Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 21-08-2021 Uruchomiony przez User (administrator) DESKTOP-BJV2MDE (Micro-Star International Co., Ltd. MS-7C88) (26-08-2021 19:45:23) Uruchomiony z D:\Nowy folder (14) Załadowane profile: User Platform: Windows 10 Pro Wersja 20H2 19042.1165 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) () [Brak podpisu cyfrowego] C:\Program Files (x86)\Mouse Server\Mouse Server Luminati.exe () [Brak podpisu cyfrowego] C:\Program Files (x86)\Vidoc\scrobbler\VidocScrobbler.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <5> (DVJ LIMITED -> DVJ LIMITED) C:\Users\User\AppData\Roaming\ProductAuthenticationService\pas.exe (File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.1.8.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe (Gaijin Network LTD -> Gaijin) C:\Users\User\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_8a00302ff60aed46\LMS.exe (LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe (LAVASOFT SOFTWARE CANADA INC -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (Luminati Networks Ltd -> Bright Data Ltd.) C:\Program Files (x86)\Mouse Server\net_updater32.exe (Luminati Networks Ltd -> Luminati Networks Ltd.) C:\Program Files (x86)\Mouse Server\luminati\net_svc.exe (Lyrha Software Technologies Inc. -> ) C:\Users\User\AppData\Roaming\SteamServerBrowser\SteamServerBrowser.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe (Monect (Suzhou) Co., Ltd. -> ) C:\Program Files\PC Remote Receiver\MonectServer.exe (Monect (Suzhou) Co., Ltd. -> Monect) C:\Program Files\PC Remote Receiver\MonectServerService.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\NVDisplay.Container.exe <2> (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2> (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe <2> (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe (Softdeluxe) [Brak podpisu cyfrowego] C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\fdm.exe (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine.exe (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesGG.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7> (Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (wifimouse.necta.us) [Brak podpisu cyfrowego] C:\Program Files (x86)\Mouse Server\MouseServer.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe [1256824 2021-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [353400 2021-01-22] (Riot Games, Inc. -> Riot Games, Inc.) HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesGG.exe [14516560 2021-08-06] (SteelSeries ApS -> SteelSeries ApS) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [171832 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601928 2018-12-15] (Oracle America, Inc. -> Oracle Corporation) HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe [267072 2021-06-02] (Razer USA Ltd. -> Razer Inc.) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5890504 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4110568 2021-07-21] (Valve -> Valve Corporation) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\User\AppData\Local\Microsoft\Teams\Update.exe [2454184 2021-05-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33251808 2021-07-30] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [Discord] => C:\Users\User\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [com.blitz.app] => C:\Users\User\AppData\Local\Programs\Blitz\Blitz.exe --autostart HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\User\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8520168 2021-04-02] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [utweb] => "C:\Users\User\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [Free Download Manager] => C:\Users\User\AppData\Local\Softdeluxe\Free Download Manager\fdm.exe [4938752 2021-05-21] (Softdeluxe) [Brak podpisu cyfrowego] HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [ProductAuthenticationService] => C:\Users\User\AppData\Roaming\ProductAuthenticationService\pas.exe [1003024 2021-04-14] (DVJ LIMITED -> DVJ LIMITED) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [SteamServerBrowser] => C:\Users\User\AppData\Roaming\SteamServerBrowser\SteamServerBrowser.exe [289304 2021-04-26] (Lyrha Software Technologies