Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 19.06.2024 Uruchomiony przez Józef (administrator) JEDENDOLAR (Micro-Star International Co., Ltd MS-7B86) (20-06-2024 07:05:32) Uruchomiony z C:\Users\Józef\Desktop\frst\FRST64 (1).exe Załadowane profile: Józef Platforma: Microsoft Windows 11 Pro Wersja 23H2 22631.3737 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\Tablet\Wacom\WacomHost.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> ) C:\Program Files\Tablet\Wacom\Wacom_UpdateUtil.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (C:\Program Files\Tablet\Wacom\WTabletServicePro.exe ->) (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atieclxx.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Elements 2023 Organizer\Adobe Elements 2023 Update Service.exe (services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe (services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\atiesrxx.exe (services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe (services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> ) C:\Program Files (x86)\EaseUS\ENS\ensserver.exe (services.exe ->) (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_defcd1ccab02e3ec\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe (services.exe ->) (Wacom Co., Ltd. -> Wacom Co. Ltd.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21962.0_x64__8wekyb3d8bbwe\HxTsr.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.13200.20.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269328 2019-01-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [AdobePSE21AutoAnalyzer] => C:\Program Files\Adobe\Elements 2023 Organizer\Elements Auto Creations 2023.exe [3069456 2023-03-29] (Adobe Inc. -> Adobe Systems Incorporated) HKLM\...\Run: [] => [X] HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-06-16] (Adobe Inc. -> Adobe Inc.) HKLM-x32\...\Run: [] => [X] HKU\S-1-5-21-982215139-1930475818-4253747224-1001\...\Run: [ALLUpdate] => C:\Program Files\ALLPlayer\ALLUpdate.exe [4189064 2022-07-13] (ALLPlayer Group sp. z o.o. -> ALLPlayer.org) HKU\S-1-5-21-982215139-1930475818-4253747224-1001\...\Run: [MicrosoftEdgeAutoLaunch_36A2CF334B13C8B423EE30FED4DE89A5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3883456 2024-06-15] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-982215139-1930475818-4253747224-1001\...\Run: [] => [X] HKU\S-1-5-21-982215139-1930475818-4253747224-1001\...\Run: [RapooOptions_750s] => [X] HKU\S-1-5-21-982215139-1930475818-4253747224-1001\...\Policies\Explorer: [] HKU\S-1-5-21-982215139-1930475818-4253747224-1001\...\MountPoints2: {07d3d832-64d8-11ed-88fa-ee0e12c2c589} - "G:\LaunchU3.exe" -a HKU\S-1-5-21-982215139-1930475818-4253747224-1001\...\MountPoints2: {3966a68f-68a6-11ed-890b-e695f09df888} - "G:\Setup.exe" HKU\S-1-5-21-982215139-1930475818-4253747224-1001\...\MountPoints2: {50b29f38-7ed9-11ed-893f-df5f09bed5c5} - "J:\winhello.exe" HKU\S-1-5-21-982215139-1930475818-4253747224-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [5472312 2024-06-13] (Microsoft Windows -> Microsoft Corporation) <==== UWAGA HKU\S-1-5-21-982215139-1930475818-4253747224-500\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4899856 2024-06-19] (Microsoft Corporation -> Microsoft Corporation) HKLM\...\Windows x64\Print Processors\Canon iP7200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBA.DLL [30208 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2023-11-05] (Adobe Inc. -> Adobe Systems Inc) HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series: C:\Windows\system32\CNMLMBA.DLL [389120 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJ Language Monitor iP7200 series XPS: C:\Windows\system32\CNMXLMBA.DLL [392192 2012-04-16] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.) HKLM\...