Additional scan result of Farbar Recovery Scan Tool (x86) Version: 23-02-2015 Ran by SysOp at 2015-02-23 22:19:35 Running from D:\pobrane Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1409082233-651377827-1177238915-1001\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.) Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.22.87 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Photoshop CS4 (HKLM\...\Adobe_b741c3c52d3108664cedeb2b76f6d96) (Version: 11.0 - Adobe Systems Incorporated) Adobe Reader X (10.1.11) - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AA1000000001}) (Version: 10.1.11 - Adobe Systems Incorporated) Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.2.122 - Adobe Systems, Inc.) ADSL Modem (HKLM\...\StmAdsl) (Version: - ) AiO_Scan_CDA (Version: 70.0.231.000 - Hewlett-Packard) Hidden AiOSoftwareNPI (Version: 70.0.231.000 - Hewlett-Packard) Hidden Aktualizacje NVIDIA 15.3.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 15.3.33 - NVIDIA Corporation) Archiwizator WinRAR (HKLM\...\WinRAR archiver) (Version: - ) Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software) BufferChm (Version: 70.0.170.000 - Hewlett-Packard) Hidden C3100 (Version: 70.0.231.000 - Hewlett-Packard) Hidden c3100_Help (Version: 70.0.231.000 - Hewlett-Packard) Hidden CameraHelperMsi (Version: 13.31.1038.0 - Logitech) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform) Clownfish for Skype (HKLM\...\Clownfish) (Version: - ) CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden Destinations (Version: 70.0.170.000 - Hewlett-Packard) Hidden Detektor Winampa (HKU\S-1-5-21-1409082233-651377827-1177238915-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden DocProc (Version: 7.0.0.0 - Hewlett-Packard) Hidden DocProcQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden Dropbox (HKU\S-1-5-21-1409082233-651377827-1177238915-1001\...\Dropbox) (Version: 3.2.6 - Dropbox, Inc.) erLT (Version: 1.20.138.34 - Logitech, Inc.) Hidden eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software) Euro Truck Simulator 2 Multiplayer 0.1.4 R2 Alpha (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.1.4 R2 Alpha - ETS2MP Team) EXPERTool 7.5 (HKLM\...\EXPERTool_is1) (Version: - Gainward Co., Ltd) Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Farming Simulator 2013 (HKLM\...\{52644103-70EE-47F6-9BBB-AA4514B59615}_is1) (Version: 1.3.0.0 - GIANTS Software GmbH) Fax_CDA (Version: 70.0.231.000 - Hewlett-Packard) Hidden Grand Theft Auto IV (Version: 1.0.0011.131 - Rockstar Games Inc.) Hidden HFSLIP Total Slipstream (v1.7.8, build 80614) (HKLM\...\HFSLIPTotalSlipstream) (Version: - ) HP Customer Participation Program 7.0 (HKLM\...\HPExtendedCapabilities) (Version: 7.0 - HP) HP Imaging Device Functions 7.0 (HKLM\...\HP Imaging Device Functions) (Version: 7.0 - HP) HP Photosmart Essential (HKLM\...\{6994491D-D491-48F1-AE1F-E179C1FFFC2F}) (Version: 1.9.1.3 - HP) HP Photosmart, Officejet and Deskjet 7.0.A (HKLM\...\{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}) (Version: - HP) HP Solution Center 7.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 7.0 - HP) HP Update (HKLM\...\{818ABC3C-635C-4651-8183-D0E9640B7DD1}) (Version: 5.002.001.004 - Hewlett-Packard) HPPhotoSmartExpress (Version: 70.0.170.000 - Hewlett-Packard) Hidden HPProductAssistant (Version: 70.0.170.000 - Hewlett-Packard) Hidden InstantShareDevicesMFC (Version: 70.0.170.000 - Hewlett-Packard) Hidden Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) key-find uninstall (HKLM\...\key-find uninstall) (Version: - key-find) <==== ATTENTION! K-Lite Codec Pack 6.2.0 (Basic) (HKLM\...\KLiteCodecPack_is1) (Version: 6.2.0 - ) Logitech Webcam Software (HKLM\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.) MarketResearch (Version: 70.0.170.000 - Hewlett-Packard) Hidden Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - PLK (HKLM\...\{036FD544-AED6-3F33-856D-A2292D0CF471}) (Version: 2.1.21022 - Microsoft Corporation) Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - PLK (HKLM\...\{7C77393F-8237-3825-A88A-AFAF3C69C072}) (Version: 3.1.21022 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{6F05332E-6063-4FB9-9233-0577B01E124A}) (Version: 3.1.89.0 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.10411.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Mozilla Firefox 35.0.1 (x86 pl) (HKLM\...\Mozilla Firefox 35.0.1 (x86 pl)) (Version: 35.