dll-propagation.exe jak usunąc? prosze o pomoc ponizej przesylam pliki z frst i prosze o instrukcje co dalej
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 04-06-2022 01
Uruchomiony przez opszczymur (administrator) DESKTOP-GGVV2O4 (Gigabyte Technology Co., Ltd. Z390 GAMING X) (05-06-2022 17:22:24)
Uruchomiony z C:\Users\opszczymur\Downloads
Załadowane profile: opszczymur
Platform: Microsoft Windows 10 Home Wersja 21H2 19044.1706 (X64) Język: Polski (Polska)
Domyślna przeglądarka: Opera
Tryb startu: Normal
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe - & gt; ) (Malwarebytes Inc - & gt; Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe - & gt; ) (Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe - & gt; ) (Nvidia Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe & lt; 3 & gt;
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe - & gt; ) (Nvidia Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Users\opszczymur\AppData\Local\Programs\Opera GX\opera.exe - & gt; ) (Opera Software AS - & gt; Opera Software) C:\Users\opszczymur\AppData\Local\Programs\Opera GX\86.0.4363.70\opera_crashreporter.exe
(C:\Users\opszczymur\AppData\Roaming\.dllbackups\dllruntime.exe - & gt; ) (Microsoft Corporation) [Brak podpisu cyfrowego] C:\Users\opszczymur\AppData\Local\Temp\24qrrXHyyao7PIDSMXbgocvqIlv\services.exe & lt; 3 & gt;
(Discord Inc. - & gt; Discord Inc.) C:\Users\opszczymur\AppData\Local\Discord\app-1.0.9004\Discord.exe & lt; 6 & gt;
(explorer.exe - & gt; ) (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu] C:\Users\opszczymur\AppData\Roaming\.dllbackups\dllruntime.exe
(explorer.exe - & gt; ) (Riot Games, Inc. - & gt; Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe - & gt; ) (Skutta, Kristjan - & gt; ) C:\Users\opszczymur\Desktop\Wallaper Engine\Wallpaper.Engine.v2.0.48\wallpaper32.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Nvidia Corporation - & gt; Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(SearchFilterHost.exe - & gt; ) (Opera Software AS - & gt; Opera Software) C:\Users\opszczymur\AppData\Local\Programs\Opera GX\opera.exe & lt; 26 & gt;
(services.exe - & gt; ) (Intel(R) Embedded Subsystems and IP Blocks Group - & gt; Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe - & gt; ) (Malwarebytes Inc. - & gt; Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe - & gt; ) (Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe & lt; 2 & gt;
(services.exe - & gt; ) (Microsoft Windows Publisher - & gt; Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe
(services.exe - & gt; ) (Nvidia Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe & lt; 3 & gt;
(services.exe - & gt; ) (Nvidia Corporation - & gt; NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c0e159863e7afdde\Display.NvContainer\NVDisplay.Container.exe & lt; 2 & gt;
(services.exe - & gt; ) (Realtek Semiconductor Corp. - & gt; Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe & lt; 2 & gt;
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.186.857.0_x86__zpdnekdrzrea0\Spotify.exe & lt; 6 & gt;
(svchost.exe - & gt; ) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe - & gt; ) (Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe - & gt; ) (Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe - & gt; ) (Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
==================== Rejestr (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [RtkAudUService] = & gt; C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. - & gt; Realtek Semiconductor)
HKLM\...\Run: [SteelSeriesGG] = & gt; C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [12692160 2022-05-20] (SteelSeries ApS - & gt; SteelSeries ApS)
HKLM\...\Run: [Riot Vanguard] = & gt; C:\Program Files\Riot Vanguard\vgtray.exe [3069768 2022-04-08] (Riot Games, Inc. - & gt; Riot Games, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia & lt; ==== UWAGA
