Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 20-08-2017 Uruchomiony przez Marcin (03-09-2017 13:03:51) Uruchomiony z C:\ Windows 7 Ultimate Service Pack 1 (X64) (2015-10-23 17:57:14) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1244533767-2505366996-2244784048-500 - Administrator - Disabled) Bogusia (S-1-5-21-1244533767-2505366996-2244784048-1004 - Administrator - Enabled) => C:\Users\Bogusia eyik (S-1-5-21-1244533767-2505366996-2244784048-1017 - Administrator - Enabled) => C:\Users\eyik Gość (S-1-5-21-1244533767-2505366996-2244784048-501 - Limited - Disabled) Grzegorz (S-1-5-21-1244533767-2505366996-2244784048-1003 - Administrator - Enabled) => C:\Users\Grzegorz HomeGroupUser$ (S-1-5-21-1244533767-2505366996-2244784048-1002 - Limited - Enabled) Marcin (S-1-5-21-1244533767-2505366996-2244784048-1000 - Administrator - Enabled) => C:\Users\Marcin yyyy (S-1-5-21-1244533767-2505366996-2244784048-1018 - Administrator - Enabled) => C:\Users\yyyy ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated) Adobe Photoshop CS3 (HKLM-x32\...\Adobe_2ac78060bc5856b0c1cf873bb919b58) (Version: 10.0 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{5DDB9EF7-1BC0-C9C1-9829-6B9CF68AC357}) (Version: 8.0.903.0 - Advanced Micro Devices, Inc.) AmpliTube 4 version 4.2.0 (HKLM\...\{21B0C8E0-7EB7-4832-B764-20A7DAE86E02}_is1) (Version: 4.2.0 - IK Multimedia) Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 376.33 - NVIDIA Corporation) Hidden Apple Application Support (32-bit) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.13 - Michael Tippach) Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.12.0 - Asmedia Technology) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Beholder (HKLM\...\YmVob2xkZXI_is1) (Version: 1 - ) BitComet 1.40 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.40 - CometNetwork) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Brother MFL-Pro Suite DCP-J315W (HKLM-x32\...\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}) (Version: 2.0.0.0 - Brother Industries, Ltd.) Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Counter-Strike (HKLM\...\Steam App 10) (Version: - Valve) CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) Custom Shop version 1.7.0 (HKLM-x32\...\{21BAD046-50EC-49E2-BE7B-F9729704F2C3}_is1) (Version: 1.7.0 - IK Multimedia) Dying Light / RePack by Baracuda (HKLM-x32\...\Dying Light_is1) (Version: 1.4.0.0 - ) Focusrite USB 4.15.0.172 (HKLM\...\Focusrite USB_is1) (Version: 4.15.0.172 - Focusrite Audio Engineering Ltd.) Gothic III (HKLM-x32\...\{02B244A2-7F6A-42E8-A36F-8C385D7A1625}) (Version: 1.00.0000 - JoWooD Productions Software AG) Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) HandBrake 0.10.2 (HKLM-x32\...\HandBrake) (Version: 0.10.2 - ) IK Multimedia Authorization Manager version 1.0.18 (HKLM\...\{85BC0DCB-69E5-4279-AA25-F108EF896588}_is1) (Version: 1.0.18 - IK Multimedia) INSIDE (HKLM-x32\...\INSIDE_is1) (Version: - ) Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) K-Lite Codec Pack 11.5.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.5.5 - ) L.A. Noire PL [BDIP] wersja 1.01 (HKLM-x32\...\{C863E3ED-F40F-411B-925D-87824CC81DCF}_is1) (Version: 1.01 - BDIP) LANoire v.1.3.2617 (HKLM-x32\...\LANoire_is1) (Version: - ) LIMBO (HKU\S-1-5-21-1244533767-2505366996-2244784048-1000\...\Limbo) (Version: - ) MailShare (HKLM\...\{5846E720-C188-478F-B501-45EA1ACC44D1}_is1) (Version: 2.1.5 - MailShare.pl) Mass Effect (HKLM-x32\...\{1B0FBB9A-995D-47cd-87CD-13E68B676E4F}) (Version: 1.00 - Electronic Arts, Inc.) Max Payne 3 (HKLM-x32\...\{1AA94747-3BF6-4237-9E1A-7B3067738FE1}) (Version: 1.0.0.0 - Rockstar Games) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30320 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30320 - Microsoft Corporation) Microsoft Lync 2010 (HKLM\...\{AE3ECF1B-4548-4E0C-8CFA-3476B503EF65}) (Version: 4.0.7577.0 - Microsoft Corporation) Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110415-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Movavi Video Editor 11 (HKLM-x32\...\Movavi Video Editor 11) (Version: 11.4.1 - Movavi) Mozilla Firefox 55.0.3 (x86 pl) (HKLM-x32\...\Mozilla Firefox 55.0.3 (x86 pl)) (Version: 55.0.3 - Mozilla) MyDriveConnect 4.0.6.2383 (HKLM-x32\...