Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 11-12-2021 Uruchomiony przez bbbbbbbbbbbbbbbbbb (administrator) DESKTOP-8LH5RKS (Micro-Star International Co., Ltd. MS-7C56) (20-12-2021 03:27:01) Uruchomiony z F:\ Załadowane profile: bbbbbbbbbbbbbbbbbb Platform: Microsoft Windows 10 Pro Wersja 21H2 19044.1415 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_19c79fb6254e3b11\Display.NvContainer\NVDisplay.Container.exe <2> (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (SurfRight B.V. -> SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18630280 2018-05-07] (Logitech Inc -> Logitech Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339000 2021-10-26] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-4120046092-2009241652-2511867223-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-4120046092-2009241652-2511867223-1001\...\Run: [FACEIT] => C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\FACEIT\update.exe [2277496 2021-12-14] (FACE IT LIMITED -> ) HKU\S-1-5-21-4120046092-2009241652-2511867223-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35373696 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-4120046092-2009241652-2511867223-1001\...\Run: [IQOS] => C:\Program Files (x86)\IQOS\PL.IQOS.exe [18424968 2021-07-06] (PNN SOFT, LLC -> Philip Morris International) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {047CE70C-AE5E-4862-BC37-7AE3F7C24D3C} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [220816 2019-09-30] (Tweaking LLC -> Tweaking.com) Task: {05C403FC-23C7-4CCB-B90B-192714B60944} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {077EB042-191C-42BE-A311-98D102BF0111} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-12-07] (Piriform Software Ltd -> Piriform) Task: {32B34193-751D-44AB-BF5A-FD5D934437E0} - System32\Tasks\Opera scheduled Autoupdate 1639449549 => C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Programs\Opera\launcher.exe [2256592 2021-12-14] (Opera Software AS -> Opera Software) Task: {3BB0C0F1-661F-4A17-9EAF-B7F5CC8FBD3F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4112F560-55BE-41F6-A3C8-EB6FDDD98753} - System32\Tasks\GPU Tweak II => C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe [12807136 2020-07-22] (ASUSTEK COMPUTER INC. -> ASUSTeK COMPUTER INC.) Task: {42DD2FE3-380D-46D0-B504-73DCB6064D03} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {613B2FA0-D77D-481B-89CE-97311D8BAE58} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.) Task: {6EB42179-B3EF-4DC0-BFAB-EAB8242ADB8D} - System32\Tasks\CCleanerSkipUAC - bbbbbbbbbbbbbbbbbb => C:\Program Files\CCleaner\CCleaner.exe [29442688 2021-12-07] (Piriform Software Ltd -> Piriform Software Ltd) Task: {AECE7549-11BC-4E3F-8134-D0E4E0B02EDC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D77B2999-EBF7-465F-A29E-9DB6ABB98647} - System32\Tasks\MicrosoftEdgeShadowStackRollbackTask => C:\Program Files (x86)\Microsoft\Edge\Application\96.0.1054.62\Installer\setup.exe [2873728 2021-12-19] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{a8ce2441-b2a4-441a-aabf-b0a2cce2dda3}: [DhcpNameServer] 192.168.8.1 Edge: ======= Edge Profile: C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-20] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-12-14] Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Opera: ======= OPR Profile: C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Opera Software\Opera Stable [2021-12-20] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Bloker reklam AdGuard) - C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Opera Software\Opera Stable\Extensions\bopfaehpakahokaelnomggbohfbimcia [2021-12-16] OPR Extension: (Rich Hints Agent) - C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-12-14] OPR Extension: (Amazon Assistant Promotion) - C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-12-14] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) "hitmanpro37" => serwis nie został odblokowany. <==== UWAGA HKLM\SYSTEM\ControlSet001\Services\hitmanpro37 => \??\C:\Windows\system32\drivers\hitmanpro37.sys <==== UWAGA (Rootkit!