Rezultat naprawy Farbar Recovery Scan Tool (x86) Wersja:23-09-2015 Uruchomiony przez samsung (2015-09-26 21:42:01) Run:1 Uruchomiony z C:\Users\samsung\Desktop Załadowane profile: samsung (Dostępne profile: samsung) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** CloseProcesses: CreateRestorePoint: HKU\S-1-5-21-4013461272-253353711-3654097772-1003\...0c966feabec1\InprocServer32: [Default-shell32] UWAGA! ====> ZeroAccess? HKU\S-1-5-21-4013461272-253353711-3654097772-1003\...\Winlogon: [Shell] C:\Windows\explorer.exe [2926592 2009-04-11] (Microsoft Corporation) <==== UWAGA GroupPolicy: Ograniczenia - Chrome <======= UWAGA CHR HKLM\SOFTWARE\Policies\Google: Ograniczenia <======= UWAGA Reg: reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f BHO: Downaloiaade kkeepier -> {218C9709-FB65-D840-83E8-0387EBF1847A} -> C:\ProgramData\Downaloiaade kkeepier\BNf4.dll Brak pliku Handler: empbook - {F4673987-2C36-49e4-B23C-29DF753D84A5} - C:\Program Files\eMPendium\eMPendiumHandler.dll Brak pliku FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-12-12] C:\Program Files\Mozilla Firefox\extensions C:\Program Files\Mozilla Firefox\plugins FF Plugin HKU\S-1-5-21-4013461272-253353711-3654097772-1003: @tools.google.com/Google Update;version=3 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll Brak pliku FF Plugin HKU\S-1-5-21-4013461272-253353711-3654097772-1003: @tools.google.com/Google Update;version=9 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll Brak pliku 2015-09-18 22:09 - 2015-09-23 18:18 - 00000004 _____ C:\Windows\system32\029B560A371F4E00AB32838EBC01B9E7 2015-09-18 22:03 - 2015-09-18 22:03 - 00000000 ____D C:\Program Files\mbot_pl_014010090 2015-09-18 22:02 - 2006-09-18 23:41 - 00000761 _____ C:\Windows\system32\Drivers\etc\hp.bak 2015-09-18 21:58 - 2015-09-18 21:58 - 00000000 ____D C:\Users\Public\QiYi 2015-09-18 21:57 - 2015-09-18 21:57 - 00000000 ____D C:\Program Files\baidu 2015-09-18 21:55 - 2015-09-18 21:55 - 00979104 _____ C:\Users\samsung\Downloads\march2014datafiles.zip__15047_i1658826585_il2702870.exe 2012-10-25 17:47 - 2012-10-25 17:47 - 83023306 ____T () C:\ProgramData\0tbpw.pad CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> "C:\Users\samsung\AppData\Local\Google\Update\GoogleUpdate.exe" Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.21.135\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.25.5\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.27.5\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> "C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\GoogleUpdateOnDemand.exe" Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> "C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\GoogleUpdateOnDemand.exe" Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.23.9\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> "C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\GoogleUpdateOnDemand.exe" Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.28.1\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.21.145\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.21.123\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.21.153\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.28.13\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.24.15\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{91EFB276-CEFE-48EC-BB3A-57795A7B4008}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.21.149\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.22.3\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{A54D478D-4F70-4F72-9A74-17C9986E35AB}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.21.165\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.26.9\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.21.115\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.25.11\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> "C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\GoogleUpdateOnDemand.exe" Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.22.5\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.21.111\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\samsung\AppData\Local\Google\Update\1.3.24.7\psuser.dll Brak pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{00BB2763-6A77-11D0-A535-00C04FD7D062}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{00BB2765-6A77-11D0-A535-00C04FD7D062}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{00EEBF57-477D-4084-9921-7AB3C2C9459D}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{03C036F1-A186-11D0-824A-00AA005B4383}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{047A9A40-657E-11D3-8D5B-00104B35E7EF}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{0A29FF9E-7F9C-4437-8B11-F424491E3931}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{0AF10CEC-2ECD-4B92-9581-34F6AE0637F3}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{0B91A74B-AD7C-4A9D-B563-29EEF9167172}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{0C15D503-D017-47CE-9016-7B3F978721CC}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{275C23E2-3747-11D0-9FEA-00AA003F8646}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{35786D3C-B075-49B9-88DD-029876E11C01}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{40DD6E20-7C17-11CE-A804-00AA003CA9F6}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{42AEDC87-2188-41FD-B9A3-0C966FEABEC1}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{4336A54D-038B-4685-AB02-99BB52D3FB8B}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{46408325-AF70-4AB0-90D9-7B1779C1AD87}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{50EF4544-AC9F-4A8E-B21B-8A26180DB13F}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{527C9A9B-B9A2-44B0-84F9-F0DC11C2BCFB}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> "C:\Users\samsung\AppData\Local\Google\Chrome\Application\45.0.2454.93\delegate_execute.exe" Brak pl (dane wartości zawierają 3 znaków więcej). CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{603D3800-BD81-11D0-A3A5-00C04FD706EC}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{6311429E-2F1A-4777-880F-C7289FD10169}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{640167B4-59B0-47A6-B335-A6B3C0695AEA}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{71C3BF7F-682F-4B5E-9E47-5C25D3AC9458}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{72213061-C9BC-40BE-A916-A28F5FBA091E}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{72EB61E0-8672-4303-9175-F2E4C68B2E7C}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{77F419AA-771A-45FF-AC66-7567FA3243D3}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{7842554E-6BED-11D2-8CDB-B05550C10000}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{7B8A2D94-0AC9-11D1-896C-00C04FB6BFC4}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{807563E5-5146-11D5-A672-00B0D022E945}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{82C588E7-E54B-408C-9F8C-6AF9ADF6F1E9}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{84465401-2886-4CE0-AF50-C0560226ED40}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{85E94D25-0712-47ED-8CDE-B0971177C6A1}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{87123A30-0975-417D-9457-10066C5B69C3}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{88D96A05-F192-11D4-A65F-0040963251E5}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{88D96A06-F192-11D4-A65F-0040963251E5}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{88D96A0C-F192-11D4-A65F-0040963251E5}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{8E85D0CE-DEAF-4EA1-9410-FD1A2105CEB5}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{8F170678-2A97-4D59-89A1-7A0A71C1B677}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{9113A02D-00A3-46B9-BC5F-9C04DADDD5D7}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{9A2B23E4-2A50-48DB-B3C3-F5EA12947CB8}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{9CFC2DF3-6BA3-46EF-A836-E519E81F0EC4}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{B056521A-9B10-425E-B616-1FCD828DB3B1}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{B155BDF8-02F0-451E-9A26-AE317CFD7779}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{B5F8350B-0548-48B1-A6EE-88BD00B4A5E7}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{B8967F85-58AE-4F46-9FB2-5D7904798F4B}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C1F63D0C-4CAE-4907-BE74-EEB75D386ECB}