Inc. -> ) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [Gaijin.Net Updater] => C:\Users\User\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2374376 2020-12-03] (Gaijin Network LTD -> Gaijin) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3519608 2021-07-26] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [MouseServer] => C:\Program Files (x86)\Mouse Server\MouseServer.exe [518656 2021-08-13] (wifimouse.necta.us) [Brak podpisu cyfrowego] HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [MorningGlitter] => C:\Windows\rss\csrss.exe [4655104 2021-08-23] () [Brak podpisu cyfrowego] <==== UWAGA HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [WarThunderLauncher] => C:\Users\User\AppData\Local\WarThunder\launcher.exe [6132744 2021-08-05] (Gaijin Network LTD -> Gaijin) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35144320 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-5354036-1856788173-4118867812-1001\...\MountPoints2: {9136f51a-d97f-11eb-ae87-2cf05db1279c} - "E:\HiSuiteDownLoader.exe" HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3519608 2021-07-26] (Razer USA Ltd. -> Razer Inc.) HKLM\...\Print\Monitors\HP E611 Status Monitor: C:\Windows\system32\hpinkstsE611LM.dll [401920 2019-07-01] (Hewlett Packard -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-20] (Google LLC -> Google LLC) BootExecute: autocheck autochk * avgBoot.exe /M:46ee4bbc2ce /dir:"C:\Program Files\AVG\Antivirus" GroupPolicy: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0B6CB536-9EAF-427B-8755-479AAEF66B15} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {203DC808-16E7-4039-BA75-4338EE612817} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {24E477E3-6815-45DE-8FC6-510B10D364F7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {268013C2-62B5-4A82-8DAB-B460A257C56F} - System32\Tasks\Opera scheduled Autoupdate 1617371967 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe Task: {324DFF71-25BA-41AD-99B1-CB2DB797692D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-08-16] (Piriform Software Ltd -> Piriform) Task: {40085C31-728B-43C7-9FF6-CFE0D67532B9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-22] (Google LLC -> Google LLC) Task: {4F5D7EDA-EB26-4526-B0C7-3D6E4AA67651} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {70CD2ED8-1B3F-4A2A-A349-72C092619BD0} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1821968 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies) Task: {73F4E860-2395-4211-A41B-1463229449D8} - System32\Tasks\csrss => C:\Windows\rss\csrss.exe [4655104 2021-08-23] () [Brak podpisu cyfrowego] <==== UWAGA Task: {73F53AC1-8F1B-45C6-83A7-326965E77CA4} - System32\Tasks\CCleanerSkipUAC - User => C:\Program Files\CCleaner\CCleaner.exe [29211264 2021-08-16] (Piriform Software Ltd -> Piriform Software Ltd) Task: {7478FC75-E4F2-4FB1-B788-B1AEB83197B6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2021-05-22] (Google LLC -> Google LLC) Task: {7EEC6FAD-89FC-4977-BEB0-F47F0ED0A97F} - System32\Tasks\Vidoc => C:\Program Files (x86)\Vidoc\Vidoc.exe [225464 2021-05-31] (Plum Research Spółka Akcyjna -> ) Task: {8D826F5E-BFF1-435E-80E5-C1E9F4AA16A8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8DC233BE-3732-479B-8FBA-82177CB2DBDF} - System32\Tasks\Opera scheduled assistant Autoupdate 1617371974 => C:\Users\User\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\User\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {8FC5DFB7-DF2D-4B95-A253-E1B4FEEE49B9} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) Task: {97AAB40A-1295-40EF-AF04-8FA48C17AE55} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {99D9999A-6942-4B60-B01D-FAF3C706F8A1} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {A40D7F37-5FDC-4551-BA0E-C19E37B87E08} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A5D10D3B-3F82-4BF4-B892-D79FB81A9457} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation) Task: {AA2C7AF5-B86F-4253-9DBA-7298E37379E1} - System32\Tasks\Opera GX scheduled Autoupdate 1612464029 => C:\Users\User\AppData\Local\Programs\Opera GX\launcher.exe [41841360 2021-08-12] (Opera Software AS -> Opera Software) Task: {AA87D3B8-C71C-4BCE-B50F-F250265C3062} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B06C7C7D-BE61-4FDE-8219-12451E9D2073} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1615879836 => C:\Users\User\AppData\Local\Programs\Opera GX\launcher.exe [41841360 2021-08-12] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\User\AppData\Local\Programs\Opera GX\assistant" $(Arg0) Task: {B18DF2D0-6F7F-4370-A47A-CF0B31326E77} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\BlueStacksHelper" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\Intel PTT EK Recertification" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\klcp_update" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\MSI_Toast_Server" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-5354036-1856788173-4118867812-1001" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-5354036-1856788173-4118867812-500" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(21): schtasks.exe -> /Change /TN "\Opera GX scheduled assistant Autoupdate 1615879836" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(22): schtasks.exe -> /Change /TN "\Opera GX scheduled Autoupdate 1612464029" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(23): schtasks.exe -> /Change /TN "\Opera scheduled assistant Autoupdate 1617371974" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(24): schtasks.exe -> /Change /TN "\Opera scheduled Autoupdate 1617371967" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(25): schtasks.exe -> /Change /TN "\Vidoc" /ENABLE Task: {DB199D82-C237-4FFC-9F0E-24A4C75DE255} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(26): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE Task: {DEEFAC9A-A784-42A9-8B5D-A75C78F9B5B4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E44A97B3-E6FE-4E96-BAC0-FD02ECD4B284} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E984A2DE-EA44-4F94-91A2-174A78D3F9EE} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-11-23] () [Brak podpisu cyfrowego] Task: {F2A2D323-145D-4DA1-ACDA-CC8A2EB2917B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MpCmdRun.exe [673816 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FEF1801D-949C-45AD-AE2C-98EB3808E9C7} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.100.252 Tcpip\..\Interfaces\{dee06e2f-a8e5-45a1-8e43-80806da60a50}: [NameServer] 1.1.1.1,1.0.0.1 Tcpip\..\Interfaces\{dee06e2f-a8e5-45a1-8e43-80806da60a50}: [DhcpNameServer] 192.168.100.252 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-24] Edge Extension: (Free Download Manager) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2021-08-21] Edge Extension: (Outlook) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2021-02-04] Edge Extension: (Word) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2021-02-04] Edge Extension: (Excel) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2021-02-04] Edge Extension: (PowerPoint) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2021-02-04] FireFox: ======== FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2021-05-16] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2021-05-16] (Oracle America, Inc. -> Oracle Corporation) Chrome: ======= CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2021-08-26] CHR DefaultSearchURL: Default -> hxxps://poshukach.com/search?q={searchTerms}&fr=ps&gp=496722&altserp=1 CHR DefaultSearchKeyword: Default -> poshukach engin search CHR DefaultSuggestURL: Default -> hxxps://suggest.finditnowonline.com/suggestionfeed/suggestion?format=json&gd=496721&q={searchTerms} CHR Extension: (Prezentacje) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-05-22] CHR Extension: (Just Black) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-05-22] CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-05-22] CHR Extension: (Dysk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-05-22] CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-05-22] CHR Extension: (alerabat.com | kupony i kody rabatowe) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacdinoicboceafielngnmjjplncljhj [2021-08-23] CHR Extension: (Arkusze) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-05-22] CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-07-24] CHR Extension: (Mess) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpjbefeabedbcmieiedpnhpngeacjamg [2021-05-22] CHR Extension: (App for