Additional scan result of Farbar Recovery Scan Tool (x86) Version:11-08-2015 02 Ran by User (2015-08-12 12:16:26) Running from C:\Documents and Settings\User\Pulpit Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1229272821-152049171-1177238915-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator ASPNET (S-1-5-21-1229272821-152049171-1177238915-1006 - Limited - Enabled) Gość (S-1-5-21-1229272821-152049171-1177238915-501 - Limited - Enabled) Pomocnik (S-1-5-21-1229272821-152049171-1177238915-1000 - Limited - Disabled) SUPPORT_388945a0 (S-1-5-21-1229272821-152049171-1177238915-1002 - Limited - Disabled) User (S-1-5-21-1229272821-152049171-1177238915-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\User ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: AVG AntiVirus Free Edition 2015 (Enabled - Up to date) {17DDD097-36FF-435F-9E1B-52D74245D6BF} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 32 Bit HP CIO Components Installer (Version: 3.1.1 - Hewlett-Packard) Hidden Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated) Adobe Reader XI (11.0.08) - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB971961) (HKLM\...\KB971961-IE8) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows Internet Explorer 8 (KB981332) (HKLM\...\KB981332-IE8) (Version: 1 - Microsoft Corporation) Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation) AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6125 - AVG Technologies) AVG 2015 (Version: 15.0.4392 - AVG Technologies) Hidden AVG 2015 (Version: 15.0.6125 - AVG Technologies) Hidden BDE Information Utility (HKLM\...\BDE Information Utility) (Version: - InterBase Installation Info (and BDE Information Utility)) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) Broadcom Gigabit Integrated Controller (HKLM\...\{B7F54262-AB66-44B3-88BF-9FC69941B643}) (Version: 8.22.11 - Broadcom Corporation) Conexant HDA D110 MDC V.92 Modem (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3) (Version: - ) Contenta Converter PREMIUM (HKLM\...\ContentaConverter-PREMIUM) (Version: - Contenta Software) Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform) Dell Mobile Broadband Card Utility (HKLM\...\{0EF62E36-F4DB-416E-A4B0-3980E08B0C50}) (Version: 2.09.01.024 - Novatel Wireless) doPDF (Version: 8.0.907 - Softland) Hidden doPDF 8 (HKLM\...\{d38b571a-1bb2-47f5-9194-b5956174c0cf}) (Version: 8.0.907 - Softland) ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - ) FastStone Image Viewer 4.8 (HKLM\...\FastStone Image Viewer) (Version: 4.8 - FastStone Soft) Gadu-Gadu 10 (HKLM\...\Gadu-Gadu 10) (Version: - GG Network S.A.) Gadwin PrintScreen (HKLM\...\Gadwin PrintScreen) (Version: 4.6 - Gadwin Systems, Inc.) Google Chrome (HKU\S-1-5-21-1229272821-152049171-1177238915-1003\...\Google Chrome) (Version: 43.0.2357.124 - Google Inc.) Google Earth Plug-in (HKLM\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (Version: 1.3.28.1 - Google Inc.) Hidden Image Resizer Powertoy for Windows XP (HKLM\...\{1CB92574-96F2-467B-B793-5CEB35C40C29}) (Version: 1.00.0001 - Microsoft Corporation) Java 8 Update 40 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation) Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) Java 8 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation) jv16 PowerTools 1.3 (HKLM\...\jv16 PowerTools_is1) (Version: - ) Kyocera Product Library (HKLM\...\Kyocera Product Library) (Version: 2.0.0713 - Kyocera Mita Corporation) Kyocera TWAIN Driver (HKLM\...\InstallShield_{3483AA8C-1950-4428-A0A4-FD0F59E66F14}) (Version: 1.8.1402 - Kyocera Mita) Kyocera TWAIN Driver (Version: 1.8.1402 - Kyocera Mita) Hidden Malwarebytes Anti-Malware wersja 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 1.1 Polish Language Pack (HKLM\...\{64CB2553-C109-4132-AA51-1F421B515FD1}) (Version: 1.1.4322 - Microsoft) Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - ) Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - PLK (HKLM\...\{2AFF2951-86B1-3C53-B34D-B440F11E7D0A}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - PLK (HKLM\...\{5A0DDC27-88E5-3CAD-BC3D-28FFD05CA6B9}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Live Add-in 1.3 (HKLM\...\{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}) (Version: 2.0.2313.0 - Microsoft Corporation) Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Mozilla Firefox 39.0.3 (x86 pl) (HKLM\...\Mozilla Firefox 39.0.3 (x86 pl)) (Version: 39.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 31.7.0 - Mozilla) Mozilla Thunderbird 31.7.0 (x86 pl) (HKLM\...\Mozilla Thunderbird 31.7.0 (x86 pl)) (Version: 31.7.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 6.0 Parser (HKLM\...