Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 15-08-2022 Uruchomiony przez Właściciel (administrator) DESKTOP-M8N9LEJ (Gigabyte Technology Co., Ltd. H410M S2H) (18-08-2022 17:24:27) Uruchomiony z C:\Users\Właściciel\Desktop\frst Załadowane profile: Właściciel Platform: Microsoft Windows 10 Home Wersja 21H2 19044.1826 (X64) Język: Polski (Polska) Domyślna przeglądarka: Brave Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (1ncrivel Sistemas LTDA -> ) C:\Windows\System32\service.notification.center.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler64.exe (C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe ->) (Binary Fortress Software Ltd -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookApp32.exe (C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe ->) (Binary Fortress Software Ltd -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookApp64.exe (C:\Program Files (x86)\Origin\Origin.exe ->) (Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe <12> (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8> (C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\SteelSeries\GG\SteelSeriesEngine.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\moments\SteelSeriesSvcLauncher.exe (C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesEngine.exe (C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesPrismSync.exe (Chris Andriessen) C:\Program Files\WindowsApps\40210ChrisAndriessen.FalconX_1.7.6.0_x64__y1dazs5f5wq00\Release\TaskbarX.exe (explorer.exe ->) (Binary Fortress Software Ltd -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe (explorer.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6> (explorer.exe ->) (SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Nvidia Corporation -> NVIDIA Corporation) C:\Users\Właściciel\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (services.exe ->) (Binary Fortress Software Ltd -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe (services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe (services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.30001.0_x64__8wekyb3d8bbwe\gamingservices.exe (services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.30001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe <2> (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (services.exe ->) (Wondershare Technology Co.,Ltd -> ) C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\WirelessBackupService.exe (services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\pacjsworker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <4> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Brak pliku) HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12837288 2022-07-19] (SteelSeries ApS -> SteelSeries ApS) HKLM\...\Run: [WSVCUUpdateHelper.exe] => C:\Program Files\Wondershare\UniConverter 13\WSVCUUpdateHelper.exe (Brak pliku) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [194736 2022-06-21] (ESET, spol. s r.o. -> ESET) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Brak pliku) HKLM-x32\...\Run: [Backup] => C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\DrFoneBackup.exe /hide (Brak pliku) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [708840 2022-04-26] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\Run: [SIMDashboardServer] => C:\Program Files (x86)\SIMDashboardServer\SIMDashboardServer.exe [7576360 2022-02-22] (Christian Hausmann -> stryder-it) HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [8365520 2021-12-14] (Binary Fortress Software Ltd -> Binary Fortress Software) HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\Run: [ProtonVPN] => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe [8914536 2022-05-24] (Proton Technologies AG -> ) HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3149616 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts) HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\Run: [MicrosoftEdgeAutoLaunch_49FC90BD5FEEB9AE4CA0A4CDC761EAC9] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3827128 2022-08-11] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\MountPoints2: {227f1d55-a383-11ec-84c9-001a7dda7113} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\MountPoints2: {25cca6b1-6c8d-11eb-8210-18c04d80d3e2} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\MountPoints2: {83eeef6c-b71e-11eb-8262-18c04d80d3e2} - "D:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\MountPoints2: {d4a4c85a-f486-11eb-82ac-001a7dda7113} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\MountPoints2: {e67799b3-5f4f-11ec-8445-001a7dda7113} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\MountPoints2: {f429a78f-db4c-11eb-827e-18c04d80d3e2} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1154914137-4129568212-3990700504-1001\...\MountPoints2: {f429a89c-db4c-11eb-827e-18c04d80d3e2} - "F:\HiSuiteDownLoader.exe" HKU\S-1-5-18\...\Run: [] => [X] HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> HKLM\...\Print\Monitors\HP E311 Status Monitor: C:\Windows\system32\hpinkstsE311LM.dll [392200 2019-03-15] (HP Inc -> HP Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\104.1.42.97\Installer\chrmstp.exe [2022-08-18] (Brave Software, Inc. -> Brave Software, Inc.) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {04CBA3ED-E6C7-423E-97F8-5D4E9E1C606A} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) Task: {09147AD7-3122-4DD6-8AA6-4603C6D4430F} - System32\Tasks\Opera scheduled Autoupdate 1635251044 => C:\Users\Właściciel\AppData\Local\Programs\Opera\launcher.exe [2527224 2022-07-19] (Opera Norway AS -> Opera Software) Task: {093747DF-12B6-421A-887E-08C6AEDA7404} - System32\Tasks\ZpEVDmIlefcqtj => rundll32 "C:\Program Files (x86)\ulQXJxdiHxSU2\iubiwSBgqMTtv.dll",#1 Task: {0DBC642A-B424-4DC9-9CEA-007802D6CC78} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c (Brak pliku) Task: {1096D8AB-B765-497A-87D0-65182032F418} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {133CB3FD-C37B-40AF-BB50-75AB96662BDA} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {1DE96C73-7DB7-4607-9A81-88B5F7310B13} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-05] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {1F52B143-DC5A-4315-BCE8-7877A61EFFD1} - System32\Tasks\Opera scheduled Autoupdate 