\MyDriveConnect) (Version: 4.0.6.2383 - TomTom) NapiProjekt (2.2.0.2399) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: - Native Instruments) Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: - Native Instruments) Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments) Nero 7 Essentials (HKLM-x32\...\{2B04D44F-1D1B-4E0E-8431-D04F87C21045}) (Version: 7.02.4863 - Nero AG) NVIDIA Oprogramowanie systemu PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.33 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA Sterownik graficzny 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.5.0 - NVIDIA Corporation) Hidden Observer (HKLM-x32\...\1449856523_is1) (Version: 1.0 - GOG.com) OpenIV (HKU\S-1-5-21-1244533767-2505366996-2244784048-1000\...\OpenIV) (Version: 2.9.907 - .black/OpenIV Team) Pakiet zgodności dla systemu Office 2007 (HKLM-x32\...\{90120000-0020-0415-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation) Panel sterowania NVIDIA 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.33 - NVIDIA Corporation) Hidden Pazera Free AVI to MP4 Converter 1.0 (HKLM-x32\...\{55F62293-FD7F-4CF0-8097-8DE29EF66DC8}_is1) (Version: 1.0 - Jacek Pazera) PDF Settings (HKLM-x32\...\{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}) (Version: 1.0 - Adobe Systems Incorporated) Hidden Pianoteq v2.3.0 (HKLM-x32\...\Pianoteq23) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{9C049499-055C-4a0c-A916-1D8CA1FF45EB}) (Version: 1.00.0142 - REALTEK Semiconductor Corp.) Rise of the Tomb Raider (HKLM-x32\...\Rise of the Tomb Raider_is1) (Version: - ) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.2.0 - Rockstar Games) RollerCoaster Tycoon: Deluxe (HKLM\...\Steam App 285310) (Version: - Chris Sawyer Productions) Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15075.2 - Samsung Electronics Co., Ltd.) Hidden Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15075.2 - Samsung Electronics Co., Ltd.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.) SopCast 4.2.0 (HKLM-x32\...\SopCast) (Version: 4.2.0 - www.sopcast.com) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) The Witcher 3: Wild Hunt - Krew i Wino (HKLM-x32\...\Blood and Wine_is1) (Version: 1.21.0.0 - GOG.com) The Witcher 3: Wild Hunt - Serca z kamienia (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.0.0.0 - GOG.com) This War of Mine (HKLM-x32\...\This War of Mine_R.G._Element_Arts_is1) (Version: 1.0 - R.G. Element Arts) Train Driver 2 (HKLM-x32\...\Train Driver 2) (Version: 1.3.3.0 - Pukeko Technologies) Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) Wtyczka e-Deklaracje (HKLM-x32\...\{81BF6353-3C5B-4E6E-A566-7E162A00BF72}_is1) (Version: 4.3.0 - Ministerstwo Finansów) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => -> Brak pliku ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-03-11] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-03-11] (Alexander Roshal) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-12-11] (NVIDIA Corporation) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-03-11] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-03-11] (Alexander Roshal) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {48109025-C445-4F41-8D71-F0B1D59EE24F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {D612682F-3494-4EFA-A4E8-32C578F10D30} - System32\Tasks\ASUS\RunDAOD => C:\Windows\DAODx.exe [2009-03-30] () Task: {DB99E582-E5B2-44D4-90C1-EF41BE0B9A86} - System32\Tasks\{7818EECA-4B74-48D7-83E3-7FA48CAF95D0} => C:\Windows\system32\pcalua.exe -a C:\Users\Marcin\Desktop\clean\NeroCleanTool5.0.0.18.exe -d C:\Users\Marcin\Desktop\clean Task: {E3A8B888-F8EB-4FE8-B8F9-5C38F4E2A659} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-09] (Adobe Systems Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty & WMI ======================== (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2017-01-23 00:08 - 2016-12-11 20:47 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-09-01 18:12 - 2016-09-01 18:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-09-01 18:12 - 2016-09-01 18:12 - 001353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2009-03-30 08:32 - 2009-03-30 08:32 - 000032768 ____R () C:\Windows\DAODx.exe 2017-03-23 23:48 - 2009-12-09 22:20 - 000126976 _____ () C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\EnumDevLib.dll 2015-11-06 22:54 - 2009-02-27 17:38 - 000139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2016-06-09 20:19 - 000001124 _____ C:\Windows\system32\Drivers\etc\hosts 54.230.89.168 data-cdn.mbamupdates.com 54.230.89.168 data-cdn.mbamupdates.com 54.230.89.168 data-cdn.mbamupdates.com 54.230.89.168 data-cdn.mbamupdates.