Elektroda.pl
Elektroda.pl
X
CControls
Proszę, dodaj wyjątek www.elektroda.pl do Adblock.
Dzięki temu, że oglądasz reklamy, wspierasz portal i użytkowników.

Win7 - wyskakujące okienka w przeglądarkach oraz wirus / logi z frst

wiewiora1521 18 Sie 2016 22:46 528 3
  • CControls
  • CControls
  • #3 18 Sie 2016 23:15
    wiewiora1521
    Poziom 6  

    adwcleaner niestety nie daje się uruchomić wyrzuca błąd o treści : Variable used without being declared.

    0
  • #4 18 Sie 2016 23:54
    krzychupar
    Poziom 40  

    Odinstaluj:
    Ace Stream Media 3.1.7 (HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\...\AceStream) (Version: 3.1.7 - Ace Stream Media) <==== UWAGA
    hohosearch - Uninstall (HKLM-x32\...\{2FDA9735-4F26-410C-A4F1-7A7078ADA412}) (Version: - ) <==== UWAGA
    hohosearch - Uninstall (HKLM-x32\...\{4E93886F-25D8-4A6E-ACD5-9E4CB6A8A26E}) (Version: - ) <==== UWAGA
    qksee (HKLM-x32\...\qksee) (Version: - Taiwan Shui Mu Chih Ching Technology Limited) <==== UWAGA
    WinZip (HKLM-x32\...\WinZip) (Version: 2.2.74 - Winzipper Pvt Ltd.) <==== UWAGA
    YAC(Yet Another Cleaner!) (HKLM-x32\...\iSafe) (Version: - ELEX DO BRASIL PARTICIPAÇÕES LTDA) <==== UWAGA

    Otwórr notatniok i wklej:
    Task: {325EA2CB-57BF-4518-AAEE-A07D2F1E3486} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files (x86)\TXQQBrowser\Update\99088EE5760CFB35362CA3D64BD81EB5\Update\BrowserUpdate.exe [2016-04-25] (Tencent) <==== UWAGA
    Task: {3EE3415E-C1F6-45B5-B218-36EB6A93A151} - System32\Tasks\DocineUpdateTaskMachineUA => C:\Program Files (x86)\Docine\Update\DocineUpdate.exe [2016-06-14] () <==== UWAGA
    Task: {6C6C8335-6751-476D-A97F-DFC26D2D0D99} - System32\Tasks\{01529B25-8FB7-4176-B6E3-1E523CB0AF27} => pcalua.exe -a "C:\Program Files (x86)\EasyHotspot\uninstaller.exe"
    Task: {6FA387A7-0252-4818-9DA8-D59B6FFD085D} - System32\Tasks\Doroghtshejas Module => C:\Program Files (x86)\Doroghtshejas\doroghtshejasmoduletask.exe [2016-06-03] () <==== UWAGA
    Task: {9A235D03-0E44-42B6-81BD-B0142A63D0AC} - System32\Tasks\DocineUpdateTaskMachineCore => C:\Program Files (x86)\Docine\Update\DocineUpdate.exe [2016-06-14] () <==== UWAGA
    Task: {BF9B8986-6C89-4D8F-A50E-89887C665699} - System32\Tasks\{ED22BD54-02ED-4596-A98A-10AA0250368E} => pcalua.exe -a C:\Users\adi\Desktop\Camera_Chicony_CNF_9085_WIN7_64_061005200300\PNPINST64.exe -d C:\Users\adi\Desktop\Camera_Chicony_CNF_9085_WIN7_64_061005200300
    Task: {C16B99CC-B087-4993-BFF3-37C4E55E635C} - System32\Tasks\{C60EE069-7D6B-4343-9A0D-3510DFC88472} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Saoin\uninstall.exe" -c shuz -f "C:\Program Files (x86)\Common Files\Saoin\uninstall.dat" -a uninstallme BA921953-4C93-49FE-82C5-259B4638DB77 DeviceId=c8b13e8a-8f5b-ed97-a62c-8b1e8ce1b872 BarcodeId=51107004 ChannelId=4 DistributerName=APSFClickMeIn
    Task: {CB890ECA-DB08-4E02-BF4A-AE10F51025B7} - System32\Tasks\{1E624A98-E338-4D78-AFE0-C5CDF4CF2152} => pcalua.exe -a "C:\Program Files (x86)\Hostify\uninstaller.exe"
    Task: {F261E214-3EE0-43AF-88D5-1F6A5A06F466} - System32\Tasks\ChelfNotify Task => C:\ProgramData\ChelfNotify\BrowserUpdate.exe [2016-06-30] (Tencent) <==== UWAGA
    Task: {FF3076EC-7CF6-4089-9DDE-887D787453DC} - System32\Tasks\Qiqerylugase Cloud => C:\Program Files (x86)\Qiqerylugase\QqrCloudtsk.exe [2016-06-11] () <==== UWAGA
    ShortcutWithArgument: C:\Users\adi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.attirerpage.com/?type=sc&ts=14...16&uid=ADATAXSP920SS_14160C16D0990C16D099




