Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 01.09.2018 03 Uruchomiony przez User (04-09-2018 19:42:01) Uruchomiony z C:\Users\User\Downloads Windows 7 Home Premium Service Pack 1 (X64) (2016-10-03 08:48:58) Tryb startu: Safe Mode (with Networking) ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2528524030-2672575794-1047301593-500 - Administrator - Disabled) Gość (S-1-5-21-2528524030-2672575794-1047301593-501 - Limited - Disabled) User (S-1-5-21-2528524030-2672575794-1047301593-1000 - Administrator - Enabled) => C:\Users\User ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189} AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-2528524030-2672575794-1047301593-1000\...\uTorrent) (Version: 3.5.0.43916 - BitTorrent Inc.) Adobe Flash Player 30 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 30.0.0.154 - Adobe Systems Incorporated) Adobe Flash Player 30 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated) Aktualizacje NVIDIA 23.2.20.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 23.2.20.0 - NVIDIA Corporation) Hidden American Truck Simulator (HKLM-x32\...\American Truck Simulator_is1) (Version: - ) Ashampoo WinOptimizer 7.22 (HKLM-x32\...\Ashampoo WinOptimizer 7_is1) (Version: 7.2.2 - Ashampoo GmbH & Co. KG) Asystent uaktualnienia do systemu Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation) Badanie mające na celu poprawę produktów HP Deskjet 1510 series (HKLM\...\{30CA1CF4-A6BB-48D2-B531-2C96D2083BA3}) (Version: 30.0.1093.41190 - Hewlett-Packard Co.) Car Mechanic Simulator 2018 (HKLM-x32\...\Car Mechanic Simulator 2018_is1) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.44 - Piriform) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd) deskapp (HKLM-x32\...\{ED47B854-4904-447E-80BD-A62B2C069C31}) (Version: 1.0.3 - deskapp) <==== UWAGA Desktop Restore version 1.7.0 (HKLM\...\{DBD4F07A-7607-4A4F-A46C-6AA399E06E38}_is1) (Version: 1.7.0 - Jamie O'Connell) Fallout 3 (HKLM-x32\...\{974C4B12-4D02-4879-85E0-61C95CC63E9E}) (Version: 1.7.0.3 - Bethesda Softworks) GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.27.5284 - GOM & Company) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.) Google Drive (HKLM-x32\...\{84B981C8-D6E4-473F-8062-63F14F44183E}) (Version: 1.15.6464.228 - Google, Inc.) Google Photos Backup (HKU\S-1-5-21-2528524030-2672575794-1047301593-1000\...\Google Photos Backup) (Version: 1.1.4.11 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) HP Deskjet 1510 series — podstawowe oprogramowanie urządzenia (HKLM\...\{FE2C2D56-E00E-445C-8890-5DE30F7C1C0D}) (Version: 30.0.1093.41190 - Hewlett-Packard Co.) HP Deskjet 1510 series Pomoc (HKLM-x32\...\{065AAC3B-F0A7-4D13-A40B-3133D319E4EB}) (Version: 30.0.0 - Hewlett Packard) HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.4.1186 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation) Intel® Small Business Advantage (HKLM-x32\...\{C7A82877-2365-4A03-B23F-DFDD629B7F3A}) (Version: 4.0.44 - Intel Corporation) Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation) McAfee True Key (HKLM\...\TrueKey) (Version: 5.0.150.1 - McAfee) Microsoft .NET Framework 4.7.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02558 - Microsoft Corporation) Microsoft .NET Framework 4.7.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.7.02558 - Microsoft Corporation) Microsoft Games for Windows - LIVE (HKLM-x32\...\{A1C962E2-2426-49C6-A38B-9A07E40D607C}) (Version: 3.2.217.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}) (Version: 3.1.99.0 - Microsoft Corporation) Microsoft Office Starter 2010 - Polski (HKLM-x32\...\{90140011-0066-0415-0000-0000000FF1CE}) (Version: 14.0.7173.5001 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{01db25f3-1b76-4d97-88c8-1c90634d88fb}) (Version: 11.0.60610.1 - Корпорация Майкрософт) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Moduł Szybka instalacja pakietu Microsoft Office 2010 (HKLM\...\{90140000-006D-0415-1000-0000000FF1CE}) (Version: 14.0.6122.5000 - Microsoft Corporation) Hidden Moduł Szybka instalacja pakietu Microsoft Office 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mp3 Knife 3.0 (HKLM-x32\...\Mp3 Knife_is1) (Version: - Vicky's Cool Softwares) Mp3tag v2.85 (HKLM-x32\...\Mp3tag) (Version: 2.85 - Florian Heidenreich) MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD) MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.1.018 - MSI) NVIDIA GeForce Experience 3.2.2.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.2.49 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation) NVIDIA Sterownik graficzny 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.2.2.49 - NVIDIA Corporation) Hidden NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.0.2.1 - NVIDIA Corporation) Hidden NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.2 - NVIDIA Corporation) Hidden Oprogramowanie mikroukładu Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.25.7131 - Electronic Arts, Inc.) Panel sterowania NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden Real Alternative 1.8.0 (HKLM-x32\...\RealAlt_is1) (Version: 1.8.0 - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.97.1001.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5983 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.0 - Rockstar Games) Samsung Drivers Pack 1.5 (HKLM-x32\...\C45570F8-74F5-4A0B-9365-B895BF865E0F_is1) (Version: - z3x-team) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0351 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.2.2.49 - NVIDIA Corporation) Hidden Skype (wersja 8.29) (HKLM-x32\...\Skype_is1) (Version: 8.29 - Skype Technologies S.A.) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Unity Web Player (HKU\S-1-5-21-2528524030-2672575794-1047301593-1000\...\UnityWebPlayer) (Version: 5.3.5f1 - Unity Technologies ApS) Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft) Visual C++ 8.0 Runtime Setup Package (x64) (HKLM-x32\...\{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}) (Version: 9.0.0.623 - AVG Technologies CZ, s.r.o.) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden WinRAR 5.50 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2528524030-2672575794-1047301593-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2528524030-2672575794-1047301593-1000_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Brak pliku ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2014-04-09] (Google) ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2014-04-09] (Google) ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2014-04-09] (Google) ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2014-04-09] (Google) ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2014-04-09] (Google) ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2014-04-09] (Google) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-09-13] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-09-13] (Alexander Roshal) ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2014-04-09] (Google) ContextMenuHandlers5: [DeskMenu] -> {7E74422F-2393-11D4-98E0-444553540000} => C:\Program Files\Desktop Restore\dkticnsr.dll [2016-11-04] (Jamie O'Connell) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-09-13] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-09-13] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0BB41389-18B8-43C5-9A44-B6BD6AD36D43} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation) Task: {164F32FF-102B-44B1-9E60-6064521BA450} - System32\Tasks\{CAC57C23-839C-80C1-64E4-7C60395FBAEE} => C:\Windows\SysWOW64\iiyLX.exe [2009-07-14] (Microsoft Corporation) Task: {1F4DF0DC-1306-482B-BF91-159C6BEFC0E6} - System32\Tasks\{7A2222CF-1D44-4182-A824-A3623C541BEB} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Downloads\NeedForSpeed Carbon Spolszczenie (Nie Usuwa Filmiow).exe" -d "C:\Program Files (x86)\Electronic Arts\Need for Speed Carbon" -c -el -s2 "-dC:\Program Files (x86)\Electronic Arts\Need for Speed Carbon" "-p" "-sp" Task: {209AB2E8-CEAB-442B-8EFF-3E6DD45D9310} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-14] (Adobe Systems Incorporated) Task: {33B0410C-F976-4E9E-9B7A-EEB7B87092A2} - System32\Tasks\{A8FA88A4-7C41-406D-BD01-738C156F4DC0} => C:\Windows\system32\pcalua.exe -a G:\Redistributable\vcredist_x86.exe -d G:\Redistributable Task: {35FDD857-B0E2-47E4-88AB-D50D8D23B3C3} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-06] (NVIDIA Corporation) Task: {465749D1-23F7-4468-AD8F-2279827D3D2C} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-02-19] (Intel(R) Corporation) Task: {46BE88AF-D600-4A42-A708-A72EB2B47CDB} - System32\Tasks\{4234DF3D-73DD-88CF-4C4E-F0B1DB9CB1B0} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://hnwl2nmrbjfqjwe.ru/cl/?guid=k5ieuzggvey9e19ykma0231s7oj0fgmq&prid=1&pid=4_1324_0 Task: {483621AF-B30F-4338-9856-6FC9BD9D8952} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-01-06] (NVIDIA Corporation) Task: {537BD778-91F8-4A44-8CC5-554D69597DAB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2528524030-2672575794-1047301593-1000Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2017-01-03] (Google Inc.) Task: {58E06679-EE2E-45D3-BD36-D7BDBD3FF72F} - System32\Tasks\GridinSoft Anti-Malware => C:\Program Files\GridinSoft Anti-Malware\gsam.exe Task: {615FBED7-6ADC-4770-9A3B-C49378878518} - System32\Tasks\{B81465E2-6219-4C90-828D-326977709B3A} => C:\Program Files (x86)\EA\Need For Speed The Run\Need For Speed The Run.exe Task: {616C21BE-397C-425E-BB8A-40678865F510} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-03] (Google Inc.) Task: {621B55EC-E982-4A61-A661-3B369B22202C} - System32\Tasks\{0E35A7E6-8C45-9EBB-27BC-C675C4B95DA8} => C:\Windows\aOYCilkuca.exe [2009-07-14] (Microsoft Corporation) Task: {65521B35-1B7E-449D-BFFE-B080818A1167} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-06] (NVIDIA Corporation) Task: {6EADDE51-CBEB-48D8-8195-23F5F8F4BC70} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-08-22] (AVAST Software) Task: {7CFD0294-2270-47B2-8995-87407F84B6A6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_pepper.exe [2018-08-14] (Adobe Systems Incorporated) Task: {92F4A690-B864-484D-B5D9-BBF6C7D18763} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-01-06] (NVIDIA Corporation) Task: {9CA6B8CA-8A92-4A92-BB17-3F449E1CEBA3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-01-06] (NVIDIA Corporation) Task: {A40425C1-C96F-4A99-8297-AD120D85C1F6} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-01-06] (NVIDIA Corporation) Task: {AFA8FD71-1319-4756-A13C-1533B44012D3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-06-24] (Piriform Ltd) Task: {B1AC5C84-7887-4B3E-9FD9-94B13A3DE85B} - System32\Tasks\{A531F9E3-8FAF-46A7-BEEB-CD98A163F7D4} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.0.0.102/pl/go/help.faq.installer?LastError=1603 Task: {BE28CAE3-2B81-4228-BC12-021AB7193E25} - System32\Tasks\{711D179D-13F3-458F-9C2E-1BF40CD4346D} => C:\Program Files (x86)\EA Games\Need for Speed Undercover\nfs.exe Task: {C245B16A-FA4A-49DE-94EA-213070092C6B} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2528524030-2672575794-1047301593-1000 Task: {C54298A1-AF85-4A1C-9A64-9F091D47F7A6} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation) Task: {C726E5D7-EB84-4366-9E49-449F86379488} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-01-06] (NVIDIA Corporation) Task: {D4758242-12AF-4552-8EE7-C98B5B19928A} - System32\Tasks\HPCustParticipation HP Deskjet 1510 series => C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPCustPartic.exe [2013-02-08] (Hewlett-Packard Co.) Task: {DC475316-3737-4A12-BD7D-A1A62D3116B5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-06-24] (Piriform Ltd) Task: {E643BB23-54A5-4A67-A9B2-CC2CB333A864} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-03] (Google Inc.) Task: {F47BD5F0-7D3B-4B08-B6DF-2A264FA12E38} - System32\Tasks\{A1A2DD5A-0C41-4DD3-88C3-875DA2F9F6E3} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\EA Games\Need for Speed Undercover\setup.exe" -d "C:\Program Files (x86)\EA Games\Need for Speed Undercover" Task: {F8E535EB-3316-45D5-8090-79B1850192DC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2528524030-2672575794-1047301593-1000UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2017-01-03] (Google Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\AdwCleaner_onReboot.job => C:\Users\User\Downloads\adwcleaner_7.2.3.exe ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2018-08-13 19:32 - 2018-08-08 02:41 - 002682200 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\swiftshader\libglesv2.dll 2018-08-13 19:32 - 2018-08-08 02:41 - 000148824 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\swiftshader\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\58588462.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\58588462.