Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 20-09-2017 Uruchomiony przez Bartek (22-09-2017 21:07:38) Run:1 Uruchomiony z C:\Users\Bartek\Desktop Załadowane profile: Bartek (Dostępne profile: Bartek) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** CloseProcesses: CreateRestorePoint: HKLM-x32\...\RunOnce: [] => [X] HKU\S-1-5-21-360975752-3786565279-1083807947-1001\...\Run: [GalaxyClient] => [X] HKLM\...\Providers\hizyzp25: C:\Program Files (x86)_\local64spl.dll <==== UWAGA HKLM\...\Providers\yn2ca30o: C:\Program Files (x86)\\local64spl.dll <==== UWAGA C:\Program Files (x86)_\local64spl.dll C:\Program Files (x86)\\local64spl.dll C:\Program Files (x86)\local64spl.dll.ini SearchScopes: HKU\S-1-5-21-360975752-3786565279-1083807947-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = KLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.mylucky123.com/?type=hp&ts=1477333215&z=246edfc7b45dca66060252ag4z5m8m9c2c8c3o4g7c&from=interhop1024&uid=HitachiXHTS543232L9A300_090930FB8400CEJ4270AX HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.mylucky123.com/?type=hp&ts=1477333215&z=246edfc7b45dca66060252ag4z5m8m9c2c8c3o4g7c&from=interhop1024&uid=HitachiXHTS543232L9A300_090930FB8400CEJ4270AX HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mylucky123.com/search/?type=ds&ts=1477333215&z=246edfc7b45dca66060252ag4z5m8m9c2c8c3o4g7c&from=interhop1024&uid=HitachiXHTS543232L9A300_090930FB8400CEJ4270AX&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mylucky123.com/search/?type=ds&ts=1477333215&z=246edfc7b45dca66060252ag4z5m8m9c2c8c3o4g7c&from=interhop1024&uid=HitachiXHTS543232L9A300_090930FB8400CEJ4270AX&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mylucky123.com/?type=hp&ts=1477333215&z=246edfc7b45dca66060252ag4z5m8m9c2c8c3o4g7c&from=interhop1024&uid=HitachiXHTS543232L9A300_090930FB8400CEJ4270AX HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mylucky123.com/?type=hp&ts=1477333215&z=246edfc7b45dca66060252ag4z5m8m9c2c8c3o4g7c&from=interhop1024&uid=HitachiXHTS543232L9A300_090930FB8400CEJ4270AX HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mylucky123.com/search/?type=ds&ts=1477333215&z=246edfc7b45dca66060252ag4z5m8m9c2c8c3o4g7c&from=interhop1024&uid=HitachiXHTS543232L9A300_090930FB8400CEJ4270AX&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mylucky123.com/search/?type=ds&ts=1477333215&z=246edfc7b45dca66060252ag4z5m8m9c2c8c3o4g7c&from=interhop1024&uid=HitachiXHTS543232L9A300_090930FB8400CEJ4270AX&q={searchTerms} FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => nie znaleziono FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\6416071.js [2017-03-26] <==== UWAGA (Linkuje do pliku *.cfg) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\6416071.cfg [2017-03-26] <==== UWAGA S2 ed2kidle; "C:\Program Files (x86)\amuleC\ed2k.exe" -downloadwhenidle [X] <==== UWAGA S2 IlS; C:\ProgramData\Tencent\QQ\dr\qmdr.dll [X] S2 InterHop; "C:\Program Files (x86)\InterHop\InterHop.exe" {2C8E8C85-942B-451C-8243-97A089265577} [X] S3 OverwolfUpdater; "C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe" /RunningFrom SCM [X] S2 UvConverter; "C:\Program Files (x86)\UvConverter\UvConverter.exe" {2C8E8C85-942B-451C-8243-97A089265577} [X] S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ContextMenuHandlers1-x32: [WinZipper] -> {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => C:\Program Files (x86)\WinZipper\wzShellctx64.dll -> Brak pliku ContextMenuHandlers4: [WinZipper] -> {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => C:\Program Files (x86)\WinZipper\wzShellctx64.dll -> Brak pliku ContextMenuHandlers6-x32: [WinZipper] -> {DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => C:\Program Files (x86)\WinZipper\wzShellctx64.dll -> Brak pliku Task: {296A3842-F378-4B34-9B2A-ACFCF5322269} - \Overwolf Updater Task -> Brak pliku <==== UWAGA ShortcutWithArgument: C:\Users\Bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=oTlKBKjchxocXe%2FWrUZCG7qKYIrY3ndPJFlyD8TbELWDkEafc%2B65xTmhEN3Q8aOs1w%3D%3D ShortcutWithArgument: C:\Users\Bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Fishpat\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=oTlKBKjchxocXe%2FWrUZCG7qKYIrY3ndPJFlyD8TbELWDkEafc%2B65xTmhEN3Q8aOs1w%3D%3D ShortcutWithArgument: C:\Users\Bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\86bee06da8dbda8b\Google Chrome.lnk -> C:\Program Files (x86)\Fishpat\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=oTlKBKjchxocXe%2FWrUZCG7qKYIrY3ndPJFlyD8TbELWDkEafc%2B65xTmhEN3Q8aOs1w%3D%3D ShortcutWithArgument: C:\Users\Bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7cdc350dafa50a54\Google Chrome.lnk -> C:\Program Files (x86)\Fishpat\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=oTlKBKjchxocXe%2FWrUZCG7qKYIrY3ndPJFlyD8TbELWDkEafc%2B65xTmhEN3Q8aOs1w%3D%3D ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=oTlKBKjchxocXe%2FWrUZCG7qKYIrY3ndPJFlyD8TbELWDkEafc%2B65xTmhEN3Q8aOs1w%3D%3D CMD: dir /a "C:\Program Files" CMD: dir /a "C:\Program Files (x86)" CMD: dir /a "C:\Program Files\Common Files\System" CMD: dir /a "C:\Program Files (x86)\Common Files\System" CMD: dir /a C:\ProgramData CMD: dir /a C:\Users\Bartek\AppData\Local CMD: dir /a C:\Users\Bartek\AppData\LocalLow CMD: dir /a C:\Users\Bartek\AppData\Roaming CMD: netsh advfirewall reset Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"} RemoveProxy: Hosts: EmptyTemp: ***************** Procesy zostały pomyślnie zamknięte. Punkt przywracania został pomyślnie utworzony. HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\ => Wartość pomyślnie usunięto HKU\S-1-5-21-360975752-3786565279-1083807947-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient => Wartość pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\hizyzp25 => klucz pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\\order hizyzp25 => pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\yn2ca30o => klucz pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\\order yn2ca30o => pomyślnie usunięto "C:\Program Files (x86)_\local64spl.dll" => nie znaleziono. "C:\Program Files (x86)\\local64spl.dll" => nie znaleziono. C:\Program Files (x86)\local64spl.dll.ini => pomyślnie przeniesiono HKU\S-1-5-21-360975752-3786565279-1083807947-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Wartość pomyślnie usunięto HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Wartość pomyślnie przywrócono HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Wartość pomyślnie przywrócono HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Wartość pomyślnie