Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14-09-2019 Uruchomiony przez Recepcja (administrator) MAGNAT (Gigabyte Technology Co., Ltd. B85M-HD3 R4) (17-09-2019 16:00:32) Uruchomiony z C:\Users\Recepcja\Desktop Załadowane profile: Recepcja (Dostępne profile: Recepcja) Platform: Windows 10 Home Wersja 1809 17763.737 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe (Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL12.INSERTGT\MSSQL\Binn\sqlservr.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1006.0_x64__8wekyb3d8bbwe\YourPhone.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1906.3-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1906.3-0\NisSrv.exe (Microsoft) [Brak podpisu cyfrowego] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe (Microsoft) [Brak podpisu cyfrowego] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\NF.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\NF.exe (Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\TampMon.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-07] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2975744 2017-12-14] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1944576 2013-03-07] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [I17D] => C:\WINDOWS\twain_32\Brimi17d\Common\TwDsUiLaunch.exe [77312 2017-11-16] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3581952 2017-04-05] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.) HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [35648 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.) HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [17600 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.) HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDF Professional 7\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc. -> Nuance Communications, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2019-08-20] ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> ) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {084D60F3-4ADE-4B5A-839B-32A406A61443} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {12D4AC90-AF15-4771-9DC9-2B777492FC0A} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {3C4B9EB2-49DE-455A-A135-FBBC74687D0B} - System32\Tasks\Norton Family\Norton Family Autofix => C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\SymErr.exe [101904 2018-09-25] (Symantec Corporation -> Symantec Corporation) Task: {407A0C00-90A7-44BB-964D-597047B94219} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {5B14D144-8054-4C11-B1D6-19CF5A7A1569} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {62723A1B-64E1-4D0C-8720-82F9B3C97655} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {7CD0FE07-7D8B-4E70-9480-3110933569A3} - System32\Tasks\Norton Family\Norton Family Error Processor => C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\SymErr.exe [101904 2018-09-25] (Symantec Corporation -> Symantec Corporation) Task: {9C9CE9EE-0685-4980-8A36-99DD0B918780} - System32\Tasks\Opera scheduled Autoupdate 1502331786 => C:\Program Files\Opera\launcher.exe [1520152 2019-09-03] (Opera Software AS -> Opera Software) Task: {C2DA7145-0EDA-4512-9950-4B8BB8A35D3E} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {E283887D-2AF9-4400-9432-80DB8C6BBCD0} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13065408 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {E9C7FFF2-E8B5-4A65-84B5-3CA13AD99C17} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5737152 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) Task: {F2E62690-9BFB-4D78-97D3-3F1C11F10429} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems) Task: {FA6D54CD-1240-4A35-8BB8-066E68AB718A} - System32\Tasks\Norton Family\Norton Family Error Analyzer => C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\SymErr.exe [101904 2018-09-25] (Symantec Corporation -> Symantec Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 62.21.99.94 62.21.99.95 Tcpip\..\Interfaces\{f9c947b5-c556-46c2-a812-3eccf3ee8795}: [DhcpNameServer] 62.21.99.94 62.21.99.95 Internet Explorer: ================== HKU\S-1-5-21-1133247490-2179822280-128119213-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.pl/ BHO: Norton Family BHO -> {B8E07826-0971-4f16-B133-047B88034E89} -> C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\coIEPlg.dll [2019-02-07] (Symantec Corporation -> Symantec Corporation) BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\PlusIEContextMenu.dll [2011-06-30] (Zeon Corporation -> Zeon Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-08-10] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Norton Family BHO -> {B8E07826-0971-4f16-B133-047B88034E89} -> C:\Program Files (x86)\Norton Family\Engine32\3.7.3.55\coIEPlg.dll [2019-02-07] (Symantec Corporation -> Symantec Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-10] (Oracle America, Inc. -> Oracle Corporation) DPF: HKLM-x32 {108D3206-846A-4A93-BACB-F0572D043ED7} hxxp://192.168.1.108/webrec.cab FireFox: ======== FF DefaultProfile: wt48rvqh.default FF ProfilePath: C:\Users\Recepcja\AppData\Roaming\Mozilla\Firefox\Profiles\wt48rvqh.default [2019-09-16] FF Homepage: Mozilla\Firefox\Profiles\wt48rvqh.default -> www.google.pl FF HKLM\...