Additional scan result of Farbar Recovery Scan Tool (x64) Version:20-08-2015 Ran by user (2015-08-20 14:18:49) Running from C:\Users\user\Desktop\logi Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1854063861-834038236-3450837710-500 - Administrator - Disabled) Gość (S-1-5-21-1854063861-834038236-3450837710-501 - Limited - Disabled) user (S-1-5-21-1854063861-834038236-3450837710-1001 - Administrator - Enabled) => C:\Users\user ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1854063861-834038236-3450837710-1001\...\uTorrent) (Version: 3.4.3.40760 - BitTorrent Inc.) Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.25.5 - Mirillis) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated) Aktualizacje NVIDIA 2.4.3.31 (Version: 2.4.3.31 - NVIDIA Corporation) Hidden AVG 2015 (Version: 15.0.4392 - AVG Technologies) Hidden Bandicam (HKLM-x32\...\Bandicam) (Version: 2.2.5.815 - Bandisoft.com) Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Camtasia Studio 8 (HKLM-x32\...\{904AC0F0-F69E-467E-A719-B083940F608A}) (Version: 8.5.2.1999 - TechSmith Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform) Chromium (HKU\S-1-5-21-1854063861-834038236-3450837710-1001\...\Chromium) (Version: 45.0.2420.0 - Chromium) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd) ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - ) Fraps (HKLM-x32\...\Fraps) (Version: - ) Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Earth Pro (HKLM-x32\...\{35DAA04C-1720-4BE3-A920-A03731EC6A1D}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden Gothic III (HKLM-x32\...\{02B244A2-7F6A-42E8-A36F-8C385D7A1625}) (Version: 1.00.0000 - JoWooD Productions Software AG) Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - ) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.383 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.383 - LogMeIn, Inc.) Hidden Malwarebytes Anti-Malware wersja 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 3.11.149.2 - McAfee, Inc.) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Mozilla Firefox 40.0.2 (x86 pl) (HKLM-x32\...\Mozilla Firefox 40.0.2 (x86 pl)) (Version: 40.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.2 - Mozilla) NVIDIA GeForce Experience 2.4.3.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.31 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 352.86 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Sterownik graficzny 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA Wirtualny dźwięk Miracast 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 352.86 - NVIDIA Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.88.77.0 - Overwolf Ltd.) Panel sterowania NVIDIA 352.86 (Version: 352.86 - NVIDIA Corporation) Hidden PowerISO (HKLM-x32\...\PowerISO) (Version: 6.2 - Power Software Ltd) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.25.108.2014 - Realtek) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.0 - Rockstar Games) screenSHU - the fastest screen capture ever. (HKLM-x32\...\screenSHU) (Version: - ) SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.3.31 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation) Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.) SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) Spotify (HKU\S-1-5-21-1854063861-834038236-3450837710-1001\...\Spotify) (Version: 1.0.11.134.ga37df67b - Spotify AB) SpyHunter4 wersja 4.18.9.4384 (HKLM\...\SpyHunter4_is1) (Version: 4.18.9.4384 - ) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Wiedźmin 2 Zabójcy Królów Edycja Rozszerzona version 3.4.0 (HKLM-x32\...