Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 05-07-2023 Uruchomiony przez adria (administrator) ADRIAN_KOMPUTER (Dell Inc. G5 5587) (08-07-2023 10:27:58) Uruchomiony z E:\instalki\FRST64.exe Załadowane profile: adria Platforma: Microsoft Windows 11 Home Wersja 22H2 22621.1848 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Abbott Diabetes Care) [Brak podpisu cyfrowego] C:\Program Files (x86)\FreeStyle Libre\adc_launcher.exe (Autodesk, Inc. -> Autodesk) C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe ->) (Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplmv.exe <2> (C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2> (C:\Program Files (x86)\Garmin\Express\express.exe ->) (The CefSharp Authors) [Brak podpisu cyfrowego] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.exe <2> (C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6> (C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.DCF.UA.Bradbury.API.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe (C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Inc -> ) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.67\msedgewebview2.exe <6> (drivers\RivetNetworks\Killer\KNDBWMService.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWM.exe (DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe (EB742617-4934-4951-8B93-E211D04E5A38 -> Intel) C:\Program Files\WindowsApps\RivetNetworks.KillerControlCenter_3.1122.329.0_x64__rh07ty8m5nkag\KillerControlCenter_v2\KillerIntelligenceCenter.exe (explorer.exe ->) (DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkTrayApp.exe (explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (explorer.exe ->) (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe (explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <46> (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe (explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo75de.inf_amd64_5ff36f834a6d461a\WavesSvc64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe (services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\BrYNSvc.exe (services.exe ->) (Dell Inc -> ) C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe (services.exe ->) (Dell Inc -> Dell INC.) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe (services.exe ->) (Dell Inc -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (services.exe ->) (Dell Inc -> Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe (services.exe ->) (Dell Inc -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe (services.exe ->) (Dell Inc -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe (services.exe ->) (Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe (services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Brak podpisu cyfrowego] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_362cfac2b6e1097f\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_362cfac2b6e1097f\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_183917c66152901d\lib\SocketHeciServer.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe (services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe (services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Windows\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe (services.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_fafb1d329fdfe2c6\aesm_service.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe (services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_07c635b5a70a0997\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3> (services.exe ->) (Rivet Networks) [Brak podpisu cyfrowego] C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe (services.exe ->) (Rivet Networks) [Brak podpisu cyfrowego] C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe (services.exe ->) (SafeNet, Inc. -> SafeNet, Inc) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe (services.exe ->) (SafeNet, Inc. -> SafeNet, Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (services.exe ->) (SafeNet, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo75de.inf_amd64_5ff36f834a6d461a\WavesSysSvc64.exe (sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe (sihost.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5> (svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.214.1149.0_x86__zpdnekdrzrea0\SpotifyWidgetProvider.exe (svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt\IGCC.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo75de.inf_amd64_5ff36f834a6d461a\WavesSvc64.exe [1222536 2018-12-05] (Waves Inc -> Waves Audio Ltd.) HKLM\...\Run: [DisplayLinkTrayApp] => C:\Program Files\DisplayLink Core Software\DisplayLinkTrayApp.exe [6342856 2021-05-11] (DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [834336 2019-02-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [145344 2019-07-26] (Brother Industries, Ltd. -> Brother Industries, Ltd.) HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3146752 2022-02-07] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [adc_launcher] => C:\Program Files (x86)\FreeStyle Libre\adc_launcher.exe [211456 2018-12-06] (Abbott Diabetes Care) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\ProgramData\Autodesk\Genuine Service\x64\GenuineService.exe [3738160 2022-06-29] (Autodesk, Inc. -> Autodesk) HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe --startup_mode (Brak pliku) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe --startup_mode (Brak pliku) HKU\S-1-5-21-3649961702-1232890417-3658410295-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4371816 2023-06-22] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-3649961702-1232890417-3658410295-1001\...