Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 01-08-2023 Uruchomiony przez BBB (administrator) KONN-PC (Gigabyte Technology Co., Ltd. GA-970A-DS3) (04-08-2023 06:20:08) Uruchomiony z C:\Users\BBB\Desktop\FRST64.exe Załadowane profile: BBB Platforma: Microsoft Windows 10 Pro Wersja 21H1 19043.2364 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Advanced Micro Devices Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.139\BraveCrashHandler.exe (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.139\BraveCrashHandler64.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe (C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe ->) (ATI Technologies Inc.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (C:\Program Files (x86)\Battle.net\Battle.net.exe ->) (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.8370\Agent.exe (C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe (C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe ->) (AMD) [Brak podpisu cyfrowego] C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe (C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe ->) (AMD) [Brak podpisu cyfrowego] C:\Program Files\AMD\Performance Profile Client\AUEPUF.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23062.153.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23062.153.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy.exe (DriverStore\FileRepository\c0346940.inf_amd64_0108ab6308500962\B346681\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0346940.inf_amd64_0108ab6308500962\B346681\atieclxx.exe (explorer.exe ->) (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe <3> (explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe (explorer.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe (explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (explorer.exe ->) (Syntek Ltd.) [Brak podpisu cyfrowego] C:\Windows\STK02N\STK02NM.exe (Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe (services.exe ->) () [Brak podpisu cyfrowego] C:\Program Files\Atomic Alarm Clock\timeserv.exe (services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0346940.inf_amd64_0108ab6308500962\B346681\atiesrxx.exe (services.exe ->) (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (services.exe ->) (AMD) [Brak podpisu cyfrowego] C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe (services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (services.exe ->) (Brother Industries, Ltd.) [Brak podpisu cyfrowego] C:\Program Files (x86)\Browny02\BrYNSvc.exe (services.exe ->) (Hot-World GmbH & Co. KG -> ) C:\Program Files (x86)\Repetier-Server\bin\RepetierServer.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files\Realtek\WifiAutoInstall\WifiAutoInstallSrv.exe (services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe (services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe (services.exe ->) (Shanghai Microvirt Software Technology Co., Ltd. -> ) C:\Program Files\Microvirt\MEmu\MemuService.exe (services.exe ->) (Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe (services.exe ->) (Sony) [Brak podpisu cyfrowego] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (svchost.exe ->) (ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-07] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [EasySettingBox] => C:\Program Files (x86)\Samsung\Easy Setting Box\EasySettingBox.exe [578048 2015-09-21] () [Brak podpisu cyfrowego] HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [589104 2017-04-08] (Acronis International GmbH -> ) HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [9831896 2022-05-10] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation -> Microsoft Corporation) HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2013-05-14] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4522496 2012-12-27] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-22] (Kilonova LLC -> ) HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2017-02-14] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5110240 2017-04-08] (Acronis International GmbH -> ) HKLM-x32\...\Run: [EasySettingBox] => *\Program Files (x86)\Samsung\Easy Setting Box\EasySettingBox.exe** *******￿￿￿￿****C:\WINDOWS\WinSxS\amd64_microsoft.vc90.crt_1fc (Brak pliku) HKLM\...\Policies\Explorer: [SettingsPageVisibility] hide:gaming-broadcasting;gaming-gamebar;gaming-gamedvr;gaming-gamemode;gaming-trueplay;gaming-xboxnetworking;cortana;maps;windowsdefender;crossdevice;holographic-audio HKLM\...\Policies\Explorer: [AllowOnlineTips] 0 HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA HKLM\Software\Policies\...\system: [EnableSmartScreen] 0 HKU\S-1-5-21-4012032049-3254648878-3231189217-1001\...\Run: [Gadwin PrintScreen (64-bit)] => C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen64.exe [14832344 2019-05-17] (Gadwin, Ltd. -> Gadwin, Ltd.) HKU\S-1-5-21-4012032049-3254648878-3231189217-1001\...\Run: [AtomicAlarmClock6] => C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe [5321728 2016-08-09] () [Brak podpisu cyfrowego] HKU\S-1-5-21-4012032049-3254648878-3231189217-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33264096 2021-08-07] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-4012032049-3254648878-3231189217-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4110568 2021-07-21] (Valve -> Valve Corporation) HKU\S-1-5-21-4012032049-3254648878-3231189217-1001\...\Run: [GalaxyClient] => [X] HKU\S-1-5-21-4012032049-3254648878-3231189217-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13980248 2022-05-21] (GOG Sp. z o.o. -> GOG.com) HKU\S-1-5-21-4012032049-3254648878-3231189217-1001\...\Run: [Samsung DeX] => C:\Program Files (x86)\Samsung\Samsung DeX\SamsungDeX.exe [10517160 2021-03-03] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) HKU\S-1-5-21-4012032049-3254648878-3231189217-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1090168 2023-07-27] (Blizzard Entertainment, Inc. -> Blizzard Entertainment) HKU\S-1-5-21-4012032049-3254648878-3231189217-1001\...\Run: [Microsoft Edge Update] => C:\Users\BBB\AppData\Local\Microsoft\EdgeUpdate\1.3.177.11\MicrosoftEdgeUpdateCore.exe [263648 2023-07-07] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-4012032049-3254648878-3231189217-1001\...\Run: [GoogleChromeAutoLaunch_3751846A254AC251E1444287767AD086] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [3219224 2023-08-01] (Google LLC -> Google LLC) HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized (Brak pliku) HKLM\...\Print\Monitors\novaPDF 10 Port Monitor: C:\Windows\system32\novamn10.dll [18944 2020-12-04] (Softland) [Brak podpisu cyfrowego] HKLM\Software\...\AppCompatFlags\Custom\S3.EXE: [{1673baf1-fccd-4fa6-a1a1-0ce069442897}.sdb] -> GOG.com The Settlers 3 HKLM\Software\...\AppCompatFlags\Custom\S3_multi.EXE: [{1673baf1-fccd-4fa6-a1a1-0ce069442897}.sdb] -> GOG.com The Settlers 3 HKLM\Software\...\AppCompatFlags\Custom\S4Editor.exe: [{7df9aee9-805b-4a69-b372-ea6022cb47ff}.sdb] -> GOG.com The Settlers 4 GOLD HKLM\Software\...\AppCompatFlags\Custom\S4_Main.exe: [{7df9aee9-805b-4a69-b372-ea6022cb47ff}.sdb] -> GOG.com The Settlers 4 GOLD HKLM\Software\...\AppCompatFlags\InstalledSDB\{1673baf1-fccd-4fa6-a1a1-0ce069442897}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{1673baf1-fccd-4fa6-a1a1-0ce069442897}.sdb [2020-12-17] HKLM\Software\...\AppCompatFlags\InstalledSDB\{7df9aee9-805b-4a69-b372-ea6022cb47ff}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{7df9aee9-805b-4a69-b372-ea6022cb47ff}.sdb [2020-12-19] HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\115.0.5790.170\Installer\chrmstp.exe [2023-08-02] (Google LLC -> Google LLC) HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\115.1.56.20\Installer\chrmstp.exe [2023-08-04] (Brave Software, Inc.) [Brak podpisu cyfrowego] Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\STK02N 2.4 PNP Monitor.lnk [2020-11-22] ShortcutTarget: STK02N 2.4 PNP Monitor.lnk -> C:\Windows\STK02N\STK02NM.exe (Syntek Ltd.) [Brak podpisu cyfrowego] GroupPolicy: Ograniczenia ? <==== UWAGA Policies: C:\ProgramData\NTUSER.pol: Ograniczenia <==== UWAGA ==================== Zaplanowane zadania (Wszystkie) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {B96C9A00-5031-44D0-901C-968FA5FDE44D} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-09-10] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] Task: {B87B2A0F-2A13-4A51-BAA2-726DD6F68488} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [275136 2021-12-02] (Bluestack Systems, Inc -> BlueStack Systems, Inc.) Task: {64F1A1A2-5640-4E2D-83BF-720A4F234FD6} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-08-08] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {0A590AD4-E084-408E-B121-EACDB1362A0D} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-08-08] (Brave Software, Inc. -> BraveSoftware Inc.) Task: {8B3CFBEC-B0FC-4FA2-9324-9C561C5ADAD8} - System32\Tasks\Core Temp Autostart BBB => C:\Program Files\Core Temp\Core Temp.exe [1011592 2019-08-30] (ALCPU -> ALCPU) Task: {9B78C76B-1EFF-457E-ABCA-EA107135A739} - System32\Tasks\CorelUpdateHelperTask-52C929DA7341B7AEC6674CCDAAD4AFC9 => C:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3827728 2022-10-21] (Corel Corporation -> Corel Corporation) Task: {6E0E4BA9-21E7-4752-AB32-3C8934FC58FE} - System32\Tasks\CorelUpdateHelperTaskCore => c:\Program Files (x86)\Corel\CUH\v2\CUH.exe [3827728 2022-10-21] (Corel Corporation -> Corel Corporation) Task: {5753B74A-4A30-4920-BFA0-6AF088752629} - System32\Tasks\doPDF 10 Telemetry => C:\Program Files\Softland\novaPDF 10\Driver\GoogleAnalytics.exe [51504 2020-12-04] (Softland SRL -> ) Task: {104ABED5-4CB6-4315-B29D-A1DB79B86C21} - System32\Tasks\doPDF 10 Update => C:\Program Files\Softland\novaPDF 10\Driver\UpdateApplication.exe [98096 2020-12-04] (Softland SRL -> ) Task: {F7B5537E-0EF5-4CB9-915C-F69DCE0B00AE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-03] (Google Inc -> Google LLC) Task: {F88D865E-0AA4-4C54-B2E1-87BD3B858875} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-11-03] (Google