Additional scan result of Farbar Recovery Scan Tool (x86) Version: 18-02-2015 01 Ran by LENOVO at 2015-02-21 15:31:00 Running from C:\Users\LENOVO\Desktop\Pulpit Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Kaspersky Anti-Virus (Enabled - Up to date) {56547CC9-C9B2-849D-8FEF-A496150D6A06} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Kaspersky Anti-Virus (Enabled - Up to date) {ED359D2D-EF88-8B13-B55F-9FE46E8A20BB} FW: Kaspersky Anti-Virus (Enabled) {6E6FFDEC-83DD-85C5-A4B0-0DA3EBDE2D7D} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 9.20 (HKLM\...\7-Zip) (Version: - ) Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated) Adobe Reader X (10.1.13) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.13 - Adobe Systems Incorporated) Centrum obsługi urządzeń z systemem Windows Mobile — aktualizacja sterowników (HKLM\...\{E7044E25-3038-4A76-9064-344AC038043E}) (Version: 6.1.6965.0 - Microsoft Corporation) Centrum obsługi urządzeń z systemem Windows Mobile (HKLM\...\{904CCF62-818D-4675-BC76-D37EB399F917}) (Version: 6.1.6965.0 - Microsoft Corporation) D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden Debugging Tools for Windows (x86) (HKLM\...\{D09605BE-5587-4B0C-86C8-69B5092CB80F}) (Version: 6.12.2.633 - Microsoft Corporation) DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904 - Microsoft) Hidden DLL Suite 2013 (HKLM\...\{885843E7-6CAC-4791-B7BF-1CD516017954}_is1) (Version: - ) FLV Player Packages (HKU\S-1-5-21-1343024091-764733703-839522115-500\...\FLV Player Packages) (Version: - ) <==== ATTENTION Galeria fotografii usługi Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 7.15.10.2039 - Intel Corporation) Intel(R) PRO Network Connections 12.1.12.0 (HKLM\...\{777CA40C-0206-4EF6-A0FC-618BF06BF8D0}) (Version: - Intel) Intel® Active Management Technology (HKLM\...\MESOL) (Version: - Intel Corporation) Interfejs Intel® Management Engine (HKLM\...\HECI) (Version: - Intel Corporation) Java 7 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.450 - Oracle) Java(TM) 6 Update 29 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216029FF}) (Version: 6.0.290 - Oracle) Kaspersky Anti-Virus 6.0 for Windows Workstations (HKLM\...\{8F023021-A7EB-45D3-9269-D65264C81729}) (Version: 6.0.4.1424 - Kaspersky Lab) Klient programu Zarządzanie prawami Windows z dodatkiem Service Pack 2 (HKLM\...\{232B47A4-05BA-415D-B28A-213E4A416047}) (Version: 5.2.95 - Microsoft) LaserJet 1020 series (HKLM\...\HP-LaserJet 1020 series) (Version: - ) Linkey (HKU\S-1-5-21-1343024091-764733703-839522115-500\...\Linkey) (Version: 0.0.0.449 - Aztec Media Inc) <==== ATTENTION Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - ) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft IntelliPoint 6.0 (HKLM\...\{D5A55072-180E-4DE8-BF63-0431F4168078}) (Version: 6.00.236.0 - Microsoft) Microsoft IntelliType Pro 6.0 (HKLM\...\{636AFE0B-2431-4FB3-9CE0-C8A8FAF7CCDF}) (Version: 6.00.236.0 - Microsoft) Microsoft Office Converter Pack (HKLM\...\{6EECB283-E65F-40EF-86D3-D51BF02A8D43}) (Version: 11.0.0.0 - Microsoft Corporation - Office Resource Kit Group) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Outlook Connector (HKLM\...\{95140000-0081-0409-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation) Microsoft Office PowerPoint Viewer 2007 (Polish) (HKLM\...\{95120000-00AF-0415-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Professional 2007 (HKLM\...\PROR) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ Compilers 2010 Standard - enu - x86 (HKLM\...\{370187B9-6964-38D0-851F-6C4898B0C2B1}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Windows Performance Toolkit (HKLM\...\{E7F9E526-2324-437B-A609-E8C5309465CB}) (Version: 4.8.0 - Microsoft Corporation) Microsoft Windows SDK for Windows 7 (7.1) (HKLM\...\SDKSetup_7.1.7600.0.30514) (Version: 7.1.7600.0.30514 - Microsoft Corporation) Microsoft Works 2000 (HKLM\...