\Wiedźmin 2 Zabójcy Królów Edycja Rozszerzona_is1) (Version: 3.4.0 - GTX Box Team) WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) World of Tanks (HKU\S-1-5-21-1854063861-834038236-3450837710-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 03-08-2015 16:33:59 Installed OldSchool RuneScape Launcher 1.2.6 17-08-2015 03:26:53 Zaplanowany punkt kontrolny 18-08-2015 18:37:00 Zainstalowane Gothic III 20-08-2015 02:50:03 Installed AVG 2015 20-08-2015 02:50:18 Installed AVG 2015 ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {093571AE-400B-4B67-B3F2-80C0C38E970D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-05-08] (Piriform Ltd) Task: {12B21A9B-DC87-4D70-9A8C-3717C62F0B03} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation) Task: {29C9FD60-048A-4F83-A946-07D7C4D8238F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {333B5A9A-B018-42B5-AE01-81B059FC4A98} - System32\Tasks\Norton Security\Norton Error Processor => C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\SymErr.exe Task: {60CF5FA6-65D9-4337-B789-3B39CDAC64B2} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2015-08-13] (Overwolf LTD) Task: {63C4D170-976C-4769-B5F5-1AC00C00991B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-20] (Adobe Systems Incorporated) Task: {719EBD4D-C0C8-419F-B00B-1ED1F77F9DEA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: {D347C743-DB9D-4F59-9261-8387C2C3A7E6} - System32\Tasks\Norton Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\SymErr.exe Task: {F298711D-C47E-43BF-A1C1-E9467600D759} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GKOu5KI8J0Fu65ilvAMpBHle.job => C:\Users\user\AppData\Roaming\GKOu5KI8J0Fu65ilvAMpBHle.exe <==== ATTENTION Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-05-23 21:30 - 2015-05-12 05:30 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2013-09-04 19:21 - 2013-09-04 19:21 - 02112000 _____ () C:\Program Files (x86)\screenSHU\screenSHU.exe 2015-05-08 20:50 - 2015-05-08 20:50 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2015-05-23 21:28 - 2015-05-08 02:36 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-07-29 10:33 - 2015-07-29 10:32 - 01007104 _____ () E:\Origin\platforms\qwindows.dll 2015-07-29 10:33 - 2015-07-29 10:32 - 00023552 _____ () E:\Origin\imageformats\qgif.dll 2015-07-29 10:33 - 2015-07-29 10:32 - 00024576 _____ () E:\Origin\imageformats\qico.dll 2015-07-29 10:33 - 2015-07-29 10:32 - 00216576 _____ () E:\Origin\imageformats\qjpeg.dll 2015-07-29 10:33 - 2015-07-29 10:32 - 00261120 _____ () E:\Origin\imageformats\qmng.dll 2015-07-29 10:33 - 2015-07-29 10:32 - 00019456 _____ () E:\Origin\imageformats\qtga.dll 2015-07-29 10:33 - 2015-07-29 10:32 - 00337408 _____ () E:\Origin\imageformats\qtiff.dll 2015-07-29 10:33 - 2015-07-29 10:32 - 00018944 _____ () E:\Origin\imageformats\qwbmp.dll 2011-06-08 09:32 - 2011-06-08 09:32 - 00011362 _____ () C:\Program Files (x86)\screenSHU\mingwm10.dll 2011-06-08 09:32 - 2011-06-08 09:32 - 00043008 _____ () C:\Program Files (x86)\screenSHU\libgcc_s_dw2-1.dll 2015-08-13 16:01 - 2015-08-13 16:01 - 40555008 _____ () C:\Program Files (x86)\Overwolf\0.88.77.0\libcef.DLL 2015-05-23 21:33 - 2013-09-16 12:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\user\OneDrive:ms-properties ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1854063861-834038236-3450837710-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\user\Downloads\asd.jpg DNS Servers: 185.56.30.114 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKU\S-1-5-21-1854063861-834038236-3450837710-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-1854063861-834038236-3450837710-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-1854063861-834038236-3450837710-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1854063861-834038236-3450837710-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_A008D3C4AC1F70CC0223825A47FA7BBC" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe FirewallRules: [{1D3D724C-51FA-4200-AAAA-DCB8E024A1B0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{ED56CCD2-AB5F-4FB0-8576-33BAB51B6533}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{C8ADCB26-A801-428A-B4D7-1E37488BD080}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{26CDE9E2-7FED-42F0-9574-E92976B1A341}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{C117FD47-37B6-41F2-9720-1B121FCD9E5D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{61155AAB-01C7-46BD-ADB7-05F46EA6C3EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{ECBA268C-29A9-4F70-A4AE-72F9C6B6FC61}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{062C37E5-93ED-45FF-A155-12C07DF6BB38}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{E9C1937F-E93E-41E0-A910-FEB354A7BD37}] => (Allow) E:\Steam\bin\steamwebhelper.exe FirewallRules: [{7C3457D6-DEC6-4B98-BF7C-A16B4150E1D1}] => (Allow) E:\Steam\bin\steamwebhelper.exe FirewallRules: [{4B9E4CFF-E31C-44B4-93E1-69D009E135E9}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{EB8030C8-E552-4665-8AE8-2867895E4FB7}] => (Allow) C:\Users\user\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9827D537-8EEB-434A-B8AA-EB585CE79F14}] => (Allow) E:\SKILL\GameforgeLive\gfl_client.exe FirewallRules: [{BDAE2419-127E-4D41-AAB4-12E32B7337CC}] => (Allow) E:\SKILL\GameforgeLive\Games\POL_pol\S.K.I.L.L\Binaries\Win32\sf2.exe FirewallRules: [{972927FC-6096-422E-9CEB-7830B7F1AE9C}] => (Allow) E:\SKILL\GameforgeLive\Games\POL_pol\S.K.I.L.L\Binaries\Win32\sf2.exe FirewallRules: [{684FD3F3-7C07-4767-92B6-CE915E1AC67B}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{E0D96BD2-675B-472E-9F3D-AAAACE9EE625}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{2B331A1F-63CB-49D8-BC13-7B423AA0756C}] => (Allow) C:\Users\user\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [TCP Query User{7E973E8D-61FE-40C6-89B1-B72D62D00B06}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{735DCEAA-4FF3-4BFD-91E6-A8166EABDAE1}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{D5878995-CC83-4AEB-98C8-7FA9DB878663}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe FirewallRules: [UDP Query User{E6232571-A174-47B0-84CB-F1E5008FB52D}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe FirewallRules: [TCP Query User{A3BAD9C7-4D50-4386-89F3-D9B30200E960}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{6B79FE10-01A8-4DB6-9647-225FD6C53C78}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe FirewallRules: [TCP Query User{DA0FA0FE-218F-4DBB-9A0A-DF2642906673}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{C97246C1-DCF4-434A-9AF2-67082553BFE2}C:\users\user\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\user\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{1E0FFA19-A159-4A2F-973A-C43D224BC75F}E:\steam\steamapps\common\the war z\infestation.exe] => (Allow) E:\steam\steamapps\common\the war z\infestation.exe FirewallRules: [UDP Query User{C7524429-C299-4704-B45A-FDFF7BB97696}E:\steam\steamapps\common\the war z\infestation.exe] => (Allow) E:\steam\steamapps\common\the war z\infestation.exe FirewallRules: [TCP Query User{8790A3A9-7DB0-4D42-A36A-1AF9C60289BF}E:\far cry 4\bin\farcry4.exe] => (Allow) E:\far cry 4\bin\farcry4.exe FirewallRules: [UDP Query User{AE58901E-F93F-4E17-AD9F-4FDBD0EAC572}E:\far cry 4\bin\farcry4.exe] => (Allow) E:\far cry 4\bin\farcry4.exe FirewallRules: [TCP Query User{6AF8ACD5-FB6B-4F38-A605-5173D2E60598}E:\sr3\saints row the third\saintsrowthethird_dx11.exe] => (Allow) E:\sr3\saints row the third\saintsrowthethird_dx11.exe FirewallRules: [UDP Query User{F1F747FD-F05A-4B95-A90C-236513F065FD}E:\sr3\saints row the third\saintsrowthethird_dx11.exe] => (Allow) E:\sr3\saints row the third\saintsrowthethird_dx11.exe FirewallRules: [TCP Query User{ED68EDE3-7158-45DE-91B2-3C7DC7F1E74A}E:\sr3\saints row the third\saintsrowthethird.exe] => (Allow) E:\sr3\saints row the third\saintsrowthethird.exe FirewallRules: [UDP Query User{690C2415-A505-4D30-9EBE-F9A1AE2F7111}E:\sr3\saints row the third\saintsrowthethird.exe] => (Allow) E:\sr3\saints row the third\saintsrowthethird.exe FirewallRules: [TCP Query User{692F6A4F-F48E-45FB-AEF3-A28FE13E79E9}C:\program files (x86)\gtx box team\wiedźmin 2 zabójcy królów edycja rozszerzona\bin\witcher2.exe] => (Allow) C:\program files (x86)\gtx