API tools faq
paste
Guest User

Untitled

a guest
Jul 18th, 2018
159
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 30.39 KB | None | 0 0
raw download clone embed print report
  1. Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 15.07.2018
  2. Uruchomiony przez norbi (18-07-2018 21:44:26) Run:4
  3. Uruchomiony z C:\Users\norbi\Desktop
  4. Załadowane profile: norbi (Dostępne profile: norbi & Administrator)
  5. Tryb startu: Normal
  6. ==============================================
  7.  
  8. fixlist - zawartość:
  9. *****************
  10. CloseProcesses:
  11. CreateRestorePoint:
  12. EmptyTemp:
  13. VirusTotal: C:\Program Files (x86)\LKvaHIuaGFsrl.exe
  14. VirusTotal: C:\Program Files (x86)\mpOE.exe
  15. VirusTotal: C:\Users\norbi\AppData\Roaming\cexplorer.exe
  16. VirusTotal: C:\Users\norbi\AppData\Local\Kaykix.exe
  17. HKU\S-1-5-21-1127345323-2592640102-239408248-1001\...\MountPoints2: {31f92ed6-6e49-11e8-a5ea-9822ef706bbe} - "D:\SISetup.exe"
  18. GroupPolicy: Ograniczenia - Chrome <==== UWAGA
  19. Tcpip\..\Interfaces\{2fa46e70-352c-4210-b3e6-52dd18a8fd10}: [NameServer] 62.179.1.62,62.179.1.63
  20. Tcpip\..\Interfaces\{7e0fc2c7-a2fb-4ec8-873f-697f8f5763c7}: [DhcpNameServer] 192.168.0.1 192.168.0.2
  21. SearchScopes: HKU\S-1-5-21-1127345323-2592640102-239408248-1001 -> DefaultScope {93723AF5-3686-4284-8D3D-F0062176FB1E} URL =
  22. FF NewTab: Mozilla\Firefox\Profiles\cuq6ogzb.default -> C:\\ProgramData\\Quoteexs\\ff.NT
  23. CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
  24. CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
  25. S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [X]
  26. 2018-07-16 19:38 - 2018-07-16 19:38 - 000000008 __RSH C:\Users\norbi\ntuser.pol
  27. 2018-07-16 19:37 - 2018-07-16 19:37 - 000000008 __RSH C:\Users\Administrator\ntuser.pol
  28. 2018-07-16 19:31 - 2018-07-16 19:31 - 000000008 __RSH C:\ProgramData\ntuser.pol
  29. 2018-04-12 01:34 - 2018-04-12 01:34 - 000059904 ____N (Microsoft Corporation) C:\Program Files (x86)\LKvaHIuaGFsrl.exe
  30. 2018-04-12 01:34 - 2018-04-12 01:34 - 000178688 ____N (Microsoft Corporation) C:\Program Files (x86)\mpOE.exe
  31. 2018-03-26 14:57 - 2018-03-26 14:00 - 006860752 _____ (NeoSoft Tools ) C:\Users\norbi\AppData\Roaming\cexplorer.exe
  32. 2018-04-17 10:16 - 2018-04-17 10:16 - 001814528 _____ (TODO: <Company name>) C:\Users\norbi\AppData\Local\Kaykix.exe
  33. ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Brak pliku
  34. ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Brak pliku
  35. ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Brak pliku
  36. ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Brak pliku
  37. ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Brak pliku
  38. ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Brak pliku
  39. ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Brak pliku
  40. ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Brak pliku
  41. ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Brak pliku
  42. ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Brak pliku
  43. ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Brak pliku
  44. ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Brak pliku
  45. ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Brak pliku
  46. ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Brak pliku
  47. ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku
  48. Task: {0427CE24-7173-4F22-B9C8-594852EE0F46} - System32\Tasks\{B65EBFA6-2BB3-6D01-9B2F-26994F19324F} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://kotcatk.com/cl/?guid=4qwzsm6x0iwfo3nuixgzm3kw6mx0m52g&prid=1&pid=4_1324_0
  49. Task: {241F8DAA-98C5-40D4-B9A5-5B630021E37E} - System32\Tasks\{550D103A-F658-75DB-46DF-D5DF4C97A13E} => C:\Program Files (x86)\LKvaHIuaGFsrl.exe [2018-04-12] (Microsoft Corporation) <==== UWAGA
  50. Task: {D635FC26-D720-42D9-9244-407A72818605} - \Optimize Thumbnail Cache Files -> Brak pliku <==== UWAGA