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C5621364-87CC-4731-8947-929CAE75323E}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{CA554A15-4410-45C9-B5C1-20DE052D9CD3}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{CACAF262-9370-4615-A13B-9F5539DA4C0A}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{CB2F6723-AB3A-11D2-9C40-00C04FA30A3E}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{CC4014F5-B18D-439C-9352-F99D984CCA85}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{E5CB7A31-7512-11D2-89CE-0080C792E5D8}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{E6D78900-BB40-4039-9C54-593A242B65DA}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{EDB5F444-CB8D-445A-A523-EC5AB6EA33C7}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{F3364BA0-65B9-11CE-A9BA-00AA004AE837}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{F5078F32-C551-11D3-89B9-0000F81FE221}\InprocServer32 -> Brak ścieżki do pliku CustomCLSID: HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{FE841493-835C-4FA3-B6CC-B4B2D4719848}\InprocServer32 -> Brak ścieżki do pliku Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AlcoholAutomount" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\apphide" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\gmsd_pl_005010091" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iLivid" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mbot_pl_014010091" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PrivitizeVPN" /f Reg: reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\YTDownloader" /f Task: {386BB16C-A800-4FC3-9E8C-6EE2AEAB1DB2} - System32\Tasks\{45B2C3A5-0CBB-45EF-934E-6005D64316CF} => pcalua.exe -a D:\cm0102v3968-20060922131937KUVQ2.exe -d "C:\Program Files\Mozilla Firefox" Task: {4E01E928-3DB3-4D22-AA2C-9A5881FDEDBD} - System32\Tasks\task30081516 => C:\Windows\Temp\_ex-08.exe <==== UWAGA Task: {6A012EA9-B28B-48AC-87C0-572BC9FA1A49} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4013461272-253353711-3654097772-1003Core => C:\Users\samsung\AppData\Local\Google\Update\GoogleUpdate.exe Task: {8B49AD94-45B3-4ED4-B53A-A2A0C347E61E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4013461272-253353711-3654097772-1003UA => C:\Users\samsung\AppData\Local\Google\Update\GoogleUpdate.exe Task: {96531A47-614E-4BF9-897A-A2E7A4620216} - \ZoomExUpdaterTask{2F0E7216-A2D5-4E4B-A67E-54607E3D3C0F} -> Brak pliku <==== UWAGA Task: {AE2ACCD1-B367-48F7-BA3F-346FA4DD88B4} - System32\Tasks\{BC09892F-C719-47CD-93B2-D1FA9BD9C8BB} => pcalua.exe -a C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe -c /M{07A540AB-D785-11D5-8E89-0090275862A0} AlternateDataStreams: C:\Users\samsung\Downloads\march2014datafiles.zip__15047_i1658826585_il2702870.exe:typelib FirewallRules: [{86A1C3B8-E09F-4FA3-B28E-3D2DC7960532}] => (Allow) C:\IQIYI Video\LStyle\QyClient.exe FirewallRules: [{613BFA9B-4795-471E-851E-83B3F7D9E443}] => (Allow) C:\IQIYI Video\LStyle\QyWebPlayer.exe FirewallRules: [{C747F077-82EA-4F27-96CF-0FB15D00EB02}] => (Allow) C:\IQIYI Video\Common\QyKernel.exe FirewallRules: [{63BC66FA-EF83-4A90-B253-1E2983826518}] => (Allow) C:\IQIYI Video\LStyle\QyPlayer.exe FirewallRules: [{D902D01E-2D28-4FCE-9DFD-E6CE56875C8A}] => (Allow) C:\IQIYI Video\GeePlayer\GeePlayer.exe FirewallRules: [{8007F4D8-B272-4F63-BC64-96DFC72D7D3C}] => (Allow) C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe FirewallRules: [{723FD159-30B1-4B51-9712-6885F96B69C6}] => (Allow) C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe FirewallRules: [{1843A4B0-0FA0-4B8D-86E2-4F6DEA395DDC}] => (Allow) C:\ProgramData\EmailNotifier\EmailNotifier.exe FirewallRules: [{86063E44-8398-475E-B672-1C336C505DEC}] => (Allow) C:\ProgramData\EmailNotifier\EmailNotifier.exe FirewallRules: [TCP Query User{62FE6BBF-1C1B-48DA-BF0F-DE5AAD2C3690}C:\users\samsung\appdata\roaming\filehunter\pumpa.exe] => (Allow) C:\users\samsung\appdata\roaming\filehunter\pumpa.exe FirewallRules: [UDP Query User{6D9D244A-2B8A-4F2B-9BBA-BFC3B6401171}C:\users\samsung\appdata\roaming\filehunter\pumpa.exe] => (Allow) C:\users\samsung\appdata\roaming\filehunter\pumpa.exe EmptyTemp: ***************** Procesy zostały pomyślnie zamknięte. Punkt przywracania został pomyślnie