\Run: [pCloud] => C:\Program Files (x86)\pCloud Drive\pCloud.exe [3424048 2022-01-24] (pCloud AG -> pCloud AG) HKU\S-1-5-21-3649961702-1232890417-3658410295-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37027792 2023-06-28] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-3649961702-1232890417-3658410295-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31300376 2023-03-08] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-3649961702-1232890417-3658410295-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40496032 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) HKU\S-1-5-21-3649961702-1232890417-3658410295-1001\...\Run: [MicrosoftEdgeAutoLaunch_CB50CB34C9AE5C62F78E6EAEBC5B5168] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113872 2023-06-29] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-3649961702-1232890417-3658410295-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\adria\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (Brak pliku) HKU\S-1-5-21-3649961702-1232890417-3658410295-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\adria\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (Brak pliku) HKU\S-1-5-21-3649961702-1232890417-3658410295-1001\...\RunOnce: [Uninstall 23.122.0611.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\adria\AppData\Local\Microsoft\OneDrive\23.122.0611.0001" (Brak pliku) HKU\S-1-5-21-3649961702-1232890417-3658410295-1001\...\Policies\Explorer: [] HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.2.0\GoogleDriveFS.exe --startup_mode (Brak pliku) HKLM\...\Windows x64\Print Processors\midas File Print Processor: C:\Windows\System32\spool\prtprocs\x64\BuAProNT_midas.dll [37504 2015-05-14] (Black Ice Software LLC -> Black Ice Software LLC) HKLM\...\Print\Monitors\midas Monitor A: C:\Windows\system32\BuAMonNT_midas.dll [680056 2015-05-14] (Black Ice Software LLC -> Black Ice Software LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-30] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {03550099-4CE5-4B6E-986A-10D1798B5537} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {10562749-9BFC-469C-A81E-F7FF19F248F1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124272 2023-07-02] (Microsoft Corporation -> Microsoft Corporation) Task: {1D8AD9CD-DC4A-4592-B0A8-208003D9B764} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start ThunderboltService Task: {2DDC3FF7-0BB5-4AAE-B367-9A1FAEB3668E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC ReadyToReboot (Brak pliku) Task: {301F4EF4-A738-4D33-A5C4-81B73FDE719D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {384065E5-6D5E-45D9-B532-F798EAF30487} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {3AB638FE-DA92-4174-8414-CC27EA5B98DE} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (Brak pliku) Task: {494CBFA5-9CE6-45F0-901E-40CA4BFE7487} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [29464 2023-03-08] (Garmin International, Inc. -> ) Task: {4A01139E-F8CA-4BBC-8A92-5B3F017CE280} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display => %systemroot%\system32\MusNotification.exe Display (Brak pliku) Task: {4EDD3194-57C8-4B72-A27D-535FBB620049} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {555F7576-FE6E-4B66-B8A1-33CD64FFC5D2} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226008 ] (Intel(R) Client Connectivity Division SW -> Intel Corporation) Task: {5982160E-F5BA-4560-BBF2-A39D4E019841} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\tbtsvc.exe [2302168 ] (Intel(R) Client Connectivity Division SW -> Intel Corporation) Task: {5B1303A0-60E3-46B4-AE08-5A72BC812602} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-02] (Microsoft Corporation -> Microsoft Corporation) Task: {678EE305-52C0-47D4-8D3E-3A0AAFD5BE49} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124272 2023-07-02] (Microsoft Corporation -> Microsoft Corporation) Task: {6B9C1ED9-50F2-4668-BFB6-05C6903849AE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {6ECC17BA-2F21-4D1D-A937-AF5B7E29ED7A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => %systemroot%\system32\MusNotification.exe RebootDialog (Brak pliku) Task: {7203DC0A-5595-4120-8C9B-EAD62AB9922C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26616792 2023-07-02] (Microsoft Corporation -> Microsoft Corporation) Task: {7480288B-258B-438F-A8AC-CADB6BB043A5} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226008 ] (Intel(R) Client Connectivity Division SW -> Intel Corporation) Task: {773F3CA1-6F71-4EF2-8C2B-90973165ED43} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval => %systemroot%\system32\MusNotification.exe Display (Brak pliku) Task: {79F451FC-1D69-4974-BB7C-A0FF1ECD2D75} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {813EBBCD-6172-411A-8CCA-8A189E91570E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {81468681-EAEE-49B8-BF2E-5E94BC59A74B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery ReadyToReboot (Brak pliku) Task: {88A579C1-BF9E-4BB5-9C8C-CFE293A971F3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {9249DDEA-891C-4ABE-A4C6-09A0EF0C8F87} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on switch user if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226008 ] (Intel(R) Client Connectivity Division SW -> Intel Corporation) Task: {92568185-C792-4D75-91F5-CD38C9142BF8} - System32\Tasks\CCleanerSkipUAC - adria => C:\Program Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) Task: {AD4145A4-F33E-4A56-8DD7-4033C60CC80E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.) Task: {B3DA6212-C697-4369-8681-4C796B6DF82E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-03] (Google Inc -> Google LLC) Task: {B405AA7B-29AF-4B34-B65C-9D2A4294C83C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BBE535FD-86C5-40A4-9A36-FA91793A510F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {BE385246-A176-4913-95C2-7701B6BA3CA8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-03] (Google Inc -> Google LLC) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (Brak pliku) Task: {CEC381F9-78A1-4C15-9ED9-AC22918C659C} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\FrameworkAgents\SupportAssistInstaller.exe [738144 2023-04-07] (Dell Inc -> Dell Inc.) Task: {D3A6C1BB-A4D5-4836-800E-AAC683BAD8A7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DB8724B1-AE9A-4E1B-9E09-3D5603B77EC1} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "15a9c1a1-53d3-4094-9fcd-ede49e21e63e" --version "6.13.10517" --silent Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Brak pliku) Task: {E79C132B-F61F-4694-B4DF-2A6916553F5A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-15] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {F74D16DC-6E64-44E2-8735-F208C7674E04} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation) Task: {F9B3F6A0-3F33-4B91-85F1-37CE3BD12C1B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.2 Tcpip\..