Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 30-11-2023 02 Uruchomiony przez moons (administrator) DESKTOP-V1FOO7R (Micro-Star International Co., Ltd MS-7C02) (30-11-2023 19:38:12) Uruchomiony z C:\Users\moons\Downloads\FRST64.exe Załadowane profile: moons Platforma: Microsoft Windows 11 Pro Wersja 23H2 22631.2715 (X64) Język: Polski (Polska) Domyślna przeglądarka: FF Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe ->) (Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplmv.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe (C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (C:\Program Files\EIZO\ColorNavigator 7\ColorNavigator 7.exe ->) (EIZO Corporation -> EIZO Corporation) C:\ProgramData\EIZO\ColorNavigator 7\plugins\com.eizo.framework.sugar\win.x86_64\mdsubprocess.exe (C:\Program Files\EIZO\ColorNavigator 7\ColorNavigator 7.exe ->) (The Qt Company Oy -> The Qt Company Ltd.) C:\Program Files\EIZO\ColorNavigator 7\QtWebEngineProcess.exe (C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3> (C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe (explorer.exe ->) (EIZO Corporation -> EIZO Corporation) C:\Program Files\EIZO\ColorNavigator 7\ColorNavigator 7.exe (M-Audio -> Avid Technology, Inc.) C:\Windows\SysWOW64\MAFWTray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <43> (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (services.exe ->) (Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe (services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\GUBootService.exe (services.exe ->) (Glarysoft LTD -> Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe (services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe (services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3> (services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1fea8972dc2f0a69\Display.NvContainer\NVDisplay.Container.exe <2> (services.exe ->) (X-Rite Incorporated -> X-Rite Inc.) C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe (svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.14326.21738.0_x64__8wekyb3d8bbwe\onenoteim.exe (svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.30700.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2> (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM-x32\...\Run: [M-Audio Taskbar Icon] => C:\Windows\SysWOW64\MAFWTray.exe [252424 2009-07-29] (M-Audio -> Avid Technology, Inc.) HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> ) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Ograniczenia <==== UWAGA HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\...\Print\Monitors\HP1100LM: C:\Windows\system32\HP1100LM.DLL [288768 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> ) HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] -> Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\i1Studio Tray.lnk [2022-12-17] ShortcutTarget: i1Studio Tray.lnk -> C:\Program Files (x86)\X-Rite\i1Studio\i1StudioTray.exe (X-Rite Incorporated -> ) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\XRGamma.lnk [2022-12-17] ShortcutTarget: XRGamma.lnk -> C:\Program Files (x86)\X-Rite\i1Studio\XRGamma.exe (LOGO Kommunikations- und Drucktechnik GmbH & Co. KG) [Brak podpisu cyfrowego] Startup: C:\Users\moons\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ColorNavigator 7.lnk [2023-11-30] ShortcutTarget: ColorNavigator 7.lnk -> C:\Program Files\EIZO\ColorNavigator 7\ColorNavigator 7.exe (EIZO Corporation -> EIZO Corporation) ==================== Zaplanowane zadania (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {C9D0D7CA-C216-41D6-A287-804C3007CF8B} - \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB -> Brak pliku <==== UWAGA Task: {D71F69CE-DC0A-4FFB-9EAD-4478276D1FB1} - \Meta\Messenger-WSP-Helper-S-1-5-21-868864574-754023539-434053955-1003 -> Brak pliku <==== UWAGA Task: {5655E8D0-9B02-4224-9986-6FF1F2E884D5} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [311296 2023-10-27] (Microsoft Windows -> Microsoft Corporation) Task: {D25DF2BF-D6EA-4366-BAD4-320E3258D3EE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7C069C7C-0546-4454-8FC5-86F9E7DB3A7C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {155E170E-C591-4993-96CD-B8A62FAFA6C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpCmdRun.exe [1604680 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {E27736C8-44F2-4702-A1AB-A1839F9A1EB6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log Task: {BED57EB8-89AE-486B-82AD-516302C1AA32} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C79A096E-3AEC-4838-A9F0-620143BE49CE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {EF10ECF4-02D2-4F07-AA4B-B611BFA3EC2E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {6B055A92-9486-410D-B6B0-A49434E64AA9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {A7F5FBAD-B83B-413C-9BE9-DE59E2272EEB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {11C41BFE-A869-4154-8D62-4F7DDDCC6B1B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {80893295-B575-4CA7-9AF4-FF826617A787} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {C2A4A298-1A9B-4C47-94D6-5CD5C6B7F67F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) Task: {E0C30191-89AD-4506-920B-FD323DB7140F} - System32\Tasks\WiseCleaner\WDCSkipUAC => C:\Program Files (x86)\Wise\Wise Disk Cleaner\WiseDiskCleaner.exe [12389624 2022-10-26] (Lespeed Technology Co., Ltd -> WiseCleaner.com) [Brak podpisu cyfrowego] Task: {2075A698-B229-4ABD-8BD0-387ADFDFDB42} - System32\Tasks\X-Rite Device Services Software Updater => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe [31656 2020-01-30] (X-Rite Incorporated -> X-Rite Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\WINDOWS\Tasks\X-Rite Device Services Software Updater.job => C:\Program Files (x86)\X-Rite\Devices\Services\XRD Software Update.exe ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) AutoConfigURL: [{9B162457-9A3E-48E8-A224-52EE480FCF43}] => hxxp://192.168.1.20:8888/ <==== UWAGA ProxyServer: [S-1-5-21-868864574-754023539-434053955-1003] => hxxp://192.168.1.20:8888 Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{1bb7b7b8-b9c5-4b19-9a3c-0032db918e6c}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{a47d8127-ec91-414f-8811-c82cc8235015}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{e582efce-4a04-4aee-99a6-66dc9531c206}: [DhcpNameServer] 192.168.1.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\moons\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-30] Edge DownloadDir: Default -> H:\na della Edge StartupUrls: Default -> "hxxp://google.com/" Edge Extension: (Dokumenty Google offline) - C:\Users\moons\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-15] Edge Extension: (Edge relevant text changes) - C:\Users\moons\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-15] FireFox: ======== FF DefaultProfile: i6vdxile.default FF ProfilePath: C:\Users\moons\AppData\Roaming\Mozilla\Firefox\Profiles\i6vdxile.default [2022-11-16] FF ProfilePath: C:\Users\moons\AppData\Roaming\Mozilla\Firefox\Profiles\slum10oc.default-release [2023-11-30] FF Extension: (Language: English (GB)) - C:\Users\moons\AppData\Roaming\Mozilla\Firefox\Profiles\slum10oc.default-release\Extensions\langpack-en-GB@firefox.mozilla.org.xpi [2023-11-24] FF Extension: (British English Dictionary (Marco Pinto)) - C:\Users\moons\AppData\Roaming\Mozilla\Firefox\Profiles\slum10oc.default-release\Extensions\marcoagpinto@mail.telepac.pt.xpi [2023-11-24] FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-27] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-27] (Oracle America, Inc. -> Oracle Corporation) Chrome: ======= CHR HKLM\...\Chrome\Extension: [joiapjkjgbcljoopaenlplkfapolkdhp] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 CloudBackupRestoreSvc; C:\WINDOWS\System32\CloudRestoreLauncher.dll [1355776 2023-10-27] (Microsoft Windows -> Microsoft Corporation) R2 GUBootService; C:\Program Files (x86)\Glary Utilities 5\GUBootService.exe [875392 2021-12-27] (Glarysoft LTD -> Glarysoft Ltd) R2 GUPMService; C:\Program Files (x86)\Glary Utilities 5\GUPMService.exe [65408 2021-12-27] (Glarysoft LTD -> Glarysoft Ltd) R2 hasplms; C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe [5730312 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) S4 HPSIService; C:\Windows\system32\HPSIsvc.exe [126880 2012-09-27] (Hewlett-Packard Company -> HP) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9341488 