Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:27-01-2016 Uruchomiony przez Marek (2016-02-02 11:42:09) Uruchomiony z C:\Users\Marek\Downloads Windows 7 Professional Service Pack 1 (X64) (2015-04-24 08:42:29) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1938689811-882601846-2576079812-500 - Administrator - Disabled) Gość (S-1-5-21-1938689811-882601846-2576079812-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1938689811-882601846-2576079812-1002 - Limited - Enabled) Marek (S-1-5-21-1938689811-882601846-2576079812-1001 - Administrator - Enabled) => C:\Users\Marek ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-1938689811-882601846-2576079812-1001\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.) Aktualizacje NVIDIA 2.8.1.21 (Version: 2.8.1.21 - NVIDIA Corporation) Hidden ALLPlayer V6.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.) ASUS nVidia Driver (x32 Version: 1.00.0000 - ASUSTek) Hidden AVG (HKLM\...\AvgZen) (Version: 1.31.1.48846 - AVG Technologies) AVG (Version: 16.31.7357 - AVG Technologies) Hidden AVG 2015 (Version: 15.0.4392 - AVG Technologies) Hidden AVG 2016 (Version: 16.0.4522 - AVG Technologies) Hidden AVG Protection (HKLM\...\AVG) (Version: 2016.31.7357 - AVG Technologies) AVG Zen (Version: 1.31.9 - AVG Technologies) Hidden Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) FMW 1 (Version: 1.52.1 - AVG Technologies) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.97 - Google Inc.) Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden H1Z1 (HKLM-x32\...\Steam App 295110) (Version: - Daybreak Games) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Malwarebytes Anti-Malware wersja 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) NapiProjekt 2.0.0 (build 2151) (HKLM-x32\...\NapiProjekt_is1) (Version: - ) NVIDIA GeForce Experience 2.8.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.8.1.21 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.62 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Sterownik graficzny 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.62 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) OpenFM (HKU\S-1-5-21-1938689811-882601846-2576079812-1001\...\OpenFM) (Version: 2 - GG Network S.A.) Panel sterowania NVIDIA 353.62 (Version: 353.62 - NVIDIA Corporation) Hidden Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) SHIELD Streaming (Version: 4.1.0250 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.8.1.21 - NVIDIA Corporation) Hidden Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.) Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.8.201506081556 - Sony Mobile Communications Inc.) Sony PC Companion 2.10.259 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.259 - Sony) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) VIA Platforma Menedżera urządzeń (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {022AE15D-358C-41D4-B463-8B4D7D114C56} - System32\Tasks\{032D6185-4393-4A4E-BB80-879B268A5F87} => Chrome.exe hxxp://ui.skype.com/ui/0/7.7.0.103/pl/abandoninstall?page=tsProgressBar Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto Task: {793B3680-16A7-44C2-A189-0E0BDE43DAED} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-24] (Google Inc.) Task: {CB45FC80-256F-4C40-A207-2CCEC028C84B} - \Web Protector Plus -> Brak pliku <==== UWAGA Task: {CBF74CD1-7BEB-4DFE-AB29-51E4991B3523} - System32\Tasks\{1E13E7FF-2AEA-428D-ACF2-22CBD44BEE37} => Chrome.exe hxxp://ui.skype.com/ui/0/7.6.85.103/pl/abandoninstall?page=tsPlugin Task: {D30E1452-57C0-48DA-9151-2643C18C5E64} - \Web Protector Plus Server -> Brak pliku <==== UWAGA Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc Task: {E63D0113-EDA0-4361-B54D-8575DC84037B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-24] (Google Inc.) Task: {EEB834C6-802A-4EC5-83C3-46B6ACF86DC8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-05-08] (Piriform Ltd) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2015-04-24 09:57 - 2015-07-23 02:31 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-12-22 15:02 - 2015-12-09 02:52 - 00217720 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2015-04-24 13:09 - 2009-05-07 09:51 - 00071680 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll 2015-04-24 13:09 - 2009-05-07 09:53 - 00379392 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll 2015-04-24 13:09 - 2008-01-18 07:50 - 00098816 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll 2015-04-24 13:09 - 2009-09-02 02:26 - 47601664 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll 2015-11-11 05:07 - 2015-12-09 02:53 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-11-29 12:29 - 2015-11-29 12:28 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll 2016-01-29 03:51 - 2016-01-27 18:39 - 01632584 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\libglesv2.dll 2016-01-29 03:51 - 2016-01-27 18:39 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\libegl.