FRST_24-12-2021 14.57.13.txt

Problem/wirus - Brak samoaktualizacji przez normalne połączenie a przez VPN aktu

Jak w temacie. Od wczoraj mam problem z internetem lub PC, mianowicie podczas uruchamiania się PC wyświetlają się aplikację, które sprawdzają ich aktualność i w każdej z aplikacji nie mam możliwości połączenia aplikacji z internetem. Przeglądarka działa bez problemów, wyniki speedtest w normie. Świetnym przykładem jest steam. Gdy loguję się do steam przez normalny internet piszę mi info, że nie mam połączenia z internetem, robiąc aktualizacje systemu windows to samo, gdy tylko połączę się przez VPN wszystko działa. Przywracania systemu też nie jestem w stanie zrobić i już mi się pomysły skończyły co mogę tu zdziałać. Nie należe do zaawansowanych programistów, więc proszę o wyrozumiałość i przepraszam za chaos w tekście.


Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 11-12-2021
Uruchomiony przez r0man (administrator) DESKTOP-OB74I8Q (Gigabyte Technology Co., Ltd. Z490 GAMING X) (24-12-2021 14:55:19)
Uruchomiony z C:\Users\r0man\AppData\Local\Temp\scoped_dir10644_71041301
Załadowane profile: r0man
Platform: Microsoft Windows 10 Home Wersja 21H1 19043.1415 (X64) Język: Polski (Polska)
Domyślna przeglądarka: Opera
Tryb startu: Normal

==================== Procesy (filtrowane) =================

(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)

(Adobe Inc. - & gt; Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Intel Corporation - & gt; Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group - & gt; Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(Intel(R) Rapid Storage Technology - & gt; Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_5c2831a2e251017a\RstMwService.exe
(Lavasoft Software Canada Inc. - & gt; ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Lavasoft Software Canada Inc. - & gt; ) C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\dllhost.exe & lt; 2 & gt;
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows Publisher - & gt; Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher - & gt; Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher - & gt; Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD. - & gt; ) D:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(Network & Speed Limited - & gt; Network Tunnel X64 Helper) C:\Program Files (x86)\Hide ALL IP\networktunnelx64helper.exe
(Network & Speed Limited - & gt; The Privoxy team - www.privoxy.org) C:\Program Files (x86)\Hide ALL IP\hai_privoxy.exe
(Network & Speed Limited - & gt; www.hideallip.com) C:\Program Files (x86)\Hide ALL IP\HideAllIP.exe
(Network & Speed Limited - & gt; www.hideallip.com) C:\Program Files (x86)\Hide ALL IP\LauncherService.exe
(Nvidia Corporation - & gt; Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe & lt; 3 & gt;
(Nvidia Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe & lt; 3 & gt;
(Nvidia Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation - & gt; NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_0bc9105c62ca22fb\Display.NvContainer\NVDisplay.Container.exe & lt; 2 & gt;
(Opera Software AS - & gt; Opera Software) C:\Users\r0man\AppData\Local\Programs\Opera\82.0.4227.33\opera_crashreporter.exe
(Opera Software AS - & gt; Opera Software) C:\Users\r0man\AppData\Local\Programs\Opera\opera.exe & lt; 55 & gt;
(Oracle America, Inc. - & gt; Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd - & gt; Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. - & gt; Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe & lt; 2 & gt;
(SteelSeries ApS - & gt; SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesEngine.exe
(SteelSeries ApS - & gt; SteelSeries ApS) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(TeamViewer Germany GmbH - & gt; TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Valve Corp. - & gt; Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(Valve Corp. - & gt; Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe & lt; 4 & gt;
(Valve Corp. - & gt; Valve Corporation) D:\Program Files (x86)\Steam\steam.exe

==================== Rejestr (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [RtkAudUService] = & gt; C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1220312 2021-02-17] (Realtek Semiconductor Corp. - & gt; Realtek Semiconductor)
HKLM\...\Run: [SteelSeriesGG] = & gt; C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [14824272 2021-12-15] (SteelSeries ApS - & gt; SteelSeries ApS)
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. - & gt; Oracle Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] = & gt; C:\Users\r0man\AppData\Local\Microsoft\Teams\Update.exe [2459344 2021-12-02] (Microsoft 3rd Party Application Component - & gt; Microsoft Corporation)
HKU\S-1-5-21-1175861438-2418436887-239340888-1001\...\Run: [r0man] = & gt; cmd.exe /c start www.exinariuminix.info
HKU\S-1-5-21-1175861438-2418436887-239340888-1001\...\Run: [Steam] = & gt; D:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. - & gt; Valve Corporation)
HKU\S-1-5-21-1175861438-2418436887-239340888-1001\...\Run: [CCleaner Smart Cleaning] = & gt; C:\Program Files\CCleaner\CCleaner64.exe [35342976 2021-11-12] (Piriform Software Ltd - & gt; Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-19] (Google LLC - & gt; Google LLC)
Startup: C:\Users\r0man\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RUNDLL32.EXE.lnk [2021-12-05] & lt; ==== UWAGA
ShortcutAndArgument: RUNDLL32.EXE.lnk - & gt; C:\Windows\System32\rundll32.exe = & gt; C:\Users\r0man\AppData\Local\Temp\QILSKB~1.DLL,YyBDOQ==
GroupPolicy: Ograniczenia - Chrome & lt; ==== UWAGA
Policies: C:\ProgramData\NTUSER.pol: Ograniczenia & lt; ==== UWAGA
HKLM\SOFTWARE\Policies\Google: Ograniczenia & lt; ==== UWAGA

