Additional scan result of Farbar Recovery Scan Tool (x64) Version:18-07-2015 01 Ran by pc at 2015-07-19 12:07:45 Running from C:\Users\pc\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-2103134223-2533476661-1764223169-500 - Administrator - Disabled) Gość (S-1-5-21-2103134223-2533476661-1764223169-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2103134223-2533476661-1764223169-1003 - Limited - Enabled) pc (S-1-5-21-2103134223-2533476661-1764223169-1000 - Administrator - Enabled) => C:\Users\pc ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: G Data AntiVirus 2013 (Enabled - Out of date) {39B780B4-63C2-05B0-3B40-8F7A21E4F496} AS: G Data AntiVirus 2013 (Enabled - Out of date) {82D66150-45F8-0A3E-01F0-B4085A63BE2B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Flash Player 11 Plugin (HKLM-x32\...\{F83DD803-2467-4D07-9D6F-87AF0434410A}) (Version: 11.9.900.170 - Adobe Systems Incorporated) Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.152 - Adobe Systems Incorporated) Adobe Flash Player 16 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Adobe Reader 9.5.5 - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-A95000000001}) (Version: 9.5.5 - Adobe Systems Incorporated) Aktualizacje NVIDIA 2.4.5.44 (Version: 2.4.5.44 - NVIDIA Corporation) Hidden Ashampoo Burning Studio 6 FREE v.6.80 (HKLM-x32\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.8.0 - ashampoo GmbH & Co. KG) ASRock App Charger v1.0.5 (HKLM\...\ASRock App Charger_is1) (Version: - ASRock Inc.) ATI Catalyst Install Manager (HKLM\...\{D3364347-0A05-CA85-1DAD-80A7A75BF677}) (Version: 3.0.732.0 - ATI Technologies, Inc.) Counter-Strike 1.6 v.43 by cs-SopliCa.com (HKU\S-1-5-21-2103134223-2533476661-1764223169-1000\...\Counter-Strike 1.6 v.43 by cs-SopliCa.com v.43) (Version: v.43 - cs-SopliCa.com) CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts) FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.7 - Electronic Arts) FileViewPro (HKLM\...\FileViewPro_is1) (Version: 4.0 - Solvusoft Corporation) G Data AntiVirus 2013 (HKLM-x32\...\{B0F08ACB-6BBA-49A8-8BE9-BBB4C2D8B574}) (Version: 23.0.0.0 - G Data Software AG) Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.) Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games) Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden Gyazo 3.1.4 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.) Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation) Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) K-Lite Codec Pack 7.1.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.1.0 - ) LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.328 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.328 - LogMeIn, Inc.) Hidden Malwarebytes Anti-Malware wersja 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 39.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 pl)) (Version: 39.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 39.0 - Mozilla) NVIDIA GeForce Experience 2.4.5.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.44 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.06 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Sterownik graficzny 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) OpenOffice 4.1.0 (HKLM-x32\...\{7EB1185B-6319-42D7-B103-707570BFB0D8}) (Version: 4.10.9764 - Apache Software Foundation) Opera Stable 30.0.1835.125 (HKLM-x32\...\Opera 30.0.1835.125) (Version: 30.0.1835.125 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 9.4.20.386 - Electronic Arts, Inc.) Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.) Panel sterowania NVIDIA 353.06 (Version: 353.06 - NVIDIA Corporation) Hidden PC TWIN SHOCK (HKLM-x32\...\{FEC7CD2E-2BB5-40C3-9592-078F64677E6C}) (Version: 1.00.0000 - GASIA) PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.44.421.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6433 - Realtek Semiconductor Corp.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.5.44 - NVIDIA Corporation) Hidden Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.6 - TeamSpeak Systems GmbH) TL-WN721N/TL-WN722N Driver (HKLM-x32\...\{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}) (Version: 1.0.0 - TP-LINK) TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.0.0 - TP-LINK) Virtual DJ - Atomix Productions (HKLM-x32\...\Virtual DJ - Atomix Productions) (Version: - ) Winamp (HKLM-x32\...