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla) MSXML 6.0 Parser (KB925673) (HKLM\...\{FE9126DB-5F84-495A-BB46-3C724F1C2D08}) (Version: 6.00.3888.0 - Microsoft Corporation) neostrada tp (HKLM\...\neostradatp.exe) (Version: - ) Nero 7 Lite 7.7.5.1 (HKLM\...\Nero7Lite_is1) (Version: 7.7.5.1 - Updatepack.nl) NewCopy_CDA (Version: 70.0.231.000 - Hewlett-Packard) Hidden NVIDIA nView 141.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 141.24 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Sterownik graficzny 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation) OCR Software by I.R.I.S 7.0 (HKLM\...\HPOCR) (Version: 7.0 - HP) OpenAL (HKLM\...\OpenAL) (Version: - ) OpenOffice 4.1.1 (HKLM\...\{B5373BA3-BAD7-4EAC-A9D2-B66B41B82C57}) (Version: 4.11.9775 - Apache Software Foundation) Opera 12.17 (HKLM\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA) Pakiet językowy programu Microsoft .NET Framework 3.5 — PLK (HKLM\...\Microsoft .NET Framework 3.5 Language Pack - plk) (Version: - Microsoft Corporation) Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\504244733D18C8F63FF584AEB290E3904E791693) (Version: 08/22/2008 7.0.0.0 - Nokia) Pakiet sterowników: Logitech Webcam Software (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.) Panel sterowania NVIDIA 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden PanoStandAlone (Version: 70.0.170.000 - Hewlett-Packard) Hidden PC Connectivity Solution (HKLM\...\{83258E90-1F76-4E13-9F60-A0F8ED41E76F}) (Version: 8.22.7.0 - Nokia) PDF Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden Photoshop Camera Raw (Version: 5.0 - Adobe Systems Incorporated) Hidden PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) ProductContextNPI (Version: 70.0.231.000 - Hewlett-Packard) Hidden PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.) Pure (HKLM\...\{FF3C203A-2F19-43A2-9C7C-EC1B5A0FC873}) (Version: 1.0 - Disney Interactive Studios) Qtrax Player (HKLM\...\{89505A66-35F0-4401-B3AD-D077051F8698}) (Version: 01.001.0001 - Qtrax) QuickTime Alternative 2.8.0 (HKLM\...\QuicktimeAlt_is1) (Version: 2.8.0 - ) Rapture3D 2.3.22 Game (HKLM\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound) Readme (Version: 70.0.231.000 - Hewlett-Packard) Hidden Real Alternative 1.9.0 Lite (HKLM\...\RealAlt_is1) (Version: 1.9.0 - ) REALTEK GbE & FE Ethernet PCI-E NIC Driver (HKLM\...\{C9BED750-1211-4480-B1A5-718A3BE15525}) (Version: 1.23.0000 - Realtek) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5780 - Realtek Semiconductor Corp.) Scan (Version: 7.0.0.0 - Hewlett-Packard) Hidden ScannerCopy (Version: 7.0.0.0 - Hewlett-Packard) Hidden SHOUTcast Radio Toolbar (HKLM\...\SHOUTcast Radio Toolbar) (Version: 5.24.1.1 - AOL,LLC) SHOUTcast Source DSP 1.9.1 (remove only) (HKLM\...\SHOUTcastDSP) (Version: - ) Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.6.8442 - Skype Technologies S.A.) Skype™ 6.20 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.) Softonic-Polska Toolbar (HKLM\...\Softonic-Polska Toolbar) (Version: 6.5.2.8 - Softonic-Polska) <==== ATTENTION SolutionCenter (Version: 70.0.170.000 - Hewlett-Packard) Hidden Spintires (HKLM\...\Steam App 263280) (Version: - Oovee® Game Studios) Status (Version: 70.0.170.000 - Hewlett-Packard) Hidden Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SubEdit-Player (HKLM\...\SubEdit-Player_is1) (Version: 4072 - Artur Sikora) Sweet Home 3D version 4.6 (HKLM\...\Sweet Home 3D_is1) (Version: - eTeks) swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) Toolbox (Version: 70.0.170.000 - Hewlett-Packard) Hidden TrayApp (Version: 70.0.170.000 - Hewlett-Packard) Hidden Unload (Version: 7.0.0 - Hewlett-Packard) Hidden WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden WebReg (Version: 70.0.170.000 - Hewlett-Packard) Hidden Winamp (HKLM\...\Winamp) (Version: 5.61 - Nullsoft, Inc) Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - ) Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - ) Windows Resource Kit Tools (HKLM\...\{FA237125-51FF-408C-8BB8-30C2B3DFFF9C}) (Version: 5.2.3790 - Microsoft Corporation) XML Paper Specification Shared Components Language Pack 1.0 (Version: - Microsoft Corporation) Hidden XML Paper Specification Shared Components Pack 1.0 (Version: - Microsoft Corporation) Hidden ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{010833F3-751A-402F-9FCC-C365B6A12E41}\localserver32 -> C:\Documents and Settings\SysOp\Pulpit\BESTplayer.exe (Karol Winnicki) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{4CFA14DF-2156-4D7E-96BA-A19B6FEA066C}\InprocServer32 -> C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Softonic-Polska\prxtbSof2.dll (ClientConnect Ltd.