Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 23-08-2020 Uruchomiony przez NoNoNoNo (administrator) NONONO (25-08-2020 12:56:36) Uruchomiony z C:\Users\NoNoNoNo\Desktop\frst Załadowane profile: NoNoNoNo Platform: Windows 10 Pro Wersja 1903 18362.1016 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files\Everything wyszukiwarka\Everything.exe <2> () [Brak podpisu cyfrowego] C:\Windows\Runservice.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\Bluetooth\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\Bluetooth\btwdins.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (Creative Technology Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <13> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe (Intel(R) Network Platform Group -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2005.23.0_x64__8wekyb3d8bbwe\Calculator.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12008.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2007.8-0\NisSrv.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe <2> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe <7> (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Everything] => C:\Program Files\Everything wyszukiwarka\Everything.exe [1441792 2014-08-06] () [Brak podpisu cyfrowego] HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1087960 2014-03-20] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1610928 2019-05-12] (Overwolf Ltd -> Overwolf Ltd.) HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29271224 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2465144 2020-08-23] (Wargaming.net Limited -> Wargaming.net) HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3377440 2020-07-31] (Valve -> Valve Corporation) HKU\S-1-5-21-367478599-2953826314-2425126797-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --origin-trial-disabled-features=MeasureMemory --restore-last-sess (dane wartości zawierają 76 znaków więcej). HKLM\...\Windows x64\Print Processors\us001PC: C:\Windows\System32\spool\prtprocs\x64\us001pc.dll [43520 2015-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider) HKLM\...\Print\Monitors\us001 Langmon: c:\windows\system32\us001lm.dll [22528 2015-02-20] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.135\Installer\chrmstp.exe [2020-08-23] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Bluetooth\\BtwCP.dll [2012-12-30] (Broadcom Corporation -> Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2018-05-07] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Bluetooth\BTTray.exe (Broadcom Corporation -> Broadcom Corporation.) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0600D467-1DFD-4E9B-B149-999F9816702A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd) Task: {0BCF3B2F-CB77-472E-9322-29A254F16571} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1336400 2020-07-08] (Adobe Inc. -> Adobe Inc.) Task: {2D94C165-7810-4B7F-8981-5AEBFA24C68C} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {33184464-9842-4027-9C21-3FEA3AAC0B04} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {361B6E94-E55D-4874-BFDB-405AD3A64714} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation) Task: {40A7BCAC-AF6D-4518-A05A-9F26B00FE53E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {467B245D-A317-47A1-84BC-AF45E27497BB} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {4A491E6A-B701-459D-AE33-8F369F017B96} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {56F8B1C7-5980-4190-BEA7-4A9374760A19} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.) Task: {574FB1F2-ABF2-4DE6-B42C-F9D9FE7866AE} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\Game Booster 3\AutoUpdate.exe Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {5AF23381-2408-4C3F-B40D-A69B2AA45C99} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5D3EC7DF-9CCB-420F-945F-3284AA5C6D93} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {617C6DDF-FF12-4DC2-80A7-9F36B187F471} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6D5B6EC1-0BDD-42E6-8AF7-41FB62C2E3DA} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_pepper.exe [1471032 2020-08-23] (Adobe Inc. -> Adobe) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {711877CC-6E6F-4E06-A007-6CF1746C2B18} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [752136 2020-06-18] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) Task: {74750416-F08E-4468-A183-34875C0B9F5C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8315982E-1C4C-4D97-A431-7E274186B819} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8788CFFC-65A7-46AE-A1D9-5C0F6E999015} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd) Task: {959CA2DC-7F1B-4714-AC97-95C872DF0F98} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B9654131-7A63-450F-878E-25FC9F68A5A8} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-23] (Adobe Inc. -> Adobe) Task: {BA4D3651-A4C0-4E76-9DAB-79A6C7AB267F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.) Task: {BD3C48AF-4153-4E50-BF01-7D1D5152E53C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BE91C8DC-8141-4A21-88D1-58281DCB49C6} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {D7D658DF-080E-4EB1-9BDE-95C9D0AD8442} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MpCmdRun.exe [516776 2020-08-23] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E06317A0-2D8A-41CC-A4B6-6897A63C27D8} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1328392 2016-03-17] (Intel(R) Software -> Intel Corporation) Task: {E0AF9F2E-D81E-4EA2-96DF-313B803DB4AE} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation) Task: {E7D9604A-4D7E-45C4-9D05-2340B468B43D} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {E9A6BDE3-69F2-469E-8C5F-C533216A89B9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FF454959-10FF-4FC0-BDEE-4D885A2F9B50} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 37.8.214.2 31.11.202.254 Tcpip\..