\Firefox\Extensions: [{8A0D66E3-1C08-49A6-8F6C-7E024029D199}] - C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\Exts\{8A0D66E3-1C08-49A6-8F6C-7E024029D199}.xpi FF Extension: (Norton™ Family) - C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\Exts\{8A0D66E3-1C08-49A6-8F6C-7E024029D199}.xpi [2019-08-13] FF HKLM-x32\...\Firefox\Extensions: [{8A0D66E3-1C08-49A6-8F6C-7E024029D199}] - C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\Exts\{8A0D66E3-1C08-49A6-8F6C-7E024029D199}.xpi FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-10] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-10] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @NVR/npmedia4.1.63.0,version=4.1.63.0 -> C:\Program Files (x86)\webrec\Torch\4.1.63.0\npmedia.dll [2018-05-22] (Zhejiang Dahua Technology CO.,LTD. -> ) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Professional 7\bin\nppdf.dll [2011-07-15] (Zeon Corporation -> Zeon Corporation) Chrome: ======= CHR HKLM\...\Chrome\Extension: [napjheenlliimoedooldaalpjfidlidp] - C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\Extensions\Chrome.crx [2019-08-31] CHR HKLM-x32\...\Chrome\Extension: [napjheenlliimoedooldaalpjfidlidp] - C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\Extensions\Chrome.crx [2019-08-31] Opera: ======= OPR StartupUrls: "hxxp://www.google.pl/" OPR Session Restore: -> [funkcja włączona] ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [2985424 2019-09-11] (philandro Software GmbH -> ) S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2017-12-14] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11401312 2019-04-16] (Comodo Security Solutions, Inc. -> COMODO) R3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2651840 2019-04-11] (Comodo Security Solutions, Inc. -> COMODO) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel(R) pGFX -> Intel Corporation) R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO) R2 MSSQL$INSERTGT; C:\Program Files\Microsoft SQL Server\MSSQL12.INSERTGT\MSSQL\Binn\sqlservr.exe [372416 2016-06-18] (Microsoft Corporation -> Microsoft Corporation) R2 NSM; C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\NF.exe [211344 2019-08-13] (Symantec Corporation -> Symantec Corporation) S2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [77336 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.) S4 SQLAgent$INSERTGT; C:\Program Files\Microsoft SQL Server\MSSQL12.INSERTGT\MSSQL\Binn\SQLAGENT.EXE [613056 2016-06-18] (Microsoft Corporation -> Microsoft Corporation) R2 TampMon; C:\Program Files (x86)\Norton Family\Engine\3.7.3.55\TampMon.exe [87168 2019-08-13] (Symantec Corporation -> Symantec Corporation) R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2019-05-17] (Microsoft) [Brak podpisu cyfrowego] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\NisSrv.exe [2455544 2019-07-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\MsMpEng.exe [110104 2019-07-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation) R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [20480 2019-05-17] (Microsoft) [Brak podpisu cyfrowego] ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.) R1 ccSet_NSM; C:\WINDOWS\System32\drivers\NSMx64\0307030.037\ccSetx64.sys [190424 2018-08-14] (Symantec Corporation -> Symantec Corporation) S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17872 2019-03-18] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO) R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [43416 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [849048 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO) R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [51672 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO) S3 gdrv; C:\Windows\gdrv.sys [26192 2017-08-10] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider) R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [134280 2019-03-18] (Comodo Security Solutions, Inc. -> COMODO) R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-30] (Comodo Security Solutions, Inc. -> COMODO) R1 RsFx0320; C:\WINDOWS\System32\DRIVERS\RsFx0320.sys [250048 2016-06-18] (Microsoft Corporation -> Microsoft Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-23] (Realtek Semiconductor Corp -> Realtek ) R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [99920 2018-05-30] (Symantec Corporation -> Symantec Corporation) R3 SYMRDR_{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}; C:\WINDOWS\System32\drivers\NSMx64\0307030.037\symrdrs.sys [241280 2018-06-19] (Symantec Corporation -> Symantec Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47704 2019-07-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [367032 2019-07-16] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-07-16] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-09-16 23:16 - 2019-09-16 23:16 - 011845608 _____ (Bitdefender LLC) C:\Users\Recepcja\Desktop\BootkitRemoval_x64.exe 2019-09-16 23:08 - 2019-09-16 23:12 - 000008177 _____ C:\Users\Recepcja\Desktop\Fixlog.txt 