2023-11-03] (Malwarebytes Inc. -> Malwarebytes) R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1fea8972dc2f0a69\Display.NvContainer\NVDisplay.Container.exe [1274888 2023-11-10] (NVIDIA Corporation -> NVIDIA Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534584 2023-11-14] (Microsoft Windows Publisher -> Microsoft Corporation) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\NisSrv.exe [3121120 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe [133704 2023-11-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 xrdd.exe; C:\Program Files (x86)\X-Rite\Devices\Services\xrdd.exe [91048 2020-01-30] (X-Rite Incorporated -> X-Rite Inc.) ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 aksdf; C:\WINDOWS\system32\drivers\aksdf.sys [389560 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [510800 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc) S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [Brak podpisu cyfrowego] S3 colormunki; C:\WINDOWS\System32\Drivers\colormunki_x64.sys [51600 2017-09-28] (USBIO Test -> Thesycon GmbH, Germany) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 DxVGrb; C:\WINDOWS\system32\drivers\DxVGrb.sys [226944 2013-05-02] (Microsoft Windows Hardware Compatibility Publisher -> Dexetek) R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [30720 2021-04-08] (Microsoft Windows Hardware Compatibility Publisher -> Glarysoft Ltd) R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [1970104 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.) R3 MAFW; C:\WINDOWS\System32\drivers\mafw.sys [231944 2009-07-29] (M-Audio -> Avid Technology, Inc.) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-11-06] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-04-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-07-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes) S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [20480 2012-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.) R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation) S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [19936 2010-04-09] (MT SOLUTION LTD -> ) S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [13280 2010-04-09] (MT SOLUTION LTD -> ) R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_400a42c66fb0e159\rt68cx21x64.sys [598976 2022-01-17] (Realtek Semiconductor Corp. -> Realtek) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) S3 synusb64; C:\WINDOWS\System32\drivers\synusb64.sys [30352 2010-09-17] (Steinberg Media Technologies GmbH -> Steinberg Media Technologies GmbH) S4 UCPD; C:\WINDOWS\System32\drivers\UCPD.sys [29184 2023-08-22] (Microsoft Windows -> Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55744 2023-11-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [578856 2023-11-07] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105768 2023-11-07] (Microsoft Windows -> Microsoft Corporation) R2 WinI2C-DDC; C:\WINDOWS\system32\drivers\DDCDrv.sys [20832 2021-12-20] (PC Micro Systems Inc. -> Nicomsoft Ltd.) S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X] ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-11-30 19:38 - 2023-11-30 19:38 - 000019634 _____ C:\Users\moons\Downloads\FRST.txt 2023-11-30 19:32 - 2023-11-30 19:32 - 002384384 _____ (Farbar) C:\Users\moons\Downloads\FRST64.exe 2023-11-30 16:15 - 2023-11-30 16:15 - 000000000 ____D C:\Users\moons\Desktop\LEXAR 2023-11-30 13:13 - 2023-11-30 13:13 - 000798244 _____ C:\WINDOWS\system32\perfh015.dat 2023-11-30 13:13 - 2023-11-30 13:13 - 000158294 _____ C:\WINDOWS\system32\perfc015.dat 2023-11-29 19:53 - 2023-11-29 19:53 - 000000000 ____D C:\Users\moons\Desktop\Nowy folder 2023-11-29 19:21 - 2023-11-29 19:21 - 000087249 _____ C:\Users\moons\Desktop\Stencel film.pdf 2023-11-29 19:21 - 2023-11-29 19:21 - 000074288 _____ C:\Users\moons\Desktop\stencel foto.pdf 2023-11-29 19:19 - 2023-11-29 19:19 - 000184187 _____ C:\Users\moons\Desktop\deklaracja_wstepna_cieple_mieszkanie.pdf 2023-11-29 11:36 - 2023-11-29 11:36 - 000011369 _____ C:\Users\moons\Downloads\WINIETKI.xlsx 2023-11-28 19:35 - 2023-11-28 19:35 - 000000000 ____D C:\Users\moons\AppData\Roaming\NVIDIA 2023-11-28 