Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 26-12-2017
Uruchomiony przez CIAM (29-12-2017 18:29:29) Run:2
Uruchomiony z C:\Users\CIAM\Desktop
Załadowane profile: CIAM (Dostępne profile: CIAM)
Tryb startu: Normal
==============================================
fixlist - zawartość:
*****************
CloseProcesses:
CreateRestorePoint:
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Ograniczenia <==== UWAGA
GroupPolicy\User: Ograniczenia <==== UWAGA
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Brak pliku]
2017-12-28 17:06 - 2017-12-28 17:06 - 000000001 _____ C:\Users\CIAM\AppData\Local\WMI.ini
2017-12-28 17:06 - 2017-03-18 21:59 - 000001077 _____ C:\Users\CIAM\AppData\Local\iwCbVahWuGv
2017-12-28 17:06 - 2017-03-18 21:59 - 000000067 _____ C:\Users\CIAM\AppData\Roaming\OumIIo
2017-12-28 17:06 - 2017-03-18 21:59 - 000001191 _____ C:\Users\CIAM\AppData\Roaming\VVBWugZ
C:\Windows\System32\.exe
C:\Users\CIAM\Documents\Euro Truck Simulator 2\readme.rtf.lnk
VirusTotal: C:\Users\CIAM\AppData\Roaming\RyiewVwyeI.exe
VirusTotal: C:\WINDOWS\SysWOW64\OCezVyMEXaEd.exe
CMD: dir /a "C:\Program Files"
CMD: dir /a "C:\Program Files (x86)"
CMD: dir /a "C:\Program Files\Common Files\System"
CMD: dir /a "C:\Program Files (x86)\Common Files\System"
CMD: dir /a C:\ProgramData
CMD: dir /a C:\Users\CIAM\AppData\Local
CMD: dir /a C:\Users\CIAM\AppData\LocalLow
CMD: dir /a C:\Users\CIAM\AppData\Roaming
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}
EmptyTemp:
*****************
Procesy zostały pomyślnie zamknięte.
Punkt przywracania został pomyślnie utworzony.
HKLM\System\CurrentControlSet\Control\Session Manager\\BootExecute => Wartość pomyślnie przywrócono
C:\WINDOWS\system32\GroupPolicy\Machine => pomyślnie przeniesiono
C:\WINDOWS\system32\GroupPolicy\GPT.ini => pomyślnie przeniesiono
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => pomyślnie przeniesiono
C:\WINDOWS\system32\GroupPolicy\User => pomyślnie przeniesiono
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4" => pomyślnie usunięto
C:\Users\CIAM\AppData\Local\WMI.ini => pomyślnie przeniesiono
C:\Users\CIAM\AppData\Local\iwCbVahWuGv => pomyślnie przeniesiono
C:\Users\CIAM\AppData\Roaming\OumIIo => pomyślnie przeniesiono
C:\Users\CIAM\AppData\Roaming\VVBWugZ => pomyślnie przeniesiono
C:\Windows\System32\.exe => pomyślnie przeniesiono
C:\Users\CIAM\Documents\Euro Truck Simulator 2\readme.rtf.lnk => pomyślnie przeniesiono
VirusTotal: C:\Users\CIAM\AppData\Roaming\RyiewVwyeI.exe => https://www.virustotal.com/file/452eb204875973149566fed16fe8869f3ee9cb11961b50dd088e5efb5a093889/analysis/1513864643/
VirusTotal: C:\WINDOWS\SysWOW64\OCezVyMEXaEd.exe => https://www.virustotal.com/file/9be9929e382ad16adab4c02a87aa67dfaef951dafdef87d0324deae666bd8f62/analysis/1514565017/
========= dir /a "C:\Program Files" =========
Volume in drive C is SYSTEM
Volume Serial Number is F266-2302
Directory of C:\Program Files
28.12.2017 21:14
.
28.12.2017 21:14 ..
