daily pastebin goal
5%
SHARE
TWEET

Untitled

a guest Jul 18th, 2018 92 Never
Upgrade to PRO!
ENDING IN00days00hours00mins00secs
 
  1. Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 15.07.2018
  2. Uruchomiony przez norbi (18-07-2018 21:44:26) Run:4
  3. Uruchomiony z C:\Users\norbi\Desktop
  4. Załadowane profile: norbi (Dostępne profile: norbi & Administrator)
  5. Tryb startu: Normal
  6. ==============================================
  7.  
  8. fixlist - zawartość:
  9. *****************
  10. CloseProcesses:
  11. CreateRestorePoint:
  12. EmptyTemp:
  13. VirusTotal: C:\Program Files (x86)\LKvaHIuaGFsrl.exe
  14. VirusTotal: C:\Program Files (x86)\mpOE.exe
  15. VirusTotal: C:\Users\norbi\AppData\Roaming\cexplorer.exe
  16. VirusTotal: C:\Users\norbi\AppData\Local\Kaykix.exe
  17. HKU\S-1-5-21-1127345323-2592640102-239408248-1001\...\MountPoints2: {31f92ed6-6e49-11e8-a5ea-9822ef706bbe} - "D:\SISetup.exe"
  18. GroupPolicy: Ograniczenia - Chrome <==== UWAGA
  19. Tcpip\..\Interfaces\{2fa46e70-352c-4210-b3e6-52dd18a8fd10}: [NameServer] 62.179.1.62,62.179.1.63
  20. Tcpip\..\Interfaces\{7e0fc2c7-a2fb-4ec8-873f-697f8f5763c7}: [DhcpNameServer] 192.168.0.1 192.168.0.2
  21. SearchScopes: HKU\S-1-5-21-1127345323-2592640102-239408248-1001 -> DefaultScope {93723AF5-3686-4284-8D3D-F0062176FB1E} URL =
  22. FF NewTab: Mozilla\Firefox\Profiles\cuq6ogzb.default -> C:\\ProgramData\\Quoteexs\\ff.NT
  23. CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
  24. CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
  25. S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [X]
  26. 2018-07-16 19:38 - 2018-07-16 19:38 - 000000008 __RSH C:\Users\norbi\ntuser.pol
  27. 2018-07-16 19:37 - 2018-07-16 19:37 - 000000008 __RSH C:\Users\Administrator\ntuser.pol
  28. 2018-07-16 19:31 - 2018-07-16 19:31 - 000000008 __RSH C:\ProgramData\ntuser.pol
  29. 2018-04-12 01:34 - 2018-04-12 01:34 - 000059904 ____N (Microsoft Corporation) C:\Program Files (x86)\LKvaHIuaGFsrl.exe
  30. 2018-04-12 01:34 - 2018-04-12 01:34 - 000178688 ____N (Microsoft Corporation) C:\Program Files (x86)\mpOE.exe
  31. 2018-03-26 14:57 - 2018-03-26 14:00 - 006860752 _____ (NeoSoft Tools                                               ) C:\Users\norbi\AppData\Roaming\cexplorer.exe
  32. 2018-04-17 10:16 - 2018-04-17 10:16 - 001814528 _____ (TODO: <Company name>) C:\Users\norbi\AppData\Local\Kaykix.exe
  33. ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Brak pliku
  34. ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Brak pliku
  35. ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Brak pliku
  36. ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Brak pliku
  37. ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Brak pliku
  38. ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Brak pliku
  39. ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
  40. ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> Brak pliku
  41. ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> Brak pliku
  42. ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> Brak pliku
  43. ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> Brak pliku
  44. ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> Brak pliku
  45. ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> Brak pliku
  46. ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> Brak pliku
  47. ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Brak pliku
  48. Task: {0427CE24-7173-4F22-B9C8-594852EE0F46} - System32\Tasks\{B65EBFA6-2BB3-6D01-9B2F-26994F19324F} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://kotcatk.com/cl/?guid=4qwzsm6x0iwfo3nuixgzm3kw6mx0m52g&prid=1&pid=4_1324_0
  49. Task: {241F8DAA-98C5-40D4-B9A5-5B630021E37E} - System32\Tasks\{550D103A-F658-75DB-46DF-D5DF4C97A13E} => C:\Program Files (x86)\LKvaHIuaGFsrl.exe [2018-04-12] (Microsoft Corporation) <==== UWAGA
  50. Task: {D635FC26-D720-42D9-9244-407A72818605} - \Optimize Thumbnail Cache Files -> Brak pliku <==== UWAGA