box team\wiedźmin 2 zabójcy królów edycja rozszerzona\bin\witcher2.exe FirewallRules: [UDP Query User{E14C0052-1620-4608-AA08-49E718C59127}C:\program files (x86)\gtx box team\wiedźmin 2 zabójcy królów edycja rozszerzona\bin\witcher2.exe] => (Allow) C:\program files (x86)\gtx box team\wiedźmin 2 zabójcy królów edycja rozszerzona\bin\witcher2.exe FirewallRules: [TCP Query User{B8F89E3D-7D7D-430D-B98F-A840AB19B5E4}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe FirewallRules: [UDP Query User{DFAD6C54-B0E6-4FBD-96A0-0543465AE9A4}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe FirewallRules: [TCP Query User{E356CC53-6CE8-4318-AE52-EA758A52E849}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe FirewallRules: [UDP Query User{10C04A33-04C0-48DB-A98A-63B8FC07DAF7}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe FirewallRules: [{C484EB10-6636-4334-BDB7-7F81B2D64623}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{D9382CAB-3B0B-4DDD-B09E-2B28BFF6704E}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [TCP Query User{666BBA26-EBFE-463C-A18F-5E841150630C}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{DA68300D-E048-42FD-B00E-CFF5A0A5036B}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe FirewallRules: [{E48B9138-EA52-49CF-BE1F-22C6E9EAD0CE}] => (Allow) LPort=8317 FirewallRules: [{60F9B584-3F4C-4A62-9FB3-88F527A79716}] => (Allow) LPort=1688 FirewallRules: [{D2079DA4-3C5D-4D8F-A723-B4E95FF59BB0}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{C0B1CAB9-CB9B-4172-B273-A831493D6FDE}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe FirewallRules: [{ED1762F7-2CFD-4F74-ADEB-764F97023461}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{D76FC7B6-7232-4CD2-BC8F-D30E378389DD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (08/20/2015 02:12:15 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: plugin-container.exe, wersja: 40.0.2.5702, sygnatura czasowa: 0x55cc03bd Nazwa modułu powodującego błąd: mozglue.dll, wersja: 40.0.2.5702, sygnatura czasowa: 0x55cbf190 Kod wyjątku: 0x80000003 Przesunięcie błędu: 0x0000e631 Identyfikator procesu powodującego błąd: 0xd90 Godzina uruchomienia aplikacji powodującej błąd: 0xplugin-container.exe0 Ścieżka aplikacji powodującej błąd: plugin-container.exe1 Ścieżka modułu powodującego błąd: plugin-container.exe2 Identyfikator raportu: plugin-container.exe3 Pełna nazwa pakietu powodującego błąd: plugin-container.exe4 Identyfikator aplikacji względem pakietu powodującego błąd: plugin-container.exe5 Error: (08/20/2015 01:26:20 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla „C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1”. Błąd w pliku manifestu lub w pliku zasad „C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2” w wierszu C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3. Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest. Składnik 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest. Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Nie można zainicjować indeksu. Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Nie można zainicjować aplikacji. Kontekst: aplikacja Windows Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Nie można zainicjować obiektu programu zbierającego. Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Nie można zainicjować wtyczki w . Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 3057) (User: ) Description: Nie można zainicjować menedżera wtyczek . Kontekst: aplikacja Windows Szczegóły: (HRESULT : 0x8e5e0210) (0x8e5e0210) Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: Usługa Windows Search jest zatrzymywana, ponieważ wystąpił problem z indeksatorem: The catalog is corrupt. Szczegóły: Wykaz indeksów zawartości jest uszkodzony. 