\{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}) (Version: 6.10.1129.0 - Microsoft Corporation) Narzędzie do przekazywania usługi Windows Live (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Narzędzie karty sieciowej DW WLAN (HKLM\...\Narzędzie karty sieciowej DW WLAN) (Version: 5.60.18.9 - Dell Inc.) novaPDF 8 Printer Driver (HKLM\...\{E657B683-F9E7-4C80-99CB-648AC60325B8}) (Version: 8.0.907 - Softland) NTI Shadow for ReadyNAS (HKLM\...\{019D7B6B-1123-40E5-AD82-73DC6FE78B30}) (Version: 3.7.9.73 - NewTech Infosystems) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - ) Obsługa programów Apple (32-bitowa) (HKLM\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.) Odkurzacz (HKLM\...\Odkurzacz 13.5_is1) (Version: 13.5.4.1971 - FranmoSoftware - Maciej Opaliński) Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - plk) (Version: - Microsoft Corporation) Pakiet podstawowego dostawcy usług kryptograficznych kart inteligentnych Microsoft (HKLM\...\KB909520) (Version: - Microsoft Corporation) PDFill PDF Editor with FREE Writer and FREE Tools (HKLM\...\{D1399216-81B2-457C-A0F7-73B9A2EF6902}) (Version: 8.0 - PlotSoft LLC) PDFZilla V3.0.6 (HKLM\...\PDFZilla_is1) (Version: - PDFZilla, Inc.) PhotoScape (HKLM\...\PhotoScape) (Version: - ) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) QRP Viewer (HKLM\...\{6E29905E-31E5-482D-A982-8210FB25FCD1}) (Version: 1.3.0.0 - Responsive Software Limited) SigmaTel Audio (HKLM\...\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}) (Version: 5.10.5210.0 - SigmaTel) Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.01 - Ghisler Software GmbH) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Walor 3.2012.01.30 (HKLM\...\26B1E644-6AF2-45EF-A99C-BED50A46539D_is1) (Version: 3 - ProNET) WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation) Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation) Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation) Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation) Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - ) Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - ) Windows Search 4.0 (HKLM\...\KB940157) (Version: 04.00.6001.503 - Microsoft Corporation) Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.175805 - Microsoft Corporation) WinRAR 5.21 (32-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) XML Paper Specification Shared Components Language Pack 1.0 (Version: - Microsoft Corporation) Hidden ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1229272821-152049171-1177238915-1003_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-1229272821-152049171-1177238915-1003_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.27.5\psuser.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1229272821-152049171-1177238915-1003_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.27.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-1229272821-152049171-1177238915-1003_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.27.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-1229272821-152049171-1177238915-1003_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.27.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-1229272821-152049171-1177238915-1003_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\43.0.2357.124\delegate_execute.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-1229272821-152049171-1177238915-1003_Classes\CLSID\{97090E2F-3062-4459-855B-014F0D3CDBB1}\InprocServer32 -> C:\Program Files\Windows Desktop Search\deskbar.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1229272821-152049171-1177238915-1003_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1229272821-152049171-1177238915-1003_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1229272821-152049171-1177238915-1003_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.27.5\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-1229272821-152049171-1177238915-1003_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.27.5\psuser.dll (Google Inc.) ==================== Restore Points ========================= 07-08-2015 13:01:22 Software Distribution Service 3.0 07-08-2015 15:49:22 JRT Pre-Junkware Removal 10-08-2015 09:23:19 JRT Pre-Junkware Removal 10-08-2015 10:00:13 avast! antivirus system restore point 10-08-2015 12:00:11 JRT Pre-Junkware Removal 10-08-2015 12:14:04 Software Distribution Service 3.0 11-08-2015 11:30:07 Zainstalowano AVG 2015 11-08-2015 11:38:10 Zainstalowano AVG 2015 12-08-2015 10:54:47 Software Distribution Service 3.0 ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2004-08-04 13:00 - 2015-05-22 11:09 - 00449968 ____R C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 123haustiereundmehr.com 127.0.0.1 www.123haustiereundmehr.com There are 1000 more lines. ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Loaded Modules (Whitelisted) ============== 2012-07-09 10:48 - 2009-10-07 15:01 - 00025088 _____ () C:\WINDOWS\System32\WLTRYSVC.EXE 2012-07-09 10:48 - 2009-10-07 15:01 - 00757760 _____ () C:\WINDOWS\System32\bcm1xsup.dll 2014-05-19 16:48 - 2014-05-19 16:48 - 00015360 _____ () C:\WINDOWS\system32\novamn8.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com There are 7866 more restricted sites. ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1229272821-152049171-1177238915-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp DNS Servers: 176.115.0.18 - 195.150.77.18 Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) StandardProfile\AuthorizedApplications: [C:\Program Files\Gadu-Gadu 10\gg.exe] => Enabled:Gadu-Gadu 10 StandardProfile\AuthorizedApplications: [C:\Program Files\Bonjour\mDNSResponder.exe] => Enabled:Usługa Bonjour StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE] => Enabled:Microsoft Office Outlook StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\GROOVE.EXE] => Enabled:Microsoft Office Groove StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE] => Enabled:Microsoft Office OneNote StandardProfile\AuthorizedApplications: [C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox) StandardProfile\AuthorizedApplications: [C:\Program Files\AVG\AVG2015\avgnsx.exe] => Enabled:Ochrona Sieci StandardProfile\AuthorizedApplications: [C:\Program Files\AVG\AVG2015\avgdiagex.exe] => Enabled:Diagnostyka AVG 2015 StandardProfile\AuthorizedApplications: [C:\Program Files\AVG\AVG2015\avgmfapx.exe] => Enabled:Instalator AVG StandardProfile\AuthorizedApplications: [C:\Program Files\AVG\AVG2015\avgemcx.exe] => Enabled:Uniwersalny skaner poczty email DomainProfile\GloballyOpenPorts: [139:TCP] => Enabled:@xpsp2res.dll,-22004 DomainProfile\GloballyOpenPorts: [445:TCP] => Enabled:@xpsp2res.dll,-22005 DomainProfile\GloballyOpenPorts: [137:UDP] => Enabled:@xpsp2res.dll,-22001 DomainProfile\GloballyOpenPorts: [138:UDP] => Enabled:@xpsp2res.dll,-22002 DomainProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007 DomainProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008 StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22007 StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22008 StandardProfile\GloballyOpenPorts: [139:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22004 StandardProfile\GloballyOpenPorts: [445:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22005 StandardProfile\GloballyOpenPorts: [137:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22001 StandardProfile\GloballyOpenPorts: [138:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22002 StandardProfile\GloballyOpenPorts: [5985:TCP] => Disabled:Zdalne zarządzanie systemem Windows ==================== Faulty Device Manager Devices ============= Name: Karta Dell Wireless 1490 Dual Band WLAN Mini-Card Description: Karta Dell Wireless 1490 Dual Band WLAN Mini-Card Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: Broadcom Service: BCM43XX Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (08/11/2015 04:55:45 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Nie można zaktualizować pozycji na mapie mieszania. Kontekst: aplikacja , wykaz SystemIndex Szczegóły: Urządzenie podłączone do komputera nie działa. (0x8007001f) Error: (08/11/2015 04:55:45 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Nie można zaktualizować pozycji na mapie mieszania. Kontekst: aplikacja , wykaz SystemIndex Szczegóły: Urządzenie podłączone do komputera nie działa. (0x8007001f) Error: (08/07/2015 01:36:53 PM) (Source: MsiInstaller) (EventID: 11719) (User: REMIGIUSZ) Description: Product: Java Auto Updater -- Error 1719.The Windows Installer Service could not be accessed. This can occur if you are running Windows in safe mode, or if the Windows Installer is not correctly installed. Contact your support personnel for assistance. Error: (07/17/2015 01:13:55 PM) (Source: Microsoft Office 12) (EventID: 5000) (User: ) Description: EventType officelifeboathang, P1 winword.exe, P2 12.0.6720.5000, P3 kernel32.dll, P4 5.1.2600.6532, P5 NIL, P6 NIL, P7 NIL, P8 NIL, P9 officelifeboathang0, P10 officelifeboathang1. Error: (07/01/2015 12:46:19 PM) (Source: Microsoft Office 12) (EventID: 5000) (User: ) Description: EventType officelifeboathang, P1 winword.exe, P2 12.0.6720.5000, P3 ntdll.dll, P4 5.1.2600.6055, P5 NIL, P6 NIL, P7 NIL, P8 