Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:12-10-2015 Uruchomiony przez Krzysztof (2015-10-13 21:13:41) Uruchomiony z D:\Service WOLFcom\Odrobaczanie Windows Vista (TM) Business Service Pack 2 (X64) (2012-02-18 20:56:23) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-4186796981-527352600-535301597-500 - Administrator - Disabled) Gość (S-1-5-21-4186796981-527352600-535301597-501 - Limited - Disabled) Krzysztof (S-1-5-21-4186796981-527352600-535301597-1000 - Administrator - Enabled) => C:\Users\Krzysztof ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) 7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version: - ) Acer Crystal Eye webcam Ver:1.1.57.409 (HKLM-x32\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.57.409 - Chicony Electronics Co.,Ltd.) Acer eDataSecurity Management (HKLM-x32\...\{A5633652-3795-4829-BB0B-644F0279E279}) (Version: 3.0.3065 - Egis Inc.) Acer Empowering Technology (HKLM-x32\...\{8F1B6239-FEA0-450A-A950-B05276CE177C}) (Version: 3.0.3010 - Acer Incorporated) Acer ePower Management (HKLM-x32\...\{58E5844B-7CE2-413D-83D1-99294BF6C74F}) (Version: 3.0.3015 - Acer Incorporated) Acer eSettings Management (HKLM-x32\...\{13D85C14-2B85-419F-AC41-C7F21E68B25D}) (Version: 3.0.3011 - Acer Incorporated) Acer System Information (HKLM-x32\...\{72199E33-4F2A-4B7F-8E25-95DDDD50A678}) (Version: 1.0.0 - Acer) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.245 - Adobe Systems Incorporated) Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.235 - Adobe Systems Incorporated) Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated) Adobe Reader X (10.1.15) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AA1000000001}) (Version: 10.1.15 - Adobe Systems Incorporated) Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{04E205D6-88B1-4652-B162-42DF2C3B1228}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}) (Version: - Microsoft) Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{128A36ED-21BE-4547-9FFE-5B85AEC735DD}) (Version: - Microsoft) Angry Birds (HKLM-x32\...\{910D3FB9-E341-4DD9-B52A-3B3C0C340AF6}) (Version: 1.5.3 - Rovio) AP Tuner 3.08 (HKLM-x32\...\AP Tuner 3.08) (Version: - ) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Application Compatibility Toolkit (Version: 8.59.25584 - Microsoft) Hidden Ashampoo Burning Studio Elements 10.0.9 (HKLM-x32\...\Ashampoo Burning Studio Elements_is1) (Version: 3.1.1 - Ashampoo GmbH & Co. KG) Aspell Polish Dictionary-0.50-2 (HKLM-x32\...\Aspell Polish Dictionary_is1) (Version: - GNU) Assessment and Deployment Kit (HKLM-x32\...\{fc46d1b2-9557-4c1f-baac-04af4d2db7e4}) (Version: 8.59.25584 - Microsoft Corporation) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.13.202 - Avira Operations GmbH & Co. KG) Avira Launcher (HKLM-x32\...\{5dfbeba9-9f22-463d-8c95-c861911810a2}) (Version: 1.1.47.11018 - Avira Operations GmbH & Co. KG) Avira Launcher (x32 Version: 1.1.47.11018 - Avira Operations GmbH & Co. KG) Hidden Bullzip PDF Printer 7.2.0.1319 (HKLM\...\Bullzip PDF Printer_is1) (Version: 7.2.0.1319 - Bullzip) CDex extraction audio (HKLM-x32\...\CDex) (Version: - ) Core Temp 1.0 RC4 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu) Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform) DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.93 - DivX, LLC) Easy Thumbnails (Remove only) (HKLM-x32\...\Easy Thumbnails_is1) (Version: 3.0 - Fookes Software) e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 7.0.2 - Ministerstwo Finansow) e-Deklaracje Desktop (x32 Version: 7.0.2 - Ministerstwo Finansow) Hidden GlobeTrotter Connect (HKLM\...\{5010191D-C5AA-466B-BB65-17E4D8C84C8F}) (Version: 2.3.0.750 - Option NV) GNU Aspell 0.50-3 (HKLM-x32\...\GNU Aspell_is1) (Version: - GNU) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.) Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden Google+ Auto Backup (HKU\.DEFAULT\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.) HDAUDIO Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118) (Version: - ) Intel(R) Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2869 - Intel Corporation) Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) Kits Configuration Installer (x32 Version: 8.59.25584 - Microsoft) Hidden Kogama Launcher for WWW (HKU\S-1-5-21-4186796981-527352600-535301597-1000\...