  51. Task: {F970549A-A7E8-41A3-A3B8-DE2FB3776D2F} - \InstallShield® Update Service Scheduler -> Brak pliku <==== UWAGA
  52. AlternateDataStreams: C:\Users\Public\AppData:CSM [442]
  53. AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [482]
  54. FirewallRules: [{4850792C-E096-42E6-847D-8A6962FB72D0}] => (Allow) C:\WINDOWS\SouAUHbxIaS.exe
  55. FirewallRules: [{F00891FE-2B58-4F94-A882-F4530F492FA4}] => (Allow) C:\Program Files (x86)\LKvaHIuaGFsrl.exe
  56. FirewallRules: [{8EF0E004-0459-4E62-BEE7-2379127E0A56}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  57. FirewallRules: [{353B1DDE-6AA1-4C5F-BA03-5CC2DB219E1A}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  58. FirewallRules: [{1D9A8F74-199F-46C3-B975-E9BE37E6550D}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  59. FirewallRules: [{80A5F7E4-0479-420A-8B35-87D6B3D69839}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  60. FirewallRules: [{9C6D43F2-E42C-4F38-8043-DE597BEAD688}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  61. FirewallRules: [{5E55B06E-3322-4EE6-9A73-82EF7BCD18E5}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  62. FirewallRules: [{63B7883C-4AC3-4C7F-8F87-AB74EF38A76A}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  63. FirewallRules: [{D46E3C0B-42D8-4EA4-8410-8EF0C089603A}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  64. FirewallRules: [{EB61FBEC-9773-4AD7-9B10-102D883EDDD9}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  65. FirewallRules: [{3246921C-EF87-422C-A72E-05737DDB156E}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  66. FirewallRules: [{FFB58663-2FF6-4FEE-91AD-EF6B9A874EB5}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  67. FirewallRules: [{B3D6ADD2-DBCE-4569-AA7B-91C3666790CB}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  68. FirewallRules: [{CC7538E7-4B1C-48E1-AA15-383E1B78F0A5}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  69. FirewallRules: [{CC99CE33-0C0A-48E9-B553-3B03088011D9}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  70. FirewallRules: [{ED4172DD-69C4-4807-9103-1C5E2ECADCF7}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  71. FirewallRules: [{F06DC41B-2591-4F1E-AA83-189319F8F864}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  72. FirewallRules: [{0629BE34-0D43-4811-A4C3-9DB240C00FAC}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  73. FirewallRules: [{B6ACCBD2-EBFF-4949-B143-72624E6FECC2}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  74. FirewallRules: [{FB61D9AD-161C-467D-8158-D97A3E26C586}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  75. FirewallRules: [{6D39C980-91AC-437E-BB67-41A9E6FFA0BA}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  76. FirewallRules: [{600875FF-454C-4655-8275-399D56C03509}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  77. FirewallRules: [{0B6400E7-63D3-4971-A437-C7B13B1FEC59}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  78. FirewallRules: [{AB749D88-724B-4D47-B5A9-AFDC6EEB2204}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  79. FirewallRules: [{69537C68-5BF8-4D93-BE71-DDA0187C57DA}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  80. FirewallRules: [{C63A934A-7F24-471A-807D-952122A21DC8}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  81. FirewallRules: [{1D6F702E-8AFE-40E5-BDCB-B907EFE98325}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  82. FirewallRules: [{E07C8AC0-0CC8-4C92-BC30-D9A914BF7FB9}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  83. FirewallRules: [{EBDB3934-1E2D-4963-A787-9E723265D09C}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  84. FilesInDirectory: C:\Users\norbi\AppData\Local\*.exe;*.dll;*.ini
  85. FilesInDirectory: C:\Users\norbi\AppData\Roaming\*.exe;*.dll;*.ini
  86. CMD: dir /a "C:\Program Files"
  87. CMD: dir /a "C:\Program Files (x86)"
  88. CMD: dir /a "C:\Users\norbi\AppData"
  89. CMD: dir /a "C:\Users\norbi\AppData\Local"
  90.  