==================== Zaplanowane zadania (filtrowane) ============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {026A46AE-3610-444B-9693-D1650959561C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 = & gt; C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5260720 2021-11-20] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {17B95080-F10C-430F-8E47-0D41E5955EB7} - System32\Tasks\Adobe Acrobat Update Task = & gt; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. - & gt; Adobe Inc.)
Task: {1E8559A1-CABD-4ADE-8CA7-4DBB975EB187} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {23BA3D51-9E4C-4E08-89C7-2C03DC8A74AD} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {40DEA6C6-988D-4581-8443-74A7F3578723} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance = & gt; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {4A4DB979-7116-449E-ADAC-FC93C097BE1D} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1175861438-2418436887-239340888-500 = & gt; C:\Users\r0man\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (Brak pliku)
Task: {6D862B84-2571-451C-A5DB-4BC0801CE659} - System32\Tasks\Intel PTT EK Recertification = & gt; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation - & gt; Intel(R) Corporation)
Task: {7010D0D3-D945-42ED-A826-16FFB4654AAD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan = & gt; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {74DBC673-0BA0-4AE4-9E4A-43D3E2637700} - System32\Tasks\CCleanerSkipUAC - r0man = & gt; C:\Program Files\CCleaner\CCleaner.exe [29417088 2021-11-12] (Piriform Software Ltd - & gt; Piriform Software Ltd)
Task: {78D3C386-1284-4423-9617-BF3C9F357080} - System32\Tasks\MSIAfterburner = & gt; D:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; )
Task: {79943716-DF94-41DD-B673-6FC648823FB2} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {87255B15-846C-4903-B9A9-7ADACF774BE1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor = & gt; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080840 2021-11-04] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {89086293-1F23-4A34-86E6-23BBB246660E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649216 2021-12-08] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {95088D94-3E52-457D-AB11-AC516AD68518} - System32\Tasks\Opera scheduled Autoupdate 1611918696 = & gt; C:\Users\r0man\AppData\Local\Programs\Opera\launcher.exe [2256592 2021-12-14] (Opera Software AS - & gt; Opera Software)
Task: {A5B5AC6B-260F-46F3-9673-804ABAC4265A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 = & gt; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23080840 2021-11-04] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {AA4F06AA-416F-4299-8B38-00D63573406F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 = & gt; C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5260720 2021-11-20] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {B1118C6D-E871-4AD9-8850-4A5A222A2330} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {C55AFC10-3FBD-4118-8DAA-B18BF0AA8639} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon = & gt; C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141136 2021-11-20] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {CAE7C3BC-5046-49BC-8BCC-F0629ED3EAC9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation - & gt; NVIDIA Corporation) - & gt; -d " C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck " -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {D1486AD6-0273-4F38-92F1-CD7A9BC91B92} - System32\Tasks\r0man = & gt; cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v r0man /t REG_SZ /d " cmd.exe /c start www.exinariuminix.info "
Task: {D408E95E-2A5C-4151-8D6A-EF6CF6037610} - System32\Tasks\Microsoft\Office\Office Feature Updates = & gt; C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141136 2021-11-20] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {E1FBBF6F-14AA-41CE-A9F3-32C4AA7DC07C} - System32\Tasks\CCleaner Update = & gt; C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-11-12] (Piriform Software Ltd - & gt; Piriform)
Task: {E2F326AA-ACAC-430F-9823-C845CDD60791} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-12-08] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {E6FE297E-F095-40D7-A630-52842819F99B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3341312 2021-12-09] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {F0B06D9B-3D6F-489D-8914-10C8F5ADB446} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification = & gt; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
Task: {F9212F98-ABD3-4A43-9E84-BE85CF600D8A} - System32\Tasks\Opera scheduled assistant Autoupdate 1611918698 = & gt; C:\Users\r0man\AppData\Local\Programs\Opera\launcher.exe [2256592 2021-12-14] (Opera Software AS - & gt; Opera Software) - & gt; --scheduledautoupdate --component-name=assistant --component-path= " C:\Users\r0man\AppData\Local\Programs\Opera\assistant " $(Arg0)
Task: {F926B7ED-1BD2-4A31-8EE2-3D2B23643A3C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} = & gt; C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-12-08] (Nvidia Corporation - & gt; NVIDIA Corporation)
Task: {F984B0A1-BB24-4536-89F7-795702D0F5F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup = & gt; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)


