Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 28.02.2018 Uruchomiony przez JS (03-03-2018 11:02:42) Run:1 Uruchomiony z C:\Users\JS\Desktop Załadowane profile: JS (Dostępne profile: JS) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** CreateRestorePoint: CHR HomePage: Default -> hxxp://search.conduit.com/?gd=&ctid=CT3322197&octid=EB_ORIGINAL_CTID&ISID=M30FF40F8-E7D3-4112-9BE0-1B8F77F5BE97&SearchSource=55&CUI=&UM=5&UP=SP59263023-9642-4A9C-BCF3-F9AB69429B26&SSPV= CHR StartupUrls: Default -> "hxxp://search.conduit.com/?gd=&ctid=CT3322197&octid=EB_ORIGINAL_CTID&ISID=M30FF40F8-E7D3-4112-9BE0-1B8F77F5BE97&SearchSource=55&CUI=&UM=5&UP=SP59263023-9642-4A9C-BCF3-F9AB69429B26&SSPV=","hxxp://google.pl/","hxxp://www.gazeta.pl/0,0.html?p=153","hxxp://www.search.ask.com/?o=APN10640A&gct=hp&d=473-102&v=n10781-219&t=4","hxxp://www.search.ask.com/?o=APN10640A&gct=hp&d=473-102&v=a11465-219&t=4","hxxp://start.qone8.com/?type=hp&ts=1399718615&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX","hxxp://start.qone8.com/?type=hppp&ts=1399728565&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX","hxxp://start.qone8.com/?type=hppp&ts=1399880531&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX","hxxp://start.qone8.com/?type=hppp&ts=1399967491&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX","hxxp://start.qone8.com/?type=hppp&ts=1400218644&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX","hxxp://start.qone8.com/?type=hppp&ts=1400422826&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX","hxxp://start.qone8.com/?type=hppp&ts=1400507051&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX","hxxp://start.qone8.com/?type=hppp&ts=1400612919&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX","hxxp://start.qone8.com/?type=hppp&ts=1402492225&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX","hxxp://start.qone8.com/?type=hppp&ts=1402492521&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX","hxxp://start.qone8.com/?type=hppp&ts=1402495295&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX","hxxp://start.qone8.com/?type=hppp&ts=1402497236&from=cvs1&uid=HGSTXHTS545050A7E380_130717TM8514TF1T285PX" ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Brak pliku Task: {20B06E83-55E6-43F0-B4B4-2C830D0E7CA1} - System32\Tasks\DriverToolkit Autorun => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.com.lnk -> C:\Program Files (x86)\HP\Shared\WizLink.exe () -> hxxp://secure.rezserver.com/sdk/v1/LinkFwd?refid=7684&destination=booking&refclickid=square Reboot: EmptyTemp: ***************** Punkt przywracania został pomyślnie utworzony. "Chrome HomePage" => pomyślnie usunięto "Chrome StartupUrls" => pomyślnie usunięto "HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui" => pomyślnie usunięto HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => klucz nie znaleziono HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{20B06E83-55E6-43F0-B4B4-2C830D0E7CA1} => niepowodzenie przy usuwaniu klucz. ErrorCode1: 0x00000002 HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{20B06E83-55E6-43F0-B4B4-2C830D0E7CA1} => niepowodzenie przy usuwaniu klucz. ErrorCode1: 0x00000002 C:\WINDOWS\System32\Tasks\DriverToolkit Autorun => pomyślnie przeniesiono HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DriverToolkit Autorun => niepowodzenie przy usuwaniu klucz. ErrorCode1: 0x00000002 C:\WINDOWS\Tasks\DriverToolkit Autorun.job => pomyślnie przeniesiono C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.com.lnk => Skrót - argument pomyślnie usunięto =========== EmptyTemp: ========== BITS transfer queue => 7888896 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 63472361 B Java, Flash, Steam htmlcache => 735 B Windows/system/drivers => 432287584 B Edge => 808889 B Chrome => 792737426 B Firefox => 0 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 36360 B NetworkService => 219438 B JS => 83128193 B RecycleBin => 149791089 B EmptyTemp: => 1.4 GB danych tymczasowych Usunięto. ================================ Rezultat przenoszenia plików przy restarcie (Tryb startu: Normal) (Data i godzina: 03-03-2018 12:28:01) Rezultat usuwania kluczy przy restarcie: "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{20B06E83-55E6-43F0-B4B4-2C830D0E7CA1}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{20B06E83-55E6-43F0-B4B4-2C830D0E7CA1}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DriverToolkit Autorun" => pomyślnie usunięto ==== Koniec Fixlog 12:28:01 ====