Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:29-12-2015 Uruchomiony przez Kamil (2015-12-30 15:08:00) Uruchomiony z C:\Users\Kamil\Desktop Windows 7 Ultimate Service Pack 1 (X64) (2014-10-03 18:27:21) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3289265639-2315928180-1921989502-500 - Administrator - Disabled) Gość (S-1-5-21-3289265639-2315928180-1921989502-501 - Limited - Disabled) Kamil (S-1-5-21-3289265639-2315928180-1921989502-1000 - Administrator - Enabled) => C:\Users\Kamil ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) @BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.25 - GIGABYTE) µTorrent (HKU\S-1-5-21-3289265639-2315928180-1921989502-1000\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated) Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1433 Beta 3, 21.10.2014 - AIMP DevTeam) ALLPlayer V5.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version: - Ubisoft) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.15.16 - Atheros Communications Inc.) Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team) AutoGreen B12.0206.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE) AutoGreen B12.0206.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB) Brother MFL-Pro Suite (HKLM-x32\...\{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}) (Version: 1.00 - Brother Industries, Ltd.) Camtasia Studio 8 (HKLM-x32\...\{B9691991-64D3-435B-8A83-69CC21016936}) (Version: 8.4.0.1699 - TechSmith Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform) ChomikBox (HKLM-x32\...\{C7B52FAF-58D8-438C-B810-F78C3C927504}) (Version: 2.0.8.0 - Chomikuj.pl) Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.8.0 - Bloodshed Software) DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.64 - DivX, LLC) EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.8.0.0 - Electronic Arts) Easy Tune 6 B12.0626.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE) Easy Tune 6 B12.0626.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.4.15952.12 - Electronic Arts) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.10.255 - Intel Corporation) Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) Java SE Development Kit 8 Update 45 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.14 - Oracle Corporation) K-Lite Codec Pack 10.7.7 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.7.7 - ) Malwarebytes Anti-Malware wersja 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) Mass Effect wersja 1.0.2.0 (HKLM-x32\...\Mass Effect_is1) (Version: 1.0.2.0 - GTX Box Team) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 38.0.5 (x86 pl) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 pl)) (Version: 38.0.5 - Mozilla) Mp3tag v2.70 (HKLM-x32\...\Mp3tag) (Version: v2.70 - Florian Heidenreich) MyPlayer (HKLM-x32\...\MyPlayer) (Version: 2.9.0.70 - MyPortal) NapiProjekt 2.0.0 (build 2151) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden ON_OFF Charge B11.1102.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE) Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.) PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation) Presto! ImageFolio 4 (HKLM-x32\...\{783033B0-D8E6-11D5-9293-0050BA073EEC}) (Version: 4.50.02 - NewSoft Technology Corporation) ProxySwitcher Standard (HKLM-x32\...\ProxySwitcher Standard_is1) (Version: 5.8.0 - V-Tech LLC) Raptr (HKLM-x32\...\Raptr) (Version: - ) Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6519 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6642 - Realtek Semiconductor Corp.) Revo Uninstaller Pro 3.1.2 (HKLM\...\Revo Uninstaller Pro PREACTIVATED by .:sHaRe:. @~1067B756_is1) (Version: 3.1.2 - VS Revo Group, Ltd.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.) SlimDrivers (HKLM-x32\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.) Unity Web Player (HKU\S-1-5-21-3289265639-2315928180-1921989502-1000\...\UnityWebPlayer) (Version: 5.0.1f1 - Unity Technologies ApS) Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0415-1000-0000000FF1CE}_Office15.PROPLUS_{67847964-08E2-4A8F-B09D-B08D5CE69250}) (Version: - Microsoft) Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden WinRAR 5.10 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH) XEOX Gamepad SL-6566-BK (HKLM-x32\...