1658846752 => C:\Users\Właściciel\AppData\Local\Programs\Opera\launcher.exe [2527224 2022-07-19] (Opera Norway AS -> Opera Software) Task: {1FD2693A-6D2A-4D3B-863A-1C6A63ABA47F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {214DA309-B93A-4CA2-8B63-D1EBEA976A8B} - System32\Tasks\fNuIyawitAoDEGu2 => rundll32 "C:\Program Files (x86)\omepHXTcU\uiSgMt.dll",#1 Task: {247A5D5A-9AF2-4D69-B6F8-F79EA3D273F1} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation) Task: {262B5F8B-33E0-45D5-81E4-1ADFCADB07EF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {2815A5ED-526E-40DC-A5C1-31F1386B2F67} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {2BDCEA23-C7D1-4555-922D-5EBF0832AB3C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {441622FE-7FA7-4782-96E8-943D397F0716} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [61856 2022-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {4DDC3466-AE71-45FF-B021-85787104CD8D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {614F4531-B41D-47C3-BE7E-6E32F1312CCE} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-11] (Microsoft Corporation -> Microsoft Corporation) Task: {65FC26C0-12A5-4315-8E31-6633FD6DC141} - System32\Tasks\Firefox Default Browser Agent 2EA14A206E338D7D => C:\Users\Właściciel\AppData\Roaming\fietvws [42064 2022-05-13] (Microsoft Corporation -> Microsoft Corporation) <==== UWAGA Task: {6C33339A-3A0F-4727-A89C-08BF2E4AA378} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23713200 2022-08-06] (Microsoft Corporation -> Microsoft Corporation) Task: {6E83E573-8E39-4B1B-B386-E94404C34927} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {70F49F20-60FE-444A-B27D-E2F9F5EC5407} - System32\Tasks\SIMDB_75b6e096fc79c825286efd6614b8d0f4 => C:\Program Files (x86)\SIMDashboardServer\SIMDashboardServer.exe [7576360 2022-02-22] (Christian Hausmann -> stryder-it) Task: {729642D6-7973-45D1-AA87-A0116BC53DDE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {74C7C7C8-0F73-4654-A1A1-8D11033A8D2D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform) Task: {788D87FE-77FF-49C1-B9AA-E0132286CC21} - System32\Tasks\CCleanerSkipUAC - Właściciel => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd) Task: {7C16EB70-E5B3-41C6-9D90-15BCFCBBE3A7} - System32\Tasks\wgPoVvFawHYrCSXOC2 => rundll32 "C:\Program Files (x86)\PrRHHpsGxQEuyNXpirR\NhVVWjq.dll",#1 Task: {7DFB8387-310A-4B66-9B87-0FA4CE7D6C2D} - System32\Tasks\rNfsrCYQpNqfOcrfNNU2 => rundll32 "C:\Program Files (x86)\BayioKoEHcCpC\RJEmUKf.dll",#1 Task: {881268FE-0AEC-4628-B386-845A886A91C2} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {8B61079A-7A5C-473B-8AFE-CE821A435F94} - System32\Tasks\Intelligent StandbyList Cleaner => C:\Users\Właściciel\Desktop\ISLC v1.0.2.5\Intelligent standby list cleaner ISLC.exe (Brak pliku) Task: {8FF2881A-44D5-4573-B8AC-D29D9CBF2AFF} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-05] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {9FE27B90-E62D-4D95-8AB1-BAAB680F05D8} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {A5061DD0-6BAD-4767-9156-44B8939F72B3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (Brak pliku) Task: {AB01777D-62D7-4C1C-85C7-A8994E58BB6F} - System32\Tasks\Notification Center => C:\ProgramData\Notification Center\service.notification.updater.exe [489992 2020-04-28] (1ncrivel Sistemas LTDA -> ) Task: {ACD3520E-B20A-472C-930C-6C9469BBC261} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" Task: {B4370969-FEDE-4295-9452-027EF6CED26A} - System32\Tasks\AdLock Update Task-S-1-5-21-1154914137-4129568212-3990700504-1001 => "%WINDIR%\System32\msiexec.exe" /i "C:\Users\Właściciel\AppData\Local\Programs\AdLock\163f640756.msi" /quiet CHROME=1 Task: {BA776AB7-4BEC-4469-876B-153B4E4A96F8} - System32\Tasks\TaskbarX DESKTOP-M8N9LEJWłaściciel => explorer.exe taskbarx:"-tbs=3 -color=0;0;0;0 -tpop=0 -tsop=100 -as=elasticeaseinout -obas=cubiceaseinout -tbr=0 -asp=1000 -ptbo=0 -stbo=0 -lr=400 -oblr=400 -sr=0 -sr2=0 -sr3=0 -ftotc=1 -rzbt=1 -dtbsowm=1 " Task: {D56BAE1C-FF2C-4484-97DB-01331A6815F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E228593A-E04E-425E-AB92-BD99AE8F5598} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-1154914137-4129568212-3990700504-1001 => C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1560.21.216.0_x64__8xx8rvfyw5nnt\app\MessengerHelper.exe [1869600 2022-07-23] (Facebook, Inc. -> Facebook Inc.) Task: {E38A0D5C-B759-4907-AD9E-0815B5D8E94F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation) Task: {EDEEDF40-44E8-4CC6-8FFF-8A0C6E90ED71} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {EE098674-9D38-4AE5-BEC6-82CBCBCC388F} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {F294FA1C-7680-4345-800F-A013B0C653D4} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1154914137-4129568212-3990700504-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) Task: {F75DFB08-A6B4-44F0-B2D0-EB9ADD1C1588} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [145304 2022-08-11] (Microsoft Corporation -> Microsoft Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) AutoConfigURL: [{6FAD7336-3A26-4D51-BCD6-CF978C77D5BF}] => hxxp://35.236.159.79/win.pac <==== UWAGA AutoConfigURL: [S-1-5-21-1154914137-4129568212-3990700504-1001] => hxxp://35.236.159.79/win.pac <==== UWAGA Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{9ef110dc-0abd-4fdf-a1d0-d4d2df741bac}: [NameServer] 178.175.133.61,45.95.11.175 Tcpip\..\Interfaces\{9ef110dc-0abd-4fdf-a1d0-d4d2df741bac}: [DhcpNameServer] 192.168.8.1 Tcpip\..\Interfaces\{d796e650-9357-4b3c-9c8d-6769057682c6}: [DhcpNameServer] 192.168.8.