Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-11-2014 01 Ran by Gizela at 2014-11-26 11:02:40 Run:1 Running from C:\Users\Gizela\Desktop\Karolina naprawa! Loaded Profile: Gizela (Available profiles: Gizela) Boot Mode: Normal ============================================== Content of fixlist: ***************** CloseProcesses: HKU\S-1-5-21-3448794057-2279744148-3698898670-1000\Software\Classes\.exe: exefile => <===== ATTENTION! HKU\S-1-5-21-3448794057-2279744148-3698898670-1000\Software\Classes\exefile: <===== ATTENTION! GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-3448794057-2279744148-3698898670-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1415133035&from=cor&uid=HitachiXHTS547550A9E384_J2100050DPN3VBDPN3VBX&q={searchTerms HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1415133035&from=cor&uid=HitachiXHTS547550A9E384_J2100050DPN3VBDPN3VBX&q={searchTerms} StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3448794057-2279744148-3698898670-1000 -> {724893F4-3AC6-4B99-8599-45F2BDBB2D42} URL = http://www.search.ask.com/web?tpid=ORJ-SPE&o=APN11406&pf=V7&p2=^BBE^OSJ000^YY^PL&gct=&itbv=12.18.0.82&apn_uid=20202F2B-4269-4607-8DD3-D93BA14CE88B&apn_ptnrs=BBE&apn_dtid=^OSJ000^YY^PL&apn_dbr=Launcher.exe_0_25.0.1614.68&doi=2014-11-05&trgb=IE&q={searchTerms}&psv=&pt=tb BHO: couponpeak -> {04c4d6ff-f8fd-42b5-b48f-35fc4b933822} -> C:\ProgramData\couponpeak\zkLHllg5dyPZdJ.x64.dll No File Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File Toolbar: HKU\S-1-5-21-3448794057-2279744148-3698898670-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File Toolbar: HKU\S-1-5-21-3448794057-2279744148-3698898670-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Toolbar: HKU\S-1-5-21-3448794057-2279744148-3698898670-1000 -> No Name - {4F524A2D-5350-4500-76A7-7A786E7484D7} - No File Task: {67734A5B-CB63-4097-A58F-54178EED332E} - System32\Tasks\{634D9B69-1634-4909-87C5-2D5E59B31A0A} => Iexplore.exe http://ui.skype.com/ui/0/5.10.0.115/pl/go/help.faq.installer?source=lightinstaller&LastError=1618 C:\Program Files\Google C:\Program Files (x86)\App Lid C:\Program Files (x86)\Google C:\Program Files (x86)\Mozilla Firefox C:\Program Files (x86)\Opera C:\ProgramData\ee67026fc86de1d C:\ProgramData\APN C:\ProgramData\boost_interprocess C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppsHat C:\ProgramData\Norton C:\ProgramData\Partner C:\ProgramData\Symantec C:\Users\Gizela\AppData\Local\Google C:\Users\Gizela\AppData\Local\Opera Software C:\Users\Gizela\AppData\Roaming\0I0M0D1F2W1G1I1F1T1Q1P1C C:\Users\Gizela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PriceFountain C:\Users\Gizela\AppData\Roaming\Mozilla C:\Users\Gizela\AppData\Roaming\Opera Software C:\Users\Gizela\AppData\Roaming\PriceFountain C:\Users\Gizela\AppData\Roaming\Systweak C:\Users\Gizela\Downloads\*(*)-dp*.exe C:\Users\Gizela\Downloads\*.opdownload C:\Users\Gizela\Downloads\chromeinstall*.exe C:\Users\Gizela\Downloads\farming_simulator_*.exe C:\Users\Gizela\Downloads\minecraft*.exe C:\Users\Gizela\Downloads\Niepotwierdzony*.crdownload C:\Users\Gizela\Downloads\pobierz_*.exe C:\Users\Gizela\Downloads\SpyHunter 4.17.6.4336 + SCREEN.rar C:\Users\Gizela\Downloads\SpyHunter 4.17.6.4336 + SCREEN C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP C:\Windows\system32\Drivers\kgpcpy.cfg C:\Windows\SysWOW64\Drivers\kgpfr2.cfg