/Zablokowana usługa) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.) S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.42\atkexComSvc.exe [442416 2019-09-03] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [23235528 2021-12-14] (FACE IT LIMITED -> ) R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [151496 2021-12-20] (SurfRight B.V. -> SurfRight B.V.) R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-05-07] (Logitech Inc -> Logitech Inc.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7848632 2021-12-14] (Malwarebytes Inc -> Malwarebytes) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6138112 2021-12-14] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher -> Microsoft Corporation) S3 Browser; %SystemRoot%\System32\browser.dll [X] R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_19c79fb6254e3b11\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_19c79fb6254e3b11\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-04-09] (ASUSTeK Computer Inc. -> ) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [160176 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R0 FACEIT; C:\Windows\System32\Drivers\FACEIT.sys [12846128 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> ) R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [34064 2019-01-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech) R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [67736 2018-05-07] (Logitech Inc -> Logitech Inc.) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [210352 2021-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-12-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [193448 2021-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [69040 2021-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-12-14] (Malwarebytes Inc -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [149424 2021-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2020-04-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) R3 VSScanner; C:\Windows\System32\DRIVERS\vsscanner.sys [29752 2018-06-25] (Microsoft Windows Hardware Compatibility Publisher -> VoodooSoft, LLC) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows -> Microsoft Corporation) U3 aswbdisk; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-12-20 03:25 - 2021-12-20 03:26 - 000000000 ____D C:\ProgramData\HitmanPro 2021-12-20 03:25 - 2021-12-20 03:25 - 000002008 _____ C:\Users\Public\Desktop\HitmanPro.lnk 2021-12-20 03:25 - 2021-12-20 03:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro 2021-12-20 03:25 - 2021-12-20 03:25 - 000000000 ____D C:\Program Files\HitmanPro 2021-12-20 03:24 - 2021-12-20 03:24 - 000000000 ____D C:\Program Files (x86)\Realtek 2021-12-20 03:24 - 2021-11-28 19:22 - 001149944 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys 2021-12-20 03:18 - 2021-12-20 03:18 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\LocalLow\IGDump 2021-12-20 02:58 - 2021-12-20 02:58 - 000193448 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2021-12-20 02:58 - 2021-12-20 02:58 - 000149424 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2021-12-20 02:58 - 2021-12-20 02:58 - 000069040 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2021-12-20 00:41 - 2021-12-20 00:41 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\Doctor Web 2021-12-20 00:40 - 2021-12-20 00:40 - 263058152 _____ C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\09b94cui.exe 2021-12-19 22:42 - 2021-12-19 22:42 - 003594016 _____ (RCS LT) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\CCSetup.exe 2021-12-19 22:36 - 2021-12-19 23:55 - 000000000 ____D C:\KVRT2020_Data 2021-12-19 22:35 - 2021-12-19 22:36 - 111205888 _____ (AO Kaspersky Lab) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\KVRT (1).exe 2021-12-18 02:47 - 2021-12-20 03:22 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\CrashDumps 2021-12-16 15:32 - 2021-12-20 03:27 - 000000000 ____D C:\FRST 2021-12-16 15:32 - 2021-12-16 15:32 - 013311448 _____ (ESET) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\esetonlinescanner.exe 2021-12-16 15:30 - 2021-12-20 03:25 - 000000000 ____D C:\AdwCleaner 2021-12-16 15:30 - 2021-12-16 15:30 - 008540344 _____ (Malwarebytes) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\adwcleaner_8.3.1.exe 2021-12-16 15:30 - 2021-12-16 15:30 - 000000000 ____D C:\Windows\system32\MRT 2021-12-16 15:00 - 2021-12-16 15:43 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\IQOS 