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2017-06-30 22:49 - 000000826 _____ C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2528524030-2672575794-1047301593-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 185.146.247.139 - 185.146.247.140 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupfolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Powiadomienia monitorowania tuszu - HP Deskjet 1510 series.lnk => C:\Windows\pss\Powiadomienia monitorowania tuszu - HP Deskjet 1510 series.lnk.Startup MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: G Data ASM => "C:\Program Files (x86)\G DATA\InternetSecurity\DelayLoader\AutorunDelayLoader.exe" /autostart MSCONFIG\startupreg: Skype for Desktop => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe MSCONFIG\startupreg: SunJavaUpdateSched => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe MSCONFIG\startupreg: uTorrent => "C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{17B8B7A5-EF4A-4199-AF76-12DAB346F40D}] => (Allow) C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage Next\Sba.exe FirewallRules: [{54FAECAC-A490-4741-9EEF-DCA45B213542}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [{B1398F5F-D95C-47A5-8B1E-53A618AD861F}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [{049CC5FC-8ED2-4168-AEC3-A36D56D1C7FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{9299B8AA-4FDE-48DB-B6C5-A243848685D9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{6A931DE2-D95D-4152-AAFD-B195D4B00CD6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{991DEC60-26C1-4F3E-8F74-2CDE08E1347C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{5C8AF1B5-A3ED-4EB3-98C0-C9E6BA90C444}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{CE980AC6-7C24-4A19-BBD1-D243A9B12E88}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{5401D8C1-1D6F-4657-B233-AD9EFAF198BE}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{95005410-CE00-40DC-AE03-31EB96578411}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0739872C-1777-4D74-AD54-25417ADE0BC7}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{6E00A5F9-AF75-4151-870B-7633DC3DC694}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{DD1C8048-B50A-4286-9DAB-A45621780447}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{30B9E5B9-A826-43D6-8CB3-779629305BC9}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5C3E370E-95BF-4568-BF9A-4EDF32AA8A43}] => (Allow) C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{84FAA029-5F4B-4056-B264-A8B6FC9DE3C5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{1F1F663C-DFFC-49DF-A4EA-7F7BD7EF55C6}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{6DA21113-2BF8-4436-A090-DF5F3911748A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{C7121DBC-D21D-49E3-9B30-C58F1CF98449}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{42C8F3A6-8608-4E97-92F8-DD713F23103E}] => (Allow) C:\Program Files\HP\HP Deskjet 1510 series\Bin\USBSetup.exe FirewallRules: [{AEA5A62B-FA06-4D78-B234-1283B6A6EF8C}] => (Allow) C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [TCP Query User{15DBF110-279B-482F-AB29-A0C52A4211A1}E:\ieembed.exe] => (Allow) E:\ieembed.exe FirewallRules: [UDP Query User{573FED66-262B-4E97-A394-E50CC3740417}E:\ieembed.exe] => (Allow) E:\ieembed.exe FirewallRules: [TCP Query User{2261EA08-922E-445A-A435-DC30D02D2567}C:\users\user\appdata\local\fivem\fivem.exe] => (Allow) C:\users\user\appdata\local\fivem\fivem.exe FirewallRules: [UDP Query User{1EC9E6C2-8510-4BE3-9385-A9F3CF73CFA6}C:\users\user\appdata\local\fivem\fivem.exe] => (Allow) C:\users\user\appdata\local\fivem\fivem.exe FirewallRules: [{5C6D6937-62C5-454F-B4FE-264C0A6F4FA7}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{F964F16D-BC8B-4343-BBDA-171CD052904B}] => (Allow) C:\Windows\SysWOW64\iiyLX.exe FirewallRules: [{6E999695-0125-4404-8442-4917B78D4347}] => (Allow) C:\Windows\aOYCilkuca.exe FirewallRules: [{42930352-75B3-4D0A-8AE2-E04105262272}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{2FFE83F0-2156-4DAE-84D4-6E24FF0AF9FB}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{158A37B8-D1CC-484B-93AA-320212A6AAEB}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{00CF7127-C85B-4914-A7DB-DB948319159F}] => (Allow) C:\Users\User\AppData\Local\WIX Toolset 11.2\msiexec64.exe FirewallRules: [{16523296-8B5F-4D14-A713-1B23646789BF}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{FAFC6D2E-FE27-41F7-9374-2B1346D53623}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{1DD8DA27-4BFC-4EEC-ACE8-7BA23B97A46F}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{6501F0AA-74FD-4528-9651-F7C1F29399AA}] => (Allow) C:\Program Files (x86)\Common Files\NTServices\msiexec64.exe FirewallRules: [{BB44D429-19DB-48CA-8AE5-C217A5D48464}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{12410CC6-B61A-47CC-BFD5-7D5FC70074D1}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{D8BB0FAC-D755-43F9-A3B3-D0EC0F8F7D55}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{64595A69-28F2-4B41-AD09-4BBC754FA565}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{08A4C9B5-24EC-4897-967A-557B4AFE1A6A}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{9F97FF21-D487-4B9B-92AF-681A79D7F89C}] => (Allow) C:\Users\User\AppData\Local\NTServices\msiexec64.exe FirewallRules: [{6BA2DD4B-40CC-4B54-87E6-65E1A7D51649}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{4589DCFE-600A-4815-BF1F-19E96B344D23}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{BCC7063C-4467-4ED1-B052-0CF2E4D1FDFD}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{9A020171-AAD3-4F59-901B-BECBC3CCCB89}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{364C18BC-A011-4250-BF09-52AA086C4AE4}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{36798EEE-40D9-40C0-B412-0A3CD526A1B7}] => (Allow) C:\Users\User\AppData\Local\NTServices\msiexec64.exe FirewallRules: [{DC095ED7-E411-40C0-B1F1-8B315585065A}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{D2F846CC-4EC6-4F61-9DBE-9FE465308602}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{27FFAA81-28E6-439A-861E-7A29512BE60D}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{97C0C171-E3F9-4FCF-82B0-403BE7968127}] => (Allow) C:\Users\User\AppData\Local\NTServices\msiexec64.exe FirewallRules: [{FD6BB328-9749-4A3E-A7D4-50D084077058}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{FDDC31CA-5A95-4C97-924E-0EA3642F5F03}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{2E74D4DE-9791-4B26-9E01-A8E54C71410E}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{1D4A0E8D-C52C-4DDF-A12E-2B58EC893623}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{E59844D8-EC02-4C0A-9E71-90066162FEE1}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{774A0DD6-E312-42ED-A5A5-9C2485906AC8}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{A2807199-C573-4819-A802-06F8A0265432}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{DE779521-7DD2-42EC-84B9-F889D678DAB8}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{AE47D2B6-C22F-4622-9FC7-DB6C207AB41A}] => (Allow) C:\Users\User\AppData\Local\NTServices\msiexec64.exe FirewallRules: [{34CDD125-B7B8-4B47-B3B9-74225ABB1D9A}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{24B917FC-D6C1-422D-BAA5-F1A985CD5CA9}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{E62A2A27-BDA0-48CB-AB31-34966617D1BC}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{BEC98BDC-1CC6-4785-A383-279FC34D4C94}] => (Allow) C:\Users\User\AppData\Local\NTServices\msiexec64.exe FirewallRules: [{4FF810F7-DA2C-4078-BE52-BB59E9A45896}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{F16DA86C-EFED-4257-89A4-8FB7360B3E3D}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{61F5AE2D-31DE-4CA0-A1A1-3EFA9B765DA8}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7A655E3B-7E5B-4F64-AD17-54D71A79E9E3}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{7A2E3239-814C-4886-8146-875B1ECCCCC9}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{BA1AEBC3-90FA-41CC-861E-C0B7307F3903}] => (Allow) C:\Program Files (x86)\Opera\opera.exe FirewallRules: [{553C57EE-E57D-4AA9-B86E-A4898AE69334}] => (Allow) C:\Program Files (x86)\Opera\opera.exe FirewallRules: [{A134AA56-CCC7-4972-B9A3-131CB44605B6}] => (Allow) C:\Users\User\AppData\Local\NTServices\msiexec64.exe FirewallRules: [{3063D158-C591-403F-9880-8CC3B9D7114D}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{5F8FE074-22C9-4AF6-8304-264EEC249FA1}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{AFCE2783-7BA6-4385-A25B-0B0354D2FAD5}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{CE607899-C277-4D68-95F6-012F2DA66A87}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7BC5BF1D-0E9B-47EE-A37D-5FD7B13275D8}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{A04CC510-48DF-4BAC-A278-50A788C28066}] => (Allow) C:\Users\User\AppData\Local\NTServices\msiexec64.exe FirewallRules: [{9B8DFFA3-28F9-4345-9635-BA0D37193877}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{9AF745F4-3C6D-4453-B4B8-49AB7D9942E8}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{DDDF7722-D165-4B92-8B27-80D31F0DCDE3}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{6BD429B7-38D8-4449-8D78-D88B48B41917}] => (Allow) C:\Users\User\AppData\Local\NTServices\msiexec64.exe FirewallRules: [{019D07AB-5594-4051-BA5E-37195FB00449}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{64671633-0224-4D73-939C-704FD533E213}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{B1557BDB-2A42-464F-85B1-948CBEF1DB37}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{EF4A247E-9C78-4626-9C23-A55F421312B7}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{451751D7-41A4-466C-AB87-CBE06CAA0A61}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{408AEE51-B7F1-437A-B49F-414FFF03C6A0}] => (Allow) C:\Users\User\AppData\Local\NTServices\msiexec64.exe FirewallRules: [{2755D7D9-1BA6-460A-95DD-C726A5781D5D}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{396DF43E-AED4-4177-96FC-3CC17FAEC23C}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{E87D59BC-8F98-4F91-A42C-04696FE1F104}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{EB5E7ED2-9474-4486-A830-7A5CACE3B43E}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{F5F8E7BB-D6FE-4B5A-9B57-EE6520D95C51}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{09E1AFFC-91A8-48DB-A2EB-FD03937EFB2E}] => (Allow) C:\Users\User\AppData\Local\Wow64Cache\msiexec64.exe FirewallRules: [{8608BD50-4BE1-4D26-B175-95B3C111212C}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{8877F51C-50A6-48E3-9A7D-E62F1D888D13}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{36B9CFE6-F050-4E28-AAAC-89BEBAB6A7A8}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{439EA883-096A-4135-AA33-0B8B240A33E1}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{10AE358F-B6D8-4A08-95BF-248758E8531F}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{38A6B56C-BEEF-495F-9964-CFB9E96CCAFB}] => (Allow) C:\Users\User\AppData\Local\ClipBoardSvc\msiexec64.exe FirewallRules: [{A3CB8BEC-D464-4F07-8BB2-182089953842}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{1835AA32-A6C6-4FB6-B14F-A1207C93CF08}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{56216235-2CC1-495F-A14F-C835FD134EB2}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{215C9CB3-4DC8-41FA-A0EF-44F800924B0F}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{7C5A5EE7-151F-4DF5-9866-457B5A5EE4D9}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{79FEA9DD-12CF-4348-845B-4123015E097B}] => (Allow) C:\Users\User\AppData\Local\_restore{E415C293-1C11-4005-B5E5-91EC1A0BAE7D}\msiexec64.exe FirewallRules: [{B894F764-BA22-4DBA-AC0A-DBAEC9A0340F}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{C34B9A4B-A1D9-4E01-B87A-D53F6D0F1A10}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{CF74A22C-9551-4ECF-9708-DFA7A70DEF00}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{0F839FE6-512E-43B6-A396-AB626373A5D7}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe FirewallRules: [{EE6A1FE0-C060-463E-930C-41A161364B0C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe FirewallRules: [{0EDD9D4D-B4DC-48D9-8C25-FEB1024E6B15}] => (Allow) C:\Users\User\AppData\Local\_restore{E415C293-1C11-4005-B5E5-91EC1A0BAE7D}\msiexec64.exe FirewallRules: [{D9A9D54E-BE5C-4240-A231-E3D703C934A1}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{DEFF382A-EAAE-4DC4-84C5-DE6ADD65F479}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{A4DEA29A-4755-450B-93F7-A9C88BFC94DA}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{D6DA1264-B0D4-46BE-9989-965157942610}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{8F7BCD33-F552-4897-8F35-0FCFD339E54C}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{8CCA2CB2-B04D-4FB0-A3FB-73DF92C71C22}] => (Allow) C:\Users\User\AppData\Local\Media Network Sharing\msiexec64.exe FirewallRules: [{FA7CF76C-3B4E-4D10-B8E1-AC05C96B369E}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{12CE1E1A-66EC-4C1D-9105-2E4B2A45522D}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{8472CD57-7475-4E89-BF1B-7D664FAB0718}] => (Allow) C:\Users\User\AppData\Local\Media Network Sharing\msiexec64.exe FirewallRules: [{C8D65894-2B3C-4246-A22E-37702022282C}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{EB9292C7-A3F2-4D2F-B965-7D6F99050F08}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{CC1053E6-9480-4E42-B210-2AFF9DC5E4B6}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{14AED9C8-3CC4-4155-B3B9-6DE512DC1413}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{838B00AC-6C6E-478F-9E7E-52A3633C0620}] => (Allow) C:\Users\User\AppData\Local\Media Network Sharing\msiexec64.exe FirewallRules: [{3F1A3C75-2700-4078-8418-9D3C33BFA967}] => (Allow) C:\Windows\SysWOW64\rundll32.exe FirewallRules: [{3C8B6143-41E1-4FF9-B813-D129898B8E35}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{603FE545-DFC4-43BA-B952-C1EF03BF05D3}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{3A0F126D-219B-4F94-A8C6-19B388B020DF}] => (Allow) C:\Windows\SysWOW64\svchost.exe FirewallRules: [{02DD2454-09BB-4073-88D9-578E362A5832}] => (Allow) C:\Windows\SysWOW64\svchost.exe ==================== Punkty Przywracania systemu ========================= 28-08-2018 12:28:01 Windows Update 29-08-2018 19:19:28 Usunięte Realtek High Definition Audio Driver 01-09-2018 18:12:22 Windows Update 02-09-2018 16:18:30 Removed Ubisoft Game Launcher ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Security Processor Loader Driver Description: Security Processor Loader Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: spldr Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (09/04/2018 07:40:18 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/04/2018 07:34:33 PM) (Source: MsiInstaller) (EventID: 11402) (User: ZARZĄDZANIE NT) Description: Product: Google Drive -- Error 1402. Could not open key: HKEY_LOCAL_MACHINE32\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION. System error 5. Verify that you have