Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x86) Wersja:10-04-2016 Uruchomiony przez Łukasz (2016-04-10 23:48:42) Uruchomiony z D:\Pobrane Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2009-11-16 19:45:26) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-604524677-2708395862-3557633927-500 - Administrator - Disabled) => C:\Users\Administrator.lukasz Gość (S-1-5-21-604524677-2708395862-3557633927-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-604524677-2708395862-3557633927-1002 - Limited - Enabled) StanczykFoto (S-1-5-21-604524677-2708395862-3557633927-1006 - Administrator - Enabled) => C:\Users\StanczykFoto Łukasz (S-1-5-21-604524677-2708395862-3557633927-1001 - Administrator - Enabled) => C:\Users\Łukasz ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Ochrona komputera (Enabled - Up to date) {15414183-282E-D62C-CA37-EF24860A2F17} AS: Ochrona komputera (Enabled - Up to date) {AE20A067-0E14-D9A2-F087-D456FD8D65AA} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Flash Player 21 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{B448BC74-1CB7-7A57-3313-5E075AFB413E}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.) AML Free Registry Cleaner 4.25 (HKLM\...\{315F5FFC-1A5C-4A2A-B8E7-1C5B1174C198}_is1) (Version: - AML SOFT, Inc.) Apple Application Support (32-bit) (HKLM\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.) Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Atheros Client Installation Program (HKLM\...\{D1434266-0486-4469-B338-A60082CC04E1}) (Version: 1.0.1.0805 - Atheros) BatteryLifeExtender (HKLM\...\{853F8A41-A3C9-43FA-87FA-1AE74FC6F3F7}) (Version: 1.0.1 - Samsung) Bezpieczeństwo rodzinne usługi Windows Live (Version: 14.0.8093.805 - Microsoft Corporation) Hidden Business Contact Manager z dodatkiem SP2 dla programu Outlook 2007 (HKLM\...\Business Contact Manager) (Version: 3.0.8619.1 - Microsoft Corporation) Capture NX-D (HKLM\...\{FBA8B592-5053-4F25-8333-5F42940E1BC1}) (Version: 1.3.0 - Nikon Corporation) CCleaner Professional v4.07.4369 FULL (HKLM\...\CCleaner Professional v4.07.4369 FULL) (Version: v4.07.4369 FULL - CCleaner) ChargeableUSB (HKLM\...\{92D50865-FC60-4EA8-BA7A-5581B0D13EFB}) (Version: 1.0.0.0 - SAMSUNG) Computer Security 14.121.104.0 (release) (Version: 14.121.104.0 - F-Secure Corporation) Hidden CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.2907 - CyberLink Corp.) Distortion Control Data (HKLM\...\{B08B4896-886C-4644-8664-BBA4CE99D318}) (Version: 1.00.0000 - Nikon Corporation) DivX Setup (HKLM\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC) Easy Display Manager (HKLM\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 3.0 - Samsung Electronics Co., Ltd.) Easy Network Manager (HKLM\...\{B660E0D0-A8CB-45A7-96FB-93E8C915A0B2}) (Version: 4.2.4 - Samsung) Easy SpeedUp Manager (HKLM\...\{EF367AA4-070B-493C-9575-85BE59D789C9}) (Version: 3.0.0.4 - Samsung Electronics Co.,Ltd.) EasyBatteryManager (HKLM\...\{178EE5F4-0F86-4BF0-A0D1-9790AFF409D1}) (Version: 4.0.0.2 - Samsung) e-Deklaracje Desktop (HKLM\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 8.0.7 - Ministerstwo Finansow) e-Deklaracje Desktop (Version: 8.0.7 - Ministerstwo Finansow) Hidden ffdshow v1.1.4399 [2012-03-22] (HKLM\...\ffdshow_is1) (Version: 1.1.4399.0 - ) F-Secure CCF Reputation (Version: 2.0.1337.0 - F-Secure) Hidden F-Secure CCF Scanning 1.51.112.309 (release) (Version: 1.51.112.309 - F-Secure Corporation) Hidden F-Secure Network CCF 1.03.102 (Version: 1.03.102 - F-Secure Corporation) Hidden F-Secure SafeSearch 1.03.207.0 (release) (Version: 1.03.207.0 - F-Secure Corporation) Hidden Galeria fotografii usługi Windows Live (Version: 14.0.8081.709 - Microsoft Corporation) Hidden Image Signature 1.5.1 (HKLM\...