Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14-08-2021 Uruchomiony przez aroma (administrator) MACHINE-AROMATE (Micro-Star International Co., Ltd. MS-7C37) (15-08-2021 15:03:02) Uruchomiony z C:\Users\aroma\Downloads Załadowane profile: aroma & _ashbackup_ Platform: Windows 10 Pro Wersja 21H1 19043.1151 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files\Ashampoo\Ashampoo Backup 2021\bin\oxHelper.exe () [Brak podpisu cyfrowego] D:\PROGRAMY - OBRAZY - INSTALKI\PODSTAWOWE\RocketDock\RocketDock.exe (Ashampoo GmbH & Co. KG -> ) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 17\LiveTuner2.exe (Ashampoo GmbH & Co. KG -> ) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 17\LiveTunerService.exe (Ashampoo GmbH & Co. KG -> ) C:\Program Files\Ashampoo\Ashampoo Backup 2021\bin\backupService-ab.exe (A-Volute SAS -> A-Volute) C:\Users\aroma\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\25.0.1.192\DiscoverySrv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3> (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe (Corsair Memory, Inc. -> Corsair Components, Inc.) D:\Program Files\CorsairLink4.exe (Corsair Memory, Inc. -> Corsair Components, Inc.) D:\Program Files\CorsairLink4.Service.exe (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Facebook Inc) C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_970.11.116.0_x64__8xx8rvfyw5nnt\app\Messenger.exe <6> (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Driver Booster\8.4.0\DriverBooster.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3> (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (MICRO-STAR INTERNATIONAL CO., LTD) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.109.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\FoundationService\MSIAPService.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Nahimic\NahimicMonitorX64.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\One Dragon Center\CC_Engine_x64.exe (Micro-Star INT'L CO., LTD.) [Brak podpisu cyfrowego] C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_253e24b785ea60ca\Display.NvContainer\NVDisplay.Container.exe <2> (Opera Software AS -> Opera Software) C:\Users\aroma\AppData\Local\Programs\Opera\78.0.4093.147\opera.exe <17> (Opera Software AS -> Opera Software) C:\Users\aroma\AppData\Local\Programs\Opera\78.0.4093.147\opera_crashreporter.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) D:\GAMES\SteamLibrary\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) D:\GAMES\SteamLibrary\steam.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => "C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_f31d3fd59f245137\RtkAudUService64.exe" -background HKLM\...\Run: [Ashampoo Backup] => C:\Program Files\Ashampoo\Ashampoo Backup 2021\bin\backupClient-ab.exe [322944 2020-11-05] (Ashampoo GmbH & Co. KG -> ) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3086208 2021-06-22] (Riot Games, Inc. -> Riot Games, Inc.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Ashampoo WinOptimizer Live-Tuner2] => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 17\LiveTuner2.exe [4751528 2021-04-30] (Ashampoo GmbH & Co. KG -> ) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [957016 2021-06-10] (Bitdefender SRL -> Bitdefender) HKLM-x32\...\Run: [VolPanel] => "C:\Program Files (x86)\Creative\USB Sound Blaster HD\Volume Panel\VolPanlu.exe" /r HKU\S-1-5-21-211347227-136503218-582360509-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443296 2021-08-10] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-211347227-136503218-582360509-1001\...\Run: [Steam] => D:\GAMES\SteamLibrary\steam.exe [4273896 2021-08-11] (Valve -> Valve Corporation) HKU\S-1-5-21-211347227-136503218-582360509-1001\...\Run: [Discord] => C:\Users\aroma\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub) HKU\S-1-5-21-211347227-136503218-582360509-1001\...\Run: [RocketDock] => D:\PROGRAMY - OBRAZY - INSTALKI\PODSTAWOWE\RocketDock\RocketDock.exe [495616 2017-03-11] () [Brak podpisu cyfrowego] HKU\S-1-5-21-211347227-136503218-582360509-1001\...\Run: [CorsairLink4] => D:\Program Files\CorsairLink4.exe [27146280 2018-12-28] (Corsair Memory, Inc. -> Corsair Components, Inc.) HKU\S-1-5-21-211347227-136503218-582360509-1002\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443296 2021-08-10] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-211347227-136503218-582360509-1002\...\Run: [Steam] => D:\GAMES\SteamLibrary\steam.exe [4273896 2021-08-11] (Valve -> Valve Corporation) HKU\S-1-5-21-211347227-136503218-582360509-1002\...\Run: [Discord] => C:\Users\_ashbackup_\AppData\Local\Discord\Update.exe --processStart Discord.exe HKU\S-1-5-21-211347227-136503218-582360509-1002\...\Run: [RocketDock] => D:\PROGRAMY - OBRAZY - INSTALKI\PODSTAWOWE\RocketDock\RocketDock.exe [495616 2017-03-11] () [Brak podpisu cyfrowego] HKU\S-1-5-21-211347227-136503218-582360509-1002\...\Run: [EpicGamesLauncher] => D:\GAMES\Epic Game Luncher\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33264096 2021-08-08] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-211347227-136503218-582360509-1003\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443296 2021-08-10] (Logitech Inc -> Logitech, Inc.) HKU\S-1-5-21-211347227-136503218-582360509-1003\...\Run: [Steam] => D:\GAMES\SteamLibrary\steam.exe [4273896 2021-08-11] (Valve -> Valve Corporation) HKU\S-1-5-21-211347227-136503218-582360509-1003\...\Run: [Discord] => C:\Users\shark\AppData\Local\Discord\Update.exe --processStart Discord.exe HKU\S-1-5-21-211347227-136503218-582360509-1003\...\Run: [RocketDock] => D:\PROGRAMY - OBRAZY - INSTALKI\PODSTAWOWE\RocketDock\RocketDock.exe [495616 2017-03-11] () [Brak podpisu cyfrowego] HKU\S-1-5-21-211347227-136503218-582360509-1003\...