\Print\Monitors\Canon BJNP Port: C:\Windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [Brak podpisu cyfrowego] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\126.0.6478.114\Installer\chrmstp.exe [2024-06-20] (Google LLC -> Google LLC) GroupPolicy: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0EAB245E-4FAB-49F8-A882-9035801667B0} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [672064 2022-09-26] (Advanced Micro Devices Inc. -> ) Task: {3660B120-2E64-40FD-B8FF-F1D4A32A2E0B} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {FC22DC6E-1B02-4D3F-909E-38FF0B4BFE89} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {3D3A897D-7650-4E24-9751-0E2CC95B368B} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [183224 2022-11-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {B300A809-6B3A-4573-8445-FB63113FE64D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5472312 2024-06-13] (Microsoft Windows -> Microsoft Corporation) Task: {8499997A-04E9-4C33-AF0E-F9D3AD53F6ED} - System32\Tasks\e-pity2022_kwiecien => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [35328 2023-02-24] (e-file sp. z o.o. sp. k.) [Brak podpisu cyfrowego] Task: {05342047-479A-4ABF-8F2B-E0C1B6B1D459} - System32\Tasks\e-pity2022_styczen => C:\Program Files (x86)\e-file\e-pity\Assets\signxml.exe [35328 2023-02-24] (e-file sp. z o.o. sp. k.) [Brak podpisu cyfrowego] Task: {99BFD4BE-3DF7-4FFD-A398-2EEF9DFA880A} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [29464 2023-02-01] (Garmin International, Inc. -> ) Task: {46D61DAA-D689-474E-BB35-2037F6FC3D09} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem128.0.6537.0{3801BD2C-7B76-4AD9-8DDD-63692EF6B22A} => C:\Program Files (x86)\Google\GoogleUpdater\128.0.6537.0\updater.exe [4623976 2024-06-13] (Google LLC -> Google LLC) Task: {53B1FC2C-CC34-44F2-B7C0-235978F3E829} - System32\Tasks\lib32 => C:\Users\Józef\AppData\Roaming\lib32.exe (Brak pliku) <==== UWAGA Task: {3ED0B356-D373-4DED-9240-12D7A3898903} - System32\Tasks\Microsoft\Windows\Application Experience\PcaWallpaperAppDetect => C:\Windows\system32\rundll32.exe [73728 2024-05-17] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaWallpaperAppDetect Task: {BB85F5C5-43A9-4160-8DAF-C507FB06DB46} - System32\Tasks\Microsoft\Windows\Bluetooth\CLEANTASK => C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [450560 2024-02-14] (Microsoft Windows -> Microsoft Corporation) -> -WindowStyle Hidden -ExecutionPolicy Bypass -File "C:\Users\JZEF~1\AppData\Local\Temp\5c99d897-8439-4419-8f9d-9e179926add7.ps1" <==== UWAGA Task: {CFA48694-942F-470F-88FE-356BF37F38C9} - System32\Tasks\Microsoft\Windows\EnvoySinks\Method => C:\Users\Józef\AppData\Roaming\EnvoySinks\Method.exe (Brak pliku) Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Brak pliku) Task: {3AEFA4AE-F90F-4BAE-B64D-C756881A8D9E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-05-27] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (dane wartości zawierają 6 znaków więcej). Task: {BC172ACC-094B-4078-8B7C-6D4DC42DB2B9} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-982215139-1930475818-4253747224-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673184 2024-05-27] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (dane wartości zawierają 6 znaków więcej). Task: {36521C2B-9650-46A5-AD79-95A46C8F796B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-05-27] (Mozilla Corporation -> Mozilla Foundation) Task: {015CAC24-F346-4A9E-909F-BC81E013611D} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) Task: {8292FD82-D66B-40AB-8782-A44E4091B445} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {7B9376A7-3426-4FA8-962F-EDDB059D9E77} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) Task: {902A20F0-6D17-43EC-9BA6-BC22687D04BA} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler Task: {24BA6144-C5FD-46B7-82F6-F2CBFC1256B0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1C463C74-19B1-4F0D-9DA1-B3ECF9A5F5D2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) Task: {D2AEF621-4BAA-4E22-A8EE-DE564F6AE679} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) Task: {11702280-F460-4E5E-A9FB-6D77ABAF1848} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6F76F687-739D-40CF-8D85-D88EE052259A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3A7D69FA-5EC4-4FFC-BFAA-1B9F7EE3A6ED} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-04-10] (NVIDIA Corporation -> NVIDIA Corporation) Task: {5445FB01-D684-4F1E-A461-812305995AE2} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209168 