28.08.2016 06:10 7-Zip
28.08.2016 08:45 Adobe
28.08.2016 09:04 ASUSTeKcomputer.Inc
28.08.2016 22:12 AVAST Software
27.08.2016 12:24 Avid
11.09.2017 05:49 Blackmagic Design
05.09.2016 16:51 Bonjour
01.12.2017 07:11 CCleaner
06.12.2017 22:11 Common Files
02.10.2016 07:01 Core Temp
30.10.2017 23:00 DAEMON Tools Lite
29.08.2016 10:11 DCP Builder
29.08.2016 10:04 DCP-o-matic 2
18.03.2017 22:01 174 desktop.ini
08.02.2017 17:46 EPSON
07.02.2017 13:04 EpsonNet
07.10.2017 16:22 FileZilla FTP Client
11.07.2017 17:59 HandBrake
31.05.2017 11:38 Intel
13.09.2017 07:02 Internet Explorer
10.12.2017 19:25 iPod
31.05.2017 05:39 IrfanView
10.12.2017 19:25 iTunes
26.02.2017 21:33 Java
27.08.2016 22:30 K2T
29.08.2016 08:22 KMSpico
27.08.2016 12:23 Licenses
28.08.2016 08:59 Logitech Gaming Software
07.09.2017 05:36 Malwarebytes
16.02.2017 12:03 Microsoft SQL Server Compact Edition
16.02.2017 12:03 Microsoft Synchronization Services
13.03.2017 20:08 Microsoft Xbox 360 Accessories
01.12.2017 07:14 MiniTool Partition Wizard 10
01.12.2017 07:14 MiniTool Partition Wizard Free 9.1
31.05.2017 12:23 MSBuild
11.12.2017 07:43 NVIDIA Corporation
03.09.2017 16:10 Opera
28.12.2017 21:14 qBittorrent
31.05.2017 11:34 Realtek
06.11.2016 17:41 Red Giant
31.05.2017 12:23 Reference Assemblies
15.12.2017 21:54 Rockstar Games
27.08.2016 12:24 Steinberg
21.07.2017 15:41 Subtitle Edit
20.12.2017 19:11 TeamSpeak 3 Client
28.08.2016 08:52 Uninstall Information
19.07.2017 13:57 VideoLAN
11.07.2017 21:22 Windows Defender
20.03.2017 05:00 Windows Defender Advanced Threat Protection
13.09.2017 07:02 Windows Mail
13.12.2017 23:52 Windows Media Player
18.03.2017 22:03 Windows Multimedia Platform
31.05.2017 11:59 Windows NT
15.11.2017 23:18 Windows Photo Viewer
18.03.2017 22:03 Windows Portable Devices
18.03.2017 22:03 Windows Security
18.03.2017 22:03 Windows Sidebar
28.12.2017 16:08 WindowsApps
18.03.2017 22:03 WindowsPowerShell
28.08.2016 06:09 WinRAR
14.05.2017 19:06 XnConvert
1 File(s) 174 bytes
62 Dir(s) 123˙909˙406˙720 bytes free
========= Koniec CMD: =========
========= dir /a "C:\Program Files (x86)" =========
Volume in drive C is SYSTEM
Volume Serial Number is F266-2302
Directory of C:\Program Files (x86)
29.12.2017 08:08 .
29.12.2017 08:08 ..
19.02.2017 10:59 Adobe
24.11.2017 14:02 Akademia Malucha
02.09.2016 12:51 Amazon
27.09.2017 19:56 Apple Software Update
10.09.2016 10:40 Ashampoo
28.09.2016 14:01 ASM104xUSB3
27.06.2017 20:10 ASUS
27.08.2016 12:21 Avid
28.12.2017 20:32 Battle.net
05.09.2016 16:51 Bonjour
26.12.2016 06:39 Calibre2
05.01.2017 19:03 Canon
28.10.2016 12:42 ChomikBox
28.12.2017 20:28 Common Files
18.03.2017 22:01 174 desktop.ini
02.11.2016 17:42 DOSBox-0.74
19.02.2017 10:59 e-Deklaracje
07.02.2017 13:14 epson
26.06.2017 18:16 EPSON Software
07.02.2017 14:35 EpsonNet
11.07.2017 17:59 Freemake
25.12.2016 18:02 Geeks3D
23.11.2017 21:23 Google
25.07.2017 06:20 HiSuite
27.08.2016 12:14 iLok License Manager
26.03.2017 15:54 iMobie
15.12.2017 21:52 InstallShield Installation Information
16.02.2017 12:03 Intel
28.09.2016 13:46 Intel Driver Update Utility
13.09.2017 07:02 Internet Explorer
27.08.2016 12:24 iZotope
04.12.2017 18:52 Kerish Doctor
28.08.2016 06:33 Logitech
11.07.2017 18:00 MakeMKV
31.05.2017 14:47 Microsoft ASP.NET