\Image Signature_is1) (Version: - Bartłomiej Baron) Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation) IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.38 - Irfan Skiljan) iTunes (HKLM\...\{2C741651-87E0-4479-9703-6DD0D7988B84}) (Version: 12.3.2.35 - Apple Inc.) Junk Mail filter update (Version: 14.0.8089.726 - Microsoft Corporation) Hidden LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - ) LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.97 - LSI Corporation) Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 10.70.3.3 - Marvell) Metric Collection SDK 35 (Version: 1.2.0010.00 - Lenovo Group Limited) Hidden Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server Native Client (HKLM\...\{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft SQL Server VSS Writer (HKLM\...\{E7084B89-69E0-46B3-A118-8F99D06988CD}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Mobile Broadband HL Service (HKLM\...\Mobile Broadband HL Service) (Version: 22.001.26.02.03 - Huawei Technologies Co.,Ltd) Mozilla Firefox 45.0.1 (x86 pl) (HKLM\...\Mozilla Firefox 45.0.1 (x86 pl)) (Version: 45.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 45.0.1 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Namuga 1.3M Webcam (HKLM\...\{71A51B59-E7D3-11DB-A386-005056C00008}) (Version: 1.00.0000 - Vimicro Corporation) Narzędzie do przekazywania usługi Windows Live (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Nikon Message Center 2 (HKLM\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.2.0 - Nikon Corporation) Online Safety 2.115.2786.1676 (Version: 2.115.2786.1676 - F-Secure Corporation) Hidden OpenOffice.org 3.4.1 (HKLM\...\{18192D3F-5537-4560-AD89-D695F72AF91D}) (Version: 3.41.9593 - Apache Software Foundation) Pakiet Bezpieczeństwa UPC (HKLM\...\F-Secure ServiceEnabler 46267) (Version: 2.21.286.0 - F-Secure Corporation) Pakiet Bezpieczeństwa UPC (Version: 2.21.286.0 - F-Secure Corporation) Hidden Picture Control Utility (HKLM\...\{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.4.11 - Nikon) Picture Control Utility 2 (HKLM\...\{4946D03F-421F-480D-96C9-D6CF90640D33}) (Version: 2.0.2 - Nikon) Poczta usługi Windows Live (Version: 14.0.8089.0726 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation) Podstawowe programy Windows Live (Version: 14.0.8089.726 - Microsoft Corporation) Hidden Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5919 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Software (HKLM\...\{F2BC3383-F000-410C-A038-3846ADBE8D90}) (Version: 1.01.0088 - REALTEK Semiconductor Corp.) Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) Samsung Recovery Solution 4 (HKLM\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 4.0.0.3 - Samsung) Samsung Support Center (HKLM\...\{4D2121FE-5CCC-4D47-B3A0-BF56045A5099}) (Version: 1.0.1 - Samsung) Samsung Update Plus (HKLM\...\{D3F2FAA5-FEC4-42AA-9ABA-1F763919A2B5}) (Version: 2.0 - Samsung Electronics Co., Ltd.) Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation) Skype™ 7.18 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.4.12 - Synaptics Incorporated) User Guide (HKLM\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.0 - ) VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN) Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) WinRAR 4.20 (32-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) Xvid Video Codec (HKLM\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1493DAD3-A907-4D3F-B011-8D88A126E820} - System32\Tasks\EasyBatteryManager => C:\Program Files\Samsung\EasyBatteryManager\EasyBatteryMgr4.exe [2009-08-01] (SAMSUNG Electronics co., LTD.) Task: {186211EC-E92C-4CBD-914C-CF4781295BC6} - System32\Tasks\{D3166F84-2C6D-43C7-99F6-31D4994DFA0A} => pcalua.exe -a "C:\Program Files\Nikon\ViewNX 2\Nikon Movie Editor\UninstLauncher.exe" -d "C:\Program Files\Nikon\ViewNX 2\Nikon Movie Editor" <==== UWAGA Task: {1B46A51F-C4B9-4F1D-B6DC-E14C4422D4CF} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.) Task: {1C632F72-12F8-483B-92C6-FE19350280A0} - System32\Tasks\BatteryLifeExtender => C:\Program Files\Samsung\BatteryLifeExtender\BatteryLifeExtender.exe [2009-09-21] (Samsung Electronics. Co. Ltd.) Task: {2DA7F283-D48F-482D-9B75-EDDC32FB5273} - System32\Tasks\EasyDisplayMgr => C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe [2009-09-12] (Samsung Electronics Co., Ltd.) Task: {3C000FEB-4E61-4B13-AC60-64F28EA695E4} - System32\Tasks\{9ADA0588-F740-4CF9-879B-AEB6DA8EBF65} => C:\Users\Łukasz\Desktop\House Siepień 13\e_48U_V142.exe <==== UWAGA Task: {3D71A4FE-447B-4E7B-9022-3E8D76E47940} - System32\Tasks\{AECC2C44-6E12-4698-B089-46E9C27E80E4} => pcalua.exe -a C:\Users\Łukasz\Downloads\jre-8u45-windows-i586-iftw.exe -d C:\Users\Łukasz\Downloads <==== UWAGA Task: {3F185FA2-200D-45B1-A4C1-B3FEF485AAEB} - System32\Tasks\{71B8EDEB-BF0E-4B31-B169-F1CA7C08C544} => pcalua.exe -a C:\Users\UKASZ~1\AppData\Local\Temp\jre-8u66-windows-au.exe -d C:\windows\system32 -c /installmethod=jau FAMILYUPGRADE=1 <==== UWAGA Task: {4C4DE613-FC68-49A7-BCFE-7C69EF0367F9} - System32\Tasks\{CB638CCF-4F0F-4143-94B1-C8645AADD90F} => C:\Users\Łukasz\Desktop\Mojosoft_BusinessCards_MX_4.84_Portable\Mojosoft_BusinessCards_MX_4.84_Portable\BusinessCardsMX.exe <==== UWAGA Task: {4C743435-DF71-4BD9-83C2-9DC5C5ACF869} - System32\Tasks\{197B5A63-D2FD-4DC3-9ECB-79CD8E744CA9} => pcalua.exe -a C:\Users\Łukasz\Downloads\jre-8u65-windows-i586-iftw(1).exe -d C:\Users\Łukasz\Downloads <==== UWAGA Task: {4E9E101A-3F6B-4F4A-ACF0-4B413FE3D2F2} - System32\Tasks\{10416630-9868-4FCB-85D5-562CEAC317AC} => C:\Users\Łukasz\Desktop\House Siepień 13\e_48U_V142.exe <==== UWAGA Task: {534D816D-04FB-4013-B9D4-102D61545A14} - System32\Tasks\User_Feed_Synchronization-{A780015E-64AA-40BB-B424-D014FCB7E3B5} => C:\windows\system32\msfeedssync.exe [2015-07-26] (Microsoft Corporation) <==== UWAGA Task: {5B092ED4-7DE4-4965-A81C-65E078D7960E} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-08] (Adobe Systems Incorporated) Task: {5D0A75A0-56F8-4E15-9CDD-9596DEE2E5DD} - System32\Tasks\{00C5C9DA-572F-4431-A02B-3C2381AFEFBD} => pcalua.exe -a C:\Users\Łukasz\Downloads\F-D7100-V102W.exe -d C:\Users\Łukasz\Downloads <==== UWAGA Task: {6AB504BF-21BE-499A-9D6C-ADAF22AE9FDE} - System32\Tasks\{9E46DC9F-57EF-47F8-8D67-252C12DF05E3} => C:\Users\Łukasz\Desktop\Pobrane\jxpiinstall.exe <==== UWAGA Task: {6D5B184F-40A1-4D0A-AD22-8089179F8801} - System32\Tasks\EasySpeedUpManager => C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe [2009-08-23] (Samsung Electronics Co., Ltd.) Task: {6F28FC66-4F2C-46E5-9C4E-25EA56C3EA42} - System32\Tasks\ŁukaszGormandPageantryV2 => Rundll32.exe RemittersHumanizer.dll,main 7 1 <==== UWAGA Task: {70F1E517-71C0-42A4-A1A5-806C4493AA74} - System32\Tasks\ŁukaszMaculateBathV2 => Rundll32.exe CouldestFeigned.dll,main 7 1 <==== UWAGA Task: {72866BC7-4697-4096-B46D-896109155334} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 35 => C:\Program Files\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe Task: {7F6F8A97-1CFC-4ACE-A84E-501CFAD6FE9F} - System32\Tasks\Scheduled scanning task => C:\PROGRA~1\PAKIET~1\apps\COMPUT~1\ANTI-V~1\fsav.exe Task: {8E7A9364-88C4-47F2-A233-EBCE9858D294} - System32\Tasks\{689F1882-6071-4863-9BCE-2910307F1378} => C:\Program Files\Adobe\Adobe Photoshop Lightroom 5.4\lightroom.exe <==== UWAGA Task: {9290551E-1D4B-4B3F-8214-0FB34E38DDB7} - System32\Tasks\DLL-Files.Com Fixer_Updates => C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe Task: {9B48D38C-DAAF-4709-B485-F3BD2040B714} - System32\Tasks\DLL-Files.Com Fixer_MONTHLY => C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe Task: {A4AD0297-AF4B-4B6F-AA1B-85C8E95ADBFA} - System32\Tasks\{7CF8AD5C-208A-45E2-8F0E-3943B1C41A68} => C:\Users\Łukasz\Desktop\House Siepień 13\e_48U_V142.exe <==== UWAGA Task: {A9FC2A1C-D713-4FD0-95C9-3454EA1FC3D7} - System32\Tasks\{ACAC7ADE-4511-466F-A245-1399625C8322} => C:\Program Files\NapiProjekt\napisy.exe <==== UWAGA Task: {AE32CA0C-3A88-4700-8CC1-3EF5C43776C0} - System32\Tasks\advSRS4 => C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe [2009-08-06] (SEC) Task: {B4B09BA2-FD21-4C2C-92DA-DEBD745CCC54} - System32\Tasks\{C0A33641-E8B5-4C11-AA3F-24947D3FCE59} => C:\Program Files\NapiProjekt\napisy.exe <==== UWAGA Task: {C120FB33-E0D5-421A-B349-3DF06B106CCE} - System32\Tasks\SamsungSupportCenter => C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe [2009-09-07] (SAMSUNG Electronics) Task: {CD4DD588-43D5-4DC6-ADA7-57F9F84EF296} - System32\Tasks\{EAA2C7DC-500B-40E3-BA8A-F518B181BC03} => C:\Program Files\NapiProjekt\napisy.exe <==== UWAGA Task: {CEF319F9-B489-45A1-8FE2-475DC85E4AEC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated) Task: {D193A266-682D-42C6-84D0-B15F53148BEE} - System32\Tasks\{8A7FFF42-6EB7-45C6-BB88-14B300F99288} => pcalua.exe -a "C:\Program Files\BabylonToolbar\BabylonToolbar\1.8.7.2\GUninstaller.exe" -c -uprtc -key "BabylonToolbar" <==== UWAGA Task: {E05E6B0C-4B97-43C8-A448-57466AF6636F} - System32\Tasks\{0FD1EA8B-436E-4E40-B22E-0EED5DEE798E} => C:\Program Files\Nikon\ViewNX 2\Nikon Movie Editor\UninstLauncher.exe <==== UWAGA Task: {F0062415-8A85-4F49-9FB8-14BF91BF6629} - System32\Tasks\TechSmith Updater => C:\Program Files\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe Task: {F60C6A93-DDE1-48C5-8FE1-9C5813B57CFD} - System32\Tasks\{32BA01AE-A4F9-40D3-8A2C-0753ABF0052F} => C:\Users\Łukasz\Desktop\House Siepień 13\e_48U_V142(1).exe <==== UWAGA Task: {F72A0E51-1A17-46A5-8C23-C61D72D35B56} - System32\Tasks\SUPBackground => C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe [2010-04-20] () (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\windows\Tasks\DLL-Files.Com Fixer_MONTHLY.job => C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe Task: C:\windows\Tasks\DLL-Files.Com Fixer_Updates.job => C:\Program Files\Dll-Files.com Fixer\DLLFixer.exe Task: C:\windows\Tasks\Scheduled scanning task.job => C:\PROGRA~1\PAKIET~1\apps\COMPUT~1\ANTI-V~1\fsav.exeX /HARD /POLICY /SCHED /REPORT C:\PROGRA~1\PAKIET~1\apps\COMPUT~1\ANTI-V~1\report.txt ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2015-04-18 12:26 - 2015-10-08 12:20 - 00045608 _____ () C:\Program Files\Pakiet Bezpieczeństwa UPC\apps\ComputerSecurity\Anti-Virus\FSAVHRES.eng 2015-04-02 10:25 - 2015-04-02 10:25 - 00220200 _____ () C:\Program Files\Pakiet Bezpieczeństwa UPC\daas2.dll 2015-03-25 20:17 - 2014-11-20 10:48 - 00242264 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe 2009-09-28 03:42 - 2009-03-05 11:54 - 00311296 _____ () C:\windows\SYSTEM32\Rezip.exe 2015-04-18 13:12 - 2016-02-03 16:55 - 00091176 _____ () C:\Program Files\Pakiet Bezpieczeństwa UPC\apps\ComputerSecurity\Anti-Virus\minifilter\hashlib_x86.dll 2015-04-18 12:26 - 2016-02-03 16:54 - 00177704 _____ () C:\Program Files\Pakiet