Reg: reg delete HKCU\Software\Google /f Reg: reg delete HKCU\Software\Mozilla /f Reg: reg delete HKCU\Software\MozillaPlugins /f Reg: reg delete HKLM\SOFTWARE\MozillaPlugins /f Reg: reg delete HKLM\SOFTWARE\Wow6432Node\Google /f Reg: reg delete HKLM\SOFTWARE\Wow6432Node\Mozilla /f Reg: reg delete HKLM\SOFTWARE\Wow6432Node\mozilla.org /f Reg: reg delete HKLM\SOFTWARE\Wow6432Node\MozillaPlugins /f Reg: reg add "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes" /v DefaultScope /t REG_SZ /d {00C9AC02-9004-431F-A2EB-9E912595B2CA} /f Reg: reg add "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes" /v DefaultScope /t REG_SZ /d {00C9AC02-9004-431F-A2EB-9E912595B2CA} /f CMD: dir /a "C:\Program Files" CMD: dir /a "C:\Program Files (x86)" CMD: dir /a C:\ProgramData CMD: dir /a C:\Users\Gizela\AppData\Local CMD: dir /a C:\Users\Gizela\AppData\LocalLow CMD: dir /a C:\Users\Gizela\AppData\Roaming EmptyTemp: ***************** Processes closed successfully. "HKU\S-1-5-21-3448794057-2279744148-3698898670-1000\Software\Classes\exefile" => Key deleted successfully. "HKU\S-1-5-21-3448794057-2279744148-3698898670-1000\Software\Classes\.exe" => Key deleted successfully. "HKU\S-1-5-21-3448794057-2279744148-3698898670-1000\Software\Classes\exefile" => Key not found. C:\Windows\system32\GroupPolicy\Machine => Moved successfully. C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully. "HKLM\SOFTWARE\Policies\Google" => Key deleted successfully. "HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully. "HKU\S-1-5-21-3448794057-2279744148-3698898670-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully. HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully. "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully. "HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found. "HKU\S-1-5-21-3448794057-2279744148-3698898670-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{724893F4-3AC6-4B99-8599-45F2BDBB2D42}" => Key deleted successfully. "HKCR\CLSID\{724893F4-3AC6-4B99-8599-45F2BDBB2D42}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{04c4d6ff-f8fd-42b5-b48f-35fc4b933822}" => Key deleted successfully. "HKCR\CLSID\{04c4d6ff-f8fd-42b5-b48f-35fc4b933822}" => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value deleted successfully. "HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => Key deleted successfully. HKU\S-1-5-21-3448794057-2279744148-3698898670-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => value deleted successfully. "HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}" => Key not found. HKU\S-1-5-21-3448794057-2279744148-3698898670-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value deleted successfully. "HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => Key not found. HKU\S-1-5-21-3448794057-2279744148-3698898670-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4F524A2D-5350-4500-76A7-7A786E7484D7} => value deleted successfully. "HKCR\CLSID\{4F524A2D-5350-4500-76A7-7A786E7484D7}" => Key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{67734A5B-CB63-4097-A58F-54178EED332E}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{67734A5B-CB63-4097-A58F-54178EED332E}" => Key deleted successfully. C:\Windows\System32\Tasks\{634D9B69-1634-4909-87C5-2D5E59B31A0A} => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{634D9B69-1634-4909-87C5-2D5E59B31A0A}" => Key