2024-06-19] (Microsoft Corporation -> Microsoft Corporation) Task: {25F902C6-F1D8-4C7D-AF7D-2685DFB19383} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-982215139-1930475818-4253747224-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209168 2024-06-19] (Microsoft Corporation -> Microsoft Corporation) Task: {E6B02651-C813-4E07-B555-53114C70372D} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-982215139-1930475818-4253747224-500 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209168 2024-06-19] (Microsoft Corporation -> Microsoft Corporation) Task: {FEC9B474-9E19-438D-8065-61D33DDE2FA1} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [109697976 2021-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) -> C:\Program Files (x86)\Samsung\Samsung Magician\\/AUTOHIDE (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{b07269a0-42e6-43c7-a59d-4a59c1e0312d}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{b07269a0-42e6-43c7-a59d-4a59c1e0312d}\D657C64796D656469616F51346F6C61627: [DhcpNameServer] 178.235.153.32 178.235.153.33 Tcpip\..\Interfaces\{b07269a0-42e6-43c7-a59d-4a59c1e0312d}\D657C64796D656469616F51346F6C61627: [DhcpDomain] mmp.pl HKLM\System\...\Parameters\PersistentRoutes: [169.254.0.0,255.255.0.0,192.168.0.18,1] Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Józef\AppData\Local\Microsoft\Edge\User Data\Default [2024-06-19] Edge Notifications: Default -> hxxps://meet.google.com; hxxps://www.instagram.com Edge StartupUrls: Default -> "hxxp://google.pl/" Edge Extension: (Dokumenty Google offline) - C:\Users\Józef\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-26] Edge Extension: (Edge relevant text changes) - C:\Users\Józef\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-28] Edge Extension: (uBlock Origin) - C:\Users\Józef\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2024-04-09] FireFox: ======== FF DefaultProfile: qdvxdh35.default FF ProfilePath: C:\Users\Józef\AppData\Roaming\Mozilla\Firefox\Profiles\qdvxdh35.default [2024-01-28] FF ProfilePath: C:\Users\Józef\AppData\Roaming\Mozilla\Firefox\Profiles\fzopq9un.default-release [2024-05-27] FF Extension: (FxIF) - C:\Users\Józef\AppData\Roaming\Mozilla\Firefox\Profiles\fzopq9un.default-release\Extensions\{6e0746af-fa34-4e33-a478-0a0a8785b8a1}.xpi [2024-05-27] FF Extension: (Free VPN Proxy) - C:\Users\Józef\AppData\Roaming\Mozilla\Firefox\Profiles\fzopq9un.default-release\Extensions\{94ed9bbf-a1e2-4e58-81ae-cd16dad818d8}.xpi [2024-05-27] FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @cuminas.jp/DjVuPlugin -> C:\Program Files\Cuminas\Document Express DjVu Plug-in\npdjvu.dll [2015-05-08] (Cuminas Corporation -> Cuminas Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: @cuminas.jp/DjVuPlugin -> C:\Program Files (x86)\Cuminas\Document Express DjVu Plug-in\npdjvu.dll [2015-05-08] (Cuminas Corporation -> Cuminas Corporation) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\Józef\AppData\Local\Google\Chrome\User Data\Default [2024-06-20] CHR Notifications: Default -> hxxps://www.instagram.com CHR HomePage: Default -> hxxp://www.google.com CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Józef\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-06-14] CHR Extension: (Dokumenty Google offline) - C:\Users\Józef\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-13] CHR Extension: (Kopiowanie i wklejanie w aplikacjach Office Online) - C:\Users\Józef\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2024-05-12] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Józef\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-11-14] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 Adobe Elements 2023 Update Service; C:\Program Files\Adobe\Elements 2023 Organizer\Adobe Elements 2023 Update Service.exe [374296 2023-03-29] (Adobe Inc. -> Adobe Systems Incorporated) S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-21] (Adobe Inc. -> Adobe Inc.) S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.03\atkexComSvc.exe [449336 2021-01-15] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [181576 2021-09-30] (ASUSTeK Computer Inc. -> ASUSTek COMPUTER INC.) S3 