Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 06-10-2023 Uruchomiony przez 48662 (administrator) LAPTOP-06RRK4UE (Acer Nitro AN515-57) (06-10-2023 21:37:48) Uruchomiony z C:\Users\48662\OneDrive\Pulpit\FRST64.exe Załadowane profile: 48662 Platforma: Microsoft Windows 11 Home Wersja 22H2 22621.2361 (X64) Język: Polski (Polska) Domyślna przeglądarka: Opera Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAgent.exe (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6> (C:\Program Files\Acer\NitroSense Service\PSSvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSAdminAgent.exe (C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe (C:\Program Files\Acer\Quick Access Service\QASvc.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe (C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\CamUsage.exe (C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> ) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\MicUsage.exe (C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Plugin\AppMonitor\AppMonitorPlugIn.exe (C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Users\48662\AppData\Local\Medal\app-4.2054.0\Medal.exe ->) (Ferox Games B.V. -> ) C:\Users\48662\AppData\Local\Medal\app-4.2054.0\resources\app\Medal.exe (C:\Users\48662\AppData\Local\Medal\app-4.2054.0\resources\app\Medal.exe ->) (Ferox Games B.V. -> Ferox Games B.V.) C:\Users\48662\AppData\Local\Medal\recorder-3.689.0\MedalEncoder.exe (C:\Users\48662\AppData\Local\Medal\recorder-3.689.0\MedalEncoder.exe ->) () [Brak podpisu cyfrowego] C:\Users\48662\AppData\Local\Medal\recorder-3.689.0\DLLs\crashpad_handler.exe (D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <3> (D:\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.233.2.2\OverwolfHelper.exe (D:\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.233.2.2\OverwolfHelper64.exe (D:\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) D:\Overwolf\0.233.2.2\OverwolfBrowser.exe <4> (Discord Inc. -> Discord Inc.) C:\Users\48662\AppData\Local\Discord\app-1.0.9018\Discord.exe <6> (drivers\RivetNetworks\Killer\KAPSService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPS.exe (drivers\RivetNetworks\Killer\xTendUtilityService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe (DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIServiceN.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxEMN.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (Ferox Games B.V. -> Medal B.V.) C:\Users\48662\AppData\Local\Medal\app-4.2054.0\Medal.exe <7> (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WpcMon.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Overwolf Ltd -> Overwolf LTD) D:\Overwolf\Overwolf.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\NitroSense Service\PSSvc.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe (services.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe (services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe (services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe (services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (services.exe ->) (Famatech Corp. -> Famatech Corp.) C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe (services.exe ->) (GoTrustID Inc -> GOTrustID Inc.) C:\Program Files\GoTrust ID Plugin\Bridge_Service.exe (services.exe ->) (GOTrustID Inc.) [Brak podpisu cyfrowego] C:\Program Files\GoTrust ID Plugin\GoTrust ID Plugin\GTFidoService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxCUIServiceN.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_4ce8bafd96682424\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorvd.inf_amd64_a5ea1b1d8db1527e\RstMwService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_a439e07c373809e2\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e31d62740aef2af9\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_0f43cda6a2474b5c\AS\IAS\IntelAudioService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_5a6caef2c61d6623\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <3> (services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe (services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe (services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\KAPSService.exe (services.exe ->) (Rivet Networks LLC -> Rivet Networks, LLC.