Messenger™) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlhfdmcelnogageoofnibennidigchog [2021-05-22] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-05-22] CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-05-22] CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-24] Opera: ======= OPR Profile: C:\Users\User\AppData\Roaming\Opera Software\Opera Stable [2021-04-05] OPR Notifications: Opera Stable -> hxxps://www21.darenjarvis.pro OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-04-02] OPR Extension: (Safe Torrent Scanner) - C:\Users\User\AppData\Roaming\Opera Software\Opera Stable\Extensions\gpabaecgmgbeapjghcfhohnbljcocknl [2021-04-02] StartMenuInternet: (HKU\S-1-5-21-5354036-1856788173-4118867812-1001) Opera GXStable - "C:\Users\User\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [630584 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [378168 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [8350832 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-02-25] (BattlEye Innovations e.K. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818288 2021-05-16] (EasyAntiCheat Oy -> Epic Games, Inc) R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.) R2 luminati_net_updater_win_wifimouse_necta_us; C:\Program Files (x86)\Mouse Server\net_updater32.exe [7396696 2021-08-21] (Luminati Networks Ltd -> Bright Data Ltd.) R2 MonectServerService; C:\Program Files\PC Remote Receiver\MonectServerService.exe [2528960 2021-03-18] (Monect (Suzhou) Co., Ltd. -> Monect) R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1134616 2021-04-28] (Razer USA Ltd. -> Razer Inc.) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [321560 2021-04-13] (Razer USA Ltd. -> Razer Inc.) S2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-03-22] (Razer USA Ltd. -> Razer Inc) S2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294520 2021-07-25] (Razer USA Ltd. -> Razer Inc.) S3 Rockstar Service; D:\gry\gta\Launcher\RockstarService.exe [1332632 2021-03-30] (Rockstar Games, Inc. -> Rockstar Games) S2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533808 2021-01-29] (Razer USA Ltd. -> Razer Inc.) S2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [291320 2021-06-02] (Razer USA Ltd. -> Razer Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5394872 2021-08-16] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [31568 2021-08-06] (SteelSeries ApS -> ) S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10091440 2021-01-22] (Riot Games, Inc. -> Riot Games, Inc.) R2 VidocScrobbler; C:\Program Files (x86)\Vidoc\Scrobbler\VidocScrobbler.exe [3264512 2021-05-28] () [Brak podpisu cyfrowego] R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2021-04-02] (LAVASOFT SOFTWARE CANADA INC -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\NisSrv.exe [2727416 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2107.4-0\MsMpEng.exe [136656 2021-08-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefender; C:\Windows\windefender.exe [0 0000-00-00] (Odmowa dostępu) <==== UWAGA (Odmowa dostępu) <==== UWAGA R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_5d5c294bb8d17217\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [35856 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [221728 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [367704 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [250480 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [99440 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S0 avgElam; C:\Windows\System32\drivers\avgElam.sys [17336 2021-08-26] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [41488 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [184288 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [538632 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [107976 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) S0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [83040 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [851856 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [553640 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [215528 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [328712 2021-08-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-05] (Bluestack Systems, Inc -> Bluestack System Inc.) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.) R3 MpKsld7d49cbc; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B095C07B-A862-4705-AD3A-E0BDEDB606CE}\MpKslDrv.sys [123112 2021-08-24] (Microsoft Windows -> Microsoft Corporation) R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc) R3 RzDev_021e; C:\Windows\System32\drivers\RzDev_021e.sys [54168 2020-08-24] (Razer USA Ltd. -> Razer Inc) R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [48848 2020-12-21] (SteelSeries ApS -> SteelSeries ApS) R3 sshid; C:\Windows\system32\DRIVERS\sshid.sys [57440 2020-10-09] (SteelSeries ApS -> SteelSeries ApS) S3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2021-05-28] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [5782360 2021-01-22] (Riot Games, Inc. -> Riot Games, Inc.) R3 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer) S3 vjoy; C:\Windows\System32\drivers\vjoy.sys [67448 2019-07-14] (On-site Dental Systems (Justin Shafer) -> Shaul Eizikovich) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2021-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [434424 2021-08-05] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [78072 2021-08-05] (Microsoft Windows -> Microsoft Corporation) R3 Winmon; C:\Windows\System32\drivers\Winmon.sys [0 0000-00-00] () <==== UWAGA (zerobajtowy plik/folder) R3 WinmonFS; C:\Windows\System32\drivers\WinmonFS.sys [0 0000-00-00] (Windows (R) Win 7 DDK provider) <==== UWAGA (zerobajtowy plik/folder) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-08-26 19:42 - 2021-08-26 19:42 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus FREE.lnk 2021-08-26 19:42 - 2021-08-26 19:42 - 000000000 ____D C:\Windows\system32\Tasks\AVG 2021-08-26 19:42 - 2021-08-26 19:42 - 000000000 ____D C:\Users\User\AppData\Roaming\AVG 2021-08-26 19:42 - 2021-08-26 19:42 - 000000000 ____D C:\Users\User\AppData\Local\AVG 2021-08-26 19:42 - 2021-08-26 19:41 - 000851856 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000553640 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000538632 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgNetHub.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000367704 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriver.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000340792 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2021-08-26 19:42 - 2021-08-26 19:41 - 000328712 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000250480 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsh.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000221728 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000215528 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000184288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000107976 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000099440 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniv.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000083040 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000041488 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgKbd.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000035856 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArDisk.sys 2021-08-26 19:42 - 2021-08-26 19:41 - 000017336 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgElam.sys 2021-08-26 19:41 - 2021-08-26 19:42 - 000000000 ____D C:\ProgramData\AVG 2021-08-26 19:41 - 2021-08-26 19:42 - 000000000 ____D C:\Program Files\CCleaner 2021-08-26 19:41 - 2021-08-26 19:41 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update 2021-08-26 19:41 - 2021-08-26 19:41 - 000002900 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - User 2021-08-26 19:41 - 2021-08-26 19:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2021-08-26 19:41 - 2021-08-26 19:41 - 000000000 ____D C:\Program Files\Common Files\AVG 2021-08-26 19:41 - 2021-08-26 19:41 - 000000000 ____D C:\Program Files\AVG 2021-08-24 08:16 - 2021-08-26 19:45 - 000000000 ____D C:\FRST 2021-08-23 20:22 - 2021-08-23 20:22 - 000036096 _____ C:\Windows\system32\Drivers\trzF296.tmp 2021-08-23 20:10 - 2021-08-26 19:36 - 000003266 _____ C:\Windows\system32\Tasks\csrss 2021-08-22 17:20 - 2021-08-22 17:20 - 000000000 ____D C:\Users\User\AppData\LocalLow\Ripstone 