Witam Po pobraniu i odpaleniu złego torrenta trzeba coś naprawić i ogólnie zrobić porządek w systemie. Niestety wyłączyłem też usługę windows update i potrzebuje zresetować ustawienia, jednak nie pamiętam jak to robiłem. :( Proszę o sprawdzenie logów i pomoc.
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 14-09-2019
Uruchomiony przez Weronika (administrator) WERKA (ASUSTeK COMPUTER INC. X555LJ) (14-09-2019 21:06:49)
Uruchomiony z C:\Users\Weronika\Desktop
Załadowane profile: Weronika (Dostępne profile: Weronika & Rodzice)
Platform: Windows 10 Home Wersja 1803 17134.471 (X64) Język: Polski (Polska)
Domyślna przeglądarka: Chrome
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(Adobe Inc. - & gt; Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. - & gt; Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. - & gt; Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. - & gt; Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. - & gt; Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. - & gt; Apple Inc.) E:\Program Files\iTunes\iTunesHelper.exe
(ASUSTeK Computer Inc. - & gt; ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc. - & gt; AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. - & gt; AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc. - & gt; AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Atheros) [Brak podpisu cyfrowego] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Bitdefender) [Brak podpisu cyfrowego] C:\Windows\Temp\syscheck1.exe
(Electronic Arts, Inc. - & gt; Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google Inc - & gt; Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel(R) pGFX - & gt; ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX - & gt; Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX - & gt; Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX - & gt; Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Software - & gt; Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software - & gt; Intel Corporation) C:\Windows\Temp\DPTF\esif_assist.exe
(McAfee, Inc. - & gt; McAfee, Inc.) C:\Program Files\Common Files\McAfee\systemcore\mfemms.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation - & gt; Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) [Brak podpisu cyfrowego] C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_1.16.1012.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\CastSrv.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows - & gt; Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Nero AG - & gt; Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation - & gt; NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Paramount Software UK Ltd - & gt; Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(Paramount Software UK Ltd - & gt; Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(Paramount Software UK Ltd - & gt; Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(Realtek Semiconductor Corp - & gt; Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Wacom Technology Corp. - & gt; Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe
(Wacom Technology Corp. - & gt; Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Wacom Technology Corp. - & gt; Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(Wacom Technology Corp. - & gt; Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(Wacom Technology Corp. - & gt; Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
==================== Rejestr (filtrowane) ===========================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [SecurityHealth] = & gt; C:\Program Files\Windows Defender\MSASCuiL.exe [193024 2018-12-18] (Microsoft Corporation) [Brak podpisu cyfrowego]
HKLM\...\Run: [NvBackend] = & gt; C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation - & gt; NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] = & gt; C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-03-22] (Adobe Systems Incorporated - & gt; Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] = & gt; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
HKLM\...\Run: [Reflect UI] = & gt; C:\Program Files\Macrium\Common\ReflectUI.exe [3523848 2018-07-03] (Paramount Software UK Ltd - & gt; Paramount Software UK Ltd)
HKLM\...\Run: [winlogui] = & gt; C:\WINDOWS\system32\winlogui.exe [1803776 2019-03-01] (Microsoft Corporation) [Brak podpisu cyfrowego]
HKLM\...\Run: [Logitech Download Assistant] = & gt; C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech - & gt; Logitech, Inc.)