==================== Internet (filtrowane) ====================

(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)

ProxyEnable: [S-1-5-21-1175861438-2418436887-239340888-1001] = & gt; Proxy [funkcja włączona]
ProxyServer: [S-1-5-21-1175861438-2418436887-239340888-1001] = & gt; 127.0.0.1:21759
Winsock: Catalog5 06 C:\Windows\SysWOW64\networkdlllsp.dll [474688 2020-11-03] (Network & Speed Limited - & gt; Network Tunnel Lab)
Winsock: Catalog9 01 C:\Windows\SysWOW64\networkdlllsp.dll [474688 2020-11-03] (Network & Speed Limited - & gt; Network Tunnel Lab)
Winsock: Catalog9 02 C:\Windows\SysWOW64\networkdlllsp.dll [474688 2020-11-03] (Network & Speed Limited - & gt; Network Tunnel Lab)
Winsock: Catalog9 03 C:\Windows\SysWOW64\networkdlllsp.dll [474688 2020-11-03] (Network & Speed Limited - & gt; Network Tunnel Lab)
Winsock: Catalog9 04 C:\Windows\SysWOW64\networkdlllsp.dll [474688 2020-11-03] (Network & Speed Limited - & gt; Network Tunnel Lab)
Winsock: Catalog9 05 C:\Windows\SysWOW64\networkdlllsp.dll [474688 2020-11-03] (Network & Speed Limited - & gt; Network Tunnel Lab)
Winsock: Catalog9 06 C:\Windows\SysWOW64\networkdlllsp.dll [474688 2020-11-03] (Network & Speed Limited - & gt; Network Tunnel Lab)
Winsock: Catalog9 07 C:\Windows\SysWOW64\networkdlllsp.dll [474688 2020-11-03] (Network & Speed Limited - & gt; Network Tunnel Lab)
Winsock: Catalog9 08 C:\Windows\SysWOW64\networkdlllsp.dll [474688 2020-11-03] (Network & Speed Limited - & gt; Network Tunnel Lab)
Winsock: Catalog5-x64 06 C:\Windows\system32\networkdlllspx64.dll [1753664 2020-11-03] (Network & Speed Limited - & gt; )
Winsock: Catalog9-x64 01 C:\Windows\system32\networkdlllspx64.dll [1753664 2020-11-03] (Network & Speed Limited - & gt; )
Winsock: Catalog9-x64 02 C:\Windows\system32\networkdlllspx64.dll [1753664 2020-11-03] (Network & Speed Limited - & gt; )
Winsock: Catalog9-x64 03 C:\Windows\system32\networkdlllspx64.dll [1753664 2020-11-03] (Network & Speed Limited - & gt; )
Winsock: Catalog9-x64 04 C:\Windows\system32\networkdlllspx64.dll [1753664 2020-11-03] (Network & Speed Limited - & gt; )
Winsock: Catalog9-x64 05 C:\Windows\system32\networkdlllspx64.dll [1753664 2020-11-03] (Network & Speed Limited - & gt; )
Winsock: Catalog9-x64 06 C:\Windows\system32\networkdlllspx64.dll [1753664 2020-11-03] (Network & Speed Limited - & gt; )
Winsock: Catalog9-x64 07 C:\Windows\system32\networkdlllspx64.dll [1753664 2020-11-03] (Network & Speed Limited - & gt; )
Winsock: Catalog9-x64 08 C:\Windows\system32\networkdlllspx64.dll [1753664 2020-11-03] (Network & Speed Limited - & gt; )
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e085d3d7-9176-4d6d-8ed9-7b68455feca1}: [DhcpNameServer] 192.168.1.1
ManualProxies: 1127.0.0.1:21759