  51. Task: {F970549A-A7E8-41A3-A3B8-DE2FB3776D2F} - \InstallShield® Update Service Scheduler -> Brak pliku <==== UWAGA
  52. AlternateDataStreams: C:\Users\Public\AppData:CSM [442]
  53. AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [482]
  54. FirewallRules: [{4850792C-E096-42E6-847D-8A6962FB72D0}] => (Allow) C:\WINDOWS\SouAUHbxIaS.exe
  55. FirewallRules: [{F00891FE-2B58-4F94-A882-F4530F492FA4}] => (Allow) C:\Program Files (x86)\LKvaHIuaGFsrl.exe
  56. FirewallRules: [{8EF0E004-0459-4E62-BEE7-2379127E0A56}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  57. FirewallRules: [{353B1DDE-6AA1-4C5F-BA03-5CC2DB219E1A}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  58. FirewallRules: [{1D9A8F74-199F-46C3-B975-E9BE37E6550D}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  59. FirewallRules: [{80A5F7E4-0479-420A-8B35-87D6B3D69839}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  60. FirewallRules: [{9C6D43F2-E42C-4F38-8043-DE597BEAD688}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  61. FirewallRules: [{5E55B06E-3322-4EE6-9A73-82EF7BCD18E5}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  62. FirewallRules: [{63B7883C-4AC3-4C7F-8F87-AB74EF38A76A}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  63. FirewallRules: [{D46E3C0B-42D8-4EA4-8410-8EF0C089603A}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  64. FirewallRules: [{EB61FBEC-9773-4AD7-9B10-102D883EDDD9}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  65. FirewallRules: [{3246921C-EF87-422C-A72E-05737DDB156E}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  66. FirewallRules: [{FFB58663-2FF6-4FEE-91AD-EF6B9A874EB5}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  67. FirewallRules: [{B3D6ADD2-DBCE-4569-AA7B-91C3666790CB}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  68. FirewallRules: [{CC7538E7-4B1C-48E1-AA15-383E1B78F0A5}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  69. FirewallRules: [{CC99CE33-0C0A-48E9-B553-3B03088011D9}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  70. FirewallRules: [{ED4172DD-69C4-4807-9103-1C5E2ECADCF7}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  71. FirewallRules: [{F06DC41B-2591-4F1E-AA83-189319F8F864}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  72. FirewallRules: [{0629BE34-0D43-4811-A4C3-9DB240C00FAC}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  73. FirewallRules: [{B6ACCBD2-EBFF-4949-B143-72624E6FECC2}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  74. FirewallRules: [{FB61D9AD-161C-467D-8158-D97A3E26C586}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  75. FirewallRules: [{6D39C980-91AC-437E-BB67-41A9E6FFA0BA}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  76. FirewallRules: [{600875FF-454C-4655-8275-399D56C03509}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  77. FirewallRules: [{0B6400E7-63D3-4971-A437-C7B13B1FEC59}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  78. FirewallRules: [{AB749D88-724B-4D47-B5A9-AFDC6EEB2204}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  79. FirewallRules: [{69537C68-5BF8-4D93-BE71-DDA0187C57DA}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  80. FirewallRules: [{C63A934A-7F24-471A-807D-952122A21DC8}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  81. FirewallRules: [{1D6F702E-8AFE-40E5-BDCB-B907EFE98325}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  82. FirewallRules: [{E07C8AC0-0CC8-4C92-BC30-D9A914BF7FB9}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  83. FirewallRules: [{EBDB3934-1E2D-4963-A787-9E723265D09C}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe
  84. FilesInDirectory: C:\Users\norbi\AppData\Local\*.exe;*.dll;*.ini
  85. FilesInDirectory: C:\Users\norbi\AppData\Roaming\*.exe;*.dll;*.ini
  86. CMD: dir /a "C:\Program Files"
  87. CMD: dir /a "C:\Program Files (x86)"
  88. CMD: dir /a "C:\Users\norbi\AppData"
  89. CMD: dir /a "C:\Users\norbi\AppData\Local"
  90.  