\Interfaces\{d1aab703-d6a5-4d70-943a-311f3b0e7323}: [DhcpNameServer] 192.168.0.2 Tcpip\..\Interfaces\{def2ac8b-e924-4898-980f-d40aad2d9ec4}: [DhcpNameServer] 192.168.0.2 Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\adria\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-08] Edge HomePage: Default -> hxxps://www.google.pl/ Edge Extension: (Edge relevant text changes) - C:\Users\adria\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24] FireFox: ======== FF DefaultProfile: 0abargux.default FF ProfilePath: C:\Users\adria\AppData\Roaming\Mozilla\Firefox\Profiles\0abargux.default [2019-08-05] FF ProfilePath: C:\Users\adria\AppData\Roaming\Mozilla\Firefox\Profiles\fr427hdi.default-release [2023-06-18] FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-07-02] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-06-14] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR Profile: C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default [2023-07-08] CHR DownloadDir: D:\pobrane CHR Notifications: Default -> hxxps://do.centrum24.pl; hxxps://freestylelibre.push-ad.com; hxxps://idiabetyk.pl; hxxps://iok.amd.wroc.pl; hxxps://meet.google.com; hxxps://megagiper.ru; hxxps://minikar.ru; hxxps://my.pcloud.com; hxxps://scandicsofa.pl; hxxps://shopee.pl; hxxps://storycoffee.pl; hxxps://wina-mp.pl; hxxps://www.citibank.pl; hxxps://www.dolnimorava.cz; hxxps://www.leroymerlin.pl; hxxps://www.mojeppk.pl; hxxps://www.netflix.com; hxxps://www.online.citibank.pl; hxxps://www.ortograf.pl CHR HomePage: Default -> hxxps://www.google.pl/ CHR StartupUrls: Default -> "hxxp://www.gazeta.pl/0,0.html?p=190" CHR Extension: (Deadpool Full Screen Theme) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\echjomhoplepodjjaaohelfnlnoelhgd [2019-04-03] CHR Extension: (Dokumenty Google offline) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-27] CHR Extension: (Pinterest Save Button) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2023-04-01] CHR Extension: (LastPass: Free Password Manager) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2023-07-05] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (pCloud Save) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Default\Extensions\npamdkabjncnnoaofdjcaipmnccofeem [2021-12-11] CHR Profile: C:\Users\adria\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-06-07] CHR Profile: C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-07-06] CHR Notifications: Profile 1 -> hxxps://meet.google.com CHR Extension: (Dokumenty Google offline) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-27] CHR Extension: (Online Security) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2023-07-04] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-03] CHR Profile: C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-06-07] CHR Extension: (Prezentacje) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-19] CHR Extension: (Dokumenty) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-19] CHR Extension: (Dysk Google) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-19] CHR Extension: (YouTube) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-19] CHR Extension: (Arkusze) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-19] CHR Extension: (Dokumenty Google offline) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-19] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-19] CHR Extension: (Gmail) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-19] CHR Profile: C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 3 [2023-06-07] CHR Extension: (Prezentacje) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-28] CHR Extension: (Dokumenty) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-28] CHR Extension: (Dysk Google) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-28] CHR Extension: (YouTube) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-28] CHR Extension: (Arkusze) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-28] CHR Extension: (Dokumenty Google offline) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-28] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-28] CHR Extension: (Gmail) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-28] CHR Profile: C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 4 [2023-06-07] CHR Extension: (Dokumenty Google offline) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-08] CHR Extension: (Online Security) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\llbcnfanfmjhpedaedhbcnpgeepdnnok [2023-05-08] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\adria\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-08] CHR Profile: C:\Users\adria\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-07] CHR HKLM\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok] CHR HKU\S-1-5-21-3649961702-1232890417-3658410295-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok] CHR HKLM-x32\...