    ShortcutWithArgument: C:\Users\adi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Docine\Application\chrome.exe (Google Inc.) -> hxxp://www.attirerpage.com/?type=sc&ts=14...16&uid=ADATAXSP920SS_14160C16D0990C16D099
    ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Docine\Application\chrome.exe (Google Inc.) -> hxxp://www.attirerpage.com/?type=sc&ts=14...16&uid=ADATAXSP920SS_14160C16D0990C16D099
    ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Docine\Application\chrome.exe (Google Inc.) -> hxxp://www.attirerpage.com/?type=sc&ts=14...16&uid=ADATAXSP920SS_14160C16D0990C16D099
    Hosts:
    (Elex do Brasil Participações Ltda) C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe
    (Elex do Brasil Participações Ltda) C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc2.exe
    (vie as dw dxzcr) C:\Program Files (x86)\qksee\qkseeSvc.exe
    (ExWzp Pvt Ltd.) C:\Program Files (x86)\WinZipper\winzipersvc.exe
    () C:\Program Files (x86)\SFK\SSFK.exe
    () C:\Users\adi\AppData\Roaming\Dapfiuha\Dapfiuha.exe
    HKLM-x32\...\Run: [sun21] => [X]
    HKLM\...\RunOnce: [WEPRODUCT8F124] => C:\Users\adi\AppData\Local\Temp\IS7M6NAPOC.exe [434176 2016-06-05] () <===== UWAGA
    HKLM\...\Winlogon: [Userinit] wscript C:\WINDOWS\run.vbs,
    HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\...\Run: [Idgdsoft] => regsvr32.exe C:\Users\adi\AppData\Local\Idgdsoft\pjrsibrp.dll <===== UWAGA
    HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\...\MountPoints2: {27f5c06f-f75e-11e5-9bf0-f46d04810c97} - "E:\setup.exe"
    HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\...\MountPoints2: {ad024f8c-ed61-11e5-9bed-f46d04810c97} - "E:\setup.exe"
    HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\...\MountPoints2: {ad025767-ed61-11e5-9bed-f46d04810c97} - "E:\setup.exe"
    HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\...\MountPoints2: {bcadc0b9-63f9-11e6-9c0f-f46d04810c97} - "E:\setup.exe"
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nuesearch.com/?type=hp&ts=1471...16&uid=ADATAXSP920SS_14160C16D0990C16D099
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nuesearch.com/?type=hp&ts=1471...16&uid=ADATAXSP920SS_14160C16D0990C16D099
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.attirerpage.com/search/?type=ds&am...uid=ADATAXSP920SS_14160C16D0990C16D099&q={searchTerms}
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.attirerpage.com/search/?type=ds&am...uid=ADATAXSP920SS_14160C16D0990C16D099&q={searchTerms}
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nuesearch.com/?type=hp&ts=1471...16&uid=ADATAXSP920SS_14160C16D0990C16D099
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nuesearch.com/?type=hp&ts=1471...16&uid=ADATAXSP920SS_14160C16D0990C16D099
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.attirerpage.com/search/?type=ds&am...uid=ADATAXSP920SS_14160C16D0990C16D099&q={searchTerms}
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.attirerpage.com/search/?type=ds&am...uid=ADATAXSP920SS_14160C16D0990C16D099&q={searchTerms}
    HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61...SKAQCPPYKKCkDVD7fc63gxl-KpIE5V8VGDJ9w,&q={searchTerms}
    HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61...SKAQCPPYKKCkDVD7fc63gxl-KpIE5V8VGDJ9w,&q={searchTerms}
    HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61...SKAQCPPYKKCkDVD7fc63gxl-KpIE5V8VGDJ9w,&q={searchTerms}
    HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nuesearch.com/?type=hp&ts=1471...16&uid=ADATAXSP920SS_14160C16D0990C16D099
    HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nuesearch.com/?type=hp&ts=1471...16&uid=ADATAXSP920SS_14160C16D0990C16D099
    SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.attirerpage.com/search/?type=ds&am...uid=ADATAXSP920SS_14160C16D0990C16D099&q={searchTerms}
    SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.attirerpage.com/search/?type=ds&am...uid=ADATAXSP920SS_14160C16D0990C16D099&q={searchTerms}
    SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.attirerpage.com/search/?type=ds&am...uid=ADATAXSP920SS_14160C16D0990C16D099&q={searchTerms}
    SearchScopes: HKLM-x32 -> ielnksrch URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61...SKAQCPPYKKCkDVD7fc63gxl-KpIE5V8VGDJ9w,&q={searchTerms}
    SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.attirerpage.com/search/?type=ds&am...uid=ADATAXSP920SS_14160C16D0990C16D099&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2003832529-3130356511-1874209889-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nuesearch.com/search/?type=ds&...uid=ADATAXSP920SS_14160C16D0990C16D099&q={searchTerms}
    SearchScopes: HKU\S-1-5-21-2003832529-3130356511-1874209889-1001 -> {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61...SKAQCPPYKKCkDVD7fc63gxl-KpIE5V8VGDJ9w,&q={searchTerms}
    Edge HomeButtonPage: HKU\S-1-5-21-2003832529-3130356511-1874209889-1001 -> hxxp://www.attirerpage.com/?type=hp&ts=14...16&uid=ADATAXSP920SS_14160C16D0990C16D099
    FF NewTab: hxxp://www.nicesearches.com?type=hp&ts=14...;z=bf28f543fb06d25abee92e8g8zcmdeeecqaq3cecee
    FF DefaultSearchEngine: nice
    FF DefaultSearchEngine.US: data:text/plain,browser.search.defaultenginename.US=hohosearch
    FF SelectedSearchEngine: nice
    FF Homepage: hxxp://www.nicesearches.com?type=hp&ts=14...;z=bf28f543fb06d25abee92e8g8zcmdeeecqaq3cecee
    FF Keyword.URL: hxxp://d2ucfwpxlh3zh3.cloudfront.net/chrome.p....&v=20160611&mode=ffexttoolbar&q=
    FF user.js: detected! => C:\Users\adi\AppData\Roaming\Profiles\gwnb9tt6.default\user.js [2016-06-05]
    FF user.js: detected! => C:\Users\adi\AppData\Roaming\Profiles\329szc13.default\user.js [2016-06-05]
    FF user.js: detected! => C:\Users\adi\AppData\Roaming\Profiles\flg18wfh.default\user.js [2016-06-05]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\gwnb9tt6.default\searchplugins\4npjuk82.xml [2016-06-12]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\gwnb9tt6.default\searchplugins\f662tf8h.xml [2016-06-05]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\gwnb9tt6.default\searchplugins\nice.xml [2016-08-01]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\gwnb9tt6.default\searchplugins\o736pqf8.xml [2016-06-05]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\329szc13.default\searchplugins\4npjuk82.xml [2016-06-12]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\329szc13.default\searchplugins\f662tf8h.xml [2016-06-05]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\329szc13.default\searchplugins\nice.xml [2016-08-01]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\329szc13.default\searchplugins\pg09qwln.xml [2016-06-05]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\flg18wfh.default\searchplugins\nice.xml [2016-08-01]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\flg18wfh.default\searchplugins\o736pqf8.xml [2016-06-05]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\flg18wfh.default\searchplugins\pg09qwln.xml [2016-06-05]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\a8jau4bn.default\searchplugins\nice.xml [2016-08-01]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\a8jau4bn.default\searchplugins\o736pqf8.xml [2016-06-05]
    FF SearchPlugin: C:\Users\adi\AppData\Roaming\Profiles\a8jau4bn.default\searchplugins\pg09qwln.xml [2016-06-05]
    CHR HKU\S-1-5-21-2003832529-3130356511-1874209889-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
    R2 iSafeService; C:\Program Files (x86)\Elex-tech\YAC\iSafeSvc.exe [118048 2016-05-23] (Elex do Brasil Participações Ltda)
    R2 MPCProtectService; C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe [350688 2016-06-05] (DotC United Inc)
    R2 qkseeService; C:\Program Files (x86)\qksee\qkseeSvc.exe [697120 2016-08-16] (vie as dw dxzcr)
    R2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [162528 2016-07-27] ()
    R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [1242232 2016-07-27] (ExWzp Pvt Ltd.) <==== UWAGA
    S2 doroghtshejasmoduleservice; "C:\Program Files (x86)\Doroghtshejas\doroghtshejasmoduleservice.html5" {79740E79-A383-47A7-B513-3DF6563D007F} {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83} [X]
    S2 Piafs; "C:\Users\adi\AppData\Roaming\SanvFejnui\Uvibr.exe" -cms [X]
    S2 QqrCloudsrv; "C:\Program Files (x86)\Qiqerylugase\QqrCloudsrv.html5" {79740E79-A383-47A7-B513-3DF6563D007F} {8C4CE252-7DB2-4F8E-8E76-BAD0E5826A83} [X]
    R1 iSafeKrnl; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnl.sys [262344 2016-05-23] (Elex do Brasil Participações Ltda)
    S3 iSafeKrnlBoot; C:\Windows\System32\DRIVERS\iSafeKrnlBoot.sys [55056 2016-05-23] (Elex do Brasil Participações Ltda)
    S1 iSafeKrnlKit; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlKit.sys [110112 2016-05-23] (Elex do Brasil Participações Ltda)
    R1 iSafeKrnlMon; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [52440 2016-05-23] (Elex do Brasil Participações Ltda)
    R1 iSafeKrnlR3; C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlR3.sys [103904 2016-05-23] (Elex do Brasil Participações Ltda)
    R1 iSafeNetFilter; C:\Windows\System32\DRIVERS\iSafeNetFilter.sys [52392 2016-05-19] (Elex do Brasil Participações Ltda)
    R1 MPCKpt; C:\Windows\System32\DRIVERS\MPCKpt.sys [60136 2016-06-05] (DotC United Inc)
    S1 tpbrfoco; \??\C:\WINDOWS\system32\drivers\tpbrfoco.sys [X]
    2016-08-18 10:58 - 2016-08-18 10:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC
    2016-08-16 13:31 - 2016-08-16 23:41 - 00000000 ____D C:\Program Files (x86)\qksee