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe (services.exe ->) (Shanghai Microvirt Software Technology Co., Ltd. -> ) D:\Program Files\Microvirt\MEmu\MemuService.exe (services.exe ->) (TBT_DCH_DRV_PROD -> ) C:\Windows\TbtP2pShortcutService.exe (svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe (svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe (svchost.exe ->) (Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe (svchost.exe ->) (Epic Games Inc. -> Epic Games, Inc.) D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (svchost.exe ->) (Famatech Corp. -> Famatech Corp.) C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe (svchost.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_baf36d4852e8e257\igfxextN.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\Microsoft.AAD.BrokerPlugin.exe (svchost.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194704 2023-09-25] (ESET, spol. s r.o. -> ESET) HKLM-x32\...\Run: [RadminVPN] => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [2089536 2023-07-10] (Famatech Corp. -> Famatech Corp.) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-2790763594-486467956-1157804074-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\48662\AppData\Local\Microsoft\Teams\Update.exe [2460864 2022-01-31] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.149\Installer\chrmstp.exe [2023-10-04] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {219EAAE5-2C55-4B05-BB83-C90F8018D2A5} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2971792 2022-05-20] (Acer Incorporated -> ) Task: {999F85E7-B805-4CF5-8A6A-E9C26C5790D9} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41616 2022-05-20] (Acer Incorporated -> ) Task: {500CB113-3C60-4A6B-AF51-4F9655ACB527} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4836496 2022-05-20] (Acer Incorporated -> ) Task: {F9E4E869-5590-43AB-BBB6-E8EDBB94BFDF} - System32\Tasks\AcerCMUpdateTask2.5.22250 => C:\Program Files (x86)\Acer\Amundsen\2.5.22250\awc.exe [96904 2022-09-25] (Acer Incorporated -> ) Task: {AA3F8A52-CD1C-4BB8-BD3E-FDDA9452D613} - System32\Tasks\CareCenter\com.squirrel.Teams.Teams_Reg_HKCURun_S-1-5-21-2790763594-486467956-1157804074-1001 => C:\Users\48662\AppData\Local\Microsoft\Teams\Update.exe [2460864 2022-01-31] (Microsoft 3rd Party Application Component -> Microsoft Corporation) -> --processStart "Teams.exe" --process-start-args "--system-initiated" Task: {CDFB6841-0623-46D2-B6EB-DE1D43E556E8} - System32\Tasks\CareCenter\Discord_Reg_HKCURun_S-1-5-21-2790763594-486467956-1157804074-1001 => C:\Users\48662\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub) -> --processStart Discord.exe <==== UWAGA Task: {68647D72-236C-4D07-A8FF-AC19D8AC80EF} - System32\Tasks\CareCenter\EpicGamesLauncher_Reg_HKCURun_S-1-5-21-2790763594-486467956-1157804074-1001 => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37105616 2023-09-25] (Epic Games Inc. -> Epic Games, Inc.) Task: {2ECDA186-3036-49DC-88B5-A3FCE1080264} - System32\Tasks\CareCenter\Medal_Reg_HKCURun_S-1-5-21-2790763594-486467956-1157804074-1001 => C:\Users\48662\AppData\Local\Medal\Update.exe [2046848 2023-06-04] (Ferox Games B.V. -> ) -> --processStart "Medal.exe" Task: {0CAB806E-1B36-49E3-978C-6FE20F4AFA5A} - System32\Tasks\CareCenter\MicrosoftEdgeAutoLaunch_8887BF8D5D863FBE5C8ECF8D331F57B1_Reg_HKCURun_S-1-5-21-2790763594-486467956-1157804074-1001 => C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [4210216 2023-09-29] (Microsoft Corporation -> Microsoft Corporation) Task: {C752485C-2002-4741-98A3-1CB57BBA1B97} - System32\Tasks\CareCenter\Opera Browser Assistant_Reg_HKCURun_S-1-5-21-2790763594-486467956-1157804074-1001 => C:\Users\48662\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [1752480 2023-10-06] (Opera Norway AS -> Opera Software) Task: {A99D8C68-20E1-444C-82D9-D9C3B3053AFB} - System32\Tasks\CareCenter\Overwolf_Reg_HKCURun_S-1-5-21-2790763594-486467956-1157804074-1001 => D:\Overwolf\OverwolfLauncher.exe [1785864 2023-10-03] (Overwolf Ltd -> Overwolf Ltd.) Task: {084853E1-CC1D-4B01-A73A-DAC1B7C213AD} - System32\Tasks\CareCenter\RadminVPN_Reg_HKLMWow6432Run => C:\Program Files (x86)\Radmin VPN\RvRvpnGui.exe [2089536 2023-07-10] (Famatech Corp. -> Famatech Corp.) Task: {527391CD-BE96-483D-985C-656BFF9B5A0D} - System32\Tasks\CareCenter\Riot Vanguard_Reg_HKLMRun => C:\Program Files\Riot Vanguard\vgtray.exe (Brak pliku) Task: {607F3165-76A7-4AF7-909C-C6E64E934C22} - System32\Tasks\CareCenter\Steam_Reg_HKCURun_S-1-5-21-2790763594-486467956-1157804074-1001 => C:\Program Files (x86)\Steam\steam.exe [4375912 2023-09-29] (Valve Corp. -> Valve Corporation) Task: {61EBACD9-BAC2-4EE3-8B5B-B7B41459CA10} - System32\Tasks\CareCenter\SunJavaUpdateSched_Reg_HKLMWow6432Run => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Brak pliku) Task: {0E8C8BE3-3991-497B-A239-4DE442F46691} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-25] (Google LLC -> Google LLC) Task: {4E4F42EE-B9E8-46B1-9110-1F6F91BDE5C1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156232 2021-10-25] (Google LLC -> Google LLC) Task: {EA72BA33-BA23-4DEE-9009-3586D9BD1D97} - System32\Tasks\GoTrust ID Driver => C:\Program Files\GoTrust ID Plugin\Resource\GO-Trust_ID_Driver.exe [68192 2020-09-08] (GoTrustID Inc -> ) Task: {18DA9B50-478D-4F37-B292-2D480CCD4A11} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-2790763594-486467956-1157804074-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1960.4.210.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [2277624 2023-09-30] (6E08453F-9BA7-4311-999C-D22FBA2FB1B8 -> Meta Platforms, Inc.) Task: {8B422B66-B59B-4870-A45C-D15ACDC62D20} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26974216 2023-09-27] (Microsoft Corporation -> Microsoft Corporation) Task: {14F25FBB-FC75-43A1-959F-82351C634C15} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26974216 2023-09-27] (Microsoft Corporation -> Microsoft Corporation) Task: {B845EF55-F7F5-4D3F-A3AE-2F1F57307C01} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160920 2023-10-04] (Microsoft Corporation -> Microsoft Corporation) Task: {2DBF9691-3792-44D1-9A37-2C08F8AC62DA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [160920 2023-10-04] (Microsoft Corporation -> Microsoft Corporation) Task: {6BB65FB6-1DF0-4436-B779-75DD6F2AFFA3} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169136 2023-10-04] (Microsoft Corporation -> Microsoft Corporation) Task: {EA03656E-F897-4E0C-9CFE-C21EEAF197AB} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\WINDOWS\system32\UCPDMgr.exe [58880 2023-09-01] (Microsoft Windows -> Microsoft Corporation) Task: {E18B107D-6F5C-462B-828B-2A00F31C82D8} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [712120 2023-10-06] (Mozilla Corporation -> Mozilla Foundation) Task: {6B02885A-ACA3-46B5-BA61-67DC615FDC0E} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [612192 2022-06-13] (Acer Incorporated -> Acer Incorporated) Task: {B44CD716-E742-4D0D-92C8-D078C31B32A1} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {C8CDB647-1592-4AF1-AB5A-4684A502BEAE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation) Task: {DA8A072E-FBC7-49D2-A6B5-5E2AEE940F2E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F7ACA848-1E28-4F2C-BDAF-01AC30B28E97} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BD8447EF-AA2D-4211-A051-2B6FA096B8A3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E89D1CCB-75DE-48C2-93ED-95EEEFCB4A85} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {2AF984A1-D503-4487-9C21-4D9ABED3620E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5BF5EEA4-9D9E-4BC7-9B9C-2CD66249AC0C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1E0BEABC-0792-4BDE-8153-3838E45F9FF1} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C08B7239-C47A-41ED-905E-418EA3562F91} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [70792 2022-08-15] (Acer Incorporated -> ) Task: {D6EE92AD-38AA-4914-AAF3-69320F83C497} - System32\Tasks\Oem\wlanBrokerTask => C:\Program Files (x86)\Acer\ExpressVPN\wlanBroker.exe [18224 2021-03-12] (Acer Incorporated -> ) Task: {1DDB72F4-E492-40D7-9796-E270CDE8AAA4} - System32\Tasks\Opera scheduled assistant Autoupdate 1653506781 => C:\Users\48662\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\48662\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {22A241BE-653C-4481-8EE6-81007BAE66ED} - System32\Tasks\Opera scheduled Autoupdate 1653506776 => C:\Users\48662\AppData\Local\Programs\Opera\launcher.exe [2744224 2023-09-28] (Opera Norway AS -> Opera Software) Task: {AA81E0F9-663A-46B6-B12A-8331D132D55B} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641416 2023-10-03] (Overwolf Ltd -> Overwolf LTD) Task: {C01B3FF4-22C7-47E3-994C-87D02543DF58} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2771616 2022-01-03] (Acer Incorporated -> Acer Incorporated) Task: {934BA674-2AF7-4CC3-804A-AD68492D9D71} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [446624 2022-01-03] (Acer Incorporated -> Acer Incorporated) Task: {8615AB20-4E3C-43E4-8FFC-70E7660CAA15} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [461472 2021-12-02] (Acer Incorporated -> Acer Incorporated) Task: {F6F21B74-E1EB-4302-8DCA-BE32C59F0655} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [153640 2020-09-18] (Acer Incorporated -> Microsoft) Task: {861C7FFD-D2C4-4937-8F0D-2CDCD0E096A7} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268328 2020-11-19] (Acer Incorporated -> Acer Incorporated) Task: {2C2CBE1A-20DA-4F0A-A763-7A90233D509A} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211368 2020-11-19] (Acer Incorporated -> Acer Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 93.91.223.161 8.8.8.8 Tcpip\..