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1244533767-2505366996-2244784048-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Marcin\AppData\Roaming\Mozilla\Firefox\Tapeta pulpitu.bmp DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe" ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [TCP Query User{70E7D21F-580B-4CCB-B1A5-3D450E27911B}C:\program files (x86)\nowe gadu-gadu\gg.exe] => (Allow) C:\program files (x86)\nowe gadu-gadu\gg.exe FirewallRules: [UDP Query User{F5FFCB87-77C1-40D3-9F38-11A3163C1AEC}C:\program files (x86)\nowe gadu-gadu\gg.exe] => (Allow) C:\program files (x86)\nowe gadu-gadu\gg.exe FirewallRules: [{702136FE-3047-4846-873E-DB76A455D946}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{E92E621B-F910-47CA-8A7B-33E5C1A02561}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{FDC61923-11FB-4424-8289-CB60D16AD5F8}] => (Allow) C:\Program Files\BitComet\BitComet.exe FirewallRules: [{628A0B9C-8247-4927-A2D2-47B4590F7BA1}] => (Allow) C:\Program Files\BitComet\BitComet.exe FirewallRules: [{16892003-E1DC-4940-B04F-94CFBD85B707}] => (Allow) LPort=25973 FirewallRules: [{21C821DC-20A0-4B6F-8F1C-3BB43B639216}] => (Allow) LPort=25973 FirewallRules: [{692F6E5D-FC5A-4489-A554-505AD4139910}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [{F3D2C76A-BBE7-479A-BF31-11BBFB945A00}] => (Allow) C:\Program Files (x86)\NapiProjekt\napisy.exe FirewallRules: [TCP Query User{D5EBB3A9-3595-4961-BE7A-DE0129718150}H:\gry 2\dying light\dyinglightgame.exe] => (Allow) H:\gry 2\dying light\dyinglightgame.exe FirewallRules: [UDP Query User{39447715-DD03-4E3F-96F5-025CAFBF20D8}H:\gry 2\dying light\dyinglightgame.exe] => (Allow) H:\gry 2\dying light\dyinglightgame.exe FirewallRules: [{2DA9D9C9-FD61-434F-943D-F13187C0963F}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{52626FCA-DD54-4BA0-A200-CFF773BD930B}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{41D5E052-AB82-4A21-8291-94483BE14487}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{439E36F9-E36D-467B-8053-39EC873163E9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{81CF6DB9-2A4C-450E-AD13-6C7C9C708779}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{67AB3951-E4AF-430A-B0D4-168493072F8F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{F207F56C-C535-4646-9B4D-FDF2BF992079}] => (Allow) H:\GRY 2\SteamLibrary\steamapps\common\Half-Life\hl.exe FirewallRules: [{CCB56473-B6AF-4AF0-825A-672A48E3B8B2}] => (Allow) H:\GRY 2\SteamLibrary\steamapps\common\Half-Life\hl.exe FirewallRules: [{092C74E9-5E45-4482-A6A4-5AC894C539E8}] => (Allow) H:\GRY 2\Mass Effect\Binaries\MassEffect.exe FirewallRules: [{887985A1-37D6-4234-AD12-D8100FD37C60}] => (Allow) H:\GRY 2\Mass Effect\Binaries\MassEffect.exe FirewallRules: [{8B0465F5-7AAD-4B9D-8E98-66F44C5B0BAB}] => (Allow) H:\GRY 2\Mass Effect\MassEffectLauncher.exe FirewallRules: [{DC538752-8C96-404A-AE00-10BAD922DD66}] => (Allow) H:\GRY 2\Mass Effect\MassEffectLauncher.exe FirewallRules: [{6599E917-5B60-470F-97D9-9BF70BE5F98B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{C5BC0308-0E46-42A5-9197-5BEA6BA301C2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{ADFAEB05-45E1-4CCB-BE70-22B41DA3915B}] => (Allow) C:\Users\Default\AppData\Local\Yandex\YandexBrowser\Application\browser.exe FirewallRules: [{8E36EDF2-38A7-450A-B8D6-6D154AF20AEE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{09614CC5-B09E-4FEA-98D4-5BB4CC0C2702}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{21E79661-EA70-4AF6-907D-3EA8F5A76CC4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{39AB2BE4-6539-4503-AA4A-DEFF796A3068}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{E28E630C-3DDE-4BC7-B3BD-A0899F7EE97E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{20C21FA6-CE1B-42FB-94C9-BA904A32E9CB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{511A2624-2C03-4882-A3D3-260BEEAF9FA6}H:\gry 