przywrócono HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Wartość pomyślnie przywrócono HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Wartość pomyślnie przywrócono HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Wartość pomyślnie przywrócono HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Wartość pomyślnie przywrócono HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Wartość pomyślnie przywrócono HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => Wartość pomyślnie usunięto C:\Program Files (x86)\mozilla firefox\defaults\pref\6416071.js => pomyślnie przeniesiono C:\Program Files (x86)\mozilla firefox\6416071.cfg => pomyślnie przeniesiono HKLM\System\CurrentControlSet\Services\ed2kidle => klucz pomyślnie usunięto ed2kidle => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\IlS => klucz pomyślnie usunięto IlS => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\InterHop => klucz pomyślnie usunięto InterHop => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\OverwolfUpdater => klucz pomyślnie usunięto OverwolfUpdater => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\UvConverter => klucz pomyślnie usunięto UvConverter => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\FairplayKD => klucz pomyślnie usunięto FairplayKD => serwis pomyślnie usunięto HKLM\System\CurrentControlSet\Services\VGPU => klucz pomyślnie usunięto VGPU => serwis pomyślnie usunięto HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinZipper => klucz pomyślnie usunięto HKLM\Software\Wow6432Node\Classes\CLSID\{DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => klucz nie znaleziono. HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\WinZipper => klucz pomyślnie usunięto HKLM\Software\Classes\CLSID\{DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => klucz pomyślnie usunięto HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinZipper => klucz pomyślnie usunięto HKLM\Software\Wow6432Node\Classes\CLSID\{DC638EEA-2BA2-4459-9C46-85A2F0BE6040} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{296A3842-F378-4B34-9B2A-ACFCF5322269} => klucz pomyślnie usunięto HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{296A3842-F378-4B34-9B2A-ACFCF5322269} => klucz pomyślnie usunięto HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Overwolf Updater Task => klucz pomyślnie usunięto C:\Users\Bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk => Skrót - argument pomyślnie usunięto. C:\Users\Bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk => Skrót - argument pomyślnie usunięto. C:\Users\Bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\86bee06da8dbda8b\Google Chrome.lnk => Skrót - argument pomyślnie usunięto. C:\Users\Bartek\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7cdc350dafa50a54\Google Chrome.lnk => Skrót - argument pomyślnie usunięto. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk => Skrót - argument pomyślnie usunięto. ========= dir /a "C:\Program Files" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: A218-B520 Katalog: C:\Program Files 2016-10-29 15:39 . 2016-10-29 15:39 .. 