Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja:09-12-2015
Uruchomiony przez Slawomir (2015-12-09 22:59:32) Run:1
Uruchomiony z C:\Users\Slawomir\Downloads
Załadowane profile: Slawomir (Dostępne profile: Slawomir)
Tryb startu: Normal
==============================================

fixlist - zawartość:
*****************
CloseProcesses:
CreateRestorePoint:
R2 IhPul; C:\Users\Slawomir\AppData\Roaming\TSv\TSvr.exe [580752 2015-12-08] (tsvr.com)
R2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [170144 2015-11-27] (TODO: <???>)
R2 WdMan; C:\ProgramData\tWdMt\WdMan.exe [333312 2015-12-04] (TFuns LIMITED) [Brak podpisu cyfrowego]
ShortcutWithArgument: C:\Users\Slawomir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9 <==== UWAGA
ShortcutWithArgument: C:\Users\Slawomir\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.yoursites123.com/?type=sc&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9 <==== UWAGA
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9 <==== UWAGA
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursites123.com/?type=sc&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9 <==== UWAGA
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.yoursites123.com/web/?type=ds&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.yoursites123.com/web/?type=ds&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9&q={searchTerms}
HKU\S-1-5-21-3747367151-4080275244-1175166767-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.yoursites123.com/?type=hp&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9
HKU\S-1-5-21-3747367151-4080275244-1175166767-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.yoursites123.com/?type=hp&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3747367151-4080275244-1175166767-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3747367151-4080275244-1175166767-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.yoursites123.com/web/?type=ds&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3747367151-4080275244-1175166767-1001 -> {E8DC851D-7E83-48B0-93E7-5F9290CC82B5} URL =
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.yoursites123.com/?type=sc&ts=1449648227&z=af18cc88cb265af796564d7gez5z2t5qbz4b3o1gfb&from=ient07021&uid=ST500LT012-1DG142_W3PEN0N9XXXXW3PEN0N9
CHR HomePage: Default -> gazeta.allplayer.org/
CHR HKU\S-1-5-21-3747367151-4080275244-1175166767-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efhdjkbfpoohkmfaldijcpbnmbpefpkb] - C:\Program Files (x86)\ALLPlayer\AllPlayer.crx <nie znaleziono>
CHR HKLM-x32\...\Chrome\Extension: [efhdjkbfpoohkmfaldijcpbnmbpefpkb] - C:\Program Files (x86)\ALLPlayer\AllPlayer.crx <nie znaleziono>
HKLM\...\Run: [WavesSvc] => "C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe"
Task: {17107572-2329-4D6C-A423-1F0C7F4D8651} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA
Task: {23B03DE9-680A-4EAE-A236-0FB22450AFBE} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Brak pliku <==== UWAGA
Task: {27513359-B4F8-4893-BD58-BD791970C28D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA
Task: {2BDF76F6-4028-4838-8B41-29827793E26B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA
Task: {3166B31A-2F69-48A1-AB59-9CE86CAF4C9F} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA
Task: {4667AD38-9430-4B2A-995F-472D190642F5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA
Task: {9F3D9ABF-F132-4318-BE37-06F5CD1FF18C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {B150F8DE-12B7-4938-9C4C-9C46F561DBBF} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA
Task: {CE74D58A-A2E2-4B5F-880D-89C8A8C0D5CF} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA
Task: {D3E22CBA-38A4-4030-B39D-8CAC75434F90} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA
Task: {DCB07C8E-3643-44D5-9706-FB1B67ACCF8B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA
Task: {DE83BA88-6CE7-4028-9278-44427DD98DCD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA
C:\Program Files (x86)\Mozilla Firefox
C:\Program Files (x86)\SFK
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
C:\ProgramData\{AA6BF06E-316C-487A-9BC2-5F06A43C56B1}
C:\ProgramData\gWMiniProg
C:\ProgramData\lWdMl
C:\ProgramData\tWdMt
C:\Users\Slawomir\AppData\Roaming\eCyber
C:\Users\Slawomir\AppData\Roaming\istartsurf
C:\Users\Slawomir\AppData\Roaming\TSv
C:\Users\Slawomir\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Picexa.lnk
C:\WINDOWS\SysWOW64\data.bin
C:\WINDOWS\SysWOW64\pl.html
Reg: reg delete HKCU\Software\Mozilla /f
Reg: reg delete HKCU\Software\MozillaPlugins /f
Reg: reg delete HKLM\SOFTWARE\Mozilla /f
Reg: reg delete HKLM\SOFTWARE\MozillaPlugins /f
Reg: reg delete HKLM\SOFTWARE\Wow6432Node\Mozilla /f
Reg: reg delete HKLM\SOFTWARE\Wow6432Node\mozilla.org /f
Reg: reg delete HKLM\SOFTWARE\Wow6432Node\MozillaPlugins /f
CMD: type "C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task"
CMD: type "C:\Windows\System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent"
EmptyTemp:
*****************