Edge:
=======
Edge Profile: C:\Users\r0man\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-24]
Edge Extension: (T-?ashback -- ??????-??????) - C:\Users\r0man\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odbmjgikedenicicookngdckhkjbebpd [2021-12-05]
Edge HKLM-x32\...\Edge\Extension: [odbmjgikedenicicookngdckhkjbebpd]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.281.2 - & gt; D:\Program Files (x86)\Java\bin\dtplugin\npDeployJava1.dll [2021-02-03] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 - & gt; D:\Program Files (x86)\Java\bin\plugin2\npjp2.dll [2021-02-03] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - & gt; C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-07-25] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - & gt; C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-07-25] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: Adobe Reader - & gt; C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. - & gt; Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default [2021-12-24]
CHR HomePage: Default - & gt; hxxps://find-it.pro/?utm_source=distr_m
CHR StartupUrls: Default - & gt; " hxxps://find-it.pro/?utm_source=distr_m "
CHR DefaultSearchURL: Default - & gt; hxxp://search-cdn.net/fip/?q={searchTerms}
CHR DefaultSearchKeyword: Default - & gt; cdn
CHR DefaultSuggestURL: Default - & gt; hxxps://www.google.ru/complete/search?client=chrome-omni & gs_ri=chrome-ext-ansg & q={searchTerms}
CHR Extension: (Prezentacje) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-29]
CHR Extension: (Dokumenty) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-29]
CHR Extension: (Dysk Google) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-29]
CHR Extension: (Touch VPN - Secure and unlimited VPN proxy) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\bihmplhobchoageeokmgbdihknkjbknd [2021-06-24]
CHR Extension: (YouTube) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-29]
CHR Extension: (Cookie Cleaner (Cookie Eraser)) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbmeppphogddecgcngpdiknecdacbkoa [2021-11-04]
CHR Extension: (Chrome Protect) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehildbclipkplmjfidlkkplaieiglaml [2021-12-04]
CHR Extension: (Arkusze) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-24]
CHR Extension: (Find-it.Pro Search) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\meejmcfbiapijdfaadackoblffmidlig [2021-12-04]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-06]
CHR Extension: (Gmail) - C:\Users\r0man\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-29]

Opera:
=======
OPR Profile: C:\Users\r0man\AppData\Roaming\Opera Software\Opera Stable [2021-12-24]
OPR Notifications: Opera Stable - & gt; hxxps://best-loan-info.com; hxxps://ccleaner-download.xyz; hxxps://dll-files-fixer.softonic.pl; hxxps://mail-notification.info; hxxps://mnthor.xyz; hxxps://pinghauz.xyz; hxxps://s-tracking.xyz; hxxps://supertopfreegames.com; hxxps://www.pobieralnia.pl; hxxps://zarabotok-online.xyz
OPR DefaultSuggestURL: Opera Stable - & gt; hxxps://www.google.com/complete/search?client=opera & q={searchTerms} & ie={inputEncoding} & oe={outputEncoding}
OPR Extension: (Cookie Cleaner (Cookie Eraser)) - C:\Users\r0man\AppData\Roaming\Opera Software\Opera Stable\Extensions\dedogejibcldnlhidaifpendclhofikg [2021-06-24]
OPR Extension: (Rich Hints Agent) - C:\Users\r0man\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-12-24]
OPR Extension: (Urban Free VPN proxy Unblocker - Best VPN) - C:\Users\r0man\AppData\Roaming\Opera Software\Opera Stable\Extensions\eppiocemhmnlbhjplcgkofciiegomcon [2021-12-15]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\r0man\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-09-01]
OPR Extension: (Whoer VPN) - C:\Users\r0man\AppData\Roaming\Opera Software\Opera Stable\Extensions\mbfhjdeplmglfmcclfdegompemcmpond [2021-06-24]

