Witam, Proszę o sprawdzenie logów i pomoc przy rozwiązaniu problemu. Przeszedłem większość poradników od wujka google i nadal mam ten bład.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 10.05.2018
Uruchomiony przez quest (administrator) BLASZAK (06-06-2021 16:36:16)
Uruchomiony z D:\Pobrane
Załadowane profile: quest (Dostępne profile: quest & Administrator)
Platform: Windows 10 Pro Wersja 2009 19042.867 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka: Chrome)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\FoundationService\MSIAPService.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Greatis Software, LLC) C:\Windows\F1VPIJD6\SU10Guard.exe
(Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MsMpEng.exe
(TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe
(MSI) C:\Windows\SysWOW64\muachost.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
(Broadcom Corporation.) C:\Program Files\ASUS\Bluetooth Software\btwdins.exe
() C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(MSI) C:\Program Files (x86)\MSI\One Dragon Center\CC_Engine_x64.exe
(Microsoft Corporation) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\InputApp\TextInputHost.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthSystray.exe
(Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIUNE.EXE
(File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.1.7.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.84.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2010.7621.0_x64__8wekyb3d8bbwe\Cortana.exe
(Broadcom Corporation.) C:\Program Files\ASUS\Bluetooth Software\BTTray.exe
(MICRO-STAR INT'L,.LTD.) C:\Program Files\WMIHook\WMIHookBtnFn\SilentFanController.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(ESET) C:\Users\quest\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IObit) C:\Program Files (x86)\IObit\Driver Booster\8.4.0\Scheduler.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) D:\Pobrane\FRST64_10.05.2018.exe
(Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
==================== Rejestr (filtrowane) ===========================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [SecurityHealth] = & gt; C:\WINDOWS\system32\SecurityHealthSystray.exe [86016 2019-12-07] (Microsoft Corporation)
HKLM\...\Run: [RtkAudUService] = & gt; C:\WINDOWS\System32\RtkAudUService64.exe [956920 2019-12-12] (Realtek Semiconductor)
HKLM\...\Run: [EPPCCMON] = & gt; C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (Seiko Epson Corporation)
HKLM-x32\...\Run: [SilentFanControl] = & gt; C:\Program Files\WMIHook\WMIHookBtnFn\SilentFanController.exe [243248 2015-09-16] (MICRO-STAR INT'L,.LTD.)
HKLM-x32\...\Run: [EEventManager] = & gt; C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1319208 2019-05-31] (Seiko Epson Corporation)
HKLM-x32\...\Run: [APSDaemon] = & gt; C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] = & gt; C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia & lt; ==== UWAGA
HKU\S-1-5-21-2585434119-618247835-2777814221-1001\...\Run: [EPSDNMON] = & gt; " "
HKU\S-1-5-21-2585434119-618247835-2777814221-1001\...\Run: [EPLTarget\P0000000000000000] = & gt; C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIUNE.EXE [416896 2017-09-22] (Seiko Epson Corporation)
HKU\S-1-5-21-2585434119-618247835-2777814221-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-2585434119-618247835-2777814221-1001\...\Policies\Explorer: [NoSecurityTab] 1
HKU\S-1-5-18\...\Run: [Plex Media Server] = & gt; C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [21576304 2021-03-09] (Plex, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2019-10-02]
ShortcutTarget: Bluetooth.lnk - & gt; C:\Program Files\ASUS\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk [2021-03-21]
ShortcutTarget: Wysyłanie do programu OneNote.lnk - & gt; C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
GroupPolicy: Ograniczenia & lt; ==== UWAGA
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a7b81740-0477-455e-bfec-12000e66449f}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO: IEToEdge BHO - & gt; {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - & gt; C:\Program Files (x86)\Microsoft\Edge\Application\91.0.864.41\BHO\ie_to_edge_bho_64.dll [2021-06-03] (Microsoft Corporation)
BHO: Skype for Business Browser Helper - & gt; {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - & gt; C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-05-28] (Microsoft Corporation)
BHO: Easy Photo Print - & gt; {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - & gt; C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
BHO-x32: IEToEdge BHO - & gt; {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - & gt; C:\Program Files (x86)\Microsoft\Edge\Application\91.0.864.41\BHO\ie_to_edge_bho.dll [2021-06-03] (Microsoft Corporation)