\Interfaces\{59627500-1a29-43b1-9a52-28470eea7c09}: [DhcpNameServer] 93.91.223.161 8.8.8.8 Tcpip\..\Interfaces\{8eb679e6-3490-4c8e-94f4-928bb8bb51da}: [DhcpNameServer] 10.0.101.2 10.0.101.3 10.0.101.4 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\48662\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-06] Edge Extension: (Dokumenty Google offline) - C:\Users\48662\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-17] Edge Extension: (Edge relevant text changes) - C:\Users\48662\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-16] FireFox: ======== FF DefaultProfile: hmccby5x.default FF ProfilePath: C:\Users\48662\AppData\Roaming\Mozilla\Firefox\Profiles\hmccby5x.default [2021-10-26] FF ProfilePath: C:\Users\48662\AppData\Roaming\Mozilla\Firefox\Profiles\qo97l59k.default-release [2023-10-06] FF Extension: (Polski Language Pack) - C:\Users\48662\AppData\Roaming\Mozilla\Firefox\Profiles\qo97l59k.default-release\Extensions\langpack-pl@firefox.mozilla.org.xpi [2023-09-11] FF Extension: (Amazon Assistant for Firefox) - C:\Program Files\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com.xpi [2019-05-14] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json] FF Extension: (Polski Language Pack) - C:\Program Files\Mozilla Firefox\distribution\extensions\langpack-pl@firefox.mozilla.org.xpi [2020-09-15] FF Extension: (Mozilla Partner Defaults) - C:\Program Files\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2021-10-26] [Przestarzałe] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-22] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-04] (Microsoft Corporation -> Microsoft Corporation) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2023-10-06] Chrome: ======= CHR Profile: C:\Users\48662\AppData\Local\Google\Chrome\User Data\Default [2023-10-06] CHR Notifications: Default -> hxxps://aribberoviromy.com; hxxps://aternos.org; hxxps://pl.aliexpress.com; hxxps://pl.popsilla.com; hxxps://planetplus.com; hxxps://www.messenger.com; hxxps://www.tiktok.com CHR Extension: (Download Speed Info) - C:\Users\48662\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbpgaidlgghdocnlmgmphkoabgcppcd [2023-03-16] CHR Extension: (Dokumenty Google offline) - C:\Users\48662\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-10] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\48662\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-25] Opera: ======= OPR DefaultProfile: Default OPR Profile: C:\Users\48662\AppData\Roaming\Opera Software\Opera Stable [2023-10-06] OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\48662\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-10-04] OPR Extension: (Opera Wallet) - C:\Users\48662\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-10-04] OPR Extension: (Aria) - C:\Users\48662\AppData\Roaming\Opera Software\Opera Stable\Extensions\igpdmclhhlcpoindmhkhillbfhdgoegm [2023-10-04] OPR Extension: (Amazon Assistant Promotion) - C:\Users\48662\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-06-30] StartMenuInternet: (HKU\S-1-5-21-2790763594-486467956-1157804074-1001) OperaStable - "C:\Users\48662\AppData\Local\Programs\Opera\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [259216 2022-05-20] (Acer Incorporated -> Acer Incorporated) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9712432 2022-09-18] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12859472 2023-09-27] (Microsoft Corporation -> Microsoft Corporation) S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1261568 2023-10-04] (Microsoft Windows -> Microsoft Corporation) S2 Daemon; C:\Program Files (x86)\LagoFast\Daemon.exe [736184 2022-06-22] (JUNYUN LIMITED -> ) R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [243384 2022-08-24] (DTS, Inc. -> DTS Inc.) S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11513448 2023-07-27] (Electronic Arts, Inc. -> Electronic Arts) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1136040 2022-11-22] (EasyAntiCheat Oy -> Epic