\Winamp) (Version: 5.61 - Nullsoft, Inc) WinRAR 4.20 (32-bitowy) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) YAC(Yet Another Cleaner!) (HKLM-x32\...\iSafe) (Version: 6.6.94 - ELEX DO BRASIL PARTICIPAÇÕES LTDA) <==== ATTENTION ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 19-07-2015 11:33:03 przywracalny punktttek ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2015-06-20 21:57 - 00000042 ____N C:\Windows\system32\Drivers\etc\hosts ::1 localhost 127.0.0.1 localhost ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {03E60AFE-259B-4F7D-A49C-7D66D10E1B7D} - System32\Tasks\{6C8BEF44-181B-4F06-8008-245F92822959} => D:\Gry\F1 2012\f1_2012.exe Task: {1ADDCFCD-5C06-4781-BA1B-E36D0D1318EF} - System32\Tasks\{142834B1-71AA-4D79-AC8F-2F1A0E58C8B8} => D:\Gry\F1 2012\f1_2012.exe Task: {1E600E2B-708B-4151-96D8-6B254C2DA85F} - System32\Tasks\{5E3DBCBB-8A6C-4D62-A082-08FCC87F254E} => D:\Gry\F1 2012\f1_2012.exe Task: {2C39038B-C656-4B05-89D0-E984C2915FF7} - System32\Tasks\{BD062E31-2362-4DB7-8323-15B8D60F2370} => D:\Gry\F1 2012\f1_2012.exe Task: {31C5A521-4A83-4B33-979A-E569E82751D1} - System32\Tasks\{5BC57C32-9194-4CCD-B45A-0979678D50B7} => D:\Gry\F1 2012\f1_2012.exe Task: {376AC304-958C-4020-8138-9541F710AB29} - System32\Tasks\{4665739B-9708-44F9-B5F2-5F129B2583D7} => D:\Gry\F1 2012\f1_2012.exe Task: {3FFDCBD1-F659-41E5-ABF2-DED74AC03526} - System32\Tasks\{F84DF511-A818-4E9A-BF7A-1BAC011BFF0A} => D:\Gry\F1 2012\f1_2012.exe Task: {4E294B9B-30C5-40E4-9570-06D5D03A5BC2} - System32\Tasks\{B4A5E34D-EB9D-49A6-8886-C080B2E312E5} => D:\Gry\F1 2012\f1_2012.exe Task: {4F0AC8C8-DF04-4F6F-B38F-7B9066B16BAA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-07] (Google Inc.) Task: {6DC12664-9566-48B8-8910-F5E8066EDDC6} - System32\Tasks\{5ACA10EF-57FF-48E3-A81F-1CA5461FC2C0} => pcalua.exe -a C:\Users\pc\Desktop\2058_Gta_Sa_Spolszczenie.exe -d C:\Users\pc\Desktop Task: {757E6BA8-A029-407A-B2D1-C9494C45AD57} - System32\Tasks\{672A850F-E4B9-4955-802C-14D4046F5A6F} => D:\Gry\F1 2012\f1_2012.exe Task: {7D1FD1FA-E138-4A4C-9D84-102A8CB1F388} - System32\Tasks\{446F7F88-1C88-4D18-AD55-0B158D18462C} => Chrome.exe http://ui.skype.com/ui/0/6.10.11.104/pl/abandoninstall?page=tsProgressBar Task: {84820CB6-BED1-4E97-986D-662B632E9987} - System32\Tasks\{AF9716DE-5BC1-4439-9194-1FA68360FCD0} => D:\Gry\F1 2012\f1_2012.exe Task: {9F89C8F7-9F1F-4469-8FB1-4130EE64F653} - System32\Tasks\{A422FEB3-6EE5-4C40-A82C-C0005F51BE92} => D:\Gry\F1 2012\f1_2012.exe Task: {A0B7A10C-EE77-4217-B677-54C0D3F2C1DB} - System32\Tasks\{E86F47DC-C8A7-4ACA-9AED-9F147BE8C29D} => D:\kopia zapasowa\Gry\gtaaaaa\Grand Theft Auto IV\LaunchGTAIV.exe [2010-02-18] (Sony DADC Austria AG) Task: {C193B7C4-8470-4465-8091-9795585E77BD} - System32\Tasks\{B4FFCC72-34B8-46CA-9717-4B9DE3749E6A} => D:\Gry\F1 2012\f1_2012.exe Task: {CAF93368-199E-41F4-9971-5748BA746FBE} - System32\Tasks\Steam-S-1-8-22-9865GUI => C:\Users\pc\AppData\Roaming\openvr\Reversed\steam.exe [2015-05-14] () <==== ATTENTION Task: {CBBA2ABB-0B5B-45E5-9D20-37D49D7ED33D} - System32\Tasks\{4D643707-AC77-4D49-96BF-A660B5C9B9F4} => pcalua.exe -a "C:\Users\pc\Desktop\Xbox 360 (Cabel pc).exe" -d C:\Users\pc\Desktop Task: {CF97191C-01BF-4EE0-8BD8-222F5592D960} - System32\Tasks\Opera scheduled Autoupdate 1418737959 => C:\Program Files (x86)\Opera\launcher.exe [2015-07-10] (Opera Software) Task: {D0D7AA82-4E87-4FED-AE5B-59AE24021363} - System32\Tasks\{F0A2B375-31C6-43F0-8C54-C6EFB4ECE16C} => D:\Gry\F1 2012\f1_2012.exe Task: {D4F0BC35-2B31-4EA8-86BE-B55DCDBFF895} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-07-16] () Task: {D91B2424-9974-4A2B-98C0-A24ED46BAEAA} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-07-16] () Task: {E0487123-5A47-40E4-AA21-0409D000FC3D} - System32\Tasks\{7F53C122-3F66-4CBA-B694-33FE445D6A28} => D:\Gry\F1 2012\f1_2012.exe Task: {FD87645C-4883-4AF3-B2F2-C7BD6480E66A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-07] (Google Inc.) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2013-02-21 21:33 - 2015-05-28 06:15 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2012-01-27 06:06 - 2012-01-27 06:06 - 00251896 _____ () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll 2015-05-14 15:39 - 2015-05-14 15:39 - 01472904 _____ () C:\Users\pc\AppData\Roaming\openvr\Reversed\steam.exe 2013-04-24 14:04 - 2012-05-23 22:13 - 01761792 _____ () C:\Program Files (x86)\Common Files\G DATA\AVKScanP\Avast5\defs\12052301\algo.dll 2015-07-01 19:38 - 2015-05-25 12:32 - 00068432 _____ () C:\Program Files (x86)\Elex-tech\YAC\zlib1.dll 2015-07-01 19:38 - 2015-06-05 04:50 - 00176976 _____ () C:\Program Files (x86)\Elex-tech\YAC\tws\unrar.dll 2015-07-01 19:38 - 2015-06-05 04:50 - 00087744 _____ () C:\Program Files (x86)\Elex-tech\YAC\tws\unacev2.dll 2015-07-01 19:38 - 2015-01-13 06:31 - 00179200 _____ () C:\Program Files (x86)\Elex-tech\YAC\libpng.dll 2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2015-04-14 17:59 - 2015-06-03 23:06 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2013-11-06 14:48 - 2015-04-16 19:40 - 00776192 _____ () D:\Steam\SDL2.dll 2015-01-20 15:34 - 2015-04-23 04:16 - 04962816 _____ () D:\Steam\v8.dll 2015-01-20 15:34 - 2015-04-23 04:16 - 01556992 _____ () D:\Steam\icui18n.dll 2015-01-20 15:34 - 2015-04-23 04:16 - 01187840 _____ () D:\Steam\icuuc.dll 2014-05-21 20:44 - 2015-06-04 20:56 - 02407104 _____ () D:\Steam\video.dll 2014-08-29 10:45 - 2014-12-01 23:31 - 02396672 _____ () D:\Steam\libavcodec-56.dll 2014-08-29 10:45 - 2014-12-01 23:31 - 00442880 _____ () D:\Steam\libavutil-54.dll 2014-08-29 10:45 - 2014-12-01 23:31 - 00479744 _____ () D:\Steam\libavformat-56.dll 2014-08-29 10:45 - 2014-12-01 23:31 - 00332800 _____ () D:\Steam\libavresample-2.dll 2014-08-29 10:45 - 2014-12-01 23:31 - 00485888 _____ () D:\Steam\libswscale-3.dll 2013-12-03 19:51 - 2015-06-04 20:56 - 00703168 _____ () D:\Steam\bin\chromehtml.DLL 2013-11-06 14:48 - 2015-05-11 21:01 - 36302728 _____ () D:\Steam\bin\libcef.dll 2015-05-14 14:19 - 2015-05-11 21:01 - 08958344 _____ () D:\Steam\bin\pdf.dll 2015-07-15 10:43 - 2015-07-15 10:42 - 01649272 _____ () C:\Program Files (x86)\Opera\30.0.1835.125\libglesv2.dll 2015-07-15 10:43 - 2015-07-15 10:42 - 00081016 _____ () C:\Program Files (x86)\Opera\30.0.1835.125\libegl.dll 2014-12-16 19:32 - 2014-12-16 19:32 - 14913200 _____ () C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_16_0_0_235.dll 2015-05-14 15:39 - 2015-05-14 15:39 - 00279955 _____ () C:\Users\pc\AppData\Roaming\openvr\Reversed\libidn-11.dll 2015-05-14 15:39 - 2015-05-14 15:39 - 00113166 _____ () C:\Users\pc\AppData\Roaming\openvr\Reversed\zlib1.dll 2015-05-14 15:39 - 2015-05-14 15:39 - 00148760 _____ () C:\Users\pc\AppData\Roaming\openvr\Reversed\libpdcurses.dll 2015-06-10 17:45 - 2015-05-28 09:04 - 42719888 _____ () C:\Windows\system32\nvcompiler.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) HKU\S-1-5-21-2103134223-2533476661-1764223169-1000\Software\Classes\.exe: exefile => <===== ATTENTION! HKU\S-1-5-21-2103134223-2533476661-1764223169-1000\Software\Classes\exefile: <===== ATTENTION! ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2103134223-2533476661-1764223169-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\pc\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [TCP Query User{8C709A5E-A8F3-46F5-9B9B-F2CB2270FD7D}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe FirewallRules: [UDP Query User{25AFF8D1-0383-4717-BD88-A2DB7F8679D9}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe FirewallRules: [TCP Query User{D0B2EA2B-7891-42C4-A16F-B5D9AA2B3B72}D:\gry\cs 1.6\cstrike.exe] => (Allow) D:\gry\cs 1.6\cstrike.exe FirewallRules: [UDP Query User{D0C87BD2-FC1C-4315-BF01-31171A901357}D:\gry\cs 1.6\cstrike.exe] => (Allow) D:\gry\cs 1.6\cstrike.exe FirewallRules: [TCP Query User{C7DEF984-CB7D-4791-84E8-7786D51540D2}D:\gadu-gadu 10\gg.exe] => (Allow) D:\gadu-gadu 10\gg.exe FirewallRules: [UDP Query User{A11A846E-D791-4868-AF00-94283039FFC9}D:\gadu-gadu 10\gg.exe] => (Allow) D:\gadu-gadu 10\gg.exe FirewallRules: [TCP Query User{C7AE5CC5-F0A1-485E-AF9F-886C4011CEB9}D:\gry\cs 1.6\cstrike.exe] => (Allow) D:\gry\cs 1.6\cstrike.exe FirewallRules: [UDP Query User{61C4565D-8576-40F1-B336-A3EC7F546673}D:\gry\cs 1.6\cstrike.exe] => (Allow) D:\gry\cs 1.6\cstrike.exe FirewallRules: [TCP Query User{F258EE95-BE49-4122-A34D-43FF5C286E6E}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe FirewallRules: [UDP Query User{49F63F7B-847F-490A-992B-7CB3B2354511}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe FirewallRules: [TCP Query User{5C325E4B-1487-4FA5-A784-D4045651832A}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe FirewallRules: [UDP Query User{FA6F491A-9F73-4F4E-8BE3-FBF6EAFEA56C}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe FirewallRules: [TCP Query User{A8CF6371-527D-4207-A463-787DE4241414}C:\users\pc\desktop\skype.exe] => (Allow) C:\users\pc\desktop\skype.exe FirewallRules: [UDP Query User{489352ED-B79B-43B0-AD61-052747E85DBD}C:\users\pc\desktop\skype.exe] => (Allow) C:\users\pc\desktop\skype.exe FirewallRules: [TCP Query User{CBF780A3-0EAC-4F40-803D-E1DFB3F56A57}D:\programy\gadu-gadu 10\gg.exe] => (Allow) D:\programy\gadu-gadu 10\gg.exe FirewallRules: [UDP Query User{D4666A52-9C5C-4CEA-8C99-6283A9C6F903}D:\programy\gadu-gadu 10\gg.exe] => (Allow) D:\programy\gadu-gadu 10\gg.exe FirewallRules: [TCP Query User{497CECF7-C361-40A8-B250-0BDC1FA98824}D:\fifa 13\fifa 13\game\fifa13.exe] => (Allow) D:\fifa 13\fifa 13\game\fifa13.exe FirewallRules: [UDP Query User{C27A740E-D03B-43E6-AC6E-AC9D0B12C53B}D:\fifa 13\fifa 13\game\fifa13.exe] => (Allow) D:\fifa 13\fifa 13\game\fifa13.exe FirewallRules: [TCP Query User{D470DA4A-02E4-497E-B500-2685CF1E7FC1}D:\gry\metin2\metin2client.bin] => (Allow) D:\gry\metin2\metin2client.bin FirewallRules: [UDP Query User{B13B4E44-A733-474E-9B29-831EE773EC0A}D:\gry\metin2\metin2client.bin] => (Allow) D:\gry\metin2\metin2client.bin FirewallRules: [TCP Query User{39F51D33-D786-4AFB-A856-B50EABF2BE46}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{CDFA8F07-8341-4714-B151-5D72E4E0FEFB}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [{20473982-6E24-49D6-96B4-7EAB87398F2C}] => (Allow) D:\Gry\Farming Simulator 2013\FarmingSimulator2013.exe FirewallRules: [{437B29D9-13F6-4B3D-B303-CB5BC17E3319}] => (Allow) D:\Gry\Farming Simulator 2013\FarmingSimulator2013Game.exe FirewallRules: [TCP Query User{851C53EC-C497-414A-AF89-09B07E8ABABE}D:\gry\warum client_full\lacznik.dll] => (Allow) D:\gry\warum client_full\lacznik.dll FirewallRules: [UDP Query User{5F97E6CB-1E1A-4D9F-AE14-7D8266E94D65}D:\gry\warum client_full\lacznik.dll] => (Allow) D:\gry\warum client_full\lacznik.dll FirewallRules: [TCP Query User{39FC242D-6E63-4523-9DC1-80133A466375}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe FirewallRules: [UDP Query User{95A3F4A1-011E-4C4F-B5A5-06991CECE497}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe FirewallRules: [TCP Query User{6C0B7D1B-B8FE-4587-BE88-6DA214DF28E5}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe FirewallRules: [UDP Query User{2708EAF7-8153-4CA4-BEF8-20FC7662B870}C:\program files\java\jre7\bin\java.exe] => (Allow) C:\program files\java\jre7\bin\java.exe FirewallRules: [TCP Query User{40B832A6-B02D-471E-B907-3BBE36FE680B}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe FirewallRules: [UDP Query User{9DE86636-F854-4558-9255-853C6BC9D3C7}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe FirewallRules: [TCP Query User{298C73D6-825E-439D-AD74-4C4EE3E76CF9}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{C6A4B27F-B528-4D79-A18E-A6DD51453404}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{3276EE9C-2561-4A1A-AA0E-844939E4B020}D:\gry\cs 1.6\hlds.exe] => (Allow) D:\gry\cs 1.6\hlds.exe FirewallRules: [UDP Query User{61234245-CB4E-4A3F-97C7-ABCB779E49BA}D:\gry\cs 1.6\hlds.exe] => (Allow) D:\gry\cs 1.6\hlds.exe FirewallRules: [TCP Query User{461FB811-D083-454E-9953-245DAB801B5C}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Allow) C:\programdata\electronic arts\need for speed world\data\nfsw.exe FirewallRules: [UDP Query User{A067A10A-3669-4D4D-8D15-6AD5EF441882}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Allow) C:\programdata\electronic arts\need for speed world\data\nfsw.exe FirewallRules: [TCP Query User{E6A0CDE3-DBEC-4C79-AB8C-D6769F1C7A02}D:\gry\fifa 13\fifa 13\game\fifa13.exe] => (Allow) D:\gry\fifa 13\fifa 13\game\fifa13.exe FirewallRules: [UDP Query User{5DEB3FFB-843F-4908-91D8-67AEF2642D4A}D:\gry\fifa 13\fifa 13\game\fifa13.exe] => (Allow) D:\gry\fifa 13\fifa 13\game\fifa13.exe FirewallRules: [{690460D8-55C7-45C2-948F-7C4C46D61335}] => (Allow) D:\Gry\Farming Simulator 2013\FarmingSimulator2013.exe FirewallRules: [{AC2FDF46-A940-42E3-86A5-922B037EEBCB}] => (Allow) D:\Gry\Farming Simulator 2013\FarmingSimulator2013.exe FirewallRules: [{2A15C395-EA14-4F35-9868-637C2E67BE08}] => (Allow) D:\Gry\Farming Simulator 2013\FarmingSimulator2013Game.exe FirewallRules: [{BB4139FA-0716-45C4-837B-F70A9AEE04D5}] => (Allow) D:\Gry\Farming Simulator 2013\FarmingSimulator2013Game.exe FirewallRules: [TCP Query