\Run: [EpicGamesLauncher] => D:\GAMES\Epic Game Luncher\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33264096 2021-08-08] (Epic Games Inc. -> Epic Games, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\92.0.4515.131\Installer\chrmstp.exe [2021-08-08] (Google LLC -> Google LLC) BootExecute: ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {106E7C85-18A3-400E-9466-0F80ACE2BE52} - System32\Tasks\Sump Task (One-Time) => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\sump.exe [1692752 2021-07-08] (IObit CO., LTD -> IObit) Task: {137112B7-F69A-4A71-83C4-96851E198D6B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1C330EDE-4FEE-4020-9C3C-376CDD23DCAC} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1685328 2021-04-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) Task: {3D9B451B-AC2C-406E-A6E2-C0ED81EA9570} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3E56374E-8CE7-47F2-8753-602C37295053} - System32\Tasks\Opera scheduled Autoupdate 1625421166 => C:\Users\aroma\AppData\Local\Programs\Opera\launcher.exe [41906896 2021-08-11] (Opera Software AS -> Opera Software) Task: {4597A214-9ACC-4F64-A89A-2C6D679F4995} - System32\Tasks\Opera scheduled assistant Autoupdate 1625421168 => C:\Users\aroma\AppData\Local\Programs\Opera\launcher.exe [41906896 2021-08-11] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\aroma\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {56D0CC41-74FD-47D7-9206-77600ED3D5A1} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [957016 2021-06-10] (Bitdefender SRL -> Bitdefender) Task: {5DD1F37A-DE8D-465D-BC66-0EFCC5AE3232} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [78648 2021-04-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) Task: {66C02AB1-0F33-4068-ABD6-E39DEEC80EEE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-07-04] (Google LLC -> Google LLC) Task: {68B26D8D-CF63-4274-BC8D-7D4A962F91ED} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMDisplay => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-19] (Microsoft Windows -> Microsoft Corporation) Task: {6919C1C9-3C79-43F4-ABC7-6B100A31C9CF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6B990394-0CAD-4DFD-8CC7-977D5ED8B611} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-211347227-136503218-582360509-1003 => C:\Users\aroma\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe Task: {72C5D92D-3D82-40EC-B994-98D0D21875A9} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\AutoUpdate.exe [2285592 2021-04-09] (IObit CO., LTD -> IObit) Task: {7A649783-39D5-4D70-A8CA-1E35B3C315DB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {80B4EDD0-44A1-4F24-98D9-234EE33C9A43} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\RUXIMSync => C:\Program Files\ruxim\ruximics.exe [477512 2021-05-19] (Microsoft Windows -> Microsoft Corporation) Task: {8B99F802-3DDD-4964-B60C-5874CAF60A9E} - System32\Tasks\Driver Booster SkipUAC (aroma) => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\DriverBooster.exe [8243224 2021-04-22] (IObit CO., LTD -> IObit) Task: {A8CF976A-555D-45FB-B4B4-390C9017F75B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B075DBAE-700A-446A-8335-27A8ABD3E5BA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {C09E9E12-0AD2-4F23-A30D-BFA0DADF2ABC} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C2E4312F-5E52-4943-B72F-282ABCD5344E} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\25.0.1.192\WatchDog.exe [937064 2021-06-08] (Bitdefender SRL -> Bitdefender) Task: {C36469EE-D65E-4CE7-B22D-4249656872BA} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [3059280 2021-03-06] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) Task: {CD2C7EB6-9DBF-4753-9E70-8847A3515410} - System32\Tasks\MSI Task Host - MSI.True Color => C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe [47416 2021-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) Task: {CE1C53B1-5311-461A-8B3B-F683F0D457B2} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [78648 2021-04-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) Task: {CF5A5684-1E1A-4E22-B47D-1389C9CA831C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-07-04] (Google LLC -> Google LLC) Task: {D27D1E5B-3214-48B1-BD0A-BE44DAC83E0A} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {E302D45D-827F-41B5-9F07-E9BCEC5F853C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EEF83023-D192-4E36-875C-AE05627895B7} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\Scheduler.exe [156696 2021-04-09] (IObit CO., LTD -> IObit) Task: {FE5D73E8-B09C-4319-AAB2-31418D6BB0E1} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 212.224.129.90 212.224.129.94 Tcpip\..\Interfaces\{80df7a73-7c27-4383-acbd-8ddfd418e6b1}: [DhcpNameServer] 212.224.129.90 212.224.129.94 Tcpip\..\Interfaces\{f341884b-5138-459f-81cc-e7f4e5fe9b85}: [DhcpNameServer] 212.224.129.90 212.224.129.94 Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge HKLM-x32\...\Edge\Extension: [pdhdldaneekjpoaldekpgomomeabpnek] FireFox: ======== FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2020-07-16] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/wallet/updates.json ] FF HKLM\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi FF Extension: (Bitdefender Anti-tracker) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi [2020-09-17] [UpdateUrl:hxxps://download.bitdefender.com/windows/desktop/connect/antitracker/updates.json ] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2021-06-10] [Przestarzałe] [Brak podpisu cyfrowego] FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi FF HKLM-x32\...\Firefox\Extensions: [bdtbe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbef.xpi FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default [2021-08-15] CHR Notifications: Default -> hxxps://www.youtube.com CHR HomePage: Default -> hxxps://gamingsociety.pl/ CHR Extension: (Tłumacz Google) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-15] CHR Extension: (Prezentacje) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-07-04] CHR Extension: (Dokumenty) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-07-04] CHR Extension: (Dysk Google) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-07-04] CHR Extension: (PureVPN: #1 Proxy Extension for Chrome) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfidboloedlamgdmenmlbipfnccokknp [2021-07-04] CHR Extension: (eID Chrome Extension) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkbdaodnaecdijpajecpncpdomgcoakc [2021-07-04] CHR Extension: (Dark L20 Grey) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkfpjpncgpnchhjfejlndkkkmgjojean [2021-07-04] CHR Extension: (Adobe Acrobat) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-07-04] CHR