2016-08-26 01:12 CCleaner 2016-11-05 23:53 Common Files 2009-07-14 06:54 174 desktop.ini 2011-02-04 20:00 DVD Maker 2016-09-12 00:32 GIMP 2 2016-04-19 23:30 Internet Explorer 2010-11-21 09:16 Microsoft Games 2016-10-29 15:40 Microsoft Security Client 2009-07-14 07:32 MSBuild 2016-10-13 19:45 NVIDIA Corporation 2009-07-14 07:32 Reference Assemblies 2009-07-14 07:09 Uninstall Information 2016-09-03 21:38 VB 2016-04-19 22:18 Windows Defender 2016-04-19 23:43 Windows Journal 2011-02-04 20:00 Windows Mail 2016-04-19 23:47 Windows Media Player 2016-08-25 22:27 Windows NT 2011-02-04 20:00 Windows Photo Viewer 2010-11-21 05:31 Windows Portable Devices 2011-02-04 20:00 Windows Sidebar 1 plik(˘w) 174 bajt˘w 22 katalog(˘w) 23˙343˙656˙960 bajt˘w wolnych ========= Koniec CMD: ========= ========= dir /a "C:\Program Files (x86)" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: A218-B520 Katalog: C:\Program Files (x86) 2017-09-22 21:07 . 2017-09-22 21:07 .. 2016-08-27 11:57 AGEIA Technologies 2016-08-30 20:48 ASUS 2016-08-27 11:07 ayk3F7F 2016-12-15 22:16 CodeBlocks 2017-06-22 17:06 Common Files 2009-07-14 06:54 174 desktop.ini 2016-10-27 21:16 Fishpat 2017-01-22 22:24 Google 2017-04-29 19:31 GUM55E4.tmp 2016-08-26 23:04 InstallShield Installation Information 2016-04-19 23:30 Internet Explorer 2016-09-09 10:05 j10gqnmc 2017-06-22 17:06 Java 2016-09-14 20:50 jr4bnhdn 2016-09-17 21:36 Jujatsterkerther 2016-10-29 15:39 Microsoft Security Client 2016-04-20 00:23 Microsoft.NET 2017-09-22 21:07 Mozilla Firefox 2017-04-02 14:36 Mozilla Maintenance Service 2009-07-14 07:32 MSBuild 2016-10-13 19:44 NVIDIA Corporation 2009-07-14 07:32 Reference Assemblies 2017-04-21 02:17 Rockstar Games 2016-10-07 09:12 Skype 2017-05-03 13:43 TS Notifier 2016-09-14 20:57 tz4iudxh 2009-07-14 06:57 Uninstall Information 2016-10-29 15:10 UvConverter 2016-08-26 01:00 WeatherChickn 2016-04-19 22:18 Windows Defender 2017-03-25 23:43 Windows Live 2011-02-04 20:00 Windows Mail 2016-04-19 23:47 Windows Media Player 2017-03-29 21:34 Windows Movie Maker 2009-07-14 07:32 Windows NT 2011-02-04 20:00 Windows Photo Viewer 2010-11-21 05:31 Windows Portable Devices 2011-02-04 20:00 Windows Sidebar 2017-04-24 21:06 WinRAR 2016-09-09 10:12 zeiaih4k 2016-09-06 10:14 {516D9F5A-D8E3-485A-838A-AE688ED07E5C} 2016-10-29 14:51 {791A9F18-E653-469B-83AD-B66AD70E9303} 2016-10-29 14:51 {ACDE5064-4206-48B8-A770-90A70AFF4E50} 2016-12-30 00:06 {B139B788-35C3-4D70-9E1B-79B03971DC60} 2016-12-30 00:06 {F1836B7D-8E65-4A03-A515-5A57CE9AA7E1} 1 plik(˘w) 174 bajt˘w 46 katalog(˘w) 23˙343˙652˙864 bajt˘w wolnych ========= Koniec CMD: ========= ========= dir /a "C:\Program Files\Common Files\System" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: A218-B520 Katalog: C:\Program Files\Common Files\System 2016-04-19 22:14 . 2016-04-19 22:14 .. 2016-04-19 22:15 ado 2009-07-14 03:40 29˙184 DirectDB.dll 2011-02-04 20:00 en-US 2016-04-19 22:15 msadc 2016-04-19 22:13 Ole DB 2011-02-04 19:55 pl-PL 2016-04-19 22:14 886˙784 wab32.dll 2009-07-14 03:33 1˙098˙752 wab32res.dll 3 plik(˘w) 2˙014˙720 bajt˘w 7 katalog(˘w) 23˙343˙656˙960 bajt˘w wolnych ========= Koniec CMD: ========= ========= dir /a "C:\Program Files (x86)\Common Files\System" ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: A218-B520 Katalog: C:\Program Files (x86)\Common Files\System 2016-04-19 22:14 . 2016-04-19 22:14 .. 