Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 25-09-2019Uruchomiony

1. Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 25-09-2019
2. Uruchomiony przez oem (25-09-2019 21:28:49) Run:1
3. Uruchomiony z C:\Users\oem\Downloads
4. Załadowane profile: oem (Dostępne profile: oem)
5. Tryb startu: Normal
6. ==============================================
7.  
8. fixlist - zawartość:
9. *****************
10. CloseProcesses:
11. CreateRestorePoint:
12. EmptyTemp:
13. File: C:\Advanced Wheel Mouse\wh_exec.exe
14. HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Ograniczenia <==== UWAGA
15. HKU\S-1-5-21-402273477-2533903143-1535139638-1000\...\MountPoints2: {e88a7ae9-a33e-11e9-b8d5-1c6f65cf632e} - F:\HiSuiteDownLoader.exe
16. HKU\S-1-5-21-402273477-2533903143-1535139638-1000\...\MountPoints2: {e88a7b00-a33e-11e9-b8d5-1c6f65cf632e} - F:\HiSuiteDownLoader.exe
17. HKU\S-1-5-21-402273477-2533903143-1535139638-1000\...\MountPoints2: {ec622409-c983-11e9-828f-1c6f65cf632e} - F:\HiSuiteDownLoader.exe
18. FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
19. Task: {0644C2C1-5D57-46DC-9BC7-CD7B666DBBBD} - System32\Tasks\Opera scheduled Autoupdate 1492006570 => C:\Program Files\Opera\launcher.exe [1520152 2019-09-18] (Opera Software AS -> Opera Software)
20. Tcpip\..\Interfaces\{582B0274-CA87-4332-8B7A-FE3F0454BF61}: [DhcpNameServer] 194.204.159.1 194.204.152.34
21. Tcpip\..\Interfaces\{D0DAD9D1-07B4-4C1B-9898-6645604757B8}: [DhcpNameServer] 194.204.159.1 194.204.152.34
22. HKU\S-1-5-21-402273477-2533903143-1535139638-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/pl-pl/?ocid=iehp
23. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [Brak pliku]
24. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [Brak pliku]
25. CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
26. CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nie znaleziono>
27. 2019-09-25 17:34 - 2017-04-12 16:16 - 000003884 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1492006570
28. ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Brak pliku
29. ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Brak pliku
30. ContextMenuHandlers1_S-1-5-21-402273477-2533903143-1535139638-1000: [GGDriveMenu] -> [CC]{E68D0A55-3C40-4712-B90D-DCFA93FF2534} => -> Brak pliku
31. ContextMenuHandlers4_S-1-5-21-402273477-2533903143-1535139638-1000: [GGDriveMenu] -> [CC]{E68D0A55-3C40-4712-B90D-DCFA93FF2534} => -> Brak pliku
32.  
33. *****************
34.  
35. Procesy zostały pomyślnie zamknięte.
36. Punkt przywracania został pomyślnie utworzony.
37.  
38. ========================= File: C:\Advanced Wheel Mouse\wh_exec.exe ========================
39.  
40. C:\Advanced Wheel Mouse\wh_exec.exe
41. Brak podpisu cyfrowego
42. MD5: 7335312DDDEB92AA7462A4DC20467B82
43. Data utworzenia i modyfikacji: 2016-08-24 11:58 - 2000-01-01 02:00
44. Rozmiar: 000147456
45. Atrybuty: ----A
46. Firma:
47. Wewnętrzna nazwa:
48. Oryginalna nazwa:
49. Produkt:
50. Opis: Mouse Start Program
51. Plik Wersja:
52. Produkt Wersja:
53. Prawa autorskie:
54. VirusTotal: https://www.virustotal.com/file/f0f0ea438101a3d41c89817f22a3118ad7e8a4004d63ed16291c6a56a8503ef8/analysis/1487884631/
55.  
56. ====== Koniec File: ======
57.  
58. HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => pomyślnie usunięto
59. HKU\S-1-5-21-402273477-2533903143-1535139638-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e88a7ae9-a33e-11e9-b8d5-1c6f65cf632e} => pomyślnie usunięto
60. HKLM\Software\Classes\CLSID\{e88a7ae9-a33e-11e9-b8d5-1c6f65cf632e} => nie znaleziono
61. HKU\S-1-5-21-402273477-2533903143-1535139638-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e88a7b00-a33e-11e9-b8d5-1c6f65cf632e} => pomyślnie usunięto
62. HKLM\Software\Classes\CLSID\{e88a7b00-a33e-11e9-b8d5-1c6f65cf632e} => nie znaleziono
63. HKU\S-1-5-21-402273477-2533903143-1535139638-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ec622409-c983-11e9-828f-1c6f65cf632e} => pomyślnie usunięto
64. HKLM\Software\Classes\CLSID\{ec622409-c983-11e9-828f-1c6f65cf632e} => nie znaleziono
65. HKLM\SOFTWARE\Policies\Mozilla => pomyślnie usunięto
66. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{0644C2C1-5D57-46DC-9BC7-CD7B666DBBBD}" => pomyślnie usunięto
67. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0644C2C1-5D57-46DC-9BC7-CD7B666DBBBD}" => pomyślnie usunięto
68. C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1492006570 => pomyślnie przeniesiono
69. "HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 1492006570" => pomyślnie usunięto
70. "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{582B0274-CA87-4332-8B7A-FE3F0454BF61}\\DhcpNameServer" => pomyślnie usunięto
71. "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{D0DAD9D1-07B4-4C1B-9898-6645604757B8}\\DhcpNameServer" => pomyślnie usunięto
72. "HKU\S-1-5-21-402273477-2533903143-1535139638-1000\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache" => pomyślnie usunięto
73. HKLM\Software\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 => pomyślnie usunięto
74. HKLM\Software\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater => pomyślnie usunięto
75. HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => pomyślnie usunięto
76. HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => pomyślnie usunięto
77. "C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1492006570" => nie znaleziono
78. HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => pomyślnie usunięto
79. HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => nie znaleziono
80. HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => pomyślnie usunięto
81. HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => nie znaleziono
82. HKU\S-1-5-21-402273477-2533903143-1535139638-1000\Software\Classes\*\ShellEx\ContextMenuHandlers\GGDriveMenu => pomyślnie usunięto
83. HKU\S-1-5-21-402273477-2533903143-1535139638-1000\SOFTWARE\Classes\CLSID\[CC]{E68D0A55-3C40-4712-B90D-DCFA93FF2534} => nie znaleziono
84. HKU\S-1-5-21-402273477-2533903143-1535139638-1000\Software\Classes\Directory\ShellEx\ContextMenuHandlers\GGDriveMenu => pomyślnie usunięto
85. HKU\S-1-5-21-402273477-2533903143-1535139638-1000\SOFTWARE\Classes\CLSID\[CC]{E68D0A55-3C40-4712-B90D-DCFA93FF2534} => nie znaleziono
86.  
87. =========== EmptyTemp: ==========
88.  
89. BITS transfer queue => 8388608 B
90. DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 23756061 B
91. Java, Flash, Steam htmlcache => 6749093 B
92. Windows/system/drivers => 963969 B
93. Edge => 0 B
94. Chrome => 7067629 B
95. Firefox => 130217570 B
96. Opera => 25549394 B
97.  
98. Temp, IE cache, history, cookies, recent:
99. Users => 0 B
100. Default => 0 B
101. Public => 0 B
102. ProgramData => 0 B
103. systemprofile => 18123 B
104. systemprofile32 => 132523 B
105. LocalService => 132244 B
106. NetworkService => 692 B
107. oem => 11888925 B
108.  
109. RecycleBin => 0 B
110. EmptyTemp: => 204.9 MB danych tymczasowych Usunięto.
111.  
112. ================================
113.  
114.  
115. System wymagał restartu.
116.  
117. ==== Koniec Fixlog 21:29:45 ====