  91. *****************
  92.  
  93. Procesy zostały pomyślnie zamknięte.
  94. Punkt przywracania został pomyślnie utworzony.
  95. VirusTotal: C:\Program Files (x86)\LKvaHIuaGFsrl.exe => https://www.virustotal.com/file/b656b13e12b9caa5c0e041d6528aae515c310edb77a1267b73d901a7ba3a86fd/analysis/1531883740/
  96. VirusTotal: C:\Program Files (x86)\mpOE.exe => https://www.virustotal.com/file/ffabee87d6e0159ab95b73a367499dbe9689f887fe23b5919ef86095f3b930aa/analysis/1531920286/
  97. VirusTotal: C:\Users\norbi\AppData\Roaming\cexplorer.exe => https://www.virustotal.com/file/e71c48c03b8cfd37bf17e62460733a4bfe9c484e947fd9db291f65405a2ba9e8/analysis/1529983649/
  98. VirusTotal: C:\Users\norbi\AppData\Local\Kaykix.exe => https://www.virustotal.com/file/446eb9b430e01a149408b602a64ea857b185daf4b3e762d626c0bcec27fbc3ae/analysis/1524702822/
  99. "HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{31f92ed6-6e49-11e8-a5ea-9822ef706bbe}" => pomyślnie usunięto
  100. HKLM\Software\Classes\CLSID\{31f92ed6-6e49-11e8-a5ea-9822ef706bbe} => nie znaleziono
  101. C:\WINDOWS\system32\GroupPolicy\Machine => pomyślnie przeniesiono
  102. "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{2fa46e70-352c-4210-b3e6-52dd18a8fd10}\\NameServer" => pomyślnie usunięto
  103. "HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7e0fc2c7-a2fb-4ec8-873f-697f8f5763c7}\\DhcpNameServer" => pomyślnie usunięto
  104. "HKU\S-1-5-21-1127345323-2592640102-239408248-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => pomyślnie usunięto
  105. "Firefox newtab" => pomyślnie usunięto
  106. "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck" => pomyślnie usunięto
  107. "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => pomyślnie usunięto
  108. "HKLM\System\CurrentControlSet\Services\WinRing0_1_2_0" => pomyślnie usunięto
  109. WinRing0_1_2_0 => serwis pomyślnie usunięto
  110. C:\Users\norbi\ntuser.pol => pomyślnie przeniesiono
  111. C:\Users\Administrator\ntuser.pol => pomyślnie przeniesiono
  112. C:\ProgramData\ntuser.pol => pomyślnie przeniesiono
  113. C:\Program Files (x86)\LKvaHIuaGFsrl.exe => pomyślnie przeniesiono
  114. C:\Program Files (x86)\mpOE.exe => pomyślnie przeniesiono
  115. C:\Users\norbi\AppData\Roaming\cexplorer.exe => pomyślnie przeniesiono
  116. C:\Users\norbi\AppData\Local\Kaykix.exe => pomyślnie przeniesiono
  117. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1" => pomyślnie usunięto
  118. HKLM\Software\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => nie znaleziono
  119. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2" => pomyślnie usunięto
  120. HKLM\Software\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => nie znaleziono
  121. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3" => pomyślnie usunięto
  122. HKLM\Software\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => nie znaleziono
  123. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4" => pomyślnie usunięto
  124. HKLM\Software\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => nie znaleziono
  125. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => pomyślnie usunięto
  126. HKLM\Software\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => nie znaleziono
  127. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6" => pomyślnie usunięto
  128. HKLM\Software\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => nie znaleziono
  129. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7" => pomyślnie usunięto
  130. HKLM\Software\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => nie znaleziono
  131. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1" => pomyślnie usunięto
  132. HKLM\Software\Wow6432Node\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => nie znaleziono
