Additional scan result of Farbar Recovery Scan Tool (x64) Version:20-08-2015 Ran by Polowicer (2015-08-21 08:59:29) Running from C:\Users\Polowicer\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1440029249-468090960-2193579702-500 - Administrator - Disabled) Gość (S-1-5-21-1440029249-468090960-2193579702-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1440029249-468090960-2193579702-1002 - Limited - Enabled) Polowicer (S-1-5-21-1440029249-468090960-2193579702-1000 - Administrator - Enabled) => C:\Users\Polowicer ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1440029249-468090960-2193579702-1000\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.) 7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov) Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated) AP Tuner 3.08 (HKLM-x32\...\AP Tuner 3.08) (Version: - ) Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.3.2225 - AVAST Software) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.23831 - Electronic Arts) Besiege (HKLM-x32\...\Steam App 346010) (Version: - Spiderling Studios) Bloody5 (HKLM-x32\...\Bloody3) (Version: 15.06.0003 - Bloody) Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version: - Treyarch) Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version: - ) Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version: - Treyarch) Camtasia Studio 8 (HKLM-x32\...\{474DFABF-E55B-4905-ABAA-40791A6AC77F}) (Version: 8.4.4.1859 - TechSmith Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform) Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve) Counter-Strike: Condition Zero (HKLM-x32\...\Steam App 80) (Version: - Valve) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve) Don't Starve (HKLM-x32\...\Steam App 219740) (Version: - Klei Entertainment) Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve) Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.1.3.320 - Foxit Software Inc.) Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios) GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team) Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto) Heroes of Might and Magic 3 Complete (HKLM-x32\...\Heroes of Might and Magic 3 Complete_is1) (Version: - GOG.com) Hotline Miami (HKLM-x32\...\Steam App 219150) (Version: - Dennaton Games) Java 7 Update 79 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417079FF}) (Version: 7.0.790 - Oracle) Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation) Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) Java SE Development Kit 7 Update 79 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170790}) (Version: 1.7.0.790 - Oracle) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve) Mafia II (HKLM-x32\...\Steam App 50130) (Version: - 2K Czech) Mass Effect (HKLM-x32\...\Steam App 17460) (Version: - BioWare) Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version: - BioWare) Mass Effect™ 3 (HKLM-x32\...\{6A9D1594-7791-48f5-9CAA-DE9BCB968320}) (Version: 1.01.0.0 - Electronic Arts) Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{63227E62-F417-497E-9060-22B3A9A52D7A}) (Version: 1.0.1.0 - Mojang) NVIDIA Oprogramowanie systemu PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.44 - NVIDIA Corporation) NVIDIA Sterownik graficzny 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) Opera Stable 31.0.1889.174 (HKLM-x32\...\Opera 31.0.1889.174) (Version: 31.0.1889.174 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.) Outlast (HKLM-x32\...\Steam App 238320) (Version: - Red Barrels) Pakiet sterowników systemu Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (01/04/2013 1.0.0.0) (HKLM\...\1E3EA5624DD04BEFECF3FFF6D3A21CCE9CD70A91) (Version: 01/04/2013 1.0.0.0 - Arduino LLC (www.arduino.cc)) Panel sterowania NVIDIA 341.44 (Version: 341.44 - NVIDIA Corporation) Hidden PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.) Polski pakiet językowy dla programu Microsoft .NET Framework 4.5 PLK (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50709 - Microsoft Corporation) Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26027 - Razer Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.) Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.) SpeedRunners (HKLM-x32\...\Steam App 207140) (Version: - DoubleDutch Games) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Surgeon Simulator (HKLM-x32\...\Steam App 233720) (Version: - Bossa Studios) Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic) The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.0.632 - Electronic Arts) WinSCP 5.5.6 (HKLM-x32\...