2019-09-16 23:03 - 2019-09-16 23:04 - 000492092 _____ C:\WINDOWS\Minidump\091619-30484-01.dmp 2019-09-16 23:03 - 2019-09-16 23:03 - 416101950 _____ C:\WINDOWS\MEMORY.DMP 2019-09-16 22:46 - 2019-09-16 22:46 - 005200384 _____ (AVAST Software) C:\Users\Recepcja\Desktop\aswmbr.exe 2019-09-16 22:28 - 2019-09-16 22:28 - 000000002 _____ C:\Users\Recepcja\Desktop\gtgjahlbacavtyuejh.txt 2019-09-16 22:23 - 2019-09-16 22:25 - 000031393 _____ C:\Users\Recepcja\Desktop\Addition.txt 2019-09-16 22:20 - 2019-09-17 16:02 - 000018867 _____ C:\Users\Recepcja\Desktop\FRST.txt 2019-09-16 22:20 - 2019-09-17 16:00 - 000000000 ____D C:\FRST 2019-09-16 22:20 - 2019-09-16 22:20 - 001614848 _____ (Farbar) C:\Users\Recepcja\Desktop\FRST64.exe 2019-09-16 22:13 - 2019-09-16 22:14 - 199729664 _____ C:\Users\Recepcja\Desktop\z07u8ozm.exe 2019-09-16 22:08 - 2019-09-16 23:13 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2019-09-16 22:06 - 2019-09-16 22:06 - 000000000 ____D C:\WINDOWS\pss 2019-09-16 13:43 - 2019-09-16 13:43 - 000010752 _____ C:\Users\Recepcja\Documents\MAGNAT_201909161342.i01 2019-09-16 13:42 - 2019-09-16 13:43 - 092737024 _____ C:\Users\Recepcja\Documents\MAGNAT_201909161342.iar 2019-09-16 13:42 - 2019-09-16 13:42 - 010313728 _____ C:\Users\Recepcja\Documents\KWHotel_2019_09_16_134222.sdf 2019-09-14 20:43 - 2019-09-14 20:43 - 000056609 _____ C:\Users\Recepcja\Desktop\Sierpien nr faktur 1-56 .epp 2019-09-14 19:02 - 2019-09-14 19:02 - 000000000 ____D C:\ProgramData\Doctor Web 2019-09-14 18:58 - 2019-09-14 18:58 - 010313728 _____ C:\Users\Recepcja\Documents\KWHotel_2019_09_14_185801.sdf 2019-09-14 18:31 - 2019-09-14 18:31 - 092727808 _____ C:\Users\Recepcja\Documents\MAGNAT_201909141831.iar 2019-09-14 18:31 - 2019-09-14 18:31 - 000010752 _____ C:\Users\Recepcja\Documents\MAGNAT_201909141831.i01 2019-09-14 18:17 - 2019-09-16 23:03 - 000000000 ____D C:\WINDOWS\Minidump 2019-09-14 18:13 - 2019-09-14 18:13 - 000000080 ___SH C:\bootTel.dat 2019-09-13 19:59 - 2019-09-13 19:59 - 000063169 _____ C:\Users\Recepcja\Downloads\pko_trans_details_20190913_195920.pdf 2019-09-13 10:06 - 2019-09-13 10:06 - 000053091 _____ C:\Users\Recepcja\Desktop\MOTORÓWKA.pdf 2019-09-11 22:35 - 2019-09-11 22:35 - 000055253 _____ C:\Users\Recepcja\Desktop\Sierpień 2019 poprawione .epp 2019-09-11 09:11 - 2019-09-11 09:11 - 000051981 _____ C:\Users\Recepcja\Desktop\Sierpien 2019.epp 2019-09-11 00:54 - 2019-09-10 22:54 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2019-09-11 00:54 - 2019-09-10 22:54 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2019-09-11 00:49 - 2019-09-11 19:31 - 000341804 _____ C:\Users\Recepcja\Desktop\DN JA.odt 2019-09-10 22:47 - 2019-09-10 22:47 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-09-10 22:47 - 2019-09-10 22:47 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe 2019-09-10 22:47 - 2019-09-10 22:47 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2019-09-10 22:47 - 2019-09-10 22:47 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2019-09-10 22:47 - 2019-09-10 22:47 - 002469432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2019-09-10 22:47 - 2019-09-10 22:47 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2019-09-10 22:47 - 2019-09-10 22:47 - 002099752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2019-09-10 22:47 - 2019-09-10 22:47 - 001604760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2019-09-10 22:47 - 2019-09-10 22:47 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2019-09-10 22:47 - 2019-09-10 22:47 - 001075832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2019-09-10 22:47 - 2019-09-10 22:47 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 023453696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 020817408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 019011584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 015221248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 012939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 012244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 008903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 007871488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 006444544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 006310064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 006065664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 005597808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 004874752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 003821728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2019-09-10 22:46 - 2019-09-10 22:46 - 003702784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 003096576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 002279296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001899152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001782272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001764352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001655976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001573240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001272560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2019-09-10 