utworzony. "HKU\S-1-5-21-4013461272-253353711-3654097772-1003\Software\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}" => klucz pomyślnie usunięto HKU\S-1-5-21-4013461272-253353711-3654097772-1003\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Wartość pomyślnie usunięto C:\Windows\system32\GroupPolicy\Machine => pomyślnie przeniesiono C:\Windows\system32\GroupPolicy\GPT.ini => pomyślnie przeniesiono "HKLM\SOFTWARE\Policies\Google" => klucz pomyślnie usunięto ========= reg delete "HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes" /f ========= Operacja ukoäczona pomy˜lnie. ========= Koniec Reg: ========= "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{218C9709-FB65-D840-83E8-0387EBF1847A}" => klucz pomyślnie usunięto "HKCR\CLSID\{218C9709-FB65-D840-83E8-0387EBF1847A}" => klucz pomyślnie usunięto "HKCR\PROTOCOLS\Handler\empbook" => klucz pomyślnie usunięto "HKCR\CLSID\{F4673987-2C36-49e4-B23C-29DF753D84A5}" => klucz pomyślnie usunięto HKLM\Software\Mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b} => Wartość pomyślnie usunięto C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension => pomyślnie przeniesiono C:\Program Files\Mozilla Firefox\extensions => pomyślnie przeniesiono C:\Program Files\Mozilla Firefox\plugins => pomyślnie przeniesiono "HKU\S-1-5-21-4013461272-253353711-3654097772-1003\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => klucz pomyślnie usunięto C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll => nie znaleziono. "HKU\S-1-5-21-4013461272-253353711-3654097772-1003\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => klucz pomyślnie usunięto C:\Users\samsung\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll => nie znaleziono. C:\Windows\system32\029B560A371F4E00AB32838EBC01B9E7 => pomyślnie przeniesiono C:\Program Files\mbot_pl_014010090 => pomyślnie przeniesiono C:\Windows\system32\Drivers\etc\hp.bak => pomyślnie przeniesiono C:\Users\Public\QiYi => pomyślnie przeniesiono C:\Program Files\baidu => pomyślnie przeniesiono "C:\Users\samsung\Downloads\march2014datafiles.zip__15047_i1658826585_il2702870.exe" => plik/folder nie znaleziono. C:\ProgramData\0tbpw.pad => pomyślnie przeniesiono "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{91EFB276-CEFE-48EC-BB3A-57795A7B4008}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{A54D478D-4F70-4F72-9A74-17C9986E35AB}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{00020420-0000-0000-C000-000000000046}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{00020424-0000-0000-C000-000000000046}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{00BB2763-6A77-11D0-A535-00C04FD7D062}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{00BB2765-6A77-11D0-A535-00C04FD7D062}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{00EEBF57-477D-4084-9921-7AB3C2C9459D}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{03C036F1-A186-11D0-824A-00AA005B4383}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{047A9A40-657E-11D3-8D5B-00104B35E7EF}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{0A29FF9E-7F9C-4437-8B11-F424491E3931}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{0AF10CEC-2ECD-4B92-9581-34F6AE0637F3}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{0B91A74B-AD7C-4A9D-B563-29EEF9167172}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{0C15D503-D017-47CE-9016-7B3F978721CC}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{275C23E2-3747-11D0-9FEA-00AA003F8646}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{35786D3C-B075-49B9-88DD-029876E11C01}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{40DD6E20-7C17-11CE-A804-00AA003CA9F6}" => klucz pomyślnie usunięto HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{42AEDC87-2188-41FD-B9A3-0C966FEABEC1} => klucz nie