2\max payne 3\maxpayne3.exe] => (Allow) H:\gry 2\max payne 3\maxpayne3.exe FirewallRules: [UDP Query User{65335129-ED6E-410C-A3DA-1B2DA4B45165}H:\gry 2\max payne 3\maxpayne3.exe] => (Allow) H:\gry 2\max payne 3\maxpayne3.exe FirewallRules: [{87CE1BBA-D145-450D-8B2F-1341C9F8B769}] => (Block) H:\gry 2\max payne 3\maxpayne3.exe FirewallRules: [{A7042CA6-E628-4830-9748-A8C4FCD3DF98}] => (Block) H:\gry 2\max payne 3\maxpayne3.exe FirewallRules: [{FC309BF0-E0EF-4D3C-9ED4-98A0BE39832B}] => (Allow) H:\SteamLibrary\steamapps\common\RollerCoaster Tycoon Deluxe\RCT.EXE FirewallRules: [{0FEDC012-0031-463D-A1A8-13CD63C360F3}] => (Allow) H:\SteamLibrary\steamapps\common\RollerCoaster Tycoon Deluxe\RCT.EXE FirewallRules: [{CD10D10F-E8B0-4C38-8321-2822C2353CD2}] => (Allow) C:\Program Files (x86)\Microsoft Lync\communicator.exe FirewallRules: [{DA6284A0-9FB0-43DD-956C-6B09EFE6B9C9}] => (Allow) C:\Program Files (x86)\Microsoft Lync\communicator.exe FirewallRules: [{AB87AAEA-9BFB-43EE-8D8D-3434EA9D9F7C}] => (Allow) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe FirewallRules: [{F687A90E-AB29-484E-8CC7-2C1CE187DF25}] => (Allow) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe FirewallRules: [{89BA8141-35BD-49EE-8D78-F0383C1AAC0B}] => (Allow) LPort=1542 FirewallRules: [{4AD0369A-FA8E-4BB2-9D7F-83E69E55A672}] => (Allow) LPort=1542 FirewallRules: [{BDCA8D7B-8FE6-433C-87DD-5C9E3DCF0557}] => (Allow) LPort=53 FirewallRules: [{3B82AD35-99C7-47FE-8B28-52AE2B6E89E9}] => (Allow) D:\Mass Effect\Binaries\MassEffect.exe FirewallRules: [{1F96D20A-B679-4D22-A4CD-1FC3F0DBA4D3}] => (Allow) D:\Mass Effect\Binaries\MassEffect.exe FirewallRules: [{EB2C4671-7AD0-4D82-808D-60C27B447635}] => (Allow) D:\Mass Effect\MassEffectLauncher.exe FirewallRules: [{377B73AF-238F-4E04-883B-F51D7471323A}] => (Allow) D:\Mass Effect\MassEffectLauncher.exe FirewallRules: [TCP Query User{AC08C553-97C8-43E6-BF63-8F0419F4F3AE}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe FirewallRules: [UDP Query User{1939884A-3C4A-4C08-9B6B-1E46DC245490}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe FirewallRules: [{59F70CEE-D52B-4725-B264-02B07FEB41AA}] => (Allow) C:\Program Files (x86)\Microsoft Lync\communicator.exe FirewallRules: [{0C759ACF-369E-4718-B3E8-564D226B66F5}] => (Allow) C:\Program Files (x86)\Microsoft Lync\UcMapi.exe FirewallRules: [{54538370-A5A1-42D9-ACAB-3C66E9425925}] => (Allow) C:\Program Files\Microsoft Lync\UcMapi64.exe FirewallRules: [{E05681FC-2208-499F-BFE3-3B28F6F56DAC}] => (Allow) H:\GRY 2\Crysis\Bin32\crysis.exe FirewallRules: [{779EC05C-99DC-46BD-87AE-376428988624}] => (Allow) H:\GRY 2\Crysis\Bin32\crysis.exe FirewallRules: [{40D82343-9A44-4D26-8DA9-92C724177075}] => (Allow) H:\GRY 2\Crysis\Bin64\Crysis.exe FirewallRules: [{6134B11A-A923-419D-A280-4A47C7855AC8}] => (Allow) H:\GRY 2\Crysis\Bin64\Crysis.exe FirewallRules: [TCP Query User{C47758D4-2591-48E4-881B-CBCD2B3B7046}H:\gry 2\grand theft auto v\gta5.exe] => (Allow) H:\gry 2\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{1A9E38E7-4E12-4322-8B55-45997D899207}H:\gry 2\grand theft auto v\gta5.exe] => (Allow) H:\gry 2\grand theft auto v\gta5.exe FirewallRules: [{E4BCE56C-4F60-4BCC-BCFC-1F45DE4F400F}] => (Allow) H:\GRY 2\GTA V\GTA5.exe FirewallRules: [{5DA1F58E-4C9E-49BD-98A6-3B18A42BFAB5}] => (Allow) H:\GRY 2\GTA V\GTA5.exe FirewallRules: [{154A6749-F904-4A38-BD08-B11C521FFD44}] => (Allow) H:\GRY 2\GTA V\GTA5.exe FirewallRules: [{3FC156D7-F752-4BE8-9008-A89E4BFF280D}] => (Allow) H:\GRY 2\GTA V\GTA5.exe FirewallRules: [{04E3368A-0A3A-494E-85F1-0C06C723513D}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe FirewallRules: [{171E4E9B-99F7-4491-9BF7-3A8CE0C781E6}] => (Allow) D:\SteamLibrary\steamapps\common\Half-Life\hl.exe ==================== Punkty Przywracania systemu ========================= 30-08-2017 19:41:43 Zaplanowany punkt kontrolny ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: NVIDIA High Definition Audio Description: NVIDIA High Definition Audio Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: NVIDIA Service: NVHDA Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (09/03/2017 12:48:50 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/03/2017 04:26:42 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/02/2017 