\{9168BFE2-8888-11D3-AF63-00C04F443448}) (Version: 1.0.0.0000 - Microsoft Corporation) Mozilla Firefox 35.0.1 (x86 pl) (HKLM\...\Mozilla Firefox 35.0.1 (x86 pl)) (Version: 35.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla) MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Obsługa programów Apple (HKLM\...\{A922C4B7-50E0-4787-A94C-59DBF3C65DBE}) (Version: 3.0 - Apple Inc.) OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden Pakiet języka polskiego dla systemu Microsoft .NET Framework 3.0 (HKLM\...\Microsoft .NET Framework 3.0 Polish Language Pack) (Version: - Microsoft Corporation) Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - plk) (Version: - Microsoft Corporation) Podstawowe programy Windows Live (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) Podstawowe programy Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden RealDownloader (Version: 1.3.0 - RealNetworks, Inc.) Hidden RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden Realtek AC'97 Audio Driver Packages (HKU\S-1-5-21-1343024091-764733703-839522115-500\...\Realtek AC'97 Audio Driver Packages) (Version: - ) <==== ATTENTION RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden RegClean wersja 6.21.65.1715 (HKLM\...\RegClean_is1) (Version: 6.21.65.1715 - ) Rescue and Recovery (HKLM\...\{F151F2B3-0C32-44D3-90E2-E639B8024622}) (Version: 4.20.0511.00 - Lenovo Group Limited) Revo Uninstaller Pro 3.0.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.8 - VS Revo Group, Ltd.) Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden Windows Doctor 2.7.9 (HKLM\...\Windows Doctor 2.7.9_is1) (Version: - WindowsDoctor International LLC) Windows Driver Package - AnalogDevices (ADIHdAudAddService) MEDIA (12/02/2008 6.10.01.6540) (HKLM\...\B7F8A25FDE66051546E22AAE1C4FD3D8A3755BB7) (Version: 12/02/2008 6.10.01.6540 - AnalogDevices) Windows Driver Package - Intel (e1express) Net (10/30/2012 9.16.10.0) (HKLM\...\31EDE3F2EC2B7C90F11ECBFC52045BE605F6F046) (Version: 10/30/2012 9.16.10.0 - Intel) Windows Driver Package - Intel (tpm) System (03/26/2008 4.0.1.1074) (HKLM\...\C59C22D0D1714B3D98B6A16FF69F511EA74E73C0) (Version: 03/26/2008 4.0.1.1074 - Intel) Windows Driver Package - Intel Corporation (igfx) Display (01/07/2010 7.15.10.2039) (HKLM\...\C375AF0D5337E403DBA15080E9E58D789B017506) (Version: 01/07/2010 7.15.10.2039 - Intel Corporation) Windows Driver Package - Intel hdc (07/25/2013 9.1.9.1005) (HKLM\...\45E15243FF229D0F06670A5B262CA9C7887085F6) (Version: 07/25/2013 9.1.9.1005 - Intel) Windows Driver Package - Intel System (07/25/2013 9.1.9.1005) (HKLM\...\55FC653506E73D0EF241309C7F5E3A6366568BC1) (Version: 07/25/2013 9.1.9.1005 - Intel) Windows Driver Package - Intel System (07/25/2013 9.1.9.1005) (HKLM\...\B081E57B1455374FB610EEC26F6154A8870B8859) (Version: 07/25/2013 9.1.9.1005 - Intel) Windows Driver Package - Intel USB (07/09/2013 9.1.9.1004) (HKLM\...\0D3177F1E077022671B9E6C22E0EE7CA9A92EDDE) (Version: 07/09/2013 9.1.9.1004 - Intel) Windows Driver Package - Synaptics (SmbDrv) System (07/25/2014 16.2.19.14) (HKLM\...\82FC900FCA04F9EBC3BE3E9660B43D4C0D81BC1B) (Version: 07/25/2014 16.2.19.14 - Synaptics) Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - ) Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - ) WinThruster (HKLM\...\WinThruster_is1) (Version: 1.79 - ) XML Paper Specification Shared Components Pack 1.0 (Version: - Microsoft Corporation) Hidden ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-1003_Classes\CLSID\{095A2EEC-F7FE-42E8-96FB-C20E53081908}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-1003_Classes\CLSID\{0E55CBE1-B06A-49B6-AD8D-9EFAA0160C6F}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-1003_Classes\CLSID\{218D2740-5A50-42A8-AB9F-62FF1B168782}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-1003_Classes\CLSID\{29A96789-9595-4947-BEDB-0FCC776F7DB8}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-1003_Classes\CLSID\{31AC3F11-E5EA-4A85-8A3D-8E095A39C27B}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-1003_Classes\CLSID\{320F0FDB-BE0A-4648-9D18-4A2C3448C007}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-1003_Classes\CLSID\{DB25D157-76D4-41C1-97B5-359E4A4CECEB}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-1003_Classes\CLSID\{dc67367a-8b15-47bc-b7f8-0ba0435a504a}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-1003_Classes\CLSID\{dcedfcbf-c7d1-4b81-a20f-7524d306135e}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-1003_Classes\CLSID\{FF4E22ED-17D0-4D43-AD6F-E53D11FA3C61}\InprocServer32 -> No File Path CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{095A2EEC-F7FE-42E8-96FB-C20E53081908}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.3.21.99\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{0E55CBE1-B06A-49B6-AD8D-9EFAA0160C6F}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.3.21.57\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{218D2740-5A50-42A8-AB9F-62FF1B168782}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.3.21.69\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{29A96789-9595-4947-BEDB-0FCC776F7DB8}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.2.183.23\goopdate.dll No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{31AC3F11-E5EA-4A85-8A3D-8E095A39C27B}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.2.131.27\goopdate.dll No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{320F0FDB-BE0A-4648-9D18-4A2C3448C007}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.3.21.79\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{DB25D157-76D4-41C1-97B5-359E4A4CECEB}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.3.21.65\psuser.dll No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{dc67367a-8b15-47bc-b7f8-0ba0435a504a}\InprocServer32 -> C:\Program Files\Common Files\SYSTEM\MSMAPI\1045\MSNCON32.DLL No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{dcedfcbf-c7d1-4b81-a20f-7524d306135e}\InprocServer32 -> C:\Program Files\Common Files\SYSTEM\MSMAPI\1045\MSNCON32.DLL No File CustomCLSID: HKU\S-1-5-21-1343024091-764733703-839522115-500_Classes\CLSID\{FF4E22ED-17D0-4D43-AD6F-E53D11FA3C61}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.2.183.23\npGoogleOneClick8.dll No File ==================== Restore Points ========================= 17-02-2015 19:38:59 Windows Update 17-02-2015 19:49:08 Windows Update 17-02-2015 20:00:04 Windows Update 17-02-2015 20:13:23 Windows Update 17-02-2015 20:25:54 Windows Update 17-02-2015 20:42:55 Windows Update 17-02-2015 20:56:33 Windows Update 17-02-2015 21:07:35 Windows Update 17-02-2015 21:19:22 Windows Update 17-02-2015 21:26:33 Windows Update 18-02-2015 15:33:37 Driver-auto-backup 18-02-2015 18-02-2015 15:35:16 Instalacja pakietu sterownika urządzenia: Intel Urządzenia systemowe 18-02-2015 15:35:42 Instalacja pakietu sterownika urządzenia: AnalogDevices Kontrolery dźwięku, wideo i gier 18-02-2015 15:36:32 Instalacja pakietu sterownika urządzenia: Intel Karty sieciowe 18-02-2015 15:37:17 Instalacja pakietu sterownika urządzenia: Intel Urządzenia systemowe 18-02-2015 15:37:40 Instalacja pakietu sterownika urządzenia: Intel Kontrolery IDE ATA/ATAPI 18-02-2015 15:38:20 Instalacja pakietu sterownika urządzenia: Synaptics Urządzenia systemowe 18-02-2015 15:38:58 Instalacja pakietu sterownika urządzenia: Intel Kontrolery uniwersalnej magistrali szeregowej 18-02-2015 15:40:05 Instalacja pakietu sterownika urządzenia: Intel Urządzenia systemowe 18-02-2015 15:40:46 Instalacja pakietu sterownika urządzenia: Intel Corporation Karty graficzne 18-02-2015 17:01:26 WinThruster Śr, lut 18, 15 17:01 18-02-2015 17:03:57 Revo Uninstaller Pro's restore point - DownloadFileOpener 18-02-2015 21:26:12 Revo Uninstaller Pro's restore point - Archiwizator WinRAR 19-02-2015 13:01:56 Windows Update 19-02-2015 13:14:18 Windows Update 19-02-2015 