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [10659104 2023-10-04] (Autodesk, Inc. -> Autodesk, Inc.) R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [42896 2022-10-21] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) R2 EaseUS UPDATE SERVICE; C:\Program Files (x86)\EaseUS\ENS\ensserver.exe [26512 2022-10-08] (CHENGDU YIWO Tech Development Co., Ltd. -> ) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.108.0528.0005\FileSyncHelper.exe [3514384 2024-06-19] (Microsoft Corporation -> Microsoft Corporation) S3 MagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [347576 2021-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8895072 2024-06-19] (Malwarebytes Inc. -> Malwarebytes) S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-06-19] (Malwarebytes Inc. -> Malwarebytes) R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MpDefenderCoreService.exe [1505416 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispsi.inf_amd64_defcd1ccab02e3ec\Display.NvContainer\NVDisplay.Container.exe [1275544 2024-04-12] (NVIDIA Corporation -> NVIDIA Corporation) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.108.0528.0005\OneDriveUpdaterService.exe [3853744 2024-06-19] (Microsoft Corporation -> Microsoft Corporation) R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [347576 2021-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-05-17] (Microsoft Windows Publisher -> Microsoft Corporation) R3 VssEaseusProvider; C:\Windows\system32\dllhost.exe /Processid:{31332162-A66A-4A64-B4DE-CC958B229D54} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\NisSrv.exe [3236728 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24050.7-0\MsMpEng.exe [133704 2024-06-05] (Microsoft Windows Publisher -> Microsoft Corporation) S2 AdskNLM; "C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe" [X] S3 Futuremark SystemInfo Service; "C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe" [X] S2 NahimicService; "%SystemRoot%\system32\NahimicService.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [35360 2022-06-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [36928 2022-06-03] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc) R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [43336 2022-11-30] (Advanced Micro Devices INC. -> Advanced Micro Devices) R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_1a1a381a2c0e293c\amdsafd.sys [113056 2022-08-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices) S3 AmdTools64ICD; C:\Windows\System32\drivers\AmdTools64ICD.sys [63408 2020-05-27] (Microsoft Windows Hardware Compatibility Publisher -> ) S3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0390451.inf_amd64_39377efdd62734d1\B390182\amdkmdag.sys [94467928 2023-04-06] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) S3 ampa; C:\Windows\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> ) R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [43168 2021-09-30] (ASUSTeK Computer Inc. -> ) S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2022-09-25] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2022-09-25] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 ddmdrv; C:\Windows\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> ) S1 EneIo; C:\Windows\system32\drivers\ene.sys [17624 2019-05-22] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [158640 2024-06-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R0 EUBAKUP; C:\Windows\System32\drivers\eubakup.sys [74296 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [54328 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher -> ) R1 EUDSKACS; C:\Windows\system32\drivers\eudskacs.sys [24152 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) R1 EUFDDISK; C:\Windows\system32\drivers\EuFdDisk.sys [556112 2022-05-07] (Microsoft Windows Hardware Compatibility Publisher -> CHENGDU YIWO Tech Development Co., Ltd) S3 EyeOneDisplay; C:\Windows\System32\Drivers\i1display_x64.sys [7808 2007-03-28] (X-Rite Incorporated -> GretagMacbeth LLC) S3 GridinSoftInetSecurityDriver; C:\Windows\system32\DRIVERS\gsInetSecurity.sys [107784 2020-12-19] (GridinSoft, LLC -> GridinSoft LLC) S3 