NIL, P9 officelifeboathang0, P10 officelifeboathang1. Error: (07/01/2015 12:45:56 PM) (Source: Microsoft Office 12) (EventID: 5000) (User: ) Description: EventType officelifeboathang, P1 winword.exe, P2 12.0.6720.5000, P3 unknown, P4 0.0.0.0, P5 NIL, P6 NIL, P7 NIL, P8 NIL, P9 officelifeboathang0, P10 officelifeboathang1. Error: (06/19/2015 10:05:20 AM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Nie można zaktualizować pozycji na mapie mieszania. Kontekst: aplikacja , wykaz SystemIndex Szczegóły: Urządzenie podłączone do komputera nie działa. (0x8007001f) Error: (06/11/2015 01:54:48 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Nie można zainicjować aplikacji. Kontekst: aplikacja Windows Szczegóły: Nie można odczytać wartości z rejestru, ponieważ konfiguracja jest nieprawidłowa. Utwórz ponownie konfigurację indeksu zawartości, usuwając go. (0x80040d03) Error: (06/11/2015 01:54:48 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Nie można zainicjować obiektu programu zbierającego. Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odczytać wartości z rejestru, ponieważ konfiguracja jest nieprawidłowa. Utwórz ponownie konfigurację indeksu zawartości, usuwając go. (0x80040d03) Error: (06/11/2015 01:54:41 PM) (Source: Windows Search Service) (EventID: 3038) (User: ) Description: Program zbierający nie może odczytać rejestru DocIdMapFile. Kontekst: aplikacja , wykaz SystemIndex Szczegóły: Nie można odnaleźć określonego pliku. (0x80070002) System errors: ============= Error: (08/12/2015 12:08:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu następującego błędu: %%1053 Error: (08/12/2015 12:08:38 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą Usługa bramy warstwy aplikacji. Error: (08/12/2015 12:05:50 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Limit czasu (30000 milisekund) podczas oczekiwania na odpowiedź transakcji z usługi NVSvc. Error: (08/12/2015 12:05:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi novaPDF Server z powodu następującego błędu: %%1053 Error: (08/12/2015 12:05:49 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą novaPDF Server. Error: (08/12/2015 12:05:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi MBAMService z powodu następującego błędu: %%1053 Error: (08/12/2015 12:05:49 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą MBAMService. Error: (08/12/2015 11:50:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Windows Search z powodu następującego błędu: %%1053 Error: (08/12/2015 11:50:17 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą Windows Search. Error: (08/12/2015 11:50:17 AM) (Source: DCOM) (EventID: 10005) (User: ZARZĄDZANIE NT) Description: Model DCOM odebrał błąd „%%1053” podczas próby uruchomienia usługi WSearch z argumentami „” w celu uruchomienia serwera: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Microsoft Office: ========================= Error: (08/10/2015 12:42:32 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6726.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1619 seconds with 0 seconds of active time. This session ended with a crash. Error: (10/16/2014 09:54:28 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6700.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash. Error: (10/16/2014 09:54:13 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6700.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash. Error: (10/16/2014 09:53:46 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6700.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 21 seconds with 0 seconds of active time. This session ended with a crash. Error: (09/25/2014 03:06:47 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 5950 seconds with 2880 seconds of active time. This session ended with a crash. Error: (10/18/2012 12:24:41 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1105 seconds with 780 seconds of active time. This session ended with a crash. ==================== Memory info =========================== Processor: Genuine Intel(R) CPU T2400 @ 1.83GHz Percentage of memory in use: 28% Total physical RAM: 2046.05 MB Available physical RAM: 1467.91 MB Total Virtual: 3938.37 MB Available Virtual: 3435.38 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:35.15 GB) (Free:5.3 GB) NTFS ==>[drive with boot components (Windows XP)] Drive e: () (Fixed) (Total:39.37 GB) (Free:37.25 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 74.5 GB) (Disk ID: 98E398E3) Partition 1: (Active) - (Size=35.2 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=39.4 GB) - (Type=OF Extended) ==================== End of log ============================