HKLM\...\Run: [iTunesHelper] = & gt; E:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. - & gt; Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-12-19] (Oracle America, Inc. - & gt; Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] = & gt; " C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe "
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia & lt; ==== UWAGA
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] = & gt; C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows - & gt; Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] = & gt; C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows - & gt; Microsoft Corporation)
HKU\S-1-5-21-2951374253-1475496036-3742475440-1001\...\Run: [CCleaner Smart Cleaning] = & gt; C:\Program Files\CCleaner\CCleaner64.exe [18594760 2018-09-19] (Piriform Ltd - & gt; Piriform Ltd)
HKU\S-1-5-21-2951374253-1475496036-3742475440-1001\...\Run: [7250720] = & gt; C:\Users\Weronika\AppData\Local\Temp\is-EC72F.tmp\SleptAway.exe [544540 2019-04-10] ( ) [Brak podpisu cyfrowego] & lt; ==== UWAGA
HKU\S-1-5-21-2951374253-1475496036-3742475440-1001\...\Run: [2196998] = & gt; C:\Users\Weronika\AppData\Roaming\5fzj1sytwvd\hb5dojqmcya.exe [544540 2019-04-11] ( ) [Brak podpisu cyfrowego]
HKU\S-1-5-21-2951374253-1475496036-3742475440-1001\...\Run: [transactionservices] = & gt; C:\Users\Weronika\Documents\TransactionServices Inc\transactionserviceshelper.exe [425472 2019-04-11] () [Brak podpisu cyfrowego]
HKU\S-1-5-21-2951374253-1475496036-3742475440-1001\...\Run: [transactionservicesmain] = & gt; C:\Users\Weronika\Documents\TransactionServices Inc\transactionservices.exe.lnk [1994 2019-04-11] () [Brak podpisu cyfrowego]
HKLM\...\Drivers32: [vidc.VP60] = & gt; C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts - & gt; On2.com)
HKLM\...\Drivers32: [vidc.VP61] = & gt; C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts - & gt; On2.com)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] - & gt; C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-11] (Google LLC - & gt; Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] - & gt; C:\WINDOWS\system32\AthCredentialProvider.dll [2014-09-29] (Qualcomm Atheros - & gt; Qualcomm®Atheros®) [Brak podpisu cyfrowego]
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] - & gt; C:\WINDOWS\system32\AthCredentialProvider.dll [2014-09-29] (Qualcomm Atheros - & gt; Qualcomm®Atheros®) [Brak podpisu cyfrowego]
GroupPolicy: Ograniczenia - Chrome & lt; ==== UWAGA
CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia & lt; ==== UWAGA
==================== Zaplanowane zadania (filtrowane) =============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {0A041AF3-994D-499A-A8E6-239EE2103306} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d - & gt; Brak pliku & lt; ==== UWAGA
Task: {0F38D44C-F70D-406B-B3CD-92B88102EDB2} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d - & gt; Brak pliku & lt; ==== UWAGA
Task: {174B83F4-7061-4463-9CE0-C7E208A97DDD} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d - & gt; Brak pliku & lt; ==== UWAGA
Task: {3320BA2B-CDC3-4B77-9BDB-FAA824B019B6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB = & gt; C:\WINDOWS\system32\MRT.exe [137260640 2018-12-12] (Microsoft Corporation - & gt; Microsoft Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join = & gt; C:\WINDOWS\System32\AutoWorkplace.exe
Task: {3AA5AC46-227C-4035-8EE2-BE916A85305E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess - & gt; Brak pliku & lt; ==== UWAGA
Task: {3CBCE9C6-CC50-4586-9754-F345CF6BB6A6} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2951374253-1475496036-3742475440-1005 = & gt; C:\Users\Weronika\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {424F4ECB-F2FA-422B-A01A-C15FD7D38ADB} - System32\Tasks\GoogleUpdateTaskMachineCore = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-07] (Google Inc - & gt; Google Inc.)
Task: {42B4AC7B-1999-40A8-8571-4D5F1FDB30B8} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task = & gt; {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {4335A5E8-DE56-47ED-8EED-600AC1276F2B} - System32\Tasks\Microsoft\Windows\WDI\SrvHost = & gt; rundll32.exe winscomrssrv.dll,SrvMainHost & lt; ==== UWAGA
Task: {4716597E-22A9-4231-852A-C7820F15ECDF} - System32\Tasks\CCleanerSkipUAC = & gt; C:\Program Files\CCleaner\CCleaner.exe [13769584 2018-09-19] (Piriform Ltd - & gt; Piriform Ltd)
Task: {48A226D5-0CEB-42C3-B536-E4ECB1DBDB47} - System32\Tasks\CCleaner Update = & gt; C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-06] (Piriform Software Ltd - & gt; Piriform Software Ltd)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM = & gt; {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [33280 2018-04-12] (Microsoft Windows - & gt; Microsoft Corporation)
Task: {5D3390DB-A928-47B7-BF58-26CD3E744E1F} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime - & gt; Brak pliku & lt; ==== UWAGA
Task: {611C2C08-D4A2-4CB5-A466-456ED5009763} - System32\Tasks\AdobeGCInvoker-1.0-Werka-Rodzice = & gt; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task = & gt; {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {6E93D9A1-5C81-4F83-A6A8-E7B9D80F898D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent - & gt; Brak pliku & lt; ==== UWAGA
Task: {7AE4FE93-59F2-4BAC-A25D-F0901BCA0259} - System32\Tasks\ASUS Smart Gesture Launcher = & gt; C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18416 2015-12-14] (ASUSTeK Computer Inc. - & gt; AsusTek)
Task: {828E476E-F750-4510-B5A6-B651A5B749D7} - System32\Tasks\GoogleUpdateTaskMachineUA = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-07] (Google Inc - & gt; Google Inc.)