deleted successfully. C:\Program Files\Google => Moved successfully. C:\Program Files (x86)\App Lid => Moved successfully. C:\Program Files (x86)\Google => Moved successfully. C:\Program Files (x86)\Mozilla Firefox => Moved successfully. C:\Program Files (x86)\Opera => Moved successfully. C:\ProgramData\ee67026fc86de1d => Moved successfully. C:\ProgramData\APN => Moved successfully. C:\ProgramData\boost_interprocess => Moved successfully. C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppsHat => Moved successfully. C:\ProgramData\Norton => Moved successfully. C:\ProgramData\Partner => Moved successfully. C:\ProgramData\Symantec => Moved successfully. C:\Users\Gizela\AppData\Local\Google => Moved successfully. C:\Users\Gizela\AppData\Local\Opera Software => Moved successfully. C:\Users\Gizela\AppData\Roaming\0I0M0D1F2W1G1I1F1T1Q1P1C => Moved successfully. C:\Users\Gizela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PriceFountain => Moved successfully. C:\Users\Gizela\AppData\Roaming\Mozilla => Moved successfully. C:\Users\Gizela\AppData\Roaming\Opera Software => Moved successfully. C:\Users\Gizela\AppData\Roaming\PriceFountain => Moved successfully. C:\Users\Gizela\AppData\Roaming\Systweak => Moved successfully. C:\Users\Gizela\Downloads\*(*)-dp*.exe => Moved successfully. C:\Users\Gizela\Downloads\*.opdownload => Moved successfully. C:\Users\Gizela\Downloads\chromeinstall*.exe => Moved successfully. C:\Users\Gizela\Downloads\farming_simulator_*.exe => Moved successfully. C:\Users\Gizela\Downloads\minecraft*.exe => Moved successfully. C:\Users\Gizela\Downloads\Niepotwierdzony*.crdownload => Moved successfully. C:\Users\Gizela\Downloads\pobierz_*.exe => Moved successfully. C:\Users\Gizela\Downloads\SpyHunter 4.17.6.4336 + SCREEN.rar => Moved successfully. C:\Users\Gizela\Downloads\SpyHunter 4.17.6.4336 + SCREEN => Moved successfully. C:\Windows\AF54923662584AC6A0435B5B89C6EB61.TMP => Moved successfully. C:\Windows\system32\Drivers\kgpcpy.cfg => Moved successfully. C:\Windows\SysWOW64\Drivers\kgpfr2.cfg => Moved successfully. ========= reg delete HKCU\Software\Google /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKCU\Software\Mozilla /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKCU\Software\MozillaPlugins /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\MozillaPlugins /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\Wow6432Node\Google /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\Wow6432Node\Mozilla /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\Wow6432Node\mozilla.org /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg delete HKLM\SOFTWARE\Wow6432Node\MozillaPlugins /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg add "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes" /v DefaultScope /t REG_SZ /d {00C9AC02-9004-431F-A2EB-9E912595B2CA} /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= reg add "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes" /v DefaultScope /t REG_SZ /d {00C9AC02-9004-431F-A2EB-9E912595B2CA} /f ========= Operacja ukoäczona pomy˜lnie. ========= End of Reg: ========= ========= dir /a "C:\Program Files" ========= Wolumin w stacji C to System Numer seryjny woluminu: AE31-AC31 Katalog: C:\Program Files 2014-11-26 11:03 . 2014-11-26 11:03 .. 