Inc -> Google LLC) Task: {BAF4B9A8-1B02-4B38-B231-7EA97230256B} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 => {84F0FAE1-C27B-4F6F-807B-28CF6F96287D} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [30184 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) Task: {D5A9F0F2-D7CA-4A2B-8871-C67F2CBEADF1} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 => {429BC048-379E-45E0-80E4-EB1977941B5C} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [30184 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) Task: {1D44DA44-C6A2-454A-AD76-389CB7AB7B77} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical => {613FBA38-A3DF-4AB8-9674-5604984A299A} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [30184 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) Task: {B750F9BA-94F7-495C-9AA5-9E0BFB0E1F63} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical => {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [30184 2019-12-07] (Microsoft Corporation -> Microsoft Corporation) Task: {F346D1E4-9974-4A5D-9E35-FE7079A30555} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated) => {CF2CF428-325B-48D3-8CA8-7633E36E5A32} C:\WINDOWS\system32\msdrm.dll [570368 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {8E33F0A3-A31E-4E6C-AFF7-844A27E761B7} - System32\Tasks\Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual) => {BF5CB148-7C77-4D8A-A53E-D81C70CF743C} C:\WINDOWS\system32\msdrm.dll [570368 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {5B885149-AF43-451C-A12F-0CD1E0A34023} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager => {DECA92E0-AF85-439E-9204-86679978DA08} C:\WINDOWS\System32\AppLockerCsp.dll [390144 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {4EBE9A38-6BE4-429E-8588-B460327DB327} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\WINDOWS\system32\appidpolicyconverter.exe [160768 2022-09-15] (Microsoft Windows -> Microsoft Corporation) Task: {7A27D6E9-CB10-42F6-B75D-A53F78486290} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\WINDOWS\system32\appidcertstorecheck.exe [49152 2022-09-15] (Microsoft Windows -> Microsoft Corporation) Task: {7A5AFDB2-56EC-4352-AB44-069E7BF253A8} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\WINDOWS\system32\compattelrunner.exe [160056 2021-09-18] (Microsoft Windows -> Microsoft Corporation) Task: {2134932A-989C-4AB6-AE13-52E6267C5BDF} - System32\Tasks\Microsoft\Windows\Application Experience\PcaPatchDbTask => C:\Windows\system32\rundll32.exe [71680 2021-01-17] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\PcaSvc.dll,PcaPatchSdbTask Task: {73469C3A-0B60-4A11-AD8A-FC67A901B741} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\WINDOWS\system32\compattelrunner.exe [160056 2021-09-18] (Microsoft Windows -> Microsoft Corporation) Task: {3D363385-64B8-4207-AC46-3EE180DD87F2} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => C:\Windows\system32\rundll32.exe [71680 2021-01-17] (Microsoft Windows -> Microsoft Corporation) -> Startupscan.dll,SusRunTask Task: {B5108B49-C39A-43DE-AC49-06155873BAE9} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [120320 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {BA366117-6A44-44F3-9BAA-09C4ADA110CC} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [120320 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {E003BEA4-7D11-4522-9834-25C3F9F93F53} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => C:\Windows\system32\rundll32.exe [71680 2021-01-17] (Microsoft Windows -> Microsoft Corporation) -> Windows.Storage.ApplicationData.dll,CleanupTemporaryState Task: {F472261A-A57A-465B-A695-5F2E75E37782} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\WINDOWS\system32\dstokenclean.exe [13312 2020-11-07] (Microsoft Windows -> Microsoft Corporation) Task: {AACF04CD-852D-413B-A6B7-F9B0265423FC} - System32\Tasks\Microsoft\Windows\AppListBackup\Backup => {E0DCC2CC-3354-45F2-8914-519E07809082} C:\WINDOWS\system32\AppListBackupLauncher.dll [92672 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {C9ABE41C-5E65-4E52-8BAD-4F1BCA3B5715} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => C:\Windows\system32\rundll32.exe [71680 2021-01-17] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask Task: {36A78C3E-A142-4F86-903E-AE26291F646C} - System32\Tasks\Microsoft\Windows\Autochk\Proxy => C:\Windows\system32\rundll32.exe [71680 2021-01-17] (Microsoft Windows -> Microsoft Corporation) -> /d acproxy.dll,PerformAutochkOperations Task: {34ADEFE8-89DB-43BC-8C0B-14BB34D69F6D} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2021-06-10] (Microsoft Windows -> Microsoft Corporation) Task: {87094343-6C1F-4855-A6B9-305BA74AB761} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2021-06-10] (Microsoft Windows -> Microsoft Corporation) Task: {AB05B368-13F7-468A-9B30-E553C06B5449} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\system32\BthUdTask.exe [40448 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {077333D6-06BA-4EA4-BDF4-1CD1439558F2} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask => {E984D939-0E00-4DD9-AC3A-7ACA04745521} Task: {F0BE4F3E-F4F0-4B98-88EE-57290DDF6CB2} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\AikCertEnrollTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [256512 2022-03-12] (Microsoft Windows -> Microsoft Corporation) Task: {F67BF9CD-2696-4F2D-9D78-BB8C84A53C1E} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\CryptoPolicyTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [256512 2022-03-12] (Microsoft Windows -> Microsoft Corporation) Task: {2F63CF7F-0537-4E2A-9F8A-B763EFE907F5} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\KeyPreGenTask => {47E30D54-DAC1-473A-AFF7-2355BF78881F} C:\WINDOWS\system32\ngctasks.dll [256512 2022-03-12] (Microsoft Windows -> Microsoft Corporation) Task: {50DDDD38-168C-486B-966F-A23226488295} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\SystemTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [44544 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {0EDEA23A-3DEC-41C3-B03E-BC7A3356D6BC} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [44544 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {78FC1447-DCFF-4832-A268-0ABA89022F48} - System32\Tasks\Microsoft\Windows\CertificateServicesClient\UserTask-Roam => {58FB76B9-AC85-4E55-AC04-427593B1D060} C:\WINDOWS\system32\dimsjob.dll [44544 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {57C76B66-AD3C-4221-81FA-55045859B06F} - System32\Tasks\Microsoft\Windows\Chkdsk\ProactiveScan => {CF4270F5-2E43-4468-83B3-A8C45BB33EA1} C:\Windows\System32\pstask.dll [16384 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {3FC4BE91-4A96-48F5-8858-1628CB88EFB5} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\WINDOWS\system32\bcdboot.exe [248320 2021-09-18] (Microsoft Windows -> Microsoft Corporation) -> %windir% /sysrepair Task: {5B0ED9ED-6704-45F8-B8C1-93C5A3B5F4FF} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\WINDOWS\system32\ClipUp.exe [1129616 2022-12-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {CFE1DC02-B9CA-4AFB-81EB-495900D5138E} - System32\Tasks\Microsoft\Windows\Clip\LicenseImdsIntegration => C:\WINDOWS\system32\fclip.exe [444704 2022-12-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {12514C9A-1DE5-40CE-B66C-D6838DA9A169} - System32\Tasks\Microsoft\Windows\CloudExperienceHost\CreateObjectTask => {E4544ABA-62BF-4C54-AAB2-EC246342626C} C:\Windows\System32\CloudExperienceHostBroker.exe [68920 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {ED77AEE0-EAFB-4133-B544-9E7C5632D902} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\WINDOWS\System32\wsqmcons.exe [112640 2022-05-13] (Microsoft Windows -> Microsoft Corporation) Task: {7572B7F9-BE9D-43BF-9A4E-F82023EDBD33} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\UsbCeip => {C27F6B1D-FE0B-45E4-9257-38799FA69BC8} C:\WINDOWS\System32\usbceip.dll [119808 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {304D2127-E6ED-4C82-B9B3-63B3B54A4D66} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Check And Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [316928 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {90F68E39-00DE-4159-BCDB-5C5759A5CF53} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [316928 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {EAD9ED20-AC69-4E97-8CCB-E8F62CA707B3} - System32\Tasks\Microsoft\Windows\Data Integrity Scan\Data Integrity Scan for Crash Recovery => {DCFD3EA8-D960-4719-8206-490AE315F94F} C:\Windows\System32\discan.dll [316928 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {07EA2630-B8E6-4EB0-A5D0-80A27F137B65} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => C:\WINDOWS\system32\defrag.exe [210432 2021-01-17] (Microsoft Windows -> Microsoft Corp.) Task: {4F41B4A1-8822-4B02-90CD-202A0099FFAE} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\WINDOWS\system32\devicecensus.exe [58736 2022-03-12] (Microsoft Windows -> Microsoft Corporation) Task: {F278A444-BDB4-4CD1-A2F0-7A2284C32800} - System32\Tasks\Microsoft\Windows\Device Information\Device User => C:\WINDOWS\system32\devicecensus.exe [58736 2022-03-12] (Microsoft Windows -> Microsoft Corporation) Task: {082F4875-D88C-40EA-8706-87480962C446} - System32\Tasks\Microsoft\Windows\Device Setup\Metadata Refresh => {23C1F3CF-C110-4512-ACA9-7B6174ECE888} C:\WINDOWS\System32\DeviceSetupManagerAPI.dll [162816 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {9D87DBE9-E563-4708-A9E9-1A6EE5951EC2} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {0016B09F-CFDA-4F5B-A70B-84A75599B89B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {61B4D08B-1B23-4CC8-869E-CF0B7996EF5F} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\IntegrityCheck => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {6AAEEF1D-9661-4720-B127-27C975871238} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {9ECD9F35-130A-4C0C-A551-9D3335B165D7} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceAccountChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {EA82AA60-4BB0-41D9-AA1A-D64D739F55DE} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {5E0DF2C3-3D26-4759-9E02-FB7F4DCD159B} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePeriodic24 => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {114EC267-55F2-45DA-9AB6-B98CA9DC0D01} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {AF73DAAA-53AE-4CC8-8671-BE29D886B057} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {C660D735-E9F2-4190-9B4E-97ADF1AFFA16} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceSettingChange => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {98CCE3DB-052B-4E85-BC73-B43C79358CC1} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {A2FFCE6E-7F06-494A-8C84-6EFCAEB075BB} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterUserDevice => {AE31B729-D5FD-401E-AF42-784074835AFE} C:\WINDOWS\system32\DeviceDirectoryClient.dll [287744 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {92B5048A-12A2-4C85-8394-18006809C0BE} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner => {AD08DCC2-4E35-4486-9D49-547CBD30942D} C:\WINDOWS\System32\MitigationClient.dll [487936 2022-06-18] (Microsoft Windows -> Microsoft Corporation) Task: {C3944556-15CF-467E-89E2-29D4BFD3EC5A} - System32\Tasks\Microsoft\Windows\Diagnosis\Scheduled => {C1F85EF8-BCC2-4606-BB39-70C523715EB3} C:\WINDOWS\System32\sdiagschd.dll [68096 2022-08-12] (Microsoft Windows -> Microsoft Corporation) Task: {55B1C85E-5BEF-4EDB-ADD0-ECEAEF261E7C} - System32\Tasks\Microsoft\Windows\DirectX\DirectXDatabaseUpdater => C:\WINDOWS\system32\directxdatabaseupdater.exe [286208 2022-10-12] (Microsoft Windows -> Microsoft Corporation) Task: {0CBABB27-6DFC-4155-BAE7-AE919B92FEF2} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\WINDOWS\system32\dxgiadaptercache.exe [236032 2022-10-12] (Microsoft Windows -> Microsoft Corporation) Task: {6AA2E298-C47C-45AE-BF6F-E2D9A555345C} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\WINDOWS\system32\cleanmgr.exe [299008 2021-10-15] (Microsoft Windows -> Microsoft Corporation) -> /autoclean /d %systemdrive% Task: {B97C7632-DD50-4F07-8E4E-F1450795BF78} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector => C:\Windows\system32\rundll32.exe [71680 2021-01-17] (Microsoft Windows -> Microsoft Corporation) -> dfdts.dll,DfdGetDefaultPolicyAndSMART Task: {3A4032F6-6063-4D54-BAE3-F8A4A5110CDA} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver => C:\WINDOWS\system32\DFDWiz.exe [54784 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {C9EC268B-1D36-4AF0-A1EB-2C1BC3B455D9} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\WINDOWS\system32\disksnapshot.exe [85504 2021-07-09] (Microsoft Windows -> Microsoft Corporation) Task: {117E2D01-1275-4560-90E9-A34BB4EE69A3} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense => {AB2A519B-03B0-43CE-940A-A73DF850B49A} C:\WINDOWS\system32\StorageUsage.dll [161792 2022-08-12] (Microsoft Windows -> Microsoft Corporation) Task: {69D15B8E-729C-4C1C-A0E7-6DCA5E963E60} - System32\Tasks\Microsoft\Windows\DUSM\dusmtask => C:\WINDOWS\System32\dusmtask.exe [40960 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {EF4B8F07-FA4B-4CD0-84BC-4A758127E3DD} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2021-06-10] (Microsoft Windows -> Microsoft Corporation) Task: {3789A597-BD62-4A2F-8F57-AE2D504E0E98} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2021-06-10] (Microsoft Windows -> Microsoft Corporation) Task: {0E2DCCB3-7B11-40CF-B973-90F22732E317} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2021-06-10] (Microsoft Windows -> Microsoft Corporation) Task: {66A3F618-0C70-4F70-9BBA-735CCDB43A09} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task => {61BCD1B9-340C-40EC-9D41-D7F1C0632F05} C:\WINDOWS\System32\edptask.dll [72192 2021-06-10] (Microsoft Windows -> Microsoft Corporation) Task: {B9E96119-515B-4D19-8357-D54B747395AD} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\WINDOWS\system32\MDMAgent.exe [155648 2022-11-11] (Microsoft Windows -> Microsoft Corporation) Task: {F8FEDA28-6261-4385-844A-684E6C988577} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh => {711001CD-CC1D-4470-9B7E-1EF73849C79E} C:\WINDOWS\System32\MitigationConfiguration.dll [86528 2022-03-12] (Microsoft Windows -> Microsoft Corporation) Task: {92FFE795-C628-4324-AB97-06F804352DB6} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\WINDOWS\system32\dmclient.exe [120320 2021-09-18] (Microsoft Windows -> Microsoft Corporation) Task: {7617E03F-109E-435B-9B4C-0282CD5BE4A9} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload => C:\WINDOWS\system32\dmclient.exe [120320 2021-09-18] (Microsoft Windows -> Microsoft Corporation) Task: {ABD732A1-2D52-44EB-982A-A43D8B61ABA0} - System32\Tasks\Microsoft\Windows\File Classification Infrastructure\Property Definition Sync => {2AE64751-B728-4D6B-97A0-B2DA2E7D2A3B} C:\Windows\System32\srmclient.dll [1349120 2022-04-14] (Microsoft Windows -> Microsoft Corporation) Task: {2EE7F450-D2B6-4D5E-AFE0-A8699149E79E} - System32\Tasks\Microsoft\Windows\FileHistory\File History (maintenance mode) => {89917B7C-A1A6-11DF-8BF6-18A90531A85A} C:\WINDOWS\System32\fhtask.dll [61952 2021-07-16] (Microsoft Windows -> Microsoft Corporation) Task: {FF6DA7FB-0D90-4B00-B830-ACC4ACD434B9} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures => {59EECBFE-C2F5-4419-9B99-13FE05FF2675} C:\Windows\System32\fcon.dll [265728 2022-06-18] (Microsoft Windows -> Microsoft Corporation) Task: {611FB507-BE0E-4F96-A4ED-F42592D1E359} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataFlushing => {99EFDAD1-0F11-4A6B-A702-4E1C37D1A3EF} C:\Windows\System32\fcon.dll [265728 2022-06-18] (Microsoft Windows -> Microsoft Corporation) Task: {6EEF939C-9D79-4A4D-BA36-43E49A7CA61C} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\UsageDataReporting => {BBFCD054-8AAC-45DE-A1EB-7B246C9028AF} C:\Windows\System32\fcon.dll [265728 2022-06-18] (Microsoft Windows -> Microsoft Corporation) Task: {4F2030CE-BA8E-4122-B9A8-29AA5858973E} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache => {E07647F7-AED2-48D9-9720-939BC24A8A3C} C:\Windows\System32\wosc.dll [273920 2022-04-14] (Microsoft Windows -> Microsoft Corporation) Task: {12DF3F8A-9612-48CA-AE38-2818FA70CA73} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [510464 2022-08-12] (Microsoft Windows -> ) Task: {CADF1293-5495-426F-8E37-A30F69274AF4} - System32\Tasks\Microsoft\Windows\Input\LocalUserSyncDataAvailable => {8E7C2AFB-72B9-415C-9AC2-5037693309B7} C:\Windows\System32\InputCloudStore.dll [154112 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {DA42085F-11E4-4EE1-A363-1898204812F5} - System32\Tasks\Microsoft\Windows\Input\MouseSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [154112 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {4A0DEFDA-A2B8-4736-88E1-A578E00D9704} - System32\Tasks\Microsoft\Windows\Input\PenSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [154112 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {7C4733D2-81D6-4CA3-B30C-E00B496B9857} - System32\Tasks\Microsoft\Windows\Input\TouchpadSyncDataAvailable => {378EAB97-EFD6-4ED5-9AD9-E64A6AA1E6FA} C:\Windows\System32\InputCloudStore.dll [154112 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {A08D6A77-C926-4E78-9ED0-09836E2769AE} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates => {A558C6A5-B42B-4C98-B610-BF9559143139} C:\Windows\System32\InstallServiceTasks.dll [230400 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {A2FADBDF-6855-42F7-BDFC-F0C510EDA9BC} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser => {DDAFAEA2-8842-4E96-BADE-D44A8D676FDB} C:\Windows\System32\InstallServiceTasks.dll [230400 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {44AF7ADA-1C0D-43B1-A063-9E7581F7730B} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry => {F3A219C3-2698-4CBF-9C07-037EDB8E72E6} C:\Windows\System32\InstallServiceTasks.dll [230400 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {9B29B882-A95C-438B-BF91-E7C31B1D82D1} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates => {0DC331EE-8438-49D5-A721-E10B937CE459} C:\Windows\System32\InstallServiceTasks.dll [230400 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {EC3EFE4E-A2E4-4C66-975C-CA2EFD0D42CD} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates => {D5A04D91-6FE6-4FE4-A98A-FEB4500C5AF7} C:\Windows\System32\InstallServiceTasks.dll [230400 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {A60D9ECB-A6F4-4FE1-9BD7-B049487A67E7} - System32\Tasks\Microsoft\Windows\International\Synchronize Language Settings => {10D62541-90D0-42FE-848C-0DBC1AC42EDA} C:\Windows\System32\CoreGlobConfig.dll [215896 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {7A7B60AA-BA42-409F-BC97-7BCFEFAD6308} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Installation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [181248 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {A499FA48-7057-4AC1-9702-44C6FD924058} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources => {D0582E3B-3126-4CAA-9155-AC37C912A489} Task: {9520602D-5D35-49BC-B397-5251EC6364E8} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\Uninstallation => {6F58F65F-EC0E-4ACA-99FE-FC5A1A25E4BE} C:\Windows\System32\LanguageComponentsInstaller.dll [181248 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {A28E2F31-2C6D-426C-A2AC-2F9F6952D916} - System32\Tasks\Microsoft\Windows\License Manager\TempSignedLicenseExchange => {77646A68-AD14-4D53-897D-7BE4DDE5F929} C:\Windows\System32\TempSignedLicenseExchangeTask.dll [74752 2020-11-07] (Microsoft Windows -> Microsoft Corporation) Task: {E88D9B2C-DDEA-47B2-9582-085153004DB5} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\WINDOWS\System32\LocationNotificationWindows.exe [71168 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {E32B86AB-ABAA-45A7-9BE7-9BB2E6B7837D} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\WINDOWS\System32\WindowsActionDialog.exe [62464 