HKU\S-1-5-21-2997884109-2120536598-977742993-1001\...\Run: [Discord] = & gt; C:\Users\opszczymur\AppData\Local\Discord\Update.exe [1512616 2022-02-17] (Discord Inc. - & gt; GitHub)
HKU\S-1-5-21-2997884109-2120536598-977742993-1001\...\Run: [EADM] = & gt; D:\Origin\Origin.exe [3146944 2022-04-24] (Electronic Arts, Inc. - & gt; Electronic Arts)
HKU\S-1-5-21-2997884109-2120536598-977742993-1001\...\Run: [Battle.net] = & gt; C:\Program Files (x86)\Battle.net\Battle.net.exe [1088456 2022-05-28] (Blizzard Entertainment, Inc. - & gt; Blizzard Entertainment)
HKU\S-1-5-21-2997884109-2120536598-977742993-1001\...\Run: [Steam] = & gt; D:\Steam\steam.exe [4282328 2022-05-28] (Valve Corp. - & gt; Valve Corporation)
HKU\S-1-5-21-2997884109-2120536598-977742993-1001\...\Run: [ALLUpdate] = & gt; C:\Program Files\ALLPlayer\ALLUpdate.exe [3930344 2018-11-10] (ALLPlayer Group sp. z o.o. - & gt; ALLPlayer.org)
HKU\S-1-5-21-2997884109-2120536598-977742993-1001\...\Run: [Boom 3D] = & gt; " C:\Program Files\Global Delight\Boom 3D\Boom3D.exe " --tray (Brak pliku)
HKU\S-1-5-21-2997884109-2120536598-977742993-1001\...\Run: [Opera GX Browser Assistant] = & gt; C:\Users\opszczymur\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS - & gt; Opera Software)
HKU\S-1-5-21-2997884109-2120536598-977742993-1001\...\Run: [WallpaperEngine] = & gt; C:\Users\opszczymur\Desktop\Wallaper Engine\Wallpaper.Engine.v2.0.48\wallpaper32.exe [2703520 2021-12-04] (Skutta, Kristjan - & gt; )
HKU\S-1-5-21-2997884109-2120536598-977742993-1001\...\Run: [NoxMultiPlayer] = & gt; " D:\Program Files\Nox\bin\MultiPlayerManager.exe " -startSource:auto_start (Brak pliku)
HKU\S-1-5-21-2997884109-2120536598-977742993-1001\...\Run: [electron.app.dllservices] = & gt; C:\Users\opszczymur\AppData\Roaming\.dllbackups\dllruntime.exe [63160117 2022-05-31] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
HKU\S-1-5-21-2997884109-2120536598-977742993-1001\...\Run: [electron.app.services] = & gt; C:\Users\opszczymur\AppData\Roaming\.dllbackups\dllruntime.exe [63160117 2022-05-31] (Microsoft Corporation) [Brak podpisu cyfrowego] [Plik w użyciu]
==================== Zaplanowane zadania (filtrowane) ============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {0D015FA2-8916-4D3C-9135-FF6F467F891D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {0DC01526-E93C-4D52-A14F-DB0DC213D6D0} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {23F4AB40-DDD3-423A-B0A9-5817C5DE65E1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance = & gt; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-23] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {2AEFBA28-D399-48F7-9818-10D6294D5FCC} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {2E6E7C84-BAD2-4C32-AC1B-0A11DE280722} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {2FE98352-7F12-4E2E-B616-898813CBCB7E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {308FA1A2-3B1E-440A-9EC0-FE20A98DC52C} - System32\Tasks\Intel PTT EK Recertification = & gt; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation - & gt; Intel(R) Corporation)
Task: {379B9997-E7DA-4D5B-8A3D-9908C9D77B0D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup = & gt; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-23] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {4A46A420-F07B-422D-B9FC-694DB3E63265} - System32\Tasks\Opera GX scheduled Autoupdate 1650744388 = & gt; C:\Users\opszczymur\AppData\Local\Programs\Opera GX\launcher.exe [2369792 2022-05-30] (Opera Software AS - & gt; Opera Software)
Task: {6A944D3B-61C4-46A9-A134-35EFBE899B65} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {711693D8-1F65-4B3A-B991-E99F3A7CBD95} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {75A4DA33-188B-4960-99A3-872408A047F6} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1652299632 = & gt; C:\Users\opszczymur\AppData\Local\Programs\Opera GX\launcher.exe [2369792 2022-05-30] (Opera Software AS - & gt; Opera Software) - & gt; --scheduledautoupdate --component-name=assistant --component-path= " C:\Users\opszczymur\AppData\Local\Programs\Opera GX\assistant " $(Arg0)