  91. *****************
  92.  
  93. Procesy zostały pomyślnie zamknięte.
  94. Punkt przywracania został pomyślnie utworzony.
  95. VirusTotal: C:\Program Files (x86)\LKvaHIuaGFsrl.exe => https://www.virustotal.com/file/b656b13e12b9caa5c0e041d6528aae515c310edb77a1267b73d901a7ba3a86fd/analysis/1531883740/
  96. VirusTotal: C:\Program Files (x86)\mpOE.exe => https://www.virustotal.com/file/ffabee87d6e0159ab95b73a367499dbe9689f887fe23b5919ef86095f3b930aa/analysis/1531920286/
  97. VirusTotal: C:\Users\norbi\AppData\Roaming\cexplorer.exe => https://www.virustotal.com/file/e71c48c03b8cfd37bf17e62460733a4bfe9c484e947fd9db291f65405a2ba9e8/analysis/1529983649/
  98. VirusTotal: C:\Users\norbi\AppData\Local\Kaykix.exe => https://www.virustotal.com/file/446eb9b430e01a149408b602a64ea857b185daf4b3e762d626c0bcec27fbc3ae/analysis/1524702822/
  99. "HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{31f92ed6-6e49-11e8-a5ea-9822ef706bbe}" => pomyślnie usunięto
  100. HKLM\Software\Classes\CLSID\{31f92ed6-6e49-11e8-a5ea-9822ef706bbe} => nie znaleziono
  101. C:\WINDOWS\system32\GroupPolicy\Machine => pomyślnie przeniesiono
  102. "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{2fa46e70-352c-4210-b3e6-52dd18a8fd10}\\NameServer" => pomyślnie usunięto
  103. "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7e0fc2c7-a2fb-4ec8-873f-697f8f5763c7}\\DhcpNameServer" => pomyślnie usunięto
  104. "HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => pomyślnie usunięto
  105. "Firefox newtab" => pomyślnie usunięto
  106. "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck" => pomyślnie usunięto
  107. "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => pomyślnie usunięto
  108. "HKLM\System\CurrentControlSet\Services\WinRing0_1_2_0" => pomyślnie usunięto
  109. WinRing0_1_2_0 => serwis pomyślnie usunięto
  110. C:\Users\norbi\ntuser.pol => pomyślnie przeniesiono
  111. C:\Users\Administrator\ntuser.pol => pomyślnie przeniesiono
  112. C:\ProgramData\ntuser.pol => pomyślnie przeniesiono
  113. C:\Program Files (x86)\LKvaHIuaGFsrl.exe => pomyślnie przeniesiono
  114. C:\Program Files (x86)\mpOE.exe => pomyślnie przeniesiono
  115. C:\Users\norbi\AppData\Roaming\cexplorer.exe => pomyślnie przeniesiono
  116. C:\Users\norbi\AppData\Local\Kaykix.exe => pomyślnie przeniesiono
  117. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1" => pomyślnie usunięto
  118. HKLM\Software\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => nie znaleziono
  119. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2" => pomyślnie usunięto
  120. HKLM\Software\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => nie znaleziono
  121. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3" => pomyślnie usunięto
  122. HKLM\Software\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => nie znaleziono
  123. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4" => pomyślnie usunięto
  124. HKLM\Software\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => nie znaleziono
  125. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => pomyślnie usunięto
  126. HKLM\Software\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => nie znaleziono
  127. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6" => pomyślnie usunięto
  128. HKLM\Software\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => nie znaleziono
  129. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7" => pomyślnie usunięto