sufficient access to that key, or contact your support personnel. Error: (09/04/2018 03:07:51 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: Z powodu wystąpienia problemu dane Programu poprawy jakości obsługi klienta nie zostały wysłane do firmy Microsoft. (Błąd 80004005). Error: (09/04/2018 02:34:39 PM) (Source: MsiInstaller) (EventID: 11402) (User: ZARZĄDZANIE NT) Description: Product: Google Drive -- Error 1402. Could not open key: HKEY_LOCAL_MACHINE32\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION. System error 5. Verify that you have sufficient access to that key, or contact your support personnel. Error: (09/04/2018 09:19:32 AM) (Source: MsiInstaller) (EventID: 11402) (User: ZARZĄDZANIE NT) Description: Product: Google Drive -- Error 1402. Could not open key: HKEY_LOCAL_MACHINE32\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION. System error 5. Verify that you have sufficient access to that key, or contact your support personnel. Error: (09/03/2018 10:01:56 PM) (Source: MsiInstaller) (EventID: 11402) (User: ZARZĄDZANIE NT) Description: Product: Google Drive -- Error 1402. Could not open key: HKEY_LOCAL_MACHINE32\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION. System error 5. Verify that you have sufficient access to that key, or contact your support personnel. Error: (09/03/2018 08:37:16 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: Z powodu wystąpienia problemu dane Programu poprawy jakości obsługi klienta nie zostały wysłane do firmy Microsoft. (Błąd 80004005). Error: (09/03/2018 07:56:58 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: Z powodu wystąpienia problemu dane Programu poprawy jakości obsługi klienta nie zostały wysłane do firmy Microsoft. (Błąd 80004005). Dziennik System: ============= Error: (09/04/2018 07:41:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/04/2018 07:41:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/04/2018 07:41:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/04/2018 07:41:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/04/2018 07:41:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/04/2018 07:41:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/04/2018 07:40:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Error: (09/04/2018 07:40:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: Uruchomienie usługi zależności lub grupy nie powiodło się. Windows Defender: =================================== Date: 2017-01-13 20:21:44.401 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Sasquor&threatid=226763 Nazwa:BrowserModifier:Win32/Sasquor Id.:226763 Ważność:Wysoki Kategoria:Program modyfikujący przeglądarkę Znaleziona ścieżka:file:C:\Program Files (x86)\DAEMON Tools Lite\ElexLiteInstall.exe;process:pid:7460 Typ wykrycia:Konkretne Źródło wykrycia:Ochrona w czasie rzeczywistym Stan:Nieznane Użytkownik:\ Nazwa procesu: Date: 2016-11-08 13:22:56.000 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/SupTab!blnk&threatid=233713 Nazwa:BrowserModifier:Win32/SupTab!blnk Id.:233713 Ważność:Wysoki Kategoria:Program modyfikujący przeglądarkę Znaleziona ścieżka:file:C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk Typ wykrycia:Konkretne Źródło wykrycia:System Stan:Nieznane Użytkownik:ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Date: 2016-11-08 13:22:20.521 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/SupTab!blnk&threatid=233713 Nazwa:BrowserModifier:Win32/SupTab!blnk Id.:233713 Ważność:Wysoki Kategoria:Program modyfikujący przeglądarkę Znaleziona ścieżka:file:C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk Typ wykrycia:Konkretne Źródło wykrycia:System Stan:Nieznane Użytkownik:ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Date: 2016-11-08 13:20:37.091 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/SupTab!blnk&threatid=233713 Nazwa:BrowserModifier:Win32/SupTab!blnk Id.:233713 Ważność:Wysoki Kategoria:Program modyfikujący przeglądarkę Znaleziona ścieżka:file:C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk Typ wykrycia:Konkretne Źródło wykrycia:System Stan:Nieznane Użytkownik:ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Date: 2016-11-08 13:19:27.817 Description: Podczas skanowania produktu Windows Defender wykryto program szpiegujący lub inne potencjalnie niechciane oprogramowanie. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/SupTab!blnk&threatid=233713 Nazwa:BrowserModifier:Win32/SupTab!blnk Id.:233713 Ważność:Wysoki Kategoria:Program modyfikujący przeglądarkę Znaleziona ścieżka:file:C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk Typ wykrycia:Konkretne Źródło wykrycia:System Stan:Nieznane Użytkownik:ZARZĄDZANIE NT\SYSTEM Nazwa procesu: Date: 2017-02-11 15:06:56.488 Description: Produkt Windows Defender napotkał błąd podczas próby załadowania podpisów i podejmie próbę powrotu do znanego zestawu dobrych podpisów. Podpisy objęte próbą:Bieżące Kod błędu:0x80070002 Opis błędu:Nie można odnaleźć określonego pliku. Wersja podpisu:0.0.0.0 Wersja aparatu:0.0.0.0 Date: 2017-02-09 13:43:04.104 Description: Produkt Windows Defender napotkał błąd podczas próby załadowania podpisów i podejmie próbę powrotu do znanego zestawu dobrych podpisów. Podpisy objęte próbą:Bieżące Kod błędu:0x80070003 Opis błędu:System nie może odnaleźć określonej ścieżki. Wersja podpisu:0.0.0.0 Wersja aparatu:0.0.0.0 Date: 2017-01-13 20:31:44.314 Description: Produkt Windows Defender napotkał błąd podczas podejmowania akcji względem programu szpiegującego lub innego potencjalnie niechcianego oprogramowania. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/Sasquor&threatid=226763 Użytkownik:\ Nazwa:BrowserModifier:Win32/Sasquor Identyfikator:226763 Ważność:Wysoki Kategoria:Program modyfikujący przeglądarkę Ścieżka: Akcja:Usuń Kod błędu:0x80508023 Opis błędu:Program nie znalazł na komputerze oprogramowania szpiegującego ani innego potencjalnie niechcianego oprogramowania. Stan: Date: 2016-11-08 13:24:51.378 Description: Produkt Windows Defender napotkał błąd podczas podejmowania akcji względem programu szpiegującego lub innego potencjalnie niechcianego oprogramowania. Aby uzyskać więcej informacji, zobacz: http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/SupTab!blnk&threatid=233713 Użytkownik:\ Nazwa:BrowserModifier:Win32/SupTab!blnk Identyfikator:233713 Ważność:Wysoki Kategoria:Program modyfikujący przeglądarkę Ścieżka: Akcja:Wyczyść Kod błędu:0x80508023 Opis błędu:Program nie znalazł na komputerze oprogramowania szpiegującego ani innego potencjalnie niechcianego oprogramowania. Stan: ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-6400 CPU @ 2.70GHz Procent pamięci w użyciu: 26% Całkowita pamięć fizyczna: 8155.09 MB Dostępna pamięć fizyczna: 5976.98 MB Całkowita pamięć wirtualna: 16308.33 MB Dostępna pamięć wirtualna: 14136.08 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:488.18 GB) (Free:162.4 GB) NTFS Drive d: () (Fixed) (Total:443.23 GB) (Free:426.93 GB) NTFS \\?\Volume{54f87f44-8977-11e6-890b-806e6f6e6963}\ (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8ADD6FE9) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=488.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=443.2 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================ Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 01.09.2018 03 Uruchomiony przez User (administrator) USER-KOMPUTER (04-09-2018 19:41:28) Uruchomiony z C:\Users\User\Downloads Załadowane profile: User (Dostępne profile: User) Platform: Windows 7 Home Premium Service Pack 1 (X64) Język: Polski (Polska) Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome) Tryb startu: Safe Mode (with Networking) Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Rejestr (filtrowane) =========================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [9608224 2009-11-17] (Realtek Semiconductor) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation) HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Corporation) <==== UWAGA HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Corporation) <==== UWAGA HKU\S-1-5-21-2528524030-2672575794-1047301593-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18385368 2018-06-24] (Piriform Ltd) HKU\S-1-5-21-2528524030-2672575794-1047301593-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [49799144 2018-08-24] (Skype Technologies S.A.) HKU\S-1-5-21-2528524030-2672575794-1047301593-1000\...\MountPoints2: {79084abf-d86d-11e6-9ec3-4ccc6a4a8b6d} - G:\Autorun.exe HKU\S-1-5-21-2528524030-2672575794-1047301593-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Corporation) <==== UWAGA HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\explorer.exe [3229696 2016-08-29] (Microsoft Corporation) <==== UWAGA Lsa: [Notification Packages] scecli "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter" ShellExecuteHooks: Brak nazwy - {5807D362-D3FA-11E6-A8EE-64006A5CFC35} - -> Brak pliku GroupPolicy: Ograniczenia ? <==== UWAGA GroupPolicy\User: Ograniczenia ? <==== UWAGA ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 185.146.247.139 185.146.247.140 Tcpip\..\Interfaces\{AAD0780D-41E4-43F9-BDB0-C95827FAE1AB}: [DhcpNameServer] 185.146.247.139 185.146.247.140 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617911&ResetID=131548803040392005&GUID=5170E539-537B-4F2C-A18C-C58431FDA950 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = SearchScopes: HKU\S-1-5-21-2528524030-2672575794-1047301593-1000 -> {A06ED961-D98F-4CF9-A89B-80AB11DB149C} URL = SearchScopes: HKU\S-1-5-21-2528524030-2672575794-1047301593-1000 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Brak pliku FireFox: ======== FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [Brak pliku] FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation) FF Plugin-x32: @real.com/nppl3260;version=6.0.11.2852 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll [2008-04-28] (RealNetworks, Inc.) FF Plugin-x32: @real.com/nppl3260;version=6.0.12.46 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll [2008-04-28] (RealNetworks, Inc.) FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.1662 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll [2008-04-28] (RealNetworks, Inc.) FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.46 -> C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll [2008-04-28] (RealNetworks, Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.) FF Plugin HKU\S-1-5-21-2528524030-2672575794-1047301593-1000: @tools.google.com/Google Update;version=3 -> C:\Users\User\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.) FF Plugin HKU\S-1-5-21-2528524030-2672575794-1047301593-1000: @tools.google.com/Google Update;version=9 -> C:\Users\User\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.) FF Plugin HKU\S-1-5-21-2528524030-2672575794-1047301593-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\User\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-08] (Unity Technologies ApS) FF Plugin HKU\S-1-5-21-2528524030-2672575794-1047301593-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2017-02-20] () Chrome: ======= CHR HomePage: Default -> hxxps://www.google.pl/ CHR StartupUrls: Default -> "hxxps://www.google.pl/" CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2018-09-04] CHR Extension: (Prezentacje) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-08-13] CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-08-13] CHR Extension: (Dysk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-08-13] CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-13] CHR Extension: (Arkusze) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-08-13] CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-13] CHR Extension: (AdBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-08-13] CHR Extension: (Morpheon Dark) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2018-09-02] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-13] CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-08-13] CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-13] Opera: ======= OPR Extension: (Tampermonkey) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2018-08-06] OPR Extension: (ScriptMonkey) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\lblbnlfhhblmfconjalikamamlgoobbe [2018-08-06] ==================== Usługi (filtrowane) ==================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [551896 2018-07-16] (Protection Technology) S3 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe [544768 2009-08-24] (mst software GmbH, Germany) [Brak podpisu cyfrowego] S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [229648 2016-07-28] (EasyAntiCheat Ltd) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Brak podpisu cyfrowego] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [974632 2016-02-19] (Intel(R) Corporation) S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation) S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-03-16] (Intel Corporation) S2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2248144 2016-04-28] (Micro-Star INT'L CO., LTD.) R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation) S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2212672 2018-08-07] (Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3083080 2018-08-07] (Electronic Arts) S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2017-06-04] () S2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [107832 2017-06-04] () S2 SbaService; C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage Next\SbaService.exe [26296 2015-10-14] (Intel Corporation) S2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1000824 2018-05-14] (McAfee, LLC.) S2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2018-05-14] (McAfee, LLC.) S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2018-05-14] (McAfee, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000 S2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 S2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin" ===================== Sterowniki (filtrowane) ====================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [2715824 2018-07-16] (Protection Technology) S3 DFX11_1; C:\Windows\System32\drivers\dfx11_1x64.sys [28008 2015-08-31] (Windows (R) Win 7 DDK provider) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2017-01-13] (DT Soft Ltd) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [180264 2016-02-04] (Intel Corporation) S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation) S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2017-01-06] (NVIDIA Corporation) S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2017-01-06] (NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [59448 2017-01-06] (NVIDIA Corporation) S3 Sftfs; C:\Windows\System32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation) S3 Sftplay; C:\Windows\System32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation) S3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation) S3 Sftvol; C:\Windows\System32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation) U1 aswbdisk; Brak ImagePath S1 ekqemawx; \??