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Właściciel\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-18] Edge Extension: (Outlook) - C:\Users\Właściciel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2021-01-29] Edge Extension: (Word) - C:\Users\Właściciel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2021-01-29] Edge Extension: (Excel) - C:\Users\Właściciel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2021-01-29] Edge Extension: (PowerPoint) - C:\Users\Właściciel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2021-01-29] FireFox: ======== FF DefaultProfile: lcv104r5.default FF ProfilePath: C:\Users\Właściciel\AppData\Roaming\Mozilla\Firefox\Profiles\lcv104r5.default [2022-08-08] FF Extension: (New tab with poshukach.com search) - C:\Users\Właściciel\AppData\Roaming\Mozilla\Firefox\Profiles\lcv104r5.default\Extensions\{5737b515-9d7d-44ca-bbe3-e2e15bec0d4f}.xpi [2022-07-26] FF ProfilePath: C:\Users\Właściciel\AppData\Roaming\Mozilla\Firefox\Profiles\pursns0f.default-release [2022-08-18] FF Homepage: Mozilla\Firefox\Profiles\pursns0f.default-release -> hxxps://www.google.com/ FF Notifications: Mozilla\Firefox\Profiles\pursns0f.default-release -> hxxps://mail-notification.info; hxxps://zarabotok-online.xyz; hxxps://supertopfreegames.com; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://mnthor.xyz FF NewTabOverride: Mozilla\Firefox\Profiles\pursns0f.default-release -> Enabled: {5737b515-9d7d-44ca-bbe3-e2e15bec0d4f} FF Extension: (New tab with poshukach.com search) - C:\Users\Właściciel\AppData\Roaming\Mozilla\Firefox\Profiles\pursns0f.default-release\Extensions\{5737b515-9d7d-44ca-bbe3-e2e15bec0d4f}.xpi [2022-07-26] FF Extension: (Brak nazwy) - C:\Program Files\Mozilla Firefox\browser\features\{A5735E22-7BD8-4CED-A24E-FBBD2D9CABB9}.xpi [2022-07-28] [Brak podpisu cyfrowego] FF Plugin: @java.com/DTPlugin,version=11.333.2 -> C:\Program Files\Java\jre1.8.0_333\bin\dtplugin\npDeployJava1.dll [2022-07-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.333.2 -> C:\Program Files\Java\jre1.8.0_333\bin\plugin2\npjp2.dll [2022-07-05] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-04] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-09] (Microsoft Corporation -> Microsoft Corporation) FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-08-18] Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\Default [2022-08-08] CHR Notifications: Default -> hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://mail-notification.info; hxxps://mnthor.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://supertopfreegames.com; hxxps://zarabotok-online.xyz CHR Extension: (Tłumacz Google) - C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-07-28] CHR Extension: (Just Black) - C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-09-19] CHR Extension: (alerabat.com | kupony i cashback) - C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacdinoicboceafielngnmjjplncljhj [2022-08-07] CHR Extension: (Dokumenty Google offline) - C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-07-28] CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-07-28] CHR Extension: (Adblocker for Youtube™) - C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\Default\Extensions\iddmabhekhhonkmomaklnflhhgbfnioe [2022-07-26] [UpdateUrl:hxxps://clients95.google.com/service/update2/crx] <==== UWAGA CHR Extension: (Google Access Offline) - C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\Default\Extensions\iekgbdpnpffnlhdgidnfefbmfffpldig [2022-07-28] [UpdateUrl:hxxps://clients85.google.com/service/update2/crx] <==== UWAGA CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01] CHR Profile: C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\Guest Profile [2022-08-08] CHR HomePage: Guest Profile -> hxxps://www.google.com/ CHR StartupUrls: Guest Profile -> "hxxps://www.google.com/" CHR Extension: (Adblocker for Youtube™) - C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\Guest Profile\Extensions\iddmabhekhhonkmomaklnflhhgbfnioe [2022-07-28] [UpdateUrl:hxxps://clients92.google.com/service/update2/crx] <==== UWAGA CHR Profile: C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\System Profile [2022-08-08] CHR HomePage: System Profile -> hxxps://www.google.com/ CHR StartupUrls: System Profile -> "hxxps://www.google.com/" CHR Extension: (Adblocker for Youtube™) - C:\Users\Właściciel\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\iddmabhekhhonkmomaklnflhhgbfnioe [2022-07-28] [UpdateUrl:hxxps://clients19.google.com/service/update2/crx] <==== UWAGA CHR HKLM-x32\...\Chrome\Extension: [aemffjkmgcepimloclpkecifcnipnodh] Opera: ======= OPR Profile: C:\Users\Właściciel\AppData\Roaming\Opera Software\Opera Stable [2022-08-08] OPR DefaultSearchKeyword: Opera Stable -> find-it.pro OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\Właściciel\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-07-26] OPR Extension: (Opera Crypto Wallet) - C:\Users\Właściciel\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-07-26] OPR Extension: (Adblocker for Youtube™) - C:\Users\Właściciel\AppData\Roaming\Opera Software\Opera Stable\Extensions\idimnjcjkopkcbalclocjcbcmkkcfpec [2022-07-28] OPR Extension: (Amazon Assistant Promotion) - C:\Users\Właściciel\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-07] Brave: ======= BRA DefaultProfile: Default BRA Profile: C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-08-18] BRA Notifications: Default -> hxxps://saiwhute.com; hxxps://www.facebook.com; hxxps://www69.darenjarvis.pro; hxxps://www82.todhamilton.pro BRA Extension: (Tłumacz Google) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-03-10] BRA Extension: (BetterTTV) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2022-08-05] BRA Extension: (7TV) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ammjkodgmmoknidbanneddgankgfejfh [2022-08-16] BRA Extension: (AutoDraw for skribbl.io) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\bpnefockcbbpkbahgkkacjmebfheacjb [2022-06-30] BRA Extension: (alerabat.com | kupony i cashback) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\dacdinoicboceafielngnmjjplncljhj [2022-08-10] BRA Extension: (FrankerFaceZ) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2022-01-28] BRA Extension: (BTRoblox - Making Roblox Better) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\hbkpclpemjeibhioopcebchdmohaieln [2022-08-10] BRA Extension: (Regulacja głośności dla Google Chrome™) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\hnlfnonibbbggmlaacojkhhppaonibdp [2022-04-23] BRA Extension: (Roblox Friend Removal Button) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jgllchbkhjeiaombmpkapalbmpolmelp [2021-12-17] BRA Extension: (Usługa zwrotu gotówki LetyShops) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lphicbbhfmllgmomkkhjfkpbdlncafbn [2022-07-26] BRA Extension: (TikTok) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nlalbmkafgmoifbeooblidblkmlhhpnc [2021-04-28] BRA Extension: (Brave Local Data Files Updater) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-08-18] BRA Extension: (Brave NTP background images) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-08-11] BRA Extension: (Wallet Data Files Updater) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-08-17] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-08-18] BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2021-06-26] BRA Extension: (Brave NTP sponsored images) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2022-08-18] BRA Extension: (Brave SpeedReader Updater) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-10] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-08-17] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry do AdBlocka, uBlocka Origin i AdGuarda)) - C:\Users\Właściciel\AppData\Local\BraveSoftware\Brave-Browser\User Data\paoecjnjjbclkgbempaeemcbeldldlbo [2022-08-18] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-05-19] (BattlEye Innovations e.K. -> ) S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-05] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-07-05] (Brave Software, Inc. -> BraveSoftware Inc.) S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1081432 2022-06-14] (Piriform Software Ltd -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12102608 2022-08-06] (Microsoft Corporation -> Microsoft Corporation) R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [6037968 2021-12-14] (Binary Fortress Software Ltd -> Binary Fortress Software) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-07-02] (EasyAntiCheat Oy -> Epic Games, Inc) R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3342536 2022-06-21] (ESET, spol. s r.o. -> ESET) R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3342536 2022-06-21] (ESET, spol. s r.o. -> ESET) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncHelper.exe [3389840 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2021-06-03] (Huawei Technologies Co., Ltd. -> ) [Brak podpisu cyfrowego] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8680192 2022-08-09] (Malwarebytes Inc. -> Malwarebytes) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.151.0717.0001\OneDriveUpdaterService.exe [3830160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation) R3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-12] (Electronic Arts, Inc. -> Electronic Arts) S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [400488 2022-05-24] (Proton Technologies AG -> ) S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [343656 2022-05-24] (Proton Technologies AG -> ) S3 ProtonVPN WireGuard; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.WireGuardService.exe [328808 2022-05-24] (Proton Technologies AG -> ) S3 Rockstar Service; D:\Program Files (x86)\RockstarService.exe [2114944 2022-08-09] (Rockstar Games, Inc. -> Rockstar Games) S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [35240 2022-07-19] (SteelSeries ApS -> ) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WirelessBackupService; C:\Program Files (x86)\Wondershare\drfone\Addins\Backup\WirelessBackupService.exe [3094536 2022-03-03] (Wondershare Technology Co.,Ltd -> ) R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [262880 2021-11-16] (Wondershare Technology Co.,Ltd -> Wondershare) S3 wuauserv; C:\Windows\system32\svchost.exe [55320 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== UWAGA (Brak ServiceDLL) S3 wuauserv; C:\Windows\SysWOW64\svchost.exe [46504 2022-07-15] (Microsoft Windows Publisher -> Microsoft Corporation) <==== UWAGA (Brak ServiceDLL) S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\104.1.42.97\elevation_service.exe" [X] S2 DFWSIDService; C:\Program Files (x86)\Wondershare\drfone\WsidService.exe [X] S2 ElevationService; C:\Program Files (x86)\Wondershare\drfone\Addins\Recovery\ElevationService.exe [X] S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X] S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X] S2 HPPrintScanDoctorService; "C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe" [X] S2 Mobizen plugin; C:\Program Files (x86)\RSUPPORT\MobizenService\MobizenService.exe [X] R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_47917a79b8c7fd22\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem S4 VBoxGuest; VBoxGuest [X] S4 VBoxMouse; VBoxMouse [X] S4 VBoxService; VBoxService [X] S4 VBoxSF; VBoxSF [X] S4 VBoxVideo; VBoxVideo [X] S4 VBoxWddm; VBoxWddm [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 DroidCam; C:\Windows\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps) R3 DroidCamVideo; C:\Windows\System32\drivers\droidcamvideo.sys [33784 2020-10-04] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [192880 2022-06-21] (ESET, spol. s r.o. -> ESET) R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [116960 2022-06-21] (ESET, spol. s r.o. -> ESET) S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15824 2022-08-01] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET) R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [234192 2022-06-21] (ESET, spol. s r.o. -> ESET) R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [52880 2022-06-21] (ESET, spol. s r.o. -> ESET) R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [79216 2022-06-21] (ESET, spol. s r.o. -> ESET) R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [119528 2022-06-21] (ESET, spol. s r.o. -> ESET) S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2021-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2021-06-03] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.) R3 iriuna0; C:\Windows\system32\drivers\iriuna0.sys [46976 2020-10-29] (Iriun Oy -> Windows (R) Win 7 DDK provider) R3 iriunv0; C:\Windows\System32\DriverStore\FileRepository\iriunvid.inf_amd64_58518cc843573ae0\iriunv0.sys [38272 2020-09-21] (Iriun Oy -> Windows (R) Win 7 DDK provider) R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2022-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2022-08-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R1 ndisrd; C:\Windows\system32\DRIVERS\ndisrd.sys [50728 2019-07-04] (Whimsters Limited -> NT Kernel Resources) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation) S3 ProtonVPNCallout; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.CalloutDriver.sys [34176 2022-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG) S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) S3 SnapCameraVirtualDevice; C:\Windows\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2022-04-12] (Snap Inc. -> Windows (R) Win 7 DDK provider) R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [48848 2021-04-06] (SteelSeries ApS -> SteelSeries ApS) R3 sshid; C:\Windows\system32\DRIVERS\sshid.sys [43960 2022-07-06] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 SteelSeries_Sonar_VAD; C:\Windows\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_ab95c13003d9c50f\SteelSeries-Sonar-VAD.sys [92912 2022-07-18] (SteelSeries ApS -> Windows (R) Win 7 DDK provider) R3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2021-05-28] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project) S3 VCamSDK; C:\Windows\system32\DRIVERS\VCamSDK.sys [1092456 2021-02-17] (Shanghai Yitu Information Technology Co., Ltd. -> e2eSoft) R1 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [165744 2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.) R3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [48136 2021-08-12] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49576 2022-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [452856 2022-07-26] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [91384 2022-07-26] (Microsoft Windows -> Microsoft Corporation) R3 wintun; C:\Windows\system32\DRIVERS\wintun.sys [29680 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) U3 aswbdisk; Brak ImagePath U3 SARPSvc; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-16 18:25 - 2022-08-17 22:03 - 000000000 ____D C:\Program Files\Mozilla Firefox 2022-08-11 21:28 - 2022-08-18 17:24 - 000000000 ____D C:\FRST 2022-08-11 17:56 - 2022-08-11 17:56 - 000000415 _____ C:\DelFix.txt 2022-08-10 11:29 - 2022-08-18 17:19 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\Origin 2022-08-09 20:02 - 2022-08-09 20:02 - 000000000 ____D C:\Windows\LastGood 2022-08-09 20:01 - 2022-07-22 06:25 - 000043184 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll 2022-08-09 19:52 - 2022-07-28 09:28 - 001905920 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe 2022-08-09 19:52 - 2022-07-28 09:28 - 001905920 _____ C:\Windows\system32\vulkaninfo.exe 2022-08-09 19:52 - 2022-07-28 09:28 - 001478408 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2022-08-09 19:52 - 2022-07-28 09:28 - 001478408 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2022-08-09 19:52 - 2022-07-28 09:27 - 001471992 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2022-08-09 19:52 - 2022-07-28 09:27 - 001432320 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll 2022-08-09 19:52 - 2022-07-28 09:27 - 001432320 _____ C:\Windows\system32\vulkan-1.dll 2022-08-09 19:52 - 2022-07-28 09:27 - 001213432 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2022-08-09 19:52 - 2022-07-28 09:27 - 001145600 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll 2022-08-09 19:52 - 2022-07-28 09:27 - 001145600 _____ C:\Windows\SysWOW64\vulkan-1.dll 2022-08-09 19:52 - 2022-07-28 09:24 - 000865776 _____ C:\Windows\system32\nvofapi64.dll 2022-08-09 19:52 - 2022-07-28 09:24 - 000771576 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll 2022-08-09 19:52 - 2022-07-28 09:24 - 000687608 _____ C:\Windows\SysWOW64\nvofapi.dll 2022-08-09 19:52 - 2022-07-28 09:23 - 002127872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2022-08-09 19:52 - 2022-07-28 09:23 - 001607680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2022-08-09 19:52 - 2022-07-28 09:23 - 001536504 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2022-08-09 19:52 - 2022-07-28 09:23 - 001182712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2022-08-09 19:52 - 2022-07-28 09:23 - 000714752 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe 2022-08-09 19:52 - 2022-07-28 09:22 - 010269688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2022-08-09 19:52 - 2022-07-28 09:22 - 008803832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2022-08-09 19:52 - 2022-07-28 09:22 - 005362672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2022-08-09 19:52 - 2022-07-28 09:22 - 003066872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2022-08-09 19:52 - 2022-07-28 09:22 - 001059328 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2022-08-09 19:52 - 2022-07-28 09:22 - 000845296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2022-08-09 19:52 - 2022-07-28 09:22 - 000456176 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe 2022-08-09 19:52 - 2022-07-28 09:21 - 005735920 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2022-08-09 19:52 - 2022-07-28 09:21 - 000852976 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe 2022-08-09 19:52 - 2022-07-28 09:20 - 006367440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2022-08-09 19:52 - 2022-07-22 06:25 - 000093241 _____ C:\Windows\system32\nvinfo.pb 2022-08-09 13:45 - 2022-08-09 13:45 - 000000354 _____ C:\Users\Właściciel\Desktop\Grand Theft Auto V.url 2022-08-09 13:20 - 2022-08-09 13:20 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys 2022-08-09 13:20 - 2022-08-09 13:20 - 000223176 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys 2022-08-09 13:20 - 2022-08-09 13:20 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys 2022-08-09 13:20 - 2022-08-09 13:20 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2022-08-09 13:20 - 2022-08-09 13:20 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2022-08-09 13:20 - 2022-08-09 13:19 - 000021480 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys 2022-08-09 13:19 - 2022-08-09 13:19 - 000000000 ____D C:\ProgramData\Malwarebytes 2022-08-08 22:14 - 2022-08-18 17:24 - 000000000 ____D C:\Users\Właściciel\Desktop\frst 2022-08-08 22:06 - 2022-08-08 22:06 - 000021252 _____ C:\Users\Właściciel\Downloads\fixlist.txt 2022-08-08 21:46 - 2022-08-08 21:46 - 000037311 _____ C:\Users\Właściciel\Downloads\My Restaurant! NEW BEST AUTO FARM GUI.txt 2022-08-08 20:47 - 2022-08-08 20:47 - 000000000 ____D C:\Users\Właściciel\AppData\Local\ESET 2022-08-08 20:05 - 2022-08-08 20:05 - 000000354 _____ C:\Users\Właściciel\Desktop\PC Building Simulator.url 2022-08-03 19:42 - 2022-08-03 19:42 - 000000222 _____ C:\Users\Właściciel\Desktop\The Forest.url 2022-08-03 11:37 - 2022-08-03 11:38 - 085444484 _____ C:\Users\Właściciel\Downloads\FS22_MF255ursus3512.zip 2022-08-03 11:37 - 2022-08-03 11:38 - 058813222 _____ C:\Users\Właściciel\Downloads\FS22_UrsusC330VIP.zip 2022-08-03 11:37 - 2022-08-03 11:38 - 053113923 _____ C:\Users\Właściciel\Downloads\FS22_ursus_360_3P.zip 2022-08-03 11:36 - 2022-08-03 11:36 - 037162561 _____ C:\Users\Właściciel\Downloads\FS22_Autosan_D50_Autoload_90.zip 2022-08-03 11:36 - 2022-08-03 11:36 - 013201554 _____ C:\Users\Właściciel\Downloads\FS22_SipmaKostka_Pack.zip 2022-08-02 19:12 - 2022-08-02 19:12 - 000000000 ____D C:\Program Files (x86)\Rankfix 2022-08-02 18:55 - 2022-08-02 18:55 - 000000000 ___HD C:\Windows\msdownld.tmp 2022-08-02 18:55 - 2022-08-02 18:55 - 000000000 ____D C:\Windows\SysWOW64\directx 2022-08-02 18:54 - 2022-08-02 20:11 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server 2022-08-02 18:54 - 2022-08-02 19:03 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner 2022-08-02 18:54 - 2022-08-02 19:02 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server 2022-08-02 18:54 - 2022-08-02 18:54 - 000001159 _____ C:\Users\Właściciel\Desktop\MSI Afterburner.lnk 2022-08-02 18:54 - 2022-08-02 18:54 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2022-08-02 18:53 - 2022-08-02 18:53 - 055389691 _____ C:\Users\Właściciel\Downloads\MSIAfterburnerSetup.zip 2022-08-02 18:46 - 2022-08-02 18:46 - 000000000 ____D C:\Windows\LastGood.Tmp 2022-08-01 16:08 - 2022-08-01 16:08 - 000000112 ___SH C:\bootTel.dat 2022-08-01 11:48 - 2022-08-01 11:48 - 000002016 _____ C:\Users\Public\Desktop\Ochrona bankowości internetowej ESET.lnk 2022-08-01 11:46 - 2022-08-01 11:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2022-08-01 11:46 - 2022-08-01 11:46 - 000000000 ____D C:\ProgramData\ESET 2022-08-01 11:46 - 2022-08-01 11:46 - 000000000 ____D C:\Program Files\ESET 2022-08-01 11:35 - 2022-08-01 11:35 - 000000000 ____D C:\Users\Właściciel\AppData\Local\mbam 2022-07-30 10:43 - 2022-08-09 13:19 - 000000000 ____D C:\Program Files\Malwarebytes 2022-07-30 10:28 - 2022-07-30 10:29 - 303600936 _____ (Malwarebytes) C:\Users\Właściciel\Downloads\mb4-setup-consumer-4.5.12.204-1.0.1725-1.0.57877.exe 2022-07-29 22:03 - 2022-07-29 22:03 - 002556344 _____ (Malwarebytes) C:\Users\Właściciel\Downloads\MBSetup.exe 2022-07-29 22:02 - 2022-07-29 22:02 - 000989584 _____ (GridinSoft LLC) C:\Users\Właściciel\Downloads\Install-Anti-Malware-ti.exe 2022-07-28 21:36 - 2022-07-28 21:36 - 000000741 _____ C:\Users\Właściciel\Desktop\Grand Theft Auto V.lnk 2022-07-28 18:01 - 2022-07-30 10:17 - 000000000 ____D C:\Program Files (x86)\vsJnmafXoMUn 2022-07-28 18:01 - 2022-07-30 10:17 - 000000000 ____D C:\Program Files (x86)\ulQXJxdiHxSU2 2022-07-28 18:01 - 2022-07-30 10:17 - 000000000 ____D C:\Program Files (x86)\PrRHHpsGxQEuyNXpirR 2022-07-28 18:01 - 2022-07-30 10:17 - 000000000 ____D C:\Program Files (x86)\omepHXTcU 2022-07-28 18:01 - 2022-07-30 10:17 - 000000000 ____D C:\Program Files (x86)\BayioKoEHcCpC 2022-07-28 18:01 - 2022-07-28 18:01 - 000003356 _____ C:\Windows\system32\Tasks\ZpEVDmIlefcqtj 2022-07-28 18:01 - 2022-07-28 18:01 - 000003034 _____ C:\Windows\system32\Tasks\wgPoVvFawHYrCSXOC2 2022-07-28 18:01 - 2022-07-28 18:01 - 000003026 _____ C:\Windows\system32\Tasks\rNfsrCYQpNqfOcrfNNU2 2022-07-28 18:01 - 2022-07-28 18:01 - 000003008 _____ C:\Windows\system32\Tasks\fNuIyawitAoDEGu2 2022-07-28 13:54 - 2022-08-09 12:34 - 000000557 _____ C:\Users\Właściciel\Desktop\Rockstar Games Launcher.lnk 2022-07-28 13:54 - 2022-07-28 21:37 - 000000000 ____D C:\Users\Właściciel\Documents\Rockstar Games 2022-07-28 13:42 - 2022-07-28 13:46 - 000000000 ____D C:\Program Files\Rockstar Games 2022-07-28 11:16 - 2022-07-28 11:16 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\SecureAge Technology 2022-07-27 17:34 - 2022-08-01 11:41 - 000000000 ____D C:\Program Files\SecureAge 2022-07-27 17:34 - 2022-07-27 17:34 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\Everything 2022-07-27 17:34 - 2022-07-27 17:34 - 000000000 ____D C:\ProgramData\SecureAge Technology 2022-07-27 10:36 - 2022-07-27 10:40 - 000001034 _____ C:\Users\Właściciel\Desktop\Epic games support.txt 2022-07-26 20:44 - 2022-07-26 20:46 - 000282004 _____ C:\Users\Właściciel\Documents\Update_290.exe 2022-07-26 20:22 - 2022-07-26 20:22 - 000003768 _____ C:\Windows\system32\Tasks\Firefox Default Browser Agent 2EA14A206E338D7D 2022-07-26 20:20 - 2022-07-26 20:26 - 000000000 ____D C:\Users\Właściciel\AppData\Local\48c4dab1-74b1-4f58-8964-205838bf5c9e 2022-07-26 20:20 - 2022-07-26 20:21 - 000000000 ____D C:\Users\Właściciel\AppData\Local\29ff7f54-de04-4a3c-a5a9-8699b39ecc91 2022-07-26 20:20 - 2022-07-26 20:20 - 000000000 ____D C:\SystemID 2022-07-26 20:10 - 2022-07-26 20:13 - 000000000 ____D C:\Users\Właściciel\AppData\Local\97ac5e8e-f808-42f8-924d-02beb988a2b4 2022-07-26 20:10 - 2022-07-26 20:10 - 000000000 ____D C:\Users\Właściciel\AppData\Local\ddce9cb7-b6d6-4ae6-8dfb-9a39ed08e313 2022-07-26 19:31 - 2022-07-26 20:31 - 000000004 _____ C:\ProgramData\rc.dat 2022-07-26 19:30 - 2022-07-26 20:31 - 000000004 _____ C:\ProgramData\lock.dat 2022-07-26 19:30 - 2022-07-26 20:27 - 000000020 _____ C:\ProgramData\lir.bats 2022-07-26 19:30 - 2022-07-26 19:30 - 000000008 _____ C:\ProgramData\ts.dat 2022-07-26 19:18 - 2022-07-26 20:21 - 000000162 _____ C:\Users\Właściciel\AppData\LocalLow\nssdbm3.dll 2022-07-26 19:16 - 2022-07-26 20:21 - 000254392 _____ (Mozilla Foundation) C:\Users\Właściciel\AppData\LocalLow\softokn3.dll 2022-07-26 19:15 - 2022-07-26 20:21 - 000684984 _____ (Mozilla Foundation) C:\Users\Właściciel\AppData\LocalLow\freebl3.dll 2022-07-26 19:13 - 2022-07-26 20:21 - 000627128 _____ (Mozilla Foundation) C:\Users\Właściciel\AppData\LocalLow\mozglue.dll 2022-07-26 19:08 - 2022-08-08 22:19 - 000000008 __RSH C:\ProgramData\ntuser.pol 2022-07-26 19:08 - 2022-07-30 10:17 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\shftools 2022-07-26 19:08 - 2022-07-26 20:46 - 000000000 ____D C:\Program Files (x86)\aqSearcher 2022-07-26 19:08 - 2022-07-26 19:08 - 000004152 _____ C:\Windows\system32\Tasks\AdLock Update Task-S-1-5-21-1154914137-4129568212-3990700504-1001 2022-07-26 19:08 - 2022-07-26 19:08 