Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 12-11-2016 Uruchomiony przez Pywył (13-11-2016 13:45:45) Uruchomiony z C:\Users\Pywył\Desktop Windows 7 Ultimate Service Pack 1 (X64) (2016-02-18 17:34:10) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1337811352-70182668-1157411616-500 - Administrator - Disabled) Gość (S-1-5-21-1337811352-70182668-1157411616-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1337811352-70182668-1157411616-1002 - Limited - Enabled) Pywył (S-1-5-21-1337811352-70182668-1157411616-1000 - Administrator - Enabled) => C:\Users\Pywył ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-1337811352-70182668-1157411616-1000\...\uTorrent) (Version: 3.4.9.42598 - BitTorrent Inc.) Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.1.102.55 - Adobe Systems Incorporated) AION (HKLM-x32\...\AION) (Version: - ) AMD Catalyst Install Manager (HKLM\...\{37FCE154-7F59-74F0-3A35-BF503CEB230B}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.) AVG (HKLM\...\AvgZen) (Version: 1.111.2.45832 - AVG Technologies) AVG Zen (Version: 1.111.9 - AVG Technologies) Hidden Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.5.1 - EA Digital Illusions CE AB) BF3 Settings Editor (HKLM\...\{5866DD36-8055-475B-A5C3-82C04091D14E}) (Version: 2.3 - Realmware) BF4 Settings Editor (HKLM\...\{EF4C9459-47DE-4FCD-B9E0-CEB5BA03FC64}) (Version: 1.1 - Realmware) Borderlands 2 (HKLM\...\Steam App 49520) (Version: - Gearbox Software) Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.223.259 - Broadcom Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform) Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dragon Age™: Inkwizycja - Wersja Próbna (HKLM-x32\...\{47DA86BB-EFE6-478F-B3DB-7AE5BF38A9EF}) (Version: 1.0.0.12 - Electronic Arts) ESL Wire 1.19.0 (HKLM\...\ESL Wire_is1) (Version: - Turtle Entertainment GmbH) FMW 1 (Version: 1.132.1 - AVG Technologies) Hidden Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Medieval II: Total War (HKLM\...\Steam App 4700) (Version: - The Creative Assembly) Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation) Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 46.0.1 (x86 pl) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 pl)) (Version: 46.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1 - Mozilla) Paragon Hard Disk Manager™ 2010 Professional Trial (HKLM\...\{1E104AF0-EA49-11DE-AC07-005056C00008}) (Version: 90.00.0003 - Paragon Software) Podstawowe programy Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7712 - Realtek Semiconductor Corp.) Rust (HKLM\...\Steam App 252490) (Version: - Facepunch Studios) Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-1337811352-70182668-1157411616-1000\...\Spotify) (Version: 1.0.42.151.g19de0aa6 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKU\S-1-5-21-1337811352-70182668-1157411616-1000\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.0.732.20 - Electronic Arts Inc.) Total War: ATTILA (HKLM\...\Steam App 325610) (Version: - Creative Assembly) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {35E7B924-F630-4020-B114-2544F12F4420} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-03-11] (Piriform Ltd) Task: {48FE980C-63C3-4400-86CB-1BBF8F0E4816} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28] (Google Inc.) Task: {82838999-B197-44F8-AE38-80DF73236992} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28] (Google Inc.) Task: {9444253F-E10A-49BC-A1A8-54B56ABE04D8} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {A10CEF99-7859-4C18-B8F7-116C3C667A5D} - System32\Tasks\Spotify => C:\Users\Pywył\AppData\Roaming\Spotify\Spotify.exe [2016-11-11] (Spotify Ltd) <==== UWAGA Task: {DE9DF2F3-4698-4A8B-8CB8-BF951513BABB} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy Task: {F84D9F00-F14F-4B1A-B78A-E4427AD69CCD} - System32\Tasks\Driver Booster SkipUAC (Pywył) => C:\Program Files (x86)\IObit\Driver Booster\4.0.4\DriverBooster.exe (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ShortcutWithArgument: C:\Users\Pywył\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\PYWY~1\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" ==================== Załadowane moduły (filtrowane) ============== 2013-04-29 23:25 - 2013-04-29 23:25 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2016-11-12 20:27 - 2016-04-12 14:39 - 00663056 _____ () D:\Program Files\EslWire\service\WireHelperSvc.exe 2016-11-12 20:27 - 2016-04-14 10:38 - 00214016 _____ () D:\Program Files\EslWire\service\NocIPC64.dll 2016-11-01 11:53 - 2016-11-01 11:55 