 2018-08-31 05:28 - 000453104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2018-09-14 07:06 - 2018-08-31 05:28 - 000134936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2018-09-14 07:06 - 2018-08-31 05:26 - 025847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-09-14 07:06 - 2018-08-31 05:21 - 022008320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-09-14 07:06 - 2018-08-31 05:20 - 022715904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-09-14 07:06 - 2018-08-31 05:18 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-09-14 07:06 - 2018-08-31 05:17 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-09-14 07:06 - 2018-08-31 05:17 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\netevent.dll
2018-09-14 07:06 - 2018-08-31 05:16 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-09-14 07:06 - 2018-08-31 05:16 - 006661120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-09-14 07:06 - 2018-08-31 05:16 - 004382720 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-09-14 07:06 - 2018-08-31 05:15 - 007577088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-09-14 07:06 - 2018-08-31 05:15 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-09-14 07:06 - 2018-08-31 05:15 - 003392512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-09-14 07:06 - 2018-08-31 05:15 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-09-14 07:06 - 2018-08-31 05:15 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-09-14 07:06 - 2018-08-31 05:15 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2018-09-14 07:06 - 2018-08-31 05:14 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-09-14 07:06 - 2018-08-31 05:14 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-09-14 07:06 - 2018-08-31 05:14 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-09-14 07:06 - 2018-08-31 05:14 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-09-14 07:06 - 2018-08-31 05:14 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-09-14 07:06 - 2018-08-31 05:13 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-09-14 07:06 - 2018-08-31 05:13 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-09-14 07:06 - 2018-08-31 05:13 - 000402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-09-14 07:06 - 2018-08-31 05:12 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-09-14 07:06 - 2018-08-31 05:12 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netevent.dll
2018-09-14 07:06 - 2018-08-31 05:11 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-09-14 07:06 - 2018-08-31 05:11 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-09-14 07:06 - 2018-08-31 05:11 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-09-14 07:06 - 2018-08-31 05:11 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-09-14 07:06 - 2018-08-31 05:11 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-09-14 07:06 - 2018-08-31 05:11 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-09-14 07:06 - 2018-08-31 05:11 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-09-14 07:06 - 2018-08-31 05:10 - 005777920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-09-14 07:06 - 2018-08-31 05:10 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-09-14 07:06 - 2018-08-31 05:10 - 001375744 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-09-14 07:06 - 2018-08-31 05:10 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-09-14 07:06 - 2018-08-31 05:10 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-09-14 07:06 - 2018-08-31 05:10 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-09-14 07:06 - 2018-08-31 05:10 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-09-14 07:06 - 2018-08-31 05:10 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-09-14 07:06 - 2018-08-31 05:10 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-09-14 07:06 - 2018-08-31 05:09 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-09-14 07:06 - 2018-08-31 05:09 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-09-14 07:06 - 2018-08-31 05:08 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-09-14 07:06 - 2018-08-31 05:07 - 001627648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-09-14 07:06 - 2018-08-31 05:07 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-09-14 07:06 - 2018-08-31 05:07 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-09-14 07:06 - 2018-08-31 05:06 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-09-14 07:06 - 2018-08-31 03:57 - 000001308 _____ C:\WINDOWS\system32\tcbres.wim