Task: {836383DC-D083-4C8B-8E49-5C0CA20AA1E8} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d - & gt; Brak pliku & lt; ==== UWAGA
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task = & gt; {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {9FE59475-2A7C-4F1B-AD09-5E98EE342B6B} - System32\Tasks\RTKCPL = & gt; C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13872856 2014-12-26] (Realtek Semiconductor Corp - & gt; Realtek Semiconductor)
Task: {AB94823C-023F-4E4D-9445-439852925C25} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent - & gt; Brak pliku & lt; ==== UWAGA
Task: {AB9EC814-993E-4F2E-A7F6-0033059C7454} - System32\Tasks\avast! Windows 10 Start Menu helper = & gt; c:\program files\avast software\avast\asww10mon.exe
Task: {BF98F013-4DDF-414B-A124-DC8301DA0F90} - \WPD\SqmUpload_S-1-5-21-2951374253-1475496036-3742475440-1005 - & gt; Brak pliku & lt; ==== UWAGA
Task: {C946D5BF-170D-4967-A715-CBB736E6A1D0} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-wojarska@hotmail.com = & gt; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor = & gt; {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CEB694BE-FD4E-4C0E-BA1C-A9E87CDDB3C6} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary = & gt; rundll32.exe StartupCheckLibrary.dll,DllMainRunLibrary & lt; ==== UWAGA
Task: {D06AB51F-C86E-4889-AF86-E742C15EB944} - System32\Tasks\ASUS Splendid ACMON = & gt; C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [60488 2014-11-05] (ASUSTeK Computer Inc. - & gt; ASUS)
Task: {D72B4355-47A4-4048-96F5-BF4E2CA8D7C4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B - & gt; Brak pliku & lt; ==== UWAGA
Task: {DB291FF5-E650-4028-BEE7-6E7014357E48} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d - & gt; Brak pliku & lt; ==== UWAGA
Task: {DBDE2803-DC42-42A1-A443-0C0A8FD87497} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d - & gt; Brak pliku & lt; ==== UWAGA
Task: {E5D06F33-5B86-41A7-BB86-DE17EFEC2C54} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload = & gt; {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {E697F6F2-46A8-4E14-AA5E-FE067A4AEF46} - \Microsoft\Windows\UNP\RunCampaignManager - & gt; Brak pliku & lt; ==== UWAGA
Task: {F31C6B3C-27CD-4242-B00F-ED32A76779EA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig - & gt; Brak pliku & lt; ==== UWAGA
Task: {F8BD9FB3-067C-4311-98C9-C7FC81B989DB} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime - & gt; Brak pliku & lt; ==== UWAGA
Task: {FD5ECA94-38A7-4CC2-84A7-1E72F685F673} - \WPD\SqmUpload_S-1-5-21-2951374253-1475496036-3742475440-1001 - & gt; Brak pliku & lt; ==== UWAGA
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Hosts: W pliku Hosts jest więcej niż jedno wejście. Sprawdź sekcję Hosts w Addition.txt
Tcpip\..\Interfaces\{151612fd-015a-41aa-9b86-a8bb47eebe59}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ff53b9eb-1d73-4d0c-b1d6-88a7dc58984b}: [DhcpNameServer] 192.168.56.1
Internet Explorer:
==================
HKU\S-1-5-21-2951374253-1475496036-3742475440-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoGk3GzeHhcr-ccYuvFOv1-XJNpDA7oq5q7tpn3MtozLaHYDkTmiGp7Wzyg3oE9qnaWZfcUIKyRigYypPCfsfpYJNPs3ViKQIYGFHBFloKjzV3FwRwrKzTrvYqNyQrsWLxPSkBlHUFlKg7KQCAQhnUvn67KifIOpmKsOwGkvOUtPo & q={searchTerms}
HKU\S-1-5-21-2951374253-1475496036-3742475440-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoGk3GzeHhcr-ccYuvFOv1-XJNpDA7oq5q7tpn3MtozLaHYDkTmiGp7Wzyg3oE9qnaWZfcUIKyRigYypD4-fRqVy-VzIPAtnT975l1faLYLJd2ksMpp9N_3jH-AFN8_YZ2_f4LCNZzCkhgizZmkZq3X78lymWNyfmN3RmWsIzZw1S
HKU\S-1-5-21-2951374253-1475496036-3742475440-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKLM-x32 - & gt; DefaultScope - brak wartości
BHO-x32: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-03-26] (Oracle America, Inc. - & gt; Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-03-26] (Oracle America, Inc. - & gt; Oracle Corporation)
Edge:
======
DownloadDir: C:\Users\Weronika\Downloads
FireFox:
========
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 - & gt; C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom) [Brak podpisu cyfrowego]