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Limited) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{c86eb8a9-ccc2-4b6c-b75d-73576ed591bf}\InprocServer32 -> C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Softonic-Polska\prxtbSof2.dll (ClientConnect Ltd.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{E69341A3-E6D2-4175-B60C-C9D3D6FA40F6}\localserver32 -> C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-1409082233-651377827-1177238915-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ==================== Restore Points ========================= Check "winmgmt" service or repair WMI. ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2001-10-26 18:45 - 2015-02-16 18:44 - 00000923 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 http://adultyum.com/ 127.0.0.1 adultyum.com 127.0.0.1 http://adultyum.info/ 127.0.0.1 adultyum.info 127.0.0.1 http://www.adultyum.info/ ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => D:\PROGRAMY\Avast\AvastEmUpdate.exe Task: C:\WINDOWS\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job => C:\WINDOWS\TEMP\{A68C16E5-74BB-40C8-8CD6-8C54B826F14E}.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1409082233-651377827-1177238915-1001Core.job => C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Facebook\Update\FacebookUpdate.exe Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1409082233-651377827-1177238915-1001UA.job => C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Facebook\Update\FacebookUpdate.exe ==================== Loaded Modules (whitelisted) ============== 2015-02-23 20:18 - 2015-02-23 20:18 - 02911232 _____ () D:\PROGRAMY\Avast\defs\15022301\algo.dll 2011-01-23 21:55 - 2008-03-29 16:42 - 00159744 _____ () D:\PROGRAMY\SubEdit-Player\codec\MatroskaSplitter\mmfinfo.dll 2011-01-23 21:55 - 2008-03-29 16:41 - 00023552 _____ () D:\PROGRAMY\SubEdit-Player\codec\MatroskaSplitter\mkunicode.dll 2014-05-08 12:22 - 2014-05-08 12:22 - 00300544 _____ () C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.POL 2014-12-21 15:28 - 2014-12-21 15:28 - 38562088 _____ () D:\PROGRAMY\Avast\libcef.dll 2015-02-10 22:00 - 2015-02-10 22:00 - 00750080 _____ () C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\libGLESv2.dll 2015-02-23 22:13 - 2015-02-23 22:13 - 00043008 _____ () c:\Documents and Settings\SysOp\Ustawienia lokalne\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpapf3vg.dll 2015-02-10 22:00 - 2015-02-10 22:00 - 00047616 _____ () C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\libEGL.dll 2015-02-10 22:00 - 2015-02-10 22:00 - 00865280 _____ () C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\plugins\platforms\qwindows.dll 2015-02-10 22:00 - 2015-02-10 22:00 - 00200704 _____ () C:\Documents and Settings\SysOp\Dane aplikacji\Dropbox\bin\plugins\imageformats\qjpeg.dll 2009-10-15 17:18 - 2011-05-01 17:07 - 00066872 _____ () C:\WINDOWS\system32\PnkBstrA.exe 2009-10-15 17:18 - 2011-05-01 17:07 - 00103736 _____ () C:\WINDOWS\system32\PnkBstrB.exe 2015-02-16 15:16 - 2015-01-23 11:37 - 03925104 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Documents and Settings\All Users\Dane aplikacji\TEMP:1CE11B51 AlternateDataStreams: C:\Documents and Settings\SysOp\Pulpit\BESTplayer.exe:com.dropbox.attributes AlternateDataStreams: C:\Documents and Settings\SysOp\Pulpit\Podsumowanie.txt:com.dropbox.attributes AlternateDataStreams: C:\Documents and Settings\SysOp\Pulpit\Rozliczenia! Do jazdy.txt:com.dropbox.attributes AlternateDataStreams: C:\Documents and Settings\SysOp\Pulpit\Rozpiski dla innych.txt:com.dropbox.attributes ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1409082233-651377827-1177238915-1001\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupfolder: C:^Documents and Settings^SysOp^Menu Start^Programy^Autostart^Dropbox.lnk => C:\WINDOWS\pss\Dropbox.lnkStartup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: AdslTaskBar => rundll32.exe stmctrl.dll,TaskBar MSCONFIG\startupreg: Alcmtr => ALCMTR.EXE MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR MSCONFIG\startupreg: Clownfish => MSCONFIG\startupreg: DAEMON Tools Lite => "D:\PROGRAMY\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: Facebook Update => "C:\Documents