Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 05-11-2023 02 Uruchomiony przez Druss (administrator) DRUSS-PC (MSI MS-7673) (18-11-2023 22:06:40) Uruchomiony z C:\Users\Druss\Desktop\New folder\FRST64.exe Załadowane profile: Druss Platforma: Microsoft Windows 10 Pro Wersja 22H2 19045.3693 (X64) Język: Angielski (Zjednoczone Królestwo) -> Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (C:\Program Files\Mozilla Firefox\firefox.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MbamBgNativeMsg.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Creative Technology Ltd) [Brak podpisu cyfrowego] C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe (explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe (explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (services.exe ->) (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2> (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2> (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSIRegister\MSIRegisterService.exe (services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [THXCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64 [26624 2011-05-13] (Creative Technology Ltd.) [Brak podpisu cyfrowego] HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\SSMMgr.exe [688128 2011-07-13] () [Brak podpisu cyfrowego] HKLM-x32\...\Run: [PNAgent] => C:\Program Files (x86)\PhatNoise Music Manager\PNAgent.exe [40960 2003-09-24] (PhatNoise, Inc) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation -> Renesas Electronics Corporation) HKLM-x32\...\Run: [ControlCenterCount] => C:\Program Files (x86)\MSI\ControlCenter\ControlCenterCount.exe [872448 2012-03-26] (MSI CO.,LTD.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1028280 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe [1517056 2011-08-29] (Creative Technology Ltd) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26327864 2021-04-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) HKLM-x32\...\Run: [MSIRegister] => C:\Program Files (x86)\MSI\MSIRegister\MSIRegister.exe [1266864 2019-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-21-2503187994-2676281761-2874965436-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [482168 2022-09-28] (AVB Disc Soft, SIA -> Disc Soft Ltd) HKU\S-1-5-21-2503187994-2676281761-2874965436-1000\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2590752 2023-11-13] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2503187994-2676281761-2874965436-1000\...\Run: [MicrosoftEdgeAutoLaunch_4983093CB0580587B0855B6622433E1D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3896768 2023-11-16] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-2503187994-2676281761-2874965436-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-2503187994-2676281761-2874965436-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize (Brak pliku) <==== UWAGA HKU\S-1-5-21-2503187994-2676281761-2874965436-1000\...\Run: [ALLUpdate] => "C:\Program Files\ALLPlayer\ALLUpdate.exe" "sleep" (Brak pliku) HKU\S-1-5-21-2503187994-2676281761-2874965436-1000\...\MountPoints2: {2c4e4755-12a6-11ea-a47d-6c626db4301d} - "F:\AutoRun.exe" HKLM\...\Windows x64\Print Processors\sso4mPC: C:\Windows\System32\spool\prtprocs\x64\sso4mpc.dll [33792 2009-10-28] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider) HKLM\...\Print\Monitors\sso4m Langmon: C:\Windows\system32\sso4ml6.dll [27648 2009-10-28] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\119.0.6045.160\Installer\chrmstp.exe [2023-11-17] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {07CE7139-DBA4-45CA-AA79-E86793307BAD} - \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB -> Brak pliku <==== UWAGA Task: {14DDDFB3-ED03-4097-BF4C-0458F518B90B} - \Microsoft\Windows\Setup\EOSNotify2 -> Brak pliku <==== UWAGA Task: {1DE43851-7D43-4785-B836-D018912736B5} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Brak pliku <==== UWAGA Task: {67A258E4-9E24-4FA6-B4D2-3513AACF5F19} - \Microsoft\Windows\Setup\EOSNotify -> Brak pliku <==== UWAGA Task: {52A8BCF0-7698-4F79-AB97-BBF9EBC4B23C} - System32\Tasks\{58860E2D-8293-4CAE-BE6F-E635E1E9558F} => C:\Windows\system32\pcalua.exe [53760 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> -a "C:\Users\Druss\Desktop\New folder\HyperX_NGENUITY_Installer_2.4.1.0.exe" -d "C:\Users\Druss\Desktop\New folder" Task: {2FE58F2B-BE27-4616-9588-1B7335914061} - System32\Tasks\{722968A2-BEBE-435C-9499-CDC6E910C456} => C:\WINDOWS\system32\pcalua.exe [53760 2023-11-17] (Microsoft Windows -> Microsoft Corporation) -> -a C:\Windows\unins000.exe Task: {67F396DB-B683-4891-A260-5AC2FC927577} - System32\Tasks\AdobeAAMUpdater-1.0-Druss-PC-Druss => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {C9EE9183-5369-44A4-9592-6BB5711D3D2B} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5340232 2023-11-17] (Microsoft Windows -> Microsoft Corporation) Task: {9C16F332-D7F7-4867-8C4C-25F89C2B26ED} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Druss\Desktop\esetonlinescanner.exe LOGON (Brak pliku) Task: {9CD30C65-36EE-475C-8BC7-0F54A0A26AC6} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Druss\Desktop\esetonlinescanner.exe SCHED (Brak pliku) Task: {42A5B1B1-DA07-4B75-A637-B9BE8CE18993} - System32\Tasks\GoogleUpdateTaskMachineCore{528DF8B1-8557-40F1-9A1E-DF73956555EB} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-09-15] (Google LLC -> Google LLC) Task: {7DF96ACA-21E5-4148-89B5-4577353B9AA4} - System32\Tasks\GoogleUpdateTaskMachineUA{0387BF1F-2C45-4C31-AEA3-BBD154B9A8DC} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-09-15] (Google LLC -> Google LLC) Task: {B16DBC13-7AD4-4E42-8CE9-29F1F121730B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {592B5977-A95C-4497-B440-37D54B82C920} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {699AB50B-28DC-41DD-9EFB-6E3702C348A3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Task: {825B6C58-7109-4E1E-840F-FB61A87339BD} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [278016 2023-11-17] (Microsoft Windows -> Microsoft Corporation) Task: {51D9FD0B-FD8D-4509-B9DE-1C2FD4F847CF} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe [338944 2019-10-11] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {D2126841-F120-43A3-8F72-11CF1F542CE0} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe [338944 2019-10-11] (Microsoft Corporation) [Brak podpisu cyfrowego] Task: {B350354C-DED1-44FB-B36F-6DCCC53169D9} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch (Brak pliku) Task: {B61AC9C4-EB7A-4941-956A-07BDC459B367} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (Brak pliku) Task: {D5C5E25D-CA0C-4DF1-BC83-45E7B2A67B34} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (Brak pliku) Task: {E1747E3F-7FD4-4766-815B-DC42F7303165} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe /DRMInit (Brak pliku) Task: {D3762C51-DF45-4999-9E2B-86AEA3AFFDD2} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (Brak pliku) Task: {F7B53D11-097B-40A7-8B77-938E4420B728} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate $(Arg0) (Brak pliku) Task: {893AE8A7-9750-4733-9134-2D526CE1CBB4} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask (Brak pliku) Task: {E5FB4243-DBCC-480E-8915-529C9F86D3A3} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask (Brak pliku) Task: {1C4533E1-C933-4B65-9735-1BDF53FC72D5} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate (Brak pliku) Task: {8170CF52-C4C0-4563-82CC-CEF7E8197137} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (Brak pliku) Task: {5B9D8D41-6DC9-41DE-A94F-056BE9578351} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery (Brak pliku) Task: {6F736681-4DB9-49B6-BA7B-CBC7680FE857} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (Brak pliku) Task: {E709C6BD-4AE3-4226-8BED-4D0823FE9BE9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (Brak pliku) Task: {B73CFF16-7B95-4FC4-8A37-B07F000B6CDC} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe -pscn 0 (Brak pliku) Task: {41E7C68F-6A8A-48B3-AFB5-1D20CCB4B3DB} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask (Brak pliku) Task: {7BA19DDE-B376-4702-8FEE-6127B3078033} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe -PvrSchedule (Brak pliku) Task: {54BCA9FF-722A-4701-8778-6C2872AA92F8} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec /RestartRecording (Brak pliku) Task: {C6AB2E47-9F2E-497B-8455-57390738008E} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (Brak pliku) Task: {EB011595-72B1-4001-928B-9C0409DF2137} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot (Brak pliku) Task: {AB95592A-9A12-4361-9A36-EA415D711CBA} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask (Brak pliku) Task: {AB0958EC-5BF3-4597-8F76-65D2FB637371} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (Brak pliku) Task: {B8CAB869-7856-414F-915C-BF265F8C21B8} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A} Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB} Task: {DF1D161C-B04F-460E-BC6F-8E8EFEF9EB37} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {51971506-4AEA-4377-84DE-625AD132C191} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {3DAAF8CD-CCCE-4484-A5B0-E2754C7F670E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {9CFB5A30-59CB-4E70-A34D-6D7C948FDC29} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {FCB0B052-4340-44FE-B701-CF8534548B60} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8F1C10BA-892B-4421-8B19-B84C67E9A650} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {42CFEF3A-259B-41C5-B9A0-0AB919ECC186} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {8491B05F-D5F3-4372-ADFD-53EFFA85D0D9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {5980C479-C3DA-4786-90C0-2E4F9BAFCFD0} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [251904 2023-11-17] (Microsoft Windows -> Microsoft Corporation) Task: {DEE12C60-78F0-40CB-BD40-AD1EE56B8719} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-11-07] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {AA7DFADF-541D-4B1A-B5E8-D155B9F4049C} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log Task: {951B03F0-0CBF-4E50-BF11-FF3CE4DA0E25} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {50FC023F-223E-4FF6-B057-FC9935C4D95C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {08DE4712-F105-4B13-A6B4-BFB68C69B71A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {1E6909DF-8081-49B6-BF6A-FA2EEFB63CF2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {209A3C5D-4C41-4BA1-A23D-2B2EEA9C8114} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {DD76FE96-770E-4D0D-A80C-0C3ECC4167B3} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {05DB271F-06D3-4DD1-BC4C-DE21FC6C5848} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) Task: {615BD66C-285C-4D98-A342-AA24063EE10B} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130848 2023-11-13] (Microsoft Corporation -> Microsoft Corporation) Task: {4A102D11-055E-420C-90B7-D26050E7AA07} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2503187994-2676281761-2874965436-1000 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130848 2023-11-13] (Microsoft Corporation -> Microsoft Corporation) Task: {E03A948A-EB30-4BFC-BD70-F8307D8E6897} - System32\Tasks\Opera scheduled assistant Autoupdate 1573813699 => C:\Users\Druss\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Druss\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {103AE4EA-4A76-454F-9A93-AC811797F739} - System32\Tasks\Opera scheduled Autoupdate 1573813697 => C:\Users\Druss\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Brak pliku) Task: {5BDE5576-92BC-4EEF-844B-F1CA3128B833} - System32\Tasks\Opera scheduled Autoupdate 1683055905 => C:\Users\Druss\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Brak pliku) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{3cd68031-29f0-45af-abfb-57e4a9c537e1}: [DhcpNameServer] 192.168.0.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Druss\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-17] Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Druss\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2023-11-17] Edge Extension: (Dokumenty Google offline) - C:\Users\Druss\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-28] Edge Extension: (Edge relevant text changes) - C:\Users\Druss\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-14] Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn] FireFox: ======== FF DefaultProfile: p1f9hsf6.default FF ProfilePath: C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\p1f9hsf6.default [2023-05-02] FF Homepage: Mozilla\Firefox\Profiles\p1f9hsf6.default -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=FF200401&iDate=2023-05-02 07:33:40&bName= FF Extension: (Avast Online Security) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\p1f9hsf6.default\Extensions\wrc@avast.com.xpi [2019-11-01] FF ProfilePath: C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release [2023-11-18] FF DownloadDir: C:\Users\Druss\Desktop\New folder FF Homepage: Mozilla\Firefox\Profiles\m61njiea.default-release -> www.google.pl FF Notifications: Mozilla\Firefox\Profiles\m61njiea.default-release -> hxxps://manager.paczkomaty.pl FF Extension: (AdBlocker Ultimate) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2023-11-16] FF Extension: (Asystent przeglądarki AdGuard) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\browserassistant@adguard.com.xpi [2023-05-19] FF Extension: (Enhancer for YouTube™) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2023-08-28] FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2023-11-07] FF Extension: (Avast SafePrice | Porównania, okazje, kupony) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\sp@avast.com.xpi [2023-07-04] FF Extension: (Avast Online Security & Privacy) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\wrc@avast.com.xpi [2023-03-02] FF Extension: (Malwarebytes Browser