2018-09-14 07:06 - 2018-08-28 09:17 - 023862784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-09-14 07:06 - 2018-08-28 08:56 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-09-14 07:06 - 2018-08-28 08:49 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-09-14 07:06 - 2018-08-28 08:48 - 001274368 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2018-09-14 07:06 - 2018-08-28 08:45 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2018-09-14 07:06 - 2018-08-28 07:51 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-09-14 07:06 - 2018-08-14 04:14 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2018-09-14 07:06 - 2018-08-14 04:14 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2018-09-12 17:02 - 2018-09-05 01:04 - 000835144 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-09-12 17:02 - 2018-09-05 01:04 - 000179808 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-12 12:06 - 2018-09-12 12:06 - 000004684 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-09-12 12:06 - 2018-09-12 12:06 - 000004672 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-09-11 09:23 - 2018-08-09 11:32 - 004527680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-09-11 09:23 - 2018-08-09 11:31 - 001617728 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-09-11 09:23 - 2018-08-09 11:14 - 012709376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-09-11 09:23 - 2018-08-09 10:24 - 011901952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-09-11 09:23 - 2018-08-09 06:28 - 003395072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-09-11 09:23 - 2018-08-09 06:22 - 004615680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-09-11 09:23 - 2018-08-09 06:09 - 004191232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-09-11 09:22 - 2018-08-09 11:31 - 000766872 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-09-11 09:22 - 2018-08-09 11:31 - 000253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2018-09-11 09:22 - 2018-08-09 11:31 - 000236624 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-09-11 09:22 - 2018-08-09 11:17 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2018-09-11 09:22 - 2018-08-09 11:16 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-09-11 09:22 - 2018-08-09 11:14 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2018-09-11 09:22 - 2018-08-09 11:14 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollUI.dll
2018-09-11 09:22 - 2018-08-09 11:14 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2018-09-11 09:22 - 2018-08-09 11:13 - 000521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2018-09-11 09:22 - 2018-08-09 11:13 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2018-09-11 09:22 - 2018-08-09 11:13 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-09-11 09:22 - 2018-08-09 11:13 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsExt.dll
2018-09-11 09:22 - 2018-08-09 11:12 - 002084864 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-09-11 09:22 - 2018-08-09 11:12 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2018-09-11 09:22 - 2018-08-09 11:12 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-09-11 09:22 - 2018-08-09 11:11 - 003652608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-09-11 09:22 - 2018-08-09 11:11 - 002051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2018-09-11 09:22 - 2018-08-09 11:11 - 001004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2018-09-11 09:22 - 2018-08-09 11:11 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2018-09-11 09:22 - 2018-08-09 11:11 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-09-11 09:22 - 2018-08-09 11:10 - 001557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2018-09-11 09:22 - 2018-08-09 11:10 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2018-09-11 09:22 - 2018-08-09 11:10 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-09-11 09:22 - 2018-08-09 11:09 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2018-09-11 09:22 - 2018-08-09 11:09 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2018-09-11 09:22 - 2018-08-09 11:09 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2018-09-11 09:22 - 2018-08-09 10:36 - 000660896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2018-09-11 09:22 - 2018-08-09 10:36 - 000221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2018-09-11 09:22 - 2018-08-09 10:24 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2018-09-11 09:22 - 2018-08-09 10:23 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-09-11 09:22 - 2018-08-09 10:23 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2018-09-11 09:22 - 2018-08-09 10:23 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollUI.dll
2018-09-11 09:22 - 2018-08-09 10:22 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2018-09-11 09:22 - 2018-08-09 10:22 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-09-11 09:22 - 2018-08-09 10:22 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2018-09-11 09:22 - 2018-08-09 10:22 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certreq.exe