00:43 - 2023-11-28 00:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation 2023-11-28 00:40 - 2023-11-10 12:38 - 001424064 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll 2023-11-28 00:40 - 2023-11-10 12:38 - 001424064 _____ C:\WINDOWS\system32\vulkan-1.dll 2023-11-28 00:40 - 2023-11-10 12:38 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll 2023-11-28 00:40 - 2023-11-10 12:38 - 001246400 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2023-11-28 00:40 - 2023-11-10 12:38 - 001226872 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2023-11-28 00:40 - 2023-11-10 12:38 - 000850512 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe 2023-11-28 00:40 - 2023-11-10 12:38 - 000850512 _____ C:\WINDOWS\system32\vulkaninfo.exe 2023-11-28 00:40 - 2023-11-10 12:38 - 000731216 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe 2023-11-28 00:40 - 2023-11-10 12:38 - 000731216 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2023-11-28 00:40 - 2023-11-10 12:34 - 001541256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2023-11-28 00:40 - 2023-11-10 12:34 - 001198200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2023-11-28 00:40 - 2023-11-10 12:34 - 000957960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll 2023-11-28 00:40 - 2023-11-10 12:34 - 000669712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll 2023-11-28 00:40 - 2023-11-10 12:34 - 000504840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll 2023-11-28 00:40 - 2023-11-10 12:33 - 002171000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2023-11-28 00:40 - 2023-11-10 12:33 - 001624712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2023-11-28 00:40 - 2023-11-10 12:33 - 000997512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2023-11-28 00:40 - 2023-11-10 12:33 - 000810104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe 2023-11-28 00:40 - 2023-11-10 12:33 - 000774280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2023-11-28 00:40 - 2023-11-10 12:32 - 015095416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2023-11-28 00:40 - 2023-11-10 12:32 - 012375160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2023-11-28 00:40 - 2023-11-10 12:32 - 006462600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2023-11-28 00:40 - 2023-11-10 12:32 - 005862520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll 2023-11-28 00:40 - 2023-11-10 12:32 - 005861000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2023-11-28 00:40 - 2023-11-10 12:32 - 003619960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2023-11-28 00:40 - 2023-11-10 12:32 - 000853112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe 2023-11-28 00:40 - 2023-11-10 12:32 - 000459384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe 2023-11-28 00:40 - 2023-11-10 12:31 - 007866472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2023-11-28 00:40 - 2023-11-10 12:30 - 006745880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2023-11-28 00:40 - 2023-11-10 03:07 - 000113883 _____ C:\WINDOWS\system32\nvinfo.pb 2023-11-28 00:00 - 2023-11-28 00:00 - 000369728 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-11-25 15:40 - 2023-11-25 15:40 - 000000000 ____D C:\Users\moons\AppData\Local\Backup 2023-11-23 19:22 - 2023-11-24 15:46 - 000000000 ___HD C:\Program Files (x86)\InstallJammer Registry 2023-11-23 13:42 - 2023-11-23 13:42 - 060439893 _____ C:\Users\moons\Desktop\1700733122970.psd 2023-11-22 12:58 - 2023-11-22 12:58 - 000000000 ____D C:\Users\moons\Desktop\Książka 2023-11-22 12:58 - 2023-11-22 12:58 - 000000000 ____D C:\Users\moons\Desktop\drive-download-20231120T212813Z-001 2023-11-22 12:48 - 2023-11-22 22:35 - 000000000 ____D C:\Program Files\Mozilla Firefox 2023-11-14 22:48 - 2023-11-10 12:38 - 001487368 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2023-11-14 15:42 - 2023-11-14 15:46 - 000087249 _____ C:\Users\moons\Desktop\Karolina i Błażej film.pdf 2023-11-14 15:41 - 2023-11-14 15:47 - 000074310 _____ C:\Users\moons\Desktop\Karolina i Błażej foto.pdf 2023-11-08 00:46 - 2023-11-08 00:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neural Filters 2023-11-08 00:43 - 2023-11-08 00:43 - 000000000 ____D