\Interfaces\{0ef69299-5876-401b-9e11-8a7537f4a2b7}: [DhcpNameServer] 37.8.214.2 31.11.202.254 Internet Explorer: ================== BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-06-23] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-06-23] (Oracle America, Inc. -> Oracle Corporation) DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab Edge: ====== Edge Profile: C:\Users\NoNoNoNo\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-23] FireFox: ======== FF DefaultProfile: rdea9krn.default-1558026784621 FF ProfilePath: C:\Users\NoNoNoNo\AppData\Roaming\Mozilla\Firefox\Profiles\rdea9krn.default-1558026784621 [2020-08-23] FF Extension: (Avast SafePrice | Porównania, promocje, kupony) - C:\Users\NoNoNoNo\AppData\Roaming\Mozilla\Firefox\Profiles\rdea9krn.default-1558026784621\Extensions\sp@avast.com.xpi [2019-02-09] FF Extension: (Avast Online Security) - C:\Users\NoNoNoNo\AppData\Roaming\Mozilla\Firefox\Profiles\rdea9krn.default-1558026784621\Extensions\wrc@avast.com.xpi [2018-06-23] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-06-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-06-23] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\NoNoNoNo\AppData\Local\Google\Chrome\User Data\Default [2020-08-25] CHR DownloadDir: C:\Users\NoNoNoNo\Downloads CHR Notifications: Default -> hxxps://forum.dobreprogramy.pl; hxxps://www.faceit.com; hxxps://www.youtube.com CHR HomePage: Default -> hxxp://www.web-pl.com/ CHR StartupUrls: Default -> "hxxps://www.google.com/" CHR Extension: (Adblock dla Youtube™) - C:\Users\NoNoNoNo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2020-08-23] CHR Extension: (Avast Passwords) - C:\Users\NoNoNoNo\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-08-23] CHR Extension: (AdBlock — best ad blocker) - C:\Users\NoNoNoNo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-08-23] CHR Extension: (IE Tab) - C:\Users\NoNoNoNo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2020-08-23] CHR Extension: (Sprawdzanie poczty Google) - C:\Users\NoNoNoNo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-08-23] CHR Extension: (Ghostery – Bloker reklam chroniący prywatność) - C:\Users\NoNoNoNo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2020-08-23] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\NoNoNoNo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-08-23] CHR Extension: (Przycinacz Wideo) - C:\Users\NoNoNoNo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nodkcjollmmjidmcnhloaoahmciabnai [2020-08-23] CHR Extension: (Chrome Media Router) - C:\Users\NoNoNoNo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-08-23] CHR Profile: C:\Users\NoNoNoNo\AppData\Local\Google\Chrome\User Data\System Profile [2020-08-23] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-08-23] (Adobe Inc. -> Adobe) S2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-04-29] (Advanced Micro Devices) [Brak podpisu cyfrowego] R2 btwdins; C:\Program Files\Bluetooth\btwdins.exe [960368 2012-12-30] (Broadcom Corporation -> Broadcom Corporation.) R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2011-10-19] (Creative Technology Ltd) [Brak podpisu cyfrowego] R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-06-06] (Digital Wave Ltd -> Digital Wave Ltd.) R2 Everything; C:\Program Files\Everything wyszukiwarka\Everything.exe [1441792 2014-08-06] () [Brak podpisu cyfrowego] S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel(R) Update Manager -> Intel Corporation) R2 LicCtrlService; C:\Windows\runservice.exe [2560 2015-02-22] () [Brak podpisu cyfrowego] S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-08-23] (Malwarebytes Inc -> Malwarebytes) S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1676416 2020-07-22] (Rockstar Games, Inc. -> Rockstar Games) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6149984 2020-08-24] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\NisSrv.exe [2169568 2020-08-23] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2007.8-0\MsMpEng.exe [128376 2020-08-23] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.225\WsAppService.exe [473824 2017-05-05] (Wondershare Technology Co.,Ltd -> Wondershare) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ba8c9c14f3d320cb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-03-06] (AnchorFree Inc -> The OpenVPN Project) R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-07-26] (Bluestack Systems, Inc -> Bluestack System Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-22] (Microsoft Corporation) [Brak podpisu cyfrowego] S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-08-23] (Malwarebytes Inc -> Malwarebytes) R2 speedfan; C:\WINDOWS\SysWoW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software) U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50176 2019-03-19] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [78216 2020-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [430320 2020-08-23] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [98520 2020-08-23] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) =================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-08-25 12:52 - 2020-08-25 12:52 - 000002171 _____ C:\Users\NoNoNoNo\Desktop\Saga of Survival.lnk 2020-08-25 12:01 - 2020-08-25 12:01 - 000003934 