2021-12-16 15:00 - 2021-12-16 15:00 - 000001907 _____ C:\Users\Public\Desktop\IQOS.lnk 2021-12-16 15:00 - 2021-12-16 15:00 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Philip_Morris_Internation 2021-12-16 15:00 - 2021-12-16 15:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IQOS 2021-12-16 15:00 - 2021-12-16 15:00 - 000000000 ____D C:\Program Files (x86)\IQOS 2021-12-16 14:59 - 2021-12-16 14:59 - 096780728 _____ (PMI) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\IQOS Install.STORE.4.0.682.0.5.exe 2021-12-16 14:57 - 2021-12-16 14:57 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Microsoft\Windows\Start Menu\Acrylic Suite 2021-12-16 14:57 - 2021-12-16 14:57 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Acrylic Wi-Fi Home 2021-12-16 14:56 - 2021-12-16 14:57 - 000000000 ____D C:\Program Files\Acrylic Suite 2021-12-16 14:56 - 2021-12-16 14:56 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Acrylic Suite 2021-12-16 14:56 - 2021-12-16 14:56 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Acrylic Downloader 2021-12-15 10:52 - 2021-12-15 10:52 - 000002956 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - bbbbbbbbbbbbbbbbbb 2021-12-15 03:56 - 2021-12-20 03:26 - 000000000 ____D C:\Program Files\CCleaner 2021-12-15 03:56 - 2021-12-15 10:52 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update 2021-12-15 03:56 - 2021-12-15 03:56 - 024538208 _____ (Piriform Software Ltd) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\ccsetup572_slim.exe 2021-12-15 03:56 - 2021-12-15 03:56 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2021-12-15 03:56 - 2021-12-15 03:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2021-12-15 03:53 - 2021-12-15 03:55 - 000003226 _____ C:\Users\bbbbbbbbbbbbbbbbbb\Desktop\unhide.txt 2021-12-15 03:53 - 2021-12-15 03:53 - 000432592 _____ (Bleeping Computer, LLC) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\unhide.exe 2021-12-15 03:43 - 2021-12-15 03:43 - 000892416 _____ (Farbar) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\MiniToolBox.exe 2021-12-15 03:41 - 2021-12-15 03:41 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\rkill.exe 2021-12-15 03:41 - 2021-12-15 03:41 - 000002152 _____ C:\Users\bbbbbbbbbbbbbbbbbb\Desktop\Rkill.txt 2021-12-15 03:29 - 2021-12-15 10:52 - 000000000 ____D C:\ProgramData\Avast Software 2021-12-14 23:44 - 2021-12-14 23:44 - 000000000 ____D C:\Windows\SystemTemp 2021-12-14 23:41 - 2021-12-14 23:41 - 000272384 _____ C:\Windows\system32\TpmTool.exe 2021-12-14 23:41 - 2021-12-14 23:41 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe 2021-12-14 23:41 - 2021-12-14 23:41 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2021-12-14 23:41 - 2021-12-14 23:41 - 000011979 _____ C:\Windows\system32\DrtmAuthTxt.wim 2021-12-14 23:37 - 2021-12-14 23:37 - 000000000 ____D C:\$WinREAgent 2021-12-14 23:30 - 2021-12-14 23:30 - 021919064 _____ (Curio Systems GmbH) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\ExterminateItSetup.exe 2021-12-14 22:38 - 2021-12-14 22:38 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\PeerDistRepub 2021-12-14 22:34 - 2021-12-14 22:34 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\mbam 2021-12-14 22:33 - 2021-12-14 22:33 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2021-12-14 22:33 - 2021-12-14 22:33 - 000210352 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2021-12-14 22:33 - 2021-12-14 22:33 - 000160176 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2021-12-14 22:33 - 2021-12-14 22:33 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys 2021-12-14 22:33 - 2021-12-14 22:33 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2021-12-14 22:33 - 2021-12-14 22:33 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2021-12-14 22:33 - 2021-12-14 22:33 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-12-14 22:33 - 2021-12-14 22:33 - 000000000 ____D C:\Program Files\Malwarebytes 2021-12-14 22:32 - 2021-12-14 22:32 - 204896952 _____ (Malwarebytes) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\MBSetup-0076911.0076911-4.4.10.144.exe 2021-12-14 22:25 - 2021-12-14 22:25 - 013528992 _____ (Sophos Limited) C:\Users\bbbbbbbbbbbbbbbbbb\Downloads\SophosScanAndClean_x64.exe 2021-12-14 