==================== Usługi (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. - & gt; Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8689056 2021-11-04] (Microsoft Corporation - & gt; Microsoft Corporation)
R2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2021-11-27] (Lavasoft Software Canada Inc. - & gt; )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5026616 2021-01-29] (AVB Disc Soft, SIA - & gt; Disc Soft Ltd)
S3 FACEITService; d:\Program Files\FACEIT AC\faceitservice.exe [19606416 2021-02-26] (FACE IT LIMITED - & gt; )
S3 GalaxyClientService; D:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1874272 2021-04-13] (GOG Sp. z o.o. - & gt; GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6840672 2021-04-13] (GOG Sp. z o.o. - & gt; GOG.com)
R2 HideIPLaucherService; C:\Program Files (x86)\Hide ALL IP\LauncherService.exe [510496 2019-04-13] (Network & Speed Limited - & gt; www.hideallip.com)
S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2021-10-09] () [Brak podpisu cyfrowego]
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\GG\SteelSeriesUpdateService.exe [31568 2021-12-15] (SteelSeries ApS - & gt; )
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [14657832 2021-07-28] (TeamViewer Germany GmbH - & gt; TeamViewer Germany GmbH)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [22960 2021-11-27] (Lavasoft Software Canada Inc. - & gt; )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-16] (Microsoft Windows Publisher - & gt; Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_0bc9105c62ca22fb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_0bc9105c62ca22fb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Sterowniki (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [367096 2021-11-27] (Bitdefender SRL - & gt; Bitdefender)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego]
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2021-01-29] (AVB Disc Soft, SIA - & gt; Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2021-01-29] (AVB Disc Soft, SIA - & gt; Disc Soft Ltd)
R0 FACEIT; C:\Windows\System32\Drivers\FACEIT.sys [10976696 2021-02-26] (FACE IT LIMITED - & gt; )
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher - & gt; NVIDIA Corporation)
R3 RTCore64; D:\Program Files (x86)\MSI Afterburner\RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. - & gt; )
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [48848 2020-12-21] (SteelSeries ApS - & gt; SteelSeries ApS)
R3 sshid; C:\Windows\system32\DRIVERS\sshid.sys [47760 2021-09-03] (SteelSeries ApS - & gt; SteelSeries ApS)
R3 SteelSeries_Sonar_VAD; C:\Windows\System32\DriverStore\FileRepository\steelseries.sonar.vad.inf_amd64_991d9c8eaf1c6f0e\SteelSeries.Sonar.VAD.sys [77200 2021-11-22] (SteelSeries ApS - & gt; Windows (R) Win 7 DDK provider)
S3 tapprotonvpn; C:\Windows\System32\drivers\tapprotonvpn.sys [49024 2020-12-30] (Microsoft Windows Hardware Compatibility Publisher - & gt; The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-12-16] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435432 2021-12-16] (Microsoft Windows - & gt; Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-16] (Microsoft Windows - & gt; Microsoft Corporation)
S3 MpKsl94d3d7e2; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D91DEF2-A41F-49EE-A3B7-1C02E47EFBE4}\MpKslDrv.sys [X]

