Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja: 12.05.2018 Uruchomiony przez Kamil (13-05-2018 19:16:38) Run:1 Uruchomiony z E:\Pobrane Załadowane profile: Kamil (Dostępne profile: Kamil) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** VirusTotal: C:\Users\Kamil\pmtl621.dll VirusTotal: C:\Users\Kamil\AppData\Roaming\b9710691.dat Task: {219CB67E-0A7C-4EE9-BDB5-7286C74DF96A} - System32\Tasks\{967CEA6E-2486-49F5-A2C7-FB6B857EEC10} => C:\Windows\system32\pcalua.exe -a C:\Users\Kamil\AppData\Local\Temp\IXP000.TMP\vcredist_x64.exe -d C:\Users\Kamil\AppData\Local\Temp\IXP000.TMP -c /q <==== UWAGA Task: {4C805300-164A-4403-977D-C80B78C630F7} - System32\Tasks\{34368044-3CB6-4A43-8544-B176A963F6B9} => C:\Windows\system32\pcalua.exe -a I:\setup.exe -d I:\ Task: {8A230332-3921-4F8C-B16B-8B34C320959E} - System32\Tasks\{520211F0-B6FF-4930-B967-59857B729AFA} => C:\Windows\system32\pcalua.exe -a C:\Users\Kamil\Desktop\b\UTILITY\setup.exe -d C:\Users\Kamil\Desktop\b\UTILITY Task: {A56985DA-C10D-4569-BD84-D019A5E706E5} - System32\Tasks\{BA1A4B4B-AB15-487D-AD21-2ED514D3B717} => C:\Windows\system32\pcalua.exe -a C:\Users\Kamil\Desktop\ElecDiff\setup.exe -d C:\Users\Kamil\Desktop\ElecDiff DeleteKey: HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Akamai NetSession Interface C:\Users\Kamil\AppData\Local\Akamai\netsession_win.exe HKU\S-1-5-21-3874831274-686315581-2042697884-1000\...\Policies\Explorer: [] FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore => nie znaleziono FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [Brak pliku] S3 CZCanSrv; C:\Program Files (x86)\Common Files\Carl Zeiss\CZCanSrv.exe [X] S2 MTBService_2.1.0.8; "C:\Program Files\Carl Zeiss\MTB 2011 - 2.1.0.8\MTB Server Console\MTBService.exe" [X] S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0; \??\c:\program files\dell support center\pcdsrvc_x64.pkms [X] S3 X6va062; \??\C:\Windows\SysWOW64\Drivers\X6va062 [X] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk C:\ProgramData\Dell\Dell Stage\deleted_shortcuts\Dell Stage.lnk C:\ProgramData\Dell\Dell Stage\deleted_shortcuts\Zinio Reader 4.lnk EmptyTemp: ***************** VirusTotal: C:\Users\Kamil\pmtl621.dll => https://www.virustotal.com/file/7703ac1d0930de8aa40b53498d2cbb248116d4a721870ba4a72568b068b7bc42/analysis/1526231792/ VirusTotal: C:\Users\Kamil\AppData\Roaming\b9710691.dat => https://www.virustotal.com/file/b87565faf360f6bd1cfad45d5c85174584573b4bb19ed5b87ef54d0ec161f66d/analysis/1526231794/ "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{219CB67E-0A7C-4EE9-BDB5-7286C74DF96A}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{219CB67E-0A7C-4EE9-BDB5-7286C74DF96A}" => pomyślnie usunięto C:\Windows\System32\Tasks\{967CEA6E-2486-49F5-A2C7-FB6B857EEC10} => pomyślnie przeniesiono "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{967CEA6E-2486-49F5-A2C7-FB6B857EEC10}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4C805300-164A-4403-977D-C80B78C630F7}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4C805300-164A-4403-977D-C80B78C630F7}" => pomyślnie usunięto C:\Windows\System32\Tasks\{34368044-3CB6-4A43-8544-B176A963F6B9} => pomyślnie przeniesiono "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{34368044-3CB6-4A43-8544-B176A963F6B9}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8A230332-3921-4F8C-B16B-8B34C320959E}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8A230332-3921-4F8C-B16B-8B34C320959E}" => pomyślnie usunięto C:\Windows\System32\Tasks\{520211F0-B6FF-4930-B967-59857B729AFA} => pomyślnie przeniesiono "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{520211F0-B6FF-4930-B967-59857B729AFA}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A56985DA-C10D-4569-BD84-D019A5E706E5}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A56985DA-C10D-4569-BD84-D019A5E706E5}" => pomyślnie usunięto C:\Windows\System32\Tasks\{BA1A4B4B-AB15-487D-AD21-2ED514D3B717} => pomyślnie przeniesiono "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BA1A4B4B-AB15-487D-AD21-2ED514D3B717}" => pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Akamai NetSession Interface" => pomyślnie usunięto "C:\Users\Kamil\AppData\Local\Akamai\netsession_win.exe" => nie znaleziono "HKU\S-1-5-21-3874831274-686315581-2042697884-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => pomyślnie usunięto "HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}" => pomyślnie usunięto "HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10" => pomyślnie usunięto "HKLM\System\CurrentControlSet\Services\CZCanSrv" => pomyślnie usunięto CZCanSrv => serwis pomyślnie usunięto "HKLM\System\CurrentControlSet\Services\MTBService_2.1.0.8" => pomyślnie usunięto MTBService_2.1.0.8 => serwis pomyślnie usunięto "HKLM\System\CurrentControlSet\Services\PCDSRVC{1E208CE0-FB7451FF-06020101}_0" => pomyślnie usunięto PCDSRVC{1E208CE0-FB7451FF-06020101}_0 => serwis pomyślnie usunięto "HKLM\System\CurrentControlSet\Services\X6va062" => pomyślnie usunięto X6va062 => serwis pomyślnie usunięto C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk => pomyślnie przeniesiono C:\ProgramData\Dell\Dell Stage\deleted_shortcuts\Dell Stage.lnk => pomyślnie przeniesiono C:\ProgramData\Dell\Dell Stage\deleted_shortcuts\Zinio Reader 4.lnk => pomyślnie przeniesiono =========== EmptyTemp: ========== BITS transfer queue => 8388608 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 34102003 B Java, Flash, Steam htmlcache => 377066492 B Windows/system/drivers => 32532451 B Edge => 0 B Chrome => 496225501 B Firefox => 260733539 B Opera => 0 B Temp, IE cache, history, cookies, recent: Users => 0 B Default => 0 B Public => 0 B ProgramData => 0 B systemprofile => 128 B systemprofile32 => 560 B LocalService => 0 B NetworkService => 10012 B Kamil => 45680162 B RecycleBin => 289310 B EmptyTemp: => 1.2 GB danych tymczasowych Usunięto. ================================ System wymagał restartu. ==== Koniec Fixlog 19:17:57 ====