Games, Inc) S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2022-09-12] (EasyAntiCheat Oy -> Epic Games, Inc.) R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [2532472 2023-09-25] (ESET, spol. s r.o. -> ESET) S3 EHttpSrv; C:\Program Files\ESET\ESET Security\ehttpsrv.exe [55416 2023-09-25] (ESET, spol. s r.o. -> ESET) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3873952 2023-09-25] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3873952 2023-09-25] (ESET, spol. s r.o. -> ESET) S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-12-07] (Epic Games Inc. -> Epic Games, Inc.) R2 GoTrust ID Plugin; C:\Program Files\GoTrust ID Plugin\GoTrust ID Plugin\GTFidoService.exe [15360 2020-09-08] (GOTrustID Inc.) [Brak podpisu cyfrowego] R2 GoTrustID Service; C:\Program Files\GoTrust ID Plugin\Bridge_Service.exe [336992 2020-09-08] (GoTrustID Inc -> GOTrustID Inc.) R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_0f43cda6a2474b5c\AS\IAS\IntelAudioService.exe [531008 2022-01-26] (Intel Corporation -> Intel) R3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [82080 2021-03-12] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [1783992 2021-03-12] (Rivet Networks LLC -> Rivet Networks) R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2671800 2021-03-12] (Rivet Networks LLC -> Rivet Networks) S3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [82088 2021-03-12] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 MEmuSVC; D:\Program Files\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> ) S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641416 2023-10-03] (Overwolf Ltd -> Overwolf LTD) R3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [869728 2022-06-13] (Acer Incorporated -> Acer Incorporated) S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [466080 2022-01-03] (Acer Incorporated -> Acer Incorporated) R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [504480 2022-01-03] (Acer Incorporated -> Acer Incorporated) R2 RvControlSvc; C:\Program Files (x86)\Radmin VPN\RvControlSvc.exe [1179712 2023-07-10] (Famatech Corp. -> Famatech Corp.) R2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [252264 2021-01-25] (TBT_DCH_DRV_PROD -> ) R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [342568 2020-11-19] (Acer Incorporated -> Acer Incorporated) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-02-15] (Microsoft Windows Publisher -> Microsoft Corporation) S2 xTendSoftAPService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [82096 2021-03-12] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 xTendUtilityService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [82096 2021-03-12] (Rivet Networks LLC -> Rivet Networks, LLC.) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_5a6caef2c61d6623\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_5a6caef2c61d6623\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [36800 2022-06-02] (Acer Incorporated -> Acer Incorporated) S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-12-01] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-12-01] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 CMUSBDAC; C:\WINDOWS\system32\DRIVERS\CMUSBDAC.sys [3819744 2018-07-24] (WDKTestCert cm359,131641702659254692 -> C-MEDIA) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [210320 2023-09-25] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2023-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [252184 2023-09-25] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81712 2023-09-25] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [123040 2023-09-25] (ESET, spol. s r.o. -> ESET) R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_42e0121b9785f90e\iaLPSS2_GPIO2_TGL.sys [128680 2020-11-19] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_I2C_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_70d4531ccdd0c3c2\iaLPSS2_I2C_TGL.sys [197288 2020-11-19] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_SPI_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_spi_tgl.inf_amd64_b9ae9f760b62c73a\iaLPSS2_SPI_TGL.sys [155816 2020-11-19] (Intel Corporation -> Intel Corporation) R3 iaLPSS2_UART2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_uart2_tgl.inf_amd64_da87610cdf3862a4\iaLPSS2_UART2_TGL.sys [310440 2020-11-19] (Intel Corporation -> Intel Corporation) R0 iaStorVD; C:\WINDOWS\System32\drivers\iaStorVD.sys [1544912 2021-08-26] (Intel Corporation -> Intel Corporation) R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_2cc98897d8dddf62\IntcUSB.sys [882280 2022-01-26] (Intel Corporation -> Intel(R) Corporation) R3 IntelGNA; C:\WINDOWS\System32\DriverStore\FileRepository\gna.inf_amd64_689d3d5fefeef458\gna.sys [84880 2020-11-05] (Gaussian Mixture Models and Neural Networks Accelerator -> Intel Corporation) R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [201096 2021-03-12] (Rivet Networks LLC -> Rivet Networks, LLC.) R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [320360 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation) S3 netfilter2; C:\Users\48662\AppData\Local\LagoFast\netfilter28.sys [113656 2022-05-27] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [235864 2023-10-04] (Nvidia Corporation -> NVIDIA Corporation) R3 RvNetMP60; C:\WINDOWS\System32\drivers\RvNetMP60.sys [58288 2022-10-18] (Microsoft Windows Hardware Compatibility Publisher -> Famatech Corp.) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-09-01] (Microsoft Windows -> Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2023-02-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [473336 2023-02-15] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-02-15] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-10-06 21:35 - 2023-10-06 21:38 - 000000000 ____D C:\FRST 2023-10-06 21:25 - 2023-10-06 21:25 - 000800970 _____ C:\WINDOWS\system32\perfh015.dat 2023-10-06 21:25 - 2023-10-06 21:25 - 000158968 _____ C:\WINDOWS\system32\perfc015.dat 2023-10-06 21:00 - 2023-10-06 21:02 - 000000000 ____D C:\AdwCleaner 2023-10-06 21:00 - 2023-10-06 21:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2023-10-06 21:00 - 2023-10-06 21:00 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-10-06 20:27 - 2023-10-06 20:27 - 000000000 ____D C:\Users\48662\Downloads\Chipset_intel_10.1.34.8_W11x64_A 2023-10-06 20:25 - 2023-10-06 20:25 - 000000000 ____D C:\Users\48662\Downloads\Nitro Sense_Acer_3.01.3046_20220617_W11x64_A 2023-10-06 20:24 - 2023-10-06 20:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\CareCenter 2023-10-06 20:20 - 2023-10-06 20:20 - 004002339 _____ C:\Users\48662\Downloads\Chipset_intel_10.1.34.8_W11x64_A.zip 2023-10-06 20:20 - 2023-10-06 20:20 - 000273160 _____ C:\Users\48662\Downloads\Intel GNA_Intel_2.00.00.1097_W11x64_A.zip 2023-10-06 20:20 - 2023-10-06 20:20 - 000000000 ____D C:\Users\48662\Downloads\Acer Care Center_Acer_4.00.3046_W11x64_A 2023-10-06 20:19 - 2023-10-06 20:19 - 079169423 _____ C:\Users\48662\Downloads\Acer Care Center_Acer_4.00.3046_W11x64_A.zip 2023-10-06 20:19 - 2023-10-06 20:19 - 029186523 _____ C:\Users\48662\Downloads\Nitro Sense_Acer_3.01.3046_20220617_W11x64_A.zip 2023-10-06 20:18 - 2023-10-06 20:18 - 017692729 _____ C:\Users\48662\Downloads\BIOS_Acer_1.20_A_A.zip 2023-10-05 22:33 - 2023-10-05 22:33 - 000000000 ____D C:\Users\48662\AppData\Local\Backup 2023-10-05 03:51 - 2023-10-05 03:51 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView 2023-10-04 22:02 - 2023-10-04 22:02 - 000060462 _____ C:\WINDOWS\SysWOW64\ctac.json 2023-10-04 22:01 - 2023-10-04 22:01 - 000060462 _____ C:\WINDOWS\system32\ctac.json 2023-10-04 22:01 - 2023-10-04 22:01 - 000016239 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json 2023-10-04 21:58 - 2023-10-04 22:00 - 000000000 ___HD C:\$WinREAgent 2023-10-04 16:47 - 2023-10-04 16:47 - 000000000 ____D C:\Program Files\Common Files\DESIGNER 2023-09-11 19:50 - 2023-09-11 20:48 - 1453237981 _____ C:\Users\48662\Downloads\BIOLOGIA CAMPBELA.pdf 2023-09-11 19:25 - 2023-09-11 19:30 - 159498026 _____ C:\Users\48662\Downloads\Niepotwierdzony 976968.crdownload 2023-09-11 18:53 - 2023-09-11 18:53 - 003027569 _____ C:\Users\48662\Downloads\Mutacje_-_kryteria_podzialu_i_ro.pdf 2023-09-11 18:35 - 2023-10-06 21:23 - 000000000 ____D C:\Medal 2023-09-11 18:35 - 2023-10-06 20:13 - 000000000 ____D C:\Users\48662\OneDrive\Dokumenty\Medal ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-10-06 21:34 - 2021-10-28 13:46 - 000000000 ____D C:\Users\48662\AppData\Local\CrashDumps 2023-10-06 21:33 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-10-06 21:33 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-10-06 21:32 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-10-06 21:28 - 2021-11-09 17:36 - 000000000 ____D C:\Users\48662\AppData\Roaming\Microsoft\Teams 2023-10-06 21:26 - 2021-11-01 20:39 - 000000000 ____D C:\Program Files (x86)\Steam 2023-10-06 21:26 - 2021-10-25 22:53 - 000000000 ____D C:\Users\48662\AppData\Roaming\discord 2023-10-06 21:26 - 2021-10-25 22:53 - 000000000 ____D C:\Users\48662\AppData\Local\Discord 2023-10-06 21:25 - 2022-12-01 12:03 - 001797768 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-10-06 21:25 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2023-10-06 21:23 - 2023-03-16 16:13 - 000001275 _____ C:\Users\48662\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Medal.lnk 2023-10-06 21:22 - 2023-01-17 17:28 - 000000000 ____D C:\Users\48662\AppData\Roaming\Medal 2023-10-06 21:22 - 2022-01-01 16:14 - 000000000 ____D C:\Users\48662\AppData\Local\Overwolf 2023-10-06 21:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-10-06 21:19 - 2021-10-25 22:03 - 000000000 ____D C:\Program Files (x86)\Google 2023-10-06 21:18 - 2021-10-25 21:24 - 000000000 __SHD C:\Users\48662\IntelGraphicsProfiles 2023-10-06 21:18 - 2021-07-23 14:39 - 000000000 ____D C:\ProgramData\NVIDIA 2023-10-06 21:17 - 2022-12-01 12:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-10-06 21:17 - 2022-12-01 12:01 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-10-06 21:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-10-06 21:17 - 2021-10-26 18:21 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-10-06 21:17 - 2021-07-23 15:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-10-06 21:17 - 2021-07-23 14:21 - 000012288 ___SH C:\DumpStack.log.tmp 2023-10-06 21:17 - 2021-07-23 14:21 - 000000000 ___HD C:\Intel 2023-10-06 21:06 - 2022-04-30 10:37 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat 2023-10-06 21:04 - 2021-11-01 20:45 - 000000000 ____D C:\Users\48662\AppData\Local\Steam 2023-10-06 21:02 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2023-10-06 21:00 - 2021-10-26 18:19 - 000000000 ____D C:\Users\48662\AppData\LocalLow\Mozilla 2023-10-06 21:00 - 2021-07-23 15:12 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-10-06 21:00 - 2021-07-23 15:12 - 000000000 ____D C:\ProgramData\Mozilla 2023-10-06 20:56 - 2023-03-01 11:56 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK 2023-10-06 20:56 - 2022-12-01 12:01 - 000000000 ____D C:\Users\48662 2023-10-06 20:50 - 2023-04-17 20:38 - 000000000 ____D C:\Users\48662\AppData\Roaming\ReasonLabs 2023-10-06 20:43 - 2023-02-07 19:29 - 000000000 ____D C:\Program Files\ReasonLabs 2023-10-06 20:28 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-10-06 20:28 - 2021-07-23 14:27 - 000000000 ____D C:\ProgramData\Package Cache 2023-10-06 20:25 - 2022-12-01 12:05 - 000002950 _____ C:\WINDOWS\system32\Tasks\NitroSense 2023-10-06 20:21 - 2022-12-01 12:05 - 000005404 _____ C:\WINDOWS\system32\Tasks\Software Update Application 2023-10-06 20:21 - 2022-12-01 12:05 - 000003774 _____ C:\WINDOWS\system32\Tasks\ACC 2023-10-06 20:21 - 2022-12-01 12:05 - 000003060 _____ C:\WINDOWS\system32\Tasks\ACCBackgroundApplication 2023-10-06 20:19 - 2022-12-01 12:05 - 000004224 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D271861B-569F-4942-965A-3DA413AED0C7} 2023-10-06 20:17 - 2022-12-01 12:05 - 000004464 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1653506781 2023-10-06 20:13 - 2021-10-25 21:25 - 000000000 ___RD C:\Users\48662\OneDrive 2023-10-05 22:20 - 2022-10-21 15:27 - 000095736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe 2023-10-05 22:20 - 2022-10-21 15:27 - 000075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe 2023-10-05 22:20 - 2021-10-25 21:44 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2023-10-05 22:20 - 2021-10-25 21:40 - 002709096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2023-10-05 22:19 - 2021-11-18 16:47 - 000181864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2023-10-05 22:19 - 2021-10-25 21:40 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2023-10-05 22:19 - 2021-10-25 21:40 - 000210536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2023-10-05 18:42 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2023-10-05 18:42 - 2021-10-25 21:27 - 000000000 ____D C:\ProgramData\Packages 2023-10-05 18:42 - 2021-10-25 21:24 - 000000000 ____D C:\Users\48662\AppData\Local\Packages 2023-10-05 03:52 - 2022-12-01 12:01 - 000488168 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2023-10-05 03:51 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-10-04 22:04 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-10-04 22:02 - 2022-12-01 12:01 - 003210752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-10-04 21:42 - 2021-10-25 22:10 - 000000000 ____D C:\Users\48662\AppData\Local\NVIDIA 2023-10-04 21:41 - 2021-07-23 14:39 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2023-10-04 