Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 15-08-2016 01
Uruchomiony przez Admin (17-08-2016 11:57:14) Run:1
Uruchomiony z C:\Users\Admin\Downloads
Załadowane profile: Admin (Dostępne profile: Admin)
Tryb startu: Normal
==============================================

fixlist - zawartość:
*****************
CloseProcesses:
CreateRestorePoint:
R1 {29b8df85-56af-474f-9022-e376793679f9}Gw64; C:\Windows\System32\drivers\{29b8df85-56af-474f-9022-e376793679f9}Gw64.sys [48792 2015-01-04] (StdLib)
R1 {edf2e803-e64b-4078-9a9f-33672590ad18}Gw64; C:\Windows\System32\drivers\{edf2e803-e64b-4078-9a9f-33672590ad18}Gw64.sys [48792 2015-01-01] (StdLib)
R2 BirdkissP; C:\ProgramData\Birdkiss\Birdkiss.exe [418688 2016-06-07] ()
S2 MustangService_2015_10_10; C:\ProgramData\TempMoudleSet\MustangSer275.exe [235776 2015-12-15] (MustangService)
R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [744528 2016-05-16] (Winziper Pvt Ltd.) <==== UWAGA
S2 browserServer_2015.11.03.11.04.21; C:\Program Files (x86)\ghokswa Browser\ghokswa\bin\browserServer.exe [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S1 nethfdrv; \??\C:\Windows\system32\drivers\nethfdrv.sys [X]
S1 wafd_1_10_0_19; system32\drivers\wafd_1_10_0_19.sys [X]
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
Task: {32829499-6B83-4615-BE21-AEA2F940E2F2} - System32\Tasks\AmiUpdXp => C:\Users\Admin\AppData\Local\17719\Updater.exe [2014-10-07] () <==== UWAGA
Task: {9E969D2C-C138-4B7E-83BB-108A84B37871} - System32\Tasks\{132BEDF7-6366-40D8-834D-A5FDC99C9F72} => C:\Users\Admin\Desktop\racer\racer.exe
Task: {A5052673-1D3D-4780-AAA8-F854138D0F8C} - System32\Tasks\Superclean => c:\programdata\{30cb99e2-ac34-15bf-30cb-b99e2ac3678a}\hqghumeaylnlf.exe [2014-09-07] (Super PC Tools Ltd) <==== UWAGA
Task: {ADABCD7E-7EC1-4F16-ADD8-B30866D53DB3} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> Brak pliku <==== UWAGA
Task: {B588E03C-92C5-45E1-97FF-5EB243089558} - System32\Tasks\{6598B07A-7682-4568-9C94-BEB6C9B0554F} => C:\Users\Admin\Desktop\racer\racer.exe
Task: {D588B0B5-7303-4615-AAB2-5812FD121C4D} - System32\Tasks\{D985C018-567F-4116-B6BE-506F228FE222} => C:\Users\Admin\Desktop\racer\racer.exe
Task: {E2F7928F-41DD-486F-A3E8-46D801FBCCB7} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> Brak pliku <==== UWAGA
Task: {EE611302-E0F3-4F3F-BA1D-3F872D4B41E1} - System32\Tasks\{BAC18E7F-E75E-4989-B006-7786F38BB5C9} => pcalua.exe -a C:\Users\Admin\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=smt
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\Admin\AppData\Local\17719\Updater.exe <==== UWAGA
Task: C:\Windows\Tasks\Superclean.job => c:\programdata\{30cb99e2-ac34-15bf-30cb-b99e2ac3678a}\hqghumeaylnlf.exe <==== UWAGA
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\RunOnce: [network_adsafiliadosllhs_1] => "C:\Users\Admin\AppData\Local\Temp\\BI_RunOnce.exe" /initurl hxxp://sub.palatalized.info/init/Ie19xciPz/:uid:? /affid "-" /id "0" /name " " /uniqid Ie19xciPz /uuid 199C0C20-D7DA-11DD-99CA-10C37B4AA1F5 (dane wartości zawierają 82 znaków więcej). <===== UWAGA
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\...\Run: [2041363484] => "C:\Users\Admin\AppData\Local\Temp\tmp72BF.tmp.exe" <===== UWAGA
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\...\Run: [1054999252] => "C:\Users\Admin\AppData\Local\Temp\tmp72BF.tmp.exe" <===== UWAGA
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\...\Run: [1463939348] => "C:\Users\Admin\AppData\Local\Temp\tmpF315.tmp.exe" <===== UWAGA
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\...\Run: [1746088086] => "C:\Users\Admin\AppData\Local\Temp\tmpF315.tmp.exe" <===== UWAGA