Task: {7FF936C7-2978-4A0D-A3FA-07BD3E96B424} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation - & gt; NVIDIA Corporation) - & gt; -d " C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck " -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {9027DA73-502B-4201-8D30-DC01FF3E8C40} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {98D20E08-76D1-42F5-BF73-DFBAC329125D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification = & gt; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-23] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {E21620C8-6E05-4DB7-BE0F-F21FE6BD19CC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan = & gt; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\MpCmdRun.exe [993000 2022-04-23] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3ee6c823-8120-4db4-88e3-94f67f6b818e}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{aa7be9b5-98dd-4ce2-9a6d-217ae1d8dc10}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Extension: (Brak nazwy) - & gt; AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 = & gt; C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono]
Edge Extension: (Brak nazwy) - & gt; BookReader_B171F20233094AC88D05A8EF7B9763E8 = & gt; C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono]
Edge Extension: (Brak nazwy) - & gt; LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 = & gt; C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono]
Edge Extension: (Brak nazwy) - & gt; PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 = & gt; C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono]
Edge Profile: C:\Users\opszczymur\AppData\Local\Microsoft\Edge\User Data\Default [2022-05-29]
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-2997884109-2120536598-977742993-1001) Opera GXStable - " C:\Users\opszczymur\AppData\Local\Programs\Opera GX\Launcher.exe "
==================== Usługi (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8930120 2022-04-25] (BattlEye Innovations e.K. - & gt; )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-05-25] (EasyAntiCheat Oy - & gt; Epic Games, Inc)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8524512 2022-05-15] (Malwarebytes Inc. - & gt; Malwarebytes)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2575064 2022-04-24] (Electronic Arts, Inc. - & gt; Electronic Arts)
S2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3494672 2022-04-24] (Electronic Arts, Inc. - & gt; Electronic Arts)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [32960 2022-05-20] (SteelSeries ApS - & gt; )
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [6020336 2022-04-25] (Wellbia.com Co., Ltd. - & gt; Wellbia.com Co., Ltd.)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746728 2022-03-23] (Oracle Corporation - & gt; Oracle Corporation)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10569840 2022-04-08] (Riot Games, Inc. - & gt; Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-23] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-23] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [9259312 2022-04-25] (PUBG CORPORATION - & gt; KRAFTON, Inc)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c0e159863e7afdde\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c0e159863e7afdde\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Sterowniki (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin\brynhildr.sys [2355952 2022-04-24] (Activision Publishing Inc - & gt; Activision Blizzard, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 FairplayKD; C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [104512 2022-06-05] (Hans Roes - & gt; Multi Theft Auto)