C:\Users\moons\Desktop\Nowy folder (4) 2023-11-08 00:40 - 2023-11-08 00:40 - 003233010 _____ C:\Users\moons\Desktop\untitled.afphoto 2023-11-07 23:17 - 2023-11-08 14:40 - 000128370 _____ C:\Users\moons\Documents\Patrycja i Michał.saproj 2023-11-07 22:31 - 2023-11-07 22:31 - 000000000 ____D C:\Users\moons\Desktop\pat i 2023-11-06 17:02 - 2023-11-06 17:02 - 040655184 _____ C:\Users\moons\Desktop\Untitled.mp4 2023-11-06 16:59 - 2023-11-06 16:45 - 155021312 _____ C:\Users\moons\Desktop\VID20231106164441.mp4 2023-11-03 11:01 - 2023-11-03 11:01 - 000000000 ____D C:\WINDOWS\Panther 2023-11-02 23:48 - 2023-11-29 11:36 - 000000000 ____D C:\Users\moons\Desktop\umowy ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-11-30 19:38 - 2023-01-06 00:47 - 000000000 ____D C:\FRST 2023-11-30 19:37 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp 2023-11-30 19:33 - 2021-04-12 11:11 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5 2023-11-30 19:17 - 2022-11-29 10:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-11-30 17:21 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-11-30 13:51 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF 2023-11-30 13:48 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps 2023-11-30 13:48 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-11-30 13:14 - 2021-04-08 14:54 - 000000000 ____D C:\ProgramData\NVIDIA 2023-11-30 13:13 - 2022-11-29 10:03 - 001797768 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-11-30 13:12 - 2021-04-15 12:06 - 000000000 ____D C:\Users\moons\AppData\Local\D3DSCache 2023-11-30 13:08 - 2022-02-09 17:03 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 2023-11-30 13:07 - 2023-04-26 11:17 - 000000000 ____D C:\Users\moons\AppData\Local\Malwarebytes 2023-11-30 13:06 - 2022-11-29 10:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-11-30 13:06 - 2022-08-13 11:16 - 000012288 ___SH C:\DumpStack.log.tmp 2023-11-30 13:06 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ServiceState 2023-11-30 00:43 - 2022-11-29 03:04 - 000000000 ____D C:\Users\moons 2023-11-30 00:43 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2023-11-29 22:58 - 2023-01-12 23:31 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-11-29 11:38 - 2021-04-14 20:39 - 000000000 ____D C:\vol0 2023-11-29 11:29 - 2021-04-09 21:59 - 000000000 ____D C:\Users\moons\AppData\Roaming\AIMP 2023-11-28 20:03 - 2021-04-10 21:04 - 000000000 ____D C:\Users\moons\AppData\Roaming\vlc 2023-11-28 19:46 - 2021-04-07 13:39 - 000000000 ____D C:\Users\moons\Downloads\pobrane 2023-11-28 19:39 - 2023-10-17 00:14 - 000000000 ____D C:\Users\moons\Documents\Nagrania dźwiękowe 2023-11-28 16:42 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-11-28 16:40 - 2021-04-08 14:24 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2023-11-28 12:25 - 2023-02-01 01:05 - 000000000 ____D C:\Users\moons\Desktop\muzyka 2023-11-28 00:43 - 2021-04-08 14:01 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2023-11-28 00:32 - 2021-04-08 15:12 - 000000000 ____D C:\Users\moons\AppData\Local\NVIDIA Corporation 2023-11-27 22:15 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\Help 2023-11-27 22:15 - 2021-04-12 11:15 - 000000000 ____D C:\Users\moons\AppData\Roaming\Wise Disk Cleaner 2023-11-27 22:06 - 2023-03-03 00:55 - 000001205 _____ C:\Users\moons\Desktop\kawałki na teledyski.txt 2023-11-27 22:05 - 2019-12-13 18:09 - 000000088 _____ C:\Users\moons\Desktop\Funbox.txt 2023-11-25 23:27 - 2022-01-30 13:08 - 000000000 ____D C:\Users\moons\AppData\Roaming\XnView 2023-11-24 20:19 - 2021-04-08 20:52 - 000000000 ____D C:\Users\moons\AppData\Local\CaptureOne 2023-11-24 16:01 - 2021-04-09 23:06 - 000000000 ____D C:\Program Files\Skylum 2023-11-24 15:45 - 2021-04-08 14:52 - 000000000 ____D C:\Users\moons\AppData\Local\Google 2023-11-24 15:45 - 2021-04-08 14:19 - 000000000 ____D C:\Program Files (x86)\Google 2023-11-24 02:37 - 2022-11-29 03:04 - 000000000 ____D C:\Users\defaultuser100000 2023-11-24 02:37 - 2022-11-29 01:54 - 000000000 ____D C:\Program Files (x86)\System Ninja 2023-11-24 02:35 - 2021-04-20 23:34 - 000000000 ____D C:\Users\moons\AppData\Local\ChomikBox 2023-11-24 02:35 - 2021-04-08 15:16 - 000000000 ____D