Bezpieczeństwa UPC\apps\ComputerSecurity\Gemini\fsgem.dll 2015-04-18 12:26 - 2015-10-12 12:29 - 00212008 _____ () C:\Program Files\Pakiet Bezpieczeństwa UPC\apps\ComputerSecurity\Spam Control\fsas.dll 2015-04-18 12:26 - 2016-02-03 16:54 - 00929832 _____ () C:\Program Files\Pakiet Bezpieczeństwa UPC\apps\ComputerSecurity\Anti-Virus\fm4av.dll 2009-09-28 03:51 - 2006-08-12 05:48 - 00049152 _____ () C:\Program Files\Samsung\Easy Display Manager\HookDllPS2.dll 2016-03-29 18:31 - 2016-03-29 18:31 - 00358912 _____ () C:\Users\Łukasz\AppData\Local\GormandPageantry\RemittersHumanizer.dll 2015-04-18 12:26 - 2015-10-08 12:20 - 00056360 _____ () C:\Program Files\Pakiet Bezpieczeństwa UPC\apps\ComputerSecurity\FSGUI\fsavures.eng 2015-04-18 12:23 - 2015-04-18 12:23 - 00592936 _____ () C:\windows\WinSxS\x86_f-secure.qt_4_6_2_2e112a926211c0a3_4.6.482.79_none_b59ec33311fcd586\QtMultimediaKit1.dll 2013-04-23 22:20 - 2013-04-23 22:20 - 00049152 _____ () C:\Program Files\CCleaner\lang-1045.dll 2013-01-11 14:08 - 2013-01-11 14:08 - 00039192 _____ () C:\Program Files\CCleaner\branding.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\Temp:373E1720 [120] AlternateDataStreams: C:\ProgramData\Temp:58D8F144 [152] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service" ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2015-09-05 12:15 - 2016-04-10 20:14 - 00001550 ____A C:\windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com 0.0.0.0 cdn.appround.biz 0.0.0.0 cdn.bigspeedpro.com 0.0.0.0 cdn.bispd.com Wykryto więcej niż wyliczono: 5 linii. ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-604524677-2708395862-3557633927-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Łukasz\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 62.179.1.60 - 62.179.1.61 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\startupreg: SunJavaUpdateSched => ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{22F2F5D5-C12E-4CA0-B409-3ACC7BAD741F}] => (Allow) svchost.exe FirewallRules: [{C08297B4-F6DD-4D16-85C7-DADCBACDC49F}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [TCP Query User{383CB4DB-F619-4995-8ABB-91C36ACD77D7}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{9B416ECF-5F63-4B1F-978A-35AA7F142CCE}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe FirewallRules: [{297BCE1E-BB87-4136-8AF6-D2CE5A5FECB4}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [{8954492E-89DD-4D2E-8907-66357C07B0C6}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{A40AE904-F760-4856-92C0-D5F05BB695DC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{0C6126D9-AE3A-4EEF-9752-5275F5047F73}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe ==================== Punkty Przywracania systemu ========================= 10-04-2016 17:38:48 Usunięto: Składniki łączności pakietu Microsoft Office Small Business 10-04-2016 20:21:16 Windows Anytime Upgrade 10-04-2016 20:24:15 Windows Anytime Upgrade 10-04-2016 23:38:40 Removed Adobe Acrobat Reader DC - Polish. ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (04/10/2016 10:35:05 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program iexplore.exe w wersji 11.0.9600.18205 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 1560 Godzina rozpoczęcia: 01d193685f30e21b Godzina zakończenia: 16 Ścieżka aplikacji: C:\Program Files\Internet Explorer\iexplore.exe Identyfikator raportu: Dziennik System: ============= Error: (04/10/2016 10:26:52 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa Windows Update zawiesiła się podczas uruchamiania. Error: (04/10/2016 10:18:44 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Usługa