22:25 - 2021-12-14 22:25 - 000000000 ____D C:\ProgramData\Sophos 2021-12-14 22:22 - 2021-12-20 03:19 - 000000566 _____ C:\Users\bbbbbbbbbbbbbbbbbb\Desktop\JRT.txt 2021-12-14 10:50 - 2021-12-14 10:50 - 001511156 _____ C:\Users\bbbbbbbbbbbbbbbbbb\Documents\p[llplpl++++++++.pdf 2021-12-14 10:50 - 2021-12-14 10:50 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\LocalLow\Temp 2021-12-14 04:37 - 2021-12-20 02:58 - 000003120 _____ C:\Windows\system32\Tasks\GPU Tweak II 2021-12-14 04:36 - 2021-12-20 03:24 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-12-14 04:36 - 2021-12-14 04:37 - 000000000 ____D C:\ProgramData\ASUS 2021-12-14 04:36 - 2021-12-14 04:36 - 000001140 _____ C:\Users\Public\Desktop\ASUS GPU TweakII.lnk 2021-12-14 04:36 - 2021-12-14 04:36 - 000000000 ____D C:\Windows\Downloaded Installations 2021-12-14 04:36 - 2021-12-14 04:36 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS 2021-12-14 04:36 - 2021-12-14 04:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS 2021-12-14 04:36 - 2021-12-14 04:36 - 000000000 ____D C:\Program Files (x86)\ASUS 2021-12-14 04:36 - 2019-04-09 18:27 - 000033832 _____ C:\Windows\system32\Drivers\AsIO2.sys 2021-12-14 04:36 - 2019-04-09 17:22 - 000120880 _____ C:\Windows\system32\AsIO2.dll 2021-12-14 04:36 - 2019-04-09 17:22 - 000095280 _____ C:\Windows\SysWOW64\AsIO2.dll 2021-12-14 04:36 - 2019-01-22 11:19 - 000034064 ____N (ASUSTeK Computer Inc.) C:\Windows\system32\Drivers\IOMap64.sys 2021-12-14 04:35 - 2021-12-14 04:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2021-12-14 04:35 - 2021-12-14 04:35 - 000000000 ____D C:\Program Files\7-Zip 2021-12-14 04:27 - 2021-12-20 03:22 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\TS3Client 2021-12-14 04:27 - 2021-12-14 04:27 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\Desktop\Nowy folder 2021-12-14 04:19 - 2021-12-14 04:19 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job 2021-12-14 04:17 - 2021-12-14 04:17 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\Documents\League of Legends 2021-12-14 04:15 - 2021-12-14 04:15 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer 2021-12-14 04:15 - 2021-12-14 04:15 - 000000000 ____D C:\Program Files\Reference Assemblies 2021-12-14 04:15 - 2021-12-14 04:15 - 000000000 ____D C:\Program Files\MSBuild 2021-12-14 04:15 - 2021-12-14 04:15 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies 2021-12-14 04:15 - 2021-12-14 04:15 - 000000000 ____D C:\Program Files (x86)\MSBuild 2021-12-14 04:12 - 2021-12-17 01:38 - 000000000 ____D C:\ProgramData\Riot Games 2021-12-14 04:12 - 2021-12-14 04:17 - 000001583 _____ C:\Users\Public\Desktop\League of Legends.lnk 2021-12-14 04:12 - 2021-12-14 04:17 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Riot Games 2021-12-14 04:12 - 2021-12-14 04:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games 2021-12-14 04:12 - 2021-12-14 04:12 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games 2021-12-14 04:11 - 2021-12-14 04:11 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk 2021-12-14 04:11 - 2021-12-14 04:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2021-12-14 04:10 - 2021-12-14 04:11 - 000000000 ____D C:\Program Files\iTunes 2021-12-14 04:10 - 2021-12-14 04:10 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2021-12-14 04:10 - 2021-12-14 04:10 - 000000000 ____D C:\Windows\system32\Tasks\Apple 2021-12-14 04:10 - 2021-12-14 04:10 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Apple Computer 2021-12-14 04:10 - 2021-12-14 04:10 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Apple Computer 2021-12-14 04:10 - 2021-12-14 04:10 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Apple 2021-12-14 04:10 - 2021-12-14 04:10 - 000000000 ____D C:\ProgramData\Apple Computer 2021-12-14 04:10 - 2021-12-14 04:10 - 000000000 ____D C:\ProgramData\Apple 2021-12-14 04:10 - 2021-12-14 04:10 - 000000000 ____D C:\Program Files\Common Files\Apple 2021-12-14 04:10 - 2021-12-14 04:10 - 000000000 ____D C:\Program Files\Bonjour 2021-12-14 04:10 - 2021-12-14 04:10 - 000000000 ____D C:\Program Files (x86)\Bonjour 2021-12-14 04:10 - 2021-12-14 04:10 - 000000000 ____D C:\Program Files (x86)\Apple Software Update 2021-12-14 03:52 - 2021-12-14 03:53 