Procesy zostały pomyślnie zamknięte.
Punkt przywracania został pomyślnie utworzony.
IhPul => serwis pomyślnie usunięto
SSFK => Nie można zatrzymać usługi.
SSFK => serwis pomyślnie usunięto
WdMan => serwis pomyślnie usunięto
C:\Users\Slawomir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk => Skrót - argument pomyślnie usunięto.
C:\Users\Slawomir\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk => Skrót - argument pomyślnie usunięto.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk => Skrót - argument pomyślnie usunięto.
C:\Users\Public\Desktop\Google Chrome.lnk => Skrót - argument pomyślnie usunięto.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Wartość pomyślnie przywrócono
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Wartość pomyślnie przywrócono
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Wartość pomyślnie przywrócono
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Wartość pomyślnie przywrócono
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Wartość pomyślnie przywrócono
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Wartość pomyślnie przywrócono
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Wartość pomyślnie przywrócono
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Wartość pomyślnie przywrócono
HKU\S-1-5-21-3747367151-4080275244-1175166767-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => Wartość pomyślnie przywrócono
HKU\S-1-5-21-3747367151-4080275244-1175166767-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Wartość pomyślnie przywrócono
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Wartość pomyślnie przywrócono
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => klucz pomyślnie usunięto
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => klucz nie znaleziono. 
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Wartość pomyślnie przywrócono
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => klucz pomyślnie usunięto
HKCR\Wow6432Node\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => klucz nie znaleziono. 
HKU\S-1-5-21-3747367151-4080275244-1175166767-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Wartość pomyślnie usunięto
"HKU\S-1-5-21-3747367151-4080275244-1175166767-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => klucz pomyślnie usunięto
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => klucz nie znaleziono. 
"HKU\S-1-5-21-3747367151-4080275244-1175166767-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E8DC851D-7E83-48B0-93E7-5F9290CC82B5}" => klucz pomyślnie usunięto
HKCR\CLSID\{E8DC851D-7E83-48B0-93E7-5F9290CC82B5} => klucz nie znaleziono. 
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Wartość pomyślnie przywrócono
Chrome HomePage => pomyślnie usunięto
"HKU\S-1-5-21-3747367151-4080275244-1175166767-1001\SOFTWARE\Google\Chrome\Extensions\efhdjkbfpoohkmfaldijcpbnmbpefpkb" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efhdjkbfpoohkmfaldijcpbnmbpefpkb" => klucz pomyślnie usunięto
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\WavesSvc => Wartość pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{17107572-2329-4D6C-A423-1F0C7F4D8651}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{17107572-2329-4D6C-A423-1F0C7F4D8651}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{23B03DE9-680A-4EAE-A236-0FB22450AFBE}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{23B03DE9-680A-4EAE-A236-0FB22450AFBE}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27513359-B4F8-4893-BD58-BD791970C28D}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27513359-B4F8-4893-BD58-BD791970C28D}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2BDF76F6-4028-4838-8B41-29827793E26B}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2BDF76F6-4028-4838-8B41-29827793E26B}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3166B31A-2F69-48A1-AB59-9CE86CAF4C9F}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3166B31A-2F69-48A1-AB59-9CE86CAF4C9F}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4667AD38-9430-4B2A-995F-472D190642F5}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4667AD38-9430-4B2A-995F-472D190642F5}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9F3D9ABF-F132-4318-BE37-06F5CD1FF18C}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9F3D9ABF-F132-4318-BE37-06F5CD1FF18C}" => klucz pomyślnie usunięto
C:\WINDOWS\System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Office\Office 15 Subscription Heartbeat" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B150F8DE-12B7-4938-9C4C-9C46F561DBBF}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B150F8DE-12B7-4938-9C4C-9C46F561DBBF}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CE74D58A-A2E2-4B5F-880D-89C8A8C0D5CF}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE74D58A-A2E2-4B5F-880D-89C8A8C0D5CF}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D3E22CBA-38A4-4030-B39D-8CAC75434F90}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D3E22CBA-38A4-4030-B39D-8CAC75434F90}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DCB07C8E-3643-44D5-9706-FB1B67ACCF8B}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DCB07C8E-3643-44D5-9706-FB1B67ACCF8B}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DE83BA88-6CE7-4028-9278-44427DD98DCD}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DE83BA88-6CE7-4028-9278-44427DD98DCD}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => klucz pomyślnie usunięto
C:\Program Files (x86)\Mozilla Firefox => pomyślnie przeniesiono
C:\Program Files (x86)\SFK => pomyślnie przeniesiono
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat => pomyślnie przeniesiono
C:\ProgramData\{AA6BF06E-316C-487A-9BC2-5F06A43C56B1} => pomyślnie przeniesiono
C:\ProgramData\gWMiniProg => pomyślnie przeniesiono
C:\ProgramData\lWdMl => pomyślnie przeniesiono
C:\ProgramData\tWdMt => pomyślnie przeniesiono
C:\Users\Slawomir\AppData\Roaming\eCyber => pomyślnie przeniesiono
C:\Users\Slawomir\AppData\Roaming\istartsurf => pomyślnie przeniesiono
C:\Users\Slawomir\AppData\Roaming\TSv => pomyślnie przeniesiono
C:\Users\Slawomir\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Picexa.lnk => pomyślnie przeniesiono
C:\WINDOWS\SysWOW64\data.bin => pomyślnie przeniesiono
C:\WINDOWS\SysWOW64\pl.html => pomyślnie przeniesiono