I2cHkBurn; C:\Windows\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.) R3 kmloop; C:\Windows\system32\DRIVERS\loop.sys [53248 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [221136 2024-06-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2024-06-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\Windows\system32\DRIVERS\farflt11.sys [234856 2024-06-20] (Malwarebytes Inc. -> Malwarebytes) R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [78400 2024-06-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239576 2024-06-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [188784 2024-06-20] (Malwarebytes Inc. -> Malwarebytes) R3 Nahimic_Mirroring; C:\Windows\System32\drivers\Nahimic_Mirroring.sys [86224 2022-08-19] (A-Volute SAS -> Windows (R) Win 7 DDK provider) R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation) R3 rpwkmdrvk; C:\Windows\system32\drivers\rpwkmdrvk.sys [49280 2020-03-23] (深圳雷柏科技股份有限公司 -> ) S3 rt68cx21; C:\Windows\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_9e728045ada0b3d5\rt68cx21x64.sys [652264 2022-06-20] (Realtek Semiconductor Corp. -> Realtek) S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek) S2 SSGDIO; C:\Windows\SysWOW64\DRIVERS\ssgdio64.sys [14608 2022-11-16] (ATI Technologies, Inc -> ATI Technologies Inc.) S3 TrojanKillerDriver; C:\Windows\System32\DRIVERS\gtkdrv.sys [38216 2020-12-19] (GridinSoft, LLC -> GridinSoft LLC) S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22080 2024-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [602520 2024-06-05] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105880 2024-06-05] (Microsoft Windows -> Microsoft Corporation) S3 wintun; C:\Windows\System32\drivers\wintun.sys [29592 2023-12-07] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-12-06] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC) S2 AMDRyzenMasterDriverV20; \??\C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys [X] S3 atillk64; \??\C:\Windows\Temp\Atiflash\atillk64.sys [X] <==== UWAGA S3 NDSPCIIO; \??\C:\Windows\system32\DRIVERS\NDSPCIIO64.SYS [X] S3 tapnordvpn; \SystemRoot\System32\drivers\tapnordvpn.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-06-20 07:04 - 2024-06-20 07:05 - 000000000 ____D C:\Users\Józef\Desktop\frst 2024-06-20 07:04 - 2024-06-20 07:04 - 000234856 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt11.sys 2024-06-20 07:04 - 2024-06-20 07:04 - 000188784 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2024-06-20 07:04 - 2024-06-20 07:04 - 000000000 ____D C:\Users\Józef\AppData\LocalLow\IGDump 2024-06-20 06:30 - 2024-06-20 06:30 - 008790880 _____ (Malwarebytes) C:\Users\Józef\Downloads\adwcleaner (1).exe 2024-06-19 17:46 - 2024-06-19 17:46 - 000798244 _____ C:\Windows\system32\perfh015.dat 2024-06-19 17:46 - 2024-06-19 17:46 - 000158294 _____ C:\Windows\system32\perfc015.dat 2024-06-19 15:23 - 2024-06-19 19:35 - 000000000 ____D C:\Users\Józef\AppData\Local\Malwarebytes 2024-06-19 15:23 - 2024-06-19 15:23 - 000002103 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2024-06-19 15:23 - 2024-06-19 15:23 - 000002091 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2024-06-19 15:22 - 2024-06-19 15:22 - 002591712 _____ (Malwarebytes) C:\Users\Józef\Downloads\MBSetup (2).exe 2024-06-19 15:22 - 2024-06-19 15:22 - 000000000 ____D C:\ProgramData\Malwarebytes 2024-06-19 15:22 - 2024-06-19 15:22 - 000000000 ____D C:\Program Files\Malwarebytes 2024-06-16 13:26 - 2024-06-16 13:26 - 000001074 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2024.lnk 2024-06-16 13:26 - 2024-06-16 13:26 - 000000000 ____D C:\Program Files (x86)\Adobe 2024-06-16 13:22 - 2024-06-16 13:22 - 000000000 ____D C:\Users\Józef\Downloads\Nowy folder (1) 2024-06-16 13:20 - 2024-06-16 13:20 - 489851703 _____ C:\Users\Józef\Downloads\Nowy folder (1).7z 2024-06-15 09:47 - 2024-06-15 09:47 - 000000917 _____ C:\Users\Józef\Desktop\qBittorrent.lnk 2024-06-15 09:41 - 2024-06-15 09:41 - 000011549 _____ C:\Users\Józef\Downloads\[rutracker.ru].t197678.torrent 2024-06-13 16:42 - 2024-06-13 16:42 - 000024821 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json 2024-06-13 16:42 - 2024-06-13 16:42 - 