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\log 2021-12-14 03:45 - 2021-12-14 03:45 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\OneDrive 2021-12-14 03:39 - 2021-12-15 10:54 - 000004352 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1639449549 2021-12-14 03:39 - 2021-12-15 10:54 - 000001532 _____ C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2021-12-14 03:39 - 2021-12-14 03:39 - 000001452 _____ C:\Users\bbbbbbbbbbbbbbbbbb\Desktop\Przeglądarka Opera.lnk 2021-12-14 03:39 - 2021-12-14 03:39 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Opera Software 2021-12-14 03:39 - 2021-12-14 03:39 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Comms 2021-12-14 03:37 - 2021-12-14 03:37 - 012846128 _____ C:\Windows\system32\Drivers\FACEIT.sys 2021-12-14 03:37 - 2021-12-14 03:37 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Opera Software 2021-12-14 03:34 - 2021-12-14 03:34 - 000000219 _____ C:\Users\bbbbbbbbbbbbbbbbbb\Desktop\Counter-Strike Global Offensive.url 2021-12-14 03:34 - 2021-12-14 03:34 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2021-12-14 03:33 - 2021-12-14 04:34 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client 2021-12-14 03:33 - 2021-12-14 03:33 - 000001008 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2021-12-14 03:33 - 2021-12-14 03:33 - 000000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk 2021-12-14 03:33 - 2021-12-14 03:33 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Steam 2021-12-14 03:33 - 2021-12-14 03:33 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\CEF 2021-12-14 03:32 - 2021-12-20 03:22 - 000000000 ____D C:\Program Files (x86)\Steam 2021-12-14 03:32 - 2021-12-20 02:58 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\FACEIT 2021-12-14 03:32 - 2021-12-16 15:45 - 000000000 ____D C:\Program Files\FACEIT AC 2021-12-14 03:32 - 2021-12-14 03:45 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\FACEIT 2021-12-14 03:32 - 2021-12-14 03:33 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\SquirrelTemp 2021-12-14 03:32 - 2021-12-14 03:32 - 000002228 _____ C:\Users\bbbbbbbbbbbbbbbbbb\Desktop\FACEIT.lnk 2021-12-14 03:32 - 2021-12-14 03:32 - 000001036 _____ C:\Users\Public\Desktop\Steam.lnk 2021-12-14 03:32 - 2021-12-14 03:32 - 000000892 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT AC.lnk 2021-12-14 03:32 - 2021-12-14 03:32 - 000000880 _____ C:\Users\Public\Desktop\FACEIT AC.lnk 2021-12-14 03:32 - 2021-12-14 03:32 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FACEIT Ltd 2021-12-14 03:32 - 2021-12-14 03:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2021-12-14 03:31 - 2021-12-19 22:07 - 000004782 _____ C:\Windows\system32\Tasks\MicrosoftEdgeShadowStackRollbackTask 2021-12-14 03:31 - 2021-12-14 03:45 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\cache 2021-12-14 03:31 - 2021-12-14 03:35 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\NVIDIA 2021-12-14 03:31 - 2021-12-14 03:31 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\AMD 2021-12-14 03:31 - 2021-12-14 03:31 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\setup 2021-12-14 03:31 - 2021-12-14 03:31 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\RadeonInstaller 2021-12-14 03:31 - 2021-12-14 03:31 - 000000000 ____D C:\Program Files (x86)\AMD 2021-12-14 03:30 - 2021-12-16 15:14 - 000000000 ____D C:\AMD 2021-12-14 03:30 - 2021-12-14 03:30 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2021-12-14 03:30 - 2021-12-14 03:30 - 000000000 ____D C:\ProgramData\AMD 2021-12-14 03:30 - 2021-12-14 03:30 - 000000000 ____D C:\Program Files\AMD 2021-12-14 03:29 - 2021-12-20 03:25 - 000000000 ____D C:\ProgramData\NVIDIA 2021-12-14 03:29 - 2021-12-14 03:29 - 000000000 ____D C:\Windows\system32\lxss 2021-12-14 03:29 - 2021-12-14 03:29 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-12-14 03:29 - 2018-06-25 09:48 - 000029752 _____ (VoodooSoft, LLC) C:\Windows\system32\Drivers\vsscanner.sys 2021-12-14 03:28 - 2021-12-14 03:28 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Logitech 2021-12-14 03:28 - 2021-12-14 03:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2021-12-14 03:28 - 2021-12-14 03:28 - 000000000 ____D C:\ProgramData\LogiShrd 2021-12-14 03:28 - 2021-12-14 03:28 - 000000000 ____D C:\Program