\C:\Windows\system32\drivers\ekqemawx.sys [X] S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [X] S1 hadvghzd; \??\C:\Windows\system32\drivers\hadvghzd.sys [X] S1 mixodozy; \??\C:\Windows\system32\drivers\mixodozy.sys [X] S3 MSICDSetup; \??\E:\CDriver64.sys [X] S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X] S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X] S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc - utworzone pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2018-09-04 19:41 - 2018-09-04 19:41 - 000015512 _____ C:\Users\User\Downloads\FRST.txt 2018-09-04 19:41 - 2018-09-04 19:41 - 000000000 ___DC C:\FRST 2018-09-04 19:40 - 2018-09-04 19:40 - 002413056 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe 2018-09-03 11:42 - 2018-09-04 15:42 - 000000000 ____D C:\Windows\{EB47D3E9-14CE-4BE0-B16B-C061571F46C7} 2018-09-03 09:56 - 2018-09-03 09:56 - 000325632 _____ C:\Windows\SysWOW64\Win32GetLastError.idb 2018-09-03 09:55 - 2018-09-03 09:55 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2018-09-03 09:55 - 2018-09-03 09:55 - 000000000 ____D C:\ProgramData\Malwarebytes 2018-09-03 09:55 - 2018-09-03 09:55 - 000000000 ____D C:\Program Files\Malwarebytes 2018-09-03 09:53 - 2018-09-03 09:53 - 000000000 ____D C:\ProgramData\MB3Install 2018-09-03 09:53 - 2018-09-03 09:53 - 000000000 ____D C:\ProgramData\MB2Migration 2018-09-03 09:47 - 2018-09-04 19:39 - 000000040 _____ C:\Program Files (x86)\settings.dat 2018-09-03 09:47 - 2018-09-03 09:47 - 000000000 ____D C:\Program Files (x86)\reports 2018-09-03 09:46 - 2018-09-03 09:46 - 000000286 _____ C:\Windows\Tasks\AdwCleaner_onReboot.job 2018-09-03 09:45 - 2018-09-03 09:45 - 007567568 _____ (Malwarebytes) C:\Users\User\Downloads\adwcleaner_7.2.3.exe 2018-09-03 09:42 - 2018-09-03 09:53 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2018-09-03 09:41 - 2018-09-03 09:42 - 003968543 _____ C:\Users\User\Downloads\adwcleaner_6.040.rar 2018-09-03 09:41 - 2018-09-03 09:41 - 018797980 _____ C:\Users\User\Downloads\Malwarebytes Anti-Malware Premium 2.0.2.1012 Key.rar 2018-09-02 17:42 - 2018-09-03 09:56 - 000000000 __SHD C:\Users\User\AppData\Local\Media Network Sharing 2018-09-02 17:12 - 2018-09-02 17:33 - 000000000 ____D C:\Users\User\Doctor Web 2018-09-02 17:12 - 2018-09-02 17:12 - 000000000 ____D C:\ProgramData\Doctor Web 2018-09-02 17:01 - 2018-09-02 17:01 - 000000000 _____ C:\Users\User\Desktop\Nowy dokument tekstowy.txt 2018-09-02 11:42 - 2018-09-03 09:56 - 000000000 ____D C:\Windows\{D32F0790-E651-41F4-9571-6065DA044B85} 2018-08-29 19:28 - 2018-08-29 19:28 - 000000000 ____D C:\Windows\SysWOW64\RTCOM 2018-08-29 19:28 - 2018-08-29 19:28 - 000000000 ____D C:\Program Files\Realtek 2018-08-29 19:28 - 2009-11-17 20:47 - 001680416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2018-08-29 19:28 - 2009-11-17 20:47 - 001638432 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2018-08-29 19:28 - 2009-11-17 20:47 - 001201184 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2018-08-29 19:28 - 2009-11-17 20:47 - 000611872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2018-08-29 19:28 - 2009-11-17 20:47 - 000444448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2018-08-29 19:28 - 2009-11-17 20:47 - 000332320 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2018-08-29 19:28 - 2009-11-17 20:47 - 000149536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2018-08-29 19:28 - 2009-11-17 20:47 - 000066592 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll 2018-08-29 19:28 - 2009-11-17 20:13 - 002037408 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2018-08-29 19:28 - 2009-11-13 15:16 - 000363008 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2018-08-29 19:28 - 2009-11-13 15:16 - 000198656 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2018-08-29 19:28 - 2009-11-13 15:16 - 000095744 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2018-08-29 19:28 - 2009-11-13 15:16 - 000073216 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2018-08-29 19:28 - 2009-11-10 16:33 - 002191872 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll 2018-08-29 19:28 - 2009-11-10 16:32 - 002714112 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll 2018-08-29 19:28 - 2009-10-30 18:58 - 000321536 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2018-08-29 19:28 - 2009-05-05 10:53 - 000320512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2018-08-29 19:28 - 2009-04-16 10:13 - 000166400 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2018-08-29 19:28 - 2009-03-31 14:02 - 000108032 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2018-08-29 19:28 - 2009-03-09 05:32 - 000304640 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2018-08-29 19:28 - 2009-03-09 05:30 - 000304640 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2018-08-29 19:28 - 2008-04-30 08:48 - 000193536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2018-08-29 19:28 - 2007-07-25 09:34 - 000150528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2018-08-29 19:28 - 2007-05-17 11:26 - 000211376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2018-08-29 19:28 - 2006-12-13 10:30 - 000513536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2018-08-29 19:27 - 2009-11-02 13:48 - 000831488 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2018-08-29 19:23 - 2018-09-03 10:35 - 000000000 __SHD C:\Users\User\AppData\Local\_restore{E415C293-1C11-4005-B5E5-91EC1A0BAE7D} 2018-08-29 19:15 - 2018-08-29 19:15 - 039456923 _____ (Realtek Semiconductor Corp.) C:\Users\User\Downloads\Sterowniki Realtek HD Audio Vista 7.exe 2018-08-29 13:42 - 2018-09-01 19:42 - 000000000 ____D C:\Windows\{B58AFBDA-7D5B-40C0-BE79-D9F3286E2165} 2018-08-28 21:18 - 2018-08-28 21:18 - 000034644 _____ C:\Users\User\Downloads\status_wniosku_2214023_2018_4191385_01.pdf 2018-08-26 23:50 - 2018-09-04 14:36 - 000000000 ____D C:\Users\User\Desktop\śmieszne 2018-08-26 15:23 - 2018-08-26 15:43 - 1467996160 _____ C:\Users\User\Downloads\Liberator (Lektor PL) 1992.avi 2018-08-26 15:10 - 2018-08-26 15:18 - 461373934 _____ C:\Users\User\Downloads\Żelazny Krzyż Lektor PL.avi 2018-08-25 13:42 - 2018-08-29 11:42 - 000000000 ____D C:\Windows\{2E03268B-4782-44EF-B29B-44B65D240959} 2018-08-22 16:54 - 2018-08-24 23:42 - 000000000 ____D C:\Windows\{386B5B3F-9B0C-4C98-A35A-9D30F4B40497} 2018-08-22 16:54 - 2018-08-22 16:54 - 000000000 __SHD C:\Users\User\AppData\Local\ClipBoardSvc 2018-08-20 15:14 - 2018-08-20 15:14 - 004057579 _____ C:\Users\User\Downloads\Smokie - Have You Ever Seen The Rain 2018-08-16 21:39 - 2018-08-16 21:41 - 080114243 _____ C:\Users\User\Downloads\Taco Hemingway - Cafe Belga (2018).zip 2018-08-15 22:29 - 2018-08-15 22:29 - 000000000 __SHD C:\Users\User\AppData\Local\Wow64Cache 2018-08-15 22:25 - 2018-08-15 22:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpyHunter4 2018-08-15 22:23 - 2018-08-15 22:24 - 051865834 _____ C:\Users\User\Downloads\SpyHunter 4.21.10.4585 ( ZAREJESTROWANY ).rar 2018-08-15 16:36 - 2018-08-22 13:42 - 000000000 ____D C:\Windows\{C0DBEF00-2BEB-4F04-B2D3-8007390D5C0B} 2018-08-15 12:19 - 2018-07-19 08:15 - 025745408 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2018-08-15 12:19 - 2018-06-29 17:55 - 000045568 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll 2018-08-15 12:19 - 2018-06-29 17:55 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll 2018-08-15 12:18 - 2018-08-03 17:55 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll 2018-08-15 12:18 - 2018-08-03 17:39 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll 2018-08-15 12:18 - 2018-08-02 05:20 - 000708272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2018-08-15 12:18 - 2018-08-02 05:18 - 000096864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2018-08-15 12:18 - 2018-08-02 05:07 - 000263776 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2018-08-15 12:18 - 2018-08-02 05:06 - 000156256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2018-08-15 12:18 - 2018-08-02 05:05 - 005553760 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2018-08-15 12:18 - 2018-08-02 05:02 - 001665320 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2018-08-15 12:18 - 2018-08-02 05:00 - 000633080 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2018-08-15 12:18 - 2018-08-02 04:59 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2018-08-15 12:18 - 2018-08-02 04:59 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2018-08-15 12:18 - 2018-08-02 04:58 - 001461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2018-08-15 12:18 - 2018-08-02 04:58 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2018-08-15 12:18 - 2018-08-02 04:58 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2018-08-15 12:18 - 2018-08-02 04:58 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2018-08-15 12:18 - 2018-08-02 04:58 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2018-08-15 12:18 - 2018-08-02 04:58 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2018-08-15 12:18 - 2018-08-02 04:58 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2018-08-15 12:18 - 2018-08-02 04:58 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:45 - 004054192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2018-08-15 12:18 - 2018-08-02 04:45 - 003959984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2018-08-15 12:18 - 2018-08-02 04:43 - 001315512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2018-08-15 12:18 - 2018-08-02 04:42 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2018-08-15 12:18 - 2018-08-02 04:42 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2018-08-15 12:18 - 2018-08-02 04:42 - 000275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2018-08-15 12:18 - 2018-08-02 04:42 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2018-08-15 12:18 - 2018-08-02 04:42 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll 2018-08-15 12:18 - 2018-08-02 04:42 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2018-08-15 12:18 - 2018-08-02 04:41 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2018-08-15 12:18 - 2018-08-02 04:41 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2018-08-15 12:18 - 2018-08-02 04:41 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2018-08-15 12:18 - 2018-08-02 04:41 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2018-08-15 12:18 - 2018-08-02 04:41 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2018-08-15 12:18 - 2018-08-02 04:41 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2018-08-15 12:18 - 2018-08-02 04:41 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2018-08-15 12:18 - 2018-08-02 04:41 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2018-08-15 12:18 - 2018-08-02 04:41 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2018-08-15 12:18 - 2018-08-02 04:41 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2018-08-15 12:18 - 2018-08-02 04:41 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:40 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:26 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2018-08-15 12:18 - 2018-08-02 04:26 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2018-08-15 12:18 - 2018-08-02 04:26 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2018-08-15 12:18 - 2018-08-02 04:25 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2018-08-15 12:18 - 2018-08-02 04:22 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2018-08-15 12:18 - 2018-08-02 04:21 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2018-08-15 12:18 - 2018-08-02 04:21 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys 2018-08-15 12:18 - 2018-08-02 04:17 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2018-08-15 12:18 - 2018-08-02 04:17 - 000160256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2018-08-15 12:18 - 2018-08-02 04:17 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2018-08-15 12:18 - 2018-08-02 04:16 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2018-08-15 12:18 - 2018-08-02 04:16 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys 2018-08-15 12:18 - 2018-08-02 04:16 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys 2018-08-15 12:18 - 2018-08-02 04:16 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys 2018-08-15 12:18 - 2018-08-02 04:16 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys 2018-08-15 12:18 - 2018-08-02 04:16 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2018-08-15 12:18 - 2018-08-02 04:16 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2018-08-15 12:18 - 2018-08-02 04:11 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2018-08-15 