000024821 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json 2024-06-07 17:23 - 2024-06-07 17:23 - 000000000 ____D C:\Windows\system32\%userprofile% 2024-06-04 18:22 - 2024-06-04 18:22 - 000001095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk 2024-06-04 18:20 - 2024-06-15 09:44 - 000000000 ____D C:\Users\Józef\Downloads\Nowy 2024-06-04 18:19 - 2024-06-04 18:19 - 1769945062 _____ C:\Users\Józef\Downloads\Nowy.zip 2024-06-04 16:57 - 2024-03-26 21:11 - 000059928 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2024-06-04 16:57 - 2024-03-26 19:21 - 000060240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys 2024-05-27 18:10 - 2024-05-27 18:10 - 000000000 _____ C:\Users\Józef\Downloads\YWqM1gjc 2024-05-23 14:51 - 2024-05-23 14:51 - 000000000 ____D C:\Users\Józef\Downloads\Nowy folder 2024-05-23 14:50 - 2024-05-23 14:50 - 678554732 _____ C:\Users\Józef\Downloads\Nowy folder.7z ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2024-06-20 07:05 - 2023-11-14 07:53 - 000000000 ____D C:\FRST 2024-06-20 07:05 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\registration 2024-06-20 07:04 - 2023-12-28 16:16 - 000000000 ____D C:\Users\Józef\AppData\Roaming\WTablet 2024-06-20 07:04 - 2022-11-14 17:25 - 000000000 ____D C:\ProgramData\NVIDIA 2024-06-20 07:04 - 2022-11-14 16:13 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2024-06-20 07:04 - 2022-11-14 16:13 - 000000000 ____D C:\Windows\system32\SleepStudy 2024-06-20 07:04 - 2022-11-14 16:11 - 000012288 ___SH C:\DumpStack.log.tmp 2024-06-20 07:04 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp 2024-06-20 07:04 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ServiceState 2024-06-20 07:04 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2024-06-20 06:32 - 2022-05-07 07:17 - 000786432 _____ C:\Windows\system32\config\BBI 2024-06-20 06:31 - 2022-11-14 16:38 - 000002263 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2024-06-19 17:46 - 2022-11-14 16:19 - 001797776 _____ C:\Windows\system32\PerfStringBackup.INI 2024-06-19 17:46 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF 2024-06-19 17:04 - 2022-11-14 16:25 - 000000000 ____D C:\Users\Józef\AppData\Local\D3DSCache 2024-06-19 16:47 - 2022-11-15 15:28 - 000001496 _____ C:\Users\Józef\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs 2024-06-19 16:47 - 2022-11-15 14:38 - 000000000 ____D C:\Users\Józef\Desktop\instagram 2024-06-19 15:31 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2024-06-19 15:31 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness 2024-06-19 15:30 - 2022-11-14 16:13 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2024-06-19 15:27 - 2024-01-27 19:47 - 000000000 ____D C:\Users\Józef\Downloads\SketchUp Pro 2023 23.1.340 RePack by KpoJIuK 2024-06-19 15:23 - 2022-05-07 07:24 - 000000000 ___HD C:\Windows\ELAMBKUP 2024-06-19 15:21 - 2022-11-14 17:50 - 000000000 ____D C:\Users\Józef\AppData\Local\CrashDumps 2024-06-19 15:20 - 2022-11-27 13:44 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2024-06-19 14:45 - 2022-11-27 13:44 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2024-06-19 14:45 - 2022-11-27 13:44 - 000002186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2024-06-19 14:45 - 2022-11-16 17:47 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-982215139-1930475818-4253747224-500 2024-06-19 14:45 - 2022-11-14 16:48 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-982215139-1930475818-4253747224-1001 2024-06-16 13:26 - 2022-11-14 17:34 - 000000000 ____D C:\ProgramData\Adobe 2024-06-16 13:26 - 2022-11-14 17:34 - 000000000 ____D C:\Program Files\Common Files\Adobe 2024-06-16 13:26 - 2022-11-14 17:34 - 000000000 ____D C:\Program Files\Adobe 2024-06-15 09:47 - 2023-11-21 19:50 - 000000000 ____D C:\Users\Józef\AppData\Roaming\qBittorrent 2024-06-13 17:47 - 2023-10-11 17:33 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView 2024-06-13 17:47 - 2022-11-14 16:11 - 000870736 _____ C:\Windows\system32\FNTCACHE.DAT 2024-06-13 17:47 - 2022-05-07 12:41 - 000000000 ____D C:\Windows\InboxApps 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ___SD C:\Windows\system32\UNP 