R3 FXVAD; C:\WINDOWS\system32\drivers\fxvad.sys [326656 2021-07-14] (Microsoft Windows Hardware Compatibility Publisher - & gt; Windows (R) Win 7 DDK provider)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher - & gt; Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-24] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239560 2022-06-01] (Microsoft Windows Hardware Compatibility Publisher - & gt; Malwarebytes)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher - & gt; NVIDIA Corporation)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [47784 2022-01-31] (SteelSeries ApS - & gt; SteelSeries ApS)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [43424 2022-05-03] (Microsoft Windows Hardware Compatibility Publisher - & gt; SteelSeries ApS)
S3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_6f6e907eca1efa31\SteelSeries-Sonar-VAD.sys [89568 2022-03-23] (SteelSeries ApS - & gt; Windows (R) Win 7 DDK provider)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [240704 2022-03-22] (Oracle Corporation - & gt; Oracle Corporation)
R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1046392 2022-03-22] (Oracle Corporation - & gt; Oracle Corporation)
S1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8571048 2022-04-08] (Riot Games, Inc. - & gt; Riot Games, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2022-04-23] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [443664 2022-04-23] (Microsoft Windows - & gt; Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-23] (Microsoft Windows - & gt; Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [1431256 2022-04-25] (Wellbia.com Co., Ltd. - & gt; Wellbia.com Co., Ltd.)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [312776 2022-05-23] (Microsoft Windows Hardware Compatibility Publisher - & gt; Nox Limited Corporation)
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc (utworzone) (filtrowane) =========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2022-06-05 17:22 - 2022-06-05 17:22 - 000018825 _____ C:\Users\opszczymur\Downloads\FRST.txt
2022-06-05 17:18 - 2022-06-05 17:22 - 000000000 ____D C:\FRST
2022-06-05 17:18 - 2022-06-05 17:18 - 002368000 _____ (Farbar) C:\Users\opszczymur\Downloads\FRST64.exe
2022-06-05 17:18 - 2022-06-05 17:18 - 000000000 ____D C:\Users\opszczymur\Downloads\FRST-OlderVersion
2022-06-05 17:18 - 2022-06-05 17:18 - 000000000 _____ C:\Users\opszczymur\Desktop\fixlist.txt
2022-06-05 17:09 - 2022-06-05 17:09 - 000001828 _____ C:\Users\opszczymur\Desktop\CrystalDiskInfo.lnk
2022-06-05 17:09 - 2022-06-05 17:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2022-06-05 17:09 - 2022-06-05 17:09 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2022-06-05 14:42 - 2022-06-05 14:42 - 000002189 _____ C:\Users\Public\Desktop\MTA San Andreas 1.5.lnk
2022-06-05 14:42 - 2022-06-05 14:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MTA San Andreas 1.5
2022-06-05 14:42 - 2022-06-05 14:42 - 000000000 ____D C:\Program Files (x86)\MTA San Andreas 1.5
2022-06-05 14:39 - 2022-06-05 14:39 - 000001290 _____ C:\Users\Public\Desktop\GTA San Andreas.lnk
2022-06-02 18:58 - 2022-06-05 14:42 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2022-06-02 18:58 - 2022-06-02 18:59 - 000000000 ____D C:\Users\opszczymur\Documents\GTA San Andreas User Files
2022-06-02 18:57 - 2022-06-05 14:42 - 000000000 ____D C:\ProgramData\MTA San Andreas All
2022-06-02 18:51 - 2022-06-05 14:38 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2022-06-02 01:40 - 2022-06-02 01:40 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\Obsidium
2022-06-02 01:38 - 2022-06-02 01:41 - 000000000 ____D C:\Users\opszczymur\Desktop\han
2022-06-01 16:46 - 2022-06-05 16:50 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\services
2022-05-31 21:25 - 2022-06-05 17:10 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\dll-propagation