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\...\Run: [Opos] => [X]
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FacebookGamesNotifier.exe.lnk [2016-05-25]
GroupPolicy: Ograniczenia - Chrome <======= UWAGA
CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
CHR HKU\S-1-5-21-2212758980-1354942390-246654559-1000\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA
CHR HKLM\...\Chrome\Extension: [noajmlkipclmeolfcnflkjhijkigpfjh] - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\noajmlkipclmeolfcnflkjhijkigpfjh.crx <nie znaleziono>
CHR HKLM-x32\...\Chrome\Extension: [noajmlkipclmeolfcnflkjhijkigpfjh] - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\noajmlkipclmeolfcnflkjhijkigpfjh.crx <nie znaleziono>
CHR StartupUrls: Default -> "hxxp://www.google.pl/","hxxp://www.nicesearches.com?type=hp&ts=1463405341&from=87640516&uid=wdcxwd5000aakx-08u6aa0_wd-wcc2ejlkjteskjtes&z=a47ca08d4e0c5a2c95aa316g6zdq9c8z4edwec2z3o","hxxp://www.mystartsearch.com/?type=hp&ts=1436965155&z=1f712d99055da7080ed5a4fg2z1c2q7tdq2w1geo8q&from=cmi&uid=WDCXWD800BEVS-07RST0_WD-WXE707C7041670416","hxxp://www.oursurfing.com/?type=hp&ts=1432270216&z=48b4fe0e95f4ddf6e0344f7g3z3c0o9odm6eeg0m8g&from=cmi&uid=WDCXWD800BEVS-07RST0_WD-WXE707C7041670416","hxxp://www.oursurfing.com/?type=hppp&ts=1432270246&z=cf23c3280e987c19348302cg0zcccoeo2m6e4oae7g&from=cmi&uid=WDCXWD800BEVS-07RST0_WD-WXE707C7041670416"
CHR DefaultSearchURL: Default -> hxxp://super-warez.eu/page/2/
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera.lnk -> C:\Program Files (x86)\Opera\launcher.exe (Opera Software) -> hxxp://www.yoursites123.com/?type=sc&ts=1450940068&z=67858b8102269ba6c43edfeg8z7w3e7t3z6e2e6q9q&from=wpm07173&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.omniboxes.com/?type=hp&ts=1448624666&z=62009b3b995d19d924aef23gez4z9b6q8o4z1q9qez&from=ient07021&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.omniboxes.com/?type=hp&ts=1448624666&z=62009b3b995d19d924aef23gez4z9b6q8o4z1q9qez&from=ient07021&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.omniboxes.com/web/?type=ds&ts=1448624666&z=62009b3b995d19d924aef23gez4z9b6q8o4z1q9qez&from=ient07021&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.omniboxes.com/web/?type=ds&ts=1448624666&z=62009b3b995d19d924aef23gez4z9b6q8o4z1q9qez&from=ient07021&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.omniboxes.com/?type=hp&ts=1448624666&z=62009b3b995d19d924aef23gez4z9b6q8o4z1q9qez&from=ient07021&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.omniboxes.com/?type=hp&ts=1448624666&z=62009b3b995d19d924aef23gez4z9b6q8o4z1q9qez&from=ient07021&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.omniboxes.com/web/?type=ds&ts=1448624666&z=62009b3b995d19d924aef23gez4z9b6q8o4z1q9qez&from=ient07021&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.omniboxes.com/web/?type=ds&ts=1448624666&z=62009b3b995d19d924aef23gez4z9b6q8o4z1q9qez&from=ient07021&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES&q={searchTerms}
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.delta-homes.com/web/?type=ds&ts=1431068392&z=781e004cf3a3c109e398da1g2zdcegeecq8bdc8t8z&from=wpm05083&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES&q={searchTerms}
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.omniboxes.com/?type=hp&ts=1448624666&z=62009b3b995d19d924aef23gez4z9b6q8o4z1q9qez&from=ient07021&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1431068392&z=781e004cf3a3c109e398da1g2zdcegeecq8bdc8t8z&from=wpm05083&uid=WDCXWD5000AAKX-08U6AA0_WD-WCC2EJLKJTESKJTES&q={searchTerms}
