Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 30-11-2016
Uruchomiony przez Konrad (02-12-2016 20:50:00) Run:1
Uruchomiony z M:\Users\Konrad\Pobrane
Załadowane profile: Konrad (Dostępne profile: defaultuser0 & Konrad)
Tryb startu: Normal
==============================================

fixlist - zawartość:
*****************
CloseProcesses:
CreateRestorePoint:
GroupPolicy: Ograniczenia <======= UWAGA
GroupPolicy\User: Ograniczenia <======= UWAGA
HKU\S-1-5-21-877549434-3901300369-924540138-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://mail.ru/cnt/10445?gp=818407
SearchScopes: HKU\S-1-5-21-877549434-3901300369-924540138-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/distib/ep/?q={SearchTerms}&product_id=%7B7F906527-BA7E-41F5-A3FA-F69B69251D05%7D&gp=811014
SearchScopes: HKU\S-1-5-21-877549434-3901300369-924540138-1001 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/distib/ep/?q={SearchTerms}&product_id=%7B7F906527-BA7E-41F5-A3FA-F69B69251D05%7D&gp=811014
2016-12-02 14:18 - 2016-12-02 14:19 - 00000000 ____D C:\Program Files (x86)\Mail.Ru
2016-12-02 14:17 - 2016-12-02 14:17 - 00000000 ____D C:\ProgramData\Mail.Ru
ShortcutWithArgument: C:\Users\Konrad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mail.Ru.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> url,FileProtocolHandler "hxxp://www.mail.ru/cnt/20775012?gp=811008"
DeleteKey: HKCU\Software\Mozilla
DeleteKey: HKCU\Software\MozillaPlugins
DeleteKey: HKLM\SOFTWARE\Mozilla
DeleteKey: HKLM\SOFTWARE\MozillaPlugins
DeleteKey: HKLM\SOFTWARE\Wow6432Node\Mozilla
DeleteKey: HKLM\SOFTWARE\Wow6432Node\mozilla.org
DeleteKey: HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
C:\Users\Konrad\AppData\Local\Mozilla
C:\Users\Konrad\AppData\Roaming\Mozilla
C:\Users\Konrad\AppData\Roaming\Profiles
CMD: dir /a "C:\Program Files"
CMD: dir /a "C:\Program Files (x86)"
CMD: dir /a "C:\Program Files\Common Files\System"
CMD: dir /a "C:\Program Files (x86)\Common Files\System"
CMD: dir /a C:\ProgramData
CMD: dir /a C:\Users\Konrad\AppData\Local
CMD: dir /a C:\Users\Konrad\AppData\LocalLow
CMD: dir /a C:\Users\Konrad\AppData\Roaming
EmptyTemp:
*****************

Procesy zostały pomyślnie zamknięte.
Błąd: (0) Nie udało się utworzyć punktu przywracania.
C:\Windows\system32\GroupPolicy\Machine => pomyślnie przeniesiono
C:\Windows\system32\GroupPolicy\GPT.ini => pomyślnie przeniesiono
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => pomyślnie przeniesiono
C:\Windows\system32\GroupPolicy\User => pomyślnie przeniesiono
HKU\S-1-5-21-877549434-3901300369-924540138-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => Wartość pomyślnie przywrócono
HKU\S-1-5-21-877549434-3901300369-924540138-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Wartość pomyślnie usunięto
"HKU\S-1-5-21-877549434-3901300369-924540138-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{FFEBBF0A-C22C-4172-89FF-45215A135AC7}" => klucz pomyślnie usunięto
HKCR\CLSID\{FFEBBF0A-C22C-4172-89FF-45215A135AC7} => klucz nie znaleziono. 
C:\Program Files (x86)\Mail.Ru => pomyślnie przeniesiono
C:\ProgramData\Mail.Ru => pomyślnie przeniesiono
C:\Users\Konrad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mail.Ru.lnk => Skrót - argument pomyślnie usunięto.
HKCU\Software\Mozilla => niepowodzenie przy usuwaniu klucz.: incorrect path. 
HKCU\Software\MozillaPlugins => klucz pomyślnie usunięto
HKLM\SOFTWARE\Mozilla => klucz pomyślnie usunięto
HKLM\SOFTWARE\MozillaPlugins => klucz pomyślnie usunięto
HKLM\SOFTWARE\Wow6432Node\Mozilla => klucz pomyślnie usunięto
HKLM\SOFTWARE\Wow6432Node\mozilla.org => niepowodzenie przy usuwaniu klucz. ErrorCode: 0xC000000D
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins => klucz pomyślnie usunięto
"C:\Users\Konrad\AppData\Local\Mozilla" => nie znaleziono.
"C:\Users\Konrad\AppData\Roaming\Mozilla" => nie znaleziono.
"C:\Users\Konrad\AppData\Roaming\Profiles" => nie znaleziono.

