Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x86) Wersja: 02-06-2017 Uruchomiony przez Adrian (05-06-2017 20:53:05) Uruchomiony z C:\Users\Adrian\Desktop Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2016-04-08 22:11:24) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-1195799040-1513517072-2440341013-500 - Administrator - Disabled) => C:\Users\Administrator Adrian (S-1-5-21-1195799040-1513517072-2440341013-1000 - Administrator - Enabled) => C:\Users\Adrian Gość (S-1-5-21-1195799040-1513517072-2440341013-501 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289} AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: COMODO Advanced Protection (Enabled - Up to date) {B730BF64-C56F-6633-0EF5-9E639E46CC40} AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834} FW: COMODO Firewall (Enabled) {346ADFA5-A93A-68E5-1F1A-0C241B12C186} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-1195799040-1513517072-2440341013-1000\...\uTorrent) (Version: 3.5.0.43784 - BitTorrent Inc.) 7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov) Adobe Acrobat Reader DC - Polish (HKLM\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated) Alan Wake (HKLM\...\Alan Wake_is1) (Version: - ) AVG PC TuneUp (HKLM\...\AVG PC TuneUp) (Version: 16.13.1.47453 - AVG Technologies) AVG PC TuneUp (Version: 16.13.3 - AVG Technologies) Hidden Bandicam (HKLM\...\Bandicam) (Version: 3.2.0.1102 - Bandisoft.com) Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version: - Bandisoft.com) Battlefield: Bad Company™ 2 (HKLM\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.0.0 - Electronic Arts) CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform) COMODO Firewall (HKLM\...\{04833277-EE61-4251-9273-0CF86C0FE710}) (Version: 10.0.1.6223 - COMODO Security Solutions Inc.) Company of Heroes (New Steam Version) (HKLM\...\Steam App 228200) (Version: - Relic) Company of Heroes 2 (HKLM\...\Steam App 231430) (Version: - Relic Entertainment) Company of Heroes: Far East War (HKLM\...\Steam App 547180) (Version: - Far East War Development Team) Crysis 2 Maximum Edition (HKLM\...\Steam App 108800) (Version: - Crytek Studios) Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Deus Ex Human Revolution Director's Cut Wersja Polska (HKLM\...\{6423E48F-04F4-4E99-9420-FDD9165A6A90}_is1) (Version: 1.4 - sb8gapi) Deus Ex: Human Revolution - Director's Cut (HKLM\...\Steam App 238010) (Version: - Eidos Montreal) Driver Booster 4.3 (HKLM\...\Driver Booster_is1) (Version: 4.3.0 - IObit) Empire Earth II (HKLM\...\{DF315348-721C-40B8-BAE2-58C6C7D935A2}) (Version: 1.20 - Sierra) Empire Earth II: Władza absolutna (HKLM\...\{F596C356-BF35-4ED7-981C-CC791461A8F0}) (Version: 1.0 - Sierra) ESET NOD32 Antivirus (HKLM\...\{A8CD4F5C-A2F5-4EF1-AE28-543F79B23C59}) (Version: 8.0.319.1 - ESET, spol s r. o.) Euro Truck Simulator 2 (HKLM\...\Euro Truck Simulator 2_is1) (Version: 1.27.1.6s - ) F1 2013 (HKLM\...\F1 2013_is1) (Version: - ) FIFA MANAGER 12 (HKLM\...\FIFA MANAGER 12) (Version: 1.0.0.3 - Electronic Arts) FMW 1 (Version: 1.52.1 - AVG Technologies) Hidden Google Chrome (HKLM\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.) Google Update Helper (Version: 1.3.33.5 - Google Inc.) Hidden Heroes of Might and Magic V - Dzikie Hordy (HKLM\...\{ACC75323-DB4A-4f7f-9AF3-1D1DEFF2D1B5}_is1) (Version: - Ubisoft) Heroes of Might and Magic V - Tribes of the East (HKLM\...\{ACC75323-DB4A-4F7F-9AF3-1D1DEFF2D1B5}) (Version: - ) KeyScrambler (HKLM\...\KeyScrambler) (Version: 3.8.2.0 - QFX Software Corporation) Mafia II (HKLM\...\Mafia II_is1) (Version: - ) Malwarebytes (wersja 3.0.6.1469) (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes) Max Payne 3 Complete Edition (HKLM\...\bWF4cGF5bmUz_is1) (Version: 1 - ) Microsoft Games for Windows Marketplace (HKLM\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Might & Magic: Heroes VI (HKLM\...\Steam App 48220) (Version: - Blackhole) Mozilla Firefox 53.0.3 (x86 pl) (HKLM\...\Mozilla Firefox 53.0.3 (x86 pl)) (Version: 53.0.3 - Mozilla) NVIDIA PhysX (HKLM\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation) Odkurzacz (HKLM\...\Odkurzacz 14.2_is1) (Version: 14.2.0.4492 - FranmoSoftware - Maciej Opaliński) Panel sterowania NVIDIA 342.01 (Version: 342.01 - NVIDIA Corporation) Hidden PowerISO (HKLM\...\PowerISO) (Version: 5.7 - Power Software Ltd) Resident Evil 3 (HKLM\...\{9701A4CC-C144-4482-9776-B64BF4A5343F}) (Version: 1.00.000 - ) Revo Uninstaller Pro 3.1.6 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.6 - VS Revo Group, Ltd.) Sniper - Ghost Warrior 2 (HKLM\...