  130. HKLM\Software\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => nie znaleziono
  131. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1" => pomyślnie usunięto
  132. HKLM\Software\Wow6432Node\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => nie znaleziono
  133. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2" => pomyślnie usunięto
  134. HKLM\Software\Wow6432Node\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => nie znaleziono
  135. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3" => pomyślnie usunięto
  136. HKLM\Software\Wow6432Node\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => nie znaleziono
  137. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4" => pomyślnie usunięto
  138. HKLM\Software\Wow6432Node\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => nie znaleziono
  139. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => pomyślnie usunięto
  140. HKLM\Software\Wow6432Node\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => nie znaleziono
  141. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6" => pomyślnie usunięto
  142. HKLM\Software\Wow6432Node\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => nie znaleziono
  143. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7" => pomyślnie usunięto
  144. HKLM\Software\Wow6432Node\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => nie znaleziono
  145. "HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => pomyślnie usunięto
  146. HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => nie znaleziono
  147. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0427CE24-7173-4F22-B9C8-594852EE0F46}" => pomyślnie usunięto
  148. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0427CE24-7173-4F22-B9C8-594852EE0F46}" => pomyślnie usunięto
  149. C:\WINDOWS\System32\Tasks\{B65EBFA6-2BB3-6D01-9B2F-26994F19324F} => pomyślnie przeniesiono
  150. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B65EBFA6-2BB3-6D01-9B2F-26994F19324F}" => pomyślnie usunięto
  151. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{241F8DAA-98C5-40D4-B9A5-5B630021E37E}" => pomyślnie usunięto
  152. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{241F8DAA-98C5-40D4-B9A5-5B630021E37E}" => pomyślnie usunięto
  153. C:\WINDOWS\System32\Tasks\{550D103A-F658-75DB-46DF-D5DF4C97A13E} => pomyślnie przeniesiono
  154. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{550D103A-F658-75DB-46DF-D5DF4C97A13E}" => pomyślnie usunięto
  155. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D635FC26-D720-42D9-9244-407A72818605}" => pomyślnie usunięto
  156. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D635FC26-D720-42D9-9244-407A72818605}" => pomyślnie usunięto
  157. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Optimize Thumbnail Cache Files => nie znaleziono
  158. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F970549A-A7E8-41A3-A3B8-DE2FB3776D2F}" => pomyślnie usunięto
  159. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F970549A-A7E8-41A3-A3B8-DE2FB3776D2F}" => pomyślnie usunięto
  160. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\InstallShield® Update Service Scheduler => nie znaleziono
  161. C:\Users\Public\AppData => ":CSM" ADS pomyślnie usunięto
  162. C:\Users\Public\Shared Files => ":VersionCache" ADS pomyślnie usunięto