Guard) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2023-10-27] FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2023-08-16] FF Extension: (Video DownloadHelper) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-28] FF Extension: (YouTube Video and Audio Downloader (Dev Edt.)) - C:\Users\Druss\AppData\Roaming\Mozilla\Firefox\Profiles\m61njiea.default-release\Extensions\{f73df109-8fb4-453e-8373-f59e61ca4da3}.xpi [2022-02-21] FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-16] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Brak podpisu cyfrowego] Chrome: ======= CHR Profile: C:\Users\Druss\AppData\Local\Google\Chrome\User Data\Default [2023-09-16] CHR Extension: (Torrent Scanner) - C:\Users\Druss\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2023-09-15] CHR Extension: (Dokumenty Google offline) - C:\Users\Druss\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-15] CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Druss\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-09-15] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Druss\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-09-15] CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb] CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee] Opera: ======= OPR Profile: C:\Users\Druss\AppData\Roaming\Opera Software\Opera Stable [2023-05-02] OPR DefaultSearchURL: Opera Stable -> hxxps://opera.com OPR Extension: (Rich Hints Agent) - C:\Users\Druss\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-05-02] OPR Extension: (Opera Wallet) - C:\Users\Druss\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-05-02] OPR Extension: (Amazon Assistant Promotion) - C:\Users\Druss\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2023-05-02] OPR Extension: (Opera AI Prompts) - C:\Users\Druss\AppData\Roaming\Opera Software\Opera Stable\Extensions\mljbnbeedpkgakdchcmfapkjhfcogaoc [2023-05-02] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4960120 2022-09-28] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-05-14] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.221.1024.0002\FileSyncHelper.exe [3507104 2023-11-13] (Microsoft Corporation -> Microsoft Corporation) S3 GSService; C:\Windows\SysWOW64\GSService.exe [444640 2014-07-28] (cyan soft ltd -> ) S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Brak podpisu cyfrowego] S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9287968 2023-10-12] (Malwarebytes Inc. -> Malwarebytes) R2 MSIREGISTER_MR; C:\Program Files (x86)\MSI\MSIRegister\MSIRegisterService.exe [2019504 2019-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2210104 2021-04-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183472 2020-03-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [11484296 2021-08-18] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.) S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.221.1024.0002\OneDriveUpdaterService.exe [3843600 2023-11-13] (Microsoft Corporation -> Microsoft Corporation) S3 Rockstar Service; D:\Gry\GTA\Launcher\RockstarService.exe [2199024 2023-05-16] (Rockstar Games, Inc. -> Rockstar Games) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534584 2023-11-17] (Microsoft Windows Publisher -> Microsoft Corporation) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Brak podpisu cyfrowego] R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16360768 2022-08-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [345400 2023-09-08] (Twitch Interactive, Inc. -> ) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) S2 AvastWscReporter; "C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X] R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin" ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R1 adgnetworkwfpdrv; C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [99896 2022-04-11] (Microsoft Windows Hardware Compatibility Publisher -> Adguard Software Ltd) S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 cpuz149; C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [44320 2022-03-04] (CPUID S.A.R.L.U. -> CPUID) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-11-29] (AVB Disc Soft, SIA -> Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-11-29] (AVB Disc Soft, SIA -> Disc Soft Ltd) S3 EasyAntiCheatSys; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.sys [3517448 2022-01-13] (EasyAntiCheat Oy -> EasyAntiCheat Oy) S3 GENERICDRV; C:\Program Files (x86)\MSI\ControlCenter\amifldrv64.sys [13864 2009-10-23] (American Megatrends, Inc. -> ) R1 HWiNFO_152; C:\Windows\system32\drivers\HWiNFO64A_152.SYS [63208 2020-12-29] (Martin Malik - REALiX -> REALiX(tm)) R3 iriuna0; C:\WINDOWS\system32\drivers\iriuna0.sys [46976 