and Settings\SysOp\Ustawienia lokalne\Dane aplikacji\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver MSCONFIG\startupreg: LWS => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe -hide MSCONFIG\startupreg: NvBackend => "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe" MSCONFIG\startupreg: NvCplDaemon => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup MSCONFIG\startupreg: NvMediaCenter => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login MSCONFIG\startupreg: nwiz => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet MSCONFIG\startupreg: RTHDCPL => RTHDCPL.EXE MSCONFIG\startupreg: uTorrent => "D:\PROGRAMY\uTorrent.exe" /MINIMIZED MSCONFIG\startupreg: vProt => "C:\Program Files\AVG Secure Search\vprot.exe" ==================== Accounts: ============================= Administrator (S-1-5-21-1409082233-651377827-1177238915-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator ASPNET (S-1-5-21-1409082233-651377827-1177238915-1002 - Limited - Enabled) Gość (S-1-5-21-1409082233-651377827-1177238915-501 - Limited - Disabled) SysOp (S-1-5-21-1409082233-651377827-1177238915-1001 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\SysOp ==================== Faulty Device Manager Devices ============= Name: Realtek High Definition Audio Description: Realtek High Definition Audio Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318} Manufacturer: Realtek Service: IntcAzAudAddService Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (02/16/2015 03:51:18 PM) (Source: MsiInstaller) (EventID: 11334) (User: WINDT_09) Description: Produkt: QuickTime 7 -- Błąd 1334. Nie można zainstalować pliku „QuickTime_trampoline.qts”, ponieważ nie można znaleźć go w pliku cabinet „QuickTime.cab”. Może to wskazywać błąd sieciowy, błąd odczytu ze stacji dysków CD-ROM lub problem z tym pakietem. Error: (02/16/2015 03:06:30 PM) (Source: MsiInstaller) (EventID: 10005) (User: WINDT_09) Description: Product: Adobe Color - Photoshop Specific -- Please install Adobe Color - Photoshop Specific using Setup.exe Error: (01/08/2015 04:12:38 PM) (Source: MsiInstaller) (EventID: 11334) (User: WINDT_09) Description: Produkt: QuickTime 7 -- Błąd 1334. Nie można zainstalować pliku „msvcm80.dll.8.0.50727.6195.98CB24AD_52FB_DB5F_FF1F_C8B3B9A1E18E”, ponieważ nie można znaleźć go w pliku cabinet „QuickTime.cab”. Może to wskazywać błąd sieciowy, błąd odczytu ze stacji dysków CD-ROM lub problem z tym pakietem. Error: (11/18/2014 09:06:24 AM) (Source: MsiInstaller) (EventID: 11309) (User: WINDT_09) Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt. System error 3. Verify that the file exists and that you can access it. System errors: ============= Error: (07/01/2012 00:19:03 PM) (Source: 0) (EventID: 7) (User: ) Description: \Device\CdRom0 Error: (07/01/2012 00:18:56 PM) (Source: 0) (EventID: 7) (User: ) Description: \Device\CdRom0 Error: (07/01/2012 00:18:49 PM) (Source: 0) (EventID: 7) (User: ) Description: \Device\CdRom0 Error: (07/01/2012 00:18:42 PM) (Source: 0) (EventID: 7) (User: ) Description: \Device\CdRom0 Error: (07/01/2012 00:18:35 PM) (Source: 0) (EventID: 7) (User: ) Description: \Device\CdRom0 Error: (07/01/2012 00:18:28 PM) (Source: 0) (EventID: 7) (User: ) Description: \Device\CdRom0 Error: (07/01/2012 00:18:20 PM) (Source: 0) (EventID: 7) (User: ) Description: \Device\CdRom0 Error: (07/01/2012 00:18:13 PM) (Source: 0) (EventID: 7) (User: ) Description: \Device\CdRom0 Error: (07/01/2012 00:18:06 PM) (Source: 0) (EventID: 7) (User: ) Description: \Device\CdRom0 Error: (07/01/2012 00:17:59 PM) (Source: 0) (EventID: 7) (User: ) Description: \Device\CdRom0 Microsoft Office Sessions: ========================= ==================== Memory info =========================== Processor: Pentium(R) Dual-Core CPU E5200 @ 2.50GHz Percentage of memory in use: 41% Total physical RAM: 2558.42 MB Available physical RAM: 1486.93 MB Total Pagefile: 4451.06 MB Available Pagefile: 3532.23 MB Total Virtual: 2047.88 MB Available Virtual: 1913.34 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:30.27 GB) (Free:11.84 GB) NTFS ==>[Drive with boot components (Windows XP)] Drive d: () (Fixed) (Total:435.49 GB) (Free:395.11 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 86238623) Partition 1: (Active) - (Size=30.3 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=435.5 GB) - (Type=07 NTFS) ==================== End Of Log ============================