2012-07-09 18:19 AVAST Software 2013-07-25 12:01 Bonjour 2013-07-25 12:02 Common Files 2009-07-14 05:54 174 desktop.ini 2013-01-22 17:07 DVD Maker 2012-05-21 19:54 Fujitsu 2012-05-21 19:55 Intel 2014-11-12 08:57 Internet Explorer 2010-11-21 08:17 Microsoft Games 2014-07-24 12:11 Microsoft Silverlight 2009-07-14 06:32 MSBuild 2011-05-12 07:59 Realtek 2009-07-14 06:32 Reference Assemblies 2011-05-12 07:59 Synaptics 2009-07-14 06:09 Uninstall Information 2014-10-08 16:04 Windows Defender 2014-10-08 16:04 Windows Journal 2011-05-12 08:26 Windows Live 2014-10-08 16:04 Windows Mail 2014-10-08 16:04 Windows Media Player 2009-07-14 06:32 Windows NT 2014-10-08 16:04 Windows Photo Viewer 2010-11-21 04:31 Windows Portable Devices 2014-10-08 16:04 Windows Sidebar 1 plik(¢w) 174 bajt¢w 25 katalog(¢w) 71ÿ273ÿ750ÿ528 bajt¢w wolnych ========= End of CMD: ========= ========= dir /a "C:\Program Files (x86)" ========= Wolumin w stacji C to System Numer seryjny woluminu: AE31-AC31 Katalog: C:\Program Files (x86) 2014-11-26 11:03 . 2014-11-26 11:03 .. 2012-05-21 11:07 Adobe 2013-07-25 12:02 Apple Software Update 2012-07-09 18:47 Barbie(TM) 2013-07-25 12:01 Bonjour 2012-05-21 19:55 Cisco 2014-11-24 13:14 Common Files 2012-05-21 11:09 CyberLink 2009-07-14 05:54 174 desktop.ini 2012-07-09 18:55 Disney Interactive Studios 2014-11-24 13:16 Enigma Software Group 2014-09-29 19:12 Farming Simulator 2013 2014-10-29 15:03 Farming Simulator 2013 Demo 2011-05-12 08:17 Fujitsu 2012-07-09 18:19 Gadu-Gadu 10 2012-10-16 17:11 InstallShield Installation Information 2012-05-21 19:55 Intel 2012-05-21 11:10 Intel Corporation 2014-11-12 08:57 Internet Explorer 2012-07-09 18:07 IQ Publishing 2014-11-05 16:16 Java 2011-05-12 08:43 Microsoft Office 2014-07-24 12:11 Microsoft Silverlight 2011-05-12 08:27 Microsoft SQL Server Compact Edition 2011-05-12 08:09 Microsoft.NET 2014-10-09 18:32 MP2004 2009-07-14 06:32 MSBuild 2012-10-16 18:19 Niezbednik rowerzysty 2014-11-17 16:31 Origin 2014-10-12 18:38 Origin Games 2014-11-19 18:52 Pisze poprawnie 4 2014-03-15 15:17 Play Pickle 2014-05-03 09:55 PlayPickle 2012-07-01 10:11 poszukiwania_zozoli 2014-03-10 18:04 QuickTime 2011-05-12 08:04 Realtek 2009-07-14 06:32 Reference Assemblies 2014-07-05 19:47 Ski Region Simulator 2012 Demo 2014-09-21 13:07 Skype 2014-11-26 10:52 Steam 2014-05-07 19:56 Symulator Demolki Demo 2014-11-20 14:58 Symulator Farmy 2011 2012-09-21 20:00 Szkola podstawowa klasa 4 - Tajemnice przyrody 2012-09-27 17:05 Szkola podstawowa klasa 4 - Wczoraj i dzis 2011-05-12 07:59 Temp 2009-07-14 05:57 Uninstall Information 2014-11-24 12:12 Webteh 2013-02-16 16:49 Wesola szkola i przyjaciele klasa 1 2014-10-08 16:04 Windows Defender 2011-05-12 08:28 Windows Live 2014-10-08 16:04 Windows Mail 2014-10-08 16:04 Windows Media Player 2009-07-14 06:32 Windows NT 2014-10-08 16:04 Windows Photo Viewer 2010-11-21 04:31 Windows Portable Devices 2014-10-08 16:04 Windows Sidebar 2014-11-24 13:09 WinRAR 1 plik(¢w) 174 bajt¢w 57 katalog(¢w) 71ÿ273ÿ746ÿ432 bajt¢w wolnych ========= End of CMD: ========= ========= dir /a C:\ProgramData ========= Wolumin w stacji C to System Numer seryjny woluminu: AE31-AC31 Katalog: C:\ProgramData 2014-11-26 11:03 . 2014-11-26 11:03 .. 