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {6F063424-E8AD-40FA-92B9-CD047EC2A92A} - System32\Tasks\Microsoft\Windows\Maintenance\WinSAT => {A9A33436-678B-4C9C-A211-7CC38785E79D} C:\WINDOWS\system32\WinSATAPI.dll [377344 2021-11-11] (Microsoft Windows -> Microsoft Corporation) Task: {CCE57083-3D3E-4288-9389-D7624C4F3082} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [203264 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {6973915E-13D6-422E-992E-52DD58C2391F} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [203264 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {E38739C8-A84F-4F9B-8913-DCA75BC35C79} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular => C:\WINDOWS\system32\ProvTool.exe [87040 2022-08-12] (Microsoft Windows -> Microsoft Corporation) Task: {80436C26-BC19-4930-9051-F06F0E0BA960} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Logon => C:\WINDOWS\system32\ProvTool.exe [87040 2022-08-12] (Microsoft Windows -> Microsoft Corporation) Task: {2AD5F8AE-8128-49DD-AB67-7D9052D0C609} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Retry => C:\WINDOWS\system32\ProvTool.exe [87040 2022-08-12] (Microsoft Windows -> Microsoft Corporation) Task: {E91D1CC3-09DF-45F0-8208-474AEE6B0A16} - System32\Tasks\Microsoft\Windows\Management\Provisioning\RunOnReboot => C:\WINDOWS\system32\ProvTool.exe [87040 2022-08-12] (Microsoft Windows -> Microsoft Corporation) Task: {701473A3-4C61-4063-AAC6-871E22A29FE7} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask => {9885AEF2-BD9F-41E0-B15E-B3141395E803} C:\WINDOWS\System32\mapstoasttask.dll [53760 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {E577C99D-E5DD-43E8-9E9F-2D291B431572} - System32\Tasks\Microsoft\Windows\Maps\MapsUpdateTask => {B9033E87-33CF-4D77-BC9B-895AFBBA72E4} C:\WINDOWS\System32\mapsupdatetask.dll [45568 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {78E96733-DDEF-4FB9-AD45-FC553EFC4CFD} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\WINDOWS\System32\MemoryDiagnostic.dll [33792 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {29903646-8B95-441C-AE59-CC43C0C76FF5} - System32\Tasks\Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic => {8168E74A-B39F-46D8-ADCD-7BED477B80A3} C:\WINDOWS\System32\MemoryDiagnostic.dll [33792 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe [119296 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {6EE3AFA8-CBB1-4E6E-B0B4-ABFF3127206C} - System32\Tasks\Microsoft\Windows\MUI\LPRemove => C:\WINDOWS\system32\lpremove.exe [72704 2020-11-07] (Microsoft Windows -> Microsoft Corporation) Task: {9486DC81-1119-4559-9110-1A771DEC137A} - System32\Tasks\Microsoft\Windows\Multimedia\SystemSoundsService => {2DEA658F-54C1-4227-AF9B-260AB5FC3543} C:\WINDOWS\System32\PlaySndSrv.dll [90112 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {3A6DB6F9-A355-420A-B6E0-7C54D12F4033} - System32\Tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo => C:\WINDOWS\system32\gatherNetworkInfo.vbs [88781 2019-12-07] (Microsoft Windows -> ) Task: {C34E99FC-E9DA-45EE-AF9B-77AAD0B1B25F} - System32\Tasks\Microsoft\Windows\NlaSvc\WiFiTask => C:\WINDOWS\System32\WiFiTask.exe [132408 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {F9B4828D-4332-47CE-800C-424D9E9FA7EA} - System32\Tasks\Microsoft\Windows\Offline Files\Background Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\WINDOWS\System32\cscui.dll [820736 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {F5FC7E3B-649D-4B44-B707-08049E1DC537} - System32\Tasks\Microsoft\Windows\Offline Files\Logon Synchronization => {FA3F3DD9-4C1A-456B-A8FA-C76EF3ED83B8} C:\WINDOWS\System32\cscui.dll [820736 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {AAE4A09B-2A9A-4459-8078-98FA6265AF7F} - System32\Tasks\Microsoft\Windows\PI\Secure-Boot-Update => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [297472 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {FB09E21D-A58E-4797-94AC-04234895966E} - System32\Tasks\Microsoft\Windows\PI\Sqm-Tasks => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [297472 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {C0467AB3-5004-4E13-BD2C-8DDF2AB880B5} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Group Policy => {60400283-B242-4FA8-8C25-CAF695B88209} C:\Windows\System32\pnppolicy.dll [63488 2022-04-14] (Microsoft Windows -> Microsoft Corporation) Task: {4E3AEDFB-B76C-4C12-A54F-3BD72A10C434} - System32\Tasks\Microsoft\Windows\Plug and Play\Device Install Reboot Required => {48794782-6A1F-47B9-BD52-1D5F95D49C1B} C:\Windows\System32\pnpui.dll [49664 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {DF27E6F5-E07E-4744-981B-BB5BC982261C} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\WINDOWS\System32\drvinst.exe [332288 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {D9353C30-D505-4F11-8F95-55F3DDA1E214} - System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem => {927EA2AF-1C54-43D5-825E-0074CE028EEE} C:\WINDOWS\System32\energytask.dll [26624 2021-06-10] (Microsoft Windows -> Microsoft Corporation) Task: {35525E8D-FD60-47BF-8D11-FA4F778C57C3} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\WINDOWS\system32\eduprintprov.exe [100352 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {3B7EC18E-33DD-4C54-9E7C-62CA321E39C4} - System32\Tasks\Microsoft\Windows\Printing\PrinterCleanupTask => {C56F065E-DE49-4E42-BE7C-305C45609D25} C:\WINDOWS\System32\PrinterCleanupTask.dll [86528 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {A74EF9D1-6D6B-4566-8E25-782430F970E5} - System32\Tasks\Microsoft\Windows\PushToInstall\LoginCheck => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start pushtoinstall login Task: {4BCE6391-0B05-40B4-B642-910B37FB1CE6} - System32\Tasks\Microsoft\Windows\PushToInstall\Registration => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start pushtoinstall registration Task: {C0E197F6-2E40-46FD-83DA-BE8704EF2CE5} - System32\Tasks\Microsoft\Windows\Ras\MobilityManager => {C463A0FC-794F-4FDF-9201-01938CEACAFA} C:\WINDOWS\system32\rasmbmgr.dll [61952 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {F0FCA53B-F391-48AD-91F6-D1994846E55E} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE => {89D1D0C2-A3CF-490C-ABE3-B86CDE34B047} C:\WINDOWS\System32\ReAgentTask.dll [13824 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {00446CF1-8668-472D-BEDD-D0BB88DBA009} - System32\Tasks\Microsoft\Windows\Registry\RegIdleBackup => {CA767AA8-9157-4604-B64B-40747123D5F2} C:\WINDOWS\System32\regidle.dll [15872 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {CC4F585B-EBBB-4AA6-9BDF-B28C489A9125} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\WINDOWS\system32\RAServer.exe [135168 2021-07-16] (Microsoft Windows -> Microsoft Corporation) Task: {8627F38D-3BB5-45A5-AAE5-B8735A41B62D} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => {752073A1-23F2-4396-85F0-8FDB879ED0ED} Task: {E51EADD7-C4F7-43E7-A9CB-FEC8EC1E204F} - System32\Tasks\Microsoft\Windows\SettingSync\BackgroundUploadTask => {59B9640B-3F70-4D1C-B159-F26EEB8A4C87} C:\WINDOWS\system32\SettingSyncCore.dll [1130496 2022-11-11] (Microsoft Windows -> Microsoft Corporation) Task: {7445D17B-89AB-43F3-B904-4DD68B19A6F2} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask => {A4173A49-F373-4475-9A0F-2D615204DC20} C:\WINDOWS\system32\SettingSyncCore.dll [1130496 2022-11-11] (Microsoft Windows -> Microsoft Corporation) Task: {8ACB53D9-7A3B-41B2-8448-52A927F42C4E} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask => {7C83C056-1D0D-4C8E-A6B0-89E79C213559} C:\WINDOWS\system32\oobe\SetupCleanupTask.dll [327168 2021-10-15] (Microsoft Windows -> Microsoft Corporation) Task: {505631B2-F92A-4E78-9401-3532BB8489CB} - System32\Tasks\Microsoft\Windows\Setup\SnapshotCleanupTask => C:\Windows\System32\OOBE\SetupPlatform\SetupPlatform.exe [271160 2020-10-08] (Microsoft Windows -> Microsoft Corporation) Task: {8DB27523-093D-4B93-A00B-68F6317DFAE1} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => C:\Windows\system32\rundll32.exe [71680 2021-01-17] (Microsoft Windows -> Microsoft Corporation) -> %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance Task: {EC95F45C-0486-40E1-8938-20FE3E377E7D} - System32\Tasks\Microsoft\Windows\Shell\CreateObjectTask => {990A9F8F-301F-45F7-8D0E-68C5952DBA43} C:\WINDOWS\system32\shell32.dll [7650440 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {DFDC1B83-7FD3-4C77-8CD1-7391D1680ACA} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\WINDOWS\System32\wpcmon.exe [1173472 2022-03-12] (Microsoft Windows -> Microsoft Corporation) Task: {CD0446AF-D5F6-4616-85CE-058C20FCE9EC} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask => {C844C79D-AED8-4DCE-AB25-4D359BED84F8} C:\WINDOWS\System32\WpcRefreshTask.dll [1034240 2022-06-18] (Microsoft Windows -> Microsoft Corporation) Task: {C483CE25-B1C5-4BEB-AA31-5CADC8C66692} - System32\Tasks\Microsoft\Windows\Shell\IndexerAutomaticMaintenance => {3FBA60A6-7BF5-4868-A2CA-6623B3DFFEA6} C:\WINDOWS\System32\srchadmin.dll [218112 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {7028AC02-1E8B-4C84-AF14-73E95BC26985} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:\WINDOWS\System32\Themes.SsfDownload.ScheduledTask.dll [141824 2022-07-15] (Microsoft Windows -> Microsoft Corporation) Task: {008539BF-83F9-4483-9E0A-EEEE6EAC0A08} - System32\Tasks\Microsoft\Windows\Shell\UpdateUserPictureTask => {09C5DD34-009D-40FA-BCB9-0165AD0C15D4} C:\Windows\System32\Windows.UI.Immersive.dll [1262080 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {2DFC28A5-3035-4555-A9E6-CE6D44EB1DB3} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [608768 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {892625FE-213B-4B60-95ED-A1CEFCAA365D} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskLogon => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [608768 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {3AB082DC-B77E-4487-BB5D-5DCB3A6C2B3C} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTaskNetwork => {B1AEBB5D-EAD9-4476-B375-9C3ED9F32AFC} C:\WINDOWS\System32\sppcext.dll [608768 