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2016-07-20 01:10 - 2016-07-20 01:11 - 00187824 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2013-04-29 23:25 - 2013-04-29 23:25 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll 2013-06-18 15:49 - 2013-06-18 15:49 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll 2013-04-29 23:08 - 2013-04-29 23:08 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2016-03-11 21:31 - 2016-03-11 21:31 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2016-10-24 20:12 - 2016-10-20 09:56 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libglesv2.dll 2016-10-24 20:12 - 2016-10-20 09:56 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libegl.dll 2016-11-05 20:42 - 2016-09-08 04:14 - 00784672 _____ () D:\Program Files (x86)\Steam\SDL2.dll 2016-11-05 20:42 - 2016-09-01 02:02 - 04969248 _____ () D:\Program Files (x86)\Steam\v8.dll 2016-11-05 20:42 - 2016-09-01 02:02 - 01563936 _____ () D:\Program Files (x86)\Steam\icui18n.dll 2016-11-05 20:42 - 2016-09-01 02:02 - 01195296 _____ () D:\Program Files (x86)\Steam\icuuc.dll 2016-11-05 20:42 - 2016-10-13 02:58 - 02321696 _____ () D:\Program Files (x86)\Steam\video.dll 2016-11-05 20:42 - 2016-01-27 08:49 - 02549760 _____ () D:\Program Files (x86)\Steam\libavcodec-56.dll 2016-11-05 20:42 - 2016-01-27 08:49 - 00442880 _____ () D:\Program Files (x86)\Steam\libavutil-54.dll 2016-11-05 20:42 - 2016-01-27 08:49 - 00491008 _____ () D:\Program Files (x86)\Steam\libavformat-56.dll 2016-11-05 20:42 - 2016-01-27 08:49 - 00332800 _____ () D:\Program Files (x86)\Steam\libavresample-2.dll 2016-11-05 20:42 - 2016-01-27 08:49 - 00485888 _____ () D:\Program Files (x86)\Steam\libswscale-3.dll 2016-11-05 20:42 - 2016-10-13 02:58 - 00836896 _____ () D:\Program Files (x86)\Steam\bin\chromehtml.DLL 2016-11-05 20:42 - 2016-07-04 23:17 - 00266560 _____ () D:\Program Files (x86)\Steam\openvr_api.dll 2016-02-18 22:33 - 2016-04-07 20:07 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll 2016-11-05 20:42 - 2016-08-04 21:56 - 49825056 _____ () D:\Program Files (x86)\Steam\bin\cef\cef.winxp\libcef.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData:NT [40] AlternateDataStreams: C:\ProgramData:NT2 [346] AlternateDataStreams: C:\Users\All Users:NT [40] AlternateDataStreams: C:\Users\All Users:NT2 [346] AlternateDataStreams: C:\ProgramData\Application Data:NT [40] AlternateDataStreams: C:\ProgramData\Application Data:NT2 [346] AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT [40] AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT2 [346] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [346] AlternateDataStreams: C:\Users\Pywył\Dane aplikacji:NT [40] AlternateDataStreams: C:\Users\Pywył\Dane aplikacji:NT2 [346] AlternateDataStreams: C:\Users\Pywył\AppData\Roaming:NT [40] AlternateDataStreams: C:\Users\Pywył\AppData\Roaming:NT2 [346] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) IE trusted site: HKU\S-1-5-21-1337811352-70182668-1157411616-1000\...\driversupport.com -> hxxp://apps.driversupport.com IE trusted site: HKU\S-1-5-21-1337811352-70182668-1157411616-1000\...\driversupport.com -> hxxps://apps.driversupport.com ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 03:34 - 2016-11-13 13:34 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1337811352-70182668-1157411616-1000\Control Panel\Desktop\\Wallpaper -> DNS Servers: 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupfolder: C:^Users^Pywył^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup MSCONFIG\startupfolder: C:^Users^Pywył^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^SHU.lnk => C:\Windows\pss\SHU.lnk.Startup MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: Clownfish => MSCONFIG\startupreg: EADM => "d:\Program Files (x86)\Origin\Origin.exe" -AutoStart MSCONFIG\startupreg: EaseUS Cleanup => "d:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\CleanUpUI.exe" 10 300 MSCONFIG\startupreg: EaseUS EPM tray => d:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\EpmNews.exe MSCONFIG\startupreg: ESL Wire => "C:\Program Files\EslWire\wire.exe" --tray MSCONFIG\startupreg: GalaxyClient => D:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart MSCONFIG\startupreg: GoogleChromeAutoLaunch_9D03D6C06B49356AAAFFEBC8A2446DFB => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{05625700-BC82-40B8-BDFF-12BCA9FFDA9F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{728B0F51-FF3B-4D40-A402-476A965EE89D}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [TCP Query