\{6EDE966F-6CB9-4651-A4B9-70FBA678B8E9}) (Version: 1.00.0000 - ) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {03ED9746-8308-4C79-9D5A-034E048310B6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {1633D785-FACB-4821-8335-AACFAEDE5856} - \pmmduet -> Brak pliku <==== UWAGA Task: {23167CD3-70CA-48AD-95DB-561B07BA14A9} - \Trojan Killer -> Brak pliku <==== UWAGA Task: {427F7237-50A6-4CEF-8C79-57494BBAC613} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28] (Adobe Systems Incorporated) Task: {51556C4B-FF8E-48F9-90A8-F0B3C63226A3} - System32\Tasks\{11DB1EBE-EE15-4AC7-96E5-2FD8915CDB1F} => pcalua.exe -a C:\Users\Kamil\Desktop\GTA_San_Andreas_-_spolszczenie[www.instalki.pl]\gtasa_pl_0.9.exe -d C:\Users\Kamil\Desktop\GTA_San_Andreas_-_spolszczenie[www.instalki.pl] Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto Task: {60F0019F-C41C-4281-AC15-C4F69C47164B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {67DB9BC7-2190-45D7-A673-CF17BDB836A2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd) Task: {92F03663-440E-472A-BD4D-A6FF6BF28ACB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {AC13026B-624E-4972-9DAD-080541FC579B} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation) Task: {B993E5DD-3347-4AC3-9344-57A5E8CD292B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {C666F6DA-FBC8-4B8C-976E-900F59E47492} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc Task: {DEEA93CD-AC88-41FF-9EC2-87B5DD4DDC42} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation) Task: {F327623F-CF14-4E3B-B906-326DB605CDE7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2015-04-18 12:33 - 2015-04-18 12:44 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2015-12-29 11:47 - 2015-12-29 12:35 - 00534016 _____ () C:\ProgramData\Vaiafineco\Vaiafineco.exe 2014-12-12 23:25 - 2014-12-12 23:25 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2014-01-10 06:26 - 2014-01-10 06:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe 2014-01-10 06:28 - 2014-01-10 06:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2015-04-07 16:21 - 2015-12-25 12:54 - 00001948 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 activate.adobe.com 127.0.0.1 practivate.adobe.com 127.0.0.1 ereg.adobe.com 127.0.0.1 activate.wip3.adobe.com 127.0.0.1 wip3.adobe.com 127.0.0.1 3dns-3.adobe.com 127.0.0.1 3dns-2.adobe.com 127.0.0.1 adobe-dns.adobe.com 127.0.0.1 adobe-dns-2.adobe.com 127.0.0.1 adobe-dns-3.adobe.com 127.0.0.1 ereg.wip3.adobe.com 127.0.0.1 activate-sea.adobe.com 127.0.0.1 wwis-dubc1-vip60.adobe.com 127.0.0.1 activate-sjc0.adobe.com 127.0.0.1 adobe.activate.com 127.0.0.1 adobeereg.com 127.0.0.1 www.adobeereg.com 127.0.0.1 wwis-dubc1-vip60.adobe.com 127.0.0.1 125.252.224.90 127.0.0.1 125.252.224.91 127.0.0.1 hl2rcv.adobe.com 127.0.0.1 genuine.microsoft.com 127.0.0.1 mpa.one.microsoft.com 127.0.0.1 sls.microsoft.com 127.0.0.1 activation.cloud.techsmith.com 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3289265639-2315928180-1921989502-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\startupreg: ALLUpdate => "C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe" "sleep" MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart MSCONFIG\startupreg: PSwitch => C:\Program Files (x86)\Portable\Proxy Switcher Pro 5.6.2 Build 6324\ProxySwitcher.exe MSCONFIG\startupreg: Raptr => "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{F2D3DB21-4804-4752-8C5F-E3EA982F8DEC}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{CE1377F4-824D-475B-AF62-601C750EC0F3}E:\program files\origingames\fifa 15\fifa15.exe] => (Allow) E:\program files\origingames\fifa 15\fifa15.exe FirewallRules: [UDP Query User{372C7CF5-46B8-4A81-9DE9-C2A1368E397A}E:\program files\origingames\fifa 15\fifa15.exe] => (Allow) E:\program files\origingames\fifa 15\fifa15.exe FirewallRules: [{CD6E55FF-08EA-469E-8C38-C5A94D6E81DF}] => (Allow) C:\Users\Kamil\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0334E5EC-F5B7-4C83-B87C-518C074232F1}] => (Allow) C:\Users\Kamil\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{82B0C840-1512-4FFD-9502-4B789556AE5F}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{41ECF3B2-9624-49E5-8312-5A63731BEFCF}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{D03F58A7-3181-42BA-A41B-BCF41A33E4BE}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{BF42671F-5A17-40C0-9557-8D06633CD6FD}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{CB41D240-2484-4C5F-A7CE-518FB957AC4B}] => (Allow) C:\Program