User{A541D20D-7F10-4EE6-BE5A-C364F88F5E53}C:\users\pc\desktop\skróty\programy\virtualdj_pro.exe] => (Allow) C:\users\pc\desktop\skróty\programy\virtualdj_pro.exe FirewallRules: [UDP Query User{D5022B0D-BCAB-47D8-9EE7-9EB97053E260}C:\users\pc\desktop\skróty\programy\virtualdj_pro.exe] => (Allow) C:\users\pc\desktop\skróty\programy\virtualdj_pro.exe FirewallRules: [{74C00204-1840-439F-A6ED-C3694ECEE3E8}] => (Allow) D:\Programy\Steam\Steam.exe FirewallRules: [{2734299C-875F-4D45-B665-5E60D40084D5}] => (Allow) D:\Programy\Steam\Steam.exe FirewallRules: [TCP Query User{1FC2CFE2-1421-4225-ABBB-6531D637CF25}D:\programy\totalcmd\totalcmd.exe] => (Allow) D:\programy\totalcmd\totalcmd.exe FirewallRules: [UDP Query User{BA28B07A-B633-4A1F-89A5-E1DC5BC1DAF0}D:\programy\totalcmd\totalcmd.exe] => (Allow) D:\programy\totalcmd\totalcmd.exe FirewallRules: [{4CBAA7B9-055D-4B5E-8CED-D06F7C004607}] => (Allow) D:\Programy\Steam\SteamApps\common\Half-Life\hl.exe FirewallRules: [{F7109009-92F0-4E20-84A5-5D6D4A508303}] => (Allow) D:\Programy\Steam\SteamApps\common\Half-Life\hl.exe FirewallRules: [TCP Query User{78D6B3BB-2290-462C-A289-12CED6D81FAF}D:\gry\world_of_tanks\wotlauncher.exe] => (Allow) D:\gry\world_of_tanks\wotlauncher.exe FirewallRules: [UDP Query User{918A4FF1-7288-45A8-BBC1-233D97291782}D:\gry\world_of_tanks\wotlauncher.exe] => (Allow) D:\gry\world_of_tanks\wotlauncher.exe FirewallRules: [TCP Query User{DE93C272-C972-4686-AA08-D091991E2687}D:\gry\world_of_tanks\worldoftanks.exe] => (Allow) D:\gry\world_of_tanks\worldoftanks.exe FirewallRules: [UDP Query User{E201C2AC-73BA-42CC-9E70-98A285DC04A6}D:\gry\world_of_tanks\worldoftanks.exe] => (Allow) D:\gry\world_of_tanks\worldoftanks.exe FirewallRules: [{B0B5B31C-4BB9-4AFA-8CD3-B670911FCAC0}] => (Allow) D:\Gry\STEAM\Steam.exe FirewallRules: [{F9982B40-5895-4540-BFE6-79C803196E54}] => (Allow) D:\Gry\STEAM\Steam.exe FirewallRules: [TCP Query User{53E150D6-FD69-4618-90C9-19BF9B4ADAAB}D:\gry\cs 1.6\hl.exe] => (Allow) D:\gry\cs 1.6\hl.exe FirewallRules: [UDP Query User{4EB0C8C8-6661-4890-A93C-8CB5C7BB1240}D:\gry\cs 1.6\hl.exe] => (Allow) D:\gry\cs 1.6\hl.exe FirewallRules: [TCP Query User{3E4D4AB2-4951-4A62-8150-B4745B42164F}C:\users\pc\desktop\wszystko we wszystkim\cs 1.6\hl.exe] => (Allow) C:\users\pc\desktop\wszystko we wszystkim\cs 1.6\hl.exe FirewallRules: [UDP Query User{367E10F3-CC69-4CC2-A139-3E8C4B12992F}C:\users\pc\desktop\wszystko we wszystkim\cs 1.6\hl.exe] => (Allow) C:\users\pc\desktop\wszystko we wszystkim\cs 1.6\hl.exe FirewallRules: [{5199E288-EFFC-4C5D-B202-3B918EC07FBB}] => (Allow) D:\Gry\STEAM\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{662BDA88-500F-4A50-B007-6D7748EDA5A4}] => (Allow) D:\Gry\STEAM\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{A29786E0-1B7B-4D80-B8AF-51E61FBD54D4}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{C5DB62E8-2FDA-4ADD-8A26-376A6249921B}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{3991D2DC-E0A0-4E52-8B9A-806F73FD356A}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{D7BCD1C9-5690-42FA-BDA6-0F231038DC1E}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{0CFA4F1F-5E5B-42D6-AD08-E802E112F4A2}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{9B2057AA-1730-4235-9991-115A202B2704}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{1A39CC4B-0781-4FB4-9ACF-1D4D8FD2C69C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{3AA916FD-66DB-4CF5-B70F-F7B1A885AC73}] => (Allow) LPort=2869 FirewallRules: [{8639ECE4-49AD-46DE-91B6-37B8963B6421}] => (Allow) LPort=1900 FirewallRules: [{4210B075-E7EE-4FA8-88DE-A452422924AD}] => (Allow) D:\Gry\STEAM\bin\steamwebhelper.exe FirewallRules: [{E192B5B3-8379-48ED-A56F-C96CA39C750C}] => (Allow) D:\Gry\STEAM\bin\steamwebhelper.exe FirewallRules: [{2864CD95-A525-4173-9E50-2833945D12B9}] => (Allow) D:\Gry\Farming Simulator 2013\x64\FarmingSimulator2013Game.exe FirewallRules: [{913725B5-B6AA-4DF7-B573-1C1C1FCC2CD1}] => (Allow) D:\Gry\Farming Simulator 2013\x64\FarmingSimulator2013Game.exe FirewallRules: [{FCCDF0CB-A1C7-435E-B047-BFFCBF376841}] => (Allow) D:\Gry\Farming Simulator 2013\x86\FarmingSimulator2013Game.exe FirewallRules: [{4C46A0A2-0173-4B29-B2A0-94F94772FA6B}] => (Allow) D:\Gry\Farming Simulator 2013\x86\FarmingSimulator2013Game.exe FirewallRules: [{8E8A5F8C-7B0A-485D-B819-D566C1E764D4}] => (Allow) D:\Gry\FIFA 14\FIFA 14\Game\fifa14.exe FirewallRules: [{661996E9-DEA7-4BF4-955E-35ECACDC74F7}] => (Allow) D:\Gry\FIFA 14\FIFA 14\Game\fifa14.exe FirewallRules: [{52E72C7D-615F-40E1-A4F2-37C6FD767818}] => (Allow) D:\Programy\GameforgeLive\gfl_client.exe FirewallRules: [{E5C23A65-87E1-494F-BA30-3146694FB78E}] => (Allow) D:\Gry\STEAM\SteamApps\common\raceroom racing experience\Game\RRRE.exe FirewallRules: [{FE97ABF7-39B9-4C3D-9ADA-D30DB920B666}] => (Allow) D:\Gry\STEAM\SteamApps\common\raceroom racing experience\Game\RRRE.exe FirewallRules: [TCP Query User{2C171F00-F273-4CAB-BEF3-264382184659}D:\gry\fifa 14\fifa 15\fifa15.exe] => (Allow) D:\gry\fifa 14\fifa 15\fifa15.exe FirewallRules: [UDP Query User{FD3FBEA8-9690-48CB-9BA4-9BD6921B2A22}D:\gry\fifa 14\fifa 15\fifa15.exe] => (Allow) D:\gry\fifa 14\fifa 15\fifa15.exe FirewallRules: [TCP Query User{53782169-420D-4D3C-8433-EDB5E575C776}D:\gry\fifa 15\fifa 15\fifa15.exe] => (Allow) D:\gry\fifa 15\fifa 15\fifa15.exe FirewallRules: [UDP Query User{9AE86F7C-9D96-4EF2-B955-63546093E631}D:\gry\fifa 15\fifa 15\fifa15.exe] => (Allow) D:\gry\fifa 15\fifa 15\fifa15.exe FirewallRules: [TCP Query User{14CA6EF6-9C64-4BF3-8612-D28B0C9859AF}C:\users\pc\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\pc\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{60F1DEF4-6F51-4986-BD9F-0E726AFAE97E}C:\users\pc\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\pc\appdata\roaming\utorrent\utorrent.exe FirewallRules: [TCP Query User{1618E1FD-5DA1-4418-BA47-EB9F1F45F300}D:\gry\steam\steamapps\common\cry of fear\cof.exe] => (Allow) D:\gry\steam\steamapps\common\cry of fear\cof.exe FirewallRules: [UDP Query User{1C969066-823E-4AF0-89A7-0FA656E4E7CC}D:\gry\steam\steamapps\common\cry of fear\cof.exe] => (Allow) D:\gry\steam\steamapps\common\cry of fear\cof.exe FirewallRules: [TCP Query User{DB1B8202-04C4-49F7-B99B-D02212B7076D}D:\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) D:\the witcher 2 enhanced edition\bin\witcher2.exe FirewallRules: [UDP Query User{BB612DCE-F845-45E5-8EAE-992A245C4C6D}D:\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) D:\the witcher 2 enhanced edition\bin\witcher2.exe FirewallRules: [TCP Query User{25F71176-6D4F-47AB-AC60-2845FC0A404B}C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe FirewallRules: [UDP Query User{691AF72F-B313-4D49-AA3E-BC03993DA3B9}C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe FirewallRules: [{1C8F9680-F8D3-4E94-ABD2-2E0C81249AE9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{EB7B41BD-9A3B-4A8F-9B8A-35FEB778A739}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{6D91F6D1-62BC-48C0-ACFE-D4AF0E490D05}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{0C553EDF-A20D-4CEE-B401-3FE6B4A679B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{8ED4CDD7-D3B1-44E0-834C-7720A1CEF573}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{DA125D28-C4CF-4130-9B48-3C8757AB09E1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{925AADDC-AFA3-4D8F-97AE-EEDD20122DEB}D:\gry\steam\steamapps\common\war thunder\aces.exe] => (Allow) D:\gry\steam\steamapps\common\war thunder\aces.exe FirewallRules: [UDP Query User{9B48D89B-6478-4705-B3A1-AFCE2A251455}D:\gry\steam\steamapps\common\war thunder\aces.exe] => (Allow) D:\gry\steam\steamapps\common\war thunder\aces.exe FirewallRules: [TCP Query User{77DA4EE0-F4B8-44EE-8EF9-E80429B5CE44}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [UDP Query User{077CE1B1-E5AA-4313-94E5-3067364A5E2D}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [{88B92942-9B19-4D1F-870F-08E45E81F8AD}] => (Allow) LPort=47659 FirewallRules: [{ED74DE12-1624-4513-B2EA-E6FCFD0B8224}] => (Allow) LPort=25565 FirewallRules: [{C0E70A62-CEC1-41C0-8834-978F9DFA6493}] => (Allow) D:\gtaaaaa\Grand Theft Auto IV\LaunchGTAIV.exe FirewallRules: [{45DB397F-7E15-47C1-AB58-FD72FD1DF78E}] => (Allow) D:\gtaaaaa\Grand Theft Auto IV\LaunchGTAIV.exe FirewallRules: [{3CAD7CF0-E83C-497C-886A-5FF609EEDD4E}] => (Allow) LPort=9570 FirewallRules: [{F1E0618D-CE57-4A52-BCF8-921AEC5B5B52}] => (Allow) D:\simcitymaisc\SimCity\SimCity\SimCity.exe FirewallRules: [{0CA50F22-AB79-47AA-BBDB-9491961E783D}] => (Allow) D:\simcitymaisc\SimCity\SimCity\SimCity.exe FirewallRules: [TCP Query User{B45C9496-831D-446C-B2A2-9A759A880557}D:\simcity\simcity\simcity.exe] => (Allow) D:\simcity\simcity\simcity.exe FirewallRules: [UDP Query User{476B2F51-2668-4267-A635-CE263000721F}D:\simcity\simcity\simcity.exe] => (Allow) D:\simcity\simcity\simcity.exe