2022-05-31 21:25 - 2022-05-31 21:25 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\Ookla
2022-05-31 21:23 - 2022-06-01 16:47 - 000000000 ___HD C:\Users\opszczymur\AppData\Roaming\.dllbackups
2022-05-31 21:23 - 2022-05-31 21:23 - 000000000 ____D C:\Users\opszczymur\Documents\Image-Line
2022-05-31 21:23 - 2022-05-31 21:23 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\dllservices
2022-05-28 12:28 - 2022-05-28 12:28 - 000000000 ____D C:\Temp
2022-05-28 12:15 - 2022-05-28 12:32 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\Tencent
2022-05-28 12:15 - 2022-05-28 12:15 - 000000000 ____D C:\Users\opszczymur\AppData\Local\Tencent
2022-05-28 12:15 - 2022-05-28 12:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯软件
2022-05-24 15:02 - 2022-05-24 15:02 - 000000000 ___HD C:\$WinREAgent
2022-05-23 17:32 - 2022-05-23 17:32 - 000000000 ____D C:\Users\opszczymur\AppData\Local\MultiPlayerManager
2022-05-23 17:12 - 2022-05-25 12:04 - 000000000 ____D C:\Users\opszczymur\.BigNox
2022-05-23 17:12 - 2022-05-23 17:12 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\Microsoft\Windows\Start Menu\Nox
2022-05-23 17:11 - 2022-05-23 17:12 - 000000000 ____D C:\Program Files (x86)\Bignox
2022-05-23 17:09 - 2022-05-24 20:08 - 000000299 _____ C:\Users\opszczymur\d4ac4633ebd6440fa397b84f1bc94a3c.7z
2022-05-23 17:03 - 2022-05-23 17:03 - 000000066 _____ C:\Users\opszczymur\inittk.ini
2022-05-23 17:02 - 2022-05-24 19:38 - 000000000 ____D C:\Users\opszczymur\vmlogs
2022-05-23 17:02 - 2022-05-24 19:38 - 000000000 ____D C:\Users\opszczymur\AppData\Local\NoxSrv
2022-05-23 17:02 - 2022-05-24 19:38 - 000000000 ____D C:\Users\opszczymur\.android
2022-05-23 17:02 - 2022-05-23 17:12 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\NoxSrv
2022-05-23 17:02 - 2022-05-23 17:02 - 000000053 _____ C:\Users\opszczymur\useruid.ini
2022-05-23 17:02 - 2022-05-23 17:02 - 000000045 _____ C:\Users\opszczymur\nuuid.ini
2022-05-23 17:02 - 2022-05-23 17:02 - 000000041 _____ C:\Users\opszczymur\inst.ini
2022-05-23 17:02 - 2022-05-23 17:02 - 000000000 ____D C:\Users\opszczymur\Nox_share
2022-05-23 17:01 - 2022-06-02 12:46 - 000000000 ____D C:\Users\opszczymur\AppData\Local\Nox
2022-05-22 11:20 - 2022-05-31 21:21 - 000000000 ____D C:\Users\opszczymur\AppData\LocalLow\BitTorrent
2022-05-19 21:41 - 2022-05-19 21:41 - 000006887 _____ C:\Users\opszczymur\-1.14-windows.xml
2022-05-19 21:40 - 2022-05-23 17:15 - 000000000 ____D C:\Users\opszczymur\AppData\Local\BlueStacks
2022-05-19 21:40 - 2022-05-19 21:40 - 000000000 ____D C:\Users\Public\BlueStacks
2022-05-19 21:08 - 2022-05-19 21:08 - 000000000 ____D C:\Users\opszczymur\AppData\Local\VALORANT
2022-05-19 21:04 - 2022-06-05 14:34 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2022-05-19 20:48 - 2022-05-19 20:48 - 000001627 _____ C:\Users\opszczymur\Desktop\VALORANT.lnk
2022-05-19 20:38 - 2022-05-19 20:38 - 000000000 ____D C:\Program Files\Riot Vanguard
2022-05-16 16:30 - 2022-05-23 20:39 - 000000000 ____D C:\Users\opszczymur\Desktop\1938953822
2022-05-16 16:17 - 2022-05-16 16:17 - 000000000 ____D C:\Users\opszczymur\AppData\LocalLow\DefaultCompany
2022-05-16 16:10 - 2022-05-16 16:10 - 000000000 ____D C:\Users\opszczymur\Desktop\Wallaper Engine
2022-05-15 22:13 - 2022-05-15 22:13 - 000000000 ____D C:\Users\opszczymur\AppData\Local\GOG.com
2022-05-15 22:13 - 2022-05-15 22:13 - 000000000 ____D C:\Users\opszczymur\AppData\Local\CD Projekt Red
2022-05-15 22:12 - 2022-05-19 19:34 - 000000000 ____D C:\Users\opszczymur\AppData\Local\REDEngine
2022-05-13 14:20 - 2022-05-13 14:20 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-05-13 14:20 - 2022-05-13 14:20 - 000093696 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-05-13 14:20 - 2022-05-13 14:20 - 000011799 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-05-11 22:07 - 2022-05-11 22:07 - 000004528 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled assistant Autoupdate 1652299632