2016-04-19 22:15 ado 2009-07-14 03:15 24˙064 DirectDB.dll 2011-02-04 20:00 en-US 2016-04-19 22:15 msadc 2016-04-19 23:45 Ole DB 2011-02-04 19:55 pl-PL 2016-04-19 22:14 708˙608 wab32.dll 2009-07-14 03:11 1˙098˙752 wab32res.dll 3 plik(˘w) 1˙831˙424 bajt˘w 7 katalog(˘w) 23˙343˙652˙864 bajt˘w wolnych ========= Koniec CMD: ========= ========= dir /a C:\ProgramData ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: A218-B520 Katalog: C:\ProgramData 2017-06-22 17:16 . 2017-06-22 17:16 .. 2009-07-14 07:08 Application Data [C:\ProgramData] 2016-08-26 01:00 AVAST Software 2017-03-24 22:40 BlueStacksSetup 2017-06-22 17:16 Canneverbe Limited 2016-08-26 22:59 DAEMON Tools Lite 2016-08-25 22:27 Dane aplikacji [C:\ProgramData] 2009-07-14 07:08 Desktop [C:\Users\Public\Desktop] 2009-07-14 07:08 Documents [C:\Users\Public\Documents] 2016-08-25 22:27 Dokumenty [C:\Users\Public\Documents] 2009-07-14 07:08 Favorites [C:\Users\Public\Favorites] 2016-12-30 00:57 gjcfj 2017-02-08 12:50 GOG.com 2016-09-17 21:15 Malwarebytes 2016-08-25 22:27 Menu Start [C:\ProgramData\Microsoft\Windows\Start Menu] 2017-03-25 23:43 Microsoft 2017-05-15 21:51 MTA San Andreas All 2017-09-22 21:07 NVIDIA 2016-10-13 19:45 NVIDIA Corporation 2017-06-22 17:06 Oracle 2017-05-03 13:44 Package Cache 2016-08-25 22:27 Pulpit [C:\Users\Public\Desktop] 2016-10-29 02:45 QQBrowser 2016-10-07 09:11 Skype 2009-07-14 07:08 Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu] 2017-06-22 17:06 Sun 2016-08-25 22:27 Szablony [C:\ProgramData\Microsoft\Windows\Templates] 2017-09-21 21:23 TEMP 2009-07-14 07:08 Templates [C:\ProgramData\Microsoft\Windows\Templates] 2016-10-27 21:16 Tencent 2016-12-30 01:08 ttff 2016-08-25 22:27 Ulubione [C:\Users\Public\Favorites] 0 plik(˘w) 0 bajt˘w 33 katalog(˘w) 23˙343˙648˙768 bajt˘w wolnych ========= Koniec CMD: ========= ========= dir /a C:\Users\Bartek\AppData\Local ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: A218-B520 Katalog: C:\Users\Bartek\AppData\Local 2017-09-22 21:04 . 2017-09-22 21:04 .. 2016-08-25 22:54 Apps 2017-03-26 19:21 Bluestacks 2016-08-26 19:35 CEF 2017-01-17 21:38 Chromium 2017-09-03 18:07 CrashDumps 2017-09-21 21:55 CrashRpt 2016-08-25 22:32 Dane aplikacji [C:\Users\Bartek\AppData\Local] 2017-01-22 22:21 Deployment 2017-09-02 21:13 Diagnostics 2016-08-26 23:05 Disc_Soft_Ltd 2017-09-21 21:56 DiskDrill 2016-10-07 09:42 DriverToolkit 2016-08-26 08:26 ESET 2016-10-27 21:16 Fishpat 2016-09-12 00:38 fontconfig 2016-11-05 22:30 Gameforge4d 2017-05-20 23:13 84˙496 GDIPFONTCACHEV1.DAT 2016-09-12 00:38 gegl-0.2 2017-05-08 21:07 Google 2017-09-18 20:14 gtk-2.0 2016-08-25 22:32 Historia [C:\Users\Bartek\AppData\Local\Microsoft\Windows\History] 2017-09-21 22:35 5˙145˙747 IconCache.db 2017-03-24 22:44 Macromedia 2017-03-26 00:46 Microsoft 2017-09-03 23:29 Microsoft Games 2016-11-28 00:27 Mozilla 2016-10-13 19:51 NVIDIA 2016-10-14 21:34 NVIDIA Corporation 2016-08-26 00:55 Programs 2017-09-18 20:16 12˙992 recently-used.xbel 2016-11-11 19:56 7˙605 Resmon.ResmonCfg 2016-08-31 00:16 ScreenShu 2017-08-28 00:12 SHU 2017-09-19 21:34 Spotify 2017-01-17 21:38 Steam 2017-04-26 22:06 TeamSpeak 3 2017-09-22 21:06 Temp 2016-08-25 22:32 Temporary Internet Files [C:\Users\Bartek\AppData\Local\Microsoft\Windows\Temporary Internet Files] 2017-03-24 22:40 552 TroubleshooterConfig.json 2016-08-26 01:04 UCBrowser 2016-08-25 22:32 VirtualStore 2016-08-26 01:00 vufshwpelyreemicult 5 plik(˘w) 5˙251˙392 bajt˘w 39 katalog(˘w) 23˙343˙648˙768 bajt˘w wolnych ========= Koniec CMD: ========= ========= dir /a C:\Users\Bartek\AppData\LocalLow ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: A218-B520 Katalog: C:\Users\Bartek\AppData\LocalLow 2017-06-23 18:59 . 