Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 11-01-2023 Uruchomiony przez Admin (administrator) DESKTOP-S97F1KL (Dell Inc. Inspiron 3780) (17-01-2023 13:57:16) Uruchomiony z D:\Pobrane Załadowane profile: Admin Platform: Microsoft Windows 10 Home Wersja 21H2 19044.2486 (X64) Język: Polski (Polska) Domyślna przeglądarka: Chrome Tryb startu: Normal ==================== Procesy (filtrowane) ================= (Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.) (C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe ->) (G DATA Software AG -> G DATA CyberDefense AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltSur64.exe (C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe ->) (G DATA CyberDefense AG -> G Data CyberDefense AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\DnsCloudClientHost64.exe (C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe ->) (G DATA CyberDefense AG -> G DATA CyberDefense AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVKTray\AVKTray.exe (C:\Program Files (x86)\G DATA\InternetSecurity\AVKTray\AVKTray.exe ->) (G DATA Software AG -> G DATA CyberDefense AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe (C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe ->) (G DATA CyberDefense AG -> G DATA Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe (C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe (cmd.exe ->) (G DATA CyberDefense AG -> G DATA CyberDefense AG) C:\Program Files (x86)\Common Files\G Data\WebProtection\NativeMessagingWP.exe (D:\NapiProjekt\napisy.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <9> (DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe (DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atieclxx.exe (explorer.exe ->) () [Brak podpisu cyfrowego] D:\NapiProjekt\napisy.exe (explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5> (explorer.exe ->) (Napisy24.pl) [Brak podpisu cyfrowego] C:\Program Files (x86)\Napisy24\Napisy24.exe (explorer.exe ->) (Sony Nordic (Sweden), Filial till Sony Europe B.V.(NL) -> Sony) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe (explorer.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe (services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354705.inf_amd64_dc9dad6460c6c350\B352547\atiesrxx.exe (services.exe ->) (G DATA CyberDefense AG -> G DATA CyberDefense AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe (services.exe ->) (G DATA CyberDefense AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe (services.exe ->) (G DATA CyberDefense AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe (services.exe ->) (G DATA CyberDefense AG -> G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe (services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2687b494da5e552a\IntelCpHDCPSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_2687b494da5e552a\IntelCpHeciSvc.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe (services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe (services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_dd349ca1e8d98184\LMS.exe (services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_9c788f1d162b1224\RstMwService.exe (services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe (services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe (services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_8443b1c224b06d42\RtkAudUService64.exe <3> (services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe (services.exe ->) (Sony) [Brak podpisu cyfrowego] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe (services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (services.exe ->) (Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSysSvc64.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe (svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Rejestr (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.) HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_8443b1c224b06d42\RtkAudUService64.exe [1256824 2021-04-07] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_9384fc4d30af89c3\WavesSvc64.exe [1645664 2020-04-14] (Waves Inc -> Waves Audio Ltd.) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation -> Microsoft Corporation) HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Ograniczenia <==== UWAGA HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Ograniczenia <==== UWAGA HKU\S-1-5-21-915156285-3322187794-3024190585-1001\...\Run: [Napisy24Update] => C:\Program Files (x86)\Napisy24\Napisy24Update.exe [3990528 2018-02-02] (Napisy24.pl) [Brak podpisu cyfrowego] HKU\S-1-5-21-915156285-3322187794-3024190585-1001\...\Run: [Napisy24.pl] => C:\Program Files (x86)\Napisy24\Napisy24.exe [7487488 2019-06-19] (Napisy24.pl) [Brak podpisu cyfrowego] HKU\S-1-5-21-915156285-3322187794-3024190585-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [1708624 2022-02-01] (Sony Nordic (Sweden), Filial till Sony Europe B.V.(NL) -> Sony) HKU\S-1-5-21-915156285-3322187794-3024190585-1001\...\Run: [MicrosoftEdgeAutoLaunch_5EFC0ECB77A7585FE9DCDD0B2E946A2B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188616 2023-01-15] (Microsoft Corporation -> Microsoft Corporation) HKU\S-1-5-21-915156285-3322187794-3024190585-1001\...