2022-05-09 19:30 - 2022-05-09 19:30 - 000000000 ____D C:\Users\opszczymur\Desktop\Postal 2 Complete
2022-05-09 18:51 - 2022-05-09 18:51 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\Blender Foundation
2022-05-09 18:51 - 2022-05-09 18:51 - 000000000 ____D C:\Users\opszczymur\.thumbnails
2022-05-09 00:07 - 2022-05-09 00:07 - 1139329289 _____ C:\WINDOWS\MEMORY.DMP
2022-05-09 00:07 - 2022-05-09 00:07 - 001852188 _____ C:\WINDOWS\Minidump\050922-9125-01.dmp
2022-05-09 00:07 - 2022-05-09 00:07 - 000000000 ____D C:\WINDOWS\Minidump
2022-05-08 21:37 - 2022-05-13 15:01 - 000000190 _____ C:\Users\opszczymur\Desktop\s.txt
2022-05-08 13:33 - 2022-05-23 17:15 - 000000000 ____D C:\ProgramData\FxSound
2022-05-08 13:29 - 2022-05-08 13:29 - 000000000 ____D C:\Users\opszczymur\AppData\Local\ToastNotificationManagerCompat
2022-05-08 13:29 - 2022-05-08 13:29 - 000000000 ____D C:\Users\opszczymur\AppData\Local\IsolatedStorage
2022-05-08 13:29 - 2022-05-08 13:29 - 000000000 ____D C:\Users\opszczymur\AppData\Local\Global-Delight
2022-05-08 13:29 - 2022-05-08 13:29 - 000000000 ____D C:\Users\opszczymur\AppData\Local\Boom 3D
2022-05-08 13:28 - 2022-05-08 13:28 - 000000000 ____D C:\Program Files\dotnet
2022-05-08 13:21 - 2022-05-23 17:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\FxSound
2022-05-08 13:21 - 2022-05-23 16:47 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\FxSound
2022-05-08 13:20 - 2022-05-08 13:20 - 000000000 ____D C:\Users\opszczymur\AppData\Local\AdvinstAnalytics
==================== Jeden miesiąc (zmodyfikowane) ==================
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2022-06-05 17:23 - 2022-04-23 22:23 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\discord
2022-06-05 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-06-05 16:54 - 2022-04-23 23:25 - 002001330 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-06-05 16:54 - 2019-12-07 17:08 - 000855774 _____ C:\WINDOWS\system32\perfh015.dat
2022-06-05 16:54 - 2019-12-07 17:08 - 000181784 _____ C:\WINDOWS\system32\perfc015.dat
2022-06-05 16:54 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-06-05 16:51 - 2022-04-24 15:26 - 000000000 ____D C:\Users\opszczymur\AppData\Local\Battle.net
2022-06-05 16:50 - 2022-04-23 22:23 - 000000000 ____D C:\Users\opszczymur\AppData\Local\Discord
2022-06-05 16:49 - 2022-04-23 23:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-06-05 16:49 - 2022-04-23 23:16 - 000008192 ___SH C:\DumpStack.log.tmp
2022-06-05 16:49 - 2022-04-23 22:08 - 000000000 ____D C:\ProgramData\NVIDIA
2022-06-05 16:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-06-05 16:49 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-06-05 16:38 - 2022-04-23 22:28 - 000000000 ____D C:\Users\opszczymur\AppData\Local\D3DSCache
2022-06-05 16:34 - 2022-04-23 23:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-06-05 14:35 - 2022-04-23 23:18 - 000000000 ____D C:\Users\opszczymur
2022-06-05 11:18 - 2022-04-25 17:51 - 000000000 ____D C:\Users\opszczymur\AppData\Local\CrashDumps
2022-06-04 23:39 - 2022-04-23 23:17 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-06-04 23:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-06-04 23:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-06-04 14:16 - 2022-04-24 00:20 - 000000000 ____D C:\ProgramData\Riot Games
2022-06-04 13:05 - 2022-04-25 16:08 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-06-04 13:05 - 2022-04-24 13:03 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\Origin
2022-06-04 13:05 - 2022-04-24 13:03 - 000000000 ____D C:\Users\opszczymur\AppData\Local\Origin
2022-06-04 13:05 - 2022-04-24 13:03 - 000000000 ____D C:\ProgramData\Origin
2022-06-02 13:21 - 2022-04-24 00:34 - 000000000 ____D C:\Users\opszczymur\Desktop\programy