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc (utworzone) (filtrowane) =========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2021-12-24 14:55 - 2021-12-24 14:55 - 000000000 ____D C:\FRST
2021-12-24 14:54 - 2021-12-24 14:54 - 002311168 _____ (Farbar) C:\Users\r0man\Desktop\FRST64.exe
2021-12-24 14:04 - 2021-12-24 14:04 - 000000000 ___HD C:\$WinREAgent
2021-12-24 14:00 - 2020-11-03 01:13 - 001753664 _____ C:\Windows\system32\networkdlllspx64.dll
2021-12-24 14:00 - 2020-11-03 01:13 - 000474688 _____ (Network Tunnel Lab) C:\Windows\SysWOW64\networkdlllsp.dll
2021-12-24 13:58 - 2021-12-24 14:00 - 000000000 ____D C:\Program Files (x86)\Hide ALL IP
2021-12-24 13:58 - 2021-12-24 13:58 - 000001109 _____ C:\Users\Public\Desktop\Hide ALL IP.lnk
2021-12-24 13:58 - 2021-12-24 13:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hide ALL IP
2021-12-24 13:57 - 2021-12-24 13:58 - 005673760 _____ (www.hideallip.com ) C:\Users\r0man\Desktop\hideallipsetup.exe
2021-12-24 13:41 - 2021-12-24 13:41 - 000000000 ___HD C:\$SysReset
2021-12-24 13:09 - 2021-12-24 14:04 - 089915392 _____ C:\Windows\system32\config\SOFTWARE
2021-12-24 13:08 - 2021-12-24 13:09 - 000000000 ____D C:\Windows\Microsoft Antimalware
2021-12-24 12:56 - 2021-12-24 12:56 - 001306376 _____ () C:\Users\r0man\Desktop\registry-repair-6628600417409153-AsystentPobierania_v4.092.29.16.16.exe
2021-12-24 00:52 - 2021-12-24 00:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2021-12-23 18:50 - 2021-12-23 18:54 - 000000000 ____D C:\Users\r0man\AppData\Local\File Viewer Plus 4
2021-12-23 18:50 - 2021-12-23 18:50 - 000000000 ____D C:\Users\Public\File Viewer Plus
2021-12-20 22:27 - 2021-12-15 21:58 - 001450200 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-12-20 22:27 - 2021-12-15 21:58 - 001450200 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-12-20 22:27 - 2021-12-15 21:57 - 001874648 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-12-20 22:27 - 2021-12-15 21:57 - 001874648 _____ C:\Windows\system32\vulkaninfo.exe
2021-12-20 22:27 - 2021-12-15 21:57 - 001466024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-12-20 22:27 - 2021-12-15 21:57 - 001209312 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-12-20 22:27 - 2021-12-15 21:57 - 001112336 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-12-20 22:27 - 2021-12-15 21:57 - 001112336 _____ C:\Windows\system32\vulkan-1.dll
2021-12-20 22:27 - 2021-12-15 21:57 - 000966416 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-12-20 22:27 - 2021-12-15 21:57 - 000966416 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-12-20 22:27 - 2021-12-15 21:54 - 001524392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-12-20 22:27 - 2021-12-15 21:54 - 000802216 _____ C:\Windows\system32\nvofapi64.dll
2021-12-20 22:27 - 2021-12-15 21:54 - 000679384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-12-20 22:27 - 2021-12-15 21:54 - 000658344 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-12-20 22:27 - 2021-12-15 21:54 - 000636840 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-12-20 22:27 - 2021-12-15 21:54 - 000565416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-12-20 22:27 - 2021-12-15 21:53 - 002116520 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-12-20 22:27 - 2021-12-15 21:53 - 001597552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-12-20 22:27 - 2021-12-15 21:53 - 001175512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-12-20 22:27 - 2021-12-15 21:53 - 000982952 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-12-20 22:27 - 2021-12-15 21:53 - 000794024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-12-20 22:27 - 2021-12-15 21:53 - 000708776 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-12-20 22:27 - 2021-12-15 21:52 - 008725160 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-12-20 22:27 - 2021-12-15 21:52 - 007843968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-12-20 22:27 - 2021-12-15 21:52 - 005732320 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2021-12-20 22:27 - 2021-12-15 21:52 - 004938880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-12-20 22:27 - 2021-12-15 21:52 - 002852280 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-12-20 22:27 - 2021-12-15 21:52 - 000452224 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-12-20 22:27 - 2021-12-15 21:51 - 000851936 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-12-20 22:27 - 2021-12-15 13:16 - 000085698 _____ C:\Windows\system32\nvinfo.pb