2018-09-11 09:22 - 2018-08-09 10:21 - 002894848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-09-11 09:22 - 2018-08-09 10:21 - 002016768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-09-11 09:22 - 2018-08-09 10:21 - 001274368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2018-09-11 09:22 - 2018-08-09 10:21 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2018-09-11 09:22 - 2018-08-09 10:20 - 002401792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-09-11 09:22 - 2018-08-09 10:20 - 000423424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2018-09-11 09:22 - 2018-08-09 10:20 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2018-09-11 09:22 - 2018-08-09 10:20 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2018-09-11 09:22 - 2018-08-09 10:19 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2018-09-11 09:22 - 2018-08-09 07:02 - 001035144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-09-11 09:22 - 2018-08-09 07:01 - 000777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2018-09-11 09:22 - 2018-08-09 06:55 - 000230304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2018-09-11 09:22 - 2018-08-09 06:54 - 001019016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-09-11 09:22 - 2018-08-09 06:54 - 000709824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-09-11 09:22 - 2018-08-09 06:54 - 000375704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-09-11 09:22 - 2018-08-09 06:54 - 000203568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2018-09-11 09:22 - 2018-08-09 06:54 - 000170912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-09-11 09:22 - 2018-08-09 06:53 - 002765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-09-11 09:22 - 2018-08-09 06:53 - 001947720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-09-11 09:22 - 2018-08-09 06:53 - 001026456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-09-11 09:22 - 2018-08-09 06:53 - 000932136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-09-11 09:22 - 2018-08-09 06:53 - 000714792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-09-11 09:22 - 2018-08-09 06:53 - 000482480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-09-11 09:22 - 2018-08-09 06:53 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-09-11 09:22 - 2018-08-09 06:53 - 000125600 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2018-09-11 09:22 - 2018-08-09 06:30 - 000829856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-09-11 09:22 - 2018-08-09 06:30 - 000183992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2018-09-11 09:22 - 2018-08-09 06:29 - 002253584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-09-11 09:22 - 2018-08-09 06:29 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-09-11 09:22 - 2018-08-09 06:29 - 001174552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2018-09-11 09:22 - 2018-08-09 06:29 - 000581696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2018-09-11 09:22 - 2018-08-09 06:29 - 000099208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2018-09-11 09:22 - 2018-08-09 06:28 - 001589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2018-09-11 09:22 - 2018-08-09 06:27 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-09-11 09:22 - 2018-08-09 06:27 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2018-09-11 09:22 - 2018-08-09 06:27 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2018-09-11 09:22 - 2018-08-09 06:26 - 000990720 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-09-11 09:22 - 2018-08-09 06:26 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2018-09-11 09:22 - 2018-08-09 06:26 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-09-11 09:22 - 2018-08-09 06:26 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-09-11 09:22 - 2018-08-09 06:26 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsAuth.dll
2018-09-11 09:22 - 2018-08-09 06:26 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsCfg.dll
2018-09-11 09:22 - 2018-08-09 06:26 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-09-11 09:22 - 2018-08-09 06:25 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-09-11 09:22 - 2018-08-09 06:25 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-09-11 09:22 - 2018-08-09 06:25 - 000797184 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2018-09-11 09:22 - 2018-08-09 06:25 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-09-11 09:22 - 2018-08-09 06:25 - 000460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2018-09-11 09:22 - 2018-08-09 06:25 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2018-09-11 09:22 - 2018-08-09 06:25 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-09-11 09:22 - 2018-08-09 06:24 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-09-11 09:22 - 2018-08-09 06:24 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-09-11 09:22 - 2018-08-09 06:23 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2018-09-11 09:22 - 2018-08-09 06:23 - 002904064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-09-11 09:22 - 2018-08-09 06:23 - 002172928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-09-11 09:22 - 2018-08-09 06:23 - 000916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-09-11 