22:46 - 2019-09-10 22:46 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe 2019-09-10 22:46 - 2019-09-10 22:46 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000968192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000798736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2019-09-10 22:46 - 2019-09-10 22:46 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000774968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000660544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2019-09-10 22:46 - 2019-09-10 22:46 - 000652832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000622392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000540240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2019-09-10 22:46 - 2019-09-10 22:46 - 000515960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000515152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000449376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000409256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000386048 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\SysWOW64\curl.exe 2019-09-10 22:46 - 2019-09-10 22:46 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2019-09-10 22:46 - 2019-09-10 22:46 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000349144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000279416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000272648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000195224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000144080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000140088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000106048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe 2019-09-10 22:46 - 2019-09-10 22:46 - 000098080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll 2019-09-10 22:46 - 2019-09-10 22:46 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe 2019-09-10 22:46 - 2019-09-10 22:46 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe 2019-09-10 22:46 - 2019-09-10 22:46 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 022124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 017484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 009679672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 007886848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 005569024 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 004588752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 004353016 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 004056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 003634688 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-09-10 22:45 - 2019-09-10 22:45 - 003490816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 002924344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2019-09-10 22:45 - 2019-09-10 22:45 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 002779488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 002700784 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 002693120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-09-10 22:45 - 2019-09-10 22:45 - 002233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 002073240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys 2019-09-10 22:45 - 2019-09-10 22:45 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001864192 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001721360 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001702096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-09-10 22:45 - 2019-09-10 22:45 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001563880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001484592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-09-10 22:45 - 2019-09-10 22:45 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001318400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001256960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001081656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001054952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 001010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000811024 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000807760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000740904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000736056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000606088 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000585184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000554000 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000535056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2019-09-10 22:45 - 2019-09-10 22:45 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000505128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000464912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000351432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000347576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000330672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000330592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ManagePhone.