BHO-x32: E-Web Print - & gt; {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - & gt; C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: Skype for Business Browser Helper - & gt; {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - & gt; C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-05-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files (x86)\Java\jre1.8.0_281\bin\ssv.dll [2021-03-20] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files (x86)\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-03-20] (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation)
Edge:
======
Edge Extension: (BookReader) - & gt; BookReader_B171F20233094AC88D05A8EF7B9763E8 = & gt; C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets [2019-12-07]
Edge Extension: (PinJSAPI) - & gt; PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 = & gt; C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [2019-12-07]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2020-04-04] [Przestarzałe] [Brak podpisu cyfrowego]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - & gt; C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 - & gt; C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-05-10] (VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-03-20] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-03-20] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - & gt; C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-28] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - & gt; C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - & gt; C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - & gt; C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default - & gt; hxxp://www.google.com/
CHR StartupUrls: Default - & gt; " hxxp://feed.helperbar.com/?publisher=OPENCANDY & dpid=OPENCANDYAPRIL & co=PL & userid=bec6d45e-1ec0-4415-b16a-1329f3400019 & affid=110774 & searchtype=hp & babsrc=lnkry " , " hxxp://search.conduit.com/?ctid=CT2269050 & SearchSource=48 " , " hxxp://iron-start.com/ " , " hxxp://www.google.pl/ " , " hxxp://www.google.com " , " hxxp://mysearch.avg.com?cid={7E39867C-F5EB-41E8-A7E6-AF6F21E26C0E} & mid=c57e0e89822447d2b84ed16c644841ef-ad1491be2ce6c122f6b66faa90e70c2decf7d34c & lang=pl & ds=AVG & coid=avgtbavg & cmpid= & pr=fr & d=2014-02-04 20:22:56 & v=17.3.1.91 & pid=safeguard & sg= & sap=hp " , " hxxp://mysearch.avg.com?cid={DBC89A2C-4C79-4F78-9FF4-0EA961A33931} & mid=5b3b3bb58e2c47d2a421d16c644841ef-ad1491be2ce6c122f6b66faa90e70c2decf7d34c & lang=pl & ds=AVG & coid=avgtbavg & cmpid= & pr=fr & d=2014-02-19 20:25:29 & v=17.3.1.91 & pid=safeguard & sg= & sap=hp " , " hxxp://mysearch.avg.com?cid={A541826D-49EC-4F85-B3A4-2E86536E1D81} & mid=93decd2691fc47d282edd16c644841ef-ad1491be2ce6c122f6b66faa90e70c2decf7d34c & lang=pl & ds=AVG & coid=avgtbavg & cmpid= & pr=fr & d=2014-02-28 20:34:36 & v=17.3.1.91 & pid=safeguard & sg= & sap=hp " , " hxxp://feed.helperbar.com/?publisher=OPENCANDY & dpid={A541826D-49EC-4F85-B3A4-2E86536E1D81} & co=PL & userid=bec6d45e-1ec0-4415-b16a-1329f3400019 & affid=110774 & searchtype=hp & babsrc=lnkry
hxxp://search.conduit.com/?ctid=CT2269050 & SearchSource=48
hxxp://iron-start.com/
hxxp://www.google.pl/
hxxp://www.google.com
hxxp://mysearch.avg.com?cid={A541826D-49EC-4F85-B3A4-2E86536E1D81} & mid=93decd2691fc47d282edd16c644841ef-ad1491be2ce6c122f6b66faa90e70c2decf7d34c & lang=pl & ds=AVG & coid=avgtbavg & cmpid= & pr=fr & d=2014-02-04 20:22:56 & v=18.0.5.292 & pid=safeguard & sg= & sap=hp
hxxp://mysearch.avg.com?cid={DBC89A2C-4C79-4F78-9FF4-0EA961A33931} & mid=5b3b3bb58e2c47d2a421d16c644841ef-ad1491be2ce6c122f6b66faa90e70c2decf7d34c & lang=pl & ds=AVG & coid=avgtbavg & cmpid= & pr=fr & d=2014-02-19 20:25:29 & v=17.3.1.91 & pid=safeguard & sg= & sap=hp
hxxp://mysearch.avg.com?cid={A541826D-49EC-4F85-B3A4-2E86536E1D81} & mid=93decd2691fc47d282edd16c644841ef-ad1491be2ce6c122f6b66faa90e70c2decf7d34c & lang=pl & ds=AVG & coid=avgtbavg & cmpid= & pr=fr & d=2014-02-28 20:34:36 & v=17.3.1.91 & pid=safeguard & sg= & sap=hp " , " hxxp://mysearch.avg.com?cid={BACEFE71-E953-4556-940C-88034BC47390} & mid=222ded90facd47d2ba982966ee1a6c9f-1d5e0298ca344fb4f63246327fa9a07ad5c6d02f & lang=pl & ds=AVG & coid=avgtbavg & cmpid= & pr=fr & d=2014-04-17 09:19:13 & v=18.0.5.292 & pid=safeguard & sg= & sap=hp " , " hxxp://www.mystartsearch.com/?type=hp & ts=1414949703 & from=amt & uid=ST1000LM014-1EJ164_W380GRJ3XXXXW380GRJ3 " , " hxxp://websearch.searchoholic.info/?pid=1574 & r=2014/12/29 & hid=2809461841872064209 & lg=EN & cc=PL & unqvl=72 " , " hxxp://www.gazeta.pl/0,0.html?p=190 " , " hxxps://www.google.com/ "
CHR Session Restore: Default - & gt; [funkcja włączona]
CHR Profile: C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default [2021-06-06]