22:56:53 Revo Uninstaller Pro's restore point - Revo Uninstaller Pro 3.1.2 19-02-2015 23:18:03 Revo Uninstaller Pro's restore point - CCleaner 19-02-2015 23:20:08 Revo Uninstaller Pro's restore point - Auslogics BoostSpeed 7 19-02-2015 23:23:42 Revo Uninstaller Pro's restore point - Malwarebytes Anti-Malware wersja 2.0.4.1028 19-02-2015 23:25:52 Revo Uninstaller Pro's restore point - Application Verifier 19-02-2015 23:30:22 Revo Uninstaller Pro's restore point - Universal Viewer Pro version 6.4.5.0 20-02-2015 14:53:33 WinThruster Pt, lut 20, 15 14:53 20-02-2015 16:31:27 Revo Uninstaller Pro's restore point - Wondershare Data Recovery(Build 4.7.0.5) 21-02-2015 13:12:37 RegClean Pro So, lut 21, 15 13:12 21-02-2015 14:05:36 Windows Update ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2004-08-04 13:00 - 2004-08-04 13:00 - 00000742 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {040A5A79-76FF-4F41-8FA2-2BD14CD6E57F} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1343024091-764733703-839522115-1003 => C:\Program Files\Real\RealUpgrade\realupgrade.exe Task: {2DD481AC-A9DB-4223-9D43-79BCCD6881EF} - System32\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie => C:\WINDOWS\system32\xp_eos.exe [2014-02-27] (Microsoft Corporation) Task: {4120DB5C-FFF2-4498-8846-857540F8406F} - System32\Tasks\Opera D3 => C:\Program Files\Opera\launcher.exe Task: {5355CED2-5D90-41FD-BD15-4811007C8402} - System32\Tasks\{D302AD42-C8EA-47F0-A252-6DE7B9A5409F} => pcalua.exe -a E:\AUD_allOS_6600_PV_CNXT.exe -d E:\ Task: {5A2ADE94-6FFB-4F48-8D8A-8D5B131A379D} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-12] (Adobe Systems Incorporated) Task: {6072E63B-2468-4AB4-BABC-E25335AF492B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe Task: {695A860B-5B7E-44D3-9B60-4489D59EF6F5} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-1343024091-764733703-839522115-1003 => C:\Program Files\Real\RealUpgrade\realupgrade.exe Task: {6D45578B-05D0-43E1-8AE0-C65FD6A1D604} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1343024091-764733703-839522115-1003 => C:\Program Files\Real\RealUpgrade\realupgrade.exe Task: {A978DD1C-7550-4A35-8ABD-0BFC92E4C31B} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-1343024091-764733703-839522115-1003 => C:\Program Files\Real\RealUpgrade\realupgrade.exe Task: {BB3122C4-5884-4FD0-BA33-F0B13A2CE5FD} - System32\Tasks\LaunchSignup => C:\Program Files\MyPC Backup\Signup Wizard.exe <==== ATTENTION Task: {D81DBAF1-6980-43A8-9447-479C46B1E9ED} - System32\Tasks\Opera D4 => C:\Program Files\Opera\launcher.exe Task: {E82B4FAA-E31B-49B3-8776-6203113A1F52} - System32\Tasks\{66525655-A764-4E05-9D7C-3012B6A9433C} => pcalua.exe -a C:\Windows\system32\BDEADMIN.CPL -c BDE Administrator Task: {FBA448C0-951F-4541-BAFA-4BD1F1C5A590} - System32\Tasks\Opera D2 => C:\Program Files\Opera\launcher.exe Task: {FDC3D6FE-48CF-44C9-A086-5D1F3A024E6E} - System32\Tasks\{6E487667-8BE7-48CB-B64A-5543F75896EF} => pcalua.exe -a "C:\Program Files\FREUNIINSTAL\fun.exe" Task: {FF960D97-2A12-4AB0-BFEC-9B033E7E75EE} - System32\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc => C:\WINDOWS\system32\xp_eos.exe [2014-02-27] (Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job => C:\WINDOWS\system32\xp_eos.exe Task: C:\Windows\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job => C:\WINDOWS\system32\xp_eos.exe Task: C:\Windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1343024091-764733703-839522115-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe Task: C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1343024091-764733703-839522115-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe ==================== Loaded Modules (whitelisted) ============== 2010-03-12 19:29 - 2010-03-12 19:29 - 00026712 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 for Windows Workstations MP4\volenum.ppl 2012-11-29 20:31 - 2012-11-29 20:31 - 