  133. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2" => pomyślnie usunięto
  134. HKLM\Software\Wow6432Node\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => nie znaleziono
  135. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3" => pomyślnie usunięto
  136. HKLM\Software\Wow6432Node\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => nie znaleziono
  137. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4" => pomyślnie usunięto
  138. HKLM\Software\Wow6432Node\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => nie znaleziono
  139. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => pomyślnie usunięto
  140. HKLM\Software\Wow6432Node\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => nie znaleziono
  141. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6" => pomyślnie usunięto
  142. HKLM\Software\Wow6432Node\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => nie znaleziono
  143. "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7" => pomyślnie usunięto
  144. HKLM\Software\Wow6432Node\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => nie znaleziono
  145. "HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => pomyślnie usunięto
  146. HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => nie znaleziono
  147. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0427CE24-7173-4F22-B9C8-594852EE0F46}" => pomyślnie usunięto
  148. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0427CE24-7173-4F22-B9C8-594852EE0F46}" => pomyślnie usunięto
  149. C:\WINDOWS\System32\Tasks\{B65EBFA6-2BB3-6D01-9B2F-26994F19324F} => pomyślnie przeniesiono
  150. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B65EBFA6-2BB3-6D01-9B2F-26994F19324F}" => pomyślnie usunięto
  151. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{241F8DAA-98C5-40D4-B9A5-5B630021E37E}" => pomyślnie usunięto
  152. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{241F8DAA-98C5-40D4-B9A5-5B630021E37E}" => pomyślnie usunięto
  153. C:\WINDOWS\System32\Tasks\{550D103A-F658-75DB-46DF-D5DF4C97A13E} => pomyślnie przeniesiono
  154. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{550D103A-F658-75DB-46DF-D5DF4C97A13E}" => pomyślnie usunięto
  155. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D635FC26-D720-42D9-9244-407A72818605}" => pomyślnie usunięto
  156. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D635FC26-D720-42D9-9244-407A72818605}" => pomyślnie usunięto
  157. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Optimize Thumbnail Cache Files => nie znaleziono
  158. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F970549A-A7E8-41A3-A3B8-DE2FB3776D2F}" => pomyślnie usunięto
  159. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F970549A-A7E8-41A3-A3B8-DE2FB3776D2F}" => pomyślnie usunięto
  160. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\InstallShield® Update Service Scheduler => nie znaleziono
  161. C:\Users\Public\AppData => ":CSM" ADS pomyślnie usunięto
  162. C:\Users\Public\Shared Files => ":VersionCache" ADS pomyślnie usunięto
  163. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4850792C-E096-42E6-847D-8A6962FB72D0}" => pomyślnie usunięto
  164. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F00891FE-2B58-4F94-A882-F4530F492FA4}" => pomyślnie usunięto
  165. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8EF0E004-0459-4E62-BEE7-2379127E0A56}" => pomyślnie usunięto
  166. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{353B1DDE-6AA1-4C5F-BA03-5CC2DB219E1A}" => pomyślnie usunięto
  167. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1D9A8F74-199F-46C3-B975-E9BE37E6550D}" => pomyślnie usunięto
  168. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{80A5F7E4-0479-420A-8B35-87D6B3D69839}" => pomyślnie usunięto