CHR Extension: (Prezentacje) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-14]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2021-05-02]
CHR Extension: (Dokumenty) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-14]
CHR Extension: (Dysk Google) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-20]
CHR Extension: (\) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhhjkekjbbflhbhkokkalglglbpbkmoj [2021-05-10]
CHR Extension: (YouTube) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-14]
CHR Extension: (Adblock dla Youtube™) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2021-05-19]
CHR Extension: (Arkusze) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-14]
CHR Extension: (Zakładki iCloud) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2019-07-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-13]
CHR Extension: (Click & Clean) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2021-05-20]
CHR Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-05-01]
CHR Extension: (CrxMouse Chrome™ Gestures) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlgkpaicikihijadgifklkbpdajbkhjo [2020-09-03]
CHR Extension: (Mapy Google) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-06-14]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (e-pity - dodatek) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg [2021-04-29]
CHR Extension: (AdBlocker Ultimate) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2021-02-25]
CHR Extension: (Click & Clean App) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2019-12-02]
CHR Extension: (Gmail) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\quest\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-26]
CHR HKLM-x32\...\Chrome\Extension: [ofoeigeaodhbjogdigckajfhjbonaofg] - hxxps://clients2.google.com/service/update2/crx
==================== Usługi (filtrowane) ====================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S3 AarSvc; C:\WINDOWS\System32\AarSvc.dll [443904 2021-03-09] (Microsoft Corporation)
S3 AarSvc; C:\WINDOWS\SysWOW64\AarSvc.dll [339968 2021-03-09] (Microsoft Corporation)
S3 autotimesvc; C:\WINDOWS\System32\autotimesvc.dll [114176 2021-01-14] (Microsoft Corporation)
R2 BrokerInfrastructure; C:\WINDOWS\System32\psmsrv.dll [247296 2020-12-07] (Microsoft Corporation)
R2 btwdins; C:\Program Files\ASUS\Bluetooth Software\btwdins.exe [960368 2012-12-30] (Broadcom Corporation.)
S3 cbdhsvc; C:\WINDOWS\System32\cbdhsvc.dll [1024000 2021-02-12] (Microsoft Corporation)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [613128 2020-09-10] (cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11279752 2021-05-21] (Microsoft Corporation)
S3 ConsentUxUserSvc; C:\WINDOWS\System32\ConsentUxClient.dll [170496 2021-01-14] (Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [388888 2021-03-09] (Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc_7c47f; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [388888 2021-03-09] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\WINDOWS\System32\deviceaccess.dll [240688 2021-01-14] (Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\WINDOWS\SysWOW64\deviceaccess.dll [188536 2021-01-14] (Microsoft Corporation)
S4 DialogBlockingService; C:\WINDOWS\System32\DialogBlockingService.dll [76288 2021-03-09] (Microsoft Corporation)
R2 DispBrokerDesktopSvc; C:\WINDOWS\System32\DispBroker.Desktop.dll [379392 2020-10-15] (Microsoft Corporation)
S3 DisplayEnhancementService; C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll [1190400 2021-01-14] (Microsoft Corporation)
S2 edgeupdate; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-07-28] (Microsoft Corporation)
S3 edgeupdatem; C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [224160 2020-07-28] (Microsoft Corporation)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2019-09-19] (Seiko Epson Corporation)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA)
S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.77\elevation_service.exe [1457320 2021-05-23] (Google LLC)
R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [87184 2020-09-28] (Micro-Star INT'L CO., LTD.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [7391408 2021-05-10] (Malwarebytes)
S3 MicrosoftEdgeElevationService; C:\Program Files (x86)\Microsoft\Edge\Application\91.0.864.41\elevation_service.exe [1639808 2021-06-03] (Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\System32\MixedRealityRuntime.dll [134768 2021-01-14] (Microsoft Corporation)
S3 MixedRealityOpenXRSvc; C:\WINDOWS\SysWOW64\MixedRealityRuntime.dll [104824 2021-01-15] (Microsoft Corporation)
R2 MSI Foundation Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\FoundationService\MSIAPService.exe [75216 2020-09-23] (Micro-Star International Co., Ltd.)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (Micro-Star Int'l Co., Ltd.)
