Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 24-02-2021 Uruchomiony przez endri (administrator) LAPTOP-A0T0NOL2 (LENOVO 80VR) (27-02-2021 22:50:02) Uruchomiony z C:\Users\endri\Downloads Załadowane profile: endri Platform: Windows 10 Home Wersja 20H2 19042.804 (X64) Język: Polski (Polska) Domyślna przeglądarka: Edge Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterUpdateAgent.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\NisSrv.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4> (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [NerveCenterTray] => C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterTray.exe [245088 2017-04-28] (LENOVO -> Lenovo(beijing) Limited) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [APP] => C:\Program Files\Dolby\Dolby DAX3\APP\DAX3TrayIcon.exe [963376 2016-10-27] (Dolby Laboratories, Inc. -> ) HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [601784 2020-05-13] (Razer USA Ltd. -> Razer Inc.) HKU\S-1-5-21-4095845365-3530508356-3032322834-1001\...\Run: [com.blitz.app] => C:\Users\endri\AppData\Local\Blitz\Update.exe [1842592 2019-01-26] (Swift Media Entertainment, Inc. -> GitHub) HKU\S-1-5-21-4095845365-3530508356-3032322834-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-05] (Valve -> Valve Corporation) HKU\S-1-5-21-4095845365-3530508356-3032322834-1001\...\Run: [ProductAuthenticationService] => C:\Users\endri\AppData\Roaming\ProductAuthenticationService\pas.exe [1003024 2019-11-15] (DVJ LIMITED -> DVJ LIMITED) HKU\S-1-5-21-4095845365-3530508356-3032322834-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3144744 2021-02-17] (Electronic Arts, Inc. -> Electronic Arts) HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {080C274D-3BFF-40E9-BA1E-0F7B09726843} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {13E49E22-633C-4FFA-8438-B746C87BCF17} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {1F03E6CA-E541-4FFF-948C-6AB5BD5B5BF3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [694752 2021-02-23] (Mozilla Corporation -> Mozilla Foundation) Task: {2F1D89C4-A282-4607-B64A-3B33863A065A} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [222944 2016-08-15] (Intel(R) Client Connectivity Division SW -> Intel Corporation) Task: {2F292635-257F-4E4B-95E1-2E86FAD07520} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [543536 2016-10-14] (Intel(R) Trust Services -> Intel(R) Corporation) Task: {32978D03-9FD5-4BE6-B160-4BE3EB58CE40} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {42F475B4-C830-4DD1-83D1-A8F404AC0798} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService Task: {43BF8986-A64C-4A0D-A559-1B4AB87AF497} - System32\Tasks\ITE HID monitor => C:\Program Files\HIDKB\IHC.EXE [3820480 2016-12-31] (ITE Tech. Inc. -> ITE Tech. Inc) Task: {44969B67-90A3-4A13-B643-BE755449566C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {4DA4E971-7B80-44B7-ABDC-A9EB847397F2} - System32\Tasks\Opera GX scheduled Autoupdate 1613589449 => C:\Users\endri\AppData\Local\Programs\Opera GX\launcher.exe [1720472 2021-02-16] (Opera Software AS -> Opera Software) Task: {61DF152E-26E6-4944-BC6A-2928BA98723A} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [143888 2021-02-04] (Lenovo -> Lenovo Group Ltd.) Task: {63A69B9E-B736-47C1-B32B-72CD839BD758} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [222944 2016-08-15] (Intel(R) Client Connectivity Division SW -> Intel Corporation) Task: {65F261F6-75C1-4B13-8A66-7CC3D98AA677} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {701B7862-C975-4429-ABA0-2095E4BEC4D5} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32 Task: {7A12EE61-CB99-4F7F-BF3C-E6CF8606F0C7} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1791712 2021-02-23] (Avast Software s.r.o. -> Avast Software) Task: {827F3046-7DF7-4971-9358-AA89F058EF39} - System32\Tasks\NerveCenterUpdate => C:\Program Files\Lenovo\Nerve Center\bin\x64\LenovoNerveCenterUpdateAgent.exe [744800 2017-04-28] (LENOVO -> Lenovo(beijing) Limited) Task: {9FDD938F-EC3B-4707-966F-C277DE008F79} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService Task: {AAAFC42E-2855-42A5-AD96-D6AAF6CB480B} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\tbtsvc.exe [2015968 2016-08-15] (Intel(R) Client Connectivity Division SW -> Intel Corporation) Task: {AD39D418-485F-445C-8E86-DD505890450B} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService Task: {ADA31E3C-0F65-467A-B560-C1834128A36C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {ADDAE522-761C-4F5B-A81D-78ADE8FC8882} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B8D2F14B-7E64-46E2-826E-4E5ACE7F3BB8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6d64025c-1ef1-4526-a76b-740534b5e354 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.) Task: {BFF9961E-3C36-4092-9380-7D73D89DFF38} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {C330222A-E136-4BDA-8943-504B7E7ED446} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\56068248-a1d2-4c9e-b763-20c35f0ce2b2 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.) Task: {C398801A-B42C-4629-A782-15453104AFB9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CA3AB24E-121A-4936-9D44-B7BA0EC00B00} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D1292281-54B9-4A5F-8D65-8C27EB9D1080} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4d367d1f-f409-4965-a718-4969e9e29b7f => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.) Task: {D21279CC-BD43-4B43-92F6-73127E5C559B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D36F9DFA-89E0-49CF-A57D-414C518A89DC} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D80FA1EC-FD9B-4186-98D6-7A575282EDF3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D9EC3299-32A0-45D0-8FC4-06F7852BF2EC} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b202a8e7-46bc-49b5-a94e-f9708fd11656 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.) Task: {DB58DDF9-4FDF-494D-850C-A57E2C4A3E7F} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [61872 2021-01-11] (Lenovo -> Lenovo Group Ltd.) Task: {EAA9F639-2381-4669-B3EA-5A241A943A5D} - System32\Tasks\TinyTakeUpgrade => C:\Users\endri\AppData\Local\MangoApps\TinyTake\TinyTake.exe Task: {F2594DA8-C0FA-4AD4-BCAE-287D604A86A9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {FF4A1A47-63E0-410C-A1B6-E4FD70E187A9} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\ScheduleEventAction.exe [15768 2020-12-28] (Lenovo -> Lenovo Group Ltd.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{e1da4c92-36cc-4035-be37-393a98e6b75f}: [DhcpNameServer] 192.168.49.1 Tcpip\..\Interfaces\{e40cfd20-d4e6-43ae-90bd-0c29d27bbb73}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{f7d6116c-4f83-4c31-8014-3949e6f3a253}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\endri\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-27] FireFox: ======== FF DefaultProfile: imkhkxeb.default-1571080758082 FF ProfilePath: C:\Users\endri\AppData\Roaming\Mozilla\Firefox\Profiles\imkhkxeb.default-1571080758082 [2021-02-27] FF Session Restore: Mozilla\Firefox\Profiles\imkhkxeb.default-1571080758082 -> [funkcja włączona] FF Notifications: Mozilla\Firefox\Profiles\imkhkxeb.default-1571080758082 -> hxxps://kwejk.pl FF Extension: (AdBlock — najlepszy bloker reklam) - C:\Users\endri\AppData\Roaming\Mozilla\Firefox\Profiles\imkhkxeb.default-1571080758082\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2021-02-25] FF Extension: (First Mountain Snow by M♥Donna) - C:\Users\endri\AppData\Roaming\Mozilla\Firefox\Profiles\imkhkxeb.default-1571080758082\Extensions\{58ed0b89-8436-4436-be1c-0f56273f1adf}.xpi [2020-01-14] FF Extension: (NoScript) - C:\Users\endri\AppData\Roaming\Mozilla\Firefox\Profiles\imkhkxeb.default-1571080758082\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2021-02-23] Opera: ======= StartMenuInternet: (HKU\S-1-5-21-4095845365-3530508356-3032322834-1001) Opera GXStable - "C:\Users\endri\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S2 Dolby DAX API Service; C:\Program Files\Dolby\Dolby DAX3\API\DAX3API.exe [212784 2017-09-19] (Dolby Laboratories, Inc. -> ) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-02-28] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA) S3 GameRecorderSVC; C:\Program Files\Lenovo\Nerve Center\bin\x86\GameRecorderSVC.exe [392032 2017-04-28] (LENOVO -> Lenovo(beijing) Limited) S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2410672 2017-11-27] (Intel(R) Rapid Storage Technology -> Intel Corporation) S2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.) S2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\LenovoVantageService.exe [20880 2020-12-28] (Lenovo -> Lenovo Group Ltd.) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2533952 2021-02-17] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3479624 2021-02-17] (Electronic Arts, Inc. -> Electronic Arts) S2 PluginLoaderSvc; C:\Program Files\Lenovo\Nerve Center\bin\x64\PluginLoaderSvc.exe [966496 2017-04-28] (LENOVO -> Lenovo(beijing) Limited) S2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [447080 2019-07-24] (Razer USA Ltd. -> Razer Inc.) S2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943240 2019-07-24] (Razer USA Ltd. -> Razer Inc.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-12] (Microsoft Windows Publisher -> Microsoft Corporation) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 FBNetFilter; C:\Windows\system32\Drivers\FBNetFlt.sys [46576 2017-04-28] (Lenovo (Beijing) Co., Ltd. -> Lenovo(beijing) Limited) R3 ITEHIDfilter; C:\WINDOWS\System32\drivers\ITEHIDfilter.sys [28104 2017-10-30] (ITE Tech. Inc. -> ITE Tech. Inc.) R3 MpKsle25e45b0; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A6115936-2468-458A-8160-BDAF14C004CD}\MpKslDrv.sys [47344 2021-02-27] (Microsoft Windows -> Microsoft Corporation) R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2018-12-07] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.) S3 rzbtendpt; C:\WINDOWS\System32\drivers\rzbtendpt.sys [52240 2016-10-30] (Razer USA Ltd. -> Razer Inc) S3 rzdaendpt; C:\WINDOWS\System32\drivers\rzdaendpt.sys [42000 2016-10-30] (Razer USA Ltd. -> Razer Inc) R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [52240 2016-10-30] (Razer USA Ltd. -> Razer Inc) S3 rzhnet; C:\WINDOWS\System32\Drivers\rzhnet.sys [29712 2016-10-30] (Razer USA Ltd. -> Razer Inc) S3 rzjstk; C:\WINDOWS\System32\drivers\rzjstk.sys [36376 2016-10-30] (Razer USA Ltd. -> Razer Inc) S3 rzkeypadendpt; C:\WINDOWS\System32\drivers\rzkeypadendpt.sys [45592 2016-10-30] (Razer USA Ltd. -> Razer Inc) S3 rzmpos; C:\WINDOWS\System32\drivers\rzmpos.sys [48144 2016-10-30] (Razer USA Ltd. -> Razer Inc) S3 rzp1endpt; C:\WINDOWS\System32\drivers\rzp1endpt.sys [52240 2016-10-30] (Razer USA Ltd. -> Razer Inc) S3 rzvkeyboard; C:\WINDOWS\System32\drivers\rzvkeyboard.sys [44048 2016-10-30] (Razer USA Ltd. -> Razer Inc) S3 rzvmouse; C:\WINDOWS\System32\drivers\rzvmouse.sys [44048 2016-10-30] (Razer USA Ltd. -> Razer Inc) S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49552 2021-02-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [419040 2021-02-12] (Microsoft Windows -> Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-12] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-02-27 22:50 - 2021-02-27 22:50 - 000019776 _____ C:\Users\endri\Downloads\FRST.txt 2021-02-27 22:49 - 2021-02-27 22:49 - 000002129 _____ C:\Users\endri\Desktop\AdwCleaner[C00].txt 2021-02-27 22:46 - 2021-02-27 22:48 - 000000000 ____D C:\AdwCleaner 2021-02-27 22:46 - 2021-02-27 22:46 - 008463216 _____ (Malwarebytes) C:\Users\endri\Downloads\adwcleaner_8.1.exe 2021-02-27 12:45 - 2021-02-27 12:45 - 000040596 _____ C:\Users\endri\Downloads\Addition.txt 2021-02-27 12:43 - 2021-02-27 12:43 - 000046964 _____ C:\Users\endri\Desktop\FRST.txt 2021-02-27 12:43 - 2021-02-27 12:43 - 000040596 _____ C:\Users\endri\Desktop\Addition.txt 2021-02-27 12:43 - 2021-02-27 12:43 - 000039763 _____ C:\Users\endri\Desktop\Shortcut.txt 2021-02-27 12:26 - 2021-02-27 22:50 - 000000000 ____D C:\FRST 2021-02-27 12:26 - 2021-02-27 12:26 - 002301440 _____ (Farbar) C:\Users\endri\Downloads\FRST64.exe 