10:53:53 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program Explorer.EXE w wersji 6.1.7601.17567 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 8e8 Godzina rozpoczęcia: 01d3241e9e0af8d1 Godzina zakończenia: 16 Ścieżka aplikacji: C:\Windows\Explorer.EXE Identyfikator raportu: d274ea22-9020-11e7-b5d0-7824af42017f Error: (09/02/2017 09:08:21 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/02/2017 03:30:57 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/02/2017 12:07:25 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/01/2017 08:07:27 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/01/2017 07:31:41 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/31/2017 10:47:59 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/31/2017 04:31:19 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Dziennik System: ============= Error: (08/31/2017 04:13:34 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Usługa Windows Update zawiesiła się podczas uruchamiania. Error: (08/25/2017 12:52:05 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Steam Client Service z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (08/25/2017 12:52:05 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Steam Client Service. Error: (08/21/2017 06:56:47 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 70. Error: (08/21/2017 06:56:47 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 40. Error: (08/21/2017 06:56:47 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 70. Error: (08/21/2017 06:56:47 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 70. Error: (08/21/2017 06:56:47 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 70. Error: (08/21/2017 06:56:47 PM) (Source: Schannel) (EventID: 4119) (User: ZARZĄDZANIE NT) Description: Odebrano następujący alert krytyczny: 70. Error: (08/20/2017 03:54:35 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Defender niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. CodeIntegrity: =================================== Date: 2017-05-09 20:03:47.276 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\FocusriteUSBSwRoot.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-09 20:03:47.261 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\FocusriteUSBSwRoot.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-09 19:58:41.719 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\FocusriteUSBSwRoot.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-09 19:58:41.719 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\FocusriteUSBSwRoot.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-21 23:56:27.169 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hidusbf.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-21 23:56:27.153 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hidusbf.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-21 23:56:07.198 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hidusbf.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-21 23:56:07.182 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hidusbf.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-21 23:32:13.631 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hidusbf.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-21 23:32:13.616 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hidusbf.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: AMD FX(tm)-6300 Six-Core Processor Procent pamięci w użyciu: 27% Całkowita pamięć fizyczna: 8092.02 MB Dostępna pamięć fizyczna: 5903.7 MB Całkowita pamięć wirtualna: 16182.23 MB Dostępna pamięć wirtualna: 13733.66 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:75.13 GB) (Free:8.45 GB) NTFS Drive d: (Dysk lokalny) (Fixed) (Total:390.62 GB) (Free:140.69 GB) NTFS Drive e: (Dysk lokalny) (Fixed) (Total:97.66 GB) (Free:19.91 GB) NTFS Drive h: (Dysk lokalny) (Fixed) (Total:368 GB) (Free:81 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 4A9C88B2) Partition 1: (Not Active) - (Size=390.6 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=75.1 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: EFCB0370) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=368 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================