========= dir /a "C:\Program Files" =========

 Volume in drive C has no label.
 Volume Serial Number is E2B0-E8F5

 Directory of C:\Program Files

02.12.2016  15:43    <DIR>          .
02.12.2016  15:43    <DIR>          ..
02.12.2016  15:43    <DIR>          Common Files
16.07.2016  12:45               174 desktop.ini
15.10.2016  18:28    <DIR>          Intel
15.10.2016  19:04    <DIR>          Internet Explorer
02.12.2016  15:40    <DIR>          Microsoft Analysis Services
02.12.2016  15:43    <DIR>          Microsoft SQL Server
02.12.2016  15:43    <DIR>          Microsoft.NET
08.11.2016  15:11    <DIR>          MSBuild
08.11.2016  15:11    <DIR>          Reference Assemblies
16.10.2016  07:51    <DIR>          SecureAge
15.10.2016  17:58    <DIR>          Uninstall Information
15.10.2016  19:04    <DIR>          Windows Defender
15.10.2016  19:04    <DIR>          Windows Defender Advanced Threat Protection
15.10.2016  19:04    <DIR>          Windows Mail
07.11.2016  17:44    <DIR>          Windows Media Player
16.07.2016  12:47    <DIR>          Windows Multimedia Platform
15.10.2016  17:59    <DIR>          Windows NT
15.10.2016  19:04    <DIR>          Windows Photo Viewer
16.07.2016  12:47    <DIR>          Windows Portable Devices
16.07.2016  12:47    <DIR>          Windows Sidebar
02.12.2016  12:59    <DIR>          WindowsApps
16.07.2016  12:47    <DIR>          WindowsPowerShell
               1 File(s)            174 bytes
              23 Dir(s)  23˙373˙160˙448 bytes free

========= Koniec  CMD: =========


========= dir /a "C:\Program Files (x86)" =========

 Volume in drive C has no label.
 Volume Serial Number is E2B0-E8F5

 Directory of C:\Program Files (x86)

02.12.2016  20:50    <DIR>          .
02.12.2016  20:50    <DIR>          ..
07.11.2016  17:52    <DIR>          Bloody6
28.11.2016  13:04    <DIR>          Brother
28.11.2016  13:04    <DIR>          Browny02
02.12.2016  15:29    <DIR>          Common Files
28.11.2016  13:04    <DIR>          ControlCenter4
16.07.2016  12:45               174 desktop.ini
28.11.2016  13:04    <DIR>          InstallShield Installation Information
15.10.2016  18:29    <DIR>          Intel
15.10.2016  19:04    <DIR>          Internet Explorer
02.12.2016  15:40    <DIR>          Microsoft Analysis Services
02.12.2016  15:40    <DIR>          Microsoft Office
02.12.2016  15:43    <DIR>          Microsoft SQL Server
02.12.2016  15:43    <DIR>          Microsoft.NET
02.12.2016  15:43    <DIR>          Mozilla Firefox
08.11.2016  15:11    <DIR>          MSBuild
08.11.2016  15:11    <DIR>          Reference Assemblies
15.10.2016  19:04    <DIR>          Windows Defender
15.10.2016  19:04    <DIR>          Windows Mail
07.11.2016  17:44    <DIR>          Windows Media Player
16.07.2016  12:47    <DIR>          Windows Multimedia Platform
16.07.2016  12:47    <DIR>          Windows NT
15.10.2016  19:04    <DIR>          Windows Photo Viewer
16.07.2016  12:47    <DIR>          Windows Portable Devices
16.07.2016  12:47    <DIR>          Windows Sidebar
16.07.2016  12:47    <DIR>          WindowsPowerShell
               1 File(s)            174 bytes
              26 Dir(s)  23˙373˙160˙448 bytes free