21:40 - 2022-05-12 09:45 - 000725048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2023-10-04 21:40 - 2022-05-12 09:45 - 000586464 _____ C:\WINDOWS\system32\nvofapi64.dll 2023-10-04 21:40 - 2022-05-12 09:45 - 000461400 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2023-10-04 21:40 - 2022-05-12 09:44 - 002121816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2023-10-04 21:40 - 2022-05-12 09:44 - 001602264 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2023-10-04 21:40 - 2022-05-12 09:44 - 001530424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2023-10-04 21:40 - 2022-05-12 09:44 - 001177296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2023-10-04 21:40 - 2022-05-12 09:44 - 000731208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2023-10-04 21:40 - 2022-05-12 09:44 - 000712400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2023-10-04 21:40 - 2022-05-12 09:44 - 000581856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2023-10-04 21:40 - 2022-05-12 09:43 - 006963920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2023-10-04 21:40 - 2022-05-12 09:43 - 006226648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2023-10-04 21:40 - 2022-05-12 09:43 - 005729480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2023-10-04 21:40 - 2022-05-12 09:43 - 005101656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2023-10-04 21:40 - 2022-05-12 09:43 - 002933832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2023-10-04 21:40 - 2022-05-12 09:43 - 000293960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2023-10-04 21:40 - 2022-05-12 09:41 - 000851168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2023-10-04 21:40 - 2022-05-12 09:40 - 006463096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2023-10-04 21:40 - 2022-05-04 11:28 - 000089492 _____ C:\WINDOWS\system32\nvinfo.pb 2023-10-04 21:40 - 2021-10-25 21:56 - 007616496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2023-10-04 21:40 - 2021-10-25 21:56 - 000235864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpcf.sys 2023-10-04 21:17 - 2021-10-25 21:24 - 000000000 ____D C:\Users\48662\AppData\Local\D3DSCache 2023-10-04 21:15 - 2021-10-25 22:04 - 000002257 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-10-04 16:46 - 2021-07-23 15:15 - 000000000 ____D C:\Program Files\Microsoft Office 2023-10-04 16:29 - 2022-12-01 12:05 - 000004252 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1653506776 2023-10-04 16:29 - 2022-05-25 21:26 - 000001409 _____ C:\Users\48662\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk 2023-10-01 11:19 - 2022-12-01 12:05 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2790763594-486467956-1157804074-1001 2023-10-01 11:19 - 2022-12-01 12:05 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2790763594-486467956-1157804074-1001 2023-10-01 11:19 - 2021-10-25 21:20 - 000002427 _____ C:\Users\48662\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-10-01 11:19 - 2021-07-23 14:22 - 000002452 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-09-25 21:18 - 2023-02-01 17:58 - 000252184 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys 2023-09-25 21:18 - 2023-02-01 17:58 - 000210320 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys 2023-09-25 21:18 - 2023-02-01 17:58 - 000123040 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys 2023-09-25 21:18 - 2023-02-01 17:58 - 000081712 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys 2023-09-19 21:11 - 2022-12-01 12:05 - 000003864 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-09-19 21:11 - 2022-12-01 12:05 - 000003740 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-09-14 19:20 - 2021-10-25 21:28 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-09-14 19:18 - 2021-10-25 21:28 - 177941912 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-09-14 19:05 - 2022-05-11 17:53 - 000000000 ____D C:\XboxGames ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-11-11 14:04 - 2021-11-11 14:04 - 000000017 _____ () C:\Users\48662\AppData\Roaming\.cache3678791056.dat 2021-10-26 13:17 - 2021-11-20 18:02 - 000000047 _____ () C:\Users\48662\AppData\Roaming\.crystalinst 2022-12-28 13:32 - 2022-12-28 13:32 - 000000015 _____ () C:\Users\48662\AppData\Roaming\obs-virtualcam.txt 2023-02-15 19:23 - 2023-02-15 19:23 - 000000000 _____ () C:\Users\48662\AppData\Local\{DBF0AEAF-84BD-4FEE-9AF4-AFDE0D4F22E2} ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================