\Chrome\Extension: [llbcnfanfmjhpedaedhbcnpgeepdnnok] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [321536 2021-12-06] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11851144 2023-07-02] (Microsoft Corporation -> Microsoft Corporation) S3 dcpm-notify; C:\Program Files\Dell\CommandPowerManager\NotifyService.exe [329920 2023-03-23] (Dell Inc -> Dell Inc.) R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [458960 2023-03-14] (Dell Inc -> Dell Technologies Inc.) R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [161488 2023-03-14] (Dell Inc -> Dell Technologies Inc.) R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [484560 2023-03-14] (Dell Inc -> Dell Technologies Inc.) R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [22224 2023-01-17] (Dell Inc -> Dell INC.) S3 Dell.CommandPowerManager.Service; C:\WINDOWS\system32\dllhost.exe /Processid:{76B731BD-0F65-47FD-A02A-44D42070AC39} [46416 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [49880 2023-05-08] (Dell Inc -> ) R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [156064 2022-12-09] (Dell Inc -> Dell) R2 hasplms; C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe [5730312 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2022-06-24] (Huawei Technologies Co., Ltd. -> ) [Brak podpisu cyfrowego] S3 KAPSService; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KAPSService.exe [64376 2022-03-29] (Intel Corporation -> Intel® Corporation) R2 Killer Analytics Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerAnalyticsService.exe [2423160 2022-03-29] (Intel Corporation -> Intel) R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2883448 2022-03-29] (Intel Corporation -> Intel) R3 KNDBWM; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KNDBWMService.exe [64376 2022-03-29] (Intel Corporation -> Intel® Corporation) S2 RAPSService; C:\Program Files\Rivet Networks\SmartByte\RAPSService.exe [56832 2022-07-28] (Microsoft Windows Hardware Compatibility Publisher -> Rivet Networks, LLC.) S3 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [56832 2022-07-28] (Microsoft Windows Hardware Compatibility Publisher -> Rivet Networks, LLC.) R2 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [368760 2009-12-07] (SafeNet, Inc. -> SafeNet, Inc.) [Brak podpisu cyfrowego] R2 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1246496 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc) R2 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [292128 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.) R2 SmartByte Analytics Service; C:\Program Files\Rivet Networks\SmartByte\SmartByteAnalyticsService.exe [1623552 2022-07-28] (Rivet Networks) [Brak podpisu cyfrowego] R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2381824 2022-07-28] (Rivet Networks) [Brak podpisu cyfrowego] R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [160096 2023-04-07] (Dell Inc -> Dell Inc.) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [15593272 2023-05-02] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-15] (Microsoft Windows Publisher -> Microsoft Corporation) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvdmi.inf_amd64_07c635b5a70a0997\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvdmi.inf_amd64_07c635b5a70a0997\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 aksdf; C:\WINDOWS\system32\drivers\aksdf.sys [389560 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [510800 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) S3 akshasp; C:\WINDOWS\system32\DRIVERS\akshasp.sys [69560 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) S3 akshhl; C:\WINDOWS\system32\DRIVERS\akshhl.sys [68536 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) S3 aksusb; C:\WINDOWS\system32\DRIVERS\aksusb.sys [313784 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Brak podpisu cyfrowego] R1 cbfs20; C:\WINDOWS\System32\drivers\cbfs20.sys [447560 2022-01-04] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com) R1 cbfs6; C:\WINDOWS\system32\drivers\cbfs6.sys [460992 2016-09-09] (EldoS Corporation -> /n software, Inc.) R1 cbfsconnect2017; C:\WINDOWS\system32\drivers\cbfsconnect2017.sys [480272 2019-10-07] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.) R3 DellInstrumentation; C:\WINDOWS\System32\drivers\DellInstrumentation.sys [46528 2023-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Dell) S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [41208 2017-12-14] (Techporch Incorporated -> Dell Computer Corporation) R3 dlcdcncm; C:\WINDOWS\System32\drivers\dlcdcncm62_x64.sys [81744 2021-05-28] (DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.) S3 dlusbaudio; C:\WINDOWS\system32\DRIVERS\dlusbaudio_x64.sys [238352 2017-09-18] (DISPLAYLINK -> DisplayLink Corp.) R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [1970104 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [218336 2017-10-09] (McAfee, Inc. -> McAfee, Inc.) S3 JabraDFU; C:\WINDOWS\System32\Drivers\JabraBcDfuX64.sys [39288 2022-06-13] (GN Netcom A/S -> GN Netcom A/S) R3 KfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KfeCo11X64.sys [175848 2022-03-29] (Intel Corporation -> Rivet Networks, LLC.) R3 MpKsl3fe14a2c; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D330D9E0-575D-42CE-87F0-38E7A1B4AE19}\MpKslDrv.sys [213288 2023-07-08] (Microsoft Windows -> Microsoft Corporation) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) S3 ScrHIDDriver3; C:\WINDOWS\System32\drivers\ScrHIDDriver3.sys [63296 2021-10-01] (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) R2 Sentinel64; C:\WINDOWS\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc. -> SafeNet, Inc.) R3 vpnpbus; C:\WINDOWS\System32\drivers\vpnpbus.sys [20496 2019-10-07] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2023-06-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-06-15] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-15] (Microsoft Windows -> Microsoft Corporation) S3 rsDwf; \SystemRoot\system32\DRIVERS\rsDwf.sys [X] S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Trzy miesiące (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-07-08 10:27 - 2023-07-08 10:28 - 000000000 ___DC C:\FRST 2023-07-08 10:15 - 2023-07-08 10:25 - 000000000 ____D C:\ProgramData\RogueKiller 2023-07-08 10:15 - 2023-07-08 10:15 