znaleziono. "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{4336A54D-038B-4685-AB02-99BB52D3FB8B}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{46408325-AF70-4AB0-90D9-7B1779C1AD87}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{50EF4544-AC9F-4A8E-B21B-8A26180DB13F}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{527C9A9B-B9A2-44B0-84F9-F0DC11C2BCFB}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{603D3800-BD81-11D0-A3A5-00C04FD706EC}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{6311429E-2F1A-4777-880F-C7289FD10169}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{640167B4-59B0-47A6-B335-A6B3C0695AEA}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{71C3BF7F-682F-4B5E-9E47-5C25D3AC9458}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{72213061-C9BC-40BE-A916-A28F5FBA091E}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{72EB61E0-8672-4303-9175-F2E4C68B2E7C}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{77F419AA-771A-45FF-AC66-7567FA3243D3}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{7842554E-6BED-11D2-8CDB-B05550C10000}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{7B8A2D94-0AC9-11D1-896C-00C04FB6BFC4}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{807563E5-5146-11D5-A672-00B0D022E945}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{82C588E7-E54B-408C-9F8C-6AF9ADF6F1E9}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{84465401-2886-4CE0-AF50-C0560226ED40}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{85E94D25-0712-47ED-8CDE-B0971177C6A1}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{87123A30-0975-417D-9457-10066C5B69C3}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{88D96A05-F192-11D4-A65F-0040963251E5}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{88D96A06-F192-11D4-A65F-0040963251E5}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{88D96A0C-F192-11D4-A65F-0040963251E5}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{8E85D0CE-DEAF-4EA1-9410-FD1A2105CEB5}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{8F170678-2A97-4D59-89A1-7A0A71C1B677}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{9113A02D-00A3-46B9-BC5F-9C04DADDD5D7}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{9A2B23E4-2A50-48DB-B3C3-F5EA12947CB8}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{9CFC2DF3-6BA3-46EF-A836-E519E81F0EC4}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{B056521A-9B10-425E-B616-1FCD828DB3B1}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{B155BDF8-02F0-451E-9A26-AE317CFD7779}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{B5F8350B-0548-48B1-A6EE-88BD00B4A5E7}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{B8967F85-58AE-4F46-9FB2-5D7904798F4B}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C1F63D0C-4CAE-4907-BE74-EEB75D386ECB}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{C5621364-87CC-4731-8947-929CAE75323E}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{CA554A15-4410-45C9-B5C1-20DE052D9CD3}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{CACAF262-9370-4615-A13B-9F5539DA4C0A}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{CB2F6723-AB3A-11D2-9C40-00C04FA30A3E}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{CC4014F5-B18D-439C-9352-F99D984CCA85}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{E5CB7A31-7512-11D2-89CE-0080C792E5D8}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{E6D78900-BB40-4039-9C54-593A242B65DA}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{EDB5F444-CB8D-445A-A523-EC5AB6EA33C7}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{F3364BA0-65B9-11CE-A9BA-00AA004AE837}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{F5078F32-C551-11D3-89B9-0000F81FE221}" => klucz pomyślnie usunięto "HKU\S-1-5-21-4013461272-253353711-3654097772-1003_Classes\CLSID\{FE841493-835C-4FA3-B6CC-B4B2D4719848}" => klucz pomyślnie usunięto ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk" /f ========= Operacja ukoäczona pomy˜lnie. ========= Koniec Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AlcoholAutomount" /f ========= Operacja ukoäczona pomy˜lnie. ========= Koniec Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\apphide" /f ========= Operacja ukoäczona pomy˜lnie. ========= Koniec Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\gmsd_pl_005010091" /f ========= Operacja ukoäczona pomy˜lnie. ========= Koniec Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iLivid" /f ========= Operacja ukoäczona pomy˜lnie. ========= Koniec Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mbot_pl_014010091" /f ========= Operacja