2021-04-06] (Iriun Oy -> Windows (R) Win 7 DDK provider) R3 iriunvid; C:\WINDOWS\System32\DriverStore\FileRepository\iriunvid.inf_amd64_daa9f7b9ae89ea8c\iriunvid.sys [164976 2023-01-10] (Iriun Oy -> Windows (R) Win 7 DDK provider) S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [91888 2022-07-26] (SZ DJI Technology Co., Ltd. -> hxxp://libusb-win32.sourceforge.net) S3 libusb0_dji; C:\WINDOWS\system32\DRIVERS\libusb0_dji.sys [73240 2022-07-26] (Microsoft Windows Hardware Compatibility Publisher -> hxxp://libusb-win32.sourceforge.net) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-08-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 NTIOLib_1_0_2; C:\Program Files (x86)\MSI\ControlCenter\NTIOLib_X64.sys [13328 2012-02-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) S2 SSPORT; C:\WINDOWS\SysWOW64\Drivers\SSPORT.sys [11576 2009-10-22] (Samsung Electronics CO., LTD. -> Samsung Electronics) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation) U3 idsvc; Brak ImagePath ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-11-18 21:51 - 2023-11-18 21:51 - 000000000 ____D C:\Users\Druss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory 2023-11-18 21:47 - 2023-11-18 21:48 - 000000000 ____D C:\Users\Druss\Downloads\FormatFactory2023_11_18 2023-11-18 21:47 - 2023-11-18 21:48 - 000000000 ____D C:\Users\Druss\Desktop\Umowa Drone 2023-11-17 17:57 - 2023-11-17 17:57 - 000000000 ___HD C:\$WinREAgent 2023-11-07 17:50 - 2023-11-17 20:47 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-10-25 15:26 - 2023-10-25 15:26 - 000003642 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask 2023-10-25 15:23 - 2023-10-25 15:26 - 000000000 ____D C:\Users\Druss\Downloads\FormatFactory2023_10_25 2023-10-25 14:00 - 2023-10-25 14:01 - 000294727 _____ C:\Users\Druss\Desktop\Projekt bez nazwy.mp4 2023-10-25 13:41 - 2023-10-25 13:41 - 000099482 _____ C:\Users\Druss\Desktop\Projekt bez nazwy.osp 2023-10-22 10:38 - 2023-10-25 17:11 - 000000000 ____D C:\Users\Druss\.openshot_qt 2023-10-22 10:38 - 2023-10-22 10:38 - 000000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenShot Video Editor.lnk 2023-10-22 10:38 - 2023-10-22 10:38 - 000000959 _____ C:\Users\Public\Desktop\OpenShot Video Editor.lnk 2023-10-22 10:37 - 2023-10-22 10:38 - 000000000 ____D C:\Program Files\OpenShot Video Editor ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-11-18 22:11 - 2021-10-24 20:23 - 000000000 ____D C:\Users\Druss\Desktop\New folder 2023-11-18 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-11-18 22:07 - 2021-05-30 01:04 - 000000000 ____D C:\FRST 2023-11-18 22:03 - 2021-12-28 14:38 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-11-18 22:03 - 2021-01-06 23:02 - 000000000 ____D C:\Program Files (x86)\Google 2023-11-18 22:02 - 2019-11-15 11:55 - 000000000 ____D C:\Users\Druss\AppData\Roaming\vlc 2023-11-18 21:51 - 2020-05-12 12:44 - 000000000 ___RD C:\Users\Druss\Desktop\Programy 2023-11-18 21:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-11-18 21:50 - 2023-09-15 09:19 - 000000000 ____D C:\Users\Druss\Desktop\Magiczna Bielizna 2023-11-18 21:50 - 2023-05-02 20:30 - 000000000 ____D C:\Users\Druss\AppData\Local\BrightData 2023-11-18 21:50 - 2023-05-02 20:29 - 000000000 ____D C:\ProgramData\BrightData 2023-11-18 21:50 - 2021-08-19 12:53 - 000000000 ____D C:\Program Files (x86)\FormatFactory 2023-11-18 21:50 - 2020-11-19 00:42 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-11-18 21:50 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-11-18 21:49 - 2021-02-04 17:22 - 000000000 ____D C:\Users\Druss\Desktop\CV i inne 2023-11-18 21:48 - 2019-11-29 14:14 - 000000000 ____D C:\Users\Druss\AppData\Roaming\Microsoft\Excel 2023-11-18 21:47 - 2022-10-09 19:52 - 000000000 ____D C:\Users\Druss\AppData\Local\Adobe 2023-11-18 21:46 - 2021-09-26 20:33 - 000000000 ____D C:\ProgramData\NVIDIA 2023-11-18 21:46 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2023-11-17 22:54 - 2021-11-19 13:26 - 001913936 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-11-17 22:54 - 2021-11-18 22:43 - 000817644 _____ C:\WINDOWS\system32\perfh015.dat 2023-11-17 22:54 - 2021-11-18 22:43 - 000169390 _____ C:\WINDOWS\system32\perfc015.dat 2023-11-17 22:49 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-11-17 22:47 - 2022-09-05 15:32 - 000000000 ____D C:\Program Files\TeamViewer 2023-11-17 22:47 - 2021-11-19 13:11 - 000008192 ___SH C:\DumpStack.log.tmp 2023-11-17 22:47 - 2020-11-19 00:39 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-11-17 20:55 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-11-17 20:49 - 2020-11-19 00:39 - 005102320 