09:22 - 2018-08-09 06:22 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-09-11 09:22 - 2018-08-09 06:22 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-09-11 09:22 - 2018-08-09 06:22 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2018-09-11 09:22 - 2018-08-09 06:21 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-09-11 09:22 - 2018-08-09 06:13 - 001189376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2018-09-11 09:22 - 2018-08-09 06:13 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2018-09-11 09:22 - 2018-08-09 06:12 - 000652288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2018-09-11 09:22 - 2018-08-09 06:11 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-09-11 09:22 - 2018-08-09 06:11 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-09-11 09:22 - 2018-08-09 06:11 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2018-09-11 09:22 - 2018-08-09 06:11 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-09-11 09:22 - 2018-08-09 06:11 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsAuth.dll
2018-09-11 09:22 - 2018-08-09 06:11 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsCfg.dll
2018-09-11 09:22 - 2018-08-09 06:11 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2018-09-11 09:22 - 2018-08-09 06:10 - 002893824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2018-09-11 09:22 - 2018-08-09 06:10 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-09-11 09:22 - 2018-08-09 06:10 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-09-11 09:22 - 2018-08-09 06:09 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-09-11 09:22 - 2018-08-09 06:08 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2018-09-11 09:22 - 2018-08-09 05:08 - 000806416 _____ C:\WINDOWS\SysWOW64\locale.nls
2018-09-11 09:22 - 2018-08-09 05:08 - 000806416 _____ C:\WINDOWS\system32\locale.nls
2018-09-10 18:53 - 2018-09-10 18:53 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-09-10 11:24 - 2018-09-10 11:24 - 000001025 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeFileSync.lnk
2018-09-10 11:24 - 2018-09-10 11:24 - 000001003 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealTimeSync.lnk
2018-09-01 09:42 - 2018-09-01 09:42 - 000001708 _____ C:\Users\MM\Desktop\Cities_Skylines — skrót .lnk
2018-08-28 07:17 - 2018-08-28 07:17 - 000002672 _____ C:\Users\Public\Desktop\Skype.lnk
2018-08-28 07:17 - 2018-08-28 07:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2018-09-26 08:38 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-09-26 08:34 - 2016-12-29 09:24 - 000000000 ____D C:\Users\MM\AppData\Roaming\Skype
2018-09-26 07:07 - 2018-05-21 07:04 - 000000000 ____D C:\Users\MM\AppData\Local\Deployment
2018-09-26 07:04 - 2016-12-30 11:49 - 000000000 ____D C:\Users\MM\Documents\Pliki programu Outlook
2018-09-26 06:56 - 2016-12-31 15:32 - 000000000 ____D C:\Users\MM\AppData\Local\JDownloader v2.0
2018-09-26 06:56 - 2016-12-28 19:44 - 000000000 ____D C:\Users\MM\AppData\LocalLow\Mozilla
2018-09-26 06:53 - 2016-12-29 11:51 - 000000000 ____D C:\Users\MM\AppData\Roaming\Dexpot
2018-09-26 06:53 - 2016-12-28 19:46 - 000000000 __SHD C:\Users\MM\IntelGraphicsProfiles
2018-09-25 19:04 - 2018-05-20 07:50 - 000000000 ____D C:\Users\MM
2018-09-25 17:36 - 2016-12-29 11:03 - 000000000 ____D C:\Program Files (x86)\Steam
2018-09-25 17:16 - 2018-06-13 16:30 - 000000585 _____ C:\Users\MM\Desktop\Ogame.txt
2018-09-25 11:59 - 2017-11-30 16:16 - 000000000 ___RD C:\Users\MM\Desktop 2
2018-09-25 11:50 - 2018-05-20 07:59 - 001763504 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-09-25 11:50 - 2018-04-12 17:51 - 000782334 _____ C:\WINDOWS\system32\perfh015.dat
2018-09-25 11:50 - 2018-04-12 17:51 - 000151496 _____ C:\WINDOWS\system32\perfc015.dat
2018-09-25 11:50 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-09-25 11:43 - 2018-05-20 07:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-09-25 11:43 - 2016-12-29 08:15 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2018-09-25 11:43 - 2016-12-28 19:30 - 000026192 ____N (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys
2018-09-25 11:42 - 2018-05-20 07:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-09-25 11:42 - 2018-03-15 18:48 - 000000000 ____D C:\Users\MM\AppData\Local\Innkeeper
2018-09-25 11:42 - 2016-12-28 19:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-09-25 09:38 - 2017-11-30 12:37 - 000000000 ____D C:\Users\MM\AppData\Local\Packages
2018-09-25 07:18 - 2017-02-11 19:02 - 000000000 ____D C:\Users\MM\AppData\Roaming\foobar2000
2018-09-24 10:17 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-09-24 06:56 - 2016-12-28 19:20 - 000000000 ___RD C:\Users\MM\OneDrive
2018-09-23 18:42 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-09-23 07:40 - 2017-07-16 08:15 - 000001011 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-09-23 07:40 - 2017-07-16 08:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-09-23 07:24 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-09-23 07:24 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-09-22 09:51 - 2018-04-05 18:21 - 000000000 ____D C:\Users\MM\Desktop\FOOBAR2000