2021-02-25 21:23 - 2021-02-24 13:53 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2021-02-25 21:23 - 2021-02-24 13:53 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo.exe 2021-02-25 21:23 - 2021-02-24 13:53 - 001452336 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2021-02-25 21:23 - 2021-02-24 13:53 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2021-02-25 21:23 - 2021-02-24 13:53 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2021-02-25 21:23 - 2021-02-24 13:53 - 001191728 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2021-02-25 21:23 - 2021-02-24 13:53 - 001094888 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2021-02-25 21:23 - 2021-02-24 13:53 - 001094888 _____ C:\WINDOWS\system32\vulkan-1.dll 2021-02-25 21:23 - 2021-02-24 13:53 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2021-02-25 21:23 - 2021-02-24 13:53 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2021-02-25 21:23 - 2021-02-24 13:51 - 000678704 _____ C:\WINDOWS\system32\nvofapi64.dll 2021-02-25 21:23 - 2021-02-24 13:51 - 000546096 _____ C:\WINDOWS\SysWOW64\nvofapi.dll 2021-02-25 21:23 - 2021-02-24 13:50 - 002102576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2021-02-25 21:23 - 2021-02-24 13:50 - 001587504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2021-02-25 21:23 - 2021-02-24 13:50 - 001511192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2021-02-25 21:23 - 2021-02-24 13:50 - 001163544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2021-02-25 21:23 - 2021-02-24 13:50 - 000811824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2021-02-25 21:23 - 2021-02-24 13:50 - 000671512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2021-02-25 21:23 - 2021-02-24 13:50 - 000655664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2021-02-25 21:23 - 2021-02-24 13:50 - 000556816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2021-02-25 21:23 - 2021-02-24 13:49 - 008260880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2021-02-25 21:23 - 2021-02-24 13:49 - 007391512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2021-02-25 21:23 - 2021-02-24 13:49 - 004610320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2021-02-25 21:23 - 2021-02-24 13:49 - 002729776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2021-02-25 21:23 - 2021-02-24 13:49 - 001730864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6446172.dll 2021-02-25 21:23 - 2021-02-24 13:49 - 001490200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6446172.dll 2021-02-25 21:23 - 2021-02-24 13:42 - 006072896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2021-02-25 00:25 - 2021-02-25 00:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla 2021-02-24 01:35 - 2021-02-24 01:35 - 000044062 _____ C:\Users\endri\Downloads\2021.jfif 2021-02-24 01:28 - 2021-02-24 01:28 - 006633592 _____ C:\Users\endri\Downloads\Nieuwsbrief+Kinderopvang+en+primair+onderwijs++tijdens+lockdown+januari+2021.pdf 2021-02-24 00:49 - 2021-02-24 00:49 - 000601699 _____ C:\Users\endri\Downloads\Infographic-Stroomschema-Testen.pdf 2021-02-24 00:23 - 2021-02-24 00:23 - 001146168 _____ C:\Users\endri\Downloads\stijlgids-mobiele-apps-rws-v1.1.pdf 2021-02-24 00:01 - 2021-02-24 00:01 - 000137173 _____ C:\Users\endri\Downloads\210108_StroomschTesten_23.pdf 2021-02-24 00:01 - 2021-02-24 00:01 - 000093739 _____ C:\Users\endri\Downloads\Negative+test+declaration+form.pdf 2021-02-23 15:50 - 2021-02-25 21:18 - 000000000 ____D C:\Program Files\Mozilla Firefox 2021-02-17 20:17 - 2021-02-17 20:17 - 000004260 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1613589449 2021-02-17 20:17 - 2021-02-17 20:17 - 000001449 _____ C:\Users\endri\Desktop\Przeglądarka Opera GX.lnk 2021-02-17 20:17 - 2021-02-17 20:17 - 000001439 _____ C:\Users\endri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera GX.lnk 2021-02-17 20:17 - 2021-02-17 20:17 - 000000000 ____D C:\Users\endri\AppData\Roaming\Opera Software 2021-02-17 20:17 - 2021-02-17 20:17 - 000000000 ____D C:\Users\endri\AppData\Local\Opera