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> {721061fb-eb79-4568-a03c-3ce26d68dae9} URL =
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2212758980-1354942390-246654559-1000 -> {2FCFD91F-EB04-41B7-BAA4-864D68C7BD5C} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2212758980-1354942390-246654559-1000 -> {38E70233-995A-40CA-A3E7-773F85BBEA64} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2212758980-1354942390-246654559-1000 -> {721061fb-eb79-4568-a03c-3ce26d68dae9} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2212758980-1354942390-246654559-1000 -> {7789280C-C846-40B3-B6FB-765DE67FF45F} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2212758980-1354942390-246654559-1000 -> {A3AE6C6A-7921-4BFD-9D06-CB18BC99D42A} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2212758980-1354942390-246654559-1000 -> {DEA91A2C-A374-4F4E-AF0E-C8B2A3B08A78} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2212758980-1354942390-246654559-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2212758980-1354942390-246654559-1000 -> {EB14D1A1-CDA2-41E5-B8DB-F6673CBD0EEE} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
BHO: Brak nazwy -> {37bb6c9d-3f71-4a2f-aa9d-1a9c4c652c1c} -> Brak pliku
BHO-x32: DNS Error Helper -> {9B6B03F1-16CF-4491-BBBB-E872802DD717} -> C:\ProgramData\DNSErrorHelper\bho.dll => Brak pliku
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
DeleteKey: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\mountpoints2
DeleteKey: HKCU\Software\Mozilla\Firefox\Extensions
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions
C:\autoexec.bat
C:\Program Files (x86)\SSFK.exe
C:\Program Files (x86)\Birdkiss
C:\Program Files (x86)\ghokswa Browser
C:\Program Files (x86)\VSO
C:\Program Files (x86)\WinZipper
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
C:\ProgramData\{30cb99e2-ac34-15bf-30cb-b99e2ac3678a}
C:\ProgramData\mntemp
C:\ProgramData\Birdkiss
C:\ProgramData\TempMoudleSet
C:\ProgramData\VSO
C:\ProgramData\Media Center Programs\gu.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\egzamin2008_gim
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glyph
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
C:\Users\Admin\AppData\Local\Temp-log.txt
C:\Users\Admin\AppData\Local\17719
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Profile 1
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Profile 3
C:\Users\Admin\AppData\Local\Microsoft\Windows\GameExplorer\{FBAB6548-FA92-4B6E-960E-7780B9F8EFEC}
C:\Users\Admin\AppData\Roaming\Blowfish.dll
C:\Users\Admin\AppData\Roaming\Flotsam.XRu
C:\Users\Admin\AppData\Roaming\HodmanAnemone.a
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d83cf69024e31ee3\Adam - Chrome.lnk
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Grzesiek - Chrome.lnk
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Adam - Chrome.lnk
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Grzesiek - Chrome.lnk
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\DreamWorks Dragons Rise of Berk.lnk
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome
C:\Users\Admin\Desktop\Adam\Skype.lnk
C:\Users\Admin\Desktop\dysk grześka\Fujitsu-Siemens-Amilo-LI-2727-xp-drivers\sterowniki\Skrót do sterowniki.lnk
C:\Users\Admin\Downloads\policy_templates.zip
C:\Users\Admin\Downloads\policy_templates (1).zip
C:\Users\Admin\Downloads\sh-remover.exe
C:\Users\Public\Documents\report.dat
C:\Windows\System32\drivers\{29b8df85-56af-474f-9022-e376793679f9}Gw64.sys
C:\Windows\System32\drivers\{edf2e803-e64b-4078-9a9f-33672590ad18}Gw64.sys
CMD: netsh advfirewall reset
Hosts:
EmptyTemp:
*****************