\KogamaLauncherWWW) (Version: 1.0.0.90 - Multiverse ApS) Lame Front-End 1.8 (HKLM-x32\...\{0908334B-6065-48A1-BD91-EC7A03DF77CE}_is1) (Version: 1.8 - Jacek Pazera) Launch Manager (HKLM-x32\...\LManager) (Version: - ) Logomocja-Imagine Demo wersja 2.0.0.408 (HKLM-x32\...\Logomocja-Imagine Demo_is1) (Version: - ) Malwarebytes Anti-Malware wersja 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Money Plus (HKLM-x32\...\Money2008b) (Version: 17 - Microsoft) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0415-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office PowerPoint Viewer 2007 (Polish) (HKLM-x32\...\{95120000-00AF-0415-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850415-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) MioMore Desktop 7.50 (HKLM-x32\...\{A2804FE8-4101-48a0-AE1A-575B99014BF4}-Mio-7.50) (Version: 7.50.0110.129 - Mio Technology) Mozilla Firefox 41.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 41.0.1 (x86 pl)) (Version: 41.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.1.5750 - Mozilla) MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project) MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden MSXML 4.0 SP2 (KB927978) (HKLM-x32\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MWSnap 3 (HKLM-x32\...\MWSnap 3) (Version: 3.0.0.74 - Mirek Wojtowicz) Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia) Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.54.0 - Nokia) Nokia Suite (x32 Version: 3.8.54.0 - Nokia) Hidden Notepad++ (HKLM-x32\...\Notepad++) (Version: 5.9.8 - ) O2Micro Flash Memory Card Reader Driver (x64) (HKLM\...\{E3015C78-C196-4039-A279-9959940083DE}) (Version: 3.24.1 - O2Micro) Obsługa programów Apple (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Oprogramowanie Intel(R) PROSet/Wireless WiFi (HKLM\...\{C8005A7B-9638-41DD-B83B-AF277754E211}) (Version: 14.03.0000 - Intel Corporation) Paint.NET v3.5.11 (HKLM\...\{72EF03F5-0507-4861-9A44-D99FD4C41418}) (Version: 3.61.0 - dotPDN LLC) Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - plk) (Version: - Microsoft Corporation) Pakiet sterowników systemu Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia) Pazera Free Audio Extractor 1.4 (HKLM-x32\...\{6899C238-3E4A-4A04-B251-A0C9EDC7EDBC}_is1) (Version: 1.4 - Pazera Jacek) PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) PIT Projekt 2012 (HKLM-x32\...\{C3515B09-1162-43E2-A9CC-0B52A8D9460D}}_is1) (Version: 1.2.0 - GP SOFT) QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5628 - Realtek Semiconductor Corp.) RS Dachy FinishProfiles 4.56 (HKLM-x32\...\RSDachy_FinishProfilesPD_is1) (Version: - Zasoby.pl) RS Dachy PRODUCENT FlorianCentrum 4.46 (HKLM-x32\...\RSDachy_FlorianCentrum_is1) (Version: - Zasoby.pl) Samsung ML-1640 Series (HKLM-x32\...\Samsung ML-1640 Series) (Version: - Samsung Electronics CO.,LTD) Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.) SPBA 5.8 (HKLM\...\{ECCD28B2-8798-4D16-8126-625D728294A1}) (Version: 5.8.2.4218 - UPEK Inc.) Streamripper (Remove only) (HKLM-x32\...\Streamripper) (Version: - ) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.0.2.0 - Synaptics) Szkoła podstawowa klasa 5 - Tajemnice przyrody (HKLM-x32\...\Szkoła podstawowa klasa 5 - Tajemnice przyrody) (Version: - ) Toolkit Documentation (x32 Version: 8.59.25584 - Microsoft) Hidden Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH) Unity Web Player (HKU\S-1-5-21-4186796981-527352600-535301597-1000\...\UnityWebPlayer) (Version: 5.0.3f2 - Unity Technologies ApS) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) WIDCOMM Bluetooth Software 6.0.1.6300 (HKLM\...\{03D1988F-469F-4843-8E6E-E5FE9D17889D}) (Version: 6.0.1.6300 - Broadcom Corporation) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) WinRAR 4.01 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH) Wtyczka e-Deklaracje (HKLM-x32\...