2021-12-17 09:11 - 2021-12-17 09:11 - 000000000 ____D C:\Windows\SystemTemp
2021-12-17 06:29 - 2021-12-17 06:29 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe
2021-12-17 06:29 - 2021-12-17 06:29 - 000011979 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-12-17 06:28 - 2021-12-17 06:28 - 000272384 _____ C:\Windows\system32\TpmTool.exe
2021-12-17 06:28 - 2021-12-17 06:28 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-12-14 15:24 - 2021-12-14 15:24 - 000000000 _____ C:\Windows\zSpy.INI
2021-12-14 15:18 - 2021-12-14 15:18 - 000004096 _____ C:\Windows\d3dx.dat
2021-12-14 15:12 - 2011-11-12 12:31 - 000045056 _____ C:\Users\r0man\Downloads\4gb_patch.exe
2021-12-14 15:07 - 2021-12-14 15:07 - 000000000 ____D C:\Users\r0man\AppData\Roaming\KmCrashHandler
2021-12-11 21:01 - 2021-12-11 21:03 - 000000000 ____D C:\Users\r0man\AppData\LocalLow\uTorrent
2021-12-07 18:07 - 2021-12-07 18:07 - 000000036 _____ C:\Users\r0man\AppData\LocalLow\.bidstack-device-id
2021-12-07 16:01 - 2021-12-07 16:01 - 000000000 ____D C:\Users\r0man\Documents\Sports Interactive
2021-12-07 16:01 - 2021-12-07 16:01 - 000000000 ____D C:\Users\r0man\AppData\Local\Sports Interactive
2021-12-07 16:01 - 2021-12-07 16:01 - 000000000 ____D C:\Users\Public\Documents\Sports Interactive
2021-12-07 16:00 - 2021-12-07 16:00 - 000000000 ____D C:\Users\Public\Documents\Steam
2021-12-06 16:16 - 2021-12-06 16:16 - 000244310 _____ C:\Users\r0man\Documents\cc_20211206_161627.reg
2021-12-06 16:13 - 2021-12-24 14:07 - 000000000 ____D C:\Program Files\CCleaner
2021-12-06 16:13 - 2021-12-06 16:13 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-12-06 16:13 - 2021-12-06 16:13 - 000002904 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - r0man
2021-12-06 16:13 - 2021-12-06 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-12-06 15:57 - 2021-12-06 15:57 - 000026952 _____ (Wiper Software) C:\Windows\system32\wiperrm.exe
2021-12-06 15:57 - 2021-12-06 15:57 - 000000000 ____D C:\Users\r0man\AppData\Roaming\WiperSoft
2021-12-06 15:57 - 2021-12-06 15:57 - 000000000 ____D C:\Users\r0man\AppData\Roaming\Microsoft\Windows\Start Menu\WiperSoft
2021-12-05 23:26 - 2021-12-23 20:09 - 000000000 ____D C:\Users\r0man\AppData\Roaming\tor
2021-12-05 18:16 - 2021-12-06 16:14 - 000000000 ____D C:\Windows\Minidump
2021-12-05 14:14 - 2021-12-05 14:14 - 000000000 ____D C:\Users\r0man\AppData\Local\UnrealEngine
2021-12-05 14:14 - 2021-12-05 14:14 - 000000000 ____D C:\Users\r0man\AppData\Local\Blairwitch
2021-12-04 21:32 - 2021-12-23 22:18 - 000000004 _____ C:\ProgramData\rc.dat
2021-12-04 21:31 - 2021-12-23 22:18 - 000000004 _____ C:\ProgramData\lock.dat
2021-12-04 21:31 - 2021-12-23 22:02 - 000000268 _____ C:\ProgramData\lir.bats
2021-12-04 21:31 - 2021-12-04 21:31 - 000000008 _____ C:\ProgramData\ts.dat
2021-12-04 21:22 - 2021-12-23 22:18 - 000000000 ____D C:\ProgramData\MemoryOptimizer
2021-12-04 21:11 - 2021-12-05 04:10 - 012365368 _____ C:\ProgramData\Hzxrf.tmp
2021-12-04 21:07 - 2021-12-04 21:07 - 000000000 ____D C:\Users\r0man\AppData\Roaming\NCH Software
2021-12-04 21:07 - 2021-12-04 21:07 - 000000000 ____D C:\Users\r0man\AppData\Roaming\muffed
2021-12-04 21:07 - 2021-12-04 21:07 - 000000000 ____D C:\ProgramData\Posse
2021-12-04 21:07 - 2021-12-04 21:07 - 000000000 ____D C:\ProgramData\Garbage Cleaner
2021-12-04 21:07 - 2021-12-04 21:07 - 000000000 ____D C:\Program Files (x86)\foler
2021-12-04 21:06 - 2021-12-23 22:18 - 000000000 ____D C:\Program Files (x86)\MachinerData
2021-12-04 21:06 - 2021-12-23 22:18 - 000000000 ____D C:\Program Files (x86)\Dhlade Disk Password Protection 5
2021-12-04 21:06 - 2021-12-04 21:08 - 000000266 __RSH C:\ProgramData\ntuser.pol
2021-12-04 21:06 - 2021-12-04 21:06 - 000066299 _____ C:\Users\r0man\Documents\blair_witch-hoodlum.torrent
2021-12-04 21:06 - 2019-12-24 21:16 - 004136792 ___RH (KirySoft ) C:\Users\r0man\Desktop\__x15nyzrp.ao0.exe
2021-12-01 22:48 - 2021-11-26 20:16 - 000038016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2021-11-27 06:25 - 2021-11-27 06:25 - 000367096 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys

==================== Jeden miesiąc (zmodyfikowane) ==================

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2021-12-24 14:11 - 2021-01-27 22:33 - 001678234 _____ C:\Windows\system32\PerfStringBackup.INI
2021-12-24 14:11 - 2019-12-07 16:08 - 000747542 _____ C:\Windows\system32\perfh015.dat
2021-12-24 14:11 - 2019-12-07 16:08 - 000144288 _____ C:\Windows\system32\perfc015.dat
2021-12-24 14:11 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-12-24 14:05 - 2021-08-20 19:20 - 000000000 ____D C:\Program Files\TeamViewer
2021-12-24 14:05 - 2021-01-29 12:06 - 000003840 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2021-12-24 14:05 - 2021-01-29 11:59 - 000000000 ____D C:\ProgramData\NVIDIA
2021-12-24 14:05 - 2020-09-27 08:55 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-24 14:05 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-12-24 14:05 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-24 14:04 - 2021-01-30 17:19 - 000003142 _____ C:\Windows\system32\Tasks\MSIAfterburner
2021-12-24 14:04 - 2020-09-27 08:52 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-12-24 14:04 - 2020-09-27 06:52 - 000008192 ___SH C:\DumpStack.log.tmp
2021-12-24 14:04 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-12-24 14:04 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-12-24 13:59 - 2021-01-29 12:30 - 000000000 ___RD C:\Users\r0man\Desktop\Programy
2021-12-24 13:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\registration
2021-12-24 13:30 - 2021-01-29 12:46 - 000000000 ____D C:\Users\r0man\AppData\Local\CrashDumps
2021-12-24 13:25 - 2020-09-27 06:52 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-12-24 13:03 - 2021-01-29 11:55 - 000000000 ____D C:\Users\r0man\AppData\Local\Packages
2021-12-23 21:37 - 2021-01-29 11:53 - 000000000 ____D C:\Users\r0man
2021-12-23 18:08 - 2021-06-17 17:56 - 000000000 ____D C:\Users\r0man\AppData\LocalLow\Mozilla
2021-12-23 17:42 - 2021-01-29 12:11 - 000004248 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1611918696
2021-12-23 17:42 - 2021-01-29 12:11 - 000001412 _____ C:\Users\r0man\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Przeglądarka Opera.lnk
2021-12-20 22:31 - 2021-01-29 12:32 - 000000000 ____D C:\Users\r0man\AppData\Local\NVIDIA
2021-12-20 22:25 - 2021-01-29 12:32 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 22:25 - 2021-01-29 12:32 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 22:25 - 2021-01-29 12:32 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 22:25 - 2021-01-29 12:32 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 22:25 - 2021-01-29 12:32 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 22:25 - 2021-01-29 12:32 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 22:25 - 2021-01-29 12:32 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 22:25 - 2021-01-29 12:32 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 22:25 - 2021-01-29 12:32 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-12-20 22:25 - 2021-01-29 12:32 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-12-20 22:25 - 2021-01-29 12:32 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-12-20 22:25 - 2021-01-27 21:25 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-12-17 14:35 - 2020-09-27 06:52 - 000299832 _____ C:\Windows\system32\FNTCACHE.DAT
2021-12-17 09:11 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-12-17 09:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-12-17 09:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2021-12-17 09:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-12-17 09:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2021-12-17 09:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2021-12-17 09:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2021-12-17 09:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-12-17 09:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-12-17 09:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-12-17 06:25 - 2021-01-29 12:31 - 000000000 ____D C:\ProgramData\SteelSeries
2021-12-16 16:49 - 2021-02-28 19:21 - 000000000 ____D C:\Users\r0man\AppData\Roaming\discord
2021-12-16 16:48 - 2021-02-28 19:21 - 000000000 ____D C:\Users\r0man\AppData\Local\Discord
2021-12-16 15:14 - 2020-09-27 08:52 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-12-16 06:37 - 2021-02-01 14:27 - 000000000 ____D C:\Windows\system32\MRT
2021-12-16 06:35 - 2021-02-01 14:27 - 137938848 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-12-15 21:50 - 2021-01-29 12:35 - 006438112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-12-15 21:50 - 2021-01-27 21:06 - 007586784 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2021-12-12 21:42 - 2021-01-29 12:08 - 000000000 ____D C:\Users\r0man\AppData\Local\D3DSCache
2021-12-11 21:01 - 2021-01-29 12:52 - 000000000 ____D C:\Users\r0man\AppData\Local\BitTorrentHelper
2021-12-09 15:26 - 2021-04-03 19:48 - 000000000 ____D C:\Users\r0man\AppData\Local\ElevatedDiagnostics
2021-12-09 00:52 - 2020-09-27 08:54 - 000003510 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-09 00:52 - 2020-09-27 08:54 - 000003386 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-08 14:47 - 2021-11-13 18:54 - 000000000 ____D C:\Users\r0man\AppData\Local\visualboyadvance-m
2021-12-08 14:44 - 2021-01-29 12:30 - 000000000 ___RD C:\Users\r0man\Desktop\Gry
2021-12-08 08:19 - 2021-01-29 12:32 - 002851840 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2021-12-08 08:19 - 2021-01-29 12:32 - 002197504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2021-12-08 08:19 - 2021-01-29 12:32 - 001294024 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2021-12-06 16:14 - 2021-08-20 19:20 - 000000000 ____D C:\Users\r0man\AppData\Roaming\TeamViewer
2021-12-06 16:14 - 2021-01-27 21:08 - 000000000 ____D C:\Windows\Panther
2021-12-05 14:09 - 2021-01-29 11:55 - 000000000 ____D C:\Users\r0man\AppData\Local\VirtualStore
2021-12-04 21:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\GroupPolicy
2021-12-04 20:30 - 2021-01-27 22:26 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-26 20:16 - 2021-01-29 12:38 - 000125568 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys

==================== Pliki w katalogu głównym wybranych folderów ========

2021-12-04 21:31 - 2021-12-23 22:18 - 000000004 _____ () C:\ProgramData\lock.dat
2021-12-04 21:32 - 2021-12-23 22:18 - 000000004 _____ () C:\ProgramData\rc.dat
2021-12-04 21:31 - 2021-12-04 21:31 - 000000008 _____ () C:\ProgramData\ts.dat

==================== SigCheck ============================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

==================== Koniec FRST.txt ========================


Pobierz plik - link do postu