  169. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9C6D43F2-E42C-4F38-8043-DE597BEAD688}" => pomyślnie usunięto
  170. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5E55B06E-3322-4EE6-9A73-82EF7BCD18E5}" => pomyślnie usunięto
  171. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{63B7883C-4AC3-4C7F-8F87-AB74EF38A76A}" => pomyślnie usunięto
  172. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D46E3C0B-42D8-4EA4-8410-8EF0C089603A}" => pomyślnie usunięto
  173. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EB61FBEC-9773-4AD7-9B10-102D883EDDD9}" => pomyślnie usunięto
  174. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3246921C-EF87-422C-A72E-05737DDB156E}" => pomyślnie usunięto
  175. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FFB58663-2FF6-4FEE-91AD-EF6B9A874EB5}" => pomyślnie usunięto
  176. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B3D6ADD2-DBCE-4569-AA7B-91C3666790CB}" => pomyślnie usunięto
  177. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CC7538E7-4B1C-48E1-AA15-383E1B78F0A5}" => pomyślnie usunięto
  178. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CC99CE33-0C0A-48E9-B553-3B03088011D9}" => pomyślnie usunięto
  179. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ED4172DD-69C4-4807-9103-1C5E2ECADCF7}" => pomyślnie usunięto
  180. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F06DC41B-2591-4F1E-AA83-189319F8F864}" => pomyślnie usunięto
  181. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0629BE34-0D43-4811-A4C3-9DB240C00FAC}" => pomyślnie usunięto
  182. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B6ACCBD2-EBFF-4949-B143-72624E6FECC2}" => pomyślnie usunięto
  183. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FB61D9AD-161C-467D-8158-D97A3E26C586}" => pomyślnie usunięto
  184. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6D39C980-91AC-437E-BB67-41A9E6FFA0BA}" => pomyślnie usunięto
  185. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{600875FF-454C-4655-8275-399D56C03509}" => pomyślnie usunięto
  186. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0B6400E7-63D3-4971-A437-C7B13B1FEC59}" => pomyślnie usunięto
  187. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AB749D88-724B-4D47-B5A9-AFDC6EEB2204}" => pomyślnie usunięto
  188. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{69537C68-5BF8-4D93-BE71-DDA0187C57DA}" => pomyślnie usunięto
  189. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C63A934A-7F24-471A-807D-952122A21DC8}" => pomyślnie usunięto
  190. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1D6F702E-8AFE-40E5-BDCB-B907EFE98325}" => pomyślnie usunięto
  191. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E07C8AC0-0CC8-4C92-BC30-D9A914BF7FB9}" => pomyślnie usunięto
  192. "HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EBDB3934-1E2D-4963-A787-9E723265D09C}" => pomyślnie usunięto
  193.  
  194. ========================= FilesInDirectory: C:\Users\norbi\AppData\Local\*.exe;*.dll;*.ini ========================
  195.  
  196. 2018-04-17 10:16 - 2018-04-17 10:16 - 001814528 ____A [98BCD4FDE4F9B894051AA374DB3553A9] (TODO: <Company name>) C:\Users\norbi\AppData\Local\Alphazap.exe
  197. 2018-07-16 09:19 - 2018-07-16 09:19 - 000000002 ____A [23B58DEF11B45727D3351702515F86AF] () C:\Users\norbi\AppData\Local\imw.ini
  198.  
  199. ====== Koniec  Filesindirectory ======
  200.  
  201. ========================= FilesInDirectory: C:\Users\norbi\AppData\Roaming\*.exe;*.dll;*.ini ========================
  202.  
  203.  
  204. ====== Koniec  Filesindirectory ======
  205.  
  206. ========= dir /a "C:\Program Files" =========
  207.  
  208.  Volume in drive C is Acer
  209.  Volume Serial Number is 9E2E-6809
  210.  
  211.  Directory of C:\Program Files
  212.  
  213. 15.07.2018  15:58    <DIR>          .
