2022-01-17 20:01 - 2016-12-07 19:14 - 000000000 ____D C:\Program Files (x86)\Jasc Software Inc
2022-01-17 19:59 - 2016-12-08 14:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SourceTec
2022-01-17 19:59 - 2016-12-08 14:10 - 000000000 ____D C:\Program Files (x86)\SourceTec
KLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== UWAGA
FirewallRules: [{42D97D18-1543-408D-9F59-75029C5376DC}] => (Allow) C:\Users\Benu\AppData\Local\Temp\7zS7682\HPDiagnosticCoreUI.exe => Brak pliku
FirewallRules: [{A1AE45DC-CF07-4FC9-BD1E-D8D1E357134C}] => (Allow) C:\Users\Benu\AppData\Local\Temp\7zS7682\HPDiagnosticCoreUI.exe => Brak pliku
FirewallRules: [{2D7D0893-5992-4667-BDF3-3CBCF18E5600}] => (Allow) C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\Application\brave.exe => Brak pliku
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA
Task: {01083D55-172E-4C44-A98F-4D61928EB032} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\BraveSoftwareUpdateTaskUserS-1-5-21-2847636574-3694767797-2237411187-1002Core" /ENABLE
Task: {01083D55-172E-4C44-A98F-4D61928EB032} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\BraveSoftwareUpdateTaskUserS-1-5-21-2847636574-3694767797-2237411187-1002UA" /ENABLE
Task: {3545A1F4-821F-46A3-98FC-D5F8D5013AC0} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA
Task: {514056A2-CB83-4559-B59D-AB1008F0F712} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2847636574-3694767797-2237411187-1002UA => C:\Users\Benu\AppData\Local\BraveSoftware\Update\BraveUpdate.exe /ua /installsource scheduler (Brak pliku)
Task: {62D5994C-B6E9-469C-945F-3E292D020AFE} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2847636574-3694767797-2237411187-1002Core => C:\Users\Benu\AppData\Local\BraveSoftware\Update\BraveUpdate.exe /c (Brak pliku)
Task: {67103797-7C14-4703-A309-4187C4C1EA78} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
BRA Profile: C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2018-12-25]
BRA Extension: (Brave Tracking Protection Updater) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2018-12-25]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2018-12-25]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2018-12-25]
BRA Extension: (PDF Viewer) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\oemmndcbldboiebfnladdacbdfmadadm [2018-12-25]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2018-12-25]
BRA Extension: (Brave Ad Block Updater (POL: polskie filtry do Adblocka i uBlocka)) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\paoecjnjjbclkgbempaeemcbeldldlbo [2018-12-25]
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}
EmptyTemp:
EmptyTemp:
Opróżnia następujące katalogi:
Windows Temp
Foldery Temp użytkowników
Pamięci podręczne (Cache), magazyny HTML5, Ciasteczka (Cookies) i Historia przeglądarek skanowanych przez FRST z wyjątkiem klonów Firefox
Pamięć podręczna ostatnio otwieranych plików
Pamięć podręczna Flash Player
Pamięć podręczna Java
Pamięć podręczna HTML Steam
Pamięć podręczna ikon oraz miniatur Eksploratora Windows
Kolejka transferu BITS (pliki qmgr.db i qmgr*.dat)
Kosz
[/quote]2022-01-17 20:01 - 2016-12-07 19:14 - 000000000 ____D C:\Program Files (x86)\Jasc Software Inc
2022-01-17 19:59 - 2016-12-08 14:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SourceTec
2022-01-17 19:59 - 2016-12-08 14:10 - 000000000 ____D C:\Program Files (x86)\SourceTec
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== UWAGA
Reboot:
START::
2022-01-17 20:01 - 2016-12-07 19:14 - 000000000 ____D C:\Program Files (x86)\Jasc Software Inc
2022-01-17 19:59 - 2016-12-08 14:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SourceTec
2022-01-17 19:59 - 2016-12-08 14:10 - 000000000 ____D C:\Program Files (x86)\SourceTec
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== UWAGA
FirewallRules: [{42D97D18-1543-408D-9F59-75029C5376DC}] => (Allow) C:\Users\Benu\AppData\Local\Temp\7zS7682\HPDiagnosticCoreUI.exe => Brak pliku
FirewallRules: [{A1AE45DC-CF07-4FC9-BD1E-D8D1E357134C}] => (Allow) C:\Users\Benu\AppData\Local\Temp\7zS7682\HPDiagnosticCoreUI.exe => Brak pliku
FirewallRules: [{2D7D0893-5992-4667-BDF3-3CBCF18E5600}] => (Allow) C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\Application\brave.exe => Brak pliku
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Ograniczenia <==== UWAGA
HKLM\SOFTWARE\Policies\Google: Ograniczenia <==== UWAGA
Task: {01083D55-172E-4C44-A98F-4D61928EB032} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\BraveSoftwareUpdateTaskUserS-1-5-21-2847636574-3694767797-2237411187-1002Core" /ENABLE
Task: {01083D55-172E-4C44-A98F-4D61928EB032} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\BraveSoftwareUpdateTaskUserS-1-5-21-2847636574-3694767797-2237411187-1002UA" /ENABLE
Task: {3545A1F4-821F-46A3-98FC-D5F8D5013AC0} - \Microsoft\Windows\UNP\RunCampaignManager -> Brak pliku <==== UWAGA
Task: {514056A2-CB83-4559-B59D-AB1008F0F712} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2847636574-3694767797-2237411187-1002UA => C:\Users\Benu\AppData\Local\BraveSoftware\Update\BraveUpdate.exe /ua /installsource scheduler (Brak pliku)
Task: {62D5994C-B6E9-469C-945F-3E292D020AFE} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-2847636574-3694767797-2237411187-1002Core => C:\Users\Benu\AppData\Local\BraveSoftware\Update\BraveUpdate.exe /c (Brak pliku)
Task: {67103797-7C14-4703-A309-4187C4C1EA78} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
BRA Profile: C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2018-12-25]
BRA Extension: (Brave Tracking Protection Updater) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2018-12-25]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2018-12-25]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2018-12-25]
BRA Extension: (PDF Viewer) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\oemmndcbldboiebfnladdacbdfmadadm [2018-12-25]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2018-12-25]
BRA Extension: (Brave Ad Block Updater (POL: polskie filtry do Adblocka i uBlocka)) - C:\Users\Benu\AppData\Local\BraveSoftware\Brave-Browser\User Data\paoecjnjjbclkgbempaeemcbeldldlbo [2018-12-25]
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}
EmptyTemp:
END::
Użytkownicy przeglądający to forum: Brak zarejestrowanych użytkowników oraz 2 gości