Rezultat naprawy Farbar Recovery Scan Tool (x64) Wersja:05-03-2016 01 Uruchomiony przez M (2016-04-10 17:15:27) Run:3 Uruchomiony z C:\Users\M\Downloads Załadowane profile: M (Dostępne profile: UpdatusUser & M) Tryb startu: Normal ============================================== fixlist - zawartość: ***************** CloseProcesses: HKU\S-1-5-21-4228095435-3539589198-294085663-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=9AB61A67B090FA81&affID=119357&tt=240913_238&tsp=5016 SearchScopes: HKU\S-1-5-21-4228095435-3539589198-294085663-1002 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=9AB61A67B090FA81&affID=119357&tt=240913_238&tsp=5016 SearchScopes: HKU\S-1-5-21-4228095435-3539589198-294085663-1002 -> {60590C88-1622-486E-B747-262962D8010E} URL = BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> Brak pliku HKLM\...\Run: [HotKeysCmds] => "C:\WINDOWS\system32\hkcmd.exe" HKLM\...\Run: [Persistence] => "C:\WINDOWS\system32\igfxpers.exe" HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot => "AlternateShell"="" Task: {0173BA3A-62CA-4CE4-8B68-FA41A70D014C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Brak pliku <==== UWAGA Task: {022446F3-F44D-49B6-B64E-2930990CDD3D} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Brak pliku <==== UWAGA Task: {099DC917-FCFF-4010-9149-3AE2D2A1F2CC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Brak pliku <==== UWAGA Task: {0F8BF956-42B3-434A-920D-C4005B8A0E70} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Brak pliku <==== UWAGA Task: {2E0EEE15-74FA-49C2-936F-8846C8DDB0B5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Brak pliku <==== UWAGA Task: {313CC494-4308-4EAE-A7C7-0A82FB7A6F26} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe Task: {3238624B-FF69-47B2-AD6C-2ED6B15331FD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Brak pliku <==== UWAGA Task: {3514D013-2EE0-449D-9D13-D3EA3B1E096F} - System32\Tasks\{77E25B86-A7DB-4F2B-AEE9-B7DFD207E190} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.0.0.102&LastError=12007 Task: {41D9D908-59C9-4DBE-A804-C40FC9168477} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Brak pliku <==== UWAGA Task: {49EB086F-D186-4DE0-9E25-636C892335DB} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Brak pliku <==== UWAGA Task: {5CF4E911-9E21-4B33-8ADF-D298121AAC2C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Brak pliku <==== UWAGA Task: {758FA601-1399-4AD2-B5E6-B2FBD949DB5C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Brak pliku <==== UWAGA Task: {7FBBAD64-06D1-444B-ADB1-D5018F7CB5D9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Brak pliku <==== UWAGA Task: {868F374A-109D-4319-AA2D-04ED6F636B2A} - System32\Tasks\AVG_SYS_TASK_0216piz_DELETE => C:\ProgramData\Avg_Update_0216piz\AVG-Secure-Search-Update_0216piz.exe [2016-02-16] () Task: {8F584FFE-D25B-47D8-84AE-3E5D39BCF09B} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Brak pliku <==== UWAGA Task: {A47527C4-AA50-4E5A-95CA-942F810215C8} - \Program aktualizacji online firmy Adobe. -> Brak pliku <==== UWAGA Task: {A97D287B-7F35-4286-B695-9480E901C595} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Brak pliku <==== UWAGA Task: {AD9F89CA-388B-4640-AA02-10A08993C9E7} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {B3094D41-2DC4-4FD0-9339-59B0292A3282} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe Task: {BA50F2BB-DB69-4C51-8A8B-C44E001976D5} - System32\Tasks\{E64E5FCE-FD12-4B20-B0ED-CC381AB52BBE} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.1.0.105&LastError=404 RemoveDirectory: C:\ProgramData\DSearchLink DeleteKey: HKCU\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I DeleteKey: HKCU\Software\dobreprogramy DeleteKey: HKLM\SOFTWARE\Mozilla DeleteKey: HKLM\SOFTWARE\MozillaPlugins DeleteKey: HKLM\SOFTWARE\Wow6432Node\Mozilla DeleteKey: HKLM\SOFTWARE\Wow6432Node\MozillaPlugins Reg: reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 /v "Adobe Reader Speed Launcher" /f Reg: reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 /v SunJavaUpdateSched /f EmptyTemp: ***************** Procesy zostały pomyślnie zamknięte. HKU\S-1-5-21-4228095435-3539589198-294085663-1002\Software\Microsoft\Internet Explorer\Main\\Start Page => Wartość pomyślnie przywrócono HKU\S-1-5-21-4228095435-3539589198-294085663-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => klucz nie znaleziono. HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} => klucz nie znaleziono. HKU\S-1-5-21-4228095435-3539589198-294085663-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{60590C88-1622-486E-B747-262962D8010E} => klucz