Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 29.11.2018 01
Uruchomiony przez Mar (03-12-2018 17:16:36) Run:1
Uruchomiony z C:\Users\Mar\Downloads
Załadowane profile: Mar (Dostępne profile: Mar & Classic .NET AppPool & ASP.NET V4.0 Integrated & DefaultAppPool)
Tryb startu: Normal
==============================================

fixlist - zawartość:
*****************
Online Application (HKLM-x32\...\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}) (Version: 2.7.0 - Microleaves) Hidden <==== UWAGA
Task: {371873C4-294D-48C0-88CC-44C18C0D044E} - System32\Tasks\Online Application V2G6 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== UWAGA
Task: {3B603BA5-E3F3-4F2F-974D-A61667A5CDF4} - System32\Tasks\SVC Update => C:\WINDOWS\explorer.exe "hxxp://lktoday.ru" <==== UWAGA
C:\Program Files (x86)\Microleaves
Task: {521A16D2-0910-4873-9AC6-1130FC4DFD9E} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Brak pliku <==== UWAGA
Task: {57A5B43E-01C3-4D4F-BAAC-3A2F77AC6A5D} - System32\Tasks\Updater_Online_Application => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe <==== UWAGA
Task: {5CCF5F5E-A469-497C-A812-3AB625B9CE6D} - System32\Tasks\Online Application V2G5 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== UWAGA
Task: {8BD3058F-F045-4298-AA72-5C3F663C5C4C} - System32\Tasks\Online Application V2G2 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== UWAGA
Task: {9030ABE8-B75D-47B5-994D-9BF91C590B1E} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== UWAGA
Task: {ABCFE87D-E0D8-4948-8B2B-0400EC92E673} - System32\Tasks\Online Application V2G4 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== UWAGA
Task: {F23861E3-2631-4CAD-924B-509DEB480EDF} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== UWAGA
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => Brak pliku
AppInit_DLLs:  C:\Windows\System32\nvinitx.dll => Brak pliku
AppInit_DLLs: ,C:\Windows\system32\nvinitx.dll => Brak pliku
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => Brak pliku
BHO-x32: Brak nazwy -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Brak pliku
FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook => nie znaleziono
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office15\NPSPWRAP.DLL [Brak pliku]
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll [Brak pliku]
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [Brak pliku]
Powershell: wevtutil el | Foreach-Object {wevtutil cl "$_"}
EmptyTemp:
*****************

"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}\\SystemComponent" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{371873C4-294D-48C0-88CC-44C18C0D044E}" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{371873C4-294D-48C0-88CC-44C18C0D044E}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Online Application V2G6 => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G6" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3B603BA5-E3F3-4F2F-974D-A61667A5CDF4}" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B603BA5-E3F3-4F2F-974D-A61667A5CDF4}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\SVC Update => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SVC Update" => pomyślnie usunięto
"C:\Program Files (x86)\Microleaves" => nie znaleziono
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{521A16D2-0910-4873-9AC6-1130FC4DFD9E} => pomyślnie usunięto
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{521A16D2-0910-4873-9AC6-1130FC4DFD9E} => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{57A5B43E-01C3-4D4F-BAAC-3A2F77AC6A5D}" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{57A5B43E-01C3-4D4F-BAAC-3A2F77AC6A5D}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Updater_Online_Application => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Updater_Online_Application" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5CCF5F5E-A469-497C-A812-3AB625B9CE6D}" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5CCF5F5E-A469-497C-A812-3AB625B9CE6D}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Online Application V2G5 => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G5" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8BD3058F-F045-4298-AA72-5C3F663C5C4C}" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8BD3058F-F045-4298-AA72-5C3F663C5C4C}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Online Application V2G2 => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G2" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9030ABE8-B75D-47B5-994D-9BF91C590B1E}" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9030ABE8-B75D-47B5-994D-9BF91C590B1E}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Online Application V2G1 => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G1" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ABCFE87D-E0D8-4948-8B2B-0400EC92E673}" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABCFE87D-E0D8-4948-8B2B-0400EC92E673}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Online Application V2G4 => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G4" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F23861E3-2631-4CAD-924B-509DEB480EDF}" => pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F23861E3-2631-4CAD-924B-509DEB480EDF}" => pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Online Application V2G3 => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G3" => pomyślnie usunięto
"C:\Windows\System32\nvinitx.dll" => Dane wartości pomyślnie usunięto
" C:\Windows\System32\nvinitx.dll" => Dane wartości nie znaleziono.
",C:\Windows\system32\nvinitx.dll" => Dane wartości nie znaleziono.
",C:\WINDOWS\system32\nvinitx.dll" => Dane wartości nie znaleziono.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} => pomyślnie usunięto
HKLM\Software\Wow6432Node\Classes\CLSID\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} => pomyślnie usunięto
"HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\fiddlerhook@fiddler2.com" => pomyślnie usunięto
HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0 => pomyślnie usunięto
HKLM\Software\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.4.0 => pomyślnie usunięto
HKLM\Software\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.5.1 => pomyślnie usunięto

========= wevtutil el | Foreach-Object {wevtutil cl "$_"} =========


========= Koniec  Powershell: =========


=========== EmptyTemp: ==========

BITS transfer queue => 9199616 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 48195095 B
Java, Flash, Steam htmlcache => 64918455 B
Windows/system/drivers => 18098604 B
Edge => 26965978 B
Chrome => 659160074 B
Firefox => 56865419 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6144 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 16520 B
LocalService => 0 B
NetworkService => 644 B
NetworkService => 0 B
Mar => 98565514 B
Classic .NET AppPool => 0 B
ASP.NET V4.0 Integrated => 0 B
DefaultAppPool => 0 B

RecycleBin => 3049096 B
EmptyTemp: => 939.4 MB danych tymczasowych Usunięto.

================================


System wymagał restartu.

==== Koniec  Fixlog 17:24:31 ====