    2016-08-15 10:30 - 2016-08-15 10:30 - 00000000 ____D C:\Users\adi\AppData\Roaming\setup1
    2016-08-15 10:30 - 2016-08-15 10:30 - 00000000 ____D C:\ProgramData\7winp7
    2016-07-28 12:27 - 2016-07-28 12:27 - 00000000 ____D C:\Users\adi\AppData\Roaming\Elex-tech
    2016-07-28 12:27 - 2016-07-28 12:27 - 00000000 ____D C:\Program Files (x86)\Elex-tech
    2016-07-28 12:27 - 2016-05-23 04:41 - 00055056 _____ (Elex do Brasil Participações Ltda) C:\WINDOWS\system32\Drivers\iSafeKrnlBoot.sys
    2016-07-28 12:27 - 2016-05-19 08:42 - 00052392 _____ (Elex do Brasil Participações Ltda) C:\WINDOWS\system32\Drivers\iSafeNetFilter.sys
    2016-08-18 21:20 - 2016-06-20 09:45 - 00000000 ____D C:\Program Files (x86)\SFK
    2016-08-18 10:58 - 2016-06-07 23:38 - 00001798 _____ C:\Users\Public\Desktop\MPC Cleaner.lnk
    2016-08-16 23:41 - 2016-06-12 14:11 - 00000000 ____D C:\Program Files (x86)\WinZipper
    2016-06-29 08:01 - 2016-07-28 10:14 - 2990841 _____ (Update) C:\Program Files (x86)\SSFK.exe
    2016-06-05 21:15 - 2016-06-05 21:15 - 6859776 _____ () C:\Users\adi\AppData\Roaming\agent.dat
    2016-06-05 21:15 - 2016-06-05 21:15 - 0054272 _____ () C:\Users\adi\AppData\Roaming\ApplicationHosting.dat
    2016-05-28 02:16 - 2016-05-28 02:16 - 0028160 _____ () C:\Users\adi\AppData\Roaming\Blowfish.dll
    2016-06-05 21:15 - 2016-06-05 21:15 - 0067776 _____ () C:\Users\adi\AppData\Roaming\Config.xml
    1988-06-19 01:00 - 1988-06-19 01:00 - 0002356 _____ () C:\Users\adi\AppData\Roaming\Dysgraphia.Rbh
    2016-06-05 21:14 - 2016-06-05 21:14 - 0019296 _____ () C:\Users\adi\AppData\Roaming\InstallationConfiguration.xml
    2016-06-05 21:14 - 2016-06-05 21:14 - 0128512 _____ () C:\Users\adi\AppData\Roaming\Installer.dat
    1989-04-09 01:00 - 1989-04-09 01:00 - 0049922 _____ () C:\Users\adi\AppData\Roaming\Kolinsky.jxs
    2016-06-05 21:15 - 2016-06-05 21:15 - 0126464 _____ () C:\Users\adi\AppData\Roaming\lobby.dat
    2016-06-05 21:15 - 2016-06-05 21:15 - 0018432 _____ () C:\Users\adi\AppData\Roaming\Main.dat
    2016-06-05 21:15 - 2016-06-05 21:15 - 0005568 _____ () C:\Users\adi\AppData\Roaming\md.xml
    2016-06-05 21:15 - 2016-06-05 21:15 - 0126464 _____ () C:\Users\adi\AppData\Roaming\noah.dat
    2016-06-05 21:15 - 2016-06-05 21:14 - 0792064 _____ () C:\Users\adi\AppData\Roaming\Overdox.exe
    2016-06-05 21:15 - 2016-06-05 21:15 - 1756999 _____ () C:\Users\adi\AppData\Roaming\Overdox.tst
    2016-06-05 21:14 - 2016-06-05 21:14 - 0076565 _____ () C:\Users\adi\AppData\Roaming\Saltplus.bin
    2016-06-05 21:15 - 2016-06-05 21:14 - 0792064 _____ () C:\Users\adi\AppData\Roaming\Solhome.exe
    2016-06-05 21:15 - 2016-06-05 21:15 - 0072820 _____ () C:\Users\adi\AppData\Roaming\Solhome.tst
    2016-06-05 21:17 - 2016-06-05 21:17 - 2279413 _____ () C:\Users\adi\AppData\Roaming\Toughstock.bin
    2016-06-05 21:14 - 2016-06-05 21:14 - 0848437 _____ () C:\Users\adi\AppData\Roaming\Truecom.bin
    2015-12-09 19:45 - 2015-12-09 19:45 - 0004912 _____ () C:\ProgramData\lbogtyso.zat
    C:\Users\adi\AppData\Local\Temp\IS7M6NAPOC.exe
    EmptyTemp:

    Plik zapisz pod nazwą fixlist.txt i umieść w folderze gdzie znajduje się FRST.exe
    Uruchom FRST i kliknij w Fix/Napraw

    0