Software 2021-02-17 20:16 - 2021-02-17 20:16 - 003750040 _____ (Opera Software) C:\Users\endri\Downloads\OperaGXSetup.exe 2021-02-17 19:59 - 2021-02-17 19:59 - 000001276 _____ C:\WINDOWS\system32\Drivers\mozart_1233815309430_fw_dump.cmm 2021-02-12 19:08 - 2021-02-12 19:08 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2021-02-12 19:08 - 2021-02-12 19:08 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2021-02-12 19:08 - 2021-02-12 19:08 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2021-02-12 19:08 - 2021-02-12 19:08 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim 2021-02-12 19:07 - 2021-02-12 19:07 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll 2021-02-12 19:02 - 2021-02-12 19:02 - 000003416 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6ef6a77144e9a 2021-02-07 15:14 - 2021-02-07 15:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2021-02-27 22:49 - 2019-01-11 21:11 - 000000000 ____D C:\ProgramData\NVIDIA 2021-02-27 22:45 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-02-27 22:28 - 2020-06-17 19:48 - 000000000 ____D C:\Users\endri\AppData\Roaming\GHISLER 2021-02-27 22:27 - 2019-08-18 19:07 - 000000000 ____D C:\Program Files (x86)\Steam 2021-02-27 22:25 - 2019-12-14 19:22 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy 2021-02-27 22:25 - 2019-12-14 19:21 - 000000000 ____D C:\ProgramData\GOG.com 2021-02-27 22:25 - 2019-01-16 01:34 - 000000000 ____D C:\Users\endri\AppData\Local\Google 2021-02-27 22:25 - 2019-01-16 01:34 - 000000000 ____D C:\Program Files (x86)\Google 2021-02-27 21:57 - 2019-01-11 13:24 - 000000000 ____D C:\ProgramData\Riot Games 2021-02-27 20:12 - 2021-01-20 21:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2021-02-27 16:11 - 2019-01-30 21:34 - 000000000 ____D C:\ProgramData\Mozilla 2021-02-27 16:11 - 2019-01-11 13:03 - 000000000 ____D C:\Users\endri\AppData\LocalLow\Mozilla 2021-02-27 12:29 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2021-02-27 12:22 - 2019-05-03 16:08 - 000000000 ____D C:\ProgramData\Origin 2021-02-27 11:22 - 2021-01-20 21:28 - 001767980 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2021-02-27 11:22 - 2019-12-07 16:08 - 000785414 _____ C:\WINDOWS\system32\perfh015.dat 2021-02-27 11:22 - 2019-12-07 16:08 - 000152274 _____ C:\WINDOWS\system32\perfc015.dat 2021-02-27 11:15 - 2021-01-20 21:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2021-02-27 11:15 - 2021-01-20 21:20 - 000008192 ___SH C:\DumpStack.log.tmp 2021-02-27 11:15 - 2019-12-17 21:17 - 000000000 ____D C:\Users\endri\AppData\Local\Origin 2021-02-27 11:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2021-02-27 11:15 - 2019-01-11 12:30 - 000000000 __SHD C:\Users\endri\IntelGraphicsProfiles 2021-02-27 11:14 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2021-02-27 06:35 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2021-02-27 06:32 - 2021-01-20 21:26 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4095845365-3530508356-3032322834-1001 2021-02-27 06:32 - 2021-01-20 21:22 - 000002418 _____ C:\Users\endri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2021-02-27 06:32 - 2019-01-11 12:32 - 000000000 ___RD C:\Users\endri\OneDrive 2021-02-27 06:30 - 2020-06-22 21:44 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-02-27 06:30 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-02-27 06:30 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2021-02-25 21:20 - 2021-01-20 21:26 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-25 21:20 - 2021-01-20 21:26 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-25 21:20 - 2021-01-20 21:26 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-25 21:20 - 2021-01-20 21:26 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-25 21:20 - 2021-01-20 21:26 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-25 21:20 - 2021-01-20 21:26 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-25 21:20 - 2021-01-20 21:26 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-25 21:20 - 2021-01-20 21:26 