Windows Update nie została poprawnie zamknięta po odebraniu kodu sterującego przed zamknięciem. Error: (04/10/2016 10:16:20 PM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Menedżer sterowania usługami próbował podjąć akcję korekcyjną (Uruchom usługę ponownie) po nieoczekiwanym zakończeniu usługi Windows Search, ale ta akcja nie powiodła się przy następującym błędzie: %%1056. Error: (04/10/2016 10:15:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Instalator modułów systemu Windows niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (04/10/2016 10:15:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (04/10/2016 10:15:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa udostępniania w sieci programu Windows Media Player niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (04/10/2016 10:15:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa FSMA niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (04/10/2016 10:15:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Usługa iPod niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (04/10/2016 10:15:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SQL Server VSS Writer niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (04/10/2016 10:15:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa SQL Server Browser niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. CodeIntegrity: =================================== Date: 2014-12-07 14:14:08.833 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\eagleGet.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-12-07 14:14:08.823 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\eagleGet.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-12-07 14:14:08.823 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\eagleGet.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-12-07 14:14:08.823 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\eagleGet.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-12-07 14:14:08.813 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\eagleGet.sys because the set of per-page image hashes could not be found on the system. Date: 2014-12-07 14:14:08.783 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\eagleGet.sys because the set of per-page image hashes could not be found on the system. Date: 2014-12-07 14:14:08.743 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\EagleGet\eagleGet_x86.sys because the set of per-page image hashes could not be found on the system. Date: 2014-12-07 14:14:08.713 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\EagleGet\eagleGet_x86.sys because the set of per-page image hashes could not be found on the system. Date: 2014-12-07 14:13:08.598 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\eagleGet.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2014-12-07 14:13:08.598 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\eagleGet.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM)2 Duo CPU T6500 @ 2.10GHz Procent pamięci w użyciu: 53% Całkowita pamięć fizyczna: 3066.61 MB Dostępna pamięć fizyczna: 1415.63 MB Całkowita pamięć wirtualna: 6129.48 MB Dostępna pamięć wirtualna: 4151.96 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:141.49 GB) (Free:105.28 GB) NTFS Drive d: () (Fixed) (Total:141.5 GB) (Free:81.66 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 298.1 GB) (Disk ID: 07971743) Partition 1: (Not Active) - (Size=15 GB) - (Type=27) Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=141.5 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=141.5 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================