Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:07-02-2016 Uruchomiony przez Niiesmiertelny (2016-02-09 18:12:51) Uruchomiony z C:\Users\Niiesmiertelny\Desktop\Nowy folder Windows 7 Home Premium Service Pack 1 (X64) (2012-09-25 17:44:53) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2955672183-3658250396-1376213474-500 - Administrator - Disabled) Gość (S-1-5-21-2955672183-3658250396-1376213474-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2955672183-3658250396-1376213474-1002 - Limited - Enabled) Niiesmiertelny (S-1-5-21-2955672183-3658250396-1376213474-1001 - Administrator - Enabled) => C:\Users\Niiesmiertelny ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) AbiWord 2.8.6 (HKLM-x32\...\AbiWord2) (Version: 2.8.6 - AbiSource Developers) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated) Adobe Reader XI (11.0.14) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.14 - Adobe Systems Incorporated) Aktualizacje NVIDIA 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden ALLMediaServer (HKLM-x32\...\{FE77909E-B782-4554-A92A-4D887CEF0ACC}_is1) (Version: 0.92 - ALLCinema, Inc.) ALLPlayer V5.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLCinema Ltd.) Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.4.2233 - AVAST Software) BitTorrent (HKLM-x32\...\BitTorrent) (Version: 7.7.0.27987 - BitTorrent Inc.) BitTorrent (HKU\S-1-5-21-2955672183-3658250396-1376213474-1001\...\BitTorrent) (Version: 7.9.2.37755 - BitTorrent Inc.) Bridge Building Game (HKLM-x32\...\Bridge Building Game) (Version: - ) Bridge Project, версия 1.4 (HKLM-x32\...\Bridge Project_is1) (Version: 1.4 - bit Composer) Camtasia Studio 7 (HKLM-x32\...\{C0E8FE43-C35B-451D-B35F-D4BD056D70E7}) (Version: 7.1.1 - TechSmith Corporation) CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform) Cheat Engine 6.3 (HKLM-x32\...\Cheat Engine 6.3_is1) (Version: - Cheat Engine) Commandos2, Men of Courage (HKLM-x32\...\InstallShield_{FFD9C303-D80B-4E0E-B03E-22BE5AD68FDC}) (Version: 1.00.0000 - Cenega) Commandos2, Men of Courage (x32 Version: 1.00.0000 - Cenega) Hidden Commandos3 - Destination Berlin (HKLM-x32\...\InstallShield_{4A9040F9-A854-4358-80E8-BF508ECD477C}) (Version: 1.42.0000 - Cenega) Commandos3 - Destination Berlin (x32 Version: 1.42.0000 - Cenega) Hidden Core Temp version 0.99.8 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 0.99.8 - Arthur Liberman) CPUID HWMonitor 1.17 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0328 - DT Soft Ltd) Euro Truck Simulator 2 v1.15.1.1s (20 DLC) (HKLM-x32\...\Euro Truck Simulator 2 v1.15.1.1s (20 DLC)1.15.1.1s) (Version: 1.15.1.1s - Friends in War) GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden GG (HKU\S-1-5-21-2955672183-3658250396-1376213474-1001\...\GG) (Version: 12 - GG Network S.A.) HP Deskjet 3520 series — badanie mające na celu poprawę produktów (HKLM\...\{EF04170D-0CE0-40E7-9F25-3A2BA2425C6E}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Deskjet 3520 series — podstawowe oprogramowanie urządzenia (HKLM\...\{2AF6DE35-EF82-42D5-86CA-9DE53EA29318}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) HP Deskjet 3520 series Pomoc (HKLM-x32\...\{B15746C1-344B-40F8-A54E-85AD2AD8E81E}) (Version: 27.0.0 - Hewlett Packard) HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard) Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation) Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mobile Partner (HKLM-x32\...\Mobile Partner) (Version: 23.002.08.03.54 - Huawei Technologies Co.,Ltd) Mozilla Firefox 44.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 44.0.1 (x86 pl)) (Version: 44.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.1.5879 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.3 - NVIDIA Corporation) NVIDIA GAME System Software 2.8.1 (HKLM-x32\...