Files\Logitech Gaming Software 2021-12-14 03:28 - 2021-09-16 04:28 - 001858672 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2021-12-14 03:28 - 2021-09-16 04:28 - 001858672 _____ C:\Windows\system32\vulkaninfo.exe 2021-12-14 03:28 - 2021-09-16 04:28 - 001474688 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2021-12-14 03:28 - 2021-09-16 04:28 - 001438832 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-12-14 03:28 - 2021-09-16 04:28 - 001438832 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2021-12-14 03:28 - 2021-09-16 04:28 - 001212544 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2021-12-14 03:28 - 2021-09-16 04:28 - 001097832 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2021-12-14 03:28 - 2021-09-16 04:28 - 001097832 _____ C:\Windows\system32\vulkan-1.dll 2021-12-14 03:28 - 2021-09-16 04:28 - 000951920 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2021-12-14 03:28 - 2021-09-16 04:28 - 000951920 _____ C:\Windows\SysWOW64\vulkan-1.dll 2021-12-14 03:28 - 2021-09-16 04:25 - 001520760 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2021-12-14 03:28 - 2021-09-16 04:25 - 001171064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2021-12-14 03:28 - 2021-09-16 04:25 - 000716920 _____ C:\Windows\system32\nvofapi64.dll 2021-12-14 03:28 - 2021-09-16 04:25 - 000676472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2021-12-14 03:28 - 2021-09-16 04:25 - 000645240 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2021-12-14 03:28 - 2021-09-16 04:25 - 000577144 _____ C:\Windows\SysWOW64\nvofapi.dll 2021-12-14 03:28 - 2021-09-16 04:25 - 000564344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2021-12-14 03:28 - 2021-09-16 04:24 - 008854144 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2021-12-14 03:28 - 2021-09-16 04:24 - 002112120 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2021-12-14 03:28 - 2021-09-16 04:24 - 001595512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2021-12-14 03:28 - 2021-09-16 04:24 - 000919160 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2021-12-14 03:28 - 2021-09-16 04:24 - 000750200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2021-12-14 03:28 - 2021-09-16 04:24 - 000706168 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2021-12-14 03:28 - 2021-09-16 04:24 - 000447096 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2021-12-14 03:28 - 2021-09-16 04:23 - 007920760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2021-12-14 03:28 - 2021-09-16 04:23 - 005681280 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2021-12-14 03:28 - 2021-09-16 04:23 - 004987512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2021-12-14 03:28 - 2021-09-16 04:23 - 002925688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2021-12-14 03:28 - 2021-09-16 04:23 - 000849016 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2021-12-14 03:28 - 2021-09-16 04:21 - 006216336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2021-12-14 03:28 - 2021-09-14 04:39 - 000083133 _____ C:\Windows\system32\nvinfo.pb 2021-12-14 03:27 - 2021-12-20 03:02 - 001768508 _____ C:\Windows\system32\PerfStringBackup.INI 2021-12-14 03:27 - 2021-12-16 15:00 - 000000000 ____D C:\ProgramData\Package Cache 2021-12-14 03:27 - 2021-12-14 03:27 - 000003808 _____ C:\Windows\system32\Tasks\Tweaking.com - Windows Repair Tray Icon 2021-12-14 03:27 - 2021-12-14 03:27 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Logitech 2021-12-14 03:27 - 2021-12-14 03:27 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Logishrd 2021-12-14 03:26 - 2021-12-14 03:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com 2021-12-14 03:26 - 2021-12-14 03:27 - 000000000 ____D C:\Program Files (x86)\Tweaking.com 2021-12-14 03:26 - 2021-12-14 03:26 - 000000207 _____ C:\Windows\tweaking.com-regbackup-DESKTOP-8LH5RKS-Windows-10-Pro-(64-bit).dat 2021-12-14 03:26 - 2021-12-14 03:26 - 000000000 ____D C:\RegBackup 2021-12-14 03:25 - 2021-12-16 04:55 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\PlaceholderTileLogoFolder 2021-12-14 03:25 - 2021-12-15 11:00 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4120046092-2009241652-2511867223-1001 2021-12-14 03:25 - 2021-12-14 03:25 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-12-14 