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3649961702-1232890417-3658410295-1001 2023-07-08 10:15 - 2023-07-08 10:15 - 000002429 ____C C:\Users\adria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-07-08 10:09 - 2023-07-08 10:09 - 000800970 _____ C:\WINDOWS\system32\perfh015.dat 2023-07-08 10:09 - 2023-07-08 10:09 - 000749084 _____ C:\WINDOWS\system32\perfh007.dat 2023-07-08 10:09 - 2023-07-08 10:09 - 000158968 _____ C:\WINDOWS\system32\perfc015.dat 2023-07-08 10:09 - 2023-07-08 10:09 - 000157266 _____ C:\WINDOWS\system32\perfc007.dat 2023-07-06 17:44 - 2023-07-06 17:44 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware 2023-07-05 19:51 - 2023-07-05 20:02 - 000000000 ___DC C:\Users\adria\Desktop\fb 2023-06-28 19:54 - 2023-06-28 19:54 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task 2023-06-28 19:54 - 2023-06-28 19:54 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk 2023-06-28 19:54 - 2023-06-28 19:54 - 000002126 ____C C:\Users\Public\Desktop\Acrobat Reader.lnk 2023-06-24 19:46 - 2023-06-24 19:46 - 000000000 ___DC C:\Users\adria\Documents\My Games 2023-06-24 19:46 - 2023-06-24 19:46 - 000000000 ____D C:\Users\adria\AppData\Roaming\Kalypso Media 2023-06-24 19:46 - 2023-06-24 19:46 - 000000000 ____D C:\Users\adria\AppData\Local\Kalypso Media 2023-06-24 10:32 - 2023-06-24 10:32 - 002350464 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-06-19 21:41 - 2023-06-19 22:53 - 000074752 ____C C:\Users\adria\Desktop\historia_operacji_20230619214119.xls 2023-06-18 17:36 - 2023-06-18 17:36 - 000994983 ____C C:\Users\adria\Desktop\2022.11.02_rys. zestawcze.dwg 2023-06-17 07:30 - 2023-06-17 07:30 - 000000000 __HDC C:\$WinREAgent 2023-06-15 18:54 - 2023-07-02 10:15 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update 2023-06-15 18:54 - 2023-06-15 22:08 - 000000760 ____C C:\WINDOWS\Tasks\CCleanerCrashReporting.job 2023-06-15 18:54 - 2023-06-15 18:54 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting 2023-06-09 16:55 - 2023-06-09 16:55 - 000000000 _____ C:\WINDOWS\invcol.tmp 2023-06-07 20:30 - 2023-06-07 20:30 - 000000000 ___DC C:\Users\adria\Desktop\pro 2023-06-07 19:59 - 2023-06-07 19:59 - 000000000 ___DC C:\Users\Public\Documents\Autodesk 2023-06-07 19:57 - 2023-06-07 19:57 - 000000000 ____D C:\Program Files\moje 2023-06-07 19:40 - 2023-07-08 10:05 - 000000000 ____D C:\Program Files\CCleaner 2023-06-07 19:40 - 2023-06-07 19:40 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - adria 2023-06-07 19:40 - 2023-06-07 19:40 - 000000867 ____C C:\Users\Public\Desktop\CCleaner.lnk 2023-06-07 19:40 - 2023-06-07 19:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2023-06-04 09:44 - 2023-07-05 18:33 - 000000000 ___DC C:\Users\adria\Desktop\kładka Świebodzice 2023-06-03 13:43 - 2023-06-03 13:43 - 000000000 ___DC C:\Users\adria\Documents\MidasAutoSave 2023-06-03 13:01 - 2023-06-03 13:01 - 000870599 ____C C:\Users\adria\Documents\crashdump.mdwg20230603130140_crash.mdmp 2023-06-03 10:26 - 2023-06-03 13:03 - 000000000 ___DC C:\Users\adria\Documents\midas CAD 2023-06-03 10:26 - 2023-06-03 10:26 - 000001792 _____ C:\ProgramData\Microsoft\Windows\Start Menu\midas CAD.lnk 2023-06-03 10:26 - 2023-06-03 10:26 - 000001786 ____C C:\Users\Public\Desktop\midas CAD.lnk 2023-06-03 10:26 - 2023-06-03 10:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MIDAS 2023-06-03 10:23 - 2015-05-14 05:07 - 000708208 _____ (Black Ice Software LLC) C:\WINDOWS\system32\BuAAppNT_midas.exe 2023-06-03 10:23 - 2015-05-14 05:07 - 000680056 _____ (Black Ice Software LLC) C:\WINDOWS\system32\BuAMonNT_midas.dll 2023-06-03 10:23 - 2015-05-14 05:07 - 000037504 _____ (Black Ice Software LLC) C:\WINDOWS\system32\spool\prtprocs\x64\BuAProNT_midas.dll 2023-06-03 10:23 - 2015-05-14 05:01 - 005558912 _____ C:\WINDOWS\system32\BiPDFResources.dll 2023-06-03 10:23 - 2015-05-14 05:01 - 003890800 _____ (Black Ice Software, Inc.) C:\WINDOWS\system32\BiPDFP.dll 2023-06-03 10:23 - 2015-05-14 05:01 - 001185408 _____ (Black Ice Software LLC) C:\WINDOWS\system32\BiPDFInterfaceP.dll 2023-06-03 10:23 - 2015-05-14 05:01 - 000680048 _____ (Black Ice Software LLC) C:\WINDOWS\system32\Tiff32.dll 2023-06-03 10:23 - 2015-05-14 05:01 - 000397432 _____ (Black Ice Software LLC) C:\WINDOWS\system32\BiImgUser.dll 2023-06-03 10:23 - 2015-05-14 05:01 - 000333424 _____ (Black Ice Software LLC) C:\WINDOWS\system32\Jpeg32.dll 2023-06-03 10:23 - 2015-05-14 05:01 - 000312432 _____ (Black Ice Software LLC) C:\WINDOWS\system32\Dib32.dll 2023-06-03 10:23 - 2015-05-14 05:01 - 000293488 _____ (Black Ice Software LLC) C:\WINDOWS\system32\Pdf32.dll 2023-06-03 10:23 - 2015-01-05 11:14 - 000189952 _____ (Black Ice Software LLC) C:\WINDOWS\system32\BuAResNT_midas.dll 2023-06-03 10:22 - 2023-06-03 10:23 - 000000000 ___DC C:\MIDAS 2023-06-03 10:22 - 2023-06-03 10:22 - 000000000 ____D C:\Program Files\MIDAS 2023-06-03 09:10 - 2023-06-07 19:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\S7nQ 2023-06-03 09:10 - 2023-06-07 19:30 - 000000000 ____D C:\Users\adria\AppData\Roaming\CC3B19D330BD7872 2023-06-03 09:03 - 2023-06-03 09:27 - 000066380 ____C C:\Users\adria\Desktop\kładka Świebodzice.mdwg 2023-06-03 08:50 - 2023-06-03 08:50 - 000000000 ____D C:\ProgramData\boost_interprocess 2023-05-24 20:19 - 2023-05-24 20:19 - 000000000 ____D C:\WINDOWS\{C8DF7D5C-D8E1-4B2E-B133-81CCCF86D5CB} 2023-05-11 10:26 - 2023-05-11 10:26 - 019605368 ____C C:\Users\adria\Desktop\ModeleObliczeniowe_podłoża_gruntowego_wzmocnienie.pdf 2023-05-11 10:09 - 2023-05-11 10:09 - 004999672 ____C C:\Users\adria\Desktop\Kolumny żwirowe, pale zagęszczające formowane metodą Franki -.pdf 2023-05-11 08:38 - 2023-05-11 08:38 - 000077486 ____C C:\Users\adria\Desktop\zal_29_Zestawienie_wyprowadzonych_parametrow_DBPG.pdf 2023-05-10 08:16 - 2023-05-10 08:16 - 003375755 ____C C:\Users\adria\Desktop\Standardy-kol-CPK-08-Tom-III-1-200.pdf 2023-05-08 21:52 - 2023-05-08 21:52 - 000083837 ____C C:\Users\adria\Desktop\umowa spadkowa Artur