2014-02-28 19:13 .mono 2012-05-21 11:07 Adobe 2013-07-25 12:02 Apple 2014-03-10 18:04 Apple Computer 2009-07-14 06:08 Application Data [C:\ProgramData] 2014-04-21 09:32 AVAST Software 2013-12-24 19:06 Caphyon 2012-05-21 20:33 CyberLink 2009-07-14 06:08 Desktop [C:\Users\Public\Desktop] 2009-07-14 06:08 Documents [C:\Users\Public\Documents] 2014-10-14 14:52 Electronic Arts 2009-07-14 06:08 Favorites [C:\Users\Public\Favorites] 2012-05-21 11:08 Fujitsu 2012-07-09 18:21 Gadu-Gadu 10 2013-06-30 19:00 GG 2012-05-21 19:55 Intel 2014-05-26 17:34 McAfee 2014-02-27 06:19 Microsoft 2012-07-09 18:35 Mozilla 2011-05-12 08:21 NortonInstaller 2014-11-25 10:52 266 ntuser.pol 2012-08-14 21:40 OpenFM 2014-11-05 16:16 Oracle 2014-11-17 19:17 Origin 2014-10-14 14:51 Package Cache 2012-05-21 19:56 Roaming 2014-09-21 13:07 Skype 2009-07-14 06:08 Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu] 2014-11-05 16:18 Sun 2009-07-14 06:08 Templates [C:\ProgramData\Microsoft\Windows\Templates] 1 plik(¢w) 266 bajt¢w 31 katalog(¢w) 71ÿ273ÿ746ÿ432 bajt¢w wolnych ========= End of CMD: ========= ========= dir /a C:\Users\Gizela\AppData\Local ========= Wolumin w stacji C to System Numer seryjny woluminu: AE31-AC31 Katalog: C:\Users\Gizela\AppData\Local 2014-11-26 11:03 . 2014-11-26 11:03 .. 2014-05-26 17:34 Adobe 2012-07-09 18:48 Apple 2014-03-13 06:44 Apple Computer 2013-01-11 20:33 Apps 2014-11-24 11:59 CrashDumps 2012-06-29 16:32 Dane aplikacji [C:\Users\Gizela\AppData\Local] 2014-04-21 11:50 Deployment 2014-10-31 16:36 Diagnostics 2014-10-07 18:38 ElevatedDiagnostics 2014-11-16 13:23 EmieBrowserModeList 2014-04-17 15:06 EmieSiteList 2014-04-17 15:06 EmieUserList 2014-01-21 17:51 Facebook 2012-11-17 10:03 59ÿ840 GDIPFONTCACHEV1.DAT 2014-10-03 18:20 GG 2012-06-29 16:32 Historia [C:\Users\Gizela\AppData\Local\Microsoft\Windows\History] 2014-11-26 10:40 3ÿ440ÿ384 IconCache.db 2014-02-22 17:38 Kunos_Simulazioni 2014-05-26 17:35 Macromedia 2014-05-26 17:35 Microsoft 2012-08-27 11:11 Microsoft Games 2014-01-21 09:41 Mozilla 2014-07-01 17:35 Origin 2014-09-28 13:22 Programs 2014-02-28 22:24 Skype 2012-06-29 16:46 Symantec 2014-11-26 11:03 Temp 2012-06-29 16:32 Temporary Internet Files [C:\Users\Gizela\AppData\Local\Microsoft\Windows\Temporary Internet Files] 2013-05-30 14:59 Unity 2014-10-10 06:13 VirtualStore 2014-07-21 08:31 Windows Live 2014-10-02 16:22 Windows Live Writer 2014-10-29 14:48 WorldofTanks 2013-01-19 18:26 {057FB772-8D12-4982-B851-FE86EBCBE126} 2013-03-24 15:15 {08790D4E-17C2-40FF-AED2-897BD0DFF57D} 2013-01-11 13:41 {16DB66CA-3F96-49A2-8DAD-EA448FC16A08} 2014-01-21 09:45 {17534862-B5DB-4984-8FE7-B38D549D0277} 2013-12-01 13:50 {1F3B3AB2-FD89-4B8C-87BF-351823CD6A42} 2013-02-12 19:39 {25C64D14-BE31-4F17-9027-CAD1485C22AF} 2013-12-19 20:46 {297D0926-6EB1-4B7A-BC30-1C9EF786D3CD} 2012-11-25 18:23 {2A7B750B-81C7-4725-B26B-24242646E0C9} 2012-07-22 20:16 {2F7A3185-0CC2-4D4B-BD92-BFB959471726} 2014-05-03 17:32 {308E6133-A0DF-4D88-8B36-39E932B819F8} 2012-08-30 09:10 {31CED225-84D7-46C0-AC08-E20A6B62D13D} 2014-10-15 15:36 {33928F06-59C8-49D0-82C2-191ABAA52901} 2013-05-28 14:01 {342F46C1-6734-47C5-866D-C61AF6E90CE6} 2013-12-18 14:32 {44062AF2-D4AD-4FDF-83DA-48CDB5AB860A} 2012-07-22 20:14 {581DA941-16D1-451D-89D8-E5948314F1E1} 2014-10-09 18:22 {5835BA9F-11BA-4D6F-AD96-C1F82A38DAB6} 2014-10-03 15:15 {5F1AF92B-0819-420F-B987-C49E74C14A90} 2013-02-03 10:36 {5F39C5EF-9B12-4B7A-9929-403C34C76A02} 2012-12-13 12:12 {673163BD-0833-4FB2-93F6-F8CFB7523727} 2013-05-25 07:12 {6A0D03CD-3B3B-44E2-A519-6BF8857EF831} 2014-06-15 19:05 {7D9DAF1F-89D2-4E4B-B986-7F65E0C2BAEA} 2012-10-22 16:26 {85FC9CCD-60B0-463B-8D46-4B4D57191BCB} 2013-05-05 08:46 {89BC3A49-7357-4C0A-B2CE-2BD1D4920B11} 2012-12-15 14:39 {9E288CC4-24C9-4E4A-8E5D-9B15FD950202} 2013-08-27 07:09 {9F2F9077-4D3C-42C6-8ED7-85FB7E0ACFFD} 2012-12-25 15:43 {A2D17642-E1D0-4272-A057-558EB47A5728} 2014-02-26 16:13 {A5DCEBC4-EB25-473F-A597-F2D39D878F2B} 2014-04-13 19:12 {A68E80A2-6FB6-47A9-A941-4B8D78383091} 2013-11-24 18:02 {B99006E8-7FC1-4D95-B314-E8D8054DC6A2} 2013-01-27 13:26 {C139D29D-7725-4698-ADF8-01A4CAB775A7} 2014-02-08 15:43 {C5CA4E0F-DA02-4E16-B6F5-53C71E9942AA} 2013-07-25 12:05 {CDA414B6-1AA5-47BF-BA5C-73535AD7393F} 2012-07-22 20:16 {D0041FF0-6EFD-4C0D-99F6-DDA892FBC262} 2013-06-11 19:43 {D5449EA9-52C2-4694-A3F4-33FF390BDBDB} 2014-03-02 11:34 {D7A2A44E-BA0E-4AD9-9240-ED743538F36A} 2013-05-01 08:43 {DBE4D896-9037-4C70-AC50-0C070D450A58} 2013-11-18 15:30 {DDC0E5EF-A14F-444D-A7DD-95869CA8A4D0} 2014-10-06 14:01 {E3448EC6-3C11-4CA6-A50B-1D365E6ED414} 2012-12-12 13:56 {E51DAD03-0984-4E0D-ACD8-96B7AFB06DD2} 2013-07-02 14:00 {E8804250-F291-49D8-AB57-D43F36C25876} 2012-07-22 20:15 {ED74FAE0-8322-4F2E-970C-14C953F97D76} 2014-02-09 13:16 {EE7B8ADF-EA5E-4D56-99FF-4BBF7A8C20DD} 2012-09-10 18:12 {F97CBE09-FD20-4AF0-9FEA-A3E70584AA06} 2014-02-26 16:09 {FDD6396A-3AA2-4DF1-A31F-E3F113F79217} 2 plik(¢w) 3ÿ500ÿ224 bajt¢w 77 katalog(¢w) 71ÿ273ÿ734ÿ144 bajt¢w wolnych ========= End of CMD: ========= ========= dir /a C:\Users\Gizela\AppData\LocalLow ========= Wolumin w stacji C to System Numer seryjny woluminu: AE31-AC31 Katalog: C:\Users\Gizela\AppData\LocalLow 2014-11-16 13:26 . 2014-11-16 13:26 .. 2014-03-15 16:17 Adobe 2014-11-24 13:08 App Lid 2012-07-09 18:48 Apple Computer 2014-11-16 13:26 EmieBrowserModeList 2014-04-17 15:06 EmieSiteList 2014-04-17 15:06 EmieUserList 2014-05-26 17:35 Microsoft 2014-11-04 21:23 Sun 2013-05-30 15:34 Unity 0 plik(¢w) 0 bajt¢w 11 katalog(¢w) 71ÿ273ÿ738ÿ240 bajt¢w wolnych ========= End of CMD: ========= ========= dir /a C:\Users\Gizela\AppData\Roaming ========= Wolumin w stacji C to System Numer seryjny woluminu: AE31-AC31 Katalog: C:\Users\Gizela\AppData\Roaming 2014-11-26 11:03 . 2014-11-26 11:03 .. 2014-11-08 19:36 .minecraft 2014-02-28 19:13 .mono 2012-06-29 16:46 Adobe 2013-07-26 05:58 Apple Computer 2014-04-25 13:24 AVAST Software 2014-11-24 12:12 BSplayer 2012-07-09 19:07 BSplayer Pro 2012-07-09 19:05 Disney Interactive Studios 2011-05-12 08:54 Fujitsu 2012-06-29 16:34 Fujitsu Launch Center 2013-06-14 15:51 Gadu-Gadu 10 2014-11-26 10:58 GG 2012-06-30 20:47 Google 2010-11-21 03:51 Identities 2012-07-09 19:03 InstallShield 2012-05-21 19:56 Intel 2014-11-06 15:38 java 2013-12-25 17:05 Landwirt2014 2014-11-24 11:58 481 LiveSupport.exe_log.txt 2012-06-29 16:46 Macromedia 2014-11-26 10:24 Microsoft 2012-08-14 20:57 OpenFM 2014-10-12 18:36 Origin 2012-07-09 18:40 RedDotGames 2014-11-24 11:58 92 regsvr32.exe_log.txt 2014-11-26 10:52 Skype 2012-06-29 16:46 Tific 2013-06-01 19:25 Unity 2014-11-21 08:36 69 WB.CFG 2012-12-12 13:57 Windows Live Writer 2014-11-24 13:10 WinRAR 2014-10-29 14:48 WorldofTanks 2012-10-16 15:41 YDP 3 plik(¢w) 642 bajt¢w 32 katalog(¢w) 71ÿ273ÿ734ÿ144 bajt¢w wolnych ========= End of CMD: ========= EmptyTemp: => Removed 5.7 GB temporary data. The system needed a reboot. ==== End of Fixlog ====