  163. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4850792C-E096-42E6-847D-8A6962FB72D0}" => pomyślnie usunięto
  164. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F00891FE-2B58-4F94-A882-F4530F492FA4}" => pomyślnie usunięto
  165. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8EF0E004-0459-4E62-BEE7-2379127E0A56}" => pomyślnie usunięto
  166. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{353B1DDE-6AA1-4C5F-BA03-5CC2DB219E1A}" => pomyślnie usunięto
  167. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1D9A8F74-199F-46C3-B975-E9BE37E6550D}" => pomyślnie usunięto
  168. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{80A5F7E4-0479-420A-8B35-87D6B3D69839}" => pomyślnie usunięto
  169. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9C6D43F2-E42C-4F38-8043-DE597BEAD688}" => pomyślnie usunięto
  170. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5E55B06E-3322-4EE6-9A73-82EF7BCD18E5}" => pomyślnie usunięto
  171. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{63B7883C-4AC3-4C7F-8F87-AB74EF38A76A}" => pomyślnie usunięto
  172. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D46E3C0B-42D8-4EA4-8410-8EF0C089603A}" => pomyślnie usunięto
  173. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EB61FBEC-9773-4AD7-9B10-102D883EDDD9}" => pomyślnie usunięto
  174. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3246921C-EF87-422C-A72E-05737DDB156E}" => pomyślnie usunięto
  175. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FFB58663-2FF6-4FEE-91AD-EF6B9A874EB5}" => pomyślnie usunięto
  176. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B3D6ADD2-DBCE-4569-AA7B-91C3666790CB}" => pomyślnie usunięto
  177. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CC7538E7-4B1C-48E1-AA15-383E1B78F0A5}" => pomyślnie usunięto
  178. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CC99CE33-0C0A-48E9-B553-3B03088011D9}" => pomyślnie usunięto
  179. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ED4172DD-69C4-4807-9103-1C5E2ECADCF7}" => pomyślnie usunięto
  180. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F06DC41B-2591-4F1E-AA83-189319F8F864}" => pomyślnie usunięto
  181. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0629BE34-0D43-4811-A4C3-9DB240C00FAC}" => pomyślnie usunięto
  182. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B6ACCBD2-EBFF-4949-B143-72624E6FECC2}" => pomyślnie usunięto
  183. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FB61D9AD-161C-467D-8158-D97A3E26C586}" => pomyślnie usunięto
  184. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6D39C980-91AC-437E-BB67-41A9E6FFA0BA}" => pomyślnie usunięto
  185. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{600875FF-454C-4655-8275-399D56C03509}" => pomyślnie usunięto
  186. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0B6400E7-63D3-4971-A437-C7B13B1FEC59}" => pomyślnie usunięto
  187. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AB749D88-724B-4D47-B5A9-AFDC6EEB2204}" => pomyślnie usunięto
  188. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{69537C68-5BF8-4D93-BE71-DDA0187C57DA}" => pomyślnie usunięto
  189. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C63A934A-7F24-471A-807D-952122A21DC8}" => pomyślnie usunięto
  190. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1D6F702E-8AFE-40E5-BDCB-B907EFE98325}" => pomyślnie usunięto
  191. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E07C8AC0-0CC8-4C92-BC30-D9A914BF7FB9}" => pomyślnie usunięto