00038608 _____ () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe 2007-12-05 17:09 - 2007-12-05 17:09 - 00139264 _____ () C:\Program Files\Lenovo\Rescue and Recovery\CDRecord.dll 2015-02-14 14:39 - 2015-01-23 11:37 - 03925104 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Windows\system32\services:SummaryInformation AlternateDataStreams: C:\Windows\system32\services:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1343024091-764733703-839522115-1003\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\img16.jpg HKU\S-1-5-21-1343024091-764733703-839522115-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\img24.jpg DNS Servers: 192.168.2.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" MSCONFIG\startupreg: GoogleDriveSync => MSCONFIG\startupreg: Mouse Suite 98 Daemon => ICO.EXE MSCONFIG\startupreg: TkBellExe => MSCONFIG\startupreg: VX1000 => C:\Windows\vVX1000.exe ==================== Accounts: ============================= Administrator (S-1-5-21-1343024091-764733703-839522115-500 - Administrator - Enabled) => C:\Users\Administrator ASPNET (S-1-5-21-1343024091-764733703-839522115-1004 - Limited - Enabled) Gość (S-1-5-21-1343024091-764733703-839522115-501 - Limited - Disabled) LENOVO (S-1-5-21-1343024091-764733703-839522115-1003 - Administrator - Enabled) => C:\Users\LENOVO Pomocnik (S-1-5-21-1343024091-764733703-839522115-1000 - Limited - Disabled) SUPPORT_388945a0 (S-1-5-21-1343024091-764733703-839522115-1002 - Limited - Disabled) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (02/21/2015 03:00:07 PM) (Source: EventSystem) (EventID: 4609) (User: ) Description: Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył zły kod powrotny. Wynik HRESULT: 800700b7 z wiersza 458 z d:\longhorn\com\complus\src\events\tier2\eventsystem2.cpp. Skontaktuj się z Pomocą techniczną firmy Microsoft, aby zgłosić ten błąd. Error: (02/21/2015 02:49:02 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (02/21/2015 02:48:14 PM) (Source: Intel(R) AMT) (EventID: 2002) (User: ) Description: [UNS] Failed to subscribe to local Intel(R) AMT. Error: (02/21/2015 02:42:04 PM) (Source: EventSystem) (EventID: 4609) (User: ) Description: Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył zły kod powrotny. Wynik HRESULT: 8000ffff z wiersza 474 z d:\longhorn\com\complus\src\events\tier2\eventsystem2.cpp. Skontaktuj się z Pomocą techniczną firmy Microsoft, aby zgłosić ten błąd. Error: (02/21/2015 02:15:41 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Nie można zaktualizować pozycji na mapie mieszania. Kontekst: aplikacja , wykaz SystemIndex Szczegóły: Urządzenie podłączone do komputera nie działa. (0x8007001f) Error: (02/21/2015 02:15:41 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Nie można zaktualizować pozycji na mapie mieszania. Kontekst: aplikacja , wykaz SystemIndex Szczegóły: Urządzenie podłączone do komputera nie działa. (0x8007001f) Error: (02/21/2015 02:15:41 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Nie można zaktualizować pozycji na mapie mieszania. Kontekst: aplikacja , wykaz SystemIndex Szczegóły: Urządzenie podłączone do komputera nie działa. (0x8007001f) Error: (02/21/2015 02:15:41 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Nie można zaktualizować pozycji na mapie mieszania. Kontekst: aplikacja , wykaz SystemIndex Szczegóły: Urządzenie podłączone do komputera nie działa. (0x8007001f) Error: (02/21/2015 02:15:41 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Nie można zaktualizować pozycji na mapie mieszania. Kontekst: aplikacja , wykaz SystemIndex Szczegóły: Urządzenie podłączone do komputera nie działa. (0x8007001f) Error: (02/21/2015 02:15:41 PM) (Source: Windows Search Service) (EventID: 3013) (User: ) Description: Nie można zaktualizować pozycji na mapie mieszania. Kontekst: aplikacja , wykaz SystemIndex Szczegóły: Urządzenie podłączone do komputera nie działa. (0x8007001f) System