ukoäczona pomy˜lnie. ========= Koniec Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PrivitizeVPN" /f ========= Operacja ukoäczona pomy˜lnie. ========= Koniec Reg: ========= ========= reg delete "HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\YTDownloader" /f ========= Operacja ukoäczona pomy˜lnie. ========= Koniec Reg: ========= "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{386BB16C-A800-4FC3-9E8C-6EE2AEAB1DB2}" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{386BB16C-A800-4FC3-9E8C-6EE2AEAB1DB2}" => klucz pomyślnie usunięto C:\Windows\System32\Tasks\{45B2C3A5-0CBB-45EF-934E-6005D64316CF} => pomyślnie przeniesiono "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{45B2C3A5-0CBB-45EF-934E-6005D64316CF}" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4E01E928-3DB3-4D22-AA2C-9A5881FDEDBD}" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4E01E928-3DB3-4D22-AA2C-9A5881FDEDBD}" => klucz pomyślnie usunięto C:\Windows\System32\Tasks\task30081516 => pomyślnie przeniesiono "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\task30081516" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6A012EA9-B28B-48AC-87C0-572BC9FA1A49}" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6A012EA9-B28B-48AC-87C0-572BC9FA1A49}" => klucz pomyślnie usunięto C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4013461272-253353711-3654097772-1003Core => pomyślnie przeniesiono "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-4013461272-253353711-3654097772-1003Core" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8B49AD94-45B3-4ED4-B53A-A2A0C347E61E}" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8B49AD94-45B3-4ED4-B53A-A2A0C347E61E}" => klucz pomyślnie usunięto C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4013461272-253353711-3654097772-1003UA => pomyślnie przeniesiono "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-4013461272-253353711-3654097772-1003UA" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{96531A47-614E-4BF9-897A-A2E7A4620216}" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{96531A47-614E-4BF9-897A-A2E7A4620216}" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ZoomExUpdaterTask{2F0E7216-A2D5-4E4B-A67E-54607E3D3C0F}" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AE2ACCD1-B367-48F7-BA3F-346FA4DD88B4}" => klucz pomyślnie usunięto "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AE2ACCD1-B367-48F7-BA3F-346FA4DD88B4}" => klucz pomyślnie usunięto C:\Windows\System32\Tasks\{BC09892F-C719-47CD-93B2-D1FA9BD9C8BB} => pomyślnie przeniesiono "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BC09892F-C719-47CD-93B2-D1FA9BD9C8BB}" => klucz pomyślnie usunięto "C:\Users\samsung\Downloads\march2014datafiles.zip__15047_i1658826585_il2702870.exe" => ":typelib" ADS nie znaleziono. HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{86A1C3B8-E09F-4FA3-B28E-3D2DC7960532} => Wartość pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{613BFA9B-4795-471E-851E-83B3F7D9E443} => Wartość pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C747F077-82EA-4F27-96CF-0FB15D00EB02} => Wartość pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{63BC66FA-EF83-4A90-B253-1E2983826518} => Wartość pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D902D01E-2D28-4FCE-9DFD-E6CE56875C8A} => Wartość pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8007F4D8-B272-4F63-BC64-96DFC72D7D3C} => Wartość pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{723FD159-30B1-4B51-9712-6885F96B69C6} => Wartość pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1843A4B0-0FA0-4B8D-86E2-4F6DEA395DDC} => Wartość pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{86063E44-8398-475E-B672-1C336C505DEC} => Wartość pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{62FE6BBF-1C1B-48DA-BF0F-DE5AAD2C3690}C:\users\samsung\appdata\roaming\filehunter\pumpa.exe => Wartość pomyślnie usunięto HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6D9D244A-2B8A-4F2B-9BBA-BFC3B6401171}C:\users\samsung\appdata\roaming\filehunter\pumpa.exe => Wartość pomyślnie usunięto EmptyTemp: => 2.1 GB danych tymczasowych Usunięto. System wymagał restartu. ==== Koniec Fixlog 21:47:25 ====