  192. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EBDB3934-1E2D-4963-A787-9E723265D09C}" => pomyślnie usunięto
  193.  
  194. ========================= FilesInDirectory: C:\Users\norbi\AppData\Local\*.exe;*.dll;*.ini ========================
  195.  
  196. 2018-04-17 10:16 - 2018-04-17 10:16 - 001814528 ____A [98BCD4FDE4F9B894051AA374DB3553A9] (TODO: <Company name>) C:\Users\norbi\AppData\Local\Alphazap.exe
  197. 2018-07-16 09:19 - 2018-07-16 09:19 - 000000002 ____A [23B58DEF11B45727D3351702515F86AF] () C:\Users\norbi\AppData\Local\imw.ini
  198.  
  199. ====== Koniec Filesindirectory ======
  200.  
  201. ========================= FilesInDirectory: C:\Users\norbi\AppData\Roaming\*.exe;*.dll;*.ini ========================
  202.  
  203.  
  204. ====== Koniec Filesindirectory ======
  205.  
  206. ========= dir /a "C:\Program Files" =========
  207.  
  208. Volume in drive C is Acer
  209. Volume Serial Number is 9E2E-6809
  210.  
  211. Directory of C:\Program Files
  212.  
  213. 15.07.2018 15:58 <DIR> .
  214. 15.07.2018 15:58 <DIR> ..
  215. 18.04.2018 12:30 <DIR> Acer
  216. 17.04.2018 10:57 <DIR> AVAST Software
  217. 18.04.2018 13:09 <DIR> CCleaner
  218. 05.06.2018 17:18 <DIR> Common Files
  219. 12.04.2018 01:36 174 desktop.ini
  220. 05.06.2018 16:24 <DIR> Dolby
  221. 18.04.2018 10:47 <DIR> Epic Games
  222. 17.04.2018 10:24 <DIR> FZ5UV6ATOW
  223. 15.07.2018 13:39 <DIR> Grand Theft Auto V
  224. 15.06.2018 08:40 <DIR> HP
  225. 05.06.2018 17:18 <DIR> Intel
  226. 12.04.2018 17:52 <DIR> internet explorer
  227. 15.06.2018 22:40 <DIR> iVMS-4200 Station
  228. 16.07.2018 19:42 <DIR> KMSpico
  229. 17.04.2018 13:35 <DIR> Microsoft Analysis Services
  230. 17.04.2018 13:37 <DIR> Microsoft Office
  231. 17.04.2018 13:37 <DIR> Microsoft SQL Server
  232. 05.06.2018 17:18 <DIR> Microsoft.NET
  233. 05.06.2018 16:55 <DIR> MSBuild
  234. 17.04.2018 10:18 <DIR> My Program
  235. 10.04.2018 14:22 <DIR> Norton Security
  236. 05.06.2018 16:25 <DIR> NVIDIA Corporation
  237. 05.06.2018 17:13 <DIR> Realtek
  238. 15.07.2018 20:12 <DIR> Recuva
  239. 05.06.2018 16:55 <DIR> Reference Assemblies
  240. 10.04.2018 13:49 <DIR> rempl
  241. 07.05.2018 19:52 <DIR> Rockstar Games
  242. 12.05.2018 15:21 <DIR> The Sims 4
  243. 23.11.2017 11:45 <DIR> Uninstall Information
  244. 19.06.2018 14:02 <DIR> VideoLAN
  245. 05.06.2018 16:45 <DIR> Windows Defender
  246. 05.06.2018 17:18 <DIR> Windows Mail
  247. 05.06.2018 17:01 <DIR> Windows Media Player
  248. 12.04.2018 01:38 <DIR> Windows Multimedia Platform
  249. 05.06.2018 16:46 <DIR> windows nt
  250. 15.06.2018 17:17 <DIR> Windows Photo Viewer
  251. 12.04.2018 01:38 <DIR> Windows Portable Devices
  252. 12.04.2018 01:38 <DIR> Windows Security
  253. 12.04.2018 01:38 <DIR> Windows Sidebar
  254. 18.07.2018 19:39 <DIR> WindowsApps
  255. 12.04.2018 01:38 <DIR> WindowsPowerShell
  256. 17.04.2018 09:58 <DIR> WinRAR
  257. 1 File(s) 174 bytes
  258. 43 Dir(s) 690˙928˙218˙112 bytes free
  259.  
  260. ========= Koniec CMD: =========
  261.  
  262.  
  263. ========= dir /a "C:\Program Files (x86)" =========
  264.  
  265. Volume in drive C is Acer
  266. Volume Serial Number is 9E2E-6809
  267.  
  268. Directory of C:\Program Files (x86)
  269.  
  270. 18.07.2018 21:45 <DIR> .
  271. 18.07.2018 21:45 <DIR> ..
  272. 18.04.2018 12:31 <DIR> Acer
  273. 15.04.2018 19:18 <DIR> AMX Mod X