0xc0041801 (0xc0041801) Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: Usługa wyszukiwania wykryła uszkodzone pliki danych w indeksie {id=4810 - enduser\mssearch2\search\ytrip\common\util\jetutil.cpp (167)}. Usługa podejmie próbę automatycznego rozwiązania tego problemu przez odbudowanie indeksu. Szczegóły: 0x8e5e0210 (0x8e5e0210) Error: (08/20/2015 01:25:09 PM) (Source: ESENT) (EventID: 455) (User: ) Description: SearchIndexer (4224) Windows: Wystąpił błąd -1811 (0xfffff8ed) podczas otwierania pliku dziennika C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb00077.log. System errors: ============= Error: (08/20/2015 02:12:38 PM) (Source: DCOM) (EventID: 10010) (User: PC) Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Error: (08/20/2015 02:12:38 PM) (Source: DCOM) (EventID: 10010) (User: PC) Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Error: (08/20/2015 02:12:38 PM) (Source: DCOM) (EventID: 10010) (User: PC) Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Error: (08/20/2015 02:04:05 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa SpyHunter 4 Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (08/20/2015 01:26:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error: (08/20/2015 01:25:16 PM) (Source: DCOM) (EventID: 10005) (User: PC) Description: 1053WSearchNiedostępny{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (08/20/2015 01:25:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Windows Search z powodu następującego błędu: %%1053 Error: (08/20/2015 01:25:16 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Windows Search. Error: (08/20/2015 01:25:16 PM) (Source: DCOM) (EventID: 10005) (User: PC) Description: 1053WSearchNiedostępny{B52D54BB-4818-4EB9-AA80-F9EACD371DF8} Error: (08/20/2015 01:25:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Windows Search z powodu następującego błędu: %%1053 Microsoft Office: ========================= Error: (08/20/2015 02:12:15 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: plugin-container.exe40.0.2.570255cc03bdmozglue.dll40.0.2.570255cbf190800000030000e631d9001d0db414e1386d7C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozglue.dllb14f1066-4734-11e5-827c-d050993f10ac Error: (08/20/2015 01:26:20 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifestC:\Users\user\Downloads\esetsmartinstaller_plk.exe Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Kontekst: aplikacja Windows Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Kontekst: aplikacja Windows, wykaz SystemIndex Szczegóły: Nie można odnaleźć określonego obiektu. Określ nazwę istniejącego obiektu. (HRESULT : 0x80040d06) (0x80040d06) Search.TripoliIndexer Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 3057) (User: ) Description: Kontekst: aplikacja Windows Szczegóły: (HRESULT : 0x8e5e0210) (0x8e5e0210) Search.TripoliIndexer Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: Szczegóły: Wykaz indeksów zawartości jest uszkodzony. 0xc0041801 (0xc0041801) The catalog is corrupt Error: (08/20/2015 01:25:09 PM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: Szczegóły: 0x8e5e0210 (0x8e5e0210) 4810 - enduser\mssearch2\search\ytrip\common\util\jetutil.cpp (167) Error: (08/20/2015 01:25:09 PM) (Source: ESENT) (EventID: 455) (User: ) Description: SearchIndexer4224Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb00077.log-1811 (0xfffff8ed) ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz Percentage of memory in use: 13% Total physical RAM: 16323.74 MB Available physical RAM: 14150.67 MB Total Virtual: 32707.74 MB Available Virtual: 30333.96 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:488.28 GB) (Free:310.67 GB) NTFS Drive d: (Zastrzeżone przez system) (Fixed) (Total:0.34 GB) (Free:0.08 GB) NTFS ==>[system with boot components (obtained from reading drive)] Drive e: (Data) (Fixed) (Total:442.89 GB) (Free:308.22 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 591E7882) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=442.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=488.3 GB) - (Type=07 NTFS) ==================== End of log ============================