Fixlist.txt:
CloseProcesses:
AlternateDataStreams: C:\ProgramData:err [1336]
AlternateDataStreams: C:\Users\All Users:err [1336]
AlternateDataStreams: C:\ProgramData\Dane aplikacji:err [1336]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [7472]
(cmd.exe ->) (hxxps://trex-miner.com) [Brak podpisu cyfrowego] C:\Users\rkris\AppData\Roaming\MicrosoftWindowsFirewall\System.exe <2>
C:\Users\rkris\AppData\Roaming\MicrosoftWindowsFirewall\
HKU\S-1-5-21-3565928313-3943542920-363171780-1001\...\Run: [MicrosoftEdgeAutoLaunch_CDFA2811635144A90699723CDE32C023] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3601824 2022-07-14] (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\rkris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DiskBenchmark.lnk [2022-07-15]
ShortcutTarget: DiskBenchmark.lnk -> C:\Users\rkris\AppData\Roaming\MicrosoftWindowsFirewall\launch.vbs () [Brak podpisu cyfrowego]
Startup: C:\Users\rkris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\epic.lnk [2022-07-15]
ShortcutTarget: epic.lnk -> C:\Users\rkris\AppData\Roaming\MicrosoftWindowsFirewall\epic.vbs (Brak pliku)
Task: {CDB3DA0C-BDE3-45CA-9E06-AEC316CDB69D} - System32\Tasks\Odkurzacz => C:\Program Files (x86)\Odkurzacz\odkurzacz.exe [1069056 2022-01-12] (FranmoSoftware) [Brak podpisu cyfrowego]
2022-07-11 17:19 - 2022-07-13 17:55 - 000000000 ____D C:\Users\rkris\AppData\Roaming\MicrosoftWindowsFirewall
----
Wydzielono z tematu:
Zainfekowany komputer - Pomoc w FRSTprzez Dra98 dnia 20 Lip 2022 16:58