  274. 19.04.2018 12:17 <DIR> Anvsoft
  275. 23.11.2017 12:09 <DIR> Bluetooth Suite
  276. 11.04.2018 14:25 <DIR> City Car Driving
  277. 15.07.2018 16:44 <DIR> CleverFiles
  278. 20.06.2018 14:48 <DIR> Common Files
  279. 12.04.2018 01:36 174 desktop.ini
  280. 18.04.2018 21:54 <DIR> EasyAntiCheat
  281. 18.04.2018 10:45 <DIR> Epic Games
  282. 17.04.2018 10:19 <DIR> foldershare
  283. 18.07.2018 19:22 <DIR> Google
  284. 17.04.2018 11:04 <DIR> hash
  285. 15.06.2018 22:40 <DIR> InstallShield Installation Information
  286. 23.11.2017 12:14 <DIR> Intel
  287. 12.04.2018 17:52 <DIR> Internet Explorer
  288. 31.05.2018 12:50 <DIR> IObit
  289. 19.04.2018 12:20 <DIR> K-Lite Codec Pack
  290. 17.04.2018 10:40 <DIR> KMSPico 10.2.1 Final
  291. 17.04.2018 13:35 <DIR> Microsoft Analysis Services
  292. 17.04.2018 13:35 <DIR> Microsoft Office
  293. 17.04.2018 13:37 <DIR> Microsoft SQL Server
  294. 05.06.2018 17:18 <DIR> Microsoft.NET
  295. 18.07.2018 19:29 <DIR> Mozilla Firefox
  296. 18.07.2018 19:29 <DIR> Mozilla Maintenance Service
  297. 05.06.2018 16:55 <DIR> MSBuild
  298. 23.11.2017 12:53 <DIR> NortonInstaller
  299. 21.05.2018 15:02 <DIR> NVIDIA Corporation
  300. 01.05.2018 10:20 <DIR> PhotoScape
  301. 23.11.2017 12:28 <DIR> Qualcomm
  302. 20.06.2018 14:48 <DIR> Razer
  303. 23.11.2017 12:26 <DIR> Realtek
  304. 05.06.2018 16:55 <DIR> Reference Assemblies
  305. 07.05.2018 19:53 <DIR> Rockstar Games
  306. 16.07.2018 10:58 <DIR> Steam
  307. 10.04.2018 15:22 <DIR> SteamServerBrowser
  308. 23.11.2017 12:54 <DIR> SymSilent
  309. 23.11.2017 12:27 <DIR> Temp
  310. 05.06.2018 16:23 <DIR> VulkanRT
  311. 15.06.2018 22:41 <DIR> Win10Pcap
  312. 05.06.2018 17:01 <DIR> Windows Defender
  313. 05.06.2018 17:13 <DIR> Windows Mail
  314. 05.06.2018 17:01 <DIR> Windows Media Player
  315. 12.04.2018 01:38 <DIR> Windows Multimedia Platform
  316. 12.04.2018 01:38 <DIR> windows nt
  317. 15.06.2018 17:17 <DIR> Windows Photo Viewer
  318. 12.04.2018 01:38 <DIR> Windows Portable Devices
  319. 12.04.2018 01:38 <DIR> Windows Sidebar
  320. 12.04.2018 01:38 <DIR> WindowsPowerShell
  321. 1 File(s) 174 bytes
  322. 50 Dir(s) 690˙928˙218˙112 bytes free
  323.  
  324. ========= Koniec CMD: =========
  325.  
  326.  
  327. ========= dir /a "C:\Users\norbi\AppData" =========
  328.  
  329. Volume in drive C is Acer
  330. Volume Serial Number is 9E2E-6809
  331.  
  332. Directory of C:\Users\norbi\AppData
  333.  
  334. 05.06.2018 16:44 <DIR> .
  335. 05.06.2018 16:44 <DIR> ..
  336. 18.07.2018 21:45 <DIR> Local
  337. 16.07.2018 09:33 <DIR> LocalLow
  338. 15.07.2018 20:19 80 Local???????????????????
  339. 18.07.2018 21:45 <DIR> Roaming
  340. 1 File(s) 80 bytes
  341. 5 Dir(s) 690˙928˙218˙112 bytes free
  342.  
  343. ========= Koniec CMD: =========
  344.  
  345.  
  346. ========= dir /a "C:\Users\norbi\AppData\Local" =========
  347.  
  348. Volume in drive C is Acer
  349. Volume Serial Number is 9E2E-6809
  350.  
  351. Directory of C:\Users\norbi\AppData\Local
  352.  
  353. 18.07.2018 21:45 <DIR> .
  354. 18.07.2018 21:45 <DIR> ..
  355. 29.05.2018 13:38 <DIR> acer
  356. 17.04.2018 10:16 7˙602˙176 agent.dat
  357. 17.04.2018 10:16 1˙814˙528 Alphazap.exe
  358. 17.04.2018 10:16 1˙989˙393 Alphazap.tst
  359. 10.04.2018 13:54 <DIR> AOP SDK
  360. 10.04.2018 14:10 <DIR> Apps
  361. 16.07.2018 19:55 <DIR> AVAST Software
  362. 10.04.2018 15:13 <DIR> CEF