Files (x86)\Portable\Proxy Switcher Pro 5.6.2 Build 6324\ProxySwitcher.exe FirewallRules: [{1683954B-B7B0-4801-AFE4-A5080DD24487}] => (Allow) C:\Program Files (x86)\Portable\Proxy Switcher Pro 5.6.2 Build 6324\ProxySwitcher.exe FirewallRules: [{3883DEF7-A1B3-424E-B1BF-35A46CF6E038}] => (Allow) C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe FirewallRules: [{08ECD87C-4DB9-46F3-98D3-F3D25984F105}] => (Allow) C:\Program Files (x86)\Proxy Switcher Standard\ProxySwitcher.exe FirewallRules: [{F90FDCF4-A55B-412C-B8D7-40114E2296EE}] => (Allow) E:\Program Files (x86)\Ubisoft\Assassin's Creed Rogue\ACC.exe FirewallRules: [{1800DEEB-5EC5-44C2-9D61-127EE5FA1777}] => (Allow) E:\Program Files (x86)\Ubisoft\Assassin's Creed Rogue\ACC.exe FirewallRules: [{D730A343-7008-4FE8-86F5-3E7E3F065FF4}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{473DC00C-EF81-493C-A33D-42B59DBED85E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{E0B3AA1E-BDF5-4F4B-BF4D-0CF997B0EE44}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{7A5817B5-0B7E-4DBF-813C-3D35F15DEA8B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{778E3190-75D7-4F5F-8977-95728D680186}] => (Block) E:\Program Files\MoorHunt\Downloads\GTA\V.FUSG.b23\V.FUSG.b23\Grand Theft Auto V\GTA5.exe FirewallRules: [{8853813F-4BE3-43CA-93F2-296820A90434}] => (Block) E:\Program Files\MoorHunt\Downloads\GTA\V.FUSG.b23\V.FUSG.b23\Grand Theft Auto V\GTA5.exe FirewallRules: [{ECDBE3E5-0248-41F6-8C3C-50A9429020B8}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{BACA4755-974A-4176-817B-1CE52BD60377}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{08F77B8E-05BC-4578-BF0A-46B26B63A1EC}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{958D29C9-0923-49B1-A5B0-3E929E549648}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{387F2AA6-2B99-4234-AE89-5F0100DA1D4B}] => (Allow) E:\Program Files\OriginGames\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{63878B69-BC11-433A-882C-9EBAFED3CEF8}] => (Allow) E:\Program Files\OriginGames\FIFA 15\fifasetup\fifaconfig.exe FirewallRules: [{19DE59D0-BD62-4839-AD7D-660BBCEAB963}] => (Allow) LPort=9191 FirewallRules: [{55BA176E-F73D-422B-80F7-3B63C35B922E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{93A5AB45-03B6-4ACE-92C2-92FB3137FA89}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{65C87E12-0221-4263-905B-D9DE2C18ED0B}] => (Allow) LPort=8317 FirewallRules: [TCP Query User{A763D203-E3EF-4E62-8B20-8B442B7C8F16}E:\program files\origingames\fifa 16\fifa16.exe] => (Allow) E:\program files\origingames\fifa 16\fifa16.exe FirewallRules: [UDP Query User{21B6662B-366F-4C1F-8A53-4D36977A0F28}E:\program files\origingames\fifa 16\fifa16.exe] => (Allow) E:\program files\origingames\fifa 16\fifa16.exe FirewallRules: [{8598598C-049F-4C6A-BCD6-4805378445EC}] => (Allow) E:\Program Files\OriginGames\FIFA 16\fifasetup\fifaconfig.exe FirewallRules: [{E9852907-9836-45D3-B7C1-7845498C8F34}] => (Allow) E:\Program Files\OriginGames\FIFA 16\fifasetup\fifaconfig.exe FirewallRules: [{ED1B1485-A627-453F-8807-C3324C9AAC84}] => (Allow) C:\Program Files (x86)\GTX Box Team\Mass Effect\MassEffectLauncher.exe FirewallRules: [{F1BB08A1-0978-4A34-8D67-A4B2E184F884}] => (Allow) C:\Program Files (x86)\GTX Box Team\Mass Effect\MassEffectLauncher.exe FirewallRules: [TCP Query User{305056B7-C9B9-420C-B17A-8FAA00089009}C:\program files\java\jre1.8.0_45\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\java.exe FirewallRules: [UDP Query User{DA953E04-5E81-4829-97B6-A0B212002358}C:\program files\java\jre1.8.0_45\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\java.exe FirewallRules: [{A8363F3E-1655-47A1-976E-E37AA12FEDA5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 25-12-2015 15:48:24 Windows Update 25-12-2015 23:05:32 Windows Update 27-12-2015 00:48:57 Windows Update 28-12-2015 02:51:17 Windows Update 29-12-2015 03:00:11 Windows Update 29-12-2015 03:10:59 Windows Update 29-12-2015 14:20:30 JRT Pre-Junkware Removal 29-12-2015 14:32:36 Punkt