========= reg delete HKCU\Software\Mozilla /f =========

ERROR: The system was unable to find the specified registry key or value.


========= Koniec  Reg: =========


========= reg delete HKCU\Software\MozillaPlugins /f =========

Operacja ukoäczona pomy˜lnie.



========= Koniec  Reg: =========


========= reg delete HKLM\SOFTWARE\Mozilla /f =========

Operacja ukoäczona pomy˜lnie.



========= Koniec  Reg: =========


========= reg delete HKLM\SOFTWARE\MozillaPlugins /f =========

Operacja ukoäczona pomy˜lnie.



========= Koniec  Reg: =========


========= reg delete HKLM\SOFTWARE\Wow6432Node\Mozilla /f =========

Operacja ukoäczona pomy˜lnie.



========= Koniec  Reg: =========


========= reg delete HKLM\SOFTWARE\Wow6432Node\mozilla.org /f =========

ERROR: The system was unable to find the specified registry key or value.


========= Koniec  Reg: =========


========= reg delete HKLM\SOFTWARE\Wow6432Node\MozillaPlugins /f =========

Operacja ukoäczona pomy˜lnie.



========= Koniec  Reg: =========


=========  type "C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" =========

Odmowa dost©pu.

========= Koniec  CMD: =========


=========  type "C:\Windows\System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent" =========

<?xml version="1.0" encoding="UTF-16"?>
<Task version="1.4" xmlns="http://schemas.microsoft.com/windows/2004/02/mit/task">
  <RegistrationInfo>
    <Author>McAfee</Author>
    <URI>\McAfee\McAfee Auto Maintenance Task Agent</URI>
  </RegistrationInfo>
  <Triggers />
  <Settings>
    <MultipleInstancesPolicy>IgnoreNew</MultipleInstancesPolicy>
    <DisallowStartIfOnBatteries>true</DisallowStartIfOnBatteries>
    <StopIfGoingOnBatteries>true</StopIfGoingOnBatteries>
    <AllowHardTerminate>false</AllowHardTerminate>
    <StartWhenAvailable>false</StartWhenAvailable>
    <RunOnlyIfNetworkAvailable>false</RunOnlyIfNetworkAvailable>
    <IdleSettings>
      <Duration>PT10M</Duration>
      <WaitTimeout>PT1H</WaitTimeout>
      <StopOnIdleEnd>true</StopOnIdleEnd>
      <RestartOnIdle>true</RestartOnIdle>
    </IdleSettings>
    <AllowStartOnDemand>true</AllowStartOnDemand>
    <Enabled>true</Enabled>
    <Hidden>false</Hidden>
    <RunOnlyIfIdle>true</RunOnlyIfIdle>
    <DisallowStartOnRemoteAppSession>false</DisallowStartOnRemoteAppSession>
    <UseUnifiedSchedulingEngine>false</UseUnifiedSchedulingEngine>
    <MaintenanceSettings>
      <Period>P1D</Period>
      <Deadline>P2D</Deadline>
      <Exclusive>false</Exclusive>
    </MaintenanceSettings>
    <WakeToRun>true</WakeToRun>
    <ExecutionTimeLimit>PT72H</ExecutionTimeLimit>
    <Priority>7</Priority>
  </Settings>
  <Actions Context="Author">
    <ComHandler>
      <ClassId>{ABCECA3B-EA5A-496B-A021-5C6BAB365E5C}</ClassId>
    </ComHandler>
  </Actions>
  <Principals>
    <Principal id="Author">
      <UserId>System</UserId>
      <RunLevel>LeastPrivilege</RunLevel>
    </Principal>
  </Principals>
</Task>
========= Koniec  CMD: =========

EmptyTemp: => 238.3 MB danych tymczasowych Usunięto.


System wymagał restartu.

==== Koniec  Fixlog 23:01:40 ====