  363. 26.04.2018 15:37 <DIR> Comms
  364. 17.04.2018 10:16 70˙896 Config.xml
  365. 10.04.2018 13:55 <DIR> ConnectedDevicesPlatform
  366. 18.07.2018 19:11 <DIR> CrashDumps
  367. 16.06.2018 20:21 <DIR> CrashReportClient
  368. 15.07.2018 16:44 <DIR> CrashRpt
  369. 05.07.2018 13:29 <DIR> D3DSCache
  370. 05.06.2018 16:27 <JUNCTION> Dane aplikacji [C:\Users\norbi\AppData\Local]
  371. 11.04.2018 14:25 <DIR> DBG
  372. 18.07.2018 19:41 <DIR> Deployment
  373. 15.06.2018 22:27 <DIR> DeskShare Data
  374. 15.07.2018 09:48 <DIR> Diagnostics
  375. 15.07.2018 18:25 <DIR> DiskDrill
  376. 18.04.2018 10:45 <DIR> EpicGamesLauncher
  377. 18.04.2018 11:05 <DIR> FortniteGame
  378. 18.07.2018 19:23 <DIR> Google
  379. 05.06.2018 16:27 <JUNCTION> Historia [C:\Users\norbi\AppData\Local\Microsoft\Windows\History]
  380. 18.07.2018 20:48 255˙078 IconCache.db
  381. 10.04.2018 19:41 <DIR> IIIQF
  382. 16.07.2018 09:19 2 imw.ini
  383. 17.04.2018 10:16 140˙800 installer.dat
  384. 17.04.2018 10:16 278˙509 Kaykix.tst
  385. 17.04.2018 10:16 5˙568 md.xml
  386. 15.06.2018 08:08 <DIR> Microsoft
  387. 17.04.2018 14:46 <DIR> Microsoft Help
  388. 10.04.2018 19:35 <DIR> MicrosoftEdge
  389. 10.04.2018 14:03 <DIR> Mozilla
  390. 17.04.2018 10:16 126˙464 noah.dat
  391. 31.05.2018 18:48 <DIR> NVIDIA
  392. 21.05.2018 15:09 <DIR> NVIDIA Corporation
  393. 16.07.2018 19:53 <DIR> Packages
  394. 29.06.2018 22:02 <DIR> PlaceholderTileLogoFolder
  395. 10.04.2018 15:20 <DIR> Programs
  396. 10.04.2018 15:00 <DIR> Publishers
  397. 20.06.2018 14:48 <DIR> Razer
  398. 17.06.2018 08:18 <DIR> Razer_Inc
  399. 07.05.2018 19:26 <DIR> Rockstar Games
  400. 17.04.2018 10:18 929˙792 sham.db
  401. 15.06.2018 22:24 <DIR> Spoon
  402. 16.07.2018 11:01 <DIR> Sports Interactive
  403. 10.04.2018 15:14 <DIR> Steam
  404. 18.07.2018 21:45 <DIR> Temp
  405. 05.06.2018 16:27 <JUNCTION> Temporary Internet Files [C:\Users\norbi\AppData\Local\Microsoft\Windows\INetCache]
  406. 10.04.2018 19:34 <DIR> TileDataLayer
  407. 17.04.2018 10:16 32˙038 uninstall_temp.ico
  408. 12.07.2018 20:13 <DIR> UnrealEngine
  409. 18.04.2018 10:45 <DIR> UnrealEngineLauncher
  410. 10.04.2018 13:54 <DIR> VirtualStore
  411. 17.04.2018 10:16 1˙895˙384 Warmtech.bin
  412. 13 File(s) 15˙140˙628 bytes
  413. 46 Dir(s) 690˙928˙214˙016 bytes free
  414.  
  415. ========= Koniec CMD: =========
  416.  
  417.  
  418. =========== EmptyTemp: ==========
  419.  
  420. BITS transfer queue => 8675328 B
  421. DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10807030 B
  422. Java, Flash, Steam htmlcache => 0 B
  423. Windows/system/drivers => 185308 B
  424. Edge => 3584 B
  425. Chrome => 377582406 B
  426. Firefox => 1169091 B
  427. Opera => 0 B
  428.  
  429. Temp, IE cache, history, cookies, recent:
  430. Default => 0 B
  431. Users => 0 B
  432. ProgramData => 0 B
  433. Public => 0 B
  434. systemprofile => 0 B
  435. systemprofile32 => 0 B
  436. LocalService => 1814 B
  437. LocalService => 0 B
  438. NetworkService => 0 B
  439. NetworkService => 0 B
  440. norbi => 16068537 B
  441. Administrator => 71051258 B
  442.  
  443. RecycleBin => 584766 B
  444. EmptyTemp: => 463.6 MB danych tymczasowych Usunięto.
  445.  
  446. ================================
  447.  
  448.  
  449. System wymagał restartu.
  450.  
  451. ==== Koniec Fixlog 21:46:28 ====
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!