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-11-17 20:47 - 2021-12-21 20:55 - 000000000 ____D C:\Program Files\Microsoft OneDrive 2023-11-17 20:47 - 2019-10-31 21:42 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-11-17 20:43 - 2021-11-18 22:42 - 000000000 ____D C:\WINDOWS\SysWOW64\pl 2023-11-17 20:43 - 2021-11-18 22:42 - 000000000 ____D C:\WINDOWS\system32\pl 2023-11-17 20:43 - 2019-12-07 15:47 - 000000000 ___SD C:\WINDOWS\system32\AppV 2023-11-17 20:43 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer 2023-11-17 20:43 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-11-17 20:43 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2023-11-17 20:43 - 2019-12-07 15:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB 2023-11-17 20:43 - 2019-12-07 15:44 - 000000000 ____D C:\WINDOWS\en-GB 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System 2023-11-17 20:43 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender 2023-11-17 20:43 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing 2023-11-17 20:09 - 2020-11-19 00:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-11-17 18:52 - 2019-12-07 15:47 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll 2023-11-17 18:52 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll 2023-11-17 18:52 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll 2023-11-17 18:52 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-11-17 18:42 - 2022-01-13 23:31 - 000007616 _____ C:\Users\Druss\AppData\Local\Resmon.ResmonCfg 2023-11-17 18:37 - 2020-11-19 00:41 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-11-17 18:12 - 2023-09-15 11:26 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-11-16 19:13 - 2023-09-15 20:53 - 000263784 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_3.dll 2023-11-16 19:13 - 2023-09-08 18:52 - 002758248 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll 2023-11-16 19:13 - 2023-09-08 18:52 - 000634880 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll 2023-11-16 19:13 - 2023-09-08 18:52 - 000210536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll 2023-11-16 19:13 - 2023-09-08 18:52 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll 2023-11-16 19:13 - 2023-09-08 18:52 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll 2023-11-16 19:13 - 2023-09-08 18:52 - 000095848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe 2023-11-16 19:13 - 2023-09-08 18:52 - 000075368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe 2023-11-15 17:34 - 2019-11-01 20:21 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-11-15 17:25 - 2019-11-01 20:20 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-11-13 23:12 - 2021-12-21 20:55 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2503187994-2676281761-2874965436-1000 2023-11-13 23:12 - 2021-11-19 13:27 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task 2023-11-13 23:12 - 2021-09-27 19:16 - 000002132 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-11-13 16:58 - 2023-09-15 11:26 - 000003970 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{0387BF1F-2C45-4C31-AEA3-BBD154B9A8DC} 2023-11-13 16:58 - 2023-09-15 11:26 - 000003846 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{528DF8B1-8557-40F1-9A1E-DF73956555EB} 2023-11-10 17:26 - 2021-11-24 00:40 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-11-08 17:39 - 2019-10-31 21:42 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-11-07 20:45 - 2020-05-05 13:54 - 000000000 ____D C:\Users\Druss\AppData\Roaming\Microsoft\Word 2023-11-07 20:45 - 2020-05-05 13:53 - 000000000 ____D C:\Users\Druss\AppData\Roaming\Microsoft\Szablony 2023-11-07 17:25 - 2020-11-19 00:39 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-11-06 18:43 - 2021-09-26 20:53 - 000000000 ____D C:\Users\Druss\AppData\Local\Packages 2023-11-03 18:28 - 2019-11-02 00:30 - 000000000 ____D C:\Users\Druss\AppData\Local\Battle.net 2023-11-01 19:30 - 2020-11-19 00:41 - 000003564 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-11-01 19:30 - 2020-11-19 00:41 - 000003440 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-10-25 15:26 - 2023-05-02 20:29 - 000000000 ____D C:\Users\Druss\AppData\Local\Free_Time_Co.,_Ltd 2023-10-23 01:35 - 2023-09-25 12:54 - 000000000 ____D C:\Users\Druss\AppData\Roaming\obs-studio 2023-10-22 10:38 - 2021-11-19 00:42 - 000000000 ____D C:\Users\Druss ==================== Pliki w katalogu głównym wybranych folderów ======== 2022-05-31 00:13 - 2022-05-31 00:13 - 000000273 _____ () C:\ProgramData\fontcacheev1.dat 2022-01-13 23:31 - 2023-11-17 18:42 - 000007616 _____ () C:\Users\Druss\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================