2021-08-20 18:33 - 2021-08-20 20:24 - 000000000 ____D C:\Program Files\Hola 2021-08-20 18:18 - 2021-08-20 18:18 - 011904616 _____ (GIANTS Software GmbH) C:\Users\User\Downloads\FarmingSimulator2019Game.cdx 2021-08-20 17:27 - 2021-08-20 17:27 - 000000000 ____D C:\Windows\system32\appmgmt 2021-08-20 16:30 - 2021-08-20 17:28 - 000000000 ____D C:\Program Files (x86)\Proton Technologies 2021-08-20 16:30 - 2021-08-20 16:30 - 000000000 ____D C:\Users\User\AppData\Local\ToastNotificationManagerCompat 2021-08-20 16:29 - 2021-08-20 17:28 - 000000000 ____D C:\Users\User\AppData\Roaming\Proton Technologies AG 2021-08-16 12:19 - 2021-08-16 12:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Remote Receiver 2021-08-16 12:19 - 2021-08-16 12:19 - 000000000 ____D C:\Program Files\PC Remote Receiver 2021-08-16 11:51 - 2021-08-16 11:51 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2021-08-16 11:51 - 2021-08-16 11:51 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2021-08-16 11:51 - 2021-08-16 11:51 - 001823280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2021-08-16 11:51 - 2021-08-16 11:51 - 001393480 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2021-08-16 11:51 - 2021-08-16 11:51 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2021-08-16 11:51 - 2021-08-16 11:51 - 000011347 _____ C:\Windows\system32\DrtmAuthTxt.wim 2021-08-16 11:50 - 2021-08-16 11:50 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2021-08-16 11:47 - 2021-08-16 11:47 - 000000000 ___HD C:\$WinREAgent 2021-08-16 11:05 - 2021-08-26 19:42 - 000000000 ____D C:\Program Files (x86)\Mouse Server 2021-08-16 11:05 - 2021-08-22 14:35 - 000000000 ____D C:\Users\User\AppData\Local\luminati 2021-08-16 11:05 - 2021-08-16 11:05 - 000001133 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mouse Server.lnk 2021-08-16 11:05 - 2021-08-16 11:05 - 000000000 ____D C:\Users\User\AppData\Roaming\MouseServer 2021-08-06 20:16 - 2021-08-06 20:16 - 000000000 ____D C:\Users\User\AppData\LocalLow\Kedexa 2021-08-05 18:00 - 2021-08-05 18:00 - 000002298 _____ C:\Windows\system32\Drivers\etc\hosts.rollback 2021-08-05 18:00 - 2021-03-03 09:08 - 000000901 _____ C:\Windows\system32\Drivers\etc\hosts.backup 2021-08-05 17:59 - 2021-08-05 18:00 - 000000000 ____D C:\Users\User\AppData\Roaming\HOODLUM 2021-08-05 17:59 - 2021-08-05 18:00 - 000000000 ____D C:\Users\User\AppData\Local\ForzaHorizon4 2021-08-05 16:25 - 2021-08-05 16:25 - 000000000 ____D C:\Users\User\AppData\Roaming\MPC-HC 2021-08-05 13:10 - 2021-08-05 13:10 - 000541842 _____ C:\Users\User\Downloads\Forza Horizon 4 [FitGirl Repack].torrent ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-08-26 19:42 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2021-08-26 19:40 - 2021-05-22 14:39 - 000000000 ____D C:\Program Files (x86)\Google 2021-08-26 19:39 - 2021-02-04 20:54 - 000000000 ____D C:\ProgramData\NVIDIA 2021-08-26 19:38 - 2021-04-28 08:13 - 000000000 ____D C:\Users\User\AppData\Local\LogMeIn Hamachi 2021-08-26 19:37 - 2021-02-04 20:32 - 000000000 ____D C:\Program Files (x86)\Steam 2021-08-26 19:36 - 2021-04-16 11:25 - 000000000 ____D C:\Users\User\AppData\Local\WarThunder 2021-08-26 19:36 - 2021-02-04 20:20 - 000000000 ___RD C:\Users\User\OneDrive 2021-08-24 10:04 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-08-24 07:18 - 2021-03-26 14:29 - 000000000 ____D C:\Users\User\.junique 2021-08-24 06:51 - 2021-03-26 14:28 - 000000000 ____D C:\Users\User\AppData\Local\CrystalLauncherInstaller 2021-08-23 20:35 - 2021-02-05 02:56 - 000000000 ____D C:\Users\User\AppData\Local\PlaceholderTileLogoFolder 2021-08-23 20:26 - 2021-02-04 20:26 - 001678234 _____ C:\Windows\system32\PerfStringBackup.INI 2021-08-23 20:26 - 2019-12-07 17:09 - 000747596 _____ C:\Windows\system32\perfh015.dat 2021-08-23 20:26 - 2019-12-07 17:09 - 000144342 _____ C:\Windows\system32\perfc015.dat 2021-08-23 20:26 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2021-08-23 20:11 - 2021-02-04 20:15 - 000008192 ___SH C:\DumpStack.log.tmp 2021-08-23 20:11 - 2020-11-19 01:39 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-08-23 20:10 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI 2021-08-23 19:09 - 2020-11-19 00:38 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-08-23 18:16 - 