03:24 - 2021-12-15 11:00 - 000003406 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4120046092-2009241652-2511867223-1001 2021-12-14 03:24 - 2021-12-14 03:24 - 000000000 ___RD C:\Users\bbbbbbbbbbbbbbbbbb\OneDrive 2021-12-14 03:24 - 2021-12-14 03:24 - 000000000 ____D C:\ProgramData\Microsoft OneDrive 2021-12-14 03:23 - 2021-12-20 03:26 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Packages 2021-12-14 03:23 - 2021-12-19 22:13 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\D3DSCache 2021-12-14 03:23 - 2021-12-18 01:21 - 000000000 ____D C:\ProgramData\Packages 2021-12-14 03:23 - 2021-12-16 14:36 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\ConnectedDevicesPlatform 2021-12-14 03:23 - 2021-12-16 04:41 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-12-14 03:23 - 2021-12-16 02:43 - 000000000 ___RD C:\Users\Public\AccountPictures 2021-12-14 03:23 - 2021-12-14 03:29 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation 2021-12-14 03:23 - 2021-12-14 03:23 - 000000020 ___SH C:\Users\bbbbbbbbbbbbbbbbbb\ntuser.ini 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\Ustawienia lokalne 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\Szablony 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\Moje dokumenty 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\Menu Start 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\Documents\Moje wideo 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\Documents\Moje obrazy 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\Documents\Moja muzyka 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\Dane aplikacji 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Tymczasowe pliki internetowe 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Historia 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 _SHDL C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Dane aplikacji 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 ___RD C:\Users\bbbbbbbbbbbbbbbbbb\3D Objects 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Adobe 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\VirtualStore 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Local\Publishers 2021-12-14 03:23 - 2021-12-14 03:23 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-12-14 03:23 - 2021-09-16 04:22 - 007280840 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2021-12-14 03:23 - 2020-10-07 13:33 - 000230720 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2021-12-14 03:23 - 2020-10-07 13:33 - 000047232 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll 2021-12-14 03:22 - 2021-12-20 02:58 - 000000000 ____D C:\Users\bbbbbbbbbbbbbbbbbb 2021-12-14 03:22 - 2021-12-15 11:00 - 000002466 _____ C:\Users\bbbbbbbbbbbbbbbbbb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-12-14 03:22 - 2021-12-14 23:26 - 000000000 ____D C:\Windows\CSC 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Public\Documents\Moje wideo 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Public\Documents\Moje obrazy 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Public\Documents\Moja muzyka 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\Ustawienia lokalne 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\Szablony 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\Moje dokumenty 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\Menu Start 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\Documents\Moje wideo 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\Documents\Moje obrazy 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\Documents\Moja muzyka 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\Dane aplikacji 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\AppData\Local\Tymczasowe pliki internetowe 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historia 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\ProgramData\Szablony 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\ProgramData\Pulpit 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\ProgramData\Menu Start 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\ProgramData\Dokumenty 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\ProgramData\Dane aplikacji 2021-12-14 03:21 - 2021-12-14 