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper 2020-08-25 11:58 - 2020-08-25 11:58 - 000000223 _____ C:\Users\NoNoNoNo\Desktop\Panzer Corps 2.url 2020-08-25 11:56 - 2020-08-25 11:58 - 000000000 ____D C:\ProgramData\BlueStacks 2020-08-25 11:56 - 2020-08-25 11:56 - 000000000 ____D C:\Program Files\BlueStacks 2020-08-25 11:53 - 2020-08-25 11:53 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Local\Steam 2020-08-24 00:13 - 2020-08-24 00:13 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 022642688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 019852288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 018032128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 007758848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 007270912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 006294528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 005904896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 005013504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 004859904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 004611072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 004129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 003822592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 003516416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2020-08-24 00:13 - 2020-08-24 00:13 - 002950808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2020-08-24 00:13 - 2020-08-24 00:13 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2020-08-24 00:13 - 2020-08-24 00:13 - 002588688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL 2020-08-24 00:13 - 2020-08-24 00:13 - 002422384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL 2020-08-24 00:13 - 2020-08-24 00:13 - 002259192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL 2020-08-24 00:13 - 2020-08-24 00:13 - 002138280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL 2020-08-24 00:13 - 2020-08-24 00:13 - 001870200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 001836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 001418832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 001316352 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe 2020-08-24 00:13 - 2020-08-24 00:13 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000931328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2020-08-24 00:13 - 2020-08-24 00:13 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000738064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL 2020-08-24 00:13 - 2020-08-24 00:13 - 000724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000671744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000666280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL 2020-08-24 00:13 - 2020-08-24 00:13 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmscan.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000359496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL 2020-08-24 00:13 - 2020-08-24 00:13 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000343408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL 2020-08-24 00:13 - 2020-08-24 00:13 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\net1.exe 2020-08-24 00:13 - 2020-08-24 00:13 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintBrmUi.exe 2020-08-24 00:13 - 2020-08-24 00:13 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe 2020-08-24 00:13 - 2020-08-24 00:13 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll 2020-08-24 00:13 - 2020-08-24 00:13 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll 2020-08-24 00:12 - 2020-08-24 00:13 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 009932088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 007915864 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 007850784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 007583272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 007270728 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 006526448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 006436864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 006074552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 005849872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 005767224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 005283776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 005111296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 005003824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 004625184 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 004565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 004005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 003984896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 003974376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 003806208 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 003743056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 003727872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 003581240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 003368616 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 003141632 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 002766952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002717696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 002698048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 002583496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002523136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002471936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002260312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002136064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002085632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 