FF Plugin: adobe.com/AdobeAAMDetect - & gt; C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated - & gt; Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-03-26] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 - & gt; C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-03-26] (Oracle America, Inc. - & gt; Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 - & gt; C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation - & gt; Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-30] (Google Inc - & gt; Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-30] (Google Inc - & gt; Google LLC)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 - & gt; C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom) [Brak podpisu cyfrowego]
FF Plugin-x32: adobe.com/AdobeAAMDetect - & gt; C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated - & gt; Adobe Systems)
FF Plugin HKU\S-1-5-21-2951374253-1475496036-3742475440-1001: wacom.com/WacomTabletPlugin - & gt; C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-12-25] (Wacom) [Brak podpisu cyfrowego]
Chrome:
=======
CHR HomePage: Default - & gt; hxxps://www.google.com/
CHR StartupUrls: Default - & gt; " hxxps://www.google.pl/ "
CHR Profile: C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default [2019-08-08]
CHR Extension: (Prezentacje) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Dysk Google) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Bloker reklam AdGuard) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [2019-07-05]
CHR Extension: (YouTube) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Google Search) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Arkusze) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-26]
CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-15]
CHR Extension: (Adblocker for Youtube™) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofohpmdcbdgcchmhmmcfdmbegompidlm [2019-04-11] [UpdateUrl:hxxps://clients88.google.com/service/update2/crx] & lt; ==== UWAGA
CHR Extension: (Gmail) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\Weronika\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-04-10]
==================== Usługi (filtrowane) ====================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. - & gt; Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. - & gt; Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [5745672 2018-04-25] (BattlEye Innovations e.K. - & gt; )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-03-26] (EasyAntiCheat Oy - & gt; EasyAntiCheat Ltd)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1037568 2014-09-18] (Intel(R) Software - & gt; Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel(R) pGFX - & gt; Intel Corporation)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [4091112 2017-11-09] (Paramount Software UK Ltd - & gt; Paramount Software UK Ltd)
S4 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232656 2015-04-08] (McAfee, Inc. - & gt; McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [373704 2015-05-14] (McAfee, Inc. - & gt; McAfee, Inc.)
S4 mfevtp; C:\Windows\system32\mfevtps.exe [250672 2015-04-08] (McAfee, Inc. - & gt; McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation - & gt; NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2329904 2019-08-29] (Electronic Arts, Inc. - & gt; Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3204912 2019-08-29] (Electronic Arts, Inc. - & gt; Electronic Arts)
S2 symsrv; C:\Program Files\windows nt\symsrv.exe [145168 2019-04-11] (Microsoft Corporation - & gt; Microsoft Corporation)
R2 VMware Snapshot Provider.; C:\WINDOWS\TEMP\syscheck1.exe [118784 2019-04-25] (Bitdefender) [Brak podpisu cyfrowego]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation - & gt; Microsoft Corporation)
R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [627992 2014-01-13] (Wacom Technology Corp. - & gt; Wacom Technology, Corp.)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-09-28] (Atheros) [Brak podpisu cyfrowego]
R2 NVDisplay.ContainerLocalSystem; " C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe " -s NVDisplay.ContainerLocalSystem -f " C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log " -l 3 -d " C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem " -r -p 30000