Extension: (Arkusze) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-07-04] CHR Extension: (Bitdefender Wallet) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\gannpgaobkkhmpomoijebaigcapoeebl [2021-08-15] CHR Extension: (Dokumenty Google offline) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-04] CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-08-15] CHR Extension: (LastPass: Free Password Manager) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-08-15] CHR Extension: (Connective signing extension) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\kclpjmhngbacampgcdojmiedamjbgjjm [2021-07-04] CHR Extension: (Bitdefender Anti-tracker) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2021-08-15] CHR Extension: (Rozszerzenie Google Keep do Chrome) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2021-08-09] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-04] CHR Extension: (Sprawdzanie ortografii i gramatyki – LanguageTool) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\oldceeleldhonbafppcapldpdifcinji [2021-08-09] CHR Extension: (Chrome Media Router) - C:\Users\aroma\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-08-09] CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof] Opera: ======= OPR Profile: C:\Users\aroma\AppData\Roaming\Opera Software\Opera Stable [2021-08-15] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Session Restore: Opera Stable -> [funkcja włączona] OPR Extension: (Rich Hints Agent) - C:\Users\aroma\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-07-04] OPR Extension: (LastPass: Free Password Manager) - C:\Users\aroma\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo [2021-08-08] OPR Extension: (Amazon Assistant Promotion) - C:\Users\aroma\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-13] OPR Extension: (Zainstaluj rozszerzenia Chrome) - C:\Users\aroma\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2021-07-06] OPR Extension: (Rozszerzenie Google Keep do Chrome) - C:\Users\aroma\AppData\Roaming\Opera Software\Opera Stable\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2021-08-10] OPR Extension: (Mate Translate - translator, słownik) - C:\Users\aroma\AppData\Roaming\Opera Software\Opera Stable\Extensions\ollghamalkmmhboihmhoaaobmamehjgn [2021-08-09] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 ashbackup; c:\Program Files\Ashampoo\Ashampoo Backup 2021\bin\backupService-ab.exe [34176 2020-11-05] (Ashampoo GmbH & Co. KG -> ) R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-06-10] (Bitdefender SRL -> Bitdefender) R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-06-10] (Bitdefender SRL -> Bitdefender) R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2161256 2018-03-22] (Bitdefender SRL -> Bitdefender) R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [1899112 2018-03-22] (Bitdefender SRL -> Bitdefender) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8914856 2021-07-01] (BattlEye Innovations e.K. -> ) R3 CLink4Service; D:\Program Files\CorsairLink4.Service.exe [34344 2018-12-28] (Corsair Memory, Inc. -> Corsair Components, Inc.) S3 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 17\DfsdkS.exe [406016 2021-04-30] (mst software GmbH, Germany) [Brak podpisu cyfrowego] S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1955680 2021-07-16] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-07-16] (GOG Sp. z o.o. -> GOG.com) R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10787232 2021-08-10] (Logitech Inc -> Logitech, Inc.) R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 MSI Foundation Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\FoundationService\MSIAPService.exe [75216 2020-09-23] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [143160 2021-03-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [32752 2021-02-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [39760 2021-03-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1675392 2021-05-27] (A-Volute SAS -> Nahimic) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2556048 2021-07-15] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474584 2021-07-15] (Electronic Arts, Inc. -> Electronic Arts) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [774760 2021-06-08] (Bitdefender SRL -> Bitdefender) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5394872 2021-08-09] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7374576 2021-08-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [306776 2021-06-10] (Bitdefender SRL -> Bitdefender) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10147296 2021-06-22] (Riot Games, Inc. -> Riot Games, Inc.) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [798640 2021-06-10] (Bitdefender SRL -> Bitdefender) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-10] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-10] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WO_LiveService2; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 17\LiveTunerService.exe [307880 2021-04-30] (Ashampoo GmbH & Co. KG -> ) S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [7550152 2021-08-14] (PUBG CORPORATION -> PUBG Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_253e24b785ea60ca\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_253e24b785ea60ca\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [2718744 2021-02-26] (Bitdefender SRL -> Bitdefender S.R.L. Bucharest, ROMANIA) R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender) S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [22976 2020-12-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender) R0 bdprivmon; C:\WINDOWS\System32\DRIVERS\bdprivmon.sys [46056 2020-01-17] (Bitdefender SRL -> © Bitdefender SRL) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R3 cpuz146; C:\WINDOWS\temp\cpuz146\cpuz146_x64.sys [52824 2021-08-15] (CPUID -> CPUID) R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> ) R0 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [488592 2021-02-16] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA) R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [195232 2020-09-03] (Bitdefender SRL -> BitDefender LLC) S3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [38544 2018-12-13] (Feature Integration Technology Inc -> FINTEK Corp.) R2 Ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [185312 2020-10-07] (Bitdefender SRL -> Bitdefender) S3 ksaud; C:\WINDOWS\system32\drivers\ksaud.sys [2116824 2019-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.) R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-08-10] (Logitech Inc -> Logitech) R2 LiveTuner2PM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 17\LiveTuner64.sys [24432 2021-04-30] (Ashampoo GmbH & Co. KG -> ) R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-07-04] (Logitech Inc -> Logitech) R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-07-04] (Logitech Inc -> Logitech) R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-07-04] (Logitech Inc -> Logitech) R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd) R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\One Dragon Center\Lib\SYS\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Lib\NTIOLib_X64.sys [14288 2017-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) R0 secnvme; C:\WINDOWS\System32\drivers\secnvme.sys [133944 2020-01-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd) R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [641728 2021-02-26] (Bitdefender SRL -> Bitdefender) R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8241992 2021-06-22] (Riot Games, Inc. -> Riot Games, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2021-08-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [434424 2021-08-10] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-10] (Microsoft Windows -> Microsoft Corporation) S3 xhunter1; C:\WINDOWS\xhunter1.sys [2729456 2021-08-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-08-15 15:06 - 2021-08-15 15:09 - 000000000 _____ C:\Recovery.txt 2021-08-15 15:03 - 2021-08-15 15:03 - 000034840 _____ C:\Users\aroma\Downloads\FRST.txt 2021-08-15 14:29 - 2021-08-15 14:40 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2021-08-15 14:29 - 2021-08-15 14:29 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\56429235.sys 2021-08-15 14:29 - 2021-08-15 14:29 - 000192952 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2021-08-15 14:29 - 2021-08-15 14:29 - 000000000 ____D C:\ProgramData\Malwarebytes 2021-08-15 14:22 - 2021-08-15 14:22 - 000003356 _____ C:\WINDOWS\system32\Tasks\Sump Task (One-Time) 2021-08-15 13:04 - 2021-08-15 15:03 - 000000000 ____D C:\FRST 2021-08-15 13:03 - 2021-08-15 13:03 - 002300416 _____ (Farbar) C:\Users\aroma\Downloads\FRST64.exe 2021-08-15 01:32 - 2021-08-15 01:32 - 000001448 _____ C:\Users\Public\Desktop\Cyberpunk 2077.lnk 2021-08-14 23:17 - 2021-08-14 23:17 - 000153396 _____ C:\ProgramData\agent.update.1628975842.bdinstall.v2.bin 2021-08-14 23:15 - 2021-08-14 23:15 - 000781188 _____ C:\ProgramData\cl.1628975155.bdinstall.v2.bin 2021-08-14 23:15 - 2021-08-14 23:15 - 000104796 _____ C:\ProgramData\cl.kit.1628975152.bdinstall.v2.bin 2021-08-14 23:15 - 2021-08-14 23:15 - 000003420 _____ C:\WINDOWS\system32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C 2021-08-14 23:11 - 2021-08-14 23:11 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4 2021-08-14 23:07 - 2021-08-14 23:07 - 000000000 ____D C:\ProgramData\Gemma 2021-08-14 23:07 - 2021-08-14 23:07 - 000000000 ____D C:\ProgramData\Atc 2021-08-14 23:06 - 2021-08-14 23:37 - 000000000 ____D C:\ProgramData\Bitdefender 2021-08-14 23:06 - 2021-08-14 23:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security 2021-08-14 23:06 - 2021-08-14 23:17 - 000003846 _____ C:\WINDOWS\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 2021-08-14 23:06 - 2021-08-14 23:06 - 000002362 _____ C:\Users\Public\Desktop\Bitdefender.lnk 2021-08-14 23:06 - 2021-08-14 23:06 - 000000000 ____D C:\WINDOWS\system32\elambkup 2021-08-14 23:06 - 2021-08-14 23:06 - 000000000 ____D C:\Users\aroma\AppData\Roaming\Bitdefender 2021-08-14 23:06 - 2021-08-14 23:06 - 000000000 ____D C:\ProgramData\BDLogging 2021-08-14 23:06 - 2021-08-14 23:06 - 000000000 ____D C:\Program Files\Bitdefender 2021-08-14 23:06 - 2021-02-26 18:31 - 000641728 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\trufos.sys 2021-08-14 23:06 - 2021-02-26 13:40 - 002718744 _____ (Bitdefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\atc.sys 2021-08-14 23:06 - 2021-02-16 14:31 - 000488592 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\WINDOWS\system32\Drivers\gemma.sys 2021-08-14 23:06 - 2020-12-18 02:33 - 000022976 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys 2021-08-14 23:06 - 2020-12-04 16:15 - 000802976 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bddci.sys 2021-08-14 23:06 - 2020-10-07 11:30 - 000185312 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\ignis.sys 2021-08-14 23:06 - 2020-09-03 05:20 - 000195232 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys 2021-08-14 23:06 - 2020-01-17 03:03 - 000046056 _____ (© Bitdefender SRL) C:\WINDOWS\system32\Drivers\bdprivmon.sys 2021-08-14 23:05 - 2021-08-14 23:06 - 000000000 ____D C:\Program Files\Common Files\Bitdefender 2021-08-14 23:04 - 2021-08-14 23:17 - 000000000 ____D C:\Program Files\Bitdefender Agent 2021-08-14 23:04 - 2021-08-14 23:04 - 000116792 _____ C:\ProgramData\agent.1628975088.bdinstall.v2.bin 2021-08-14 23:04 - 2021-08-14 23:04 - 000000000 ____D C:\ProgramData\Bitdefender Agent 2021-08-14 20:48 - 2021-08-14 20:48 - 000000375 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics 2021-08-14 15:52 - 2021-08-14 15:52 - 000000000 ____D C:\Users\aroma\AppData\Local\DBG 2021-08-14 15:23 - 2021-08-14 15:23 - 000000000 ____D C:\Users\aroma\Documents\PassMark 2021-08-14 15:23 - 2021-08-14 15:23 - 000000000 ____D C:\Users\aroma\AppData\Local\PassMark 2021-08-14 15:22 - 2021-08-14 15:30 - 000000000 ____D C:\Program Files\PerformanceTest 2021-08-14 15:22 - 2021-08-14 15:22 - 000001007 _____ C:\Users\aroma\Desktop\PerformanceTest.lnk 2021-08-14 15:22 - 2021-08-14 15:22 - 000000000 ____D C:\ProgramData\Passmark 2021-08-14 15:22 - 2021-08-14 15:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PerformanceTest 2021-08-14 13:13 - 2021-08-14 13:13 - 000000017 _____ C:\Users\aroma\AppData\Local\resmon.resmoncfg 2021-08-14 13:12 - 2021-08-14 13:12 - 000000000 ___HD C:\$WinREAgent 2021-08-14 12:48 - 2021-08-15 15:11 - 080216064 _____ C:\WINDOWS\system32\config\software 2021-08-14 12:48 - 2021-08-15 01:50 - 018874368 _____ C:\WINDOWS\system32\config\system 2021-08-14 12:48 - 2021-08-15 01:50 - 000524288 _____ C:\WINDOWS\system32\config\default 2021-08-14 12:48 - 2021-08-15 01:50 - 000221184 _____ C:\WINDOWS\system32\config\sam 2021-08-14 11:51 - 2021-08-15 01:30 - 000000000 ____D C:\ProgramData\CLink4 2021-08-14 11:51 - 2021-08-14 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corsair LINK 4 2021-08-14 11:51 - 2021-08-14 11:51 - 000000000 ____D C:\Program Files\DIFX 2021-08-14 11:50 - 2021-08-14 11:50 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-08-14 11:50 - 2021-08-14 11:50 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-08-14 11:50 - 2021-08-14 11:50 - 000011347 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-08-14 11:33 - 2021-08-14 11:33 - 000000117 ___RH C:\WINDOWS\ctfile.rfc 2021-08-14 11:07 - 2021-08-14 11:07 - 008641608 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw04.sys 2021-08-14 11:07 - 2021-08-14 11:07 - 002074220 _____ C:\WINDOWS\system32\Drivers\Netwfw04.dat 2021-08-14 11:07 - 2021-08-14 11:07 - 001419336 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter04.dll 2021-08-14 11:00 - 2021-08-06 10:45 - 001858680 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-08-14 11:00 - 2021-08-06 10:45 - 001858680 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-08-14 11:00 - 2021-08-06 10:45 - 001474672 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-08-14 11:00 - 2021-08-06 10:45 - 001438840 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-08-14 11:00 - 2021-08-06 10:45 - 001438840 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-08-14 11:00 - 2021-08-06 10:45 - 001212536 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-08-14 11:00 - 2021-08-06 10:45 - 001097832 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-08-14 11:00 - 2021-08-06 10:45 - 001097832 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-08-14 11:00 - 2021-08-06 10:45 - 000951928 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-08-14 11:00 - 2021-08-06 10:45 - 000951928 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-08-14 11:00 - 2021-08-06 10:42 - 000716928 _____ C:\WINDOWS\system32\nvofapi64.dll 2021-08-14 11:00 - 2021-08-06 10:42 - 000645248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2021-08-14 11:00 - 2021-08-06 10:42 - 000577152 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2021-08-14 11:00 - 2021-08-06 10:41 - 002112144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2021-08-14 11:00 - 2021-08-06 10:41 - 001595536 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2021-08-14 11:00 - 2021-08-06 10:41 - 001520760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2021-08-14 11:00 - 2021-08-06 10:41 - 001171088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2021-08-14 11:00 - 2021-08-06 10:41 - 000919184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2021-08-14 11:00 - 2021-08-06 10:41 - 000750200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2021-08-14 11:00 - 2021-08-06 10:41 - 000706168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2021-08-14 11:00 - 2021-08-06 10:41 - 000676480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2021-08-14 11:00 - 2021-08-06 10:41 - 000564352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2021-08-14 11:00 - 2021-08-06 10:40 - 008854136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2021-08-14 11:00 - 2021-08-06 10:40 - 007920760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2021-08-14 11:00 - 2021-08-06 10:40 - 005680768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2021-08-14 11:00 - 2021-08-06 10:40 - 004987512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2021-08-14 11:00 - 2021-08-06 10:40 - 002925688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2021-08-14 11:00 - 2021-08-06 10:40 - 000447096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2021-08-14 11:00 - 2021-08-06 10:39 - 000849024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2021-08-14 11:00 - 2021-08-06 10:38 - 007280848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2021-08-14 11:00 - 2021-08-06 10:38 - 006215808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2021-08-14 11:00 - 2021-08-05 23:12 - 000083062 _____ C:\WINDOWS\system32\nvinfo.pb 2021-08-14 10:45 - 2021-08-14 10:45 - 000000000 ____D C:\Users\aroma\AppData\Local\CD Projekt Red 2021-08-14 10:43 - 2021-08-14 10:43 - 000000000 ____D C:\Users\aroma\AppData\Local\REDEngine 2021-08-14 10:15 - 2021-08-15 01:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cyberpunk 2077 [GOG.com] 2021-08-14 08:21 - 2021-08-14 10:15 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy 2021-08-14 08:21 - 2021-08-14 08:21 - 000001223 _____ C:\Users\Public\Desktop\GOG GALAXY.lnk 2021-08-14 08:21 - 2021-08-14 08:21 - 000000000 ____D C:\Users\aroma\AppData\Local\GOG.com 2021-08-14 08:21 - 2021-08-14 08:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com 2021-08-14 08:20 - 2021-08-14 10:15 - 000000000 ____D C:\ProgramData\GOG.com 2021-08-14 02:47 - 2021-08-14 02:47 - 000000000 ____D C:\Users\aroma\AppData\Roaming\Goldberg SocialClub Emu Saves 2021-08-14 02:46 - 2021-08-14 02:46 - 000000000 ____D C:\Users\aroma\Documents\Rockstar Games 2021-08-14 02:46 - 2021-08-14 02:46 - 000000000 ____D C:\Users\aroma\AppData\Roaming\EMPRESS 2021-08-14 02:46 - 2021-08-14 02:46 - 000000000 ____D C:\Users\aroma\AppData\Local\Rockstar Games 2021-08-13 17:56 - 2021-08-14 08:09 - 000001427 _____ C:\Users\aroma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2021-08-13 17:56 - 2021-08-13 17:56 - 000004248 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1625421166 2021-08-11 21:14 - 2021-08-11 21:14 - 000004460 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1625421168 2021-08-10 15:48 - 2021-08-10 18:25 - 000000000 ____D C:\Users\shark\AppData\Roaming\LGHUB 2021-08-10 15:48 - 2021-08-10 15:49 - 000000000 ____D C:\Users\shark\AppData\Local\LGHUB 2021-08-10 15:48 - 2021-08-10 15:48 