\{4F0C7CCF-5666-474B-B02E-AC514A95EC93}) (Version: 2.8.1 - NVIDIA Corporation) NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.82 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation) NVIDIA Sterownik graficzny 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.82 - NVIDIA Corporation) NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation) OpenFM (HKU\S-1-5-21-2955672183-3658250396-1376213474-1001\...\OpenFM) (Version: 2 - GG Network S.A.) Panel sterowania NVIDIA 331.82 (Version: 331.82 - NVIDIA Corporation) Hidden Pazera Free MP4 to AVI Converter 1.8 (HKLM-x32\...\{42442BC6-5A92-4BC2-9E0C-3D359D548A21}_is1) (Version: 1.8 - Pazera Jacek) Screamer Radio (HKU\S-1-5-21-2955672183-3658250396-1376213474-1001\...\7fe429f13c163c5f) (Version: 0.9.5230.30612 - Steamcore) SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation) Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.) SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1164 - SUPERAntiSpyware.com) Unity Web Player (HKU\S-1-5-21-2955672183-3658250396-1376213474-1001\...\UnityWebPlayer) (Version: - Unity Technologies ApS) USB 2.0 1.3M UVC WebCam (HKLM\...\USB 2.0 1.3M UVC WebCam) (Version: - ) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) Winamp (HKLM-x32\...\Winamp) (Version: 5.61 - Nullsoft, Inc) Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000) (HKLM\...\6B8550A319DDC8B17F35F4A89988705E4592349B) (Version: 06/15/2009 6.2.0.9000 - Broadcom) Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom) Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom) Windows Movie Maker 6.1 (HKLM-x32\...\{3CC29C1A-B5FE-457B-8F22-32A2557A92C7}}_is1) (Version: - windows-movie-maker.org) WinRAR 4.20 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net) YouTube Downloader (HKLM-x32\...\{6c8e09b7-7cb1-4714-985e-c963dee28cf2}) (Version: 1.0.0.2 - Flex Media Limited) YouTube Downloader (x32 Version: 1.0000 - Frappsy) Hidden ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-2955672183-3658250396-1376213474-1001_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Niiesmiertelny\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {1CBAB653-446C-4C33-82AE-49617E70E3BD} - System32\Tasks\HPCustParticipation HP Deskjet 3520 series => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.) Task: {8E741111-588F-4679-AE81-401FA2D8EFB5} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-26] (AVAST Software) Task: {9B3BCC8C-4DF8-4871-8640-5A06C53B63CB} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation) Task: {A6B3DD5B-8D05-48DE-9EFE-8EC56A6129A2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-21] (Adobe Systems Incorporated) Task: {B8873652-0234-43D1-8F16-1E70F0784829} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated) Task: {BBCFBEEF-408D-4B0D-A526-EF710CFADE2A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation) Task: {CF782585-5319-4ACC-942D-4E7723C78C54} - System32\Tasks\{8ED51EDA-4CF1-462E-9478-E0AFF2972F07} => Firefox.exe Task: {D0D2A680-883F-4950-B0BF-FFD4F38725F4} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-01-21] (AVAST Software) Task: {DA9B1035-CCE1-45D8-BD51-4BEBC1B8F7BF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2011-03-14 16:27 - 2011-03-14 16:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2014-01-01 10:54 - 2013-11-11 16:02 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-09-26 14:20 - 2015-09-26 14:20 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-09-26 14:20 - 2015-09-26 14:20 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-02-08 19:24 - 2016-02-08 19:24 - 02819072 _____ () C:\Program Files\AVAST Software\Avast\defs\16020803\algo.dll 2016-02-09 16:51 - 2016-02-09 16:51 - 02820096 _____ () C:\Program Files\AVAST Software\Avast\defs\16020900\algo.dll 2015-09-26 14:20 - 2015-09-26 14:20 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-01-21 20:41 - 2016-01-21 20:41 - 17882304 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== EXE - Powiązania (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2955672183-3658250396-1376213474-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Niiesmiertelny\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 