16.02.2017 12:03 Microsoft SQL Server Compact Edition
16.02.2017 12:03 Microsoft Synchronization Services
19.01.2017 18:17 Microsoft XNA
18.03.2017 22:03 Microsoft.NET
01.10.2016 05:18 Mobipocket.com
29.12.2017 18:14 Mozilla Firefox
29.12.2017 18:14 Mozilla Maintenance Service
31.05.2017 12:23 MSBuild
02.10.2016 13:21 MSXML 4.0
28.08.2016 08:42 My Company Name
28.08.2016 09:02 NapiProjekt
05.09.2016 17:42 NCH Software
16.02.2017 11:31 NirSoft
08.10.2016 07:44 Notepad++
28.08.2016 09:10 Novawave
12.12.2017 06:33 NVIDIA Corporation
13.09.2016 06:52 OCCTPT
09.03.2017 08:57 OpenAL
05.12.2016 07:31 OpenOffice 4
21.12.2017 05:21 Origin
28.12.2017 20:24 Overwolf
27.08.2016 12:49 Paragon Software
07.09.2016 19:29 Pegasys Inc
27.08.2016 12:42 QuickTime
16.01.2017 14:27 Razer
28.08.2016 09:01 Realtek
06.02.2017 09:52 Red Giant
31.05.2017 12:23 Reference Assemblies
21.09.2016 12:19 Renesas Electronics
15.12.2017 21:54 Rockstar Games
27.08.2016 12:13 SafeNet Sentinel
13.02.2017 07:19 Seagate
26.02.2017 21:51 Silicon Image
05.09.2017 15:05 Skype
12.11.2017 07:19 SpeedFan
28.12.2017 23:14 Spybot - Search & Destroy 2
27.08.2016 12:24 Steinberg
13.07.2017 17:20 SubEdit-Player
21.07.2017 15:41 Subtitle Edit
28.12.2017 16:47 TeamViewer
09.09.2017 06:03 Temp
12.12.2017 21:01 TradeSkillMaster Application
09.12.2016 11:56 Trillian
06.08.2017 19:20 Tukui
28.08.2016 14:02 Ubisoft
31.05.2017 11:35 Uninstall Information
29.12.2016 22:49 Video Card Stability Test
19.07.2017 13:57 VideoLAN
29.12.2017 08:08 VulkanRT
13.02.2017 07:12 Western Digital Corporation
28.08.2016 06:46 Winamp
11.07.2017 21:22 Windows Defender
13.09.2017 07:02 Windows Mail
13.12.2017 23:52 Windows Media Player
18.03.2017 22:03 Windows Multimedia Platform
18.03.2017 22:03 Windows NT
15.11.2017 23:18 Windows Photo Viewer
18.03.2017 22:03 Windows Portable Devices
18.03.2017 22:03 Windows Sidebar
18.03.2017 22:03 WindowsPowerShell
17.05.2017 05:42 Wondershare
26.03.2017 17:35 Xvid
1 File(s) 174 bytes
98 Dir(s) 123˙909˙398˙528 bytes free
========= Koniec CMD: =========
========= dir /a "C:\Program Files\Common Files\System" =========
Volume in drive C is SYSTEM
Volume Serial Number is F266-2302
Directory of C:\Program Files\Common Files\System
20.03.2017 04:58 .
20.03.2017 04:58 ..
31.05.2017 12:29 ado
18.03.2017 21:59 32˙768 DirectDB.dll
20.03.2017 04:58 en-US
20.03.2017 04:58 msadc
20.03.2017 04:58 Ole DB
20.03.2017 04:58 pl-PL
18.03.2017 21:57 854˙528 wab32.dll
18.03.2017 21:57 964˙096 wab32res.dll
3 File(s) 1˙851˙392 bytes
7 Dir(s) 123˙909˙402˙624 bytes free
========= Koniec CMD: =========
========= dir /a "C:\Program Files (x86)\Common Files\System" =========
Volume in drive C is SYSTEM
Volume Serial Number is F266-2302
Directory of C:\Program Files (x86)\Common Files\System
20.03.2017 04:58 .
20.03.2017 04:58 ..
31.05.2017 12:29 ado
18.03.2017 21:59 27˙648 DirectDB.dll
20.03.2017 04:58 en-US
20.03.2017 04:58 msadc
20.03.2017 04:58 Ole DB
20.03.2017 04:58 pl-PL
18.03.2017 21:58 741˙888 wab32.dll
18.03.2017 21:58 964˙096 wab32res.dll
3 File(s) 1˙733˙632 bytes
7 Dir(s) 123˙909˙398˙528 bytes free
========= Koniec CMD: =========
========= dir /a C:\ProgramData =========
Volume in drive C is SYSTEM
Volume Serial Number is F266-2302
Directory of C:\ProgramData
29.12.2017 18:09 .