2021-02-05 08:58 - 000000000 ____D C:\Users\User\AppData\Roaming\discord 2021-08-23 17:32 - 2021-02-05 08:58 - 000000000 ____D C:\Users\User\AppData\Local\Discord 2021-08-23 11:10 - 2021-02-04 20:17 - 000000000 ____D C:\Users\User\AppData\Local\Packages 2021-08-23 11:10 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-08-23 11:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2021-08-22 17:20 - 2021-02-16 17:59 - 000000000 ____D C:\Users\User\OneDrive\Dokumenty\My Games 2021-08-21 23:18 - 2020-11-19 01:43 - 000000000 ____D C:\ProgramData\Packages 2021-08-21 22:56 - 2021-05-14 19:26 - 000000000 ____D C:\ProgramData\TruckersMP 2021-08-21 14:01 - 2021-02-05 02:32 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps 2021-08-21 10:57 - 2021-03-26 14:28 - 000000000 ____D C:\Users\User\AppData\Roaming\Crystal-Launcher 2021-08-20 16:54 - 2021-02-04 20:20 - 000003372 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-5354036-1856788173-4118867812-1001 2021-08-20 16:54 - 2021-02-04 20:17 - 000002422 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-08-20 16:25 - 2021-05-22 14:39 - 000002259 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-08-20 16:25 - 2020-11-19 01:41 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-08-20 16:25 - 2020-11-19 01:41 - 000003386 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-08-20 16:24 - 2021-02-04 20:40 - 000004252 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1612464029 2021-08-20 16:24 - 2021-02-04 20:40 - 000001433 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera GX.lnk 2021-08-17 08:54 - 2020-11-19 00:38 - 000258584 _____ C:\Windows\system32\FNTCACHE.DAT 2021-08-17 08:53 - 2019-12-07 17:12 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-08-17 08:53 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP 2021-08-17 08:53 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2021-08-17 08:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2021-08-17 08:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources 2021-08-17 08:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe 2021-08-17 08:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism 2021-08-17 08:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents 2021-08-17 08:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2021-08-17 08:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr 2021-08-17 08:53 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing 2021-08-16 11:52 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2021-08-16 11:47 - 2021-02-04 20:23 - 000000000 ____D C:\Windows\system32\MRT 2021-08-16 11:46 - 2021-02-04 20:23 - 133215968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2021-08-16 11:28 - 2021-07-20 11:26 - 000000000 ____D C:\Users\User\AppData\Roaming\steelseries-gg-client 2021-08-09 20:15 - 2021-02-05 19:31 - 000000000 ____D C:\Users\User\AppData\Roaming\.minecraft 2021-08-09 20:05 - 2021-02-05 19:32 - 000000000 ____D C:\Users\User\AppData\Roaming\.tlauncher 2021-08-06 11:20 - 2021-02-04 20:17 - 000000000 ____D C:\Users\User\AppData\Local\ConnectedDevicesPlatform 2021-08-05 20:42 - 2021-04-06 13:00 - 000007637 _____ C:\Users\User\AppData\Local\Resmon.ResmonCfg 2021-08-05 17:59 - 2021-04-11 16:53 - 000000000 ____D C:\Windows\SysWOW64\directx 2021-08-05 17:59 - 2021-02-04 21:11 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache 2021-08-05 16:23 - 2021-05-16 17:55 - 000000000 ____D C:\Users\User\AppData\Local\GeometryDash 2021-08-05 08:35 - 2021-05-22 14:39 - 000003570 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2021-08-05 08:35 - 2021-05-22 14:39 - 000003446 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2021-08-05 08:34 - 2020-11-19 01:39 - 000000000 ____D C:\Windows\system32\Drivers\wd 2021-07-31 17:45 - 2021-04-18 21:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer 2021-07-30 20:33 - 2021-02-05 09:21 - 000000000 ____D C:\Users\User\AppData\Local\ElevatedDiagnostics 2021-07-30 19:16 - 2021-02-23 19:34 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-03-26 14:28 - 2021-04-27 15:16 - 000000046 _____ () C:\Users\User\AppData\Roaming\.crystalinst 2021-04-06 13:00 - 2021-08-05 20:42 - 000007637 _____ () C:\Users\User\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================