002022400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001756592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-08-24 00:12 - 2020-08-24 00:12 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001740800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001672544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001665024 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001660536 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001654312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001564160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001512848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 001482568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001420320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001406464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 001393960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001366144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2020-08-24 00:12 - 2020-08-24 00:12 - 001338368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001282872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2020-08-24 00:12 - 2020-08-24 00:12 - 001274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001215488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001182248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 001182208 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001123344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001101312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 001072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001015296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000937984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000917800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000897648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000894032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000888352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000875520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000875424 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000823744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000822800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000775480 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000718336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000716312 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000690536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000675040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000675024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000671040 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000593480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000579584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000572200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000568128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000564488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 000548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000522688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2020-08-24 00:12 - 2020-08-24 00:12 - 000467968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\HrtfApo.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000463168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000431104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000379704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000369304 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayServer.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HrtfApo.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000275256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 000273744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatializerApo.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000201544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBAUDIO.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 000194048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\net1.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000165176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000124512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000090936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acwow64.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys 2020-08-24 00:12 - 2020-08-24 00:12 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe 2020-08-24 00:12 - 2020-08-24 00:12 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll 2020-08-24 00:12 - 2020-08-24 00:12 - 000000357 _____ C:\WINDOWS\system32\DrtmAuthKeyDelegate_From_20190529_To_20200303.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000357 _____ C:\WINDOWS\system32\DrtmAuth1KeyDelegate.