12:18 - 2018-08-02 04:11 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2018-08-15 12:18 - 2018-08-02 04:11 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2018-08-15 12:18 - 2018-08-02 04:11 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2018-08-15 12:18 - 2018-08-02 04:10 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2018-08-15 12:18 - 2018-08-02 04:10 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:10 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2018-08-15 12:18 - 2018-08-02 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2018-08-15 12:18 - 2018-07-20 01:53 - 000396936 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2018-08-15 12:18 - 2018-07-20 00:58 - 000350272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2018-08-15 12:18 - 2018-07-19 06:48 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2018-08-15 12:18 - 2018-07-19 06:47 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2018-08-15 12:18 - 2018-07-19 06:35 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2018-08-15 12:18 - 2018-07-19 06:34 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2018-08-15 12:18 - 2018-07-19 06:33 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2018-08-15 12:18 - 2018-07-19 06:33 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2018-08-15 12:18 - 2018-07-19 06:33 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2018-08-15 12:18 - 2018-07-19 06:32 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2018-08-15 12:18 - 2018-07-19 06:30 - 005778432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2018-08-15 12:18 - 2018-07-19 06:26 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2018-08-15 12:18 - 2018-07-19 06:25 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2018-08-15 12:18 - 2018-07-19 06:23 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2018-08-15 12:18 - 2018-07-19 06:22 - 020286464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2018-08-15 12:18 - 2018-07-19 06:22 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2018-08-15 12:18 - 2018-07-19 06:22 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2018-08-15 12:18 - 2018-07-19 06:22 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2018-08-15 12:18 - 2018-07-19 06:21 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2018-08-15 12:18 - 2018-07-19 06:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2018-08-15 12:18 - 2018-07-19 06:14 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2018-08-15 12:18 - 2018-07-19 06:11 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2018-08-15 12:18 - 2018-07-19 06:05 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2018-08-15 12:18 - 2018-07-19 06:05 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2018-08-15 12:18 - 2018-07-19 06:04 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2018-08-15 12:18 - 2018-07-19 06:04 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2018-08-15 12:18 - 2018-07-19 06:04 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2018-08-15 12:18 - 2018-07-19 06:04 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2018-08-15 12:18 - 2018-07-19 06:03 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2018-08-15 12:18 - 2018-07-19 06:03 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2018-08-15 12:18 - 2018-07-19 06:01 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2018-08-15 12:18 - 2018-07-19 06:00 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2018-08-15 12:18 - 2018-07-19 06:00 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2018-08-15 12:18 - 2018-07-19 05:58 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2018-08-15 12:18 - 2018-07-19 05:58 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2018-08-15 12:18 - 2018-07-19 05:57 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2018-08-15 12:18 - 2018-07-19 05:56 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2018-08-15 12:18 - 2018-07-19 05:56 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2018-08-15 12:18 - 2018-07-19 05:55 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2018-08-15 12:18 - 2018-07-19 05:55 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2018-08-15 12:18 - 2018-07-19 05:54 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2018-08-15 12:18 - 2018-07-19 05:47 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2018-08-15 12:18 - 2018-07-19 05:46 - 015283712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2018-08-15 12:18 - 2018-07-19 05:46 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2018-08-15 12:18 - 2018-07-19 05:45 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2018-08-15 12:18 - 2018-07-19 05:45 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2018-08-15 12:18 - 2018-07-19 05:43 - 002136064 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2018-08-15 12:18 - 2018-07-19 05:43 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2018-08-15 12:18 - 2018-07-19 05:42 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2018-08-15 12:18 - 2018-07-19 05:41 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2018-08-15 12:18 - 2018-07-19 05:41 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2018-08-15 12:18 - 2018-07-19 05:39 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2018-08-15 12:18 - 2018-07-19 05:38 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2018-08-15 12:18 - 2018-07-19 05:37 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2018-08-15 12:18 - 2018-07-19 05:35 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2018-08-15 12:18 - 2018-07-19 05:32 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2018-08-15 12:18 - 2018-07-19 05:31 - 004510720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2018-08-15 12:18 - 2018-07-19 05:30 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2018-08-15 12:18 - 2018-07-19 05:28 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2018-08-15 12:18 - 2018-07-19 05:28 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2018-08-15 12:18 - 2018-07-19 05:28 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2018-08-15 12:18 - 2018-07-19 05:27 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2018-08-15 12:18 - 2018-07-19 05:20 - 001554944 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2018-08-15 12:18 - 2018-07-19 05:09 - 004037632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2018-08-15 12:18 - 2018-07-19 05:09 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2018-08-15 12:18 - 2018-07-19 05:06 - 001329152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2018-08-15 12:18 - 2018-07-19 05:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2018-08-15 12:18 - 2018-07-13 21:19 - 001894080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2018-08-15 12:18 - 2018-07-13 21:19 - 000377024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2018-08-15 12:18 - 2018-07-13 21:19 - 000287936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2018-08-15 12:18 - 2018-07-08 18:08 - 000383680 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2018-08-15 12:18 - 2018-07-08 18:02 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll 2018-08-15 12:18 - 2018-07-08 18:02 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2018-08-15 12:18 - 2018-07-08 18:02 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2018-08-15 12:18 - 2018-07-08 18:01 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2018-08-15 12:18 - 2018-07-08 18:01 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2018-08-15 12:18 - 2018-07-08 17:47 - 000309440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2018-08-15 12:18 - 2018-07-08 17:42 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll 2018-08-15 12:18 - 2018-07-08 17:42 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2018-08-15 12:18 - 2018-07-08 17:41 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2018-08-15 12:18 - 2018-07-08 17:41 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2018-08-15 12:18 - 2018-07-08 17:13 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2018-08-15 12:18 - 2018-07-07 17:24 - 003226112 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2018-08-15 12:18 - 2018-07-06 18:09 - 000947904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2018-08-15 12:18 - 2018-07-06 18:03 - 000056832 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll 2018-08-15 12:18 - 2018-07-06 18:03 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll 2018-08-15 12:18 - 2018-07-06 17:48 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll 2018-08-15 12:18 - 2018-07-06 17:48 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll 2018-08-15 12:18 - 2018-06-29 17:40 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll 2018-08-15 12:18 - 2018-06-29 17:09 - 000034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll 2018-08-15 12:18 - 2018-06-27 18:01 - 000114368 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2018-08-15 12:18 - 2018-06-27 17:55 - 003246592 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2018-08-15 12:18 - 2018-06-27 17:55 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2018-08-15 12:18 - 2018-06-27 17:55 - 000484864 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2018-08-15 12:18 - 2018-06-27 17:55 - 000025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll 2018-08-15 12:18 - 2018-06-27 17:54 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2018-08-15 12:18 - 2018-06-27 17:54 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2018-08-15 12:18 - 2018-06-27 17:43 - 000363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll 2018-08-15 12:18 - 2018-06-27 17:42 - 002366464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2018-08-15 12:18 - 2018-06-27 17:42 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2018-08-15 12:18 - 2018-06-27 17:42 - 000025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll 2018-08-15 12:18 - 2018-06-27 17:41 - 001806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2018-08-15 12:18 - 2018-06-27 17:21 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2018-08-15 12:18 - 2018-06-27 17:16 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe 2018-08-15 12:18 - 2018-06-21 05:33 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2018-08-15 12:18 - 2018-06-21 05:09 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2018-08-14 17:17 - 2018-08-14 17:17 - 000000000 ____D C:\ProgramData\GRETECH 2018-08-14 13:09 - 2018-09-04 19:38 - 000392288 _____ C:\Windows\ntbtlog.txt 2018-08-13 22:59 - 2018-08-13 22:59 - 000000000 ____D C:\Users\User\AppData\Roaming\Opera 2018-08-13 22:59 - 2018-08-13 22:59 - 000000000 ____D C:\Users\User\AppData\Local\Opera 2018-08-13 22:37 - 2018-08-13 22:37 - 000144090 _____ C:\Users\User\Documents\cc_20180813_223717.reg 2018-08-13 22:14 - 2018-08-13 22:14 - 000002798 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2018-08-13 21:57 - 2018-08-22 16:51 - 000000000 ____D C:\Users\User\AppData\Local\AVAST Software 2018-08-13 21:51 - 2018-08-13 21:51 - 000178320 _____ (AVAST Software) C:\Users\User\Downloads\avast_free_antivirus_setup_online (2).exe 2018-08-13 21:50 - 2018-09-03 10:35 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software 2018-08-13 21:49 - 2018-08-13 22:14 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update 2018-08-13 21:48 - 2018-08-13 21:48 - 000000000 ____D C:\Program Files\Common Files\AVAST Software 2018-08-13 21:45 - 2018-08-13 21:45 - 000178320 _____ (AVAST Software) C:\Users\User\Downloads\avast_free_antivirus_setup_online (1).exe 2018-08-13 21:44 - 2018-08-13 21:44 - 000178320 _____ (AVAST Software) C:\Users\User\Downloads\avast_free_antivirus_setup_online.exe 2018-08-13 20:16 - 2018-08-13 20:19 - 310143519 _____ C:\Users\User\Downloads\Metallica - Garage Inc - 320kbps.rar 2018-08-13 19:32 - 2018-08-13 19:32 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-08-13 19:32 - 2018-08-13 19:32 - 000002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-08-13 19:20 - 2018-08-29 19:07 - 000000081 _____ C:\Users\User\Desktop\enova.txt 2018-08-13 19:09 - 2018-08-13 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2018-08-13 18:58 - 2018-08-13 19:07 - 002196458 ____C C:\TDSSKiller.3.1.0.17_13.08.2018_18.58.52_log.txt 2018-08-13 18:56 - 2018-08-13 18:56 - 000200684 ____C C:\TDSSKiller.3.1.0.17_13.08.2018_18.56.10_log.txt 2018-08-13 18:55 - 2018-08-13 18:56 - 004858305 _____ C:\Users\User\Downloads\tdsskiller.zip 2018-08-13 18:55 - 2018-08-13 18:55 - 005336387 _____ C:\Users\User\Downloads\rakhnidecryptor.zip 2018-08-13 16:37 - 2018-08-13 21:51 - 000000000 ____D C:\ProgramData\avg9 2018-08-13 16:37 - 2018-08-13 16:37 - 000000000 ____D C:\Program Files (x86)\AVG 2018-08-13 16:32 - 2018-08-13 16:32 - 000000000 ____D C:\Users\User\AppData\Roaming\WinPatrol 2018-08-13 16:32 - 2018-08-13 16:32 - 000000000 ____D C:\Program Files (x86)\BillP Studios 2018-08-13 15:57 - 2018-09-03 10:35 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy 2018-08-13 15:57 - 2018-08-13 19:09 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2018-08-13 15:32 - 2018-08-13 15:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo 2018-08-13 15:32 - 2018-08-13 15:32 - 000000000 ____D C:\Program Files (x86)\Ashampoo 2018-08-13 15:32 - 2009-08-24 21:13 - 000034304 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe 2018-08-13 15:32 - 2009-08-24 21:08 - 000028160 _____ (mst software GmbH, Germany) C:\Windows\SysWOW64\DfSdkBt32.exe 2018-08-12 16:27 - 2018-08-15 16:37 - 000000000 ___SD C:\Users\User\AppData\Local\NTServices 2018-08-12 07:42 - 2018-08-14 21:42 - 000000000 ____D C:\Windows\{6CD4963C-603E-45BC-A07A-EB9A6137CC9A} 2018-08-11 14:25 - 2018-08-11 14:25 - 131626216 ____C (Microsoft Corporation) C:\Windows\SysWOW64\MRT.exe 2018-08-10 11:42 - 2018-08-10 11:42 - 000000000 ___HD C:\Users\User\AppData\Local\WIX Toolset 11.2 2018-08-09 