errors: ============= Error: (02/21/2015 02:49:03 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: timounter Error: (02/21/2015 02:49:03 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą TVT Scheduler. Error: (02/21/2015 02:49:03 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą TVT Backup Service. Error: (02/21/2015 02:49:03 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą TVT Backup Protection Service. Error: (02/21/2015 02:49:03 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą ThinkVantage Registry Monitor Service. Error: (02/21/2015 02:10:59 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: ZARZĄDZANIE NT) Description: 0x80070020Aktualizacja zabezpieczeń systemu Windows Vista (KB3011780){4C9291BB-D0A6-4F0D-B011-23C67AD96C19}207 Error: (02/21/2015 02:06:39 PM) (Source: Microsoft-Windows-Servicing) (EventID: 4375) (User: LENOVO-A78B26D0) Description: Obsługa systemu Windows nie może ukończyć procesu nadawania pakietowi KB3011780(Security Update) stanu Rozwiązane(Resolved). Error: (02/21/2015 02:06:39 PM) (Source: Microsoft-Windows-Servicing) (EventID: 4375) (User: LENOVO-A78B26D0) Description: Obsługa systemu Windows nie może ukończyć procesu nadawania pakietowi KB3011780(Security Update) stanu Rozwiązane(Resolved). Error: (02/21/2015 02:06:39 PM) (Source: Microsoft-Windows-Servicing) (EventID: 4375) (User: LENOVO-A78B26D0) Description: Obsługa systemu Windows nie może ukończyć procesu nadawania pakietowi KB3011780(Security Update) stanu Rozwiązane(Resolved). Error: (02/21/2015 02:06:39 PM) (Source: Microsoft-Windows-Servicing) (EventID: 4375) (User: LENOVO-A78B26D0) Description: Obsługa systemu Windows nie może ukończyć procesu nadawania pakietowi KB3011780(Security Update) stanu Rozwiązane(Resolved). Microsoft Office Sessions: ========================= Error: (10/13/2014 01:31:05 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6700.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1268 seconds with 600 seconds of active time. This session ended with a crash. CodeIntegrity Errors: =================================== Date: 2015-02-21 15:30:33.720 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\klif.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-21 15:30:33.548 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\klif.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-21 15:30:33.377 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\klif.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-21 15:30:33.205 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\klif.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-21 15:19:49.538 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\klif.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-21 15:19:49.257 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\klif.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-21 15:19:49.054 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\klif.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-21 15:19:48.867 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\klif.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-19 19:39:17.917 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. Date: 2015-02-19 19:39:17.729 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU E6550 @ 2.33GHz Percentage of memory in use: 67% Total physical RAM: 2004.56 MB Available physical RAM: 658.41 MB Total Pagefile: 4254.25 MB Available Pagefile: 2694.84 MB Total Virtual: 2047.88 MB Available Virtual: 1899.88 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:227.64 GB) (Free:68.79 GB) NTFS ==>[Drive with boot components (obtained from BCD)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 232.9 GB) (Disk ID: E945EAAA) Partition 1: (Not Active) - (Size=5.2 GB) - (Type=27) Partition 2: (Active) - (Size=227.6 GB) - (Type=07 NTFS) ==================== End Of Log ============================