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-08-24 00:12 - 2020-08-24 00:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-08-24 00:08 - 2020-07-18 05:07 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-08-24 00:08 - 2020-07-18 04:53 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-08-23 23:01 - 2020-08-25 11:50 - 000000000 ____D C:\Users\NoNoNoNo\Desktop\frst 2020-08-23 22:07 - 2020-08-25 12:14 - 000000000 ____D C:\Program Files (x86)\Steam 2020-08-23 22:07 - 2020-08-23 22:07 - 000001066 _____ C:\Users\Public\Desktop\Steam.lnk 2020-08-23 22:07 - 2020-08-23 22:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2020-08-23 20:29 - 2020-08-23 20:29 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-08-23 20:29 - 2020-08-23 20:29 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2020-08-23 18:47 - 2020-08-14 01:04 - 001780960 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2020-08-23 18:47 - 2020-08-14 01:04 - 001780960 _____ C:\WINDOWS\system32\vulkaninfo.exe 2020-08-23 18:47 - 2020-08-14 01:04 - 001371360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2020-08-23 18:47 - 2020-08-14 01:04 - 001371360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2020-08-23 18:47 - 2020-08-14 01:04 - 001086688 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2020-08-23 18:47 - 2020-08-14 01:04 - 001086688 _____ C:\WINDOWS\system32\vulkan-1.dll 2020-08-23 18:47 - 2020-08-14 01:04 - 000946400 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2020-08-23 18:47 - 2020-08-14 01:04 - 000946400 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2020-08-23 18:47 - 2020-08-14 01:04 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2020-08-23 18:47 - 2020-08-14 01:04 - 000349928 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2020-08-23 18:47 - 2020-08-14 01:01 - 001485544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2020-08-23 18:47 - 2020-08-14 01:01 - 001146256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2020-08-23 18:47 - 2020-08-14 01:01 - 001018768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2020-08-23 18:47 - 2020-08-14 01:01 - 000816360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll 2020-08-23 18:47 - 2020-08-14 01:01 - 000675224 _____ C:\WINDOWS\system32\nvofapi64.dll 2020-08-23 18:47 - 2020-08-14 01:01 - 000669416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2020-08-23 18:47 - 2020-08-14 01:01 - 000582904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2020-08-23 18:47 - 2020-08-14 01:01 - 000555920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2020-08-23 18:47 - 2020-08-14 01:01 - 000541928 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2020-08-23 18:47 - 2020-08-14 01:00 - 006653328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2020-08-23 18:47 - 2020-08-14 01:00 - 005882600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2020-08-23 18:47 - 2020-08-14 01:00 - 002376080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2020-08-23 18:47 - 2020-08-14 01:00 - 001570704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2020-08-23 18:47 - 2020-08-14 01:00 - 000811240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2020-08-23 18:47 - 2020-08-14 01:00 - 000656784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2020-08-23 18:47 - 2020-08-14 01:00 - 000443624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2020-08-23 18:47 - 2020-08-14 00:59 - 003916688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2020-08-23 18:47 - 2020-08-14 00:59 - 000849640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2020-08-23 18:47 - 2020-08-14 00:58 - 004707696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2020-08-23 18:47 - 2020-08-13 03:47 - 000077891 _____ C:\WINDOWS\system32\nvinfo.pb 2020-07-29 14:58 - 2020-07-29 15:14 - 000002241 _____ C:\Users\NoNoNoNo\Desktop\wpi.txt ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2020-08-25 12:56 - 2020-07-24 15:39 - 000000000 ____D C:\FRST 2020-08-25 12:51 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-08-25 12:25 - 2018-03-28 01:27 - 000000000 ____D C:\ProgramData\NVIDIA 2020-08-25 11:57 - 2020-07-24 15:32 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk 2020-08-25 11:57 - 2020-07-24 15:32 - 000002063 _____ C:\Users\Public\Desktop\BlueStacks Multi-Instance Manager.lnk 2020-08-25 11:57 - 2020-07-24 15:32 - 000001816 _____ C:\Users\Public\Desktop\BlueStacks.lnk 2020-08-25 11:57 - 2020-07-24 15:32 - 000001798 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk 2020-08-25 11:57 - 2019-09-22 04:03 - 001768484 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-08-25 11:57 - 2019-03-19 14:24 - 000784514 _____ C:\WINDOWS\system32\perfh015.dat 2020-08-25 11:57 - 2019-03-19 14:24 - 000152312 _____ C:\WINDOWS\system32\perfc015.dat 2020-08-25 11:57 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF 2020-08-25 11:56 - 2020-07-24 15:29 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Local\BlueStacksSetup 2020-08-25 11:56 - 2019-04-29 23:41 - 000000000 ____D C:\Users\Public\BlueStacks 2020-08-25 11:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-08-25 11:56 - 2018-08-10 22:33 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Local\BlueStacks 2020-08-25 11:51 - 2019-09-22 04:02 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-08-25 11:51 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2020-08-25 11:51 - 2015-05-29 00:41 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Roaming\Everything 2020-08-25 11:51 - 2015-02-22 16:46 - 000001201 _____ C:\WINDOWS\SysWOW64\mmf.sys 2020-08-25 00:10 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-08-24 22:38 - 2015-08-15 16:36 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Roaming\.minecraft 2020-08-24 20:01 - 2019-09-22 03:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-08-24 11:13 - 2020-06-13 11:51 - 000359344 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-08-24 11:13 - 2017-12-22 02:46 - 000000000 ___RD C:\Users\NoNoNoNo\3D Objects 2020-08-24 11:13 - 2017-12-22 02:40 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Local\Packages 2020-08-24 11:13 - 2016-04-27 07:35 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-08-24 03:12 - 2019-03-19 14:26 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning 2020-08-24 03:12 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-08-24 03:12 