22:23 - 2018-08-09 22:23 - 000004282 _____ C:\Windows\System32\Tasks\ReimageUpdater 2018-08-09 12:27 - 2018-08-09 14:39 - 000000000 ____D C:\Users\User\AppData\Local\Facebook 2018-08-09 12:07 - 2018-08-09 12:07 - 000000000 ____D C:\ProgramData\Trymedia 2018-08-09 09:23 - 2018-09-03 09:53 - 000000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2018-08-09 09:23 - 2018-08-09 09:23 - 000000000 ____D C:\Users\User\AppData\Roaming\Malwarebytes 2018-08-07 19:42 - 2018-08-10 13:42 - 000000000 ____D C:\Windows\{9313CB30-7832-4851-AF74-A21456C4EF2A} 2018-08-06 19:42 - 2018-08-06 21:42 - 000000000 ____D C:\Windows\{7CB0BBD3D374-4DEA-9751-2D08BC721AA7} 2018-08-06 17:43 - 2018-08-06 17:43 - 000000000 ____D C:\Users\User\Downloads\Dead by Daylight v1.8.1 2018-08-06 17:42 - 2018-08-06 17:42 - 000003764 _____ C:\Windows\System32\Tasks\{4234DF3D-73DD-88CF-4C4E-F0B1DB9CB1B0} 2018-08-06 17:42 - 2018-08-06 17:42 - 000003606 _____ C:\Windows\System32\Tasks\{CAC57C23-839C-80C1-64E4-7C60395FBAEE} 2018-08-06 17:42 - 2018-08-06 17:42 - 000003398 _____ C:\Windows\System32\Tasks\{0E35A7E6-8C45-9EBB-27BC-C675C4B95DA8} 2018-08-06 17:42 - 2018-08-06 17:42 - 000000002 _____ C:\Users\User\AppData\Local\imw.ini 2018-08-06 17:12 - 2018-08-06 17:12 - 000000000 ____D C:\Users\User\AppData\Local\UnrealEngine 2018-08-06 17:12 - 2018-08-06 17:12 - 000000000 ____D C:\Users\User\AppData\Local\DeadByDaylight 2018-08-06 17:12 - 2016-07-28 14:25 - 000229648 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe 2018-08-05 15:19 - 2018-09-03 09:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2018-08-05 15:19 - 2018-04-26 05:36 - 000152184 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys ==================== Jeden miesiąc - zmodyfikowane pliki i foldery ======== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2018-09-04 19:34 - 2017-02-15 22:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2018-09-04 12:37 - 2017-03-05 15:12 - 000004000 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{5B5A9473-D96C-498B-8FD5-01CD7E011CB6} 2018-09-04 12:25 - 2016-10-03 12:16 - 000000000 ____D C:\ProgramData\NVIDIA 2018-09-03 21:51 - 2011-04-12 15:21 - 000740550 _____ C:\Windows\system32\perfh015.dat 2018-09-03 21:51 - 2011-04-12 15:21 - 000155866 _____ C:\Windows\system32\perfc015.dat 2018-09-03 21:51 - 2009-07-14 07:13 - 001670806 _____ C:\Windows\system32\PerfStringBackup.INI 2018-09-03 21:51 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf 2018-09-03 20:40 - 2016-10-03 15:30 - 000000000 ____D C:\Users\User\Desktop\ZDJĘCIA 2018-09-03 10:35 - 2018-05-19 13:48 - 000000000 ____D C:\Program Files (x86)\Z3X 2018-09-03 10:35 - 2017-01-24 14:41 - 000000000 ____D C:\Users\User\Desktop\PROGAMY 2018-09-03 10:35 - 2016-10-03 10:56 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2018-09-03 10:35 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration 2018-09-03 10:08 - 2009-07-14 06:45 - 000021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2018-09-03 10:08 - 2009-07-14 06:45 - 000021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2018-09-03 09:55 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-09-03 09:45 - 2017-03-08 22:17 - 000000000 ___DC C:\AdwCleaner 2018-09-02 16:18 - 2017-02-20 22:22 - 000000000 ____D C:\Users\User\AppData\Local\Ubisoft Game Launcher 2018-09-02 15:41 - 2016-10-03 15:29 - 000000000 ____D C:\Users\User\Desktop\Muzyka 2018-09-02 14:06 - 2016-10-06 12:44 - 000000000 ____D C:\Users\User\Desktop\muzyka zagraniczna 2018-09-02 14:05 - 2016-10-03 15:29 - 000000000 ____D C:\Users\User\Desktop\Lepsza i Remixy 2018-09-02 10:17 - 2016-10-03 11:31 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2018-08-31 10:35 - 2017-12-27 18:21 - 000000000 ____D C:\Users\User\AppData\Roaming\Mp3tag 2018-08-29 19:28 - 2016-10-03 10:57 - 000000000 ___HD C:\Program Files (x86)\Temp 2018-08-29 19:24 - 2018-01-02 15:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2018-08-29 19:20 - 2016-10-03 10:58 - 000000000 ____D C:\Windows\system32\DAX2 2018-08-25 17:50 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache 2018-08-23 18:59 - 2017-05-16 06:39 - 000000000 ____D C:\Program Files (x86)\Origin 2018-08-22 16:51 - 2016-10-03 11:44 - 000000000 ____D C:\ProgramData\AVAST Software 2018-08-21 14:32 - 2016-10-03 11:35 - 000098680 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2018-08-21 14:32 - 2016-10-03 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2018-08-21 14:31 - 2016-10-03 11:35 - 000000000 ____D C:\Program Files (x86)\Java 2018-08-20 14:15 - 2017-09-07 12:49 - 000000000 _____ C:\Windows\SysWOW64\last.dump 2018-08-15 22:26 - 2017-08-12 14:10 - 000000000 ____D C:\Windows\Minidump 2018-08-15 22:25 - 2016-10-03 16:40 - 000355587 ____N C:\Windows\Minidump\081518-23821-01.dmp 2018-08-15 16:32 - 2009-07-14 06:45 - 000267360 _____ C:\Windows\system32\FNTCACHE.DAT 2018-08-15 16:24 - 2016-11-11 15:26 - 000000000 ____D C:\Windows\system32\MRT 2018-08-15 16:22 - 2016-11-11 15:25 - 137343192 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2018-08-15 16:18 - 2016-10-03 10:55 - 001642476 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2018-08-14 11:14 - 2017-06-30 22:05 - 000004582 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2018-08-14 11:14 - 2016-10-03 11:31 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2018-08-14 11:14 - 2016-10-03 11:31 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2018-08-14 11:14 - 2016-10-03 11:31 - 000004412 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2018-08-14 11:14 - 2016-10-03 11:31 - 000000000 ____D C:\Windows\system32\Macromed 2018-08-13 23:30 - 2017-01-04 14:54 - 000000000 ____D C:\Program Files (x86)\Opera 2018-08-13 22:26 - 2017-01-13 21:21 - 000000000 ____D C:\Users\User\AppData\Roaming\DAEMON Tools Lite 2018-08-13 22:26 - 2016-10-06 13:58 - 000000000 ____D C:\Users\User\AppData\Roaming\uTorrent 2018-08-13 22:26 - 2016-10-03 20:30 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps 2018-08-13 22:26 - 2016-10-03 17:40 - 000000000 ____D C:\Windows\Panther 2018-08-13 22:17 - 2018-01-02 15:47 - 000000000 ____D C:\Users\User\AppData\Roaming\Skype 2018-08-13 22:16 - 2016-10-03 16:11 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2018-08-13 22:16 - 2016-10-03 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2018-08-13 22:16 - 2016-10-03 16:11 - 000000000 ____D C:\Program Files\WinRAR 2018-08-13 22:16 - 2016-10-03 11:38 - 000000000 ____D C:\Program Files (x86)\Adobe 2018-08-13 22:14 - 2017-01-26 16:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2018-08-13 21:55 - 2009-07-14 07:09 - 000000000 ____D C:\Windows\System32\Tasks\WPD 2018-08-13 21:49 - 2017-01-26 16:09 - 000000000 ____D C:\Program Files\CCleaner 2018-08-13 19:32 - 2016-10-03 11:36 - 000000000 ____D C:\Users\User\AppData\Local\Google 2018-08-13 19:32 - 2016-10-03 11:36 - 000000000 ____D C:\Program Files (x86)\Google 2018-08-13 19:31 - 2016-10-03 11:36 - 000000000 ____D C:\Users\User\AppData\Local\Deployment 2018-08-13 19:23 - 2016-10-03 10:49 - 000001219 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2018-08-13 17:23 - 2016-11-08 19:41 - 000000000 ____D C:\Users\User\Documents\American Truck Simulator 2018-08-13 17:15 - 2017-02-14 20:34 - 000000000 ___RD C:\Users\User\Desktop\GRY 2018-08-13 16:48 - 2017-02-01 12:27 - 000000000 ____D C:\Program Files\DiRT Rally 2018-08-13 14:52 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2018-08-11 15:20 - 2018-06-18 13:16 - 000000000 ____D C:\Users\User\AppData\LocalLow\uTorrent ==================== Pliki w katalogu głównym wybranych folderów ======= 2009-07-14 03:14 - 2009-07-14 03:14 - 000186368 ____N (Microsoft Corporation) C:\Users\User\QUDGWXjiueo.exe 2017-01-26 16:21 - 2017-01-26 16:21 - 000000000 _____ () C:\Program Files (x86)\metadata 2018-09-03 09:47 - 2018-09-04 19:39 - 000000040 _____ () C:\Program Files (x86)\settings.dat 2017-02-09 14:04 - 2017-02-09 14:04 - 000000000 _____ () C:\Users\User\AppData\Roaming\gdfw.log 2017-02-09 14:04 - 2017-02-09 14:04 - 000000779 _____ () C:\Users\User\AppData\Roaming\gdscan.log 2018-08-06 17:42 - 2018-08-06 17:42 - 000000002 _____ () C:\Users\User\AppData\Local\imw.ini 2017-05-17 11:57 - 2017-05-17 11:57 - 000000000 _____ () C:\Users\User\AppData\Local\{1FC293E8-C0DB-44A1-99DB-4CCE7168D34A} 2017-01-26 15:22 - 2017-01-26 15:22 - 000000000 _____ () C:\Users\User\AppData\Local\{EF8B33AC-FD0E-4389-8518-E106B43F9DCF} Niektóre pliki w TEMP: ==================== 2016-12-02 21:42 - 2016-12-02 21:42 - 002458672 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Users\User\AppData\Local\Temp\libeay32.dll 2018-09-03 09:53 - 2018-05-29 07:43 - 000858912 _____ (Malwarebytes) C:\Users\User\AppData\Local\Temp\mb-clean.exe 2018-09-03 09:53 - 2018-09-03 09:43 - 076534856 _____ (Malwarebytes ) C:\Users\User\AppData\Local\Temp\mbam-setup.exe 2016-12-02 21:42 - 2016-12-02 21:42 - 000970912 _____ (Microsoft Corporation) C:\Users\User\AppData\Local\Temp\msvcr120.dll 2016-12-02 21:42 - 2016-12-02 21:42 - 000772672 _____ () C:\Users\User\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ====================== (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo C:\Windows\explorer.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo C:\Windows\system32\services.exe => Plik podpisany cyfrowo C:\Windows\system32\User32.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo LastRegBack: 2018-08-26 12:38 ==================== Koniec FRST.txt ============================ Rezultat skanowania skrótów użytkowników (x64) Wersja: 01.09.2018 03 Uruchomiony przez User (04-09-2018 19:42:30) Uruchomiony z C:\Users\User\Downloads Tryb startu: Safe Mode (with Networking) ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted PL\NFS Most Wanted - Spolszczenie.lnk -> C:\Users\User\Downloads\Tu wskaż ścieżkę zainstalowanej gry\speed.bat () Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{B16461B0-2C08-4B7F-AFC7-895E6DE3632D}\SupportTasks\0\Strona domowa.lnk -> hxxp:\www.bethsoft.com\ Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{5C46D656-B97E-461B-98C7-0E75C53F5EB3}\SupportTasks\0\Far Cry® 2 Homepage.lnk -> hxxp:\farcry.us.ubi.com\ Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{3758A713-102D-48B4-B0CC-8BBF206906EB}\SupportTasks\1\Technical Help.lnk -> hxxp:\www.assassinscreed.com\ Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{3758A713-102D-48B4-B0CC-8BBF206906EB}\SupportTasks\0\Homepage.lnk -> hxxp:\www.assassinscreed.com\ Shortcut: C:\Users\User\AppData\Local\Microsoft\Windows\GameExplorer\{B16461B0-2C08-4B7F-AFC7-895E6DE3632D}\SupportTasks\0\Strona domowa.lnk -> hxxp:\www.bethsoft.com\ Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\µTorrent.lnk -> C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Asystent uaktualnienia do systemu Windows 10.lnk -> C:\Windows10Upgrade\Windows10UpgraderApp.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk -> C:\Windows\ehome\ehshell.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk -> C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk -> C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk -> C:\Windows\System32\WindowsAnytimeUpgradeUI.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk -> C:\Program Files\DVD Maker\DVDMaker.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Co nowego w ostatniej wersji.lnk -> C:\Program Files\WinRAR\CoNowego.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Podręcznik RARa dla konsoli.lnk -> C:\Program Files\WinRAR\Rar.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Pomoc WinRARa.lnk -> C:\Program Files\WinRAR\WinRAR.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpyHunter4\Deinstalacja programu SpyHunter4.lnk -> Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpyHunter4\SpyHunter4.lnk -> Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\File Shredder.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\SDShred.exe (Safer Networking Limited) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Spybot - Search & Destroy.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe (Safer Networking Limited) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Tutorial.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\Help\English.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Uninstall Spybot-S&D.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy\Update Spybot-S&D.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\SDUpdate.exe (Safer Networking Limited) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk -> C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games\Narzędzie wyboru języka GTA V.lnk -> C:\Program Files\Rockstar Games\Grand Theft Auto V\GTAVLanguageSelect.exe (Rockstar Games.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games\Grand Theft Auto V\Grand Theft Auto V.lnk -> C:\Program Files\Rockstar Games\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real Alternative\Media Player Classic.lnk -> C:\Program Files (x86)\Real Alternative\Media Player Classic\mplayerc.exe (Gabest) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real Alternative\Uninstall\Uninstall Real Alternative.lnk -> C:\Program Files (x86)\Real Alternative\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real Alternative\Help\FAQ.lnk -> C:\Program Files (x86)\Real Alternative\Info\faq.htm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real Alternative\Configuration\RealMedia.lnk -> C:\Program Files (x86)\Real Alternative\settings.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Narzędzie zgłaszania błędów Origin.lnk -> C:\Program Files (x86)\Origin\OriginER.exe (Electronic Arts) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Origin.lnk -> C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin\Usuń Origin.lnk -> C:\Program Files (x86)\Origin\OriginUninstall.exe (Electronic Arts) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\GeForce Experience.