29.12.2017 18:09 ..
06.11.2016 19:36 .mono
03.01.2017 21:57 2DBoy
19.02.2017 10:59 Adobe
05.09.2016 16:51 Apple
05.09.2016 16:52 Apple Computer
27.08.2016 15:54 APRP
10.09.2016 10:40 Ashampoo
27.06.2017 20:09 ASUS
09.10.2017 15:15 AVAST Software
14.09.2016 07:22 Avid
27.08.2016 15:21 Battle.net
28.08.2016 06:44 Blackmagic Design
11.10.2016 19:03 Blizzard Entertainment
21.12.2017 15:10 boost_interprocess
05.01.2017 19:02 Canon_Inc_IC
27.06.2017 19:50 Caphyon
02.06.2017 05:35 CDProjekt RED
17.09.2017 16:52 Codemasters
16.07.2016 12:47 Comms
30.10.2017 23:00 DAEMON Tools Lite
28.08.2016 08:50 Dane aplikacji [C:\ProgramData]
28.08.2016 08:50 Dokumenty [C:\Users\Public\Documents]
21.09.2016 12:19 Downloaded Installations
09.09.2017 06:07 0 DP45977C.lfl
10.01.2017 22:13 Electronic Arts
08.02.2017 17:48 Epson
09.02.2017 22:23 For Honor
18.08.2017 05:07 Freemake
10.01.2017 22:57 GOG.com
07.02.2017 14:35 InstallShield
16.02.2017 12:03 Intel
26.03.2017 20:08 Kerish Products
28.08.2016 06:33 LogiShrd
28.12.2017 17:14 Malwarebytes
28.08.2016 08:50 Menu Start [C:\ProgramData\Microsoft\Windows\Start Menu]
28.12.2017 23:11 Microsoft
31.05.2017 12:48 Microsoft OneDrive
05.09.2016 17:42 NCH Software
28.08.2016 09:11 NovaTech Network
29.12.2017 18:29 NVIDIA
29.12.2017 08:09 NVIDIA Corporation
13.01.2017 07:45 5˙943 NvTelemetryContainer.log
11.01.2017 23:31 13˙440 NvTelemetryContainer.log_backup1
26.02.2017 21:33 Oracle
05.12.2017 14:36 Origin
28.08.2016 07:13 Overwolf
27.08.2016 12:29 PACE
09.09.2017 05:55 Package Cache
28.08.2016 08:50 Pulpit [C:\Users\Public\Desktop]
16.01.2017 14:27 Razer
01.02.2017 19:46 Readon
06.11.2016 17:41 Red Giant
06.11.2016 17:41 RedGiant
31.05.2017 11:45 regid.1986-12.com.adobe
31.05.2017 11:43 regid.1991-06.com.microsoft
27.08.2016 12:13 SafeNet Sentinel
14.11.2017 10:09 Skype
18.03.2017 22:03 SoftwareDistribution
06.11.2016 17:41 Sony
17.08.2017 15:36 Sony Corporation
28.12.2017 23:53 Spybot - Search & Destroy
28.08.2016 15:02 Steam
29.12.2017 18:09 SWCUTemp
28.08.2016 08:50 Szablony [C:\ProgramData\Microsoft\Windows\Templates]
25.07.2017 15:30 Tom Clancy's Ghost Recon Wildlands
20.12.2016 20:54 TruckersMP
30.11.2017 19:27 Twitch
17.08.2017 15:36 UDL
31.05.2017 11:43 USOPrivate
31.05.2017 11:43 USOShared
20.03.2017 05:00 WindowsHolographicDevices
11.12.2016 08:00 Wondershare
29.12.2017 07:14 Wondershare Video Converter Ultimate
17.12.2016 18:43 WOP
3 File(s) 19˙383 bytes
73 Dir(s) 123˙909˙394˙432 bytes free
========= Koniec CMD: =========
========= dir /a C:\Users\CIAM\AppData\Local =========
Volume in drive C is SYSTEM
Volume Serial Number is F266-2302
Directory of C:\Users\CIAM\AppData\Local
29.12.2017 18:30 .
29.12.2017 18:30 ..
03.01.2017 21:57 2DBoy
19.01.2017 18:49 2K Games
28.08.2016 08:57 ActiveSync
29.12.2017 02:00 Adobe
02.09.2016 12:51