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-25 21:20 - 2021-01-20 21:26 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-25 21:20 - 2021-01-20 21:26 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2021-02-25 21:20 - 2019-01-11 21:11 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2021-02-25 21:20 - 2019-01-11 21:11 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2021-02-25 21:20 - 2017-06-29 17:24 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2021-02-25 21:18 - 2019-10-14 20:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2021-02-25 00:25 - 2019-10-14 20:18 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2021-02-24 13:42 - 2021-01-10 11:46 - 007117744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2021-02-24 02:51 - 2021-01-10 11:46 - 000061257 _____ C:\WINDOWS\system32\nvinfo.pb 2021-02-23 23:42 - 2020-04-24 20:03 - 000000000 ____D C:\Users\endri\AppData\Local\PlaceholderTileLogoFolder 2021-02-23 22:53 - 2019-01-11 21:11 - 005627248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2021-02-23 22:53 - 2019-01-11 21:11 - 002635632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2021-02-23 22:53 - 2019-01-11 21:11 - 001758064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2021-02-23 22:53 - 2019-01-11 21:11 - 000990064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2021-02-23 22:53 - 2019-01-11 21:11 - 000120176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2021-02-23 22:53 - 2019-01-11 21:11 - 000082288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2021-02-22 13:42 - 2020-09-30 18:58 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-02-22 13:39 - 2019-05-26 16:14 - 000000000 ____D C:\Users\endri\AppData\Local\Battle.net 2021-02-20 20:46 - 2019-05-26 16:10 - 000000000 ____D C:\Program Files (x86)\Battle.net 2021-02-17 19:24 - 2019-05-26 16:22 - 000000000 ____D C:\Program Files (x86)\StarCraft II 2021-02-17 18:59 - 2019-08-17 17:00 - 000000000 ____D C:\Program Files (x86)\Origin 2021-02-16 19:52 - 2019-12-17 21:17 - 000000000 ____D C:\Users\endri\AppData\Roaming\Origin 2021-02-13 19:30 - 2021-01-20 20:24 - 000000000 ___DC C:\WINDOWS\Panther 2021-02-12 19:44 - 2021-01-20 21:20 - 000268360 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2021-02-12 19:44 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2021-02-12 19:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords 2021-02-12 19:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2021-02-12 19:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2021-02-12 19:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords 2021-02-12 19:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2021-02-12 19:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2021-02-12 19:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2021-02-12 19:44 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2021-02-12 19:44 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2021-02-12 19:43 - 2021-01-20 21:22 - 000000000 ____D C:\Users\endri 2021-02-12 19:09 - 2019-01-11 21:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2021-02-12 19:02 - 2021-01-20 21:26 - 000003510 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-02-12 19:02 - 2019-01-11 15:01 - 000000000 ____D C:\WINDOWS\system32\MRT 2021-02-12 19:01 - 2019-01-11 15:01 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2021-02-07 17:29 - 2021-01-20 20:16 - 000001979 _____ C:\WINDOWS\system32\InstallUtil.InstallLog 2021-02-05 20:04 - 2020-09-30 18:58 - 000734016 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll 2021-02-05 20:03 - 2020-09-30 18:58 - 000470848 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll 2021-02-04 17:55 - 2019-01-11 12:30 - 000000000 ____D C:\Users\endri\AppData\Local\Packages 2021-02-02 23:30 - 2019-01-11 21:11 - 009491917 _____ C:\WINDOWS\system32\nvcoproc.bin ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-01-10 12:50 - 2021-01-10 13:00 - 000007603 _____ () C:\Users\endri\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================