  214. 15.07.2018  15:58    <DIR>          ..
  215. 18.04.2018  12:30    <DIR>          Acer
  216. 17.04.2018  10:57    <DIR>          AVAST Software
  217. 18.04.2018  13:09    <DIR>          CCleaner
  218. 05.06.2018  17:18    <DIR>          Common Files
  219. 12.04.2018  01:36               174 desktop.ini
  220. 05.06.2018  16:24    <DIR>          Dolby
  221. 18.04.2018  10:47    <DIR>          Epic Games
  222. 17.04.2018  10:24    <DIR>          FZ5UV6ATOW
  223. 15.07.2018  13:39    <DIR>          Grand Theft Auto V
  224. 15.06.2018  08:40    <DIR>          HP
  225. 05.06.2018  17:18    <DIR>          Intel
  226. 12.04.2018  17:52    <DIR>          internet explorer
  227. 15.06.2018  22:40    <DIR>          iVMS-4200 Station
  228. 16.07.2018  19:42    <DIR>          KMSpico
  229. 17.04.2018  13:35    <DIR>          Microsoft Analysis Services
  230. 17.04.2018  13:37    <DIR>          Microsoft Office
  231. 17.04.2018  13:37    <DIR>          Microsoft SQL Server
  232. 05.06.2018  17:18    <DIR>          Microsoft.NET
  233. 05.06.2018  16:55    <DIR>          MSBuild
  234. 17.04.2018  10:18    <DIR>          My Program
  235. 10.04.2018  14:22    <DIR>          Norton Security
  236. 05.06.2018  16:25    <DIR>          NVIDIA Corporation
  237. 05.06.2018  17:13    <DIR>          Realtek
  238. 15.07.2018  20:12    <DIR>          Recuva
  239. 05.06.2018  16:55    <DIR>          Reference Assemblies
  240. 10.04.2018  13:49    <DIR>          rempl
  241. 07.05.2018  19:52    <DIR>          Rockstar Games
  242. 12.05.2018  15:21    <DIR>          The Sims 4
  243. 23.11.2017  11:45    <DIR>          Uninstall Information
  244. 19.06.2018  14:02    <DIR>          VideoLAN
  245. 05.06.2018  16:45    <DIR>          Windows Defender
  246. 05.06.2018  17:18    <DIR>          Windows Mail
  247. 05.06.2018  17:01    <DIR>          Windows Media Player
  248. 12.04.2018  01:38    <DIR>          Windows Multimedia Platform
  249. 05.06.2018  16:46    <DIR>          windows nt
  250. 15.06.2018  17:17    <DIR>          Windows Photo Viewer
  251. 12.04.2018  01:38    <DIR>          Windows Portable Devices
  252. 12.04.2018  01:38    <DIR>          Windows Security
  253. 12.04.2018  01:38    <DIR>          Windows Sidebar
  254. 18.07.2018  19:39    <DIR>          WindowsApps
  255. 12.04.2018  01:38    <DIR>          WindowsPowerShell
  256. 17.04.2018  09:58    <DIR>          WinRAR
  257.                1 File(s)            174 bytes
  258.               43 Dir(s)  690˙928˙218˙112 bytes free
  259.  
  260. ========= Koniec  CMD: =========
  261.  
  262.  
  263. ========= dir /a "C:\Program Files (x86)" =========
  264.  
  265.  Volume in drive C is Acer
  266.  Volume Serial Number is 9E2E-6809
  267.  
  268.  Directory of C:\Program Files (x86)
  269.  
  270. 18.07.2018  21:45    <DIR>          .
  271. 18.07.2018  21:45    <DIR>          ..
  272. 18.04.2018  12:31    <DIR>          Acer
  273. 15.04.2018  19:18    <DIR>          AMX Mod X
  274. 19.04.2018  12:17    <DIR>          Anvsoft
  275. 23.11.2017  12:09    <DIR>          Bluetooth Suite
  276. 11.04.2018  14:25    <DIR>          City Car Driving
  277. 15.07.2018  16:44    <DIR>          CleverFiles
  278. 20.06.2018  14:48    <DIR>          Common Files
  279. 12.04.2018  01:36               174 desktop.ini
  280. 18.04.2018  21:54    <DIR>          EasyAntiCheat
  281. 18.04.2018  10:45    <DIR>          Epic Games
  282. 17.04.2018  10:19    <DIR>          foldershare
  283. 18.07.2018  19:22    <DIR>          Google
  284. 17.04.2018  11:04    <DIR>          hash
  285. 15.06.2018  22:40    <DIR>          InstallShield Installation Information
  286. 23.11.2017  12:14    <DIR>          Intel
  287. 12.04.2018  17:52    <DIR>          Internet Explorer