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\NCH Software 2022-07-26 19:08 - 2022-07-26 19:08 - 000000000 ____D C:\Users\Właściciel\AppData\Local\Yandex 2022-07-26 19:07 - 2022-07-30 10:17 - 000000000 ____D C:\Program Files (x86)\Veryday Auto Backup 2022-07-26 19:07 - 2022-07-30 10:17 - 000000000 ____D C:\Program Files (x86)\Disk Files 2022-07-26 19:07 - 2022-07-26 20:45 - 000000000 ____D C:\ProgramData\DiskOptimizer 2022-07-26 19:07 - 2022-07-26 20:13 - 000000000 ____D C:\Program Files (x86)\Proxy2Service 2022-07-26 19:07 - 2022-07-26 19:08 - 000000000 ____D C:\Users\Właściciel\AppData\Local\Package Cache 2022-07-26 19:07 - 2022-07-26 19:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proxy2Service 2022-07-26 19:07 - 2011-12-09 08:56 - 001931256 _____ (Codejock Software) C:\Windows\SysWOW64\Codejock.Controls.Unicode.v15.2.1.ocx 2022-07-26 19:07 - 2011-12-09 08:56 - 000587768 _____ (Codejock Software) C:\Windows\SysWOW64\Codejock.SkinFramework.Unicode.v15.2.1.ocx 2022-07-26 19:07 - 2011-12-09 08:55 - 002775032 _____ (Codejock Software) C:\Windows\SysWOW64\Codejock.CommandBars.Unicode.v15.2.1.ocx 2022-07-26 17:17 - 2022-08-18 17:17 - 000000000 ___HD C:\Users\Właściciel\Downloads\.opera 2022-07-26 17:17 - 2022-08-18 17:17 - 000000000 ___HD C:\Users\Właściciel\.opera 2022-07-26 16:45 - 2022-07-26 16:45 - 000004292 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1658846752 2022-07-26 16:44 - 2022-07-26 17:52 - 000000000 ____D C:\Users\Właściciel\AppData\Local\_ 2022-07-23 21:15 - 2022-07-23 21:15 - 000000000 ____D C:\Windows\system32\Tasks\Meta ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2022-08-18 17:24 - 2021-02-04 20:08 - 000000000 ____D C:\Program Files (x86)\Steam 2022-08-18 17:19 - 2022-06-29 16:57 - 000000000 ____D C:\Program Files (x86)\Origin Games 2022-08-18 17:19 - 2021-06-10 14:02 - 000000000 ____D C:\ProgramData\Origin 2022-08-18 17:12 - 2021-06-10 14:02 - 000000000 ____D C:\Users\Właściciel\AppData\Local\Origin 2022-08-18 17:12 - 2021-02-01 13:43 - 000000000 ____D C:\ProgramData\NVIDIA 2022-08-18 13:59 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2022-08-18 12:25 - 2021-03-09 18:20 - 000000000 ____D C:\Users\Właściciel\AppData\LocalLow\Mozilla 2022-08-18 12:10 - 2022-03-14 20:47 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2022-08-18 12:04 - 2021-02-01 14:47 - 000000000 ____D C:\Program Files\CCleaner 2022-08-18 11:02 - 2021-09-09 18:28 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\Messenger 2022-08-18 08:54 - 2021-01-30 03:41 - 001767984 _____ C:\Windows\system32\PerfStringBackup.INI 2022-08-18 08:54 - 2019-12-07 17:08 - 000784340 _____ C:\Windows\system32\perfh015.dat 2022-08-18 08:54 - 2019-12-07 17:08 - 000152236 _____ C:\Windows\system32\perfc015.dat 2022-08-18 08:54 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF 2022-08-18 08:47 - 2021-01-30 03:35 - 000008192 ___SH C:\DumpStack.log.tmp 2022-08-18 08:47 - 2020-11-19 01:29 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2022-08-18 08:47 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState 2022-08-18 08:46 - 2021-01-30 03:38 - 000000000 ____D C:\Users\Właściciel 2022-08-18 08:46 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI 2022-08-17 22:03 - 2021-03-09 18:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2022-08-17 22:03 - 2020-11-19 00:29 - 000000000 ____D C:\Windows\system32\SleepStudy 2022-08-17 21:49 - 2021-02-13 18:30 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\discord 2022-08-17 21:00 - 2022-01-27 17:37 - 000001430 _____ C:\Users\Właściciel\Desktop\Roblox Player.lnk 2022-08-17 21:00 - 2021-04-23 22:31 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox 2022-08-17 20:50 - 2022-06-08 12:12 - 000000000 ____D C:\Users\Właściciel\AppData\Local\Discord 2022-08-17 09:53 - 2020-11-19 01:31 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2022-08-17 09:53 - 2020-11-19 01:31 - 000003442 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2022-08-17 08:35 - 2022-03-13 16:47 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla 2022-08-17 08:35 - 2021-03-09 18:20 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2022-08-17 08:32 - 2021-09-11 18:49 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2022-08-16 21:56 - 2021-02-01 14:47 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update 2022-08-16 12:07 - 2021-07-05 15:30 - 000003592 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA 2022-08-16 12:07 - 2021-07-05 15:30 - 000003468 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore 2022-08-15 22:18 - 2021-07-25 22:24 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\steelseries-gg-client 2022-08-14 18:51 - 2021-12-13 14:27 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1154914137-4129568212-3990700504-1001 2022-08-14 18:51 - 2021-06-09 20:39 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2022-08-14 18:51 - 2021-06-09 20:39 - 000002176 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2022-08-13 20:52 - 2021-01-30 07:14 - 000000000 ____D C:\Users\Właściciel\AppData\Local\D3DSCache 2022-08-12 10:33 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2022-08-12 10:33 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness 2022-08-12 09:33 - 2022-06-29 16:52 - 000000000 ____D C:\Program Files (x86)\Origin 2022-08-11 21:24 - 2021-01-30 03:38 - 000000000 ____D C:\Users\Właściciel\AppData\Local\Packages 2022-08-11 16:52 - 2021-02-01 20:21 - 000000000 ____D C:\Program Files\Microsoft Office 2022-08-11 11:23 - 2021-02-13 18:30 - 000002256 _____ C:\Users\Właściciel\Desktop\Discord.lnk 2022-08-09 13:20 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP 2022-08-09 12:34 - 2021-02-06 15:07 - 000000000 ____D C:\Users\Właściciel\AppData\Local\CrashDumps 2022-08-09 11:13 - 2022-06-22 13:47 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\.minecraft 2022-08-09 11:10 - 2022-06-22 13:47 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\.tlauncher 2022-08-08 22:17 - 2021-03-18 10:32 - 000000000 ____D C:\Users\Właściciel\AppData\LocalLow\Temp 2022-08-08 22:17 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2022-08-08 21:25 - 2021-02-01 13:54 - 000000000 ____D C:\Users\Właściciel\AppData\Local\NVIDIA Corporation 2022-08-08 21:25 - 2021-01-29 20:47 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2022-08-08 