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000177176 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000168248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000130872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000120344 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys 2019-09-10 22:45 - 2019-09-10 22:45 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe 2019-09-10 22:45 - 2019-09-10 22:45 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll 2019-09-10 22:45 - 2019-09-10 22:45 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 007690648 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 003333984 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 002593032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 001893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 001743168 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 001387512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 001294280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-09-10 22:44 - 2019-09-10 22:44 - 001191512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 001048888 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-09-10 22:44 - 2019-09-10 22:44 - 001022824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000865576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000851272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000806568 _____ C:\WINDOWS\SysWOW64\locale.nls 2019-09-10 22:44 - 2019-09-10 22:44 - 000806568 _____ C:\WINDOWS\system32\locale.nls 2019-09-10 22:44 - 2019-09-10 22:44 - 000793824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000791352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 000774192 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000751928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000652600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 000652304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2019-09-10 22:44 - 2019-09-10 22:44 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000603784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000532192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000506200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000421376 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\system32\curl.exe 2019-09-10 22:44 - 2019-09-10 22:44 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 000402368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000398208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000294728 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe 2019-09-10 22:44 - 2019-09-10 22:44 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpprov.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe 2019-09-10 22:44 - 2019-09-10 22:44 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000164504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000140600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2019-09-10 22:44 - 2019-09-10 22:44 - 000087056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2019-09-10 22:44 - 2019-09-10 22:44 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiAcpiClient.sys 2019-09-10 22:44 - 2019-09-10 22:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2019-09-10 22:44 - 2019-09-10 22:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2019-09-10 22:44 - 2019-09-10 22:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2019-09-10 22:44 - 2019-09-10 22:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2019-09-10 22:44 - 2019-09-10 22:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2019-09-10 22:44 - 2019-09-10 22:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2019-09-10 22:44 - 2019-09-10 22:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2019-09-10 22:44 - 2019-09-10 22:44 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2019-09-08 19:02 - 2019-09-08 19:02 - 000000279 _____ C:\Users\Recepcja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kosz.lnk 2019-09-08 18:55 - 2019-09-08 19:08 - 000000000 ____D C:\Users\Recepcja\Desktop\UMOWY PISMA GRAFIKI 2019-09-06 06:02 - 2019-09-11 07:14 - 000000000 ____D C:\Program Files\Mozilla Firefox 2019-09-02 07:40 - 2019-09-02 07:40 - 000000000 ____D C:\Users\Recepcja\Documents\Nagrania dźwiękowe 2019-08-31 22:18 - 2019-08-31 22:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Family 2019-08-20 13:23 - 2019-09-11 06:22 - 000000000 ____D C:\Program Files (x86)\AnyDesk 2019-08-20 13:23 - 2019-08-20 13:23 - 000001957 _____ C:\Users\Public\Desktop\AnyDesk.lnk 2019-08-20 13:23 - 2019-08-20 13:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyDesk 2019-08-20 13:22 - 2019-08-20 13:22 - 002929448 _____ C:\Users\Recepcja\Downloads\AnyDesk.exe ==================== Jeden miesiąc (zmodyfikowane) ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2019-09-17 16:05 - 2017-08-10 04:35 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat 2019-09-17 16:00 - 2017-08-10 04:47 - 000098802 _____ C:\WINDOWS\system32\Drivers\fvstore.dat 2019-09-17 15:58 - 2017-08-10 03:25 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2019-09-17 