\MountPoints2: {5d942b20-ca0b-11ec-a817-0c96e6afbe70} - "F:\startme.exe" HKU\S-1-5-21-915156285-3322187794-3024190585-1001\...\MountPoints2: {97da0666-460c-11eb-a7b2-0c96e6afbe70} - "F:\startme.exe" HKU\S-1-5-21-915156285-3322187794-3024190585-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.74\Installer\chrmstp.exe [2023-01-12] (Google LLC -> Google LLC) Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk [2022-11-23] ShortcutTarget: Tworzenie wycinków ekranu i uruchamianie programu OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation) ==================== Zaplanowane zadania (filtrowane) ============ (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {2E04682E-5041-41D8-8BFE-2A4F0155A16F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-21] (Google Inc -> Google LLC) Task: {D0CCF9D2-4687-47A8-B36E-44EA924D9CEE} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_183917c66152901d\lib\IntelPTTEKRecertification.exe [818000 2021-12-08] (Intel Corporation -> Intel(R) Corporation) Task: {F1154D10-9676-4BEA-ABC1-6BB9ACD4AC88} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-21] (Google Inc -> Google LLC) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Internet (filtrowane) ==================== (Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{0f5b9863-91da-45bc-a16b-79b5c9df5000}: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{a2d7524f-97c1-46ca-8184-9bc249212600}: [DhcpNameServer] 192.168.2.1 Edge: ======= Edge Extension: (Brak nazwy) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nie znaleziono] Edge Extension: (Brak nazwy) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nie znaleziono] Edge Extension: (Brak nazwy) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nie znaleziono] Edge Extension: (Brak nazwy) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nie znaleziono] Edge DefaultProfile: Default Edge Profile: C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-17] FireFox: ======== FF Plugin: @videolan.org/vlc,version=3.0.11 -> D:\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.12 -> D:\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin: @videolan.org/vlc,version=3.0.8 -> D:\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> F:\VLC\npvlc.dll [Brak pliku] Chrome: ======= CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2023-01-17] CHR DownloadDir: D:\Pobrane CHR Extension: (uBlock Origin) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2022-12-30] CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-30] CHR Extension: (G DATA WebProtection) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\iokapgenfjiafbmphhhcgmgkobiiomcp [2023-01-03] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29] CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\System Profile [2019-12-29] ==================== Usługi (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [7702560 2022-11-27] (G DATA CyberDefense AG -> G DATA Software AG) R2 AVKWCtl; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe [3841064 2022-11-27] (G DATA CyberDefense AG -> G DATA CyberDefense AG) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8885112 2022-05-03] (BattlEye Innovations e.K. -> ) R3 GDFwSvc; C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe [7054376 2022-11-27] (G DATA CyberDefense AG -> G Data Software AG) R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [2122776 2022-11-27] (G DATA CyberDefense AG -> G DATA Software AG) R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [229360 2022-12-02] (HP Inc. -> HP Inc.) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16187368 2022-05-11] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2578432 2022-02-01] (Sony) [Brak podpisu cyfrowego] S3 GDBackupSvc; "C:\Program Files (x86)\G DATA\InternetSecurity\AVKBackup\AVKBackupService.exe" [X] ===================== Sterowniki (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S0 GDElam; C:\WINDOWS\System32\DRIVERS\GDElam.sys [278504 2022-11-27] (Microsoft Windows Early Launch Anti-malware Publisher -> G DATA CyberDefense AG) R3 GDKBB; C:\Windows\system32\drivers\GDKBB64.sys [35776 2022-12-20] (Microsoft Windows Hardware Compatibility Publisher -> G DATA CyberDefense AG) R3 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt64.sys [38984 2022-12-20] (G DATA Software AG -> G DATA Software AG) R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [896424 2022-08-19] (Microsoft Windows Hardware Compatibility Publisher -> G DATA CyberDefense AG) R3 GDNetflt; C:\WINDOWS\System32\DRIVERS\gdnetflt.sys [127928 2022-11-27] (Microsoft Windows Hardware Compatibility Publisher -> G DATA Software AG) R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [313768 2022-12-20] (Microsoft Windows Hardware Compatibility Publisher -> G DATA CyberDefense AG) R1 gdwfpcd; C:\WINDOWS\System32\drivers\gdwfpcd64.sys [78760 2022-12-20] (Microsoft Windows Hardware Compatibility Publisher -> G DATA Software AG) S3 GRD; C:\Windows\system32\drivers\GRD.sys [125640 2020-02-25] (G DATA Software AG -> G Data Software) R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [327104 2022-08-19] (Microsoft Windows Hardware Compatibility Publisher -> G DATA CyberDefense AG) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Jeden miesiąc (utworzone) (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-01-17 13:56 - 2023-01-17 13:57 - 000000000 ____D C:\FRST 2023-01-17 10:03 - 2023-01-17 10:03 - 000002286 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk 2023-01-12 09:54 - 2023-01-12 09:54 - 000000000 ___HD C:\$WinREAgent ==================== Jeden miesiąc (zmodyfikowane) ================== (Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.) 