81.162.210.82 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == (Obecnie brak automatycznej naprawy dla tej sekcji.) MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount MSCONFIG\startupreg: ALLUpdate => "C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe" "sleep" MSCONFIG\startupreg: BitTorrent => "C:\Program Files (x86)\BitTorrent\BitTorrent.exe" /MINIMIZED MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: GG => "C:\Users\Niiesmiertelny\AppData\Local\GG\Application\gghub.exe" MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: SUPERAntiSpyware => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe MSCONFIG\startupreg: YouTubeDownloader => "C:\Users\Niiesmiertelny\AppData\Local\Frappsy\YouTube Downloader\YouTubeDownloader.exe" /hide ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{E5644850-6CBD-4AD1-8958-923A4E76E081}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{DE806A35-41F2-4897-8453-B9652D626A6E}C:\program files (x86)\formatowanie dysków\gg.exe] => (Block) C:\program files (x86)\formatowanie dysków\gg.exe FirewallRules: [UDP Query User{ED9B2BE0-BAFE-449B-80B2-51628583FF84}C:\program files (x86)\formatowanie dysków\gg.exe] => (Block) C:\program files (x86)\formatowanie dysków\gg.exe FirewallRules: [TCP Query User{F06626B0-5E72-4A83-8F6C-7E85268C6A32}C:\program files (x86)\formatowanie dysków\gg.exe] => (Allow) C:\program files (x86)\formatowanie dysków\gg.exe FirewallRules: [UDP Query User{D7E47C47-9B31-49B7-9EBA-D75CCD283685}C:\program files (x86)\formatowanie dysków\gg.exe] => (Allow) C:\program files (x86)\formatowanie dysków\gg.exe FirewallRules: [{910CA7AD-EF32-4788-9615-11EC3EBE0285}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{3F908E0D-EA04-40E9-B33E-27E606B049C9}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{67E8FCC6-5CBD-46A2-8478-F8496333E7B6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{84560E3F-2DAB-4CB5-B524-99641CC2364D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{6F1977E4-C7E8-40BD-9660-D9E7A7013D8D}] => (Allow) C:\Program Files (x86)\BitTorrent\BitTorrent.exe FirewallRules: [{EF087FF3-5ECE-4BB3-93EB-162E3397369B}] => (Allow) C:\Program Files (x86)\BitTorrent\BitTorrent.exe FirewallRules: [TCP Query User{B48AB71C-73D8-4526-BEF7-2EA8746532DD}I:\setup\data\quake4ded.exe] => (Allow) I:\setup\data\quake4ded.exe FirewallRules: [UDP Query User{4C912F64-4463-489A-866F-49D8EC34235F}I:\setup\data\quake4ded.exe] => (Allow) I:\setup\data\quake4ded.exe FirewallRules: [{5FC7F352-20D9-46D2-8F8F-DAA1F0889306}] => (Block) I:\setup\data\quake4ded.exe FirewallRules: [{94C40383-B5BB-4390-AF8B-766B401290AE}] => (Block) I:\setup\data\quake4ded.exe FirewallRules: [TCP Query User{C503DE25-A785-44CF-ACAE-CF330B83BD9E}C:\users\niiesmiertelny\appdata\local\screamer radio\screamer.exe] => (Allow) C:\users\niiesmiertelny\appdata\local\screamer radio\screamer.exe FirewallRules: [UDP Query User{D914BC87-AF90-4ABD-9A62-CFF3ADD0989C}C:\users\niiesmiertelny\appdata\local\screamer radio\screamer.exe] => (Allow) C:\users\niiesmiertelny\appdata\local\screamer radio\screamer.exe FirewallRules: [{AB308A2D-0723-40AC-87E9-EBB347F52561}] => (Block) C:\users\niiesmiertelny\appdata\local\screamer radio\screamer.exe FirewallRules: [{879666D8-AC12-48F5-B6A0-149EEF5EAC6C}] => (Block) C:\users\niiesmiertelny\appdata\local\screamer radio\screamer.exe FirewallRules: [TCP Query User{15AC9E72-305A-4B4B-95E2-299ED0DF1BE8}F:\comandos\commandos3.exe] => (Allow) F:\comandos\commandos3.exe FirewallRules: [UDP Query User{BFCB1A81-FA37-460C-8D12-202BBF5A6360}F:\comandos\commandos3.exe] => (Allow) F:\comandos\commandos3.exe FirewallRules: [TCP Query User{E113FF49-ADE9-4AB4-8B4C-D873D8C90FAE}F:\commandos2\comm2.exe] => (Allow) F:\commandos2\comm2.exe FirewallRules: [UDP Query User{E51EE821-2EF0-493B-9C41-AA606C205593}F:\commandos2\comm2.exe] => (Allow) F:\commandos2\comm2.exe FirewallRules: [{E18110F0-2ED4-4093-885D-B84B8142B0B5}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe FirewallRules: [{2B9A1822-1678-4A52-9CCF-BAD2AF140615}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{51C09428-5221-4647-8A17-3A70953CF4E0}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{EB34E080-F54E-4AE8-B0D4-9BB5A143889B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{85C10983-DD98-4E61-9EF8-09E8A3918742}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{7727910D-08F6-4F6D-83EF-FF91B8CF764D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{E2EBFF24-50F9-4118-9B36-01E68D599BBC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{5D3F3C4D-A5BA-4798-92F0-A37D5DCE1ACA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{B1D91C8A-788D-407E-BA76-76DF4CFCDE1C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{113E538B-F41D-4C6B-A507-A3E4BB17CFCC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{E210929F-A3A4-4C0D-B21E-4CB159AE1FC5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{167148DC-5CD6-4FD5-8AC7-AE8283B3E39C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{6920063D-8FC2-40D1-8DF0-47B8281C97D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{DE668CF1-1D25-4D27-BEF3-CDE6B5AC1B42}E:\world_of_tanks\wotlauncher.exe] => (Allow) E:\world_of_tanks\wotlauncher.exe FirewallRules: [UDP Query User{7B0F26F0-3C2B-4975-9B61-A271012FCD7D}E:\world_of_tanks\wotlauncher.exe] => (Allow) E:\world_of_tanks\wotlauncher.exe FirewallRules: [TCP Query User{A90E3150-DCEC-4C78-B4BD-6476F3333D9E}E:\world_of_tanks\worldoftanks.exe] => (Allow) E:\world_of_tanks\worldoftanks.exe FirewallRules: [UDP Query User{1CD3BE33-5F19-49D0-BC18-3C26BA4B6A83}E:\world_of_tanks\worldoftanks.exe] => (Allow) E:\world_of_tanks\worldoftanks.exe FirewallRules: [TCP Query User{AA3B3A37-2FE9-41BB-8D09-F1C8F09FF78E}E:\world_of_tanks\worldoftanks.exe] => (Allow) E:\world_of_tanks\worldoftanks.exe FirewallRules: [UDP Query User{889BB37A-67AC-49BA-89FC-F8C1C685C115}E:\world_of_tanks\worldoftanks.exe] => (Allow) E:\world_of_tanks\worldoftanks.exe FirewallRules: [TCP Query User{00875240-3661-4C03-A1B4-F7813585AFC3}E:\world_of_tanks\wotlauncher.exe] => (Allow) E:\world_of_tanks\wotlauncher.exe FirewallRules: [UDP Query User{41550480-F26A-450B-B807-1D0AC518346A}E:\world_of_tanks\wotlauncher.exe] => (Allow) E:\world_of_tanks\wotlauncher.exe FirewallRules: [{8F489E79-5105-4155-B68C-9FA8BFD3E3BC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{D4E5FF1E-7669-4A82-884F-E34785311146}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{87F2B722-8271-4CC9-8A7D-1C4F5E78C9B3}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{FF21A3C4-1AA1-4A8E-A3AF-C4B76E1CF941}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{0A99DA16-D4E3-4168-8437-247AFDFC2BED}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{C8ACEAA5-250C-4BF6-B361-5A13B4E79C22}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Punkty Przywracania systemu ========================= ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Teredo Tunneling Pseudo-Interface Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (02/08/2016 09:05:38 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (02/08/2016 09:05:38 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (02/08/2016 01:48:29 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (02/08/2016 01:48:29 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (02/08/2016 08:47:12 AM) (Source: Windows Backup) (EventID: 4104) (User: ) Description: Wykonanie kopii zapasowej nie powiodło się. Błąd: Program Kopia zapasowa w systemie Windows nie mógł odczytać danych z kopii w tle na jednym z woluminów objętych kopią zapasową. Sprawdź powiązane błędy w dziennikach zdarzeń. (0x81000037). Error: (02/06/2016 07:54:56 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: NvBackend.exe, wersja: 10.11.15.0, sygnatura czasowa: 0x52a6776c Nazwa modułu powodującego błąd: ole32.dll, wersja: 6.1.7601.18915, sygnatura czasowa: 0x55981b9e Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00033a96 