R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [115448 2020-10-15] (Micro-Star INT'L CO., LTD.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [35504 2020-07-09] (Micro-Star Int'l Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation)
S3 perceptionsimulation; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [106496 2021-01-14] (Microsoft Corporation)
S2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [1439856 2021-03-09] (Plex, Inc.)
R2 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [956920 2019-12-12] (Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5352528 2021-03-09] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2019-10-15] ()
R2 SU10Guard; C:\Windows\F1VPIJD6\SU10Guard.exe [72776 2020-05-30] (Greatis Software, LLC)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14283048 2021-04-29] (TeamViewer Germany GmbH)
S3 TroubleshootingSvc; C:\WINDOWS\system32\MitigationClient.dll [418816 2021-01-14] (Microsoft Corporation)
S3 UdkUserSvc; C:\WINDOWS\System32\windowsudk.shellcommon.dll [2111488 2021-03-09] (Microsoft Corporation)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [326976 2021-02-05] (Microsoft Corporation)
S2 UsoSvc; C:\WINDOWS\system32\usosvc.dll [567296 2021-03-09] (Microsoft Corporation)
R2 VoiceControlService; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [32400 2020-07-06] (Micro-Star INT'L CO., LTD.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\NisSrv.exe [2644760 2021-06-05] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.4-0\MsMpEng.exe [136656 2021-06-05] (Microsoft Corporation)
S3 WManSvc; C:\WINDOWS\system32\Windows.Management.Service.dll [937472 2021-03-09] (Microsoft Corporation)
S2 WMI_Hook_Service; C:\Program Files\WMIHook\WMIHookBtnFn\WMI_Hook_Service.exe [155696 2015-09-21] (MICRO-STAR INT'L,.LTD.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Sterowniki (filtrowane) ======================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S3 Acx01000; C:\WINDOWS\System32\drivers\Acx01000.sys [415232 2019-12-07] (Microsoft Corporation)
R3 ALSysIO; C:\Users\quest\AppData\Local\Temp\ALSysIO64.sys [47240 2021-06-06] (Arthur Liberman) & lt; ==== UWAGA
R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [46344 2021-03-20] (Advanced Micro Devices, Inc)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [24520 2021-03-20] (Advanced Micro Devices, Inc)
S3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [45568 2019-12-07] (Advanced Micro Devices, Inc)
R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [34568 2021-03-20] (Advanced Micro Devices)
R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [135184 2021-03-20] (Advanced Micro Devices, Inc. )
R1 BasicDisplay; C:\WINDOWS\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_62ba5773ba05edee\BasicDisplay.sys [68608 2019-12-07] (Microsoft Corporation)
R1 BasicRender; C:\WINDOWS\System32\DriverStore\FileRepository\basicrender.inf_amd64_49a8589f00d970d9\BasicRender.sys [38912 2020-07-28] (Microsoft Corporation)
S3 BthMini; C:\WINDOWS\System32\drivers\BTHMINI.sys [45568 2021-03-09] (Microsoft Corporation)
R1 CimFS; C:\Windows\System32\Drivers\CimFS.sys [91136 2021-03-09] ()
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [136040 2019-09-26] (Samsung Electronics Co., Ltd.)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [31744 2020-03-23] ()
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2020-06-29] (Huawei Technologies Co., Ltd.)
S3 FTDIBUS; C:\WINDOWS\system32\drivers\ftdibus.sys [129456 2017-08-24] (Future Technology Devices International Ltd.)