Procesy zostały pomyślnie zamknięte.
Punkt przywracania został pomyślnie utworzony.
{29b8df85-56af-474f-9022-e376793679f9}Gw64 => Usługa pomyślnie zatrzymana.
{29b8df85-56af-474f-9022-e376793679f9}Gw64 => serwis pomyślnie usunięto
{edf2e803-e64b-4078-9a9f-33672590ad18}Gw64 => Usługa pomyślnie zatrzymana.
{edf2e803-e64b-4078-9a9f-33672590ad18}Gw64 => serwis pomyślnie usunięto
BirdkissP => Usługa pomyślnie zatrzymana.
BirdkissP => serwis pomyślnie usunięto
MustangService_2015_10_10 => serwis pomyślnie usunięto
winzipersvc => serwis nie znaleziono.
browserServer_2015.11.03.11.04.21 => serwis pomyślnie usunięto
EagleX64 => serwis pomyślnie usunięto
nethfdrv => serwis pomyślnie usunięto
wafd_1_10_0_19 => serwis pomyślnie usunięto
X6va029 => serwis pomyślnie usunięto
xhunter1 => serwis pomyślnie usunięto
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32829499-6B83-4615-BE21-AEA2F940E2F2} => klucz nie znaleziono. 
C:\Windows\System32\Tasks\AmiUpdXp => nie znaleziono.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AmiUpdXp => klucz nie znaleziono. 
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9E969D2C-C138-4B7E-83BB-108A84B37871}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9E969D2C-C138-4B7E-83BB-108A84B37871}" => klucz pomyślnie usunięto
C:\Windows\System32\Tasks\{132BEDF7-6366-40D8-834D-A5FDC99C9F72} => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{132BEDF7-6366-40D8-834D-A5FDC99C9F72}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A5052673-1D3D-4780-AAA8-F854138D0F8C}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A5052673-1D3D-4780-AAA8-F854138D0F8C}" => klucz pomyślnie usunięto
C:\Windows\System32\Tasks\Superclean => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Superclean" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ADABCD7E-7EC1-4F16-ADD8-B30866D53DB3}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ADABCD7E-7EC1-4F16-ADD8-B30866D53DB3}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B588E03C-92C5-45E1-97FF-5EB243089558}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B588E03C-92C5-45E1-97FF-5EB243089558}" => klucz pomyślnie usunięto
C:\Windows\System32\Tasks\{6598B07A-7682-4568-9C94-BEB6C9B0554F} => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6598B07A-7682-4568-9C94-BEB6C9B0554F}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D588B0B5-7303-4615-AAB2-5812FD121C4D}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D588B0B5-7303-4615-AAB2-5812FD121C4D}" => klucz pomyślnie usunięto
C:\Windows\System32\Tasks\{D985C018-567F-4116-B6BE-506F228FE222} => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D985C018-567F-4116-B6BE-506F228FE222}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E2F7928F-41DD-486F-A3E8-46D801FBCCB7}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E2F7928F-41DD-486F-A3E8-46D801FBCCB7}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTask" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EE611302-E0F3-4F3F-BA1D-3F872D4B41E1}" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EE611302-E0F3-4F3F-BA1D-3F872D4B41E1}" => klucz pomyślnie usunięto
C:\Windows\System32\Tasks\{BAC18E7F-E75E-4989-B006-7786F38BB5C9} => pomyślnie przeniesiono
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BAC18E7F-E75E-4989-B006-7786F38BB5C9}" => klucz pomyślnie usunięto
C:\Windows\Tasks\AmiUpdXp.job => nie znaleziono.
C:\Windows\Tasks\Superclean.job => pomyślnie przeniesiono
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Wartość pomyślnie usunięto
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\network_adsafiliadosllhs_1 => Wartość pomyślnie usunięto
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Windows\CurrentVersion\Run\\2041363484 => Wartość pomyślnie usunięto
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Windows\CurrentVersion\Run\\1054999252 => Wartość pomyślnie usunięto
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Windows\CurrentVersion\Run\\1463939348 => Wartość pomyślnie usunięto
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Windows\CurrentVersion\Run\\1746088086 => Wartość pomyślnie usunięto
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Opos => Wartość pomyślnie usunięto
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FacebookGamesNotifier.exe.lnk => pomyślnie przeniesiono
C:\Windows\system32\GroupPolicy\Machine => pomyślnie przeniesiono
C:\Windows\system32\GroupPolicy\GPT.ini => pomyślnie przeniesiono
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => pomyślnie przeniesiono