Droszczak i Rosanna.pdf 2023-05-08 20:54 - 2023-05-08 20:54 - 000003624 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask 2023-05-08 20:54 - 2023-05-08 20:54 - 000001965 ____C C:\Users\Public\Desktop\Garmin Express.lnk 2023-05-08 20:54 - 2023-05-08 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin 2023-05-07 13:08 - 2023-05-07 13:08 - 001308938 ____C C:\Users\adria\Desktop\Erbvertrag Artur Droszczak-obrazy.zip 2023-04-24 18:04 - 2023-04-24 18:04 - 000366837 ____C C:\Users\adria\Desktop\faktura_1.pdf 2023-04-20 15:46 - 2023-06-12 17:35 - 000000000 ___DC C:\Users\adria\Desktop\akt zgonu Artur 2023-04-15 12:07 - 2023-04-15 12:08 - 002336165 ____C C:\Users\adria\Desktop\Erbvertrag Artur Droszczak.pdf 2023-04-14 23:35 - 2023-04-14 23:35 - 000000000 ____D C:\WINDOWS\{2F5EBA96-CA6C-4419-B6C7-B371018597FF} 2023-04-14 17:06 - 2023-04-14 17:06 - 000003952 _____ C:\WINDOWS\system32\Tasks\Dell SupportAssistAgent AutoUpdate ==================== Trzy miesiące (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-07-08 10:29 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-07-08 10:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-07-08 10:19 - 2019-04-03 19:30 - 000000000 ___DC C:\Program Files (x86)\Steam 2023-07-08 10:19 - 2019-04-03 17:31 - 000000000 ___DC C:\Program Files (x86)\Google 2023-07-08 10:15 - 2022-10-07 22:58 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3649961702-1232890417-3658410295-1001 2023-07-08 10:10 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-07-08 10:09 - 2022-10-07 22:56 - 002702338 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-07-08 10:09 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF 2023-07-08 10:05 - 2018-05-26 09:01 - 000000000 ___DC C:\ProgramData\NVIDIA 2023-07-08 10:04 - 2022-11-06 19:09 - 000012288 ___SH C:\DumpStack.log.tmp 2023-07-08 10:04 - 2022-10-07 22:58 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT 2023-07-08 10:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-07-08 10:04 - 2021-03-11 13:24 - 000000000 ___DC C:\Program Files (x86)\TeamViewer 2023-07-08 10:04 - 2019-04-03 17:22 - 000000000 _SHDC C:\Users\adria\IntelGraphicsProfiles 2023-07-08 10:04 - 2018-05-26 08:59 - 000000000 ___DC C:\Intel 2023-07-08 09:15 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-07-08 08:53 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Registration 2023-07-08 08:39 - 2022-10-07 22:33 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-07-07 16:58 - 2019-04-03 17:22 - 000000000 ___DC C:\Users\adria\AppData\Local\Packages 2023-07-06 17:33 - 2019-04-05 18:35 - 000000000 ___DC C:\Users\adria\AppData\Local\D3DSCache 2023-07-06 16:57 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-07-06 16:38 - 2019-04-03 17:43 - 000000000 ___DC C:\Program Files\rempl 2023-07-06 16:35 - 2022-09-30 16:41 - 000000000 ____D C:\Program Files (x86)\Pure APK Install 2023-07-06 16:32 - 2019-05-21 19:59 - 000000000 ___DC C:\Program Files\Autodesk 2023-07-06 16:30 - 2019-04-03 18:57 - 000000000 ___DC C:\ProgramData\Packages 2023-07-06 16:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth 2023-07-05 18:33 - 2019-04-19 18:19 - 000000000 ___DC C:\Users\adria\AppData\Local\CrashDumps 2023-07-04 20:13 - 2019-04-03 18:09 - 000000000 ___DC C:\Users\adria\AppData\Roaming\Microsoft\Word 2023-07-03 22:02 - 2019-04-29 20:42 - 000000000 ___DC C:\Users\adria\AppData\Roaming\Microsoft\Excel 2023-07-03 15:56 - 2019-04-03 18:09 - 000000000 ___DC C:\Users\adria\AppData\Roaming\Microsoft\Office 2023-07-02 10:54 - 2020-06-05 18:31 - 000002452 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-07-02 10:54 - 2020-06-05 18:31 - 000002290 ____C C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-07-02 10:12 - 2019-04-03 17:53 - 000000000 ___DC C:\Program Files (x86)\Microsoft Office 2023-06-30 17:21 - 2019-04-03 17:31 - 000002309 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-06-30 17:21 - 2019-04-03 17:31 - 000002268 ____C C:\Users\Public\Desktop\Google Chrome.lnk 2023-06-30 16:46 - 2023-04-01 16:42 - 000000000 ____D C:\Program Files\chrome_BITS_19644_71763349 2023-06-24 10:33 - 2019-04-03 19:31 - 000000000 ___DC C:\Users\adria\AppData\Local\Steam 2023-06-24 10:32 - 2023-01-22 15:10 - 000000000 ____D C:\WINDOWS\Panther 2023-06-17 12:17 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2023-06-17 08:16 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-06-17 08:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels 2023-06-17 08:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS 2023-06-17 08:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata 2023-06-17 08:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2023-06-17 08:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-06-17 08:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata 2023-06-17 08:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism 2023-06-17 08:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences 2023-06-17 08:16 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-06-17 08:16 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing 2023-06-17 07:40 - 2019-04-03 17:41 - 000000000 ___DC C:\WINDOWS\system32\MRT 2023-06-17 07:36 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-06-17 07:36 - 2019-04-03 17:41 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-06-17 07:33 - 2022-10-07 22:34 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-06-17 07:28 - 2022-04-04 21:49 - 000000000 ___DC C:\Program Files\dotnet 2023-06-17 07:28 - 2018-05-26 08:55 - 000000000 ___DC C:\ProgramData\Package Cache 2023-06-16 17:14 - 2022-10-07 22:58 - 000003864 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-06-16 17:14 - 2022-10-07 22:58 - 000003740 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-06-15 18:48 - 2022-10-07 22:58 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-06-15 18:48 - 2022-10-07 22:58 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-06-15 18:41 - 2019-04-03 18:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd ==================== Pliki w katalogu głównym wybranych folderów ======== 2023-03-28 19:58 - 2023-03-28 19:58 - 000000218 _____ () C:\Users\adria\AppData\Local\recently-used.xbel ==================== SigCheckExt ========================= 2021-06-05 14:06 - 2021-06-05 14:06 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\altspace.dll 2019-04-03 18:17 - 2013-03-08 08:44 - 000087040 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\BrNetSti.dll 2019-04-03 18:17 - 2013-07-03 04:46 - 000065024 ____C (Brother Industries,Ltd) C:\WINDOWS\system32\Brnsplg.dll 2019-04-03 18:17 - 2005-04-22 06:36 - 000143360 ____C C:\WINDOWS\system32\BrSNMP64.dll 2019-04-03 18:17 - 2013-03-08 08:45 - 000059904 ____C (Brother Industries,Ltd.) C:\WINDOWS\system32\BrWiaNCp.dll 2023-06-03 10:23 - 2015-01-05 11:14 - 000189952 _____ (Black Ice Software LLC) C:\WINDOWS\system32\BuAResNT_midas.dll 2021-03-15 19:15 - 2021-03-15 19:15 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtAdvancedDS.dll 2019-12-07 11:09 - 2019-12-07 11:09 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll 2021-03-15 19:16 - 2021-03-15 19:16 - 000411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll 2021-03-15 19:16 - 2021-03-15 19:16 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe 2021-03-15 19:15 - 2021-03-15 19:15 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcAntiTheftApi.dll 2017-09-29 15:42 - 2017-09-29 15:42 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcComImplementations.dll 2021-03-15 19:15 - 2021-03-15 19:15 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandlerPS.dll 2019-08-05 20:13 - 2002-01-05 05:48 - 000974848 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfc70.dll 2017-09-29 15:41 - 2017-09-29 15:41 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Core.dll 2018-05-26 08:53 - 2018-05-26 08:53 - 003121664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll 2022-05-16 17:04 - 2022-05-16 17:04 - 001677312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe 2019-08-05 20:13 - 2002-01-05 04:37 - 000344064 ____C (Microsoft Corporation) C:\WINDOWS\system32\msvcr70.dll 2022-06-04 23:57 - 2022-06-04 23:57 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIconHandler.dll 2022-08-11 19:15 - 2022-08-11 19:15 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUxToastHandler.dll 2019-12-07 11:09 - 2019-12-07 11:09 - 000072192 _____ C:\WINDOWS\system32\nettraceex.dll 2019-04-03 18:17 - 2013-07-12 07:03 - 000251392 ____C (brother) C:\WINDOWS\system32\NSSRH64.dll 2021-03-15 19:15 - 2021-03-15 19:15 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll 2022-09-14 14:22 - 2022-09-14 14:22 - 000724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\quickassist.exe 2021-07-09 17:28 - 2021-07-09 17:28 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll 2021-03-15 19:15 - 2021-03-15 19:15 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll 2017-09-29 15:41 - 2017-09-29 15:41 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\runscripthelper.exe 2022-06-04 23:57 - 2022-06-04 23:57 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScanPlugin.dll 2017-09-29 15:41 - 2017-09-29 15:41 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ServiceWorkerHost.exe 2022-06-04 23:57 - 2022-06-04 23:57 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BrowserDeclutter.dll 2021-03-15 19:15 - 2021-03-15 19:15 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_QuickActions.dll 2022-07-13 18:02 - 2022-07-13 18:02 - 000225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll 2017-09-29 15:41 - 2017-09-29 15:41 - 000173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe 2022-04-16 10:20 - 2022-04-16 10:20 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll 2019-12-07 11:08 - 2019-12-07 11:08 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateHeartbeat.dll 2022-05-16 17:04 - 2022-05-16 17:04 - 001413120 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2019-12-07 11:08 - 2019-12-07 11:08 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcManaged.dll 2017-09-29 15:41 - 2017-09-29 15:41 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\VrdUmed.dll 2017-09-29 15:41 - 2017-09-29 15:41 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedic.exe 2022-08-11 19:15 - 2022-08-11 19:15 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2017-09-29 15:41 - 2017-09-29 15:41 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Sets.dll 2022-06-04 23:56 - 2022-06-04 23:56 - 000258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll 2021-06-05 14:04 - 2021-06-05 14:04 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.Resource.dll 2022-06-04 23:57 - 2022-06-04 23:57 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Update.dll 2021-03-15 19:15 - 2021-03-15 19:15 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsInternal.ComposableShell.ComposerFramework.dll 2019-12-07 11:08 - 2019-12-07 11:08 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsInternal.ComposableShell.DesktopHosting.dll 2022-07-13 18:02 - 2022-07-13 18:02 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wutrust.dll 2022-09-14 14:22 - 2022-09-14 14:22 - 000454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhdrv.dll 2022-07-13 18:02 - 2022-07-13 18:02 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll 2021-06-05 14:06 - 2021-06-05 14:06 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\altspace.dll 2019-08-28 21:49 - 2010-03-15 19:45 - 000073728 ____C (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2.dll 2019-04-03 18:17 - 2007-12-13 22:16 - 000004608 ____C (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2L.dll 2019-08-28 21:49 - 2012-12-03 13:39 - 000002560 ____C (Brother Industries Ltd.) C:\WINDOWS\SysWOW64\BrDctF2S.dll 2017-09-29 15:42 - 2017-09-29 15:42 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreShellExtFramework.dll 