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-21-1938689811-882601846-2576079812-1001\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-21-1938689811-882601846-2576079812-1001\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-21-1938689811-882601846-2576079812-1001\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-21-1938689811-882601846-2576079812-1001\...\sony.com -> sony.com ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1938689811-882601846-2576079812-1001\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{AAC148D6-3F5B-497B-8D5C-78E05A4E85A6}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{E25F0B17-8D25-4CC9-86D6-4B4B0C0E8E2D}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{D519BB11-DFB4-4580-9EC7-333F4B9D5947}] => (Allow) E:\Steam\bin\steamwebhelper.exe FirewallRules: [{AD04257C-CACE-44CB-B228-7D584F1E8341}] => (Allow) E:\Steam\bin\steamwebhelper.exe FirewallRules: [{54912CE7-0148-4D9C-A302-C5B5C538C360}] => (Allow) E:\Battle.net\Battle.net.exe FirewallRules: [{065A74AA-1560-4C30-8DB1-5DF4396E4F45}] => (Allow) E:\Battle.net\Battle.net.exe FirewallRules: [{BFC7E255-9E5B-499A-BBE4-D2BFDE7E684A}] => (Allow) E:\Hearthstone\Hearthstone.exe FirewallRules: [{BCFCB786-4916-429E-A28A-B79695CE71D0}] => (Allow) E:\Hearthstone\Hearthstone.exe FirewallRules: [{16642AC4-04A6-4EC7-A7CC-4CAA6CF46BFC}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{C7F47857-4D3C-4036-9A78-E4E04A6DAD00}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [TCP Query User{CEE0703E-9AD4-46F3-93FE-FACD38C15285}C:\users\marek\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\marek\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{2B56BFDC-F34D-467A-805E-D3BAED17F31C}C:\users\marek\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\marek\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{194DDBC0-AFBB-429A-8337-BEE1F6777F04}] => (Allow) E:\Steam\steamapps\common\H1Z1\LaunchPad.exe FirewallRules: [{C2C3D168-0E5F-427E-B4E0-00A97C139C7D}] => (Allow) E:\Steam\steamapps\common\H1Z1\LaunchPad.exe FirewallRules: [TCP Query User{6DAC4A0E-70EC-4B32-8722-5471B410D68F}E:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\steam\steamapps\common\h1z1\h1z1.exe FirewallRules: [UDP Query User{B1FCEE84-76FE-4698-8125-D19889B0938F}E:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\steam\steamapps\common\h1z1\h1z1.exe FirewallRules: [{9C282213-1C77-49CB-8ACE-51819CDE0912}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{1235A4A0-2BF4-456C-97CF-ECACF44E1B60}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{77A0E6B7-CD2C-4096-84F1-949372A181E3}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{4A6BDC07-EE27-4AFD-BC31-41556F9A2CB0}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe FirewallRules: [{D40B726E-0DF0-437C-B923-D9EFF8B09B5B}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe FirewallRules: [{52083783-7F24-4901-AD94-37E66D15F64F}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe FirewallRules: [{502B5670-4CB9-4C98-86FA-91AD50A255A6}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe FirewallRules: [{768F7C98-082F-4275-B09C-861CFCEC894D}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe FirewallRules: [{A5B50F1A-4E06-422D-ABCF-41D6B8A36B32}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe FirewallRules: [{39D09CC4-C123-4FE7-B578-362108497AF7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{62A140C4-4E67-4D2E-BB60-6EEF19D4E882}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [TCP Query User{CD60C374-9624-4443-AD8E-C24913C6C2D7}E:\ea games\need for speed most wanted\nfs13.exe] => (Allow) E:\ea games\need for speed most wanted\nfs13.exe FirewallRules: [UDP Query User{EA09082A-46E3-4750-A6F7-0F45E9135D48}E:\ea games\need for speed most wanted\nfs13.exe] => (Allow) E:\ea games\need for speed most wanted\nfs13.exe FirewallRules: [{1998706A-66A4-4164-AEFE-C5167EDF2426}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{0F027742-5B63-4991-A221-CD14A4A8F4AB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{33DB4FDC-739E-4502-8053-F63B7ECC09E2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{8C97AB85-905C-478C-9D2E-AC5F7548317E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{5D3A6A66-741A-4CBA-BC31-A7738CED8152}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{17F1208C-2124-4E13-A2E4-2A4B0D3CB103}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{BC61984D-4E50-498F-B3B0-C7E7AC8FA2B1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{A196C8E0-6B64-483F-80EE-CFE9C0DEA554}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{EDF54AB5-A821-407B-B5AA-2326DC64A94C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [TCP Query User{40492D9D-B910-4222-B59C-D3195BF7A685}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [UDP Query User{9A35E900-4163-4E1A-8419-CFB508EF3F6E}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [{1541C6CB-6A79-44E2-A65C-C20F7F9F033D}] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [{A918A966-352E-44B3-A6AD-BB039F61A44A}] => (Block) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe FirewallRules: [{554B2FE4-A1F5-490C-B0E1-D8553EB5F124}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{B872C882-88A9-43CA-8419-D8AA7EEE518C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{66850BE6-9405-4813-B549-76180287873E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe FirewallRules: [{CDA660DB-7C40-4E5B-A431-F9E1A81C9F9B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe FirewallRules: [{CC3330D0-653F-4579-A85B-3D0BA77252BC}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{178B6045-4DA8-4065-9C97-BDE044383F71}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{B1D26189-1C17-45F0-A080-344D8FBAD9DE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Punkty Przywracania systemu ========================= 11-01-2016 12:50:48 Zaplanowany punkt kontrolny 18-01-2016 15:39:25 Zaplanowany punkt kontrolny 27-01-2016 21:00:31 Zaplanowany punkt kontrolny 29-01-2016 21:37:48 ComboFix created restore point 02-02-2016 11:22:03 SPTD setup V1.87 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (02/02/2016 11:35:22 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/02/2016 11:31:47 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (02/02/2016 11:22:03 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {32652e3c-147e-44ad-88d1-e0d80ce63756} Error: (02/02/2016 09:30:26 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/31/2016 09:22:39 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/30/2016 06:56:31 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/29/2016 10:40:55 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/29/2016 10:21:53 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/29/2016 10:15:03 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/29/2016 09:49:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Dziennik System: ============= Error: (02/02/2016 11:41:11 AM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (02/02/2016 11:40:25 AM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (02/02/2016 11:40:01 AM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (02/02/2016 11:39:59 AM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (02/02/2016 11:32:55 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Windows Update zakończyła działanie; wystąpił następujący błąd: %%-2147467243 Error: (02/02/2016 11:32:53 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Centrum zabezpieczeń zakończyła działanie; wystąpił następujący błąd: %%1747 Error: (02/02/2016 11:29:27 AM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (02/02/2016 11:29:25 AM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (02/02/2016 11:24:17 AM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. Error: (02/01/2016 10:06:45 PM) (Source: Disk) (EventID: 7) (User: ) Description: W urządzeniu \Device\Harddisk0\DR0 wystąpił zły blok. ==================== Statystyki pamięci =========================== Procesor: AMD Athlon(tm) II X3 450 Processor Procent pamięci w użyciu: 24% Całkowita pamięć fizyczna: 8191.3 MB Dostępna pamięć fizyczna: 6212.32 MB Całkowita pamięć wirtualna: 16380.8 MB Dostępna pamięć wirtualna: 14215.86 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:49.9 GB) (Free:1.42 GB) NTFS Drive d: () (Fixed) (Total:200 GB) (Free:182 GB) NTFS Drive e: () (Fixed) (Total:215.76 GB) (Free:151.59 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 75978EBF) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=49.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=200 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=215.8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================