"HKLM\SOFTWARE\Policies\Google" => klucz pomyślnie usunięto
"HKU\S-1-5-21-2212758980-1354942390-246654559-1000\SOFTWARE\Policies\Google" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Google\Chrome\Extensions\noajmlkipclmeolfcnflkjhijkigpfjh" => klucz pomyślnie usunięto
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\noajmlkipclmeolfcnflkjhijkigpfjh" => klucz pomyślnie usunięto
Chrome StartupUrls => pomyślnie usunięto
Chrome DefaultSearchURL => pomyślnie usunięto
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Opera.lnk => Skrót - argument pomyślnie usunięto.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Wartość pomyślnie przywrócono
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Wartość pomyślnie przywrócono
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Wartość pomyślnie przywrócono
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Wartość pomyślnie przywrócono
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Wartość pomyślnie przywrócono
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Wartość pomyślnie przywrócono
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Wartość pomyślnie przywrócono
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Wartość pomyślnie przywrócono
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Internet Explorer\Main\\Search Page => Wartość pomyślnie przywrócono
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Internet Explorer\Main\\Search Bar => Wartość pomyślnie usunięto
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => Wartość pomyślnie przywrócono
HKU\S-1-5-21-2212758980-1354942390-246654559-1000\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL => Wartość pomyślnie przywrócono
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Wartość pomyślnie przywrócono
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Wartość pomyślnie przywrócono
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{721061fb-eb79-4568-a03c-3ce26d68dae9}" => klucz pomyślnie usunięto
HKCR\Wow6432Node\CLSID\{721061fb-eb79-4568-a03c-3ce26d68dae9} => klucz nie znaleziono. 
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}" => klucz pomyślnie usunięto
HKCR\Wow6432Node\CLSID\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} => klucz nie znaleziono. 
"HKU\S-1-5-21-2212758980-1354942390-246654559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FCFD91F-EB04-41B7-BAA4-864D68C7BD5C}" => klucz pomyślnie usunięto
HKCR\CLSID\{2FCFD91F-EB04-41B7-BAA4-864D68C7BD5C} => klucz nie znaleziono. 
"HKU\S-1-5-21-2212758980-1354942390-246654559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{38E70233-995A-40CA-A3E7-773F85BBEA64}" => klucz pomyślnie usunięto
HKCR\CLSID\{38E70233-995A-40CA-A3E7-773F85BBEA64} => klucz nie znaleziono. 
"HKU\S-1-5-21-2212758980-1354942390-246654559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{721061fb-eb79-4568-a03c-3ce26d68dae9}" => klucz pomyślnie usunięto
HKCR\CLSID\{721061fb-eb79-4568-a03c-3ce26d68dae9} => klucz nie znaleziono. 
"HKU\S-1-5-21-2212758980-1354942390-246654559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7789280C-C846-40B3-B6FB-765DE67FF45F}" => klucz pomyślnie usunięto
HKCR\CLSID\{7789280C-C846-40B3-B6FB-765DE67FF45F} => klucz nie znaleziono. 
"HKU\S-1-5-21-2212758980-1354942390-246654559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A3AE6C6A-7921-4BFD-9D06-CB18BC99D42A}" => klucz pomyślnie usunięto
HKCR\CLSID\{A3AE6C6A-7921-4BFD-9D06-CB18BC99D42A} => klucz nie znaleziono. 
"HKU\S-1-5-21-2212758980-1354942390-246654559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DEA91A2C-A374-4F4E-AF0E-C8B2A3B08A78}" => klucz pomyślnie usunięto
HKCR\CLSID\{DEA91A2C-A374-4F4E-AF0E-C8B2A3B08A78} => klucz nie znaleziono. 
"HKU\S-1-5-21-2212758980-1354942390-246654559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F}" => klucz pomyślnie usunięto
HKCR\CLSID\{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} => klucz nie znaleziono. 
"HKU\S-1-5-21-2212758980-1354942390-246654559-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EB14D1A1-CDA2-41E5-B8DB-F6673CBD0EEE}" => klucz pomyślnie usunięto
HKCR\CLSID\{EB14D1A1-CDA2-41E5-B8DB-F6673CBD0EEE} => klucz nie znaleziono. 
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{37bb6c9d-3f71-4a2f-aa9d-1a9c4c652c1c}" => klucz pomyślnie usunięto
HKCR\CLSID\{37bb6c9d-3f71-4a2f-aa9d-1a9c4c652c1c} => klucz nie znaleziono. 
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9B6B03F1-16CF-4491-BBBB-E872802DD717}" => klucz pomyślnie usunięto