\winscp3_is1) (Version: 5.5.6 - Martin Prikryl) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 16-08-2015 20:09:16 Removed Windows 7 USB/DVD Download Tool 20-08-2015 17:24:33 avast! antivirus system restore point 20-08-2015 18:18:38 Removed Debugging Tools for Windows (x86) 20-08-2015 18:23:31 Removed VirtualDJ Home FREE ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2015-08-19 17:19 - 2015-08-20 21:01 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {034D80AE-4658-447F-BFE9-F75D223E5CEE} - System32\Tasks\Opera scheduled Autoupdate 1421490718 => C:\Program Files (x86)\Opera\launcher.exe [2015-08-17] (Opera Software) Task: {344237A9-C732-4579-8C1B-467597ECC800} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-08-20] (AVAST Software) Task: {B0E9144C-31BE-4232-8990-510A92589C1B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-23] (Piriform Ltd) Task: {CBCA1EE3-0986-4B1A-B319-D9D5C07E6F9A} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe [2015-08-16] (Adobe Systems Incorporated) Task: {F80F4DAD-A3D7-42B6-B429-FAA1C9DFF083} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-16] (Adobe Systems Incorporated) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Loaded Modules (Whitelisted) ============== 2015-07-23 08:19 - 2015-02-04 04:21 - 00115400 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-06-23 21:11 - 2015-06-23 21:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2015-08-20 17:31 - 2015-08-20 17:31 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-08-20 17:31 - 2015-08-20 17:31 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-08-20 17:31 - 2015-08-20 17:31 - 02960384 _____ () C:\Program Files\AVAST Software\Avast\defs\15082001\algo.dll 2015-01-17 14:57 - 2015-07-03 18:12 - 00778240 _____ () C:\Programy\Steam\SDL2.dll 2015-01-20 15:31 - 2015-07-03 18:12 - 04962816 _____ () C:\Programy\Steam\v8.dll 2015-01-20 15:31 - 2015-07-03 18:12 - 01556992 _____ () C:\Programy\Steam\icui18n.dll 2015-01-20 15:31 - 2015-07-03 18:12 - 01187840 _____ () C:\Programy\Steam\icuuc.dll 2015-01-17 14:57 - 2015-08-12 20:26 - 02413248 _____ () C:\Programy\Steam\video.dll 2015-01-17 14:57 - 2014-12-01 23:31 - 02396672 _____ () C:\Programy\Steam\libavcodec-56.dll 2015-01-17 14:57 - 2014-12-01 23:31 - 00442880 _____ () C:\Programy\Steam\libavutil-54.dll 2015-01-17 14:57 - 2014-12-01 23:31 - 00479744 _____ () C:\Programy\Steam\libavformat-56.dll 2015-01-17 14:57 - 2014-12-01 23:31 - 00332800 _____ () C:\Programy\Steam\libavresample-2.dll 2015-01-17 14:57 - 2014-12-01 23:31 - 00485888 _____ () C:\Programy\Steam\libswscale-3.dll 2015-01-17 14:57 - 2015-08-12 20:26 - 00704192 _____ () C:\Programy\Steam\bin\chromehtml.DLL 2015-07-22 07:54 - 2015-07-27 03:13 - 00171008 _____ () C:\Programy\Steam\bin\openvr_api.dll 2015-08-20 17:31 - 2015-08-20 17:31 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-01-17 14:57 - 2015-07-03 18:12 - 39553928 _____ () C:\Programy\Steam\bin\libcef.dll 2015-08-18 21:39 - 2015-08-18 21:39 - 58600568 _____ () C:\Program Files (x86)\Opera\31.0.1889.174\opera.dll 2015-08-18 21:39 - 2015-08-18 21:39 - 01781368 _____ () C:\Program Files (x86)\Opera\31.0.1889.174\libglesv2.dll 2015-08-18 21:39 - 2015-08-18 21:39 - 00081528 _____ () C:\Program Files (x86)\Opera\31.0.1889.174\libegl.dll 2015-08-16 20:39 - 2015-08-16 20:39 - 16392904 _____ () C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1440029249-468090960-2193579702-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Polowicer\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall is disabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: AlcoholAutomount => "C:\Programy\Alcohol 120\AxAutoMntSrv.exe" -automount MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: CPU_Control => C:\Program Files (x86)\CPU-Control\CPU_Control.exe MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Programy\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: EADM => "C:\Programy\Origin\Origin.exe" -AutoStart MSCONFIG\startupreg: MK LOL => "C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe" -auto MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" MSCONFIG\startupreg: Razer Synapse => "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe" MSCONFIG\startupreg: SFAUpdater => "C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe" MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: Smart File Advisor => "C:\Program Files (x86)\Smart File Advisor\sfa.exe" /checkassoc MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: uTorrent => "C:\Users\Polowicer\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED MSCONFIG\startupreg: Viber => "C:\Users\Polowicer\AppData\Local\Viber\Viber.exe" StartMinimized ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{CC8DF1B5-C0F3-4CB4-9BCC-A34222E8AE4A}] => (Allow) C:\Programy\Steam\Steam.exe FirewallRules: [{EE8FD417-679C-4EF1-93F4-110E7D7F3621}] => (Allow) C:\Programy\Steam\Steam.exe FirewallRules: [{BED3388D-A981-486F-A2B5-4F77B94DC31F}] => (Allow) C:\Programy\Steam\bin\steamwebhelper.exe FirewallRules: [{4909D5D6-3036-4E9D-ADAF-3FB37FCDCE5B}] => (Allow) C:\Programy\Steam\bin\steamwebhelper.exe FirewallRules: [{4DCD4C40-1C29-4062-BEDE-7F6B346D2F04}] => (Allow) C:\Users\Polowicer\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9410C475-763B-4C86-88F8-60CBBED4B5A0}] => (Allow) C:\Users\Polowicer\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E186EDDF-8093-4A04-A550-63F3B96EB3DD}] => (Allow) C:\Programy\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe FirewallRules: [{F1EDFA95-889C-4CEA-BF0F-34CFAB05C06C}] => (Allow) C:\Programy\Steam\steamapps\common\Call of Duty Black Ops II\t6sp.exe FirewallRules: [{9BEB774B-E255-4727-9D57-0C4E6C4C0A68}] => (Allow) C:\Programy\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [{0600BE7C-32FD-46CA-82B7-8722B67B2E3B}] => (Allow) C:\Programy\Steam\steamapps\common\Call of Duty Black Ops II\t6mp.exe FirewallRules: [{C23E7E71-1C37-43BC-89BA-657FE1E1FADD}] => (Allow) C:\Programy\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe FirewallRules: [{E68F29EA-7536-4494-B7E0-7440360532C2}] => (Allow) C:\Programy\Steam\steamapps\common\Call of Duty Black Ops II\t6zm.exe FirewallRules: [TCP Query User{DCA80589-65B0-4D6C-A46A-27FE52259953}C:\gry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\gry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{43203300-C1A2-4F5C-9D68-EE72CFA593C0}C:\gry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\gry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{15D545BF-175D-4554-970E-335D253754A1}] => (Allow) C:\Programy\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{2B012242-0962-4D52-95B5-4A083A920608}] => (Allow) C:\Programy\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{D3B556B0-590A-45D2-876F-82434E0431F2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{7D6159F0-AAD9-4D66-92A9-E841C6666C92}] => (Allow) C:\Programy\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{0B2DE5EA-75D2-48D8-B9E9-D0EE21577C45}] => (Allow) C:\Programy\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{6FFA1D3F-DC8B-4C8F-9359-0F5AC75A40BC}] => (Allow) C:\Programy\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe FirewallRules: [{11AE08CD-E1DD-4F48-BF2C-F0ABFB35EED9}] => (Allow) C:\Programy\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe FirewallRules: [TCP Query User{8469B023-46F2-41F0-B38F-B449CE4BD2B5}C:\programy\steam\steamapps\common\the war z\infestation.exe] => (Block) C:\programy\steam\steamapps\common\the war z\infestation.exe FirewallRules: [UDP Query User{33D8BCAA-0C4E-41DF-B88E-769EE01DD0AC}C:\programy\steam\steamapps\common\the war z\infestation.exe] => (Block) C:\programy\steam\steamapps\common\the war z\infestation.exe FirewallRules: [{AF8B7BEE-2CBF-4A9D-8105-C980580CAE74}] => (Allow) LPort=8317 FirewallRules: [{37245913-9B36-47C3-A687-65E56A177068}] => (Allow) C:\Gry\Battlefield 4\bf4_x86.exe FirewallRules: [{462C9788-B646-40D3-AC99-3859F2103936}] => (Allow) C:\Gry\Battlefield 4\bf4_x86.exe FirewallRules: [{5652A1D9-6E96-423A-9C33-8F2A0A9D7717}] => (Allow) C:\Gry\Battlefield 4\bf4.exe FirewallRules: [{AE18C450-9098-40AE-95CC-80BE2A10C6FE}] => (Allow) C:\Gry\Battlefield 4\bf4.exe FirewallRules: [{266D6020-66CE-4E2E-BA1F-8075B0D26F7C}] => (Allow) C:\Programy\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe FirewallRules: [{CD702E25-2399-443E-B0D2-3112A54FB97A}] => (Allow) C:\Programy\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe FirewallRules: [TCP Query User{4CD257BD-972B-4525-91EA-2ACAC52F77EF}C:\program files\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{7B9AF820-3459-4AA0-A8ED-0F12DB90BD2B}C:\program files\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_25\bin\javaw.exe FirewallRules: [{2799CBF6-F818-4651-A194-AAED25463286}] => (Allow) C:\Programy\Steam\steamapps\common\Besiege\Besiege.exe FirewallRules: [{695AA2FD-3FBA-4CBB-9340-096C9A0C627A}] => (Allow) C:\Programy\Steam\steamapps\common\Besiege\Besiege.exe FirewallRules: [{28ABCA50-4739-483D-A505-2BBD3B20B812}] => (Allow) C:\Programy\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{1DEC7E5A-FF49-4ACF-8C86-05DDC7799110}] => (Allow) C:\Programy\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{02F1A0A7-4DCC-4C97-B6CC-E095685CBBC1}] => (Allow) C:\Programy\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{DED7D2BC-9DAF-4272-BFA4-67FB1E956D4D}] => (Allow) C:\Programy\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{1ACC9036-584B-481C-A771-AC22D6B4F6E5}] => (Allow) C:\Programy\Steam\steamapps\common\dota 2 beta\dota.exe FirewallRules: [{E4DDA6C2-A935-4FA7-8DD6-A923E5353A17}] => (Allow) C:\Programy\Steam\steamapps\common\dota 2 beta\dota.exe FirewallRules: [{4854BBF1-2008-4C15-BE8A-53F3460A9F64}] => (Allow) C:\Gry\ME3\Mass Effect 3\Binaries\Win32\MassEffect3.exe FirewallRules: [{BE821ABC-FCE2-4364-BC9F-36C05A8388A5}] => (Allow) C:\Gry\ME3\Mass Effect 3\Binaries\Win32\MassEffect3.exe FirewallRules: [{C26793C3-CE86-4B31-AB31-1FB6C7A599DE}] => (Allow) C:\Programy\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{450D0230-60A2-4EF0-8291-1DD2A6A49ADD}] => (Allow) C:\Programy\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{1B52D043-1A3F-4D13-B49D-3205E791EC38}] => (Allow) C:\Programy\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{65BF868E-5311-4636-B730-93CF80C75F10}] => (Allow) C:\Programy\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{7C96AC1E-2DE3-40AC-B86B-6594B207C881}] => (Allow) C:\Programy\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe FirewallRules: [{9031EFC2-6155-4FEB-A267-4F8992320A69}] => (Allow) C:\Programy\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe FirewallRules: [{087CE0C4-987A-4562-80EA-C6F12D6A73ED}] => (Allow) C:\Programy\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{BCC44014-531B-47E9-BBF2-FEDF0ECD2573}] => (Allow) C:\Programy\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{D308F1BB-4FD6-48F9-BCEF-6F311BCA2202}] => (Allow) C:\Programy\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{DA2D9DA6-F303-4827-A90B-B8A2B36DE067}] => (Allow) C:\Programy\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{95F5E82F-8C0B-45A3-92A2-6DD723BC0824}] => (Allow) C:\Programy\Steam\steamapps\common\Mafia II\pc\mafia2.exe FirewallRules: [{01CEA509-D28C-4066-8BDD-70BF97CBDEEB}] => (Allow) C:\Programy\Steam\steamapps\common\Mafia II\pc\mafia2.exe FirewallRules: [{C3369997-1038-489F-A576-FFD4140FE915}] => (Allow) C:\Programy\Steam\steamapps\common\Outlast\OutlastLauncher.exe FirewallRules: [{7437A2EA-AB56-4377-A4FB-64309B9347EA}] => (Allow) C:\Programy\Steam\steamapps\common\Outlast\OutlastLauncher.exe FirewallRules: [{80EAE40B-0C83-4138-9997-B0FD4F012C91}] => (Allow) C:\Programy\Steam\steamapps\common\hotline_miami\HotlineMiami.exe FirewallRules: [{B919CD16-2863-4CC2-AA72-7259F107A3D9}] => (Allow) C:\Programy\Steam\steamapps\common\hotline_miami\HotlineMiami.exe FirewallRules: [{FB7487E5-9648-41B9-AF03-AD8A29EAD788}] => (Allow) C:\Programy\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe FirewallRules: [{C8105068-FF56-433F-BC72-EFFCD69BDBF8}] => (Allow) C:\Programy\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe FirewallRules: [{CA366ED0-E14D-4A85-9C4D-7B0688988F95}] => (Allow) C:\Programy\Steam\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe FirewallRules: [{232BD307-B722-4229-85A1-6F2FA2B9C9A5}] => (Allow) C:\Programy\Steam\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe FirewallRules: [{D80CD597-8FA5-4D50-96C7-281BAE8E8FBA}] => (Allow) C:\Programy\Steam\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe FirewallRules: [{149FB756-EA82-446A-AAB7-E606C371B2EC}] => (Allow) C:\Programy\Steam\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe FirewallRules: [{838F1B9F-0C12-4D5C-BBAB-30AF1710F2DB}] => (Allow) C:\Programy\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe FirewallRules: [{B3BD958C-FE79-4111-829B-64B8DD1C3BF5}] => (Allow) C:\Programy\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe FirewallRules: [{96074BC6-7E07-4B5A-9943-369FBA1FFF7D}] => (Allow) C:\Programy\Steam\steamapps\common\Half-Life\hl.exe FirewallRules: [{5A2747F2-B343-48C4-B8F6-0F8094DCEA68}] => (Allow) C:\Programy\Steam\steamapps\common\Half-Life\hl.exe ==================== Faulty Device Manager Devices ============= Name: Port drukarki (LPT1) Description: Port drukarki Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318} Manufacturer: (Standardowe typy portów) Service: Parport Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (08/21/2015 08:57:08 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program javaw.exe w wersji 8.0.25.18 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 