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk 2021-08-10 15:48 - 2021-08-10 15:48 - 000000000 ____D C:\Users\shark\AppData\Local\UnrealEngineLauncher 2021-08-10 15:48 - 2021-08-10 15:48 - 000000000 ____D C:\Users\shark\AppData\Local\UnrealEngine 2021-08-10 15:48 - 2021-08-10 15:48 - 000000000 ____D C:\Users\shark\AppData\Local\Steam 2021-08-10 15:48 - 2021-08-10 15:48 - 000000000 ____D C:\Users\shark\AppData\Local\MicrosoftEdge 2021-08-10 15:48 - 2021-08-10 15:48 - 000000000 ____D C:\Users\shark\AppData\Local\EpicGamesLauncher 2021-08-10 15:48 - 2021-08-10 15:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi 2021-08-10 15:48 - 2021-08-10 15:48 - 000000000 ____D C:\Program Files\LGHUB 2021-08-10 15:43 - 2021-08-10 15:43 - 000000000 ____D C:\Users\aroma\AppData\Local\Microsoft_Corporation 2021-08-09 23:37 - 2021-08-15 10:58 - 000000000 ____D C:\Users\aroma\AppData\Roaming\vlc 2021-08-09 23:36 - 2021-08-09 23:36 - 000000930 _____ C:\Users\Public\Desktop\VLC media player.lnk 2021-08-09 23:36 - 2021-08-09 23:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2021-08-09 23:36 - 2021-08-09 23:36 - 000000000 ____D C:\Program Files\VideoLAN 2021-08-09 06:57 - 2021-08-09 07:01 - 000000000 ____D C:\Users\aroma\Documents\FIFA 21 2021-08-09 06:48 - 2021-08-09 06:48 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2021-08-09 06:48 - 2021-08-09 06:48 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2021-08-09 06:48 - 2021-08-09 06:48 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll 2021-08-09 06:47 - 2021-08-09 06:47 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll 2021-08-09 04:45 - 2021-08-09 04:45 - 000000000 ____D C:\Users\aroma\Documents\Adobe 2021-08-09 04:36 - 2021-08-09 04:36 - 000000000 ____D C:\Users\aroma\AppData\LocalLow\Adobe 2021-08-09 04:35 - 2021-08-09 04:35 - 000000000 ____D C:\Users\aroma\AppData\Roaming\NVIDIA 2021-08-09 04:35 - 2021-08-09 04:35 - 000000000 ____D C:\Users\aroma\AppData\Local\UXP 2021-08-09 04:35 - 2021-08-09 04:35 - 000000000 ____D C:\Users\aroma\AppData\Local\Adobe 2021-08-09 04:03 - 2021-08-14 12:53 - 000000000 ____D C:\ProgramData\Creative 2021-08-09 03:50 - 2021-08-14 12:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative 2021-08-09 03:50 - 2021-08-14 12:53 - 000000000 ____D C:\Program Files\Creative 2021-08-09 03:50 - 2021-08-14 12:53 - 000000000 ____D C:\Program Files (x86)\Creative 2021-08-09 03:50 - 2021-08-09 03:50 - 000466520 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll 2021-08-09 03:50 - 2021-08-09 03:50 - 000445016 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll 2021-08-09 03:50 - 2021-08-09 03:50 - 000123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll 2021-08-09 03:50 - 2021-08-09 03:50 - 000109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll 2021-08-09 03:50 - 2021-08-09 03:50 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller 2021-08-09 03:50 - 2019-10-31 15:41 - 002168408 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\KSAPO64.dll 2021-08-09 03:50 - 2019-10-31 15:41 - 002116824 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ksaud.sys 2021-08-09 03:50 - 2019-10-31 15:41 - 001905976 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\KSAPO32.dll 2021-08-09 03:50 - 2019-10-31 15:41 - 000740432 _____ (Creative Technology Ltd) C:\WINDOWS\KSAIM64.exe 2021-08-09 03:50 - 2019-10-31 15:41 - 000496856 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\JDetect.exe 2021-08-09 03:50 - 2019-10-31 15:41 - 000466136 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\KSVSPI64.dll 2021-08-09 03:50 - 2019-10-31 15:41 - 000342744 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\KSVSPI32.dll 2021-08-09 03:50 - 2019-10-31 15:41 - 000306167 _____ C:\WINDOWS\system32\DeviceDefaultVista.reg 2021-08-09 03:50 - 2019-10-31 15:41 - 000296664 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\KSPPLD64.dll 2021-08-09 03:50 - 2019-10-31 15:41 - 000245976 _____ (Creative Technology Limited) C:\WINDOWS\system32\KsDvInst.dll 2021-08-09 03:50 - 2019-10-31 15:41 - 000125144 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\SBAVMon.dll 2021-08-09 03:50 - 2019-10-31 15:41 - 000068344 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\SBAVMonL.dll 2021-08-09 03:50 - 2019-10-31 15:41 - 000033378 _____ C:\WINDOWS\system32\MixerDefault.reg 2021-08-09 03:50 - 2019-10-31 15:41 - 000018927 _____ C:\WINDOWS\KSAPO64.hda 2021-08-09 03:50 - 2019-10-31 15:41 - 000017391 _____ C:\WINDOWS\KSAPO32.hda 2021-08-09 03:50 - 2019-10-31 15:41 - 000008895 _____ C:\WINDOWS\KSDGFX64.hda 2021-08-09 03:50 - 2019-10-31 15:41 - 000008727 _____ C:\WINDOWS\KSWrap64.hda 2021-08-09 03:50 - 2019-10-31 15:41 - 000008463 _____ C:\WINDOWS\KSDGFX32.hda 2021-08-09 03:50 - 2019-10-31 15:41 - 000008319 _____ C:\WINDOWS\KSWrap32.hda 2021-08-09 03:50 - 2019-10-31 15:41 - 000004534 _____ C:\WINDOWS\system32\SB.bmp 2021-08-09 03:50 - 2019-10-31 15:40 - 000051928 _____ (Creative Technology Ltd.) C:\WINDOWS\AddCat.exe 2021-08-09 03:50 - 2019-10-31 15:40 - 000003077 _____ C:\ProgramData\cfSB1290A.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000003077 _____ C:\ProgramData\cfSB1290.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000002844 _____ C:\ProgramData\cfSB1240A.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000002844 _____ C:\ProgramData\cfSB1240.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000002111 _____ C:\ProgramData\cfSB1560.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001772 _____ C:\ProgramData\cfSB1095B.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001772 _____ C:\ProgramData\cfSB1095A.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001772 _____ C:\ProgramData\cfSB1095.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001697 _____ C:\ProgramData\CfGH0250.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001696 _____ C:\ProgramData\CfGH0280.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001352 _____ C:\ProgramData\cfSB1090.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001352 _____ C:\ProgramData\cfSB0910.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001346 _____ C:\ProgramData\cfSB1100.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001302 _____ C:\ProgramData\cfSB0300.