15:58 - 2017-08-10 03:25 - 000000000 __SHD C:\Users\Recepcja\IntelGraphicsProfiles 2019-09-16 23:27 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps 2019-09-16 23:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-09-16 23:27 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-09-16 23:25 - 2019-02-11 23:32 - 000000000 ____D C:\WINDOWS\System32\Tasks\Norton Family 2019-09-16 23:17 - 2019-02-11 23:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-09-16 23:17 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2019-09-16 23:12 - 2018-09-25 21:05 - 000000000 ____D C:\Users\Recepcja\AppData\LocalLow\Temp 2019-09-16 23:03 - 2019-02-11 23:16 - 000000000 ____D C:\Users\Recepcja 2019-09-16 23:03 - 2019-02-11 23:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-09-16 13:43 - 2017-08-10 19:42 - 000000000 ____D C:\Users\Recepcja\AppData\LocalLow\Mozilla 2019-09-16 07:57 - 2017-08-10 04:22 - 000000000 ____D C:\Program Files\Opera 2019-09-16 07:15 - 2017-09-08 07:34 - 000000000 ____D C:\Users\Recepcja\AppData\Local\CrashDumps 2019-09-16 07:07 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF 2019-09-14 18:27 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF 2019-09-13 17:24 - 2017-08-31 09:50 - 000000000 ____D C:\Users\Recepcja\Desktop\Wszystkie Menu 2019-09-13 17:13 - 2017-08-12 11:32 - 000000000 ____D C:\Users\Recepcja\AppData\Roaming\InsERT GT 2019-09-11 21:17 - 2017-08-31 06:37 - 000000000 ____D C:\Users\Recepcja\Desktop\Magnat Logo 2019-09-11 19:32 - 2017-08-29 19:32 - 000000000 ____D C:\Users\Recepcja\Desktop\ASIA 2019-09-11 07:14 - 2019-07-10 09:05 - 000000000 ____D C:\Program Files\Mozilla Firefox.bak 2019-09-11 07:14 - 2017-08-10 19:42 - 000000907 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2019-09-11 07:14 - 2017-08-10 19:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2019-09-11 01:00 - 2019-02-11 23:27 - 001770296 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-09-11 01:00 - 2018-09-15 18:43 - 000784346 _____ C:\WINDOWS\system32\perfh015.dat 2019-09-11 01:00 - 2018-09-15 18:43 - 000152144 _____ C:\WINDOWS\system32\perfc015.dat 2019-09-11 00:55 - 2018-01-18 07:22 - 000000000 ___RD C:\Users\Recepcja\3D Objects 2019-09-11 00:55 - 2017-08-10 02:20 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-09-11 00:54 - 2019-02-11 23:13 - 000357160 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-09-11 00:51 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2019-09-11 00:51 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2019-09-11 00:51 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe 2019-09-11 00:51 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism 2019-09-11 00:50 - 2018-09-15 09:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2019-09-11 00:50 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences 2019-09-11 00:50 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellComponents 2019-09-11 00:50 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2019-09-11 00:50 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-09-10 22:54 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-09-08 20:34 - 2017-09-03 11:25 - 000011323 _____ C:\Users\Recepcja\Documents\ROZLICZENIE WESELA.odt 2019-09-08 19:10 - 2017-09-09 09:00 - 000000000 ____D C:\Users\Recepcja\Desktop\fotki 2019-09-08 19:09 - 2018-04-05 09:25 - 000000000 ____D C:\Users\Recepcja\Desktop\hellermany do edycji 2019-09-08 19:08 - 2017-08-31 06:39 - 000000000 ____D C:\Users\Recepcja\Desktop\Restauracja 2019-09-08 19:07 - 2018-10-15 12:20 - 000000000 ____D C:\Users\Recepcja\Desktop\PLIKI Z PULPITU 2019-09-08 19:07 - 2017-08-31 06:37 - 000000000 ____D C:\Users\Recepcja\Desktop\Grafik,cennik pokoi 2019-09-08 18:59 - 2018-10-08 18:39 - 000000000 ____D C:\Users\Recepcja\Desktop\Paulina 2019-09-08 18:58 - 2017-08-31 06:39 - 000000000 ____D C:\Users\Recepcja\Desktop\Zdjęcia potraw 2019-09-06 16:15 - 2019-02-11 23:32 - 000003982 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1502331786 2019-09-06 16:15 - 2017-08-10 04:23 - 000001107 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2019-09-02 07:37 - 2019-01-03 08:31 - 000000000 ____D C:\Users\Recepcja\Desktop\PATI 2019-08-31 22:18 - 2017-08-10 20:25 - 000000000 ____D C:\WINDOWS\system32\Drivers\NSMx64 2019-08-31 18:18 - 2017-08-10 20:25 - 000000000 ____D C:\ProgramData\Norton 2019-08-23 10:12 - 2017-08-10 04:13 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-08-20 22:21 - 2017-08-10 02:20 - 000000000 ____D C:\Users\Recepcja\AppData\Local\VirtualStore 2019-08-20 19:16 - 2017-08-31 06:37 - 000000000 ____D C:\Users\Recepcja\Desktop\Imprezy cały miesiąc,oferty ==================== Pliki w katalogu głównym wybranych folderów ================ 2017-09-09 08:55 - 2017-09-09 08:55 - 000155674 _____ () C:\Users\Recepcja\AppData\Roaming\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt ==================== FLock ================ 2019-02-14 15:35 C:\WINDOWS\BRRBCOM.INI 2017-08-12 11:02 C:\ProgramData\Brother ==================== SigCheck =============================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ============================