przywracania stworzony przez HitmanPro 29-12-2015 14:33:02 Punkt przywracania stworzony przez HitmanPro 30-12-2015 01:35:55 Windows Update ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (12/30/2015 02:45:22 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod błędu: 0x80070005 Error: (12/30/2015 02:00:42 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program mbam.exe w wersji 1.0.1.711 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 9f4 Godzina rozpoczęcia: 01d14301f888b62a Godzina zakończenia: 0 Ścieżka aplikacji: C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe Identyfikator raportu: 509bedba-aef5-11e5-be88-902b3457b690 Error: (12/30/2015 01:59:45 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (12/30/2015 01:19:50 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod błędu: 0x80070005 Error: (12/30/2015 12:19:50 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod błędu: 0x80070005 Error: (12/30/2015 11:19:49 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod błędu: 0x80070005 Error: (12/30/2015 10:19:49 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod błędu: 0x80070005 Error: (12/30/2015 09:19:49 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod błędu: 0x80070005 Error: (12/30/2015 09:12:49 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: ) Description: 80004005 Error: (12/30/2015 08:34:23 AM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Dziennik System: ============= Error: (12/30/2015 02:45:22 PM) (Source: DCOM) (EventID: 10001) (User: ) Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83} Error: (12/30/2015 01:59:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi New Tech z powodu następującego błędu: %%2 Error: (12/30/2015 01:59:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Hon Controller z powodu następującego błędu: %%87 Error: (12/30/2015 01:59:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Instalator modułów systemu Windows niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (12/30/2015 01:59:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa udostępniania w sieci programu Windows Media Player niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (12/30/2015 01:59:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Ochrona oprogramowania niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (12/30/2015 01:59:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (12/30/2015 01:59:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Vaiafineco niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/30/2015 01:59:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa PnkBstrA niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (12/30/2015 01:59:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa MBAMService niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. CodeIntegrity: =================================== Date: 2015-01-06 16:53:11.047 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-01-06 16:45:21.115 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-01-06 16:39:03.052 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-01-06 14:33:34.140 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-01-06 12:50:12.117 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-01-06 12:42:20.846 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-01-06 10:27:57.109 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-01-06 09:02:46.213 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-01-06 08:38:08.704 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. Date: 2015-01-06 08:29:54.449 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM) i5-3450 CPU @ 3.10GHz Procent pamięci w użyciu: 29% Całkowita pamięć fizyczna: 8153.06 MB Dostępna pamięć fizyczna: 5731.41 MB Całkowita pamięć wirtualna: 16304.33 MB Dostępna pamięć wirtualna: 13945.68 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:155.16 GB) (Free:15.75 GB) NTFS Drive e: (Nowy) (Fixed) (Total:310.51 GB) (Free:135.28 GB) NTFS Drive f: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 0FBC406A) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=155.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=310.5 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================