\Sniper - Ghost Warrior 2_is1) (Version: - ) Steam (HKLM\...\Steam) (Version: 2.10.91.91 - Valve Corporation) swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Tomb Raider (HKLM\...\Steam App 203160) (Version: - Crystal Dynamics) Tropico 4 1.00 (HKU\S-1-5-21-1195799040-1513517072-2440341013-1000\...\Tropico 4) (Version: 1.00 - Kalypso Media) Uplay (HKLM\...\Uplay) (Version: 23.0 - Ubisoft) Virtua Tennis 4™ (HKLM\...\GFWL_{53450FA2-E900-456E-9715-501000008200}) (Version: 1.0.0000.130 - SEGA) Virtua Tennis 4™ (Version: 1.0.0000.130 - SEGA) Hidden Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Warhammer 40000 - Dawn of War II Gold Edition (HKLM\...\Warhammer 40000 - Dawn of War II Gold Edition_is1) (Version: - ) Windows Live ID Sign-in Assistant (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation) WinRAR 5.30 beta 4 (32-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.30.4 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {11D806D8-39E3-46E5-A65E-C4B668D5E305} - System32\Tasks\Driver Booster SkipUAC (Adrian) => C:\Program Files\IObit\Driver Booster\4.3.0\DriverBooster.exe [2017-03-21] (IObit) Task: {3764B5F3-F59D-4C81-91AF-404735D1E2A4} - System32\Tasks\{4E1A012D-8EC8-4D6F-A9CC-2F36615E0DEC} => C:\Users\Adrian\Desktop\adwcleaner_6.047.exe [2017-05-27] () Task: {3D081FD6-2C50-43C3-9789-8D7B4851A3BE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-09-27] (Google Inc.) Task: {56DCF21B-4E62-42A6-850B-1740BABE7510} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files\Common Files\Java\Java Update\jusched.exe Task: {5FA619CA-69A1-40CE-BC4A-ACB4152A9967} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\Programy\COMODO\COMODO Internet Security\cistray.exe [2017-05-02] (COMODO) Task: {628A1FB3-065D-4056-A9AC-7605F7F3F35E} - System32\Tasks\Odkurzacz => C:\Program Files\Programy\Odkurzacz\odkurzacz.exe [2016-11-19] (FranmoSoftware) Task: {99C730A5-D949-4C9F-B3D3-738C480B550E} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\Programy\COMODO\COMODO Internet Security\cfpconfg.exe [2017-05-03] (COMODO) Task: {9D62CF17-3103-4057-88FA-A2122C8F270F} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\Programy\COMODO\COMODO Internet Security\cfpconfg.exe [2017-05-03] (COMODO) Task: {A520E0B5-78D1-486E-870F-0B2CDA2AA209} - System32\Tasks\{684887D6-1D52-402B-A807-92DBEC99ED5C} => E:\Install.exe Task: {D8E7A6C0-4138-4990-9AF6-2C0350C45845} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-09-27] (Google Inc.) Task: {E73F2635-16D2-4D34-884A-6BC0C75916DC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: {EB147A9D-C9E3-474C-8938-76922E63A02B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-13] (Adobe Systems Incorporated) Task: {F89FC6D9-6F89-459D-9920-91233B6656DD} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files\AVG\AVG PC TuneUp\tuscanx.exe [2016-12-16] (AVG Technologies CZ, s.r.o.) Task: {FA0F307E-004F-4C12-B29A-CBFDB3972FC8} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-27] (AVAST Software) Task: {FA15552B-45F1-4FC4-87D1-4A55D250CBFE} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\Programy\COMODO\COMODO Internet Security\cfpconfg.exe [2017-05-03] (COMODO) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2015-08-05 00:26 - 2017-04-23 00:25 - 00097984 _____ () C:\Program Files\Programy\COMODO\COMODO Internet Security\cavwpps.dll 2015-08-05 00:26 - 2017-04-23 00:25 - 00197824 _____ () C:\Program Files\Programy\COMODO\COMODO Internet Security\cmdcomps.dll 2016-04-09 01:00 - 2016-11-14 13:00 - 00123448 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\Windows\explorer.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\HelpPane.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\ucrtbase.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\acmigration.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\adsmsext.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\aeinv.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\aepic.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll:$CmdTcID [130] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll:$CmdTcID [130] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\appraiser.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\asycfilt.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\atmfd.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\atmlib.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\audiodg.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\AudioEng.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\AUDIOKSE.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