========= Koniec  CMD: =========


========= dir /a "C:\Program Files\Common Files\System" =========

 Volume in drive C has no label.
 Volume Serial Number is E2B0-E8F5

 Directory of C:\Program Files\Common Files\System

02.12.2016  15:40    <DIR>          .
02.12.2016  15:40    <DIR>          ..
16.07.2016  23:10    <DIR>          ado
16.07.2016  12:43            32˙256 DirectDB.dll
16.07.2016  23:10    <DIR>          en-US
16.07.2016  23:10    <DIR>          msadc
02.12.2016  15:40    <DIR>          MSMAPI
02.12.2016  15:43    <DIR>          Ole DB
16.07.2016  23:10    <DIR>          pl-PL
16.07.2016  12:42           867˙840 wab32.dll
16.07.2016  12:42           964˙096 wab32res.dll
               3 File(s)      1˙864˙192 bytes
               8 Dir(s)  23˙373˙164˙544 bytes free

========= Koniec  CMD: =========


========= dir /a "C:\Program Files (x86)\Common Files\System" =========

 Volume in drive C has no label.
 Volume Serial Number is E2B0-E8F5

 Directory of C:\Program Files (x86)\Common Files\System

16.07.2016  23:10    <DIR>          .
16.07.2016  23:10    <DIR>          ..
16.07.2016  23:10    <DIR>          ado
16.07.2016  12:43            28˙160 DirectDB.dll
16.07.2016  23:10    <DIR>          en-US
16.07.2016  23:10    <DIR>          msadc
02.12.2016  15:43    <DIR>          Ole DB
16.07.2016  23:10    <DIR>          pl-PL
16.07.2016  12:42           753˙152 wab32.dll
16.07.2016  12:42           964˙096 wab32res.dll
               3 File(s)      1˙745˙408 bytes
               7 Dir(s)  23˙373˙164˙544 bytes free

========= Koniec  CMD: =========


========= dir /a C:\ProgramData =========

 Volume in drive C has no label.
 Volume Serial Number is E2B0-E8F5

 Directory of C:\ProgramData

02.12.2016  20:50    <DIR>          .
02.12.2016  20:50    <DIR>          ..
18.11.2016  18:20    <DIR>          Adobe
16.10.2016  06:57    <DIR>          AVAST Software
28.11.2016  13:02    <DIR>          Brother
16.10.2016  07:51    <DIR>          ClamAV
16.07.2016  12:47    <DIR>          Comms
28.11.2016  13:04    <DIR>          ControlCenter4
15.10.2016  17:59    <JUNCTION>     Dane aplikacji [C:\ProgramData]
15.10.2016  17:59    <JUNCTION>     Dokumenty [C:\Users\Public\Documents]
16.10.2016  07:06    <DIR>          Malwarebytes
15.10.2016  17:59    <JUNCTION>     Menu Start [C:\ProgramData\Microsoft\Windows\Start Menu]
02.12.2016  13:54    <DIR>          Microsoft
02.12.2016  15:44    <DIR>          Microsoft Help
15.10.2016  18:25    <DIR>          Microsoft OneDrive
02.12.2016  15:45    <DIR>          Microsoft Toolkit
15.10.2016  17:59    <JUNCTION>     Pulpit [C:\Users\Public\Desktop]
02.12.2016  15:43    <DIR>          regid.1991-06.com.microsoft
16.10.2016  07:51    <DIR>          SecureAge Technology
16.07.2016  12:47    <DIR>          SoftwareDistribution
29.11.2016  15:10    <DIR>          Steam
15.10.2016  17:59    <JUNCTION>     Szablony [C:\ProgramData\Microsoft\Windows\Templates]
15.10.2016  18:00    <DIR>          USOPrivate
15.10.2016  18:00    <DIR>          USOShared
               0 File(s)              0 bytes
              24 Dir(s)  23˙373˙160˙448 bytes free