119c Godzina rozpoczęcia: 01d0dbde85951110 Godzina zakończenia: 10 Ścieżka aplikacji: C:\Windows\system32\javaw.exe Identyfikator raportu: d57b9051-47d1-11e5-a9ae-000fea6607c0 Error: (08/21/2015 08:54:50 AM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000. Error: (08/21/2015 08:54:50 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x800401F9 Error: (08/21/2015 08:52:32 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/20/2015 06:29:18 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/20/2015 06:28:26 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000. Error: (08/20/2015 06:28:25 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x800401F9 Error: (08/20/2015 05:21:25 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/20/2015 05:19:42 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000. Error: (08/20/2015 05:19:42 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x800401F9 System errors: ============= Error: (08/20/2015 09:01:55 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. Error: (08/20/2015 09:01:06 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Ładowanie sterownika \??\C:\ComboFix\catchme.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika. Error: (08/20/2015 07:55:42 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. Error: (08/20/2015 06:28:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Razer Game Scanner z powodu następującego błędu: %%1053 Error: (08/20/2015 06:28:55 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Razer Game Scanner. Error: (08/20/2015 03:41:52 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 15:39:45 na ‎2015-‎08-‎20 było nieoczekiwane. Error: (08/19/2015 04:23:43 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 16:20:27 na ‎2015-‎08-‎19 było nieoczekiwane. Error: (08/19/2015 04:04:19 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 16:03:16 na ‎2015-‎08-‎19 było nieoczekiwane. Error: (08/19/2015 12:42:12 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 12:41:03 na ‎2015-‎08-‎19 było nieoczekiwane. Error: (08/18/2015 07:52:51 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Poprzednie zamknięcie systemu przy 17:58:44 na ‎2015-‎08-‎18 było nieoczekiwane. Microsoft Office: ========================= Error: (08/21/2015 08:57:08 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: javaw.exe8.0.25.18119c01d0dbde8595111010C:\Windows\system32\javaw.exed57b9051-47d1-11e5-a9ae-000fea6607c0 Error: (08/21/2015 08:54:50 AM) (Source: Winlogon) (EventID: 4103) (User: ) Description: 0x000000000x00000001 Error: (08/21/2015 08:54:50 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: 0x800401F9 Error: (08/21/2015 08:52:32 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/20/2015 06:29:18 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/20/2015 06:28:26 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: 0x000000000x00000001 Error: (08/20/2015 06:28:25 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: 0x800401F9 Error: (08/20/2015 05:21:25 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/20/2015 05:19:42 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: 0x000000000x00000001 Error: (08/20/2015 05:19:42 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: 0x800401F9 CodeIntegrity: =================================== Date: 2015-08-21 08:52:04.975 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-08-20 23:55:36.815 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-08-20 21:01:06.109 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-08-20 21:01:06.101 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2015-08-20 18:43:57.449 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-08-20 18:35:29.932 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-08-20 18:28:19.285 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-08-20 17:19:33.980 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-08-20 17:14:44.072 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-08-20 15:41:54.072 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 6000+ Percentage of memory in use: 32% Total physical RAM: 6143.55 MB Available physical RAM: 4132.04 MB Total Virtual: 12285.31 MB Available Virtual: 10120.33 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:931.41 GB) (Free:633.25 GB) NTFS ==>[drive with boot components (obtained from BCD)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 01650164) Partition 1: (Active) - (Size=931.4 GB) - (Type=07 NTFS) ==================== End of log ============================