  288. 31.05.2018  12:50    <DIR>          IObit
  289. 19.04.2018  12:20    <DIR>          K-Lite Codec Pack
  290. 17.04.2018  10:40    <DIR>          KMSPico 10.2.1 Final
  291. 17.04.2018  13:35    <DIR>          Microsoft Analysis Services
  292. 17.04.2018  13:35    <DIR>          Microsoft Office
  293. 17.04.2018  13:37    <DIR>          Microsoft SQL Server
  294. 05.06.2018  17:18    <DIR>          Microsoft.NET
  295. 18.07.2018  19:29    <DIR>          Mozilla Firefox
  296. 18.07.2018  19:29    <DIR>          Mozilla Maintenance Service
  297. 05.06.2018  16:55    <DIR>          MSBuild
  298. 23.11.2017  12:53    <DIR>          NortonInstaller
  299. 21.05.2018  15:02    <DIR>          NVIDIA Corporation
  300. 01.05.2018  10:20    <DIR>          PhotoScape
  301. 23.11.2017  12:28    <DIR>          Qualcomm
  302. 20.06.2018  14:48    <DIR>          Razer
  303. 23.11.2017  12:26    <DIR>          Realtek
  304. 05.06.2018  16:55    <DIR>          Reference Assemblies
  305. 07.05.2018  19:53    <DIR>          Rockstar Games
  306. 16.07.2018  10:58    <DIR>          Steam
  307. 10.04.2018  15:22    <DIR>          SteamServerBrowser
  308. 23.11.2017  12:54    <DIR>          SymSilent
  309. 23.11.2017  12:27    <DIR>          Temp
  310. 05.06.2018  16:23    <DIR>          VulkanRT
  311. 15.06.2018  22:41    <DIR>          Win10Pcap
  312. 05.06.2018  17:01    <DIR>          Windows Defender
  313. 05.06.2018  17:13    <DIR>          Windows Mail
  314. 05.06.2018  17:01    <DIR>          Windows Media Player
  315. 12.04.2018  01:38    <DIR>          Windows Multimedia Platform
  316. 12.04.2018  01:38    <DIR>          windows nt
  317. 15.06.2018  17:17    <DIR>          Windows Photo Viewer
  318. 12.04.2018  01:38    <DIR>          Windows Portable Devices
  319. 12.04.2018  01:38    <DIR>          Windows Sidebar
  320. 12.04.2018  01:38    <DIR>          WindowsPowerShell
  321.                1 File(s)            174 bytes
  322.               50 Dir(s)  690˙928˙218˙112 bytes free
  323.  
  324. ========= Koniec  CMD: =========
  325.  
  326.  
  327. ========= dir /a "C:\Users\norbi\AppData" =========
  328.  
  329.  Volume in drive C is Acer
  330.  Volume Serial Number is 9E2E-6809
  331.  
  332.  Directory of C:\Users\norbi\AppData
  333.  
  334. 05.06.2018  16:44    <DIR>          .
  335. 05.06.2018  16:44    <DIR>          ..
  336. 18.07.2018  21:45    <DIR>          Local
  337. 16.07.2018  09:33    <DIR>          LocalLow
  338. 15.07.2018  20:19                80 Local???????????????????
  339. 18.07.2018  21:45    <DIR>          Roaming
  340.                1 File(s)             80 bytes
  341.                5 Dir(s)  690˙928˙218˙112 bytes free
  342.  
  343. ========= Koniec  CMD: =========
  344.  
  345.  
  346. ========= dir /a "C:\Users\norbi\AppData\Local" =========
  347.  
  348.  Volume in drive C is Acer
  349.  Volume Serial Number is 9E2E-6809
  350.  
  351.  Directory of C:\Users\norbi\AppData\Local
  352.  
  353. 18.07.2018  21:45    <DIR>          .
  354. 18.07.2018  21:45    <DIR>          ..
  355. 29.05.2018  13:38    <DIR>          acer
  356. 17.04.2018  10:16         7˙602˙176 agent.dat
  357. 17.04.2018  10:16         1˙814˙528 Alphazap.exe
  358. 17.04.2018  10:16         1˙989˙393 Alphazap.tst
  359. 10.04.2018  13:54    <DIR>          AOP SDK
  360. 10.04.2018  14:10    <DIR>          Apps
  361. 16.07.2018  19:55    <DIR>          AVAST Software
  362. 10.04.2018  15:13    <DIR>          CEF
  363. 26.04.2018  15:37    <DIR>          Comms
  364. 17.04.2018  10:16            70˙896 Config.xml
  365. 10.04.2018  13:55    <DIR>          ConnectedDevicesPlatform
  366. 18.07.2018  19:11    <DIR>          CrashDumps
  367. 16.06.2018  20:21    <DIR>          CrashReportClient