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing 2020-08-24 00:07 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-08-23 23:08 - 2017-02-07 19:13 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Local\CrashDumps 2020-08-23 22:16 - 2018-05-23 20:32 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Local\D3DSCache 2020-08-23 22:14 - 2018-05-20 13:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2020-08-23 21:07 - 2016-10-10 19:40 - 000744808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2020-08-23 20:59 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF 2020-08-23 20:57 - 2016-10-25 18:06 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Roaming\AVAST Software 2020-08-23 20:57 - 2014-11-14 01:36 - 000000000 ____D C:\ProgramData\AVAST Software 2020-08-23 20:45 - 2018-03-26 00:44 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Local\AVAST Software 2020-08-23 20:30 - 2020-06-15 07:26 - 000002067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2020-08-23 20:30 - 2019-11-07 17:47 - 000002055 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2020-08-23 20:29 - 2019-11-07 17:47 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-08-23 20:29 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2020-08-23 19:28 - 2015-05-07 16:56 - 000000008 __RSH C:\ProgramData\ntuser.pol 2020-08-23 19:27 - 2019-09-22 04:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software 2020-08-23 19:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2020-08-23 19:27 - 2015-03-28 18:44 - 000000000 ____D C:\Users\NoNoNoNo\AppData\LocalLow\Temp 2020-08-23 19:27 - 2013-08-22 17:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy 2020-08-23 19:12 - 2020-07-16 11:58 - 000003436 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2020-08-23 19:12 - 2020-07-16 11:58 - 000003212 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2020-08-23 19:12 - 2020-06-24 17:56 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-08-23 19:12 - 2020-06-24 17:56 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-08-23 19:12 - 2020-06-24 17:56 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-08-23 19:12 - 2020-06-24 17:56 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-08-23 19:12 - 2020-06-24 17:56 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-08-23 19:12 - 2020-06-24 17:56 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-08-23 19:12 - 2020-06-24 17:56 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-08-23 19:12 - 2020-06-24 17:56 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-08-23 19:12 - 2020-06-24 17:56 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-08-23 19:12 - 2020-06-24 17:56 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2020-08-23 19:12 - 2019-09-22 04:02 - 000003862 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier 2020-08-23 19:12 - 2019-09-22 04:02 - 000003546 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player Updater 2020-08-23 19:12 - 2019-09-22 04:02 - 000003498 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-08-23 19:12 - 2019-09-22 04:02 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2020-08-23 19:12 - 2019-09-22 04:02 - 000003274 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-08-23 19:12 - 2019-09-22 04:02 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2020-08-23 19:12 - 2019-09-22 04:02 - 000002424 _____ C:\WINDOWS\system32\Tasks\Game_Booster_AutoUpdate 2020-08-23 19:12 - 2019-09-22 04:02 - 000002218 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC 2020-08-23 19:12 - 2018-04-23 12:38 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Local\NVIDIA 2020-08-23 18:58 - 2019-03-19 06:56 - 000842296 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2020-08-23 18:58 - 2019-03-19 06:56 - 000175160 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2020-08-23 18:58 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2020-08-23 18:58 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2020-08-23 18:58 - 2015-09-14 21:20 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Local\Adobe 2020-08-23 18:46 - 2020-07-16 11:58 - 000002482 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2020-08-23 18:45 - 2020-05-23 16:25 - 000002343 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-08-23 18:45 - 2020-05-23 16:25 - 000002302 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-08-14 01:00 - 2020-07-20 17:29 - 002078096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2020-08-14 00:58 - 2020-06-24 17:53 - 005395088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2020-08-08 02:11 - 2020-01-10 19:06 - 000000000 ____D C:\Users\NoNoNoNo\Desktop\Panzer General Forever 2020-08-07 10:49 - 2016-10-16 23:43 - 000000000 ____D C:\Program Files\CCleaner 2020-07-28 16:41 - 2020-07-17 02:22 - 000000057 _____ C:\Users\NoNoNoNo\Desktop\the guest 2014.txt 2020-07-27 19:46 - 2015-06-10 16:31 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Local\IE Tab 2020-07-26 11:26 - 2014-12-22 08:58 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Roaming\uTorrent 2020-07-26 11:26 - 2014-11-17 21:22 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Roaming\TS3Client 2020-07-26 11:21 - 2020-04-15 15:24 - 000000000 ____D C:\Users\NoNoNoNo\AppData\Local\Roblox ==================== Pliki w katalogu głównym wybranych folderów ======== 2015-05-25 14:51 - 2015-05-25 15:18 - 000009999 _____ () C:\Users\NoNoNoNo\AppData\Roaming\.freeciv-client-rc-2.5 2017-02-07 23:29 - 2018-08-15 18:58 - 000007602 _____ () C:\Users\NoNoNoNo\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================