User{DEDFEBD3-6D8D-455D-80BF-CC37B680BFB4}C:\users\pywył\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\pywył\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{BEEF9283-D7E3-4AE1-AFB0-F956DC348C5F}C:\users\pywył\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\pywył\appdata\roaming\spotify\spotify.exe FirewallRules: [{0F967F3C-2AFC-4C18-9EA3-0FBC3F8F4A32}] => (Allow) C:\Users\Pywył\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{4AF927F9-8454-4A60-BBA2-C50ACFE4B2DE}] => (Allow) C:\Users\Pywył\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{29D23967-2459-4DB2-9A8E-B81F5D64C8F2}] => (Allow) C:\Users\Pywył\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F88D85B3-4B63-49DC-B900-F7925714EB0E}] => (Allow) C:\Users\Pywył\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{EA857221-A3AD-4804-A7F8-A385C3C73445}] => (Allow) C:\Users\Pywył\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{274F51C1-8752-4998-A5A7-AAF12F70940A}] => (Allow) C:\Users\Pywył\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{A91679B4-9306-4C05-9648-D853778F003B}C:\users\pywył\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\pywył\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{278232CA-2FC9-49AD-81A7-E7533739EA1F}C:\users\pywył\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\pywył\appdata\roaming\spotify\spotify.exe FirewallRules: [{6C226D6D-3A24-4B75-AE4C-A54C58A29FCB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{4C0E8B7C-ED39-486B-B4E6-43FF4DA84005}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{F67E59B5-7C63-4AAA-BD89-A63BA7B79ADF}] => (Allow) LPort=2869 FirewallRules: [{C9804D6F-A800-4FD6-A3E7-D137ED367CE2}] => (Allow) LPort=1900 FirewallRules: [{ED45DECD-0AC6-4C71-9CBC-D818B469403E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{463EFE97-2238-4A97-9176-EBA617EFF39E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{13E462E1-0B79-4A0D-A1DE-A9149BE7C942}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{930F8206-A571-4643-9EC0-39439F9A49D2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{271D4FC7-3457-40C1-A375-4989D97A120B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{7BDB1308-D68D-46CF-A4B8-CBA767EE3FDA}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{35BF9AB2-E59F-4DD7-BE7B-54D1CFB0B3BB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{7529B598-BE6E-49AE-AC85-AF363FD8A3A5}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{44724E27-8E91-4A95-8CFB-57C2271F4EF5}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{024F9679-D408-4E35-A6A6-7B57F5EAAC1D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{0AF0CEFC-A798-42E1-9B40-BA5B5EDF097C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{158869B6-F0F0-49B0-8CB3-3C80FFDF1E86}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe FirewallRules: [{5D742B68-68DD-461A-9939-14F8032E7215}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe FirewallRules: [{3783E5DE-6532-4FD9-94A4-54B1749B6036}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe FirewallRules: [{E8C2BF38-290B-4CC8-81FD-DF22135014B0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe FirewallRules: [TCP Query User{E9526A47-7A54-407C-BB30-7235B3320042}D:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe FirewallRules: [UDP Query User{C848CCFD-391A-4647-AAA4-520F4F8CB7FB}D:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe FirewallRules: [{FAC30EA1-B265-44E8-9289-FE9F6ED6383B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Total War Attila\launcher\launcher.exe FirewallRules: [{9752ABC5-CE2B-41F1-ABD2-B84C12C740A2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Total War Attila\launcher\launcher.exe FirewallRules: [{642A717D-D45A-4004-ADFB-7206B6BE4027}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Medieval II Total War\medieval2.exe FirewallRules: [{954CBF28-FD3B-4F37-B064-94E8CD7D6A68}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Medieval II Total War\medieval2.exe FirewallRules: [{4C8E9C60-9197-4DB1-918F-F7FE46665386}] => (Allow) D:\Program Files\EslWire\wire.exe FirewallRules: [{C9C7C12A-8050-4297-857D-F69E46AE59E9}] => (Allow) D:\Program Files\EslWire\wire.exe ==================== Punkty Przywracania systemu ========================= 07-11-2016 15:18:39 Driver Booster : ATI Mobility Radeon HD 4500/5100 Series 12-11-2016 20:33:05 Zainstalowany program DirectX 12-11-2016 20:41:27 Zainstalowany program DirectX 12-11-2016 21:55:42 Zainstalowany program DirectX 13-11-2016 13:40:52 Removed AVG 13-11-2016 13:42:56 Removed AVG 2016 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Universal Image Mounter