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001282 _____ C:\ProgramData\cfSB0471.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001208 _____ C:\ProgramData\cfSB0490.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001027 _____ C:\ProgramData\cfSB0560.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001026 _____ C:\ProgramData\cfSB0271.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000001026 _____ C:\ProgramData\cfSB0270.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000000939 _____ C:\ProgramData\CfSB1170.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000000806 _____ C:\ProgramData\cfSB1300A.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000000806 _____ C:\ProgramData\cfSB1300.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000000715 _____ C:\ProgramData\cfSB1540.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000000715 _____ C:\ProgramData\CfSB1532.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000000715 _____ C:\ProgramData\CfSB1530.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000000715 _____ C:\ProgramData\CfSB1390.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000000715 _____ C:\ProgramData\CfSB1380.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000000715 _____ C:\ProgramData\CfSB1360.ini 2021-08-09 03:50 - 2019-10-31 15:40 - 000000590 _____ C:\ProgramData\cfSB0950.ini 2021-08-09 03:50 - 2018-10-04 14:30 - 000053952 _____ C:\WINDOWS\system32\kschimp.ini 2021-08-09 03:50 - 2016-04-04 10:30 - 000053216 _____ C:\WINDOWS\ksaudENG.reg 2021-08-09 03:50 - 2006-10-06 13:17 - 000053248 ____N (Creative Technology Ltd ) C:\WINDOWS\Ctregrun.exe 2021-08-09 03:50 - 2003-06-12 23:25 - 000007062 _____ C:\WINDOWS\SysWOW64\audiopid.vxd 2021-08-09 03:50 - 2000-05-22 15:58 - 000647872 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\Mscomct2.ocx 2021-08-09 03:41 - 2021-08-09 03:44 - 000000000 ____D C:\Users\shark\AppData\Local\PlaceholderTileLogoFolder 2021-08-09 03:41 - 2021-08-09 03:41 - 000000000 ____D C:\Users\shark\AppData\Local\OneDrive 2021-08-09 03:38 - 2021-08-14 12:59 - 000277400 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-08-09 03:30 - 2021-08-09 03:30 - 000000000 ____D C:\Users\shark\AppData\Local\Comms 2021-08-09 03:16 - 2021-08-09 03:16 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-211347227-136503218-582360509-1003 2021-08-09 03:16 - 2021-08-09 03:16 - 000002417 _____ C:\Users\shark\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-08-09 03:15 - 2021-08-10 15:48 - 000000000 ___RD C:\Users\shark\OneDrive 2021-08-09 03:15 - 2021-08-09 03:55 - 000000000 ____D C:\Users\shark\AppData\Local\Ashampoo Backup 2021-08-09 03:15 - 2021-08-09 03:15 - 000001454 _____ C:\Users\shark\Desktop\Microsoft Edge.lnk 2021-08-09 03:15 - 2021-08-09 03:15 - 000000000 ____D C:\Users\shark\AppData\Local\NhNotifSys 2021-08-09 03:15 - 2021-08-09 03:15 - 000000000 ____D C:\Users\shark\AppData\Local\CEF 2021-08-09 03:15 - 2021-08-09 03:15 - 000000000 ____D C:\Users\shark\AppData\Local\Ashampoo 2021-08-09 03:14 - 2021-08-15 15:11 - 000000000 ____D C:\Users\shark 2021-08-09 03:14 - 2021-08-10 15:50 - 000000000 ____D C:\Users\shark\AppData\Local\NVIDIA 2021-08-09 03:14 - 2021-08-10 15:48 - 000000000 ____D C:\Users\shark\AppData\Local\NVIDIA Corporation 2021-08-09 03:14 - 2021-08-10 15:48 - 000000000 ____D C:\Users\shark\AppData\Local\D3DSCache 2021-08-09 03:14 - 2021-08-09 03:44 - 000000000 ____D C:\Users\shark\AppData\Local\Packages 2021-08-09 03:14 - 2021-08-09 03:40 - 000000000 ____D C:\Users\shark\AppData\Local\ConnectedDevicesPlatform 2021-08-09 03:14 - 2021-08-09 03:14 - 000000020 ___SH C:\Users\shark\ntuser.ini 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\Ustawienia lokalne 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\Szablony 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\Moje dokumenty 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\Menu Start 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\Documents\Moje wideo 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\Documents\Moje obrazy 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\Documents\Moja muzyka 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\Dane aplikacji 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\AppData\Local\Tymczasowe pliki internetowe 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\AppData\Local\Historia 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 _SHDL C:\Users\shark\AppData\Local\Dane aplikacji 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 ___RD C:\Users\shark\3D Objects 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 ____D C:\Users\shark\AppData\Roaming\Adobe 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 ____D C:\Users\shark\AppData\Local\VirtualStore 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 ____D C:\Users\shark\AppData\Local\Publishers 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 ____D C:\Users\shark\AppData\Local\Google 2021-08-09 03:14 - 2021-08-09 03:14 - 000000000 ____D C:\Users\shark\ansel 2021-08-09 02:15 - 2021-08-09 02:15 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb 2021-08-09 02:15 - 2021-08-09 02:15 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb 2021-08-09 02:15 - 2021-08-09 02:15 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb 2021-08-09 02:15 - 2021-08-09 02:15 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb 2021-08-09 01:54 - 2021-08-09 01:54 - 000002392 _____ C:\Users\aroma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nahimic Companion.lnk 2021-07-17 23:53 - 2021-07-17 23:53 - 000000000 ____D C:\Users\aroma\Desktop\Pacześs Rafal - Grube wióry (czyta autor) 2021-07-17 15:21 - 2021-07-17 15:21 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-08-15 15:11 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-08-15 15:10 - 2021-07-08 21:43 - 000000000 ____D C:\ProgramData\Ashampoo Backup 2021-08-15 15:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration 2021-08-15 14:42 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-08-15 14:26 - 2021-07-04 20:28 - 000000000 ____D C:\Program Files (x86)\Google 2021-08-15 14:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-08-15 