========= Koniec  CMD: =========


========= dir /a C:\Users\Konrad\AppData\Local =========

 Volume in drive C has no label.
 Volume Serial Number is E2B0-E8F5

 Directory of C:\Users\Konrad\AppData\Local

02.12.2016  15:40    <DIR>          .
02.12.2016  15:40    <DIR>          ..
18.11.2016  18:20    <DIR>          Adobe
15.11.2016  14:39    <DIR>          Apps
08.11.2016  21:39    <DIR>          Black_Tree_Gaming
16.10.2016  07:02    <DIR>          CEF
28.11.2016  17:37    <DIR>          Comms
15.10.2016  19:05    <DIR>          ConnectedDevicesPlatform
15.10.2016  18:24    <JUNCTION>     Dane aplikacji [C:\Users\Konrad\AppData\Local]
03.11.2016  12:27    <DIR>          ElevatedDiagnostics
15.10.2016  18:24    <JUNCTION>     Historia [C:\Users\Konrad\AppData\Local\Microsoft\Windows\History]
02.12.2016  15:01            87˙318 IconCache.db
02.12.2016  15:44    <DIR>          Microsoft
02.12.2016  15:40    <DIR>          Microsoft Help
15.10.2016  18:49    <DIR>          MicrosoftEdge
15.11.2016  15:50    <DIR>          MindGems
16.10.2016  06:53    <DIR>          Opera Software
07.11.2016  18:48    <DIR>          Packages
26.10.2016  15:08    <DIR>          PeerDistRepub
16.10.2016  07:06    <DIR>          Programs
15.10.2016  18:24    <DIR>          Publishers
08.11.2016  22:14    <DIR>          Skyrim
07.11.2016  17:06    <DIR>          Steam
02.12.2016  20:50    <DIR>          Temp
15.10.2016  18:24    <JUNCTION>     Temporary Internet Files [C:\Users\Konrad\AppData\Local\Microsoft\Windows\INetCache]
15.10.2016  18:24    <DIR>          TileDataLayer
15.10.2016  18:24    <DIR>          VirtualStore
               1 File(s)         87˙318 bytes
              26 Dir(s)  23˙373˙160˙448 bytes free

========= Koniec  CMD: =========


========= dir /a C:\Users\Konrad\AppData\LocalLow =========

 Volume in drive C has no label.
 Volume Serial Number is E2B0-E8F5

 Directory of C:\Users\Konrad\AppData\LocalLow

02.12.2016  14:27    <DIR>          .
02.12.2016  14:27    <DIR>          ..
18.11.2016  18:20    <DIR>          Adobe
18.11.2016  18:20    <DIR>          Brother
07.11.2016  18:12    <DIR>          Microsoft
23.11.2016  11:47    <DIR>          Temp
02.12.2016  15:31    <DIR>          uTorrent
               0 File(s)              0 bytes
               7 Dir(s)  23˙373˙160˙448 bytes free

========= Koniec  CMD: =========


========= dir /a C:\Users\Konrad\AppData\Roaming =========

 Volume in drive C has no label.
 Volume Serial Number is E2B0-E8F5

 Directory of C:\Users\Konrad\AppData\Roaming

28.11.2016  22:08    <DIR>          .
28.11.2016  22:08    <DIR>          ..
18.11.2016  18:20    <DIR>          Adobe
16.10.2016  07:01    <DIR>          AVAST Software
18.11.2016  18:20    <DIR>          Brother
28.11.2016  13:06    <DIR>          ControlCenter4
28.11.2016  13:02    <DIR>          InstallShield
15.10.2016  18:49    <DIR>          Macromedia
02.12.2016  15:48    <DIR>          Microsoft
07.11.2016  21:36    <DIR>          NapiProjekt
16.10.2016  06:53    <DIR>          Opera Software
02.11.2016  11:58    <DIR>          SecureAge Technology
07.11.2016  17:00    <DIR>          Skype
02.12.2016  20:49    <DIR>          uTorrent
01.12.2016  21:52    <DIR>          vlc
07.11.2016  17:51    <DIR>          WinRAR
               0 File(s)              0 bytes
              16 Dir(s)  23˙373˙156˙352 bytes free

========= Koniec  CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18193894 B
Java, Flash, Steam htmlcache => 22886545 B
Windows/system/drivers => 51767099 B
Edge => 594 B
Chrome => 0 B
Firefox => 0 B
Opera => 50384095 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 1642 B
NetworkService => 128 B
defaultuser0 => 587916 B
Konrad => 7105198 B

RecycleBin => 0 B
EmptyTemp: => 143.9 MB danych tymczasowych Usunięto.

================================


System wymagał restartu.

==== Koniec  Fixlog 20:50:37 ====