"HKCR\Wow6432Node\CLSID\{9B6B03F1-16CF-4491-BBBB-E872802DD717}" => klucz pomyślnie usunięto
HKLM\Software\Mozilla\Firefox\Extensions\\sp@avast.com => Wartość pomyślnie usunięto
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\mountpoints2 => niepowodzenie przy usuwaniu w pierwszym podejściu (ErrorCode: C0000121), zobacz kolejną linię.
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\mountpoints2 => klucz pomyślnie usunięto
HKCU\Software\Mozilla\Firefox\Extensions => klucz pomyślnie usunięto
HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions => klucz pomyślnie usunięto
C:\autoexec.bat => pomyślnie przeniesiono
C:\Program Files (x86)\SSFK.exe => pomyślnie przeniesiono
C:\Program Files (x86)\Birdkiss => pomyślnie przeniesiono
"C:\Program Files (x86)\ghokswa Browser" => nie znaleziono.
C:\Program Files (x86)\VSO => pomyślnie przeniesiono
C:\Program Files (x86)\WinZipper => pomyślnie przeniesiono
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat => pomyślnie przeniesiono
C:\ProgramData\{30cb99e2-ac34-15bf-30cb-b99e2ac3678a} => pomyślnie przeniesiono
C:\ProgramData\mntemp => pomyślnie przeniesiono
C:\ProgramData\Birdkiss => pomyślnie przeniesiono
C:\ProgramData\TempMoudleSet => pomyślnie przeniesiono
C:\ProgramData\VSO => pomyślnie przeniesiono
C:\ProgramData\Media Center Programs\gu.lnk => pomyślnie przeniesiono
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\egzamin2008_gim => pomyślnie przeniesiono
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glyph => pomyślnie przeniesiono
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip" => nie znaleziono.
C:\Users\Admin\AppData\Local\Temp-log.txt => pomyślnie przeniesiono
"C:\Users\Admin\AppData\Local\17719" => nie znaleziono.
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Profile 1 => pomyślnie przeniesiono
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Profile 3 => pomyślnie przeniesiono
C:\Users\Admin\AppData\Local\Microsoft\Windows\GameExplorer\{FBAB6548-FA92-4B6E-960E-7780B9F8EFEC} => pomyślnie przeniesiono
C:\Users\Admin\AppData\Roaming\Blowfish.dll => pomyślnie przeniesiono
C:\Users\Admin\AppData\Roaming\Flotsam.XRu => pomyślnie przeniesiono
C:\Users\Admin\AppData\Roaming\HodmanAnemone.a => pomyślnie przeniesiono
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d83cf69024e31ee3\Adam - Chrome.lnk => pomyślnie przeniesiono
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Grzesiek - Chrome.lnk => pomyślnie przeniesiono
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Adam - Chrome.lnk => pomyślnie przeniesiono
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Grzesiek - Chrome.lnk => pomyślnie przeniesiono
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk => pomyślnie przeniesiono
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\DreamWorks Dragons Rise of Berk.lnk => pomyślnie przeniesiono
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome => pomyślnie przeniesiono
C:\Users\Admin\Desktop\Adam\Skype.lnk => pomyślnie przeniesiono
C:\Users\Admin\Desktop\dysk grześka\Fujitsu-Siemens-Amilo-LI-2727-xp-drivers\sterowniki\Skrót do sterowniki.lnk => pomyślnie przeniesiono
C:\Users\Admin\Downloads\policy_templates.zip => pomyślnie przeniesiono
C:\Users\Admin\Downloads\policy_templates (1).zip => pomyślnie przeniesiono
C:\Users\Admin\Downloads\sh-remover.exe => pomyślnie przeniesiono
C:\Users\Public\Documents\report.dat => pomyślnie przeniesiono
C:\Windows\System32\drivers\{29b8df85-56af-474f-9022-e376793679f9}Gw64.sys => pomyślnie przeniesiono
C:\Windows\System32\drivers\{edf2e803-e64b-4078-9a9f-33672590ad18}Gw64.sys => pomyślnie przeniesiono

========= netsh advfirewall reset =========

Ok.


========= Koniec  CMD: =========

C:\Windows\System32\Drivers\etc\hosts => pomyślnie przeniesiono
Hosts pomyślnie przywrócono.

=========== EmptyTemp: ==========

BITS transfer queue => 16777216 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 12512704 B
Java, Flash, Steam htmlcache => 240994494 B
Windows/system/drivers => 1201705470 B
Edge => 0 B
Chrome => 282096540 B
Firefox => 44205217 B
Opera => 251529367 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 55276065 B
systemprofile32 => 11454048 B
LocalService => 1927666 B
NetworkService => 703702 B
Admin => 6288480599 B

RecycleBin => 0 B
EmptyTemp: => 7.8 GB danych tymczasowych Usunięto.

================================


System wymagał restartu.

==== Koniec  Fixlog 12:07:23 ====