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision Photo Viewer.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe (NVIDIA Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3\MSI Kombustor 3.lnk -> C:\Program Files\MSI Kombustor 3\MSI_Kombustor.exe (MSI) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3\Uninstall MSI Kombustor v3.lnk -> C:\Program Files\MSI Kombustor 3\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI\Live Update\Deinstalacja programu Live Update.lnk -> C:\Program Files (x86)\MSI\Live Update\unins001.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI\Live Update\Live Update.lnk -> C:\Program Files (x86)\MSI\Live Update\Live Update.exe (Micro-Star INT'L CO., LTD.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag\Historia wersji.lnk -> C:\Program Files (x86)\Mp3tag\Mp3tagVersion.txt () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag\Mp3tag.lnk -> C:\Program Files (x86)\Mp3tag\Mp3tag.exe (Florian Heidenreich) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag\Pomoc dla Mp3tag (w jęz. angielskim).lnk -> C:\Program Files (x86)\Mp3tag\help\index.html () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3 Knife\Mp3 Knife on the Web.lnk -> C:\Program Files (x86)\Mp3 Knife\Mp3 Knife.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3 Knife\Mp3 Knife.lnk -> C:\Program Files (x86)\Mp3 Knife\Mp3 Knife.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE\Games for Windows - LIVE.lnk -> C:\Program Files (x86)\Microsoft Games for Windows - LIVE\Client\GFWLive.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Create Recovery Disc.lnk -> C:\Windows\System32\recdisc.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Remote Assistance.lnk -> C:\Windows\System32\msra.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\javacpl.exe (Oracle Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Small Business Advantage\Small Business Advantage.lnk -> C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage Next\Sba.exe (Intel Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\Aktualizacja.lnk -> C:\Program Files (x86)\HP\HP Software Update\hpwucli.exe (Hewlett-Packard) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photo Creations\HP Photo Creations.lnk -> C:\Program Files (x86)\HP Photo Creations\PhotoProduct.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Photo Creations\Odinstaluj HP Photo Creations.lnk -> C:\Program Files (x86)\HP Photo Creations\uninst.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 1510 series\HP Scan.lnk -> C:\Program Files (x86)\HP\HP Deskjet 1510 series\bin\HPScan.exe (Hewlett-Packard Co.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 1510 series\Instalacja i oprogramowanie drukarki.lnk -> C:\Program Files\HP\HP Deskjet 1510 series\Bin\USBSetupLauncher.exe (Hewlett-Packard Co.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 1510 series\Narzędzia online HP do diagnostyki drukowania.lnk -> C:\Program Files\HP\HP Deskjet 1510 series\DiagnosticToolsShortcut.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 1510 series\Pomoc.lnk -> C:\Program Files (x86)\HP\HP Deskjet 1510 series\bin\HelpViewer\hpqlpvwr.exe (Hewlett-Packard Co.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 1510 series\Strona wsparcia produktu.lnk -> C:\Program Files\HP\HP Deskjet 1510 series\ProductSupportShortcut.url () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 1510 series\Zakup materiałów eksploatacyjnych.lnk -> C:\Program Files\HP\HP Deskjet 1510 series\Bin\hpqDTSS.exe (Hewlett-Packard Co.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Docs.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Drive.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Sheets.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Slides.lnk -> C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player\GOM Player.lnk -> C:\Program Files (x86)\GRETECH\GomPlayer\GOM.exe (GOM & Company) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player\GOM Wizard.lnk -> C:\Program Files (x86)\GRETECH\GomPlayer\GomWiz.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player\Uninstall.lnk -> C:\Program Files (x86)\GRETECH\GomPlayer\Uninstall.exe (GOM & Company) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Chess.lnk -> C:\Program Files\Microsoft Games\Chess\Chess.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Fallout 3.lnk -> [LF6"pH,R GFSIad,Klj^mc-$A Post Apocalyptic Role Playing Game(1SPSXFL8C&m] Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\FreeCell.lnk -> C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\GameExplorer.lnk -> C:\Windows\System32\gameux.dll (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Games for Windows - LIVE.lnk -> [LF6"pH,R GFSI^`S&Rw.C%Games for Windows - LIVE(1SPSXFL8C&m] Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Hearts.lnk -> C:\Program Files\Microsoft Games\Hearts\Hearts.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Backgammon.lnk -> C:\Program Files\Microsoft Games\Multiplayer\Backgammon\bckgzm.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Checkers.lnk -> C:\Program Files\Microsoft Games\Multiplayer\Checkers\chkrzm.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Spades.lnk -> C:\Program Files\Microsoft Games\Multiplayer\Spades\shvlzm.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Mahjong.lnk -> C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Minesweeper.lnk -> C:\Program Files\Microsoft Games\Minesweeper\Minesweeper.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\More Games from Microsoft.lnk -> C:\Program Files\Microsoft Games\More Games\MoreGames.dll (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Purble Place.lnk -> C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Solitaire.lnk -> C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Spider Solitaire.lnk -> C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Desktop Restore\Dektop Restore Readme.lnk -> C:\Program Files\Desktop Restore\DR Readme.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Desktop Restore\Uninstall Desktop Restore.lnk -> C:\Program Files\Desktop Restore\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite\DTGadget.lnk -> C:\Program Files (x86)\DAEMON Tools Lite\DT.gadget () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite\SPTD Setup.lnk -> C:\Program Files (x86)\DAEMON Tools Lite\SPTDinst-x64.exe (Duplex Secure Ltd.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo WinOptimizer 7\Ashampoo WinOptimizer 7.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\WO7.exe (Ashampoo Development GmbH & Co. KG) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo WinOptimizer 7\Czytaj.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\readme_pl.rtf () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo WinOptimizer 7\Deinstalacja programu Ashampoo WinOptimizer 7.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\unins000.exe () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo\Ashampoo WinOptimizer 7\Pomoc.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Translation\help.chm () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Data Sources (ODBC).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc () Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\displayswitch.lnk -> C:\Windows\System32\displayswitch.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sync Center.lnk -> C:\Windows\System32\mobsync.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\Windowspowershell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Restore.lnk -> C:\Windows\System32\rstrui.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer Reports.lnk -> C:\Windows\System32\migwiz\PostMig.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{B16461B0-2C08-4B7F-AFC7-895E6DE3632D}\PlayTasks\2\Readme.lnk -> C:\Program Files (x86)\Bethesda Softworks\Fallout 3\readme.txt () Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{B16461B0-2C08-4B7F-AFC7-895E6DE3632D}\PlayTasks\1\Instrukcja.lnk -> C:\Program Files (x86)\Bethesda Softworks\Fallout 3\manual.pdf () Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{B16461B0-2C08-4B7F-AFC7-895E6DE3632D}\PlayTasks\0\Graj.lnk -> C:\Program Files (x86)\Bethesda Softworks\Fallout 3\FalloutLauncher.exe (Bethesda Softworks) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{5C46D656-B97E-461B-98C7-0E75C53F5EB3}\SupportTasks\1\Register Far Cry® 2.lnk -> G:\hxxps:\secure.ubi.com\login\ Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{5C46D656-B97E-461B-98C7-0E75C53F5EB3}\PlayTasks\5\Game Manual.lnk -> C:\Program Files (x86)\Ubisoft\Far Cry 2\Manual.pdf (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{5C46D656-B97E-461B-98C7-0E75C53F5EB3}\PlayTasks\4\Dedicated Server.lnk -> C:\Program Files (x86)\Ubisoft\Far Cry 2\bin\FC2ServerLauncher.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{5C46D656-B97E-461B-98C7-0E75C53F5EB3}\PlayTasks\3\Benchmark.lnk -> C:\Program Files (x86)\Ubisoft\Far Cry 2\bin\FC2BenchmarkTool.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{5C46D656-B97E-461B-98C7-0E75C53F5EB3}\PlayTasks\2\Editor.lnk -> C:\Program Files (x86)\Ubisoft\Far Cry 2\bin\FC2Editor.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{5C46D656-B97E-461B-98C7-0E75C53F5EB3}\PlayTasks\1\Play Far Cry® 2 (Safe Mode).lnk -> C:\Program Files (x86)\Ubisoft\Far Cry 2\bin\FarCry2.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{5C46D656-B97E-461B-98C7-0E75C53F5EB3}\PlayTasks\0\Play Far Cry® 2.lnk -> C:\Program Files (x86)\Ubisoft\Far Cry 2\bin\FC2Launcher.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{3758A713-102D-48B4-B0CC-8BBF206906EB}\PlayTasks\4\Detect Tool.lnk -> C:\Program Files (x86)\Ubisoft\Assassin's Creed\Detection\Detection.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{3758A713-102D-48B4-B0CC-8BBF206906EB}\PlayTasks\3\Game Manual.lnk -> C:\Program Files (x86)\Ubisoft\Assassin's Creed\Support\Manual\AssassinsCreed.pdf (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{3758A713-102D-48B4-B0CC-8BBF206906EB}\PlayTasks\2\ReadMe.txt.lnk -> C:\Program Files (x86)\Ubisoft\Assassin's Creed\Support\ReadMe\ReadMe.txt (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{3758A713-102D-48B4-B0CC-8BBF206906EB}\PlayTasks\1\Registration.lnk -> C:\Program Files (x86)\Ubisoft\Assassin's Creed\Register\RegistrationReminder.exe (Brak pliku) Shortcut: C:\ProgramData\Microsoft\Windows\GameExplorer\{3758A713-102D-48B4-B0CC-8BBF206906EB}\PlayTasks\0\Play.lnk -> C:\Program Files (x86)\Ubisoft\Assassin's Creed\AssassinsCreed_Launcher.exe (Brak pliku) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Public\Desktop\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe (Malwarebytes) Shortcut: C:\Users\User\Links\Desktop.lnk -> C:\Users\User\Desktop () Shortcut: C:\Users\User\Links\Downloads.lnk -> C:\Users\User\Downloads () Shortcut: C:\Users\User\Links\RecentPlaces.lnk -> [::{22877A6D-37A1-461A-91B0-DBDA5AAEBC99}] Shortcut: C:\Users\User\Documents\Youtube Downloader HD.lnk -> C:\Program Files (x86)\Youtube Downloader HD\YouTubeDownloaderHD.exe (Brak pliku) Shortcut: C:\Users\User\Desktop\PROGAMY\Ashampoo WinOptimizer 7.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\WO7.exe (Ashampoo Development GmbH & Co. KG) Shortcut: C:\Users\User\Desktop\PROGAMY\Avast Free Antivirus.lnk -> C:\Program Files\AVAST Software\Avast\AvastUI.exe (Brak pliku) Shortcut: C:\Users\User\Desktop\PROGAMY\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd) Shortcut: C:\Users\User\Desktop\PROGAMY\DAEMON Tools Lite.lnk -> C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) Shortcut: C:\Users\User\Desktop\PROGAMY\G DATA INTERNET SECURITY.lnk -> C:\Program Files (x86)\G DATA\InternetSecurity\GUI\GDSC.exe (Brak pliku) Shortcut: C:\Users\User\Desktop\PROGAMY\GeForce Experience.lnk -> C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation) Shortcut: C:\Users\User\Desktop\PROGAMY\HP Print and Scan Doctor.lnk -> C:\Program Files (x86)\HP\Diagnostics\PSDR\HPPSDr.exe () Shortcut: C:\Users\User\Desktop\PROGAMY\Malwarebytes' Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Brak pliku) Shortcut: C:\Users\User\Desktop\PROGAMY\Mp3tag.lnk -> C:\Program Files (x86)\Mp3tag\Mp3tag.exe (Florian Heidenreich) Shortcut: C:\Users\User\Desktop\PROGAMY\Origin.lnk -> C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts) Shortcut: C:\Users\User\Desktop\PROGAMY\Skype.lnk -> C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.) Shortcut: C:\Users\User\Desktop\PROGAMY\Spybot - Search & Destroy.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe (Safer Networking Limited) Shortcut: C:\Users\User\Desktop\PROGAMY\Zakup materiałów eksploatacyjnych - HP Deskjet 1510 series.lnk -> C:\Program Files\HP\HP Deskjet 1510 series\Bin\hpqDTSS.exe (Hewlett-Packard Co.) Shortcut: C:\Users\User\Desktop\PROGAMY\µTorrent.lnk -> C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) Shortcut: C:\Users\User\Desktop\GRY\American Truck Simulator.lnk -> D:\Games\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software) Shortcut: C:\Users\User\Desktop\GRY\Car Mechanic Simulator 2018.lnk -> D:\Games\Car Mechanic Simulator 2018\cms2018.exe () Shortcut: C:\Users\User\Desktop\GRY\Fallout 3.lnk -> [LF6"pH,R GFSIad,Klj^mc-] Shortcut: C:\Users\User\Desktop\GRY\Grand Theft Auto V.lnk -> C:\Program Files\Rockstar Games\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk -> C:\Program Files (x86)\GRETECH\GomPlayer\GOM.exe (GOM & Company) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk -> C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Co nowego w ostatniej wersji.lnk -> C:\Program Files\WinRAR\CoNowego.txt () Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Podręcznik RARa dla konsoli.lnk -> C:\Program Files\WinRAR\Rar.txt () Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Pomoc WinRARa.lnk -> C:\Program Files\WinRAR\WinRAR.chm () Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance\Help.