S2 rcdll; C:\Users\Weronika\AppData\Local\Temp\rcdll.exe [X] & lt; ==== UWAGA
===================== Sterowniki (filtrowane) ======================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R3 athr; C:\WINDOWS\System32\drivers\athw8x.sys [4233728 2018-04-12] (Microsoft Windows - & gt; Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [98296 2015-12-14] (ASUSTeK Computer Inc. - & gt; ASUS Corporation)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [68784 2015-04-08] (McAfee, Inc. - & gt; McAfee, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. - & gt; Samsung Electronics Co., Ltd.)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [38720 2014-09-18] (Intel(R) Software - & gt; Intel Corporation)
R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [38208 2014-09-18] (Intel(R) Software - & gt; Intel Corporation)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [132848 2017-09-25] (ESET, spol. s r.o. - & gt; ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107344 2017-04-07] (ESET, spol. s r.o. - & gt; ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-02-15] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180088 2017-10-11] (ESET, spol. s r.o. - & gt; ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50752 2017-04-07] (ESET, spol. s r.o. - & gt; ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [78192 2017-04-07] (ESET, spol. s r.o. - & gt; ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [102160 2017-09-25] (ESET, spol. s r.o. - & gt; ESET)
R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [216360 2014-09-18] (Intel(R) Software - & gt; Intel Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [19976 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher - & gt; ASUS)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [79016 2014-08-26] (Intel(R) Software - & gt; Intel Corporation)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] (ASUSTeK Computer Inc. - & gt; )
S3 mfeapfk; C:\WINDOWS\System32\drivers\mfeapfk.sys [181584 2014-10-01] (McAfee, Inc. - & gt; McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [338272 2015-04-08] (McAfee, Inc. - & gt; McAfee, Inc.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [80160 2015-04-08] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [488000 2015-04-08] (McAfee, Inc. - & gt; McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [864200 2015-04-08] (McAfee, Inc. - & gt; McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [335944 2015-04-08] (McAfee, Inc. - & gt; McAfee, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvlddmkm.sys [17003280 2017-12-12] (NVIDIA Corporation - & gt; NVIDIA Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [428032 2017-02-16] (Realtek Semiconductor Corp. - & gt; Realsil Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. - & gt; Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2019-04-03] (Microsoft Windows Hardware Compatibility Publisher - & gt; Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher - & gt; Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows - & gt; Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows - & gt; Microsoft Corporation)
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc (utworzone) ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2019-09-14 21:06 - 2019-09-14 21:07 - 000030055 _____ C:\Users\Weronika\Desktop\FRST.txt
2019-09-14 21:05 - 2019-09-14 21:05 - 001614848 _____ (Farbar) C:\Users\Weronika\Desktop\FRST64.exe
2019-09-14 20:53 - 2019-09-14 21:06 - 000000000 ____D C:\FRST
2019-09-14 20:32 - 2019-02-15 19:48 - 000000000 ____D C:\Users\Weronika\Desktop\Aborcja i poronienie MOD PL
2019-09-14 20:26 - 2019-09-14 20:19 - 001279575 _____ C:\Users\Weronika\Desktop\McCmdCenter_AllModules_6_5_0.zip
==================== Jeden miesiąc (zmodyfikowane) ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2019-09-14 20:51 - 2015-09-06 20:07 - 000000000 ____D C:\Users\Weronika\AppData\Local\ElevatedDiagnostics
2019-09-14 20:16 - 2015-07-15 22:38 - 000000165 _____ C:\Users\Weronika\AppData\Roaming\sp_data.sys