Plugin Description: Universal Image Mounter Plugin Class Guid: {19837c5c-96f5-45e0-9a2d-c6bb26e1b12b} Manufacturer: Paragon Software Group Service: Uim_IM Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39) Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver. Name: Karta tunelowania Teredo firmy Microsoft Description: Karta tunelowania Teredo firmy Microsoft Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Name: Sterownik pliku jako woluminu Description: Sterownik pliku jako woluminu Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: blbdrive Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (11/13/2016 01:42:56 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury ConvertStringSidToSid(S-1-5-21-1337811352-70182668-1157411616-500.bak). hr = 0x80070539, Struktura identyfikatora zabezpieczenia jest nieprawidłowa. . Operacja: Zdarzenie OnIdentify Zbieranie danych modułu zapisującego Kontekst: Kontekst wykonywania: Shadow Copy Optimization Writer Identyfikator klasy modułu zapisującego: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f} Nazwa modułu zapisującego: Shadow Copy Optimization Writer Identyfikator wystąpienia modułu zapisującego: {f1f17daf-7b0c-4142-956d-a12c7580d897} Error: (11/13/2016 01:40:53 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas wywoływania procedury ConvertStringSidToSid(S-1-5-21-1337811352-70182668-1157411616-500.bak). hr = 0x80070539, Struktura identyfikatora zabezpieczenia jest nieprawidłowa. . Operacja: Zdarzenie OnIdentify Zbieranie danych modułu zapisującego Kontekst: Kontekst wykonywania: Shadow Copy Optimization Writer Identyfikator klasy modułu zapisującego: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f} Nazwa modułu zapisującego: Shadow Copy Optimization Writer Identyfikator wystąpienia modułu zapisującego: {f1f17daf-7b0c-4142-956d-a12c7580d897} Error: (11/13/2016 01:39:23 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for D:\Program Files (x86)\Steam\bin\steamwebhelper.exe Error: (11/13/2016 01:37:33 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (11/13/2016 01:36:08 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (11/13/2016 01:26:05 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (11/13/2016 01:26:03 PM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for D:\Program Files (x86)\Steam\bin\steamwebhelper.exe Error: (11/13/2016 01:23:08 PM) (Source: Winlogon) (EventID: 4103) (User: ) Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error: (11/13/2016 04:02:53 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod błędu: 0x80070005 Error: (11/13/2016 03:03:29 AM) (Source: Software Protection Platform Service) (EventID: 8193) (User: ) Description: Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod błędu: 0x80070005 Dziennik System: ============= Error: (11/13/2016 01:37:08 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Uim_IM Error: (11/13/2016 01:36:48 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (11/13/2016 01:34:55 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (11/13/2016 01:25:57 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Uim_IM Error: (11/13/2016 01:25:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Razer Game Scanner z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (11/13/2016 01:25:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Razer Game Scanner. Error: (11/13/2016 01:24:41 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (11/13/2016 03:03:19 AM) (Source: DCOM) (EventID: 10001) (User: ) Description: Nie można uruchomić serwera DCOM: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83} jako /. Błąd: 5 Błąd wystąpił podczas uruchamiania polecenia: C:\Windows\System32\slui.exe -Embedding Error: (11/13/2016 02:14:18 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Uim_IM Error: (11/13/2016 02:13:56 AM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . ==================== Statystyki pamięci =========================== Procesor: AMD Athlon(tm) II Dual-Core M320 Procent pamięci w użyciu: 35% Całkowita pamięć fizyczna: 4094.36 MB Dostępna pamięć fizyczna: 2626 MB Całkowita pamięć wirtualna: 8186.93 MB Dostępna pamięć wirtualna: 6531.22 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:94.56 GB) (Free:53.64 GB) NTFS Drive d: (Nowy) (Fixed) (Total:371.09 GB) (Free:304.9 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 15801580) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=94.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=371.1 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================