2021-09-17 18:22 - 2021-09-17 18:22 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll 1999-09-09 13:28 - 1999-09-09 13:28 - 000446464 ____C (Blue Sky Software Corporation.) C:\WINDOWS\SysWOW64\HHActiveX.dll 2019-08-05 20:13 - 2002-01-05 05:48 - 000974848 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll 2000-04-04 11:52 - 2000-04-04 11:52 - 000094208 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstkprp.dll 2019-08-05 20:13 - 2002-01-05 04:37 - 000344064 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll 2019-08-28 21:49 - 2013-07-12 14:03 - 000214016 ____C (brother) C:\WINDOWS\SysWOW64\NSSearch.dll 2021-03-15 19:16 - 2021-03-15 19:16 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll 2022-09-14 14:22 - 2022-09-14 14:22 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quickassist.exe 2019-04-05 18:30 - 2019-05-05 13:45 - 000001536 ____C C:\WINDOWS\SysWOW64\RtkMsgs.dll 2022-07-13 18:02 - 2022-07-13 18:02 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll 2022-08-11 19:15 - 2022-08-11 19:15 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatializerApo.dll 2017-09-29 15:42 - 2017-09-29 15:42 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe 2017-09-29 15:42 - 2017-09-29 15:42 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tier2punctuations.dll 2022-07-13 18:02 - 2022-07-13 18:02 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wutrust.dll 2019-07-25 21:14 - 2022-06-24 08:35 - 002149184 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFUpdate_01009.dll 2020-04-24 21:11 - 2009-07-01 12:58 - 000148480 ____C (Paolo Gios - hxxp://www.paologios.com) C:\Users\adria\Desktop\GiosPSM(łączenie pdfów).exe ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== BCD ================================ Firmware Boot Manager --------------------- identifier {fwbootmgr} displayorder {bootmgr} {90f1f8b9-7804-11ea-8097-806e6f6e6963} {90f1f8ba-7804-11ea-8097-806e6f6e6963} {9c756120-d3cb-11ed-86ab-806e6f6e6963} timeout 0 Windows Boot Manager -------------------- identifier {bootmgr} device partition=D: path \EFI\Microsoft\Boot\bootmgfw.efi description Windows Boot Manager locale pl-PL inherit {globalsettings} default {current} resumeobject {c7b30c27-4685-11ed-899b-911b8ead0d7e} displayorder {current} toolsdisplayorder {memdiag} timeout 0 Firmware Application (101fffff) ------------------------------- identifier {90f1f8b9-7804-11ea-8097-806e6f6e6963} description Onboard NIC(IPV4) Firmware Application (101fffff) ------------------------------- identifier {90f1f8ba-7804-11ea-8097-806e6f6e6963} description Onboard NIC(IPV6) Firmware Application (101fffff) ------------------------------- identifier {9c756120-d3cb-11ed-86ab-806e6f6e6963} device partition=\Device\HarddiskVolume3 path \EFI\Microsoft\Boot\bootmgfw.efi description UEFI: KINGSTON SUV500M8240G, Partition 1 Windows Boot Loader ------------------- identifier {09c405cc-9ec4-11e5-9b46-5ce0c5654d7a} device ramdisk=[\Device\HarddiskVolume8]\sources\sos.wim,{492933ee-cd0d-11e1-9b66-d4bed91b7fc5} path \windows\system32\winload.efi description Dell SupportAssist locale en-US inherit {bootloadersettings} osdevice ramdisk=[\Device\HarddiskVolume8]\sources\sos.wim,{492933ee-cd0d-11e1-9b66-d4bed91b7fc5} systemroot \Windows nx OptIn bootmenupolicy Standard winpe Yes Windows Boot Loader ------------------- identifier {current} device partition=C: path \WINDOWS\system32\winload.efi description Windows 11 locale pl-PL inherit {bootloadersettings} recoverysequence {c7b30c29-4685-11ed-899b-911b8ead0d7e} displaymessageoverride Recovery recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {c7b30c27-4685-11ed-899b-911b8ead0d7e} nx OptIn bootmenupolicy Standard Windows Boot Loader ------------------- identifier {c7b30c29-4685-11ed-899b-911b8ead0d7e} device ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{c7b30c2a-4685-11ed-899b-911b8ead0d7e} path \windows\system32\winload.efi description Windows Recovery Environment locale pl-PL inherit {bootloadersettings} displaymessage Recovery osdevice ramdisk=[\Device\HarddiskVolume7]\Recovery\WindowsRE\Winre.wim,{c7b30c2a-4685-11ed-899b-911b8ead0d7e} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Resume from Hibernate --------------------- identifier {c7b30c27-4685-11ed-899b-911b8ead0d7e} device partition=C: path \WINDOWS\system32\winresume.efi description Windows Resume Application locale pl-PL inherit {resumeloadersettings} recoverysequence {c7b30c29-4685-11ed-899b-911b8ead0d7e} recoveryenabled Yes isolatedcontext Yes allowedinmemorysettings 0x15000075 filedevice partition=C: custom:21000026 partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Windows Memory Tester --------------------- identifier {memdiag} device partition=\Device\HarddiskVolume3 path \EFI\Microsoft\Boot\memtest.efi description Diagnostyka pamięci systemu Windows locale pl-PL inherit {globalsettings} badmemoryaccess Yes EMS Settings ------------ identifier {emssettings} bootems No Debugger Settings ----------------- identifier {dbgsettings} debugtype Local RAM Defects ----------- identifier {badmemory} Global Settings --------------- identifier {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} Boot Loader Settings -------------------- identifier {bootloadersettings} inherit {globalsettings} {hypervisorsettings} Hypervisor Settings ------------------- identifier {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 Resume Loader Settings ---------------------- identifier {resumeloadersettings} inherit {globalsettings} Device options -------------- identifier {492933ee-cd0d-11e1-9b66-d4bed91b7fc5} ramdisksdidevice partition=\Device\HarddiskVolume8 ramdisksdipath \sources\boot.sdi Device options -------------- identifier {c7b30c2a-4685-11ed-899b-911b8ead0d7e} description Windows Recovery ramdisksdidevice partition=\Device\HarddiskVolume7 ramdisksdipath \Recovery\WindowsRE\boot.sdi ==================== Koniec FRST.txt ========================