2022-06-01 16:43 - 2022-04-24 11:28 - 000239560 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2022-05-31 21:34 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2022-05-31 21:31 - 2022-04-24 15:25 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-05-31 21:30 - 2022-04-30 14:24 - 000000000 ____D C:\Users\opszczymur\AppData\Roaming\BitTorrent
2022-05-31 21:13 - 2022-04-30 14:25 - 000000000 ____D C:\Users\opszczymur\AppData\Local\BitTorrentHelper
2022-05-31 17:57 - 2022-04-25 16:36 - 000000000 ____D C:\Users\opszczymur\AppData\LocalLow\Mozilla
2022-05-31 13:17 - 2022-04-23 23:21 - 000004300 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1650744388
2022-05-31 13:17 - 2022-04-23 22:06 - 000001517 _____ C:\Users\opszczymur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera GX.lnk
2022-05-29 13:37 - 2022-04-28 18:35 - 000000000 ____D C:\Users\opszczymur\AppData\Local\ElevatedDiagnostics
2022-05-28 11:55 - 2022-04-23 23:21 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2997884109-2120536598-977742993-1001
2022-05-28 11:55 - 2022-04-23 23:21 - 000003388 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2997884109-2120536598-977742993-1001
2022-05-28 11:55 - 2022-04-23 23:18 - 000002438 _____ C:\Users\opszczymur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-05-27 00:44 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-05-25 12:06 - 2022-04-24 00:30 - 000000000 ____D C:\ProgramData\SteelSeries
2022-05-23 17:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Registration
2022-05-19 21:12 - 2022-04-24 11:28 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-05-19 21:12 - 2022-04-23 23:24 - 000001146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-05-19 21:08 - 2022-04-25 18:04 - 000000000 ____D C:\Users\opszczymur\AppData\Local\UnrealEngine
2022-05-19 21:08 - 2022-04-25 17:50 - 000001771 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer.Radio.lnk
2022-05-19 21:08 - 2022-04-25 17:50 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer.lnk
2022-05-19 21:08 - 2022-04-24 00:20 - 000000000 ____D C:\Users\opszczymur\AppData\Local\Riot Games
2022-05-19 20:48 - 2022-04-24 00:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2022-05-19 20:38 - 2022-04-24 00:21 - 000000000 ____D C:\Riot Games
2022-05-19 20:13 - 2022-04-24 00:50 - 000000000 ____D C:\Users\opszczymur\.VirtualBox
2022-05-19 20:07 - 2022-04-24 00:50 - 000000000 ____D C:\ProgramData\VirtualBox
2022-05-14 09:48 - 2022-04-23 23:16 - 000258584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-05-14 09:48 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-05-14 09:48 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-05-14 09:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-05-14 09:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-05-14 09:48 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-05-14 09:48 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-05-13 14:22 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-05-13 14:20 - 2022-04-23 22:49 - 000415512 __RSH C:\bootmgr
2022-05-13 14:15 - 2022-04-23 22:10 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-05-13 14:14 - 2022-04-23 22:10 - 145501456 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-05-11 14:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-05-11 13:23 - 2022-04-25 16:36 - 000001060 _____ C:\Users\opszczymur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2022-05-11 09:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-05-10 15:33 - 2022-04-23 23:27 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-05-10 15:33 - 2022-04-23 23:27 - 000003472 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d85757fdc0e90c
2022-05-08 13:28 - 2022-04-23 23:30 - 000000000 ____D C:\ProgramData\Package Cache
==================== SigCheck ============================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
==================== Koniec FRST.txt ========================