Identyfikator procesu powodującego błąd: 0x830 Godzina uruchomienia aplikacji powodującej błąd: 0xNvBackend.exe0 Ścieżka aplikacji powodującej błąd: NvBackend.exe1 Ścieżka modułu powodującego błąd: NvBackend.exe2 Identyfikator raportu: NvBackend.exe3 Error: (02/06/2016 07:54:36 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: NvBackend.exe, wersja: 10.11.15.0, sygnatura czasowa: 0x52a6776c Nazwa modułu powodującego błąd: nvspcap.dll_unloaded, wersja: 0.0.0.0, sygnatura czasowa: 0x52a67618 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x100be510 Identyfikator procesu powodującego błąd: 0x830 Godzina uruchomienia aplikacji powodującej błąd: 0xNvBackend.exe0 Ścieżka aplikacji powodującej błąd: NvBackend.exe1 Ścieżka modułu powodującego błąd: NvBackend.exe2 Identyfikator raportu: NvBackend.exe3 Error: (02/01/2016 06:17:04 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcNvVAD initialization failed [6] Error: (02/01/2016 06:17:03 PM) (Source: NvStreamSvc) (EventID: 1) (User: ) Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0] Error: (01/31/2016 07:14:14 PM) (Source: Windows Backup) (EventID: 4104) (User: ) Description: Wykonanie kopii zapasowej nie powiodło się. Błąd: Na tym dysku jest za mało miejsca, aby zapisać kopię zapasową. Zwolnij miejsce, usuwając starsze kopie zapasowe albo niepotrzebne dane, lub zmień ustawienia kopii zapasowej. (0x81000005). Dziennik System: ============= Error: (02/09/2016 05:38:19 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (02/09/2016 05:38:19 PM) (Source: DCOM) (EventID: 10005) (User: ) Description: 1068upnphost{204810B9-73B2-11D4-BF42-00B0D0118B56} Error: (02/09/2016 05:05:17 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: ZARZĄDZANIE NT) Description: Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.213.5647.0). Error: (02/09/2016 04:49:44 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (02/09/2016 04:49:42 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (02/09/2016 04:49:41 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (02/09/2016 04:49:31 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (02/09/2016 05:38:09 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (02/09/2016 05:38:09 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 Error: (02/09/2016 05:38:06 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa Host urządzenia UPnP zależy od usługi Odnajdywanie SSDP, której nie można uruchomić z powodu następującego błędu: %%1058 CodeIntegrity: =================================== Date: 2016-02-08 21:05:11.638 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-08 21:05:11.311 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-08 21:05:04.743 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-08 21:05:04.306 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-08 13:48:03.260 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-08 13:48:03.073 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-08 13:47:44.091 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-08 13:47:43.891 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-01 18:16:36.995 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-02-01 18:16:36.792 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM)2 Duo CPU T6500 @ 2.10GHz Procent pamięci w użyciu: 51% Całkowita pamięć fizyczna: 4095.27 MB Dostępna pamięć fizyczna: 1980.51 MB Całkowita pamięć wirtualna: 8188.75 MB Dostępna pamięć wirtualna: 5711.01 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:58.59 GB) (Free:7.9 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: () (Fixed) (Total:137.27 GB) (Free:0.01 GB) NTFS Drive e: () (Fixed) (Total:134.95 GB) (Free:36.99 GB) NTFS Drive f: () (Fixed) (Total:134.95 GB) (Free:8.96 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 97646C29) Partition 1: (Active) - (Size=58.6 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=407.2 GB) - (Type=OF Extended) ==================== Koniec Addition.txt ============================