S3 gameflt; C:\WINDOWS\System32\DriverStore\FileRepository\gameflt.inf_amd64_3825704564ee796b\gameflt.sys [71000 2019-07-12] (Microsoft Corporation)
S3 genericusbfn; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [23040 2019-12-07] (Microsoft Corporation)
S3 hidspi; C:\WINDOWS\System32\drivers\hidspi.sys [66560 2019-12-07] (Microsoft Corporation)
S3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [38544 2018-12-13] (FINTEK Corp.)
S3 iaLPSS2i_GPIO2_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [112128 2019-12-07] (Intel Corporation)
S3 iaLPSS2i_GPIO2_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [96256 2019-12-07] (Intel Corporation)
S3 iaLPSS2i_I2C_CNL; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [177152 2019-12-07] (Intel Corporation)
S3 iaLPSS2i_I2C_GLK; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [177664 2019-12-07] (Intel Corporation)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2020-03-15] (Highresolution Enterprises [www.highrez.co.uk])
S3 intelpmax; C:\WINDOWS\System32\drivers\intelpmax.sys [30720 2019-12-07] (Microsoft Corporation)
R2 LdVBoxDrv; C:\Program Files\ldplayerbox\LdVBoxDrv.sys [315232 2021-04-05] (Oracle Corporation)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc.)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-06-02] (Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-06-06] (Malwarebytes)
S3 MbbCx; C:\WINDOWS\System32\drivers\MbbCx.sys [386048 2020-08-14] (Microsoft Corporation)
S3 Microsoft_Bluetooth_AvrcpTransport; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [65024 2019-12-07] (Microsoft Corporation)
R3 MsQuic; C:\WINDOWS\System32\drivers\msquic.sys [322376 2020-09-12] (Microsoft Corporation)
S3 NDKPing; C:\WINDOWS\System32\drivers\NDKPing.sys [72720 2019-12-07] (Microsoft Corporation)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\One Dragon Center\Lib\SYS\NTIOLib_X64.sys [14288 2017-07-10] (MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Lib\NTIOLib_X64.sys [14288 2017-07-11] (MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3784df9edffd3314\nvlddmkm.sys [38696736 2021-05-10] (NVIDIA Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\drivers\NvModuleTracker.sys [50592 2020-03-04] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [67456 2020-03-11] (NVIDIA Corporation)
R3 PHYMEM; C:\Users\quest\AppData\Local\Packages\33C30B79.HyperXNGenuity_0a78dr3hq0pvt\LocalState\otipcibus64.sys [17488 2020-04-20] (OTi)
S3 PktMon; C:\WINDOWS\System32\drivers\PktMon.sys [104760 2020-11-11] (Microsoft Corporation)
S3 portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [27136 2019-12-07] (Microsoft Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1148904 2021-05-10] (Realtek )
S0 SmartSAMD; C:\WINDOWS\System32\drivers\SmartSAMD.sys [209720 2019-12-07] (Microsemi Corportation)
S3 smbdirect; C:\WINDOWS\System32\DRIVERS\smbdirect.sys [172544 2019-12-07] (Microsoft Corporation)
S3 spaceparser; C:\WINDOWS\System32\drivers\spaceparser.sys [26624 2019-12-07] (Microsoft Corporation)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-05-24] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-09-26] (Samsung Electronics Co., Ltd.)