2017-06-23 18:59 .. 2017-03-24 22:44 Microsoft 2017-09-18 21:16 Mozilla 2017-06-22 17:05 Sun 0 plik(˘w) 0 bajt˘w 5 katalog(˘w) 23˙343˙648˙768 bajt˘w wolnych ========= Koniec CMD: ========= ========= dir /a C:\Users\Bartek\AppData\Roaming ========= Wolumin w stacji C nie ma etykiety. Numer seryjny woluminu: A218-B520 Katalog: C:\Users\Bartek\AppData\Roaming 2017-09-18 20:23 . 2017-09-18 20:23 .. 2016-08-25 22:33 Adobe 2017-06-22 17:16 Canneverbe Limited 2017-06-14 01:07 CodeBlocks 2017-09-18 21:55 CoreFTP 2016-11-12 23:30 Curse 2016-12-02 22:59 Curse Client 2017-06-22 17:30 DAEMON Tools Lite 2016-08-26 01:05 Desktop 2016-10-07 09:31 Easeware 2016-09-12 00:35 eCyber 2016-08-26 08:26 ESET 2017-05-12 23:24 Google 2016-08-25 22:32 Identities 2017-03-24 22:44 Macromedia 2010-11-21 09:16 Media Center Programs 2017-03-24 22:44 Microsoft 2016-11-22 22:32 Mozilla 2017-05-08 15:25 NVIDIA 2016-11-03 21:16 Skype 2017-09-19 22:32 Spotify 2016-09-17 21:44 TeamViewer 2017-09-20 22:29 TS3Client 2017-05-03 14:05 TSNotifier 2017-05-25 23:45 uTorrent 2016-12-28 19:00 Vesteris 2016-11-11 23:54 winamp 2016-12-11 12:47 WinRAR 2017-05-05 00:12 600 winscp.rnd 2017-03-25 23:45 WMM 1 plik(˘w) 600 bajt˘w 30 katalog(˘w) 23˙343˙644˙672 bajt˘w wolnych ========= Koniec CMD: ========= ========= netsh advfirewall reset ========= Ok. ========= Koniec CMD: ========= ========= wevtutil el | Foreach-Object {wevtutil cl "$_"} ========= ========= Koniec Powershell: ========= ========= RemoveProxy: ========= HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies\\ => Wartość pomyślnie usunięto HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wartość pomyślnie usunięto HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wartość pomyślnie usunięto HKU\S-1-5-21-360975752-3786565279-1083807947-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\AutoConfigURL => Wartość pomyślnie usunięto HKU\S-1-5-21-360975752-3786565279-1083807947-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wartość pomyślnie usunięto HKU\S-1-5-21-360975752-3786565279-1083807947-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wartość pomyślnie usunięto ========= Koniec RemoveProxy: ========= C:\Windows\System32\Drivers\etc\hosts => pomyślnie przeniesiono Hosts pomyślnie przywrócono. =========== EmptyTemp: ========== BITS transfer queue => 8388608 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10422367 B Java, Flash, Steam htmlcache => 244362894 B Windows/system/drivers => 1801725 B Edge => 0 B Chrome => 323108459 B Firefox => 380506602 B Opera => 0 B Temp, IE cache, history, cookies, recent: Users => 0 B Default => 0 B Public => 0 B ProgramData => 0 B systemprofile => 16802 B systemprofile32 => 961640 B LocalService => 128 B NetworkService => 14507698 B Bartek => 98793545 B RecycleBin => 2944627700 B EmptyTemp: => 3.8 GB danych tymczasowych Usunięto. ================================ System wymagał restartu. ==== Koniec Fixlog 21:09:10 ====