03:21 - 000000000 _SHDL C:\Documents and Settings 2021-12-14 03:20 - 2021-12-20 02:58 - 000008192 ___SH C:\DumpStack.log.tmp 2021-12-14 03:20 - 2021-12-20 02:58 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-12-14 03:20 - 2021-12-19 22:07 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-12-14 03:20 - 2021-12-18 20:18 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-12-14 03:20 - 2021-12-16 15:34 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-12-14 03:20 - 2021-12-14 23:44 - 000258664 _____ C:\Windows\system32\FNTCACHE.DAT 2021-12-14 03:20 - 2021-12-14 03:25 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-12-14 03:20 - 2021-12-14 03:25 - 000003386 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-12-14 03:20 - 2021-12-14 03:20 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2021-12-14 03:20 - 2021-12-14 03:20 - 000000000 ____D C:\Windows\ServiceProfiles 2021-12-14 03:19 - 2021-12-18 01:17 - 000000000 ____D C:\Windows\Panther ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-12-20 03:26 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness 2021-12-20 03:25 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF 2021-12-20 03:23 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-12-20 03:08 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2021-12-20 03:02 - 2019-12-07 16:09 - 000784464 _____ C:\Windows\system32\perfh015.dat 2021-12-20 03:02 - 2019-12-07 16:09 - 000152360 _____ C:\Windows\system32\perfc015.dat 2021-12-20 01:04 - 2019-12-07 10:03 - 000262144 _____ C:\Windows\system32\config\BBI 2021-12-19 22:07 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-12-16 15:55 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp 2021-12-15 03:33 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat 2021-12-15 03:30 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ELAMBKUP 2021-12-14 23:44 - 2019-12-07 16:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-12-14 23:44 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2021-12-14 23:44 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources 2021-12-14 23:44 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup 2021-12-14 23:44 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe 2021-12-14 23:44 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV 2021-12-14 23:44 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT 2021-12-14 23:44 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE 2021-12-14 23:44 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX 2021-12-14 23:44 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning 2021-12-14 23:44 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2021-12-14 23:44 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr 2021-12-14 10:17 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2021-12-14 04:29 - 2019-12-07 10:14 - 000000855 _____ C:\Windows\system32\Drivers\etc\hosts_bak_803 2021-12-14 04:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\MUI 2021-12-14 04:15 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\MUI 2021-12-14 03:49 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing 2021-12-14 03:43 - 2019-12-07 16:12 - 000000000 ___SD C:\Windows\system32\AppV 2021-12-14 03:43 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2021-12-14 03:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2021-12-14 03:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2021-12-14 03:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism 2021-12-14 03:43 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences 2021-12-14 03:39 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog 2021-12-14 03:39 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState 2021-12-14 03:36 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioDatabase 2021-12-14 03:22 - 2019-12-07 16:10 - 000000000 ____D C:\Windows\system32\FxsTmp 2021-12-14 03:22 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\spool 2021-12-14 03:22 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate 2021-12-14 03:21 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT 2021-12-14 03:19 - 2019-12-07 10:14 - 000028672 _____ C:\Windows\system32\config\BCD-Template ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================