\{81BF6353-3C5B-4E6E-A566-7E162A00BF72}_is1) (Version: - Ministerstwo Finansów) Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-4186796981-527352600-535301597-1000_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\Krzysztof\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) ==================== Punkty Przywracania systemu ========================= UWAGA: Przywracanie systemu jest wyłączone ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2015-04-18 22:22 - 2006-09-18 23:37 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0BF53B1E-7F08-487F-9CA4-52D38672A5AA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {1A27DA90-AE2E-4CC4-950D-EB98FA385B7C} - System32\Tasks\{DD909725-8D52-4A80-93D0-A799B7424D8D} => pcalua.exe -a C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_13_0_0_182_Plugin.exe -c -maintain plugin Task: {2D8328D5-DC44-4FAF-96A1-D66CBDA531A4} - System32\Tasks\{15F4D619-C06A-4B08-83F4-712F29BB7525} => pcalua.exe -a D:\Krzysztof\Pulpit\MinecraftZyczu.exe -d D:\Krzysztof\Pulpit Task: {471E903A-86C0-4E0E-B6BB-679B3894BE2C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-18UA => C:\Windows\system32\config\systemprofile\AppData\Local\Google\Update\GoogleUpdate.exe Task: {50CE6FCB-272B-48BC-8CB5-BB00FABF32A8} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe Task: {576E56FC-78FA-4445-99C9-9022E216447E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {9166FAF4-3F47-4DE8-B1FA-35C3692E5A3C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4186796981-527352600-535301597-1000UA => C:\Users\Krzysztof\AppData\Local\Google\Update\GoogleUpdate.exe Task: {9397E38D-7685-49E8-BD1B-31E50A945788} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-22] (Adobe Systems Incorporated) Task: {979786C1-2BDC-48B9-B78E-CE6B2FD7DF6B} - System32\Tasks\GoogleUpdateTaskMachineCore1d040767bda9890 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {D5FBA11E-FD49-44C9-B1F9-CFDB2A26F5F5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-18Core => C:\Windows\system32\config\systemprofile\AppData\Local\Google\Update\GoogleUpdate.exe Task: {D8B00E05-C4ED-45F1-90B1-408BC5D23C38} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4186796981-527352600-535301597-1000Core => C:\Users\Krzysztof\AppData\Local\Google\Update\GoogleUpdate.exe Task: {E2B92E0C-53C0-49C6-9237-23141076927F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {F3B5F3E6-1134-496E-8224-98324C9DDB9E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {F67963B3-23D2-4A71-9E38-AB66C2D8B5A6} - System32\Tasks\GoogleUpdateTaskMachineUA1d040767c6413e0 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d040767bda9890.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d040767c6413e0.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-18Core.job => C:\Windows\system32\config\systemprofile\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-18UA.job => C:\Windows\system32\config\systemprofile\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186796981-527352600-535301597-1000Core.job => C:\Users\Krzysztof\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4186796981-527352600-535301597-1000UA.job => C:\Users\Krzysztof\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Załadowane moduły (filtrowane) ============== 2011-10-24 15:14 - 2011-10-24 15:14 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll 2012-02-24 17:34 - 2008-01-11 07:19 - 00022016 _____ () C:\Windows\System32\ssp2ml6.dll 2012-02-19 01:25 - 2007-10-23 11:56 - 00200704 _____ () C:\Windows\PLFSetI.exe 2007-12-13 04:08 - 2007-12-13 04:08 - 01401856 _____ () C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\LIBEAY32.dll 2008-07-29 18:53 - 2008-07-29 18:53 - 00382000 _____ () C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x64\ShowErrMsg.dll 2015-09-22 14:58 - 2015-04-28 15:22 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll 2015-09-22 14:58 - 2014-05-19 17:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\TEMP:9324F490 ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-4186796981-527352600-535301597-1000\...\mks.com.pl -> hxxp://mks.com.pl ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-4186796981-527352600-535301597-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Krzysztof\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: ) Zapora systemu Windows - funkcja włączona. ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\Services: AntiVirMailService => 2 MSCONFIG\Services: AntiVirSchedulerService => 2 MSCONFIG\Services: AntiVirService => 2 MSCONFIG\Services: AntiVirWebService => 2 MSCONFIG\Services: Fax => 3 ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SLSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\slsvc.exe FirewallRules: [SLSVC-In-TCP] => (Allow) %SystemRoot%\system32\slsvc.exe FirewallRules: [{72814860-5504-4149-AF34-6FE5446971A1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{E9D96816-9D6C-4F7A-9797-94F96965EF0C}] => (Allow) LPort=80 FirewallRules: [{536438A1-6B0B-438C-8B2C-6E2B42B6F4AE}] => (Allow) LPort=80 FirewallRules: [{BFB1538C-2ECB-47E5-BB82-7843520D434A}] => (Allow) LPort=80 FirewallRules: [{C363E44E-242B-49A3-8157-715E77F9314D}] => (Allow) C:\Users\Krzysztof\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{4BB2B2E1-CFB0-412F-93D8-A954B3AA71D2}] => (Allow) C:\Users\Krzysztof\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{A6076B19-EDC4-4C01-8A66-68A55479E1D3}] => (Allow) C:\Users\Krzysztof\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{17D04164-A354-47FF-9BFB-E6D27DB14F5F}] => (Allow) C:\Users\Krzysztof\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{69F75BB9-BDC7-480B-B2EB-3FCC4EB90284}] => (Allow) C:\Users\Krzysztof\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{4BE56094-039A-437C-B301-A33A0DC10150}] => (Allow) C:\Users\Krzysztof\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [TCP Query User{1975C8A4-F1F1-4DAD-8804-B206222BA3F9}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{B39D4C2E-76B0-4C37-A433-C839B6FF9AA6}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [TCP Query User{69147513-DB5F-480B-A7D1-76FF47C54C6A}C:\program files\java\jre7\launch4j-tmp\minecraft zyczu.exe] => (Block) C:\program files\java\jre7\launch4j-tmp\minecraft zyczu.exe FirewallRules: [UDP Query User{5AAE3621-8693-447F-A516-75648AC593CD}C:\program files\java\jre7\launch4j-tmp\minecraft zyczu.exe] => (Block) C:\program files\java\jre7\launch4j-tmp\minecraft zyczu.exe FirewallRules: [{DC274FB7-6EB6-4787-B076-B8CC997B2233}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [{83AFB6EC-6D2B-4847-A95F-74940FF33FF7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{075462A1-3085-4023-8B24-B4E6723F1971}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{04D1E602-A7CC-4C2E-B93F-79EDBC935394}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{1837B43F-ABCA-4954-999B-AA6344607376}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [TCP Query User{EFBF0396-CF8E-4924-AED8-A78240E5B7F0}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\minecraftzyczu.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\minecraftzyczu.exe FirewallRules: [UDP Query User{C1A0D904-FDDC-408F-8368-E939221CE220}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\minecraftzyczu.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\minecraftzyczu.exe FirewallRules: [{9C85E9A3-3692-4C40-BB50-13DFA41E4EAD}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{3A2AA3EA-217B-4484-8916-C6A9233E07A5}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{7B690846-D3B0-46FE-BAFB-6BB52CD0CCD2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (10/13/2015 09:14:40 PM) (Source: FirebirdGuardianSTAHLBERG) (EventID: 212) (User: ) Description: The registry information is missing. Please run the Firebird Configuration Utilitrdian was unable to launch the server thread. errno : 1053 Error: (10/13/2015 09:14:40 PM) (Source: Firebird SQL Server) (EventID: 0) (User: ) Description: Missing configuration file: C:\Program Files (x86)\ZasobyPL\Firebird2_1_STAHLBERG\firebird.conf, exiting Error: (10/13/2015 09:14:40 PM) (Source: FirebirdGuardianSTAHLBERG) (EventID: 212) (User: ) Description: The registry information is missing. Please run the Firebird Configuration Utilitrdian was unable to launch the server thread. errno : 1053 Error: (10/13/2015 09:14:40 PM) (Source: Firebird SQL Server) (EventID: 0) (User: ) Description: Missing configuration file: C:\Program Files (x86)\ZasobyPL\Firebird2_1_STAHLBERG\firebird.conf, exiting Error: (10/13/2015 09:14:39 PM) (Source: FirebirdGuardianSTAHLBERG) (EventID: 212) (User: ) Description: The registry information is missing. Please run the Firebird Configuration Utilitrdian was unable to launch the server thread. errno : 1053 Error: (10/13/2015 09:14:39 PM) (Source: Firebird SQL Server) (EventID: 0) (User: ) Description: Missing configuration file: C:\Program Files (x86)\ZasobyPL\Firebird2_1_STAHLBERG\firebird.conf, exiting Error: (10/13/2015 09:14:39 PM) (Source: FirebirdGuardianSTAHLBERG) (EventID: 212) (User: ) Description: The registry information is missing. Please run the Firebird Configuration Utilitrdian was unable to launch the server thread. errno : 1053 Error: (10/13/2015 09:14:39 PM) (Source: Firebird SQL Server) (EventID: 0) (User: ) Description: Missing configuration file: C:\Program Files (x86)\ZasobyPL\Firebird2_1_STAHLBERG\firebird.conf, exiting Error: (10/13/2015 09:14:39 PM) (Source: FirebirdGuardianSTAHLBERG) (EventID: 212) (User: ) Description: The registry information is missing. Please run the Firebird Configuration Utilitrdian was unable to launch the server thread. errno : 1053 Error: (10/13/2015 09:14:39 PM) (Source: Firebird SQL Server) (EventID: 0) (User: ) Description: Missing configuration file: C:\Program Files (x86)\ZasobyPL\Firebird2_1_STAHLBERG\firebird.conf, exiting Dziennik System: ============= Error: (10/13/2015 09:14:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Firebird Guardian - STAHLBERG101Uruchom usługę ponownie Error: (10/13/2015 09:14:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Firebird Server - STAHLBERG%%1053 Error: (10/13/2015 09:14:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: 30000Firebird Server - STAHLBERG Error: (10/13/2015 09:14:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Firebird Guardian - STAHLBERG101Uruchom usługę ponownie Error: (10/13/2015 09:14:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Firebird Server - STAHLBERG%%1053 Error: (10/13/2015 09:14:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: 30000Firebird Server - STAHLBERG Error: (10/13/2015 09:14:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Firebird Guardian - STAHLBERG101Uruchom usługę ponownie Error: (10/13/2015 09:14:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Firebird Server - STAHLBERG%%1053 Error: (10/13/2015 09:14:39 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: 30000Firebird Server - STAHLBERG Error: (10/13/2015 09:14:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Firebird Guardian - STAHLBERG101Uruchom usługę ponownie CodeIntegrity: =================================== Date: 2015-10-13 21:10:19.053 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2015-10-13 21:10:18.679 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2015-10-13 21:10:18.304 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2015-10-13 21:10:17.961 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2015-10-13 21:10:16.557 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2015-10-13 21:10:16.198 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2015-10-13 21:10:15.824 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2015-10-13 21:10:15.481 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system. Date: 2015-10-13 21:04:16.605 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2015-10-13 20:50:19.956 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM)2 Duo CPU T5670 @ 1.80GHz Procent pamięci w użyciu: 95% Całkowita pamięć fizyczna: 1976.06 MB Dostępna pamięć fizyczna: 85.5 MB Całkowita pamięć wirtualna: 4195.37 MB Dostępna pamięć wirtualna: 1482.31 MB ==================== Dyski ================================ Drive c: (System) (Fixed) (Total:146.95 GB) (Free:21.44 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: (Data) (Fixed) (Total:85.94 GB) (Free:7.52 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 232.9 GB) (Disk ID: 7BDBA1D2) Partition 1: (Active) - (Size=146.9 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=85.9 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================