FirewallRules: [{C5DCDB61-EC40-4D86-996D-9438CE0A07B8}] => (Block) D:\simcity\simcity\simcity.exe FirewallRules: [{BE353BAB-5BE6-4BE0-9E95-2B7D7D6DC267}] => (Block) D:\simcity\simcity\simcity.exe FirewallRules: [{CD7070CD-5E77-4A45-BD97-6E2779654255}] => (Allow) D:\simcity lol\SimCity 2013 Offline\SimCity\SimCity.exe FirewallRules: [{279BDD80-F0E4-4643-91AD-C2C015FB2040}] => (Allow) D:\simcity lol\SimCity 2013 Offline\SimCity\SimCity.exe FirewallRules: [{08A9A03A-AED5-47D7-959D-791E5DEECE64}] => (Allow) D:\Gry\STEAM\SteamApps\common\Half-Life\hl.exe FirewallRules: [{D849C6DA-B8BF-4975-93CF-F73F7E0A2123}] => (Allow) D:\Gry\STEAM\SteamApps\common\Half-Life\hl.exe FirewallRules: [{741C40B9-3E17-40A5-BAC0-B5992A63F670}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{CA1B4E8A-83F6-475F-A694-024750965230}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{D39E16D3-8025-4150-9DAD-E2867E31AA79}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{62F4B494-EA96-4B0E-824D-5B14F855566C}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{33D4ACA3-B016-416E-A753-F68B14617C86}] => (Allow) D:\Gry\FIFA 15\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{9416EF98-55C1-44C0-8BB7-7DBCAD24BA98}] => (Allow) D:\Gry\FIFA 15\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{3C4424BC-9D25-4F74-B945-BBF0168A187D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{AE88C7A8-C70E-4D74-A4A4-B924953197F3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{BCD0E343-DD96-49EB-8FA7-7567779E55EB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/19/2015 11:37:27 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80004005 Error: (07/19/2015 10:38:35 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/18/2015 09:33:18 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: fifa15.exe, wersja: 1.8.0.0, sygnatura czasowa: 0x55699cb1 Nazwa modułu powodującego błąd: fifa15.exe, wersja: 1.8.0.0, sygnatura czasowa: 0x55699cb1 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000398f58a Identyfikator procesu powodującego błąd: 0x464 Godzina uruchomienia aplikacji powodującej błąd: 0xfifa15.exe0 Ścieżka aplikacji powodującej błąd: fifa15.exe1 Ścieżka modułu powodującego błąd: fifa15.exe2 Identyfikator raportu: fifa15.exe3 Error: (07/18/2015 04:46:20 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 90080108 Error: (07/18/2015 12:48:53 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/17/2015 07:35:20 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: GWXUX.exe, wersja: 6.3.9600.17923, sygnatura czasowa: 0x55945dbd Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.18869, sygnatura czasowa: 0x556366f2 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000000000004ada4 Identyfikator procesu powodującego błąd: 0x1644 Godzina uruchomienia aplikacji powodującej błąd: 0xGWXUX.exe0 Ścieżka aplikacji powodującej błąd: GWXUX.exe1 Ścieżka modułu powodującego błąd: GWXUX.exe2 Identyfikator raportu: GWXUX.exe3 Error: (07/17/2015 05:27:56 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: fm.exe, wersja: 15.3.2.0, sygnatura czasowa: 0x551d37bc Nazwa modułu powodującego błąd: fm.exe, wersja: 15.3.2.0, sygnatura czasowa: 0x551d37bc Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00b5fdb6 Identyfikator procesu powodującego błąd: 0x153c Godzina uruchomienia aplikacji powodującej błąd: 0xfm.exe0 Ścieżka aplikacji powodującej błąd: fm.exe1 Ścieżka modułu powodującego błąd: fm.exe2 Identyfikator raportu: fm.exe3 Error: (07/17/2015 10:20:14 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80004005 Error: (07/17/2015 10:08:54 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: steam.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x5475de82 Nazwa modułu powodującego błąd: libpdcurses.dll, wersja: 0.0.0.0, sygnatura czasowa: 0x4c11ea2e Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00004adf Identyfikator procesu powodującego błąd: 0x9a4 Godzina uruchomienia aplikacji powodującej błąd: 0xsteam.exe0 Ścieżka aplikacji powodującej błąd: steam.exe1 Ścieżka modułu powodującego błąd: steam.exe2 Identyfikator raportu: steam.exe3 Error: (07/17/2015 09:48:40 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (07/19/2015 10:37:18 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: is3srv szkg5 Error: (07/18/2015 11:39:53 PM) (Source: volsnap) (EventID: 