2019-09-14 20:11 - 2016-11-11 14:00 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-09-14 20:11 - 2016-04-29 08:56 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2019-09-14 20:11 - 2015-07-15 22:35 - 000000000 __SHD C:\Users\Weronika\IntelGraphicsProfiles
2019-09-14 20:11 - 2015-03-27 22:53 - 000000000 ____D C:\ProgramData\NVIDIA
2019-09-14 20:06 - 2018-06-04 22:32 - 000004210 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{13ADE1E3-AE38-4804-8510-78A6D147D7C2}
2019-09-14 20:03 - 2018-06-04 21:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-09-13 21:52 - 2018-06-04 22:32 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2951374253-1475496036-3742475440-1005
2019-09-13 21:52 - 2018-06-04 22:06 - 000002456 _____ C:\Users\Rodzice\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-09-13 21:52 - 2017-06-19 09:35 - 000000000 ___RD C:\Users\Rodzice\OneDrive
2019-09-13 17:29 - 2018-06-04 22:21 - 003493484 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-09-13 17:29 - 2018-06-02 13:03 - 000718958 _____ C:\WINDOWS\system32\perfh00E.dat
2019-09-13 17:29 - 2018-06-02 13:03 - 000162242 _____ C:\WINDOWS\system32\perfc00E.dat
2019-09-13 17:29 - 2018-06-02 11:07 - 000707376 _____ C:\WINDOWS\system32\perfh005.dat
2019-09-13 17:29 - 2018-06-02 11:07 - 000144824 _____ C:\WINDOWS\system32\perfc005.dat
2019-09-13 17:29 - 2018-04-12 17:51 - 000785012 _____ C:\WINDOWS\system32\perfh015.dat
2019-09-13 17:29 - 2018-04-12 17:51 - 000152122 _____ C:\WINDOWS\system32\perfc015.dat
2019-09-13 17:29 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-09-13 17:24 - 2018-06-04 22:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-09-13 17:24 - 2015-11-19 10:21 - 000000165 _____ C:\Users\Rodzice\AppData\Roaming\sp_data.sys
2019-09-13 17:24 - 2015-11-19 10:20 - 000000000 __SHD C:\Users\Rodzice\IntelGraphicsProfiles
2019-09-13 06:48 - 2018-04-11 23:04 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2019-09-11 20:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-09-03 07:21 - 2019-07-22 19:02 - 000000000 ____D C:\Program Files (x86)\Origin
==================== Pliki w katalogu głównym wybranych folderów ================
2015-07-15 22:38 - 2019-09-14 20:16 - 000000165 _____ () C:\Users\Weronika\AppData\Roaming\sp_data.sys
2019-04-11 21:13 - 2019-04-11 21:13 - 007906816 _____ () C:\Users\Weronika\AppData\Local\agent.dat
2019-04-11 21:13 - 2019-04-11 21:13 - 000070992 _____ () C:\Users\Weronika\AppData\Local\Config.xml
2019-04-11 21:15 - 2019-04-11 21:17 - 044396544 _____ (Mozilla) C:\Users\Weronika\AppData\Local\firefoxSetup.exe.td
2019-04-11 21:15 - 2019-04-11 21:17 - 000004131 _____ () C:\Users\Weronika\AppData\Local\firefoxSetup.exe.td.cfg
2019-04-11 21:13 - 2019-04-11 21:12 - 001632256 _____ (TODO: & lt; Company name & gt; ) C:\Users\Weronika\AppData\Local\Freetom.exe
2019-04-11 21:13 - 2019-04-11 21:13 - 000278511 _____ () C:\Users\Weronika\AppData\Local\Freetom.tst
2019-04-11 21:12 - 2019-04-11 21:12 - 000140800 _____ () C:\Users\Weronika\AppData\Local\installer.dat
2019-04-11 21:13 - 2019-04-11 21:13 - 000005568 _____ () C:\Users\Weronika\AppData\Local\md.xml
2019-04-11 21:13 - 2019-04-11 21:13 - 000126464 _____ () C:\Users\Weronika\AppData\Local\noah.dat
2018-10-05 11:45 - 2018-10-05 11:45 - 000000000 _____ () C:\Users\Weronika\AppData\Local\oobelibMkey.log
2019-03-10 15:38 - 2019-03-10 15:38 - 000046178 _____ () C:\Users\Weronika\AppData\Local\recently-used.xbel
2019-04-11 21:13 - 2019-04-11 21:12 - 001632256 _____ (TODO: & lt; Company name & gt; ) C:\Users\Weronika\AppData\Local\Red-Hold.exe
2019-04-11 21:13 - 2019-04-11 21:13 - 002035864 _____ () C:\Users\Weronika\AppData\Local\Red-Hold.tst
2018-09-19 18:00 - 2018-09-19 18:00 - 000000017 _____ () C:\Users\Weronika\AppData\Local\resmon.resmoncfg
2019-04-11 21:12 - 2019-04-12 14:19 - 000722944 _____ () C:\Users\Weronika\AppData\Local\sha.db
2019-04-11 21:13 - 2019-04-11 21:13 - 001895383 _____ () C:\Users\Weronika\AppData\Local\StringIs.bin
2019-04-11 21:13 - 2019-04-11 21:13 - 000032038 _____ () C:\Users\Weronika\AppData\Local\uninstall_temp.ico
==================== SigCheck ===============================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
==================== Koniec FRST.txt ============================