  368. 15.07.2018  16:44    <DIR>          CrashRpt
  369. 05.07.2018  13:29    <DIR>          D3DSCache
  370. 05.06.2018  16:27    <JUNCTION>     Dane aplikacji [C:\Users\norbi\AppData\Local]
  371. 11.04.2018  14:25    <DIR>          DBG
  372. 18.07.2018  19:41    <DIR>          Deployment
  373. 15.06.2018  22:27    <DIR>          DeskShare Data
  374. 15.07.2018  09:48    <DIR>          Diagnostics
  375. 15.07.2018  18:25    <DIR>          DiskDrill
  376. 18.04.2018  10:45    <DIR>          EpicGamesLauncher
  377. 18.04.2018  11:05    <DIR>          FortniteGame
  378. 18.07.2018  19:23    <DIR>          Google
  379. 05.06.2018  16:27    <JUNCTION>     Historia [C:\Users\norbi\AppData\Local\Microsoft\Windows\History]
  380. 18.07.2018  20:48           255˙078 IconCache.db
  381. 10.04.2018  19:41    <DIR>          IIIQF
  382. 16.07.2018  09:19                 2 imw.ini
  383. 17.04.2018  10:16           140˙800 installer.dat
  384. 17.04.2018  10:16           278˙509 Kaykix.tst
  385. 17.04.2018  10:16             5˙568 md.xml
  386. 15.06.2018  08:08    <DIR>          Microsoft
  387. 17.04.2018  14:46    <DIR>          Microsoft Help
  388. 10.04.2018  19:35    <DIR>          MicrosoftEdge
  389. 10.04.2018  14:03    <DIR>          Mozilla
  390. 17.04.2018  10:16           126˙464 noah.dat
  391. 31.05.2018  18:48    <DIR>          NVIDIA
  392. 21.05.2018  15:09    <DIR>          NVIDIA Corporation
  393. 16.07.2018  19:53    <DIR>          Packages
  394. 29.06.2018  22:02    <DIR>          PlaceholderTileLogoFolder
  395. 10.04.2018  15:20    <DIR>          Programs
  396. 10.04.2018  15:00    <DIR>          Publishers
  397. 20.06.2018  14:48    <DIR>          Razer
  398. 17.06.2018  08:18    <DIR>          Razer_Inc
  399. 07.05.2018  19:26    <DIR>          Rockstar Games
  400. 17.04.2018  10:18           929˙792 sham.db
  401. 15.06.2018  22:24    <DIR>          Spoon
  402. 16.07.2018  11:01    <DIR>          Sports Interactive
  403. 10.04.2018  15:14    <DIR>          Steam
  404. 18.07.2018  21:45    <DIR>          Temp
  405. 05.06.2018  16:27    <JUNCTION>     Temporary Internet Files [C:\Users\norbi\AppData\Local\Microsoft\Windows\INetCache]
  406. 10.04.2018  19:34    <DIR>          TileDataLayer
  407. 17.04.2018  10:16            32˙038 uninstall_temp.ico
  408. 12.07.2018  20:13    <DIR>          UnrealEngine
  409. 18.04.2018  10:45    <DIR>          UnrealEngineLauncher
  410. 10.04.2018  13:54    <DIR>          VirtualStore
  411. 17.04.2018  10:16         1˙895˙384 Warmtech.bin
  412.               13 File(s)     15˙140˙628 bytes
  413.               46 Dir(s)  690˙928˙214˙016 bytes free
  414.  
  415. ========= Koniec  CMD: =========
  416.  
  417.  
  418. =========== EmptyTemp: ==========
  419.  
  420. BITS transfer queue => 8675328 B
  421. DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10807030 B
  422. Java, Flash, Steam htmlcache => 0 B
  423. Windows/system/drivers => 185308 B
  424. Edge => 3584 B
  425. Chrome => 377582406 B
  426. Firefox => 1169091 B
  427. Opera => 0 B
  428.  
  429. Temp, IE cache, history, cookies, recent:
  430. Default => 0 B
  431. Users => 0 B
  432. ProgramData => 0 B
  433. Public => 0 B
  434. systemprofile => 0 B
  435. systemprofile32 => 0 B
  436. LocalService => 1814 B
  437. LocalService => 0 B
  438. NetworkService => 0 B
  439. NetworkService => 0 B
  440. norbi => 16068537 B
  441. Administrator => 71051258 B
  442.  
  443. RecycleBin => 584766 B
  444. EmptyTemp: => 463.6 MB danych tymczasowych Usunięto.
  445.  
  446. ================================
  447.  
  448.  
  449. System wymagał restartu.
  450.  
  451. ==== Koniec  Fixlog 21:46:28 ====
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top