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\PrintDialog 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\UUS 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\setup 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\Dism 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinMetadata 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\ShellExperiences 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\setup 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\PerceptionSimulation 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\migwiz 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Dism 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\appraiser 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\PolicyDefinitions 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\BrowserCore 2024-06-13 17:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr 2024-06-13 17:47 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\servicing 2024-06-13 16:56 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate 2024-06-13 16:46 - 2022-11-14 17:48 - 000000000 ____D C:\Windows\system32\MRT 2024-06-13 16:44 - 2022-11-14 17:48 - 199048176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2024-06-13 16:44 - 2022-05-07 12:41 - 000036864 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll 2024-06-13 16:44 - 2022-05-07 12:41 - 000024383 _____ C:\Windows\system32\OEMDefaultAssociations.xml 2024-06-13 16:44 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp 2024-06-13 16:42 - 2022-11-14 16:17 - 003216384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2024-06-07 17:24 - 2022-11-14 16:13 - 000003566 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2024-06-07 17:24 - 2022-11-14 16:13 - 000003442 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2024-06-07 17:23 - 2022-11-27 13:44 - 000000000 ___RD C:\Users\Default\OneDrive 2024-06-05 13:11 - 2022-11-14 16:13 - 000000000 ____D C:\Windows\system32\Drivers\wd 2024-06-04 16:58 - 2023-07-25 16:54 - 000001453 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2024-06-04 16:58 - 2023-07-25 16:51 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-06-04 16:58 - 2023-07-25 16:51 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-06-04 16:58 - 2023-07-25 16:51 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-06-04 16:58 - 2023-07-25 16:51 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-06-04 16:58 - 2023-07-25 16:51 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-06-04 16:58 - 2023-07-25 16:51 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-06-04 16:58 - 2023-07-25 16:51 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-06-04 16:58 - 2022-11-14 17:25 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2024-06-04 16:58 - 2022-11-14 16:42 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2024-06-04 16:58 - 2022-11-14 16:42 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2024-06-04 16:57 - 2023-07-25 16:51 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-06-04 16:57 - 2023-07-25 16:51 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2024-06-02 17:12 - 2022-11-14 16:25 - 000000000 ____D C:\Users\Józef\AppData\Local\Packages 2024-06-02 17:12 - 2022-11-14 16:15 - 000000000 ____D C:\ProgramData\Packages 2024-05-28 19:23 - 2023-10-22 18:21 - 000000000 ____D C:\Users\Józef\Documents\DxO PhotoLab 7 logs 2024-05-28 16:23 - 2024-01-06 21:34 - 000000000 ____D C:\Program Files\Mozilla Firefox 2024-05-28 16:23 - 2024-01-06 21:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2024-05-27 18:13 - 2024-01-06 21:34 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2024-05-27 18:10 - 2024-01-06 21:34 - 000001015 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2024-05-23 15:00 - 2022-11-14 16:25 - 000000000 ____D C:\Users\Józef\AppData\Roaming\Adobe ==================== Pliki w katalogu głównym wybranych folderów ======== 2022-11-15 15:28 - 2024-06-19 16:47 - 000001496 _____ () C:\Users\Józef\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs 2023-10-29 13:55 - 2023-11-13 14:38 - 000007685 _____ () C:\Users\Józef\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================