R0 Telemetry; C:\WINDOWS\System32\drivers\IntelTA.sys [26608 2020-10-15] (Microsoft Corporation)
R3 UcmCxUcsiNvppc; C:\WINDOWS\System32\DriverStore\FileRepository\nvppc.inf_amd64_25fb711132593303\UcmCxUcsiNvppc.sys [707824 2020-12-12] (NVIDIA Corporation)
S3 UcmUcsiAcpiClient; C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys [36864 2019-12-07] (Microsoft Corporation)
S3 UcmUcsiCx0101; C:\WINDOWS\System32\Drivers\UcmUcsiCx.sys [113152 2020-09-12] (Microsoft Corporation)
R3 UEFI; C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_c1628ffa62c8e54c\UEFI.sys [34104 2019-12-07] (Microsoft Corporation)
S3 UfxChipidea; C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_1c78775fffab6a0a\UfxChipidea.sys [110608 2019-12-07] (Microsoft Corporation)
R3 umbus; C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_b78a9c5b6fd62c27\umbus.sys [58368 2019-12-07] (Microsoft Corporation)
S3 UrsChipidea; C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_78ad1c14e33df968\urschipidea.sys [32056 2019-12-07] (Microsoft Corporation)
S3 UrsSynopsys; C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_057fa37902020500\urssynopsys.sys [29496 2019-12-07] (Microsoft Corporation)
S3 usbaudio2; C:\WINDOWS\System32\drivers\usbaudio2.sys [260608 2019-12-07] (Microsoft Corporation)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24064 2020-09-12] (Microsoft Corporation)
S3 VirtualRender; C:\WINDOWS\System32\DriverStore\FileRepository\vrd.inf_amd64_81fbd405ff2470fc\vrd.sys [11264 2019-12-07] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-06-05] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425208 2021-06-05] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76008 2021-06-05] (Microsoft Corporation)
S3 Xvdd; C:\WINDOWS\System32\DriverStore\FileRepository\xvdd.inf_amd64_f6a7534fb0f98a2f\xvdd.sys [450584 2019-07-12] (Microsoft Corporation)
S3 MSIO; \??\C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\msio64.sys [X]
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
NETSVC: TroubleshootingSvc - & gt; C:\Windows\system32\MitigationClient.dll (Microsoft Corporation)
NETSVC: WManSvc - & gt; C:\Windows\system32\Windows.Management.Service.dll (Microsoft Corporation)
==================== Jeden miesiąc - utworzone pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2021-06-06 16:36 - 2021-06-06 16:36 - 000000000 ____D C:\FRST
2021-06-06 12:25 - 2021-06-06 16:11 - 000000000 ____D C:\WINDOWS\SoftwareDistribution.old2
2021-06-06 12:24 - 2021-06-06 16:10 - 000000000 ____D C:\WINDOWS\system32\Catroot2.old2
2021-06-06 12:13 - 2020-09-12 11:57 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2021-06-02 19:19 - 2021-06-02 19:19 - 000355971 _____ C:\Users\quest\Documents\img20210602_19190361.pdf
2021-05-31 23:31 - 2021-05-31 23:31 - 000000000 ____D C:\WINDOWS\System32\Tasks\Agent Activation Runtime
2021-05-25 17:21 - 2021-05-25 17:21 - 000183320 _____ C:\Users\quest\Documents\img20210525_17210768.pdf
2021-05-24 19:17 - 2021-05-24 19:17 - 000375581 _____ C:\Users\quest\Documents\img20210524_19170474.pdf
2021-05-20 22:52 - 2021-05-20 22:52 - 000002645 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype dla firm.lnk
2021-05-20 22:52 - 2021-05-20 22:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narzędzia pakietu Microsoft Office
2021-05-15 09:31 - 2021-05-15 09:31 - 000000951 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-05-10 22:48 - 2021-06-06 16:34 - 000000000 ____D C:\Program Files\TeamViewer
2021-05-10 22:48 - 2021-05-10 22:48 - 000000924 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2021-05-10 22:48 - 2021-05-10 22:48 - 000000912 _____ C:\Users\Public\Desktop\TeamViewer.lnk
2021-05-10 22:46 - 2021-05-10 22:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2021-05-10 22:46 - 2021-05-10 22:46 - 000000000 ____D C:\Program Files\qBittorrent
2021-05-10 22:44 - 2021-05-10 22:44 - 000000000 ____D C:\WINDOWS\system32\lxss
2021-05-10 22:44 - 2021-05-10 22:44 - 000000000 ____D C:\WINDOWS\LastGood
2021-05-10 22:43 - 2021-05-10 22:43 - 008316176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 007433488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 004795184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 002823440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 002105632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-05-10 22:43 - 2021-05-10 22:43 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-05-10 22:43 - 2021-05-10 22:43 - 001590048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 001514256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 001452336 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-05-10 22:43 - 2021-05-10 22:43 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-05-10 22:43 - 2021-05-10 22:43 - 001191728 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 