nie znaleziono. HKCR\CLSID\{60590C88-1622-486E-B747-262962D8010E} => klucz nie znaleziono. HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C} => klucz nie znaleziono. HKCR\Wow6432Node\CLSID\{6D53EC84-6AAE-4787-AEEE-F4628F01010C} => klucz nie znaleziono. HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\HotKeysCmds => Wartość nie znaleziono. HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Persistence => Wartość nie znaleziono. HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\BtvStack => Wartość nie znaleziono. HKLM\System\CurrentControlSet\Control\SafeBoot\\Default => Wartość pomyślnie przywrócono HKLM\System\CurrentControlSet\Control\SafeBoot\\AlternateShell => Wartość pomyślnie przywrócono HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0173BA3A-62CA-4CE4-8B68-FA41A70D014C} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{022446F3-F44D-49B6-B64E-2930990CDD3D} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{099DC917-FCFF-4010-9149-3AE2D2A1F2CC} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F8BF956-42B3-434A-920D-C4005B8A0E70} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2E0EEE15-74FA-49C2-936F-8846C8DDB0B5} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{313CC494-4308-4EAE-A7C7-0A82FB7A6F26} => klucz nie znaleziono. C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask => nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CreateChoiceProcessTask => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3238624B-FF69-47B2-AD6C-2ED6B15331FD} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3514D013-2EE0-449D-9D13-D3EA3B1E096F} => klucz nie znaleziono. C:\WINDOWS\System32\Tasks\{77E25B86-A7DB-4F2B-AEE9-B7DFD207E190} => nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{77E25B86-A7DB-4F2B-AEE9-B7DFD207E190} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{41D9D908-59C9-4DBE-A804-C40FC9168477} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{49EB086F-D186-4DE0-9E25-636C892335DB} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5CF4E911-9E21-4B33-8ADF-D298121AAC2C} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{758FA601-1399-4AD2-B5E6-B2FBD949DB5C} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FBBAD64-06D1-444B-ADB1-D5018F7CB5D9} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{868F374A-109D-4319-AA2D-04ED6F636B2A} => klucz nie znaleziono. C:\WINDOWS\System32\Tasks\AVG_SYS_TASK_0216piz_DELETE => nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVG_SYS_TASK_0216piz_DELETE => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8F584FFE-D25B-47D8-84AE-3E5D39BCF09B} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A47527C4-AA50-4E5A-95CA-942F810215C8} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Program aktualizacji online firmy Adobe. => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A97D287B-7F35-4286-B695-9480E901C595} => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD9F89CA-388B-4640-AA02-10A08993C9E7} => klucz nie znaleziono. C:\WINDOWS\System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Office\Office 15 Subscription Heartbeat => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B3094D41-2DC4-4FD0-9339-59B0292A3282} => klucz nie znaleziono. C:\WINDOWS\System32\Tasks\SAgent => nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SAgent => klucz nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BA50F2BB-DB69-4C51-8A8B-C44E001976D5} => klucz nie znaleziono. C:\WINDOWS\System32\Tasks\{E64E5FCE-FD12-4B20-B0ED-CC381AB52BBE} => nie znaleziono. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E64E5FCE-FD12-4B20-B0ED-CC381AB52BBE} => klucz nie znaleziono. "C:\ProgramData\DSearchLink" => nie znaleziono. HKCU\Software\1Q1F1S1C1P1E1C1F1N1C1T1H2UtF1E1I => klucz nie znaleziono. HKCU\Software\dobreprogramy => klucz nie znaleziono. HKLM\SOFTWARE\Mozilla => klucz nie znaleziono. HKLM\SOFTWARE\MozillaPlugins => klucz nie znaleziono. HKLM\SOFTWARE\Wow6432Node\Mozilla => klucz nie znaleziono. HKLM\SOFTWARE\Wow6432Node\MozillaPlugins => klucz nie znaleziono. ========= reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 /v "Adobe Reader Speed Launcher" /f ========= ERROR: The system was unable to find the specified registry key or value. ========= Koniec Reg: ========= ========= reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 /v SunJavaUpdateSched /f ========= ERROR: The system was unable to find the specified registry key or value. ========= Koniec Reg: ========= EmptyTemp: => 21.5 MB danych tymczasowych Usunięto. System wymagał restartu. ==== Koniec Fixlog 17:32:38 ====