2023-01-17 13:48 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2023-01-17 13:42 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2023-01-17 13:38 - 2019-08-28 19:34 - 000000000 ____D C:\Users\Admin\AppData\Roaming\vlc 2023-01-17 13:28 - 2019-08-21 09:35 - 000000000 ____D C:\Program Files (x86)\Google 2023-01-17 13:20 - 2021-03-07 20:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2023-01-17 12:41 - 2019-08-16 13:21 - 000000000 __SHD C:\Users\Admin\IntelGraphicsProfiles 2023-01-17 11:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness 2023-01-17 11:02 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps 2023-01-17 10:03 - 2021-12-11 07:47 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-915156285-3322187794-3024190585-1001 2023-01-17 10:03 - 2021-03-07 20:19 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-915156285-3322187794-3024190585-1001 2023-01-17 10:03 - 2021-03-07 20:14 - 000002423 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2023-01-17 10:03 - 2020-08-09 12:25 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2023-01-16 12:23 - 2021-09-10 19:32 - 010340706 _____ C:\Users\Admin\Desktop\Trofea.xlsx 2023-01-15 22:18 - 2021-09-10 19:32 - 003785216 _____ C:\Users\Admin\Desktop\DYSKI .xls 2023-01-14 20:02 - 2019-08-21 09:11 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache 2023-01-14 10:30 - 2021-09-10 19:32 - 000003604 _____ C:\Users\Admin\Desktop\Nowy dokument tekstowy.txt 2023-01-13 15:40 - 2019-08-28 20:59 - 000000000 ____D C:\ProgramData\Napisy24 2023-01-12 22:54 - 2019-08-21 09:36 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2023-01-12 22:54 - 2019-08-21 09:36 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2023-01-12 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState 2023-01-12 18:12 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF 2023-01-12 17:56 - 2021-03-07 20:21 - 001678234 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2023-01-12 17:56 - 2019-12-07 16:08 - 000750240 _____ C:\WINDOWS\system32\perfh015.dat 2023-01-12 17:56 - 2019-12-07 16:08 - 000144934 _____ C:\WINDOWS\system32\perfc015.dat 2023-01-12 17:49 - 2022-05-04 20:32 - 000000000 ____D C:\Program Files\TeamViewer 2023-01-12 17:49 - 2021-03-07 20:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2023-01-12 17:49 - 2021-03-07 20:12 - 000008192 ___SH C:\DumpStack.log.tmp 2023-01-12 17:49 - 2019-08-16 13:21 - 000000000 ____D C:\Intel 2023-01-12 11:54 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2023-01-12 11:53 - 2021-03-07 20:12 - 000444328 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2023-01-12 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources 2023-01-12 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe 2023-01-12 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz 2023-01-12 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr 2023-01-12 10:00 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp 2023-01-12 09:59 - 2021-03-07 20:17 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2023-01-12 04:42 - 2019-08-16 13:21 - 000000000 ____D C:\WINDOWS\system32\MRT 2023-01-11 21:35 - 2019-08-16 13:21 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2023-01-09 13:40 - 2022-09-11 09:01 - 000012918 _____ C:\Users\Admin\Desktop\DO ZROBIENIA.xlsx 2023-01-05 20:40 - 2021-03-07 20:19 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2023-01-05 20:40 - 2021-03-07 20:19 - 000003442 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2023-01-03 22:13 - 2019-08-28 21:09 - 000000614 _____ C:\Users\Admin\Desktop\NapiProjekt.lnk 2023-01-03 22:13 - 2019-08-28 21:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NapiProjekt 2022-12-20 12:36 - 2020-08-31 17:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA INTERNET SECURITY 2022-12-20 12:36 - 2019-08-17 11:41 - 000078760 _____ (G DATA Software AG) C:\WINDOWS\system32\Drivers\gdwfpcd64.sys 2022-12-20 12:36 - 2019-08-17 11:41 - 000038984 _____ (G DATA Software AG) C:\WINDOWS\system32\Drivers\GDKBFlt64.sys 2022-12-20 12:36 - 2019-08-17 11:41 - 000035776 _____ (G DATA CyberDefense AG) C:\WINDOWS\system32\Drivers\GDKBB64.sys 2022-12-20 12:36 - 2019-08-17 11:41 - 000002055 _____ C:\Users\Public\Desktop\G DATA INTERNET SECURITY.lnk 2022-12-20 12:36 - 2019-08-17 11:36 - 000000000 ____D C:\ProgramData\G Data 2022-12-20 12:35 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP ==================== Pliki w katalogu głównym wybranych folderów ======== 2019-08-17 11:40 - 2019-08-17 11:40 - 000000000 _____ () C:\Users\Admin\AppData\Roaming\gdfw.log 2019-08-17 11:40 - 2019-08-17 11:40 - 000000779 _____ () C:\Users\Admin\AppData\Roaming\gdscan.log 2020-05-30 11:52 - 2020-05-30 11:52 - 082335312 _____ (Sony) C:\Users\Admin\AppData\Local\pcc.exe ==================== SigCheck ============================ (Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.) ==================== Koniec FRST.txt ========================