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {A9C498D6-046E-407B-A5B5-597DFC8756D9} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\WINDOWS\system32\SpaceAgent.exe [165376 2020-11-07] (Microsoft Windows -> Microsoft Corporation) Task: {AFEE5D15-0E83-432F-9DB0-58A2702115E1} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceManagerTask => C:\WINDOWS\system32\spaceman.exe [80752 2022-03-12] (Microsoft Windows -> Microsoft Corporation) Task: {06B09744-BD99-4A33-9562-3C8DE0808B89} - System32\Tasks\Microsoft\Windows\Speech\HeadsetButtonPress => C:\WINDOWS\system32\speech_onecore\common\SpeechRuntime.exe [305664 2022-03-12] (Microsoft Windows -> Microsoft Corporation) Task: {4D595DA6-BC59-47AE-A527-EC01FCE2E615} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\WINDOWS\system32\speech_onecore\common\SpeechModelDownload.exe [182272 2022-04-14] (Microsoft Windows -> Microsoft Corporation) Task: {58CCC4DA-C86D-4E3D-8FAF-A7B24D8F3950} - System32\Tasks\Microsoft\Windows\StateRepository\MaintenanceTasks => C:\Windows\system32\rundll32.exe [71680 2021-01-17] (Microsoft Windows -> Microsoft Corporation) -> %windir%\system32\Windows.StateRepositoryClient.dll,StateRepositoryDoMaintenanceTasks Task: {D777B567-BB3B-4111-881C-0CB741022B0C} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Management Initialization => {5C9AB547-345D-4175-9AF6-65133463A100} C:\Windows\System32\TieringEngineService.exe [326144 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {FC3767EA-5307-4D11-BA38-EB21A39737D7} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization => C:\WINDOWS\system32\defrag.exe [210432 2021-01-17] (Microsoft Windows -> Microsoft Corp.) Task: {67FBD64E-9591-4AB7-9950-E9794C54D390} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [190288 2022-09-15] (Microsoft Windows -> Microsoft Corporation) Task: {38CBBEEE-407D-47AE-969C-E32D0EEE1933} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [190288 2022-09-15] (Microsoft Windows -> Microsoft Corporation) Task: {64614AC8-EA46-476D-A71C-2C0B055C95CC} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate => {17C82257-654E-4C47-8E23-DCA24EAA76A0} C:\WINDOWS\system32\sysmain.dll [1005568 2021-09-18] (Microsoft Windows -> Microsoft Corporation) Task: {236EEE35-EDD5-418B-BCD5-293F6FAD7966} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance => {D44377B8-1F2F-4FAA-9C8E-6C4AD2928E47} C:\WINDOWS\system32\sysmain.dll [1005568 2021-09-18] (Microsoft Windows -> Microsoft Corporation) Task: {051DF697-AF10-4DB6-9B93-E1A4E35F00F7} - System32\Tasks\Microsoft\Windows\Sysmain\ResPriStaticDbSync => {297EE78C-BA95-4E94-81D3-D6E7F089C7B5} C:\WINDOWS\system32\sysmain.dll [1005568 2021-09-18] (Microsoft Windows -> Microsoft Corporation) Task: {638672E6-20F1-499D-BFCC-9EA7935257C4} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => C:\Windows\system32\rundll32.exe [71680 2021-01-17] (Microsoft Windows -> Microsoft Corporation) -> sysmain.dll,PfSvWsSwapAssessmentTask Task: {20546688-8F7B-4B82-8429-7E7E4F537E96} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\WINDOWS\system32\srtasks.exe [59392 2020-11-07] (Microsoft Windows -> Microsoft Corporation) Task: {7BE5585E-0190-458B-9CEC-F4076574C717} - System32\Tasks\Microsoft\Windows\Task Manager\Interactive => {855FEC53-D2E4-4999-9E87-3414E9CF0FF4} C:\WINDOWS\system32\wdc.dll [739840 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {88CE6B8C-B14B-499A-8D43-214F06116F07} - System32\Tasks\Microsoft\Windows\TextServicesFramework\MsCtfMonitor => {01575CFE-9A55-4003-A5E1-F38D1EBDCBE1} C:\WINDOWS\system32\MsCtfMonitor.dll [96256 2020-11-07] (Microsoft Windows -> Microsoft Corporation) Task: {F5E862B9-98AE-458E-BC87-3ED25EFBB4D3} - System32\Tasks\Microsoft\Windows\Time Synchronization\ForceSynchronizeTime => {A31AD6C2-FF4C-43D4-8E90-7101023096F9} C:\WINDOWS\system32\TimeSyncTask.dll [15360 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {1FDAEDB1-C8AA-43FA-B046-3CDDDA12661E} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start w32time task_started Task: {C4C11C95-C597-4541-B0FF-0FB2C761FC92} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\WINDOWS\system32\tzsync.exe [70144 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {8A43AE7B-C54A-405B-913A-945A0AF2CA8F} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [297472 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {15E69FB7-BC19-4737-A3DF-0700D3959249} - System32\Tasks\Microsoft\Windows\TPM\Tpm-Maintenance => {5014B7C8-934E-4262-9816-887FA745A6C4} C:\WINDOWS\system32\TpmTasks.dll [297472 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {CAB76809-EDC0-40D2-A888-AD9BEDF4E88A} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => C:\WINDOWS\System32\UNP\UpdateNotificationMgr.exe [463232 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {20057D58-5705-4FFD-A201-27748B9E4B11} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Backup Scan => C:\WINDOWS\system32\usoclient.exe [90624 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {9D9130C0-DA87-41AD-A443-1BAEA1247A4B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\WINDOWS\system32\usoclient.exe [90624 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {05980BBB-C405-4A8D-A3A2-C28FBB30A90E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe [692224 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {5C15D455-5B0C-491C-B77E-ECDD223E5F8C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe [692224 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {70EA2999-165C-4933-9027-250FB8B772F8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Report policies => C:\WINDOWS\system32\usoclient.exe [90624 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {F48BCD6A-5435-419F-95AD-4C138F8EA807} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work => C:\WINDOWS\system32\usoclient.exe [90624 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {6AD33091-DA84-404A-A869-4DC7B3F42B4D} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\WINDOWS\system32\usoclient.exe [90624 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {309BA321-F7C8-46A4-BA50-5FAC484229CB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan Static Task => C:\WINDOWS\system32\usoclient.exe [90624 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {44B9DAD0-10CB-4150-9305-558F8E6872F1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work => C:\WINDOWS\system32\usoclient.exe [90624 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {536CE839-B694-4D2D-A474-A9007424028C} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Work => C:\WINDOWS\system32\usoclient.exe [90624 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {CB673CE4-960F-462D-AAD7-CDA0CD9FE030} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateModelTask => C:\WINDOWS\system32\usoclient.exe [90624 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {4671B5C1-A383-4428-A45A-8D348E4CB873} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe [692224 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {57FF06A5-1054-4791-9938-1C3E61F00B07} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => C:\Windows\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> config upnphost start= auto Task: {C5D47392-881C-422A-9BF8-E4916B55CD22} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications => {E05BE1C8-92A8-4757-B575-ACAECB4E6A40} C:\Windows\System32\UsbTask.dll [55808 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {3E51A991-10E2-4B16-B5B4-A2F051544BB9} - System32\Tasks\Microsoft\Windows\User Profile Service\HiveUploadTask => {BA677074-762C-444B-94C8-8C83F93F6605} Task: {0CEC0B91-4AE9-4E8A-ACB2-3B4C811F442C} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} Task: {1E334E22-CBC0-4D9C-B830-F1CC1BD6DCFD} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\WINDOWS\System32\WiFiTask.exe [132408 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {4D36FC3F-B740-4739-9A9D-C43793F201B8} - System32\Tasks\Microsoft\Windows\WDI\ResolutionHost => {900BE39D-6BE8-461A-BC4D-B0FA71F5ECB1} C:\WINDOWS\System32\wdi.dll [105472 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {559B0F92-63C4-4001-AE5E-A650091C71B8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\MpCmdRun.exe [468120 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {DB1218E6-F693-4F20-BC36-E62D6CB63AB4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\MpCmdRun.exe [468120 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {4680A8DF-7B63-403E-ABB1-3FA7B77DE631} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\MpCmdRun.exe [468120 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E559FBB0-7370-4985-90DD-5D6B10DFC5F1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\MpCmdRun.exe [468120 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {75A35C91-670A-4071-BB93-066651438E14} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => C:\WINDOWS\system32\wermgr.exe [229696 2022-12-14] (Microsoft Windows -> Microsoft Corporation) Task: {86158314-60CF-4F3F-85B5-2399327EA496} - System32\Tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange => C:\Windows\system32\rundll32.exe [71680 2021-01-17] (Microsoft Windows -> Microsoft Corporation) -> bfe.dll,BfeOnServiceStartTypeChange Task: {D24B6509-E8CD-436B-B6AA-A8B6CAFCD15E} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [71168 2019-12-06] (Microsoft Windows -> Microsoft Corporation) Task: {AA70A383-6F5D-470B-AA6B-B324620D9C75} - System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader => {B210D694-C8DF-490D-9576-9E20CDBC20BD} C:\Windows\System32\mscms.dll [708592 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {D13884F8-2473-43AF-82BD-AE67A79FEDCB} - System32\Tasks\Microsoft\Windows\WindowsUpdate\RUXIM\PLUGScheduler => C:\Program Files\RUXIM\PLUGscheduler.exe [371584 2023-05-01] (Microsoft Windows -> Microsoft Corporation) Task: {8FF5DE67-C947-4488-997B-4184221E7D50} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start wuauserv Task: {1949073A-8FDA-4EA4-8E59-407CDB02440F} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihpostreboot => C:\WINDOWS\system32\sihclient.exe [387456 2022-12-14] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D85F83F5-ED09-49BC-A506-32C837CA0904} - System32\Tasks\Microsoft\Windows\Wininet\CacheTask => {0358B920-0AC7-461F-98F4-58E32CD89148} C:\WINDOWS\system32\wininet.dll [5046784 2022-11-11] (Microsoft Windows -> Microsoft Corporation) Task: {5E351EE7-F0D4-4F41-A05C-907EB1A33CE8} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync => {B0D2B535-12E1-439F-86B3-BADA289510F0} C:\Windows\System32\WiFiCloudStore.dll [282624 2022-02-13] (Microsoft Windows -> Microsoft Corporation) Task: {586F7782-DD4A-43FA-B994-12456E778471} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\WINDOWS\system32\WofTasks.dll [30720 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {7DEF10E3-A8CD-4569-8C19-C742D4747228} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation => {B7BFFB5A-EFA8-4D8C-BBDE-C8D5FAAF54A1} C:\WINDOWS\system32\WofTasks.dll [30720 2019-12-07] (Microsoft Windows -> Microsoft Corporation) Task: {F93E2A44-7E3E-49FE-9F66-12B1F4A037C0} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization => {97D47D56-3777-49FB-8E8F-90D7E30E1A1E} C:\Windows\System32\WorkFoldersShell.dll [230400 2022-04-14] (Microsoft Windows -> Microsoft Corporation) Task: {6440C5E0-A168-4A5F-B84E-F7C8C0A6E933} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => {63260BCE-A3FB-4A34-AA51-D4D8E877B62B} C:\Windows\System32\WorkFoldersShell.dll [230400 2022-04-14] (Microsoft Windows -> Microsoft Corporation) Task: {4BDB5047-01B7-48D5-AE7E-720EDA7D2049} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\WINDOWS\System32\dsregcmd.exe [468992 2022-10-12] (Microsoft Windows -> Microsoft Corporation) Task: {571A0A5E-B60E-4A25-BEFB-ABB3C6BB6B78} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync => {C662D912-E4D6-44A3-89A0-20550514951D} C:\Windows\System32\dsregtask.dll [52736 2022-10-12] (Microsoft Windows -> Microsoft Corporation) Task: {35D4C945-33D4-43B6-83D3-99034D411E25} - System32\Tasks\Microsoft\Windows\Workplace Join\Recovery-Check => C:\WINDOWS\System32\dsregcmd.exe [468992 2022-10-12] (Microsoft Windows -> Microsoft Corporation) Task: {DF6A7742-913B-4025-B27A-CE65BB343A0D} - System32\Tasks\Microsoft\Windows\WwanSvc\NotificationTask => C:\WINDOWS\System32\WiFiTask.exe [132408 2021-01-17] (Microsoft Windows -> Microsoft Corporation) Task: {E6383DAC-0AE2-4574-8E0F-79581B37C618} - System32\Tasks\Microsoft\Windows\WwanSvc\OobeDiscovery => {C93CF9D5-031B-4AAA-AB0B-EF802347B381} C:\Windows\System32\MBMediaManager.dll [747008 2022-03-12] (Microsoft Windows -> Microsoft Corporation) Task: {41F5FC9D-EE65-4CA4-A908-91B3587198E0} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\WINDOWS\System32\XblGameSaveTask.exe [33792 2022-06-18] (Microsoft Windows -> Microsoft Corporation) Task: {D3AB0C18-5CF3-4FCC-A4AB-10DE972CB109} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4012032049-3254648878-3231189217-1001Core{3540BBEB-F361-409B-93E8-47773BAC2021} => C:\Users\BBB\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206256 2023-01-25] (Microsoft Corporation -> Microsoft Corporation) Task: {C3429CB2-57FE-4448-BB0A-014FB43C4D6F} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4012032049-3254648878-3231189217-1001UA{A790A90B-8F2E-4550-9938-3661309F4A38} => C:\Users\BBB\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206256 2023-01-25] (Microsoft Corporation -> Microsoft Corporation) Task: {B211EAEA-5D4F-4C1D-8A0D-A97E0D77C32A} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-09-10] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] Task: {A245352B-8D49-4C3A-B76C-9A74C96CA994} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [686496 2023-07-27] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate Task: {F9C8D327-0683-49F8-B583-C685CEF9A266} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [724384 2023-07-27] (Mozilla Corporation -> Mozilla Foundation) Task: {83EC7785-AB98-48E8-A121-F4BA32F490C4} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start osppsvc Task: {C650268D-4D89-418D-842A-6A34898922AA} - System32\Tasks\razer => "C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe" (Brak pliku) Task: {F812C731-C6F6-41B4-9D81-B3E3BF8BBB1D} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-09-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {A1C2CE76-E079-4E08-8215-ED2E710D0D95} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-09-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {27A43DE6-0218-4FAC-A184-72D96CF90E63} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-09-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) Task: {744ACDDE-E402-40E8-84A2-4F24838D9D7C} - System32\Tasks\update-S-1-5-21-4012032049-3254648878-3231189217-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) Task: {A3FE2C18-E6EA-4C1B-8001-D3723B2A799D} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: ) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\update-S-1-5-21-4012032049-3254648878-3231189217-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.) Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.) Hosts: 127.0.0.1 activation.acronis.com web-api-tih.acronis.com Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{3cfbdf95-d209-4445-be33-693ef32fc453}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{8c467ee7-9e8a-44a3-be0a-7de2c858e4df}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{b8f41a1c-e9a7-40fc-849d-6ed2130c8ddd}: [DhcpNameServer] 192.168.1.1 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <==== UWAGA Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] FireFox: ======== FF DefaultProfile: 9pirp29a.default FF ProfilePath: C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\9pirp29a.default [2019-11-03] FF ProfilePath: C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release [2023-08-04] FF Session Restore: Mozilla\Firefox\Profiles\a4tulnep.default-release -> [funkcja włączona] FF Notifications: Mozilla\Firefox\Profiles\a4tulnep.default-release -> hxxps://pl146.plemiona.pl; hxxps://pl148.plemiona.pl; hxxps://pl140.plemiona.pl; hxxps://pl149.plemiona.pl; hxxps://pl150.plemiona.pl; hxxps://www.otomoto.pl; hxxps://pl152.plemiona.pl FF Extension: (Chomikuj.pl) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\@chomikuj.xpi [2019-11-03] FF Extension: (Usługa zwrotu gotówki LetyShops) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\cashback_letyshops@LetyShops.xpi [2023-07-19] FF Extension: (Enhancer for YouTube™) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2023-07-11] FF Extension: (Tampermonkey) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\firefox@tampermonkey.net.xpi [2023-07-01] FF Extension: (Tab Session Manager) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\Tab-Session-Manager@sienori.xpi [2022-09-16] FF Extension: (YouTube NonStop) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\{0d7cafdd-501c-49ca-8ebb-e3341caaa55e}.xpi [2021-10-06] FF Extension: (FoxAndBirdInTheLava) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\{246d8b56-975f-4d35-b8ad-e368ef8b8d69}.xpi [2019-11-03] FF Extension: (Planet Plus) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\{299e053e-7d4c-4a16-ae92-cbdf7b82e4ae}.xpi [2021-04-25] FF Extension: (Groovy Blue) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\{6149213c-39c0-4bad-8ffa-f0bff06e96f8}.xpi [2019-11-03] FF Extension: (Video Speed Controller) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\{7be2ba16-0f1e-4d93-9ebc-5164397477a9}.xpi [2022-06-21] FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2023-05-05] FF Extension: (Inverted Black And White) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\{c07b5709-9829-4ad8-9ae6-7e117571b7f2}.xpi [2019-11-03] FF Extension: (Adblock Plus - darmowy adblocker) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-20] FF Extension: (blue flowers, effect X-rays) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\{e45b7a9c-6640-47a4-8ef2-cef747fcef28}.xpi [2019-11-03] FF Extension: (Greasemonkey) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2021-01-28] FF Extension: (CarbonAndDrops) - C:\Users\BBB\AppData\Roaming\Mozilla\Firefox\Profiles\a4tulnep.default-release\Extensions\{eb51d56e-ac8e-462f-b3c7-f28cf3bd15f7}.xpi [2019-11-03] FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default [2023-06-29] CHR Notifications: Default -> hxxps://www.plemiona.pl CHR HomePage: Default -> hxxp://www.google.pl/ CHR Session Restore: Default -> [funkcja włączona] CHR Extension: (I'm not robot captcha clicker) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceipnlhmjohemhfpbjdgeigkababhmjc [2021-01-27] CHR Extension: (Adblock Plus - darmowy adblocker) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-06-17] CHR Extension: (Tampermonkey) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2023-06-24] CHR Extension: (Join) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\flejfacjooompmliegamfbpjjdlhokhj [2020-08-09] CHR Extension: (Pulpit zdalny Chrome) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-11-03] CHR Extension: (QR Code Generator) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcmhlmapohffdglflokbgknlknnmogbb [2023-03-09] CHR Extension: (Dokumenty Google offline) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-18] CHR Extension: (Video Downloader Plus) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkdmdpdhfaamhgaojpelccmeehpfljgf [2021-12-05] CHR Extension: (Chrome Remote Desktop) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2023-03-09] CHR Extension: (Sprawdzanie poczty Google) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2019-11-03] CHR Extension: (Buster: Captcha Solver for Humans) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl [2023-03-09] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Extension: (Tribal Wars Train) - C:\Users\BBB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppajhpdaingbnajnkoidgmkoblgpfiok [2020-12-18] CHR Profile: C:\Users\BBB\AppData\Local\Google\Chrome\User Data\System