36) (User: ) Description: Wykonywanie kopii w tle woluminu C: zostało przerwane, ponieważ nie można powiększyć magazynu kopii w tle z powodu limitu wprowadzonego przez użytkownika. Error: (07/18/2015 12:47:33 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: is3srv szkg5 Error: (07/17/2015 09:32:46 PM) (Source: Tcpip) (EventID: 4199) (User: ) Description: System wykrył konflikt adresów między adresem IP 192.168.1.104 a komputerem o sieciowym adresie sprzętowym C4-43-8F-67-34-C5. W rezultacie mogą być zakłócone operacje sieciowe na tym komputerze. Error: (07/17/2015 09:47:22 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: is3srv szkg5 Error: (07/16/2015 09:53:02 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: is3srv szkg5 Error: (07/15/2015 08:54:43 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi lmhosts. Error: (07/15/2015 11:00:17 AM) (Source: volsnap) (EventID: 36) (User: ) Description: Wykonywanie kopii w tle woluminu C: zostało przerwane, ponieważ nie można powiększyć magazynu kopii w tle z powodu limitu wprowadzonego przez użytkownika. Error: (07/15/2015 10:36:13 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: is3srv szkg5 Error: (07/14/2015 09:20:11 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Microsoft Office: ========================= Error: (07/19/2015 11:37:27 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80004005 Error: (07/19/2015 10:38:35 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/18/2015 09:33:18 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: fifa15.exe1.8.0.055699cb1fifa15.exe1.8.0.055699cb1c0000005000000000398f58a46401d0c1791a15079eD:\Gry\FIFA 15\FIFA 15\fifa15.exeD:\Gry\FIFA 15\FIFA 15\fifa15.exed72edbc6-2d83-11e5-a589-bc5ff43d27fc Error: (07/18/2015 04:46:20 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 90080108 Error: (07/18/2015 12:48:53 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/17/2015 07:35:20 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: GWXUX.exe6.3.9600.1792355945dbdntdll.dll6.1.7601.18869556366f2c0000005000000000004ada4164401d0c0b6f1f78eedC:\Windows\System32\GWX\GWXUX.exeC:\Windows\SYSTEM32\ntdll.dll31828d67-2caa-11e5-af8c-bc5ff43d27fc Error: (07/17/2015 05:27:56 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: fm.exe15.3.2.0551d37bcfm.exe15.3.2.0551d37bcc000000500b5fdb6153c01d0c0654082ac99D:\MANAGER\Football Manager 2015 PL - v. 15.3.2\Football Manager 2015\fm.exeD:\MANAGER\Football Manager 2015 PL - v. 15.3.2\Football Manager 2015\fm.exe65d04292-2c98-11e5-af8c-bc5ff43d27fc Error: (07/17/2015 10:20:14 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80004005 Error: (07/17/2015 10:08:54 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: steam.exe0.0.0.05475de82libpdcurses.dll0.0.0.04c11ea2ec000000500004adf9a401d0c06797e6ee79C:\Users\pc\AppData\Roaming\openvr\Reversed\steam.exeC:\Users\pc\AppData\Roaming\openvr\Reversed\libpdcurses.dll1041c1b8-2c5b-11e5-af8c-bc5ff43d27fc Error: (07/17/2015 09:48:40 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 CodeIntegrity Errors: =================================== Date: 2015-07-19 11:57:20.698 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-07-19 11:48:59.521 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-07-19 11:13:29.263 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-07-19 10:37:02.552 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-07-18 15:04:16.890 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-07-18 12:59:24.742 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-07-18 12:47:22.424 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-07-17 23:11:34.830 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-07-17 23:05:31.434 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-07-17 22:55:30.161 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: AMD FX(tm)-6100 Six-Core Processor Percentage of memory in use: 27% Total physical RAM: 16367.24 MB Available physical RAM: 11903.71 MB Total Virtual: 32732.69 MB Available Virtual: 27914.98 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:97.56 GB) (Free:13.9 GB) NTFS Drive d: () (Fixed) (Total:833.86 GB) (Free:684.48 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 855EA8F1) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=833.9 GB) - (Type=07 NTFS) ==================== End of log ============================