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup\Google Photos Backup.lnk -> C:\Users\User\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe (Google, Inc) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup\Uninstall.lnk -> C:\Users\User\AppData\Local\Programs\Google\Google Photos Backup\uninstall.exe (Google) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\Gothic 3™.lnk -> [LF6"pH,R GFSI濻ЛB9;^pCGothic 3"!(1SPSXFL8C&m] Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\Need for Speed Carbon™.lnk -> [LF6"pH,R GFSIn@ [LF6"pH,R GFSI&>k@9Need for Speed Underground 2"!(1SPSXFL8C&m] Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games\Unreal Tournament.lnk -> [LF6"pH,R GFSIxB$Unreal Tournament(1SPSXFL8C&m] Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\computer.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk -> C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe (Safer Networking Limited) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk -> C:\Users\User\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\57c1b4227860d00a\Google Chrome.lnk -> C:\Program Files (x86)\Bigold\Application\chrome.exe (Brak pliku) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\57c1b4227860d00a\Łukasz - Chrome.lnk -> C:\Program Files (x86)\Bigold\Application\chrome.exe (Brak pliku) Shortcut: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Bigold\Application\chrome.exe (Brak pliku) Shortcut: C:\Users\User\AppData\Local\Microsoft\Windows\GameExplorer\{BBBFE615-D07F-429B-A839-3BF85E0C7043}\PlayTasks\0\Zagraj.lnk -> C:\Program Files (x86)\JoWooD Productions Software AG\Gothic III\Gothic3.exe (Brak pliku) Shortcut: C:\Users\User\AppData\Local\Microsoft\Windows\GameExplorer\{B16461B0-2C08-4B7F-AFC7-895E6DE3632D}\PlayTasks\2\Readme.lnk -> C:\Program Files (x86)\Bethesda Softworks\Fallout 3\readme.txt () Shortcut: C:\Users\User\AppData\Local\Microsoft\Windows\GameExplorer\{B16461B0-2C08-4B7F-AFC7-895E6DE3632D}\PlayTasks\1\Instrukcja.lnk -> C:\Program Files (x86)\Bethesda Softworks\Fallout 3\manual.pdf () Shortcut: C:\Users\User\AppData\Local\Microsoft\Windows\GameExplorer\{B16461B0-2C08-4B7F-AFC7-895E6DE3632D}\PlayTasks\0\Graj.lnk -> C:\Program Files (x86)\Bethesda Softworks\Fallout 3\FalloutLauncher.exe (Bethesda Softworks) ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk -> C:\Windows\System32\wuapp.exe (Microsoft Corporation) -> startmenu ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) -> /showgadgets ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk -> C:\Program Files\Intel Security\True Key\application\truekey.exe (McAfee Inc) -> --open-source=startmenu ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games\Grand Theft Auto V\GTA Online.lnk -> C:\Program Files\Rockstar Games\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games) -> -StraightIntoFreemode ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\3D Vision preview pack 1.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe (NVIDIA Corporation) -> /show ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\Disable 3D Vision.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe (NVIDIA Corporation) -> /disable ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\3D Vision\Enable 3D Vision.lnk -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstlink.exe (NVIDIA Corporation) -> /enable ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Polski)\Microsoft Excel Starter 2010.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Excel Starter 2010 9014006604150000" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Polski)\Microsoft Word Starter 2010.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Word Starter 2010 9014006604150000" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Polski)\Narzędzia pakietu Microsoft Office 2010\Centrum Microsoft Office 2010 Upload Center.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Centrum Microsoft Office 2010 Upload Center 9014006604150000" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Polski)\Narzędzia pakietu Microsoft Office 2010\Microsoft Clip Organizer.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Clip Organizer 9014006604150000" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Polski)\Narzędzia pakietu Microsoft Office 2010\Microsoft Office Picture Manager.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Office Picture Manager 9014006604150000" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Polski)\Narzędzia pakietu Microsoft Office 2010\Microsoft Office Starter To-Go Device Manager 2010.lnk -> C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Office Starter To-Go Device Manager 2010 9014006604150000" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\Uninstall Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\unins000.exe () -> /LOG ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Backup and Restore Center.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.BackupAndRestore ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\About Java.lnk -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\javacpl.exe (Oracle Corporation) -> -tab about ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Check For Updates.lnk -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\javacpl.exe (Oracle Corporation) -> -tab update ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel(R) Update Manager\Intel(R) Update Manager.lnk -> C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe (Intel Corporation) -> --showui ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 1510 series\Badanie mające na celu poprawę produktów HP.lnk -> C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPCustPartic.exe (Hewlett-Packard Co.) -> /changesettings /UA 12.5 /DDV 0x0b00 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 1510 series\HP Deskjet 1510 series.lnk -> C:\Program Files\HP\HP Deskjet 1510 series\Bin\HP Deskjet 1510 series.exe (Hewlett-Packard Co.) -> -Start UDCDevicePage ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP Deskjet 1510 series\Odinstaluj.lnk -> C:\Windows\SysWOW64\msiexec.exe (Microsoft Corporation) -> /qb /x {FE2C2D56-E00E-445C-8890-5DE30F7C1C0D} ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -NoExit -ImportSystemModules ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) -> /open ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Welcome Center.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\User\Desktop\PROGAMY\1-Click-Optimizer.lnk -> C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\WO7.exe (Ashampoo Development GmbH & Co. KG) -> -OCO ShortcutWithArgument: C:\Users\User\Desktop\PROGAMY\HP Deskjet 1510 series.lnk -> C:\Program Files\HP\HP Deskjet 1510 series\Bin\HP Deskjet 1510 series.exe (Hewlett-Packard Co.) -> -Start UDCDevicePage ShortcutWithArgument: C:\Users\User\Desktop\PROGAMY\True Key.lnk -> C:\Program Files\Intel Security\True Key\application\truekey.exe (McAfee Inc) -> --open-source=dtopicon ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM Singleplayer.lnk -> C:\Users\User\AppData\Local\FiveM\FiveM.exe (cfx-collective) -> -sp ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -extoff ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1 ShortcutWithArgument: C:\Users\User\AppData\Local\FiveM\FiveM Singleplayer.lnk -> C:\Users\User\AppData\Local\FiveM\FiveM.exe (cfx-collective) -> -sp InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3\Afterburner homepage.url -> URL: hxxp://event.msi.com/vga/afterburner InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3\Kombustor and Afterburner forum.url -> URL: hxxp://forums.guru3d.com/forumdisplay.php?f=55 InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3\Kombustor latest news.url -> URL: hxxp://www.ozone3d.net/redirect.php?id=210 InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3\What is Kombustor.url -> URL: hxxp://www.ozone3d.net/redirect.php?id=223 InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI\Live Update\MSI Website.url -> URL: hxxp://www.msi.com/ InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag\Strona WWW Mp3tag.url -> URL: hxxp://www.mp3tag.de InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Get Help.url -> URL: hxxp://java.com/help InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Visit Java.com.url -> URL: hxxp://java.com/ InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player\Homepage.url -> URL: hxxp://www.gomlab.com/ InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner Homepage.url -> URL: hxxp://www.ccleaner.com/ccleaner InternetURL: C:\Users\User\Favorites\Windows Live\Galeria gadżetów Windows Live.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkID=70742 InternetURL: C:\Users\User\Favorites\Windows Live\Poczta usługi Windows Live.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72681 InternetURL: C:\Users\User\Favorites\Windows Live\Programy usługi Windows Live.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72700 InternetURL: C:\Users\User\Favorites\Windows Live\Windows Live Spaces.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72682 InternetURL: C:\Users\User\Favorites\MSN — witryny sieci Web\MSN Gospodarka.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=68923 InternetURL: C:\Users\User\Favorites\MSN — witryny sieci Web\MSN Rozrywka.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=68924 InternetURL: C:\Users\User\Favorites\MSN — witryny sieci Web\MSN Sport.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=68921 InternetURL: C:\Users\User\Favorites\MSN — witryny sieci Web\MSN Technologie.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=55143 InternetURL: C:\Users\User\Favorites\MSN — witryny sieci Web\MSN Wideo.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=68922 InternetURL: C:\Users\User\Favorites\MSN — witryny sieci Web\Portal MSN.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=54729 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\Centrum bezpieczeństwa Microsoft.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkID=72887 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\Dodatki programu Internet Explorer.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=50893 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\Microsoft Office Online.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72885 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\Microsoft Store.url -> URL: hxxp://go.microsoft.com/fwlink/?linkid=140813 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\Microsoft Technet.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72886 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\Microsoft w Polsce.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72520 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\Oryginalne oprogramowanie firmy Microsoft.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72900 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\Strona główna programu Internet Explorer.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72186 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\Strona główna systemu Windows.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72629 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\Technologia RSS.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72889 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\W domu.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72406 InternetURL: C:\Users\User\Favorites\Microsoft — witryny sieci Web\W pracy.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=72407 InternetURL: C:\Users\User\Favorites\Links for Polska\Bezpieczeństwo w trybie online.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=142211 InternetURL: C:\Users\User\Favorites\Links for Polska\Bezpieczny Internet.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=129626 InternetURL: C:\Users\User\Favorites\Links for Polska\Kultura.pl.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=129625 InternetURL: C:\Users\User\Favorites\Links for Polska\Pogodynka.pl — oficjalny serwis pogodowy IMGW.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=129624 InternetURL: C:\Users\User\Favorites\Links for Polska\Polska.pl.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=129622 InternetURL: C:\Users\User\Favorites\Links\Galeria obiektów Web Slice.url -> URL: hxxp://go.microsoft.com/fwlink/?LinkId=121315 InternetURL: C:\Users\User\Favorites\Links\Sugerowane witryny.url -> URL: hxxps://ieonline.microsoft.com/#ieslice InternetURL: C:\Users\User\Favorites\Links\Интернет.url -> URL: hxxp://imatiro.ru/?utm_source=favorites03&utm_content=68ebaccd633ae9c8b5aa86b782b375b8&utm_term=EB4224A8E0A7AAB90DEC6554B9A66BAD&utm_d=20161112 InternetURL: C:\Users\User\Downloads\Car Mechanic Simulator 2018 [FitGirl Repack]\FitGirl releases on 1337x.url -> URL: hxxps://1337x.to/user/FitGirl/ InternetURL: C:\Users\User\Downloads\Car Mechanic Simulator 2018 [FitGirl Repack]\FitGirl releases on KAT.url -> URL: hxxps://katcr.co/new/account-details.php?id=35 InternetURL: C:\Users\User\Downloads\3DMGAME-Need.for.Speed.Deluxe.Edition.Multi7-3DM\2016年全部热门单机游戏及汉化下载.url -> BASEURL: hxxp://bbs.3dmgame.com/thread-5007464-1-1.html URL: hxxp://bbs.3dmgame.com/thread-5007464-1-1.html InternetURL: C:\Users\User\Downloads\3DMGAME-Need.for.Speed.Deluxe.Edition.Multi7-3DM\www.3dmgame.com.url -> URL: hxxp://www.3dmgame.com/ InternetURL: C:\Users\User\Downloads\3DMGAME-American.Truck.Simulator.v1.6.1.6s.Incl.DLC.Multi23.Cracked-3DM\2017年全部热门单机游戏及汉化下载.url -> URL: hxxp://bbs.3dmgame.com/thread-5495881-1-1.html InternetURL: C:\Users\User\Downloads\3DMGAME-American.Truck.Simulator.v1.6.1.6s.Incl.DLC.Multi23.Cracked-3DM\www.3dmgame.com.url -> URL: hxxp://www.3dmgame.com/ ==================== Koniec Shortcut.txt =============================