001166104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 001094888 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 001094888 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 000848688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-05-10 22:43 - 2021-05-10 22:43 - 000811800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 000715552 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 000689936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-05-10 22:43 - 2021-05-10 22:43 - 000675104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 000656144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 000626992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 000575776 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 000563984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-05-10 22:43 - 2021-05-10 22:43 - 000445712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-05-10 22:43 - 2021-05-10 22:43 - 000087163 _____ C:\WINDOWS\system32\nvinfo.pb
2021-05-10 22:41 - 2021-05-10 22:41 - 000002056 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-05-10 22:41 - 2021-05-10 22:41 - 000001083 _____ C:\Users\Public\Desktop\Mp3tag.lnk
2021-05-08 16:08 - 2021-05-08 16:08 - 000000000 ____D C:\Users\quest\AppData\Local\Rocket League
2021-05-08 15:31 - 2021-05-08 15:31 - 000001114 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2021-05-07 10:32 - 2021-05-07 10:32 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2021-05-07 10:32 - 2021-05-07 10:32 - 000000898 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-05-07 10:31 - 2021-05-07 10:31 - 000000999 _____ C:\Users\Public\Desktop\AIMP.lnk
2021-05-07 10:30 - 2021-05-24 19:45 - 000002218 _____ C:\Users\Public\Desktop\IObit Software Updater.lnk
2021-05-07 10:30 - 2021-05-15 09:30 - 000003434 _____ C:\WINDOWS\System32\Tasks\SU_AutoUpdate
2021-05-07 10:30 - 2021-05-07 10:30 - 000003168 _____ C:\WINDOWS\System32\Tasks\Software Updater Scheduler
2021-05-07 10:30 - 2021-05-07 10:30 - 000002934 _____ C:\WINDOWS\System32\Tasks\Software Updater SkipUAC(quest)
2021-05-07 10:30 - 2021-05-07 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Software Updater
==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2021-06-06 16:35 - 2020-11-16 22:45 - 000001307 _____ C:\Users\quest\Desktop\ESET Online Scanner.lnk
2021-06-06 16:35 - 2020-08-21 07:29 - 000001413 _____ C:\Users\quest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-06-06 16:35 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-06 16:35 - 2019-06-15 10:30 - 000000000 ____D C:\Users\quest\AppData\Roaming\NetSpeedMonitor
2021-06-06 16:34 - 2021-04-09 23:13 - 000000000 ____D C:\WINDOWS\F1VPIJD6
2021-06-06 16:34 - 2020-07-27 23:58 - 000003426 _____ C:\WINDOWS\System32\Tasks\HyperXRamApp
2021-06-06 16:34 - 2020-07-27 23:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-06 16:34 - 2020-07-27 23:53 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-06 16:34 - 2019-12-07 11:03 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2021-06-06 16:34 - 2019-08-03 14:21 - 000000000 ____D C:\ProgramData\NVIDIA
2021-06-06 16:34 - 2019-06-15 10:28 - 000000000 ____D C:\Program Files\Core Temp
2021-06-06 16:25 - 2020-06-02 21:22 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-06-06 16:20 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-06 16:18 - 2020-07-27 23:53 - 001862546 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-06 16:18 - 2019-12-07 17:09 - 000817432 _____ C:\WINDOWS\system32\perfh015.dat
2021-06-06 16:18 - 2019-12-07 17:09 - 000169152 _____ C:\WINDOWS\system32\perfc015.dat
2021-06-06 16:18 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-06 16:13 - 2020-11-18 00:52 - 000000000 ____D C:\Program Files\CCleaner
2021-06-06 16:12 - 2019-08-13 16:36 - 000000000 ____D C:\Users\quest\AppData\Local\ElevatedDiagnostics
2021-06-06 16:01 - 2020-07-27 23:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-06 16:01 - 2019-06-14 21:41 - 000000000 ____D C:\Users\quest\AppData\Roaming\AIMP
2021-06-06 13:15 - 2020-06-24 17:18 - 000000000 ____D C:\Users\quest\.Ld2VirtualBox
2021-06-06 12:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Help
2021-06-06 11:02 - 2019-08-03 14:03 - 000001426 __RSH C:\ProgramData\ntuser.pol
2021-06-05 23:25 - 2019-06-15 10:26 - 000000000 ____D C:\ProgramData\ProductData
2021-06-05 10:41 - 2020-07-28 00:03 - 000002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-05 10:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-05 10:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-05 09:53 - 2019-06-14 21:31 - 000000000 ____D C:\Users\quest\AppData\Local\ConnectedDevicesPlatform
2021-06-05 09:51 - 2019-06-14 21:24 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-05 00:34 - 2019-06-15 13:31 - 000000000 ____D C:\Program Files (x86)\Steam