14:18 - 2021-07-04 20:42 - 000000000 ____D C:\SteamLibrary 2021-08-15 14:17 - 2021-07-04 23:06 - 001678234 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-08-15 14:17 - 2019-12-07 17:09 - 000747542 _____ C:\WINDOWS\system32\perfh015.dat 2021-08-15 14:17 - 2019-12-07 17:09 - 000144288 _____ C:\WINDOWS\system32\perfc015.dat 2021-08-15 14:17 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2021-08-15 14:17 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2021-08-15 14:15 - 2021-07-09 19:37 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat 2021-08-15 14:14 - 2021-07-04 19:43 - 000000000 ____D C:\ProgramData\NVIDIA 2021-08-15 14:13 - 2021-07-04 21:06 - 000000000 ____D C:\Users\aroma\AppData\Roaming\LGHUB 2021-08-15 14:13 - 2021-07-04 21:06 - 000000000 ____D C:\Users\aroma\AppData\Local\LGHUB 2021-08-15 14:12 - 2021-07-08 21:43 - 000000000 ____D C:\Users\_ashbackup_ 2021-08-15 14:12 - 2021-07-04 23:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-08-15 14:12 - 2021-07-04 23:01 - 000000000 ____D C:\Users\aroma 2021-08-15 14:12 - 2021-07-04 23:00 - 000008192 ___SH C:\DumpStack.log.tmp 2021-08-15 14:12 - 2021-07-04 23:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-08-15 14:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-08-15 01:50 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2021-08-15 01:46 - 2021-07-04 20:15 - 000000000 ____D C:\Users\aroma\AppData\Local\D3DSCache 2021-08-14 22:32 - 2021-07-08 21:51 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys 2021-08-14 18:41 - 2021-07-08 19:09 - 000000000 ____D C:\Program Files\Common Files\PUBG 2021-08-14 18:11 - 2021-07-08 19:09 - 002729456 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys 2021-08-14 13:14 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-08-14 13:00 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2021-08-14 12:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-08-14 12:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-08-14 12:53 - 2021-07-04 20:25 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2021-08-14 11:51 - 2021-07-04 20:00 - 000000000 ____D C:\ProgramData\Package Cache 2021-08-14 11:46 - 2021-07-04 22:40 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-08-14 11:45 - 2021-07-04 22:40 - 133215968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-08-14 11:06 - 2021-07-04 20:15 - 000000000 ____D C:\Users\aroma\AppData\Local\NVIDIA 2021-08-14 11:04 - 2021-07-04 19:43 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-08-14 08:21 - 2021-07-07 21:41 - 000002588 _____ C:\WINDOWS\system32\Tasks\SamsungMagician 2021-08-14 08:08 - 2021-07-06 21:27 - 000000000 ____D C:\Users\aroma\AppData\Local\Battle.net 2021-08-14 08:04 - 2021-07-08 21:46 - 000000000 ____D C:\ProgramData\ProductData 2021-08-14 02:53 - 2021-07-11 15:44 - 000000000 ____D C:\Users\aroma\AppData\Roaming\Origin 2021-08-14 02:53 - 2021-07-11 15:44 - 000000000 ____D C:\ProgramData\Origin 2021-08-14 02:46 - 2021-07-11 16:14 - 000000000 ____D C:\Program Files (x86)\Origin Games 2021-08-14 02:46 - 2021-07-11 15:44 - 000000000 ____D C:\Users\aroma\AppData\Local\Origin 2021-08-14 01:18 - 2021-07-06 21:13 - 000000000 ____D C:\Users\aroma\AppData\Roaming\discord 2021-08-14 00:43 - 2021-07-06 21:13 - 000000000 ____D C:\Users\aroma\AppData\Local\Discord 2021-08-10 18:25 - 2021-07-08 21:43 - 000000000 ____D C:\Users\aroma\AppData\Local\Ashampoo Backup 2021-08-10 15:46 - 2021-07-04 19:44 - 000000000 ____D C:\Users\aroma\AppData\Local\Packages 2021-08-10 15:46 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2021-08-10 15:46 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-08-10 07:49 - 2021-07-04 19:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-08-09 06:52 - 2019-12-07 17:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-08-09 06:52 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2021-08-09 06:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2021-08-09 06:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-08-09 06:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2021-08-09 06:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2021-08-09 06:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-08-09 06:52 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing 2021-08-09 04:35 - 2021-07-04 19:44 - 000000000 ____D C:\Users\aroma\AppData\Roaming\Adobe 2021-08-09 03:46 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2021-08-09 03:39 - 2021-07-04 20:29 - 000002267 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-08-09 03:39 - 2021-07-04 20:29 - 000002226 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2021-08-09 03:37 - 2021-07-04 21:45 - 000000000 ____D C:\Users\aroma\AppData\Local\ElevatedDiagnostics 2021-08-09 03:24 - 2021-07-04 22:12 - 000000000 ___DC C:\WINDOWS\Panther 2021-08-09 03:24 - 2021-07-04 21:45 - 000000000 ____D C:\Users\aroma\AppData\Local\CrashDumps 2021-08-09 03:16 - 2021-07-04 19:46 - 000000000 ___HD C:\OneDriveTemp 2021-08-09 03:14 - 2021-07-04 19:44 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-08-09 02:32 - 2021-07-04 22:41 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-08-09 02:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2021-08-09 02:31 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-08-08 22:01 - 2021-07-04 19:46 - 000000000 ____D C:\Users\aroma\AppData\Local\PlaceholderTileLogoFolder 2021-08-08 21:21 - 2021-07-04 23:03 - 000003570 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2021-08-08 21:21 - 2021-07-04 23:03 - 000003446 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2021-08-08 21:16 - 2021-07-11 15:45 - 000000000 ____D C:\Program Files (x86)\Origin 2021-08-08 21:12 - 2021-07-04 20:11 - 000000000 ____D C:\Users\aroma\AppData\Local\NVIDIA Corporation 2021-07-17 20:38 - 2021-07-09 19:32 - 000000000 ____D C:\ProgramData\Riot Games 2021-07-16 09:45 - 2021-07-04 22:41 - 000740152 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll 2021-07-16 09:45 - 2021-07-04 22:41 - 000486712 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-08-14 13:13 - 2021-08-14 13:13 - 000000017 _____ () C:\Users\aroma\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================