2018-09-22 09:26 - 2016-12-29 11:28 - 000000000 ____D C:\Users\MM\AppData\Roaming\KeePass
2018-09-21 10:34 - 2016-12-29 08:15 - 000000000 ____D C:\Users\MM\AppData\Roaming\TeamViewer
2018-09-21 09:47 - 2018-07-11 12:16 - 000000000 ____D C:\WINDOWS\Minidump
2018-09-21 09:32 - 2017-01-23 08:35 - 000000000 ____D C:\Program Files (x86)\Google
2018-09-20 09:51 - 2017-01-12 19:00 - 000000000 ____D C:\Users\MM\Documents\efile-backup
2018-09-20 07:08 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-09-20 07:08 - 2016-12-30 11:12 - 000000000 ____D C:\Program Files\Microsoft Office 15
2018-09-18 15:25 - 2017-01-06 09:11 - 000000000 ____D C:\Program Files (x86)\Origin
2018-09-18 08:27 - 2017-09-14 11:53 - 000000000 ____D C:\Users\MM\AppData\Local\Hekasoft
2018-09-17 11:08 - 2016-12-28 19:35 - 000000000 ____D C:\Users\MM\AppData\Local\Comms
2018-09-17 10:54 - 2018-05-20 09:55 - 000000000 ____D C:\Users\MM\AppData\Local\PlaceholderTileLogoFolder
2018-09-17 10:53 - 2016-12-28 19:18 - 000000000 ____D C:\Users\MM\AppData\Local\ConnectedDevicesPlatform
2018-09-16 10:01 - 2017-01-02 09:45 - 000000000 ____D C:\Users\MM\AppData\Roaming\FreeFileSync
2018-09-14 19:02 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-09-14 19:02 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-09-14 19:02 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-09-14 19:02 - 2017-04-19 06:40 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2018-09-14 07:08 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-09-13 18:03 - 2017-02-11 19:02 - 000000000 ____D C:\Program Files\foobar2000
2018-09-12 17:02 - 2016-12-29 08:16 - 139184408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-09-12 17:02 - 2016-12-29 08:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-09-12 12:07 - 2017-01-07 10:59 - 000000000 ____D C:\Users\MM\AppData\Local\Adobe
2018-09-12 12:06 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-09-11 12:11 - 2018-07-18 10:03 - 000000000 ____D C:\Program Files\CCleaner
2018-09-11 12:11 - 2018-05-20 07:48 - 000458464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-09-11 12:10 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-09-11 12:10 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-09-11 12:10 - 2018-04-11 23:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-09-10 11:24 - 2017-01-02 09:45 - 000000000 ____D C:\Program Files\FreeFileSync
2018-09-09 19:01 - 2016-12-29 10:54 - 000000000 ____D C:\Users\MM\AppData\Local\Battle.net
2018-09-08 19:15 - 2017-01-06 09:04 - 000000000 ____D C:\ProgramData\Origin
2018-09-08 18:34 - 2016-12-29 18:18 - 000000000 ____D C:\Users\MM\AppData\Roaming\XnView
2018-09-08 08:12 - 2017-02-11 19:02 - 000000959 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\foobar2000.lnk
2018-09-08 08:01 - 2017-01-06 09:11 - 000000000 ____D C:\Users\MM\AppData\Roaming\Origin
2018-09-02 12:11 - 2016-12-30 11:22 - 000007597 _____ C:\Users\MM\AppData\Local\Resmon.ResmonCfg
2018-08-28 07:17 - 2017-03-06 07:56 - 000000000 ___RD C:\Program Files (x86)\Skype
2018-08-28 07:17 - 2016-12-29 09:24 - 000000000 ____D C:\ProgramData\Skype
2018-08-27 16:29 - 2018-05-20 07:50 - 000000000 ____D C:\Users\defaultuser0

==================== Pliki w katalogu głównym wybranych folderów =======

2018-01-27 09:48 - 2018-01-27 09:48 - 000000171 _____ () C:\Users\MM\AppData\Roaming\1eb766f2-fed1-4d33-9c39-2c8a972fd11f
2018-01-27 09:48 - 2018-01-27 09:48 - 000000304 _____ () C:\Users\MM\AppData\Roaming\4e93aa11-2d46-4980-a421-0a4ac759e5bf
2018-01-27 09:48 - 2018-01-27 09:48 - 000000175 _____ () C:\Users\MM\AppData\Roaming\fc19ece2-6b3f-4f22-8758-9651ab9ca388
2016-12-29 08:22 - 2016-12-29 08:30 - 000000000 _____ () C:\Users\MM\AppData\Local\Driver_LOM_8161Present.flag
2016-12-30 11:22 - 2018-09-02 12:11 - 000007597 _____ () C:\Users\MM\AppData\Local\Resmon.ResmonCfg
2017-03-06 09:57 - 2017-03-06 09:57 - 000000003 _____ () C:\Users\MM\AppData\Local\updater.log
2017-03-06 09:57 - 2017-05-06 12:07 - 000000425 _____ () C:\Users\MM\AppData\Local\UserProducts.xml

Niektóre pliki w TEMP:
====================
2018-09-26 07:18 - 2017-05-03 21:12 - 000292824 _____ () C:\Users\MM\AppData\Local\Temp\kh_3292.dll
2018-09-26 07:18 - 2017-05-03 21:11 - 000290264 _____ () C:\Users\MM\AppData\Local\Temp\mh_3292.dll

==================== Bamital & volsnap ======================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\WINDOWS\system32\winlogon.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\wininit.exe => Plik podpisany cyfrowo
C:\WINDOWS\explorer.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\User32.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo

LastRegBack: 2018-05-20 07:48

==================== Koniec  FRST.txt ============================