C:\Users\moons\AppData\Local\CrashDumps 2023-11-24 02:35 - 2014-07-03 00:37 - 000000000 ____D C:\Users\moons\Desktop\DCIM 2023-11-22 22:35 - 2021-06-22 11:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2023-11-22 18:24 - 2021-06-22 11:12 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2023-11-22 16:27 - 2023-09-26 16:32 - 000000000 ____D C:\Users\moons\Desktop\Eksport bez tytułu 2023-11-15 16:11 - 2023-09-06 11:10 - 000000000 ____D C:\Users\moons\Desktop\Księgowość 2023-11-15 00:00 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate 2023-11-14 23:44 - 2022-05-07 11:41 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2023-11-14 23:44 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2023-11-14 23:44 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources 2023-11-14 23:44 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-11-14 23:44 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-11-14 23:37 - 2021-04-08 14:25 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-11-14 23:35 - 2021-04-08 14:24 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-11-14 23:34 - 2022-11-29 10:03 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-11-11 00:11 - 2021-04-22 13:30 - 000000000 ____D C:\Users\moons\AppData\Roaming\PhotoScape 2023-11-09 00:13 - 2021-04-08 15:09 - 000000000 ____D C:\Users\moons\AppData\Local\NVIDIA 2023-11-09 00:09 - 2022-11-29 10:03 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-11-09 00:09 - 2022-11-29 10:03 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-11-09 00:09 - 2022-11-29 10:03 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-11-09 00:09 - 2022-11-29 10:03 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-11-09 00:09 - 2022-11-29 10:03 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-11-09 00:09 - 2022-11-29 10:03 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-11-09 00:09 - 2022-11-29 10:03 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-11-09 00:09 - 2022-11-29 10:03 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-11-09 00:09 - 2022-11-29 10:03 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2023-11-09 00:09 - 2021-04-08 15:12 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2023-11-09 00:09 - 2021-04-08 14:01 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2023-11-07 12:48 - 2020-11-19 00:39 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2023-11-03 12:56 - 2021-05-24 22:14 - 000000752 _____ C:\Users\moons\Desktop\Zdjęcia nasze — skrót .lnk 2023-11-02 23:52 - 2023-05-23 11:52 - 000000000 ____D C:\Users\moons\Desktop\fidom 2023-11-02 23:51 - 2022-05-21 20:44 - 000000000 ____D C:\Users\moons\Desktop\Untitled Export1 2023-11-02 23:37 - 2021-09-15 20:43 - 000000000 ____D C:\Users\moons\Desktop\renowacje 2023-11-02 22:22 - 2021-04-08 14:09 - 000000000 ____D C:\Users\moons\AppData\Local\Packages 2023-11-02 22:22 - 2020-11-19 00:43 - 000000000 ____D C:\ProgramData\Packages 2023-11-02 22:19 - 2021-04-08 14:11 - 000000000 ___RD C:\Users\moons\OneDrive 2023-11-02 22:18 - 2021-04-08 14:17 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2023-11-02 22:13 - 2021-04-13 16:01 - 000000000 ____D C:\Program Files\Bonjour 2023-11-02 22:12 - 2023-10-17 00:24 - 000000000 ____D C:\Program Files\Vidmore 2023-11-02 22:10 - 2021-04-08 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2023-11-02 05:00 - 2021-04-12 11:25 - 002905128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2023-11-02 05:00 - 2021-04-12 11:25 - 002235944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2023-11-02 05:00 - 2021-04-12 11:25 - 001296936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll 2023-11-02 04:33 - 2021-04-12 11:25 - 000086568 _____ C:\WINDOWS\system32\FvSDK_x64.dll 2023-11-02 04:33 - 2021-04-12 11:25 - 000075304 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll ==================== Pliki w katalogu głównym wybranych folderów ======== 2021-11-20 18:04 - 2022-03-20 23:19 - 000004608 _____ () C:\Users\moons\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2021-04-15 12:08 - 2022-11-15 16:35 - 000007605 _____ () C:\Users\moons\AppData\Local\Resmon.ResmonCfg ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================