21:24 - 2021-05-03 21:47 - 000000000 ____D C:\Program Files\VideoLAN 2022-08-08 21:24 - 2021-04-26 14:04 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\WhatsApp 2022-08-08 21:24 - 2021-04-26 14:04 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2022-08-08 21:24 - 2021-04-26 14:04 - 000000000 ____D C:\Users\Właściciel\AppData\Local\WhatsApp 2022-08-08 21:23 - 2021-05-02 10:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2022-08-08 21:23 - 2021-05-02 10:58 - 000000000 ____D C:\Program Files\Wondershare 2022-08-08 21:03 - 2021-11-01 11:56 - 000007657 _____ C:\Windows\system32\settings.xml 2022-08-08 19:39 - 2022-05-28 19:02 - 000000000 ____D C:\Users\Właściciel\AppData\Local\FiveM 2022-08-08 16:48 - 2021-09-20 19:35 - 000000000 ___RD C:\Users\Właściciel\Documents\Euro Truck Simulator 2 2022-08-05 22:06 - 2021-03-16 13:40 - 000000000 ____D C:\Program Files\Cheat Engine 7.2 2022-08-03 11:36 - 2021-02-01 13:54 - 000000000 ____D C:\ProgramData\Package Cache 2022-08-02 20:59 - 2020-11-19 00:29 - 000526688 _____ C:\Windows\system32\FNTCACHE.DAT 2022-08-02 20:09 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2022-08-01 11:56 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp 2022-08-01 11:48 - 2022-06-21 09:12 - 000015824 _____ (ESET) C:\Windows\system32\Drivers\eelam.sys 2022-08-01 11:41 - 2022-01-27 13:20 - 000000000 ____D C:\ProgramData\Avast Software 2022-08-01 11:38 - 2022-06-21 13:46 - 000000000 ____D C:\Program Files\Cheat Engine 7.4 2022-08-01 11:38 - 2021-05-31 16:17 - 000000000 ____D C:\Users\defaultuser100000.DESKTOP-M8N9LEJ 2022-07-31 19:04 - 2022-07-08 17:20 - 000000000 ____D C:\Users\Właściciel\Desktop\Foldery 2022-07-30 10:32 - 2021-03-18 14:27 - 000000000 ____D C:\Users\Właściciel\AppData\Local\ElevatedDiagnostics 2022-07-29 21:31 - 2021-02-06 14:32 - 000000000 ____D C:\Program Files\obs-studio 2022-07-28 21:36 - 2021-02-03 08:30 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games 2022-07-28 13:51 - 2021-02-04 20:15 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2022-07-28 13:46 - 2021-02-03 08:29 - 000000000 ____D C:\Program Files (x86)\Rockstar Games 2022-07-28 09:20 - 2021-01-29 20:46 - 007483424 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2022-07-26 20:27 - 2021-01-30 07:15 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\NVIDIA 2022-07-26 20:23 - 2021-10-30 20:01 - 000000000 ____D C:\Program Files\HPPrintScanDoctor 2022-07-26 18:32 - 2021-02-01 13:37 - 000000000 ____D C:\Program Files (x86)\Google 2022-07-26 17:52 - 2021-10-26 14:23 - 000000036 _____ C:\Users\Właściciel\AppData\Local\link.txt 2022-07-26 17:45 - 2020-11-19 01:29 - 000000000 ____D C:\Windows\system32\Drivers\wd 2022-07-26 17:12 - 2022-02-10 08:54 - 000000000 ____D C:\Users\Właściciel\AppData\Local\AVAST Software 2022-07-26 16:45 - 2022-05-30 14:59 - 000003100 _____ C:\Windows\system32\Tasks\TaskbarX DESKTOP-M8N9LEJWłaściciel 2022-07-26 16:45 - 2021-10-26 14:24 - 000003676 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1635251044 2022-07-26 16:45 - 2021-10-26 14:23 - 000000000 ____D C:\Users\Właściciel\AppData\Local\Adaware 2022-07-26 16:45 - 2021-09-08 09:54 - 000002264 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - Właściciel 2022-07-26 16:45 - 2021-08-01 15:52 - 000002248 _____ C:\Windows\system32\Tasks\SIMDB_75b6e096fc79c825286efd6614b8d0f4 2022-07-26 16:45 - 2021-03-06 17:07 - 000002482 _____ C:\Windows\system32\Tasks\Notification Center 2022-07-26 16:45 - 2021-02-27 10:45 - 000002836 _____ C:\Windows\system32\Tasks\Intelligent StandbyList Cleaner 2022-07-26 16:45 - 2021-02-27 10:41 - 000003398 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-26 16:45 - 2021-02-27 10:41 - 000003152 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-26 16:45 - 2021-02-27 10:41 - 000002984 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-26 16:45 - 2021-02-27 10:41 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-26 16:45 - 2021-02-27 10:41 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-26 16:45 - 2021-02-27 10:41 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-26 16:45 - 2021-02-27 10:41 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-26 16:45 - 2021-02-27 10:41 - 000002914 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-26 16:45 - 2021-02-27 10:41 - 000002744 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2022-07-26 16:45 - 2021-02-01 13:37 - 000003498 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 2022-07-26 16:45 - 2021-02-01 13:37 - 000003274 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 2022-07-26 16:45 - 2021-01-29 21:07 - 000003220 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification 2022-07-24 18:13 - 2021-05-25 10:34 - 000000000 ____D C:\ProgramData\SteelSeries 2022-07-24 11:39 - 2022-03-05 14:52 - 000000000 ____D C:\Windows\system32\SteelSeries 2022-07-23 19:44 - 2022-07-11 19:47 - 000000000 ____D C:\Users\Właściciel\AppData\Roaming\Feather Launcher 2022-07-23 18:16 - 2022-07-11 19:47 - 000000000 ____D C:\Program Files\Feather Launcher 2022-07-23 18:15 - 2022-07-11 19:47 - 000000000 ____D C:\Users\Właściciel\AppData\Local\feather-launcher-updater 2022-07-22 06:25 - 2021-01-29 20:46 - 000130216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys ==================== Pliki w katalogu głównym wybranych folderów ======== 2022-07-26 19:30 - 2022-07-26 20:31 - 000000004 _____ () C:\ProgramData\lock.dat 2022-07-26 19:31 - 2022-07-26 20:31 - 000000004 _____ () C:\ProgramData\rc.dat 2022-07-26 19:30 - 2022-07-26 19:30 - 000000008 _____ () C:\ProgramData\ts.dat 2022-05-13 13:50 - 2022-05-13 13:50 - 000248375 ___SH () C:\Users\Właściciel\AppData\Roaming\cvrberc 2022-05-13 13:50 - 2022-05-13 13:50 - 000042064 ___SH (Microsoft Corporation) C:\Users\Właściciel\AppData\Roaming\fietvws 2021-02-24 20:19 - 2022-05-28 21:02 - 000000016 _____ () C:\Users\Właściciel\AppData\Roaming\obs-virtualcam.txt 2021-10-26 14:23 - 2022-07-26 17:52 - 000000036 _____ () C:\Users\Właściciel\AppData\Local\link.txt 2021-07-16 17:06 - 2021-07-16 17:06 - 000004427 _____ () C:\Users\Właściciel\AppData\Local\recently-used.xbel 2021-02-05 20:44 - 2022-06-25 13:55 - 000007606 _____ () C:\Users\Właściciel\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================