Profile [2023-04-16] Brave: ======= BRA Profile: C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-08-01] BRA Extension: (Tłumacz Google) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-22] BRA Extension: (Brave Local Data Files Updater) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-08-01] BRA Extension: (Brave NTP background images) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2023-06-13] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry Przeciwko Alertom o Adblocku - Uzupełnienie (plaintext))) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\bdnfonbomiianhopbpfgfeekmlcbegfo [2023-04-06] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry Przeciwko Alertom o Adblocku (plaintext))) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\beeceepafhbchnbfdkfalfipoancnjkm [2023-04-06] BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-08-01] BRA Extension: (Wallet Data Files Updater) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-08-01] BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2023-08-01] BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-12-02] BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2023-07-17] BRA Extension: (Brave Ads Resources) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\feeklcgpaolphdiamjaolkkcpbeihkbh [2023-07-27] BRA Extension: (Brave Ads Resources) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\fojhemdeemkcacelmecilmibcjallejo [2022-04-08] BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-07-30] BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2021-08-08] BRA Extension: (Brave NTP sponsored images) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodhafecfemgejckecbnmpobnhmoaoag [2023-07-30] BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-08-01] BRA Extension: (Brave SpeedReader Updater) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-13] BRA Extension: (Brave Ad Block Updater (Easylist-Cookie List - Filter Obtrusive Cookie Notices)) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\lfgnenkkneohplacnfabidofpgcdpofm [2022-12-02] BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-08-01] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry do AdBlocka (plaintext))) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\ngcohbdfildjnmfnicgdipopmlhdcokg [2023-07-25] BRA Extension: (Crypto Wallets) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\odbfpeeihdkbihmopkbjmoonfanlbfcl [2022-03-13] BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-07-26] BRA Extension: (Brave Ad Block Updater (Oficjalne Polskie Filtry do AdBlocka, uBlocka Origin i AdGuarda)) - C:\Users\BBB\AppData\Local\BraveSoftware\Brave-Browser\User Data\paoecjnjjbclkgbempaeemcbeldldlbo [2022-12-02] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [1492904 2017-03-24] (Acronis International GmbH -> Acronis International GmbH) R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1279464 2017-04-08] (Acronis International GmbH -> ) R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6086232 2021-06-11] (Acronis International GmbH -> ) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego] R2 AtomicAlarmClock; C:\Program Files\Atomic Alarm Clock\timeserv.exe [2007040 2013-04-24] () [Brak podpisu cyfrowego] R2 AUEPLauncher; C:\Program Files\AMD\Performance Profile Client\AUEPLauncher.exe [43008 2019-09-10] (AMD) [Brak podpisu cyfrowego] S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-08-08] (Brave Software, Inc. -> BraveSoftware Inc.) S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162456 2021-08-08] (Brave Software, Inc. -> BraveSoftware Inc.) S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\115.1.56.20\brave_vpn_helper.exe [3178008 2023-08-03] (Brave Software, Inc. -> Brave Software, Inc.) R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Brak podpisu cyfrowego] S2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-07-08] (Digital Wave Ltd -> Digital Wave Ltd) S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2271832 2022-05-21] (GOG Sp. z o.o. -> GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-05-21] (GOG Sp. z o.o. -> GOG.com) R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [10869024 2022-05-10] (PARAMOUNT SOFTWARE UK LIMITED -> Paramount Software UK Ltd) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9267376 2023-07-31] (Malwarebytes Inc. -> Malwarebytes) R2 MEmuSVC; C:\Program Files\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> ) R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4795288 2017-02-13] (Acronis International GmbH -> Acronis International GmbH) S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [2908352 2017-01-06] (Acronis International GmbH -> Acronis International GmbH) S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1617520 2017-04-08] (Acronis International GmbH -> ) R2 NovaPdf10Server; C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe [52528 2020-12-04] (Softland SRL -> Microsoft) R2 PSI_SVC_2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc) R2 RepetierServer; C:\Program Files (x86)\Repetier-Server\bin\RepetierServer.exe [9049760 2021-12-07] (Hot-World GmbH & Co. KG -> ) S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [14204760 2021-12-15] (ADLICE (ASCOET JULIEN) -> ) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [224184 2022-12-14] (Microsoft Windows Publisher -> Microsoft Corporation) S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182392 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-11-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [919992 2020-11-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7014728 2017-03-07] (Acronis International GmbH -> ) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [14718784 2022-08-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [805224 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WifiAutoInstallSrv; C:\Program Files\Realtek\WifiAutoInstall\WifiAutoInstallSrv.exe [124864 2017-07-31] (Realtek Semiconductor Corp. -> Realtek) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2575360 2021-08-19] (Sony) [Brak podpisu cyfrowego] S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\115.1.56.20\elevation_service.exe" [X] S3 Rockstar Service; "O:\RockstarService.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R3 ALSysIO; C:\Users\BBB\AppData\Local\Temp\ALSysIO64.sys [47240 2023-08-04] (ALCPU (Arthur Liberman) -> Arthur Liberman) <==== UWAGA R2 AODDriver4.3.0; C:\Program Files\AMD\Performance Profile Client\amd64\AODDriver2.sys [60104 2015-02-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [320744 2021-12-02] (Bluestack Systems, Inc -> Bluestack System Inc.) S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [69016 2019-03-04] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [479064 2021-06-11] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [378712 2021-06-11] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [181592 2021-06-11] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) S3 gdrv; C:\Windows\gdrv.sys [25640 2020-06-24] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-07-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [199640 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77752 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-08-03] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181984 2023-08-04] (Malwarebytes Inc. -> Malwarebytes) R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [320360 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation) S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [19032 2012-08-20] (MiniTool Solution Ltd -> ) S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12384 2012-08-20] (MiniTool Solution Ltd -> ) S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> ) R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [64168 2022-08-18] (Razer USA Ltd. -> Razer Inc) R3 RzDev_005c; C:\WINDOWS\System32\drivers\RzDev_005c.sys [52496 2020-02-17] (Razer USA Ltd. -> Razer Inc) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310552 2021-06-11] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [213336 2021-06-11] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [690520 2021-06-11] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [254616 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates) R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [265488 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates) R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1061392 2023-01-11] (Oracle Corporation -> Oracle and/or its affiliates) R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [324952 2021-06-11] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (Wszystkie) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-08-04 06:20 - 2023-08-04 06:22 - 000094272 _____ C:\Users\BBB\Desktop\FRST.txt 2023-08-04 06:16 - 2023-08-04 06:16 - 000001989 _____ C:\Users\BBB\Desktop\c pelne rap.txt 2023-08-04 06:12 - 2023-08-04 06:12 - 000199640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2023-08-04 06:12 - 2023-08-04 06:12 - 000181984 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2023-08-04 06:12 - 2023-08-04 06:12 - 000077752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2023-08-04 06:12 - 2023-08-04 06:12 - 000000000 ____D C:\Users\BBB\AppData\LocalLow\IGDump 2023-08-04 06:09 - 2023-08-04 06:09 - 000001967 _____ C:\Users\BBB\Desktop\c pelne.txt 2023-08-03 06:22 - 2023-08-03 06:22 - 000050474 _____ C:\Users\BBB\Desktop\nocne.txt 2023-08-03 06:21 - 2023-08-03 06:21 - 000001650 _____ C:\Users\BBB\Desktop\dlaczego tak krotko.txt 2023-08-02 17:40 - 2023-08-02 17:48 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-08-02 17:40 - 2023-08-02 17:40 - 173351160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-08-01 18:55 - 2023-08-01 18:55 - 000003499 _____ C:\Users\BBB\Desktop\0108 raport z automatu.txt 2023-07-31 23:43 - 2023-08-04 06:21 - 000000000 ____D C:\FRST 2023-07-31 23:43 - 2023-08-04 06:19 - 000000000 ____D C:\Users\BBB\Downloads\FRST-OlderVersion 2023-07-31 23:42 - 2023-08-04 06:19 - 002700800 _____ (Farbar) C:\Users\BBB\Desktop\FRST64.exe 2023-07-31 23:40 - 2023-08-04 06:13 - 000000000 ____D C:\Users\BBB\AppData\Local\Malwarebytes 2023-07-31 23:40 - 2023-07-31 23:40 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk 2023-07-31 23:40 - 2023-07-31 23:40 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2023-07-31 23:40 - 2023-07-31 23:40 - 000000000 ____D C:\Users\BBB\AppData\Local\mbam 2023-07-31 23:39 - 2023-08-03 16:11 - 000239544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2023-07-31 23:39 - 2023-07-31 23:39 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2023-07-31 23:39 - 2023-07-31 23:39 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2023-07-31 23:39 - 2023-07-31 23:39 - 000021480 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys 2023-07-31 23:39 - 2023-07-31 23:39 - 000000000 ____D C:\ProgramData\Malwarebytes 2023-07-31 23:39 - 2023-07-31 23:39 - 000000000 ____D C:\Program Files\Malwarebytes 2023-07-31 23:37 - 2023-07-31 23:37 - 296437336 _____ (Malwarebytes) C:\Users\BBB\Desktop\MBSetup-076981.076981-4.5.33.272.exe 2023-07-31 23:17 - 2023-07-31 23:17 - 000000884 _____ C:\Users\BBB\Desktop\Folder Size.lnk 2023-07-31 23:17 - 2023-07-31 23:17 - 000000000 ____D C:\ProgramData\MindGems 2023-07-31 23:17 - 2023-07-31 23:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Size 2023-07-31 23:17 - 2023-07-31 23:17 - 000000000 ____D C:\Program Files\Folder Size 2023-07-31 23:16 - 2023-07-31 23:16 - 005046990 _____ (MindGems, Inc. ) C:\Users\BBB\Desktop\FolderSize.exe 2023-07-31 23:11 - 2023-07-31 23:11 - 000000000 ____D C:\Users\BBB\AppData\Roaming\GHISLER 2023-07-31 23:11 - 2023-07-31 23:11 - 000000000 ____D C:\Users\BBB\AppData\Local\GHISLER 2023-07-31 23:11 - 2023-07-31 23:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander 2023-07-31 23:11 - 2023-07-31 23:11 - 000000000 ____D C:\Program Files\totalcmd 2023-07-31 23:10 - 2023-07-31 23:10 - 006169504 _____ (Ghisler Software GmbH) C:\Users\BBB\Desktop\tcmd1052x64.exe 2023-07-31 22:32 - 2023-07-31 22:32 - 000002875 _____ C:\Users\BBB\Desktop\amazon i ich problemy z zamowieniem.txt 2023-07-30 20:18 - 2023-07-30 20:18 - 026427190 _____ C:\Users\BBB\Desktop\CCI30072023`2.xcf 2023-07-30 20:18 - 2023-07-30 20:18 - 000002417 _____ C:\Users\BBB\AppData\Local\recently-used.xbel 2023-07-30 17:26 - 2023-07-31 23:08 - 000000000 ____D C:\Users\BBB\Desktop\pass b7 egr 2023-07-28 23:39 - 2023-07-28 23:39 - 000000488 _____ C:\Users\BBB\Desktop\skjopz.txt 2023-07-28 23:19 - 2023-07-28 23:19 - 000009694 _____ C:\Users\BBB\Desktop\zysk.xlsx 2023-07-27 18:59 - 2023-08-04 04:17 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-07-26 16:52 - 2023-07-26 16:53 - 000546019 _____ C:\Users\BBB\Downloads\upowaznienie-do-odbioru-dowodu-rejestracyjnego-pdf-jakiwniosek-pl.pdf 2023-07-26 16:50 - 2023-07-26 16:50 - 000147350 _____ C:\Users\BBB\Downloads\Upowaznienie_do_rejestracji_pojazdu_PDF.pdf 2023-07-26 16:47 - 2023-07-26 16:47 - 000515216 _____ C:\Users\BBB\Downloads\Wniosek_o_rejestracje_czasowa_rejestracje_wyrejestrowanie_pojazdu_lub_zawiadomienia_o_nabyciu_lub_zbyciu_pojazdu_-_Zalacznik_nr_1_rozporzadzenia.pdf 2023-07-25 08:45 - 2023-07-25 08:46 - 000224604 _____ C:\Users\BBB\Desktop\Regulamin Promocji_Cashback GW5Pro 700_GW5 450 [25.07.23-13.08.23] [W30-W32].pdf 2023-07-23 20:35 - 2023-07-23 20:35 - 000058996 _____ C:\Users\BBB\Desktop\rzsr-inf-zwr-nad-a.pdf 2023-07-23 20:35 - 2023-07-23 20:35 - 000057474 _____ C:\Users\BBB\Downloads\lista_wyslanych_23-07-2023_20-32.pdf 2023-07-23 20:32 - 2023-07-23 20:32 - 000055947 _____ C:\Users\BBB\Downloads\rzsr-inf-zwr-nad-a.pdf 2023-07-23 20:31 - 2023-07-23 20:32 - 000056989 _____ C:\Users\BBB\Downloads\lista_poswiadczen_23-07-2023_20-28-52.pdf 2023-07-23 15:29 - 2023-07-23 15:29 - 000096823 _____ C:\Users\BBB\Downloads\invoice.pdf 2023-07-20 00:09 - 2023-07-20 00:09 - 000077585 _____ C:\Users\BBB\Downloads\Zabawki_PALETA_4333zl.pdf 2023-07-20 00:08 - 2023-07-20 00:08 - 000070515 _____ C:\Users\BBB\Downloads\PC-Elektronika-Gaming_PALETA_10777zl.pdf 2023-07-20 00:06 - 2023-07-20 00:06 - 000059464 _____ C:\Users\BBB\Downloads\Auto_Dom_Ogrod_Majsterkowanie_BOX_2181zl.pdf 2023-07-19 23:11 - 2023-07-20 00:24 - 000000000 ____D C:\Users\BBB\Desktop\palety 07 2023 2023-07-16 18:33 - 2023-07-16 18:33 - 001480268 _____ C:\Users\BBB\Desktop\Podstawy_elektroniki.pdf 2023-07-13 21:14 - 2023-07-13 21:15 - 000082578 _____ C:\Users\BBB\Desktop\132.pdf 2023-07-11 21:01 - 2023-08-01 20:16 - 000011745 _____ C:\Users\BBB\Desktop\filtry amazon.xlsx 2023-07-09 17:06 - 2023-07-15 17:53 - 000000000 ____D C:\Users\BBB\Desktop\dell xps 2023-07-08 23:56 - 2023-07-08 23:56 - 000000777 _____ C:\Users\BBB\Desktop\dell.txt ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-08-04 06:16 - 2020-11-07 21:38 - 001767984 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-08-04 06:16 - 2019-12-07 17:09 - 000784340 _____ C:\WINDOWS\system32\perfh015.dat 2023-08-04 06:16 - 2019-12-07 17:09 - 000152236 _____ C:\WINDOWS\system32\perfc015.dat 2023-08-04 06:16 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF 2023-08-04 06:14 - 2021-12-19 18:37 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-08-04 06:14 - 2019-11-03 15:34 - 000000000 ____D C:\Program Files (x86)\Google 2023-08-04 06:13 - 2022-06-16 16:18 - 000000000 ____D C:\Users\BBB\AppData\Local\Battle.net 2023-08-04 06:12 - 2022-06-19 10:23 - 000003092 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate 2023-08-04 06:12 - 2020-11-07 21:39 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-08-04 06:12 - 2020-11-07 21:31 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-08-04 06:12 - 2020-04-06 23:15 - 000000000 ____D C:\Program Files (x86)\TeamViewer 2023-08-04 06:12 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-08-04 06:11 - 2020-11-07 21:31 - 000008192 ___SH C:\DumpStack.log.tmp 2023-08-04 06:10 - 2020-05-08 22:50 - 000000000 ____D C:\Users\BBB\AppData\Roaming\Microsoft\Windows Activator 2023-08-04 06:09 - 2022-02-13 12:12 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-08-04 04:58 - 2021-08-08 11:00 - 000002370 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk 2023-08-04 04:58 - 2021-08-08 11:00 - 000002329 _____ C:\Users\Public\Desktop\Brave.lnk 2023-08-03 20:44 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-08-03 20:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-08-03 06:24 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-08-03 06:24 - 2019-11-03 17:26 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin 2023-08-02 22:19 - 2019-11-03 15:35 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-08-02 22:19 - 2019-11-03 15:35 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-08-02 20:08 - 2023-02-09 22:42 - 000003438 _____ C:\WINDOWS\system32\Tasks\CorelUpdateHelperTask-52C929DA7341B7AEC6674CCDAAD4AFC9 2023-08-01 20:11 - 2019-11-10 13:42 - 000000000 ____D C:\Users\BBB\AppData\Roaming\Microsoft\Excel 2023-08-01 20:11 - 2019-11-06 20:45 - 000000000 ____D C:\Users\BBB\AppData\Roaming\Microsoft\Word 2023-08-01 18:55 - 2020-11-11 13:05 - 000000000 ____D C:\Users\BBB\AppData\Roaming\uTorrent 2023-07-31 23:40 - 2019-11-03 15:41 - 000000000 ____D C:\Users\BBB\AppData\Local\D3DSCache 2023-07-31 23:39 - 2020-11-07 21:39 - 000003864 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2023-07-31 23:39 - 2020-11-07 21:39 - 000003740 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2023-07-31 23:39 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2023-07-31 23:33 - 2021-12-13 18:33 - 000000000 ____D C:\Users\BBB\AppData\LocalLow\uTorrent 2023-07-31 23:30 - 2020-12-27 13:45 - 000000000 ____D C:\Users\BBB\AppData\Roaming\vlc 2023-07-30 20:18 - 2019-12-19 10:50 - 000000000 ____D C:\Users\BBB\AppData\Local\gtk-2.0 2023-07-30 20:18 - 2019-12-19 10:46 - 000000000 ____D C:\Users\BBB\AppData\Local\babl-0.1 2023-07-29 17:26 - 2020-11-07 12:43 - 000000600 _____ C:\Users\BBB\PUTTY.RND 2023-07-29 14:35 - 2019-11-03 16:58 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-07-28 18:15 - 2022-06-16 16:17 - 000000000 ____D C:\Program Files (x86)\Battle.net 2023-07-28 18:15 - 2019-11-03 16:58 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-07-25 11:25 - 2019-11-06 20:33 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk 2023-07-20 22:54 - 2023-03-26 14:16 - 000000000 ____D C:\Users\BBB\Desktop\wyn 2023-07-16 11:29 - 2021-08-08 19:05 - 000000000 ____D C:\Users\BBB\Downloads\Telegram Desktop 2023-07-16 11:19 - 2020-01-29 22:41 - 000000000 ____D C:\Users\BBB\Downloads\TabSessionManager - Backup 2023-07-13 21:54 - 2022-09-11 10:55 - 000000000 ____D C:\Users\BBB\Desktop\kopia tel 11092022 2023-07-13 21:05 - 2023-02-13 18:32 - 000000000 ____D C:\WINDOWS\LastGood 2023-07-08 13:25 - 2023-04-21 18:48 - 000000000 ____D C:\Users\BBB\Desktop\tata 2023-07-07 22:37 - 2023-01-25 21:34 - 000003902 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4012032049-3254648878-3231189217-1001UA{A790A90B-8F2E-4550-9938-3661309F4A38} 2023-07-07 22:37 - 2023-01-25 21:34 - 000003834 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4012032049-3254648878-3231189217-1001Core{3540BBEB-F361-409B-93E8-47773BAC2021} 2023-07-07 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState ==================== Pliki w katalogu głównym wybranych folderów ======== 2023-07-30 20:18 - 2023-07-30 20:18 - 000002417 _____ () C:\Users\BBB\AppData\Local\recently-used.xbel 2020-05-15 17:32 - 2022-11-01 22:45 - 000007596 _____ () C:\Users\BBB\AppData\Local\Resmon.ResmonCfg 2021-01-19 16:58 - 2021-01-19 16:58 - 000000003 _____ () C:\Users\BBB\AppData\Local\updater.log 2021-01-19 16:58 - 2021-01-19 16:58 - 000000424 _____ () C:\Users\BBB\AppData\Local\UserProducts.xml ==================== FCheck ================================ (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) FCheck: C:\WINDOWS\nl.exe [2021-12-28] <==== UWAGA (zerobajtowy plik/folder) ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================