2021-06-03 01:15 - 2019-07-31 20:25 - 000000000 ____D C:\Users\quest\AppData\Roaming\qBittorrent
2021-06-03 00:49 - 2019-06-14 21:42 - 000000000 ____D C:\Users\quest\AppData\Roaming\vlc
2021-06-02 21:46 - 2019-11-22 19:48 - 000001293 _____ C:\Users\quest\Desktop\WOW WOTLK.lnk
2021-05-30 10:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Catroot2.old
2021-05-29 21:40 - 2019-06-14 21:44 - 000000000 ____D C:\ProgramData\Riot Games
2021-05-28 21:34 - 2019-06-15 13:32 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-05-25 22:18 - 2019-06-14 21:34 - 000002342 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-20 22:52 - 2020-12-06 02:06 - 000002548 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-05-20 22:52 - 2020-12-06 02:06 - 000002536 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-05-20 22:52 - 2020-12-06 02:06 - 000002521 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-05-20 22:52 - 2020-12-06 02:06 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-05-20 22:52 - 2020-12-06 02:06 - 000002515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-05-20 22:52 - 2020-12-06 02:06 - 000002482 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-05-20 22:52 - 2020-12-06 02:06 - 000002472 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-05-14 17:54 - 2019-07-15 18:00 - 000002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-11 09:38 - 2021-02-21 15:53 - 000490048 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-11 00:07 - 2019-06-27 22:23 - 000000000 ____D C:\Users\quest\AppData\Roaming\uTorrent
2021-05-10 22:48 - 2020-02-03 14:43 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-05-10 22:45 - 2020-06-04 09:53 - 000000912 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2021-05-10 22:45 - 2020-06-04 09:53 - 000000000 ____D C:\Users\quest\AppData\Roaming\Notepad++
2021-05-10 22:45 - 2020-06-04 09:53 - 000000000 ____D C:\Program Files\Notepad++
2021-05-10 22:44 - 2019-06-14 22:48 - 000000000 ____D C:\Users\quest\AppData\Local\CrashDumps
2021-05-10 22:43 - 2020-06-24 23:05 - 007207560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-05-10 22:43 - 2020-06-24 23:05 - 006154480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-05-10 22:42 - 2020-02-27 20:47 - 001148904 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2021-05-10 22:41 - 2020-06-02 21:23 - 000002068 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-05-10 22:41 - 2019-08-28 17:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2021-05-10 22:41 - 2019-08-28 17:29 - 000000000 ____D C:\Program Files (x86)\Mp3tag
2021-05-10 22:40 - 2019-07-16 23:45 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-05-08 15:32 - 2021-04-11 10:35 - 000000000 ____D C:\Program Files (x86)\EaseUS
2021-05-08 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration
2021-05-08 15:31 - 2019-09-01 15:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2021-05-08 15:02 - 2019-10-15 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2021-05-08 15:02 - 2019-10-15 17:33 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2021-05-07 10:31 - 2019-06-14 21:41 - 000000000 ____D C:\Program Files (x86)\AIMP
2021-05-07 10:30 - 2021-03-20 10:56 - 000000000 ____D C:\Program Files (x86)\IObit
2021-05-07 10:30 - 2019-06-15 10:26 - 000000000 ____D C:\ProgramData\IObit
2021-05-07 08:50 - 2019-06-15 10:26 - 000000000 ____D C:\Users\quest\AppData\Roaming\IObit
==================== Pliki w katalogu głównym wybranych folderów =======
2020-09-12 10:15 - 2020-09-12 10:15 - 000000259 _____ () C:\ProgramData\fontcacheev1.dat
2020-11-16 22:27 - 2020-11-16 22:27 - 000000064 _____ () C:\Users\quest\AppData\Roaming\changzhi_leidian.data
2020-12-07 01:25 - 2020-12-07 01:25 - 000000064 _____ () C:\Users\quest\AppData\Roaming\changzhi_mplayer.data
2021-02-20 22:42 - 2021-02-20 22:42 - 000000783 _____ () C:\Users\quest\AppData\Roaming\qnapi.ini
2020-12-09 21:54 - 2020-12-09 21:54 - 000007602 _____ () C:\Users\quest\AppData\Local\Resmon.ResmonCfg
==================== Bamital & volsnap ======================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
C:\WINDOWS\system32\winlogon.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\wininit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\explorer.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\svchost.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\services.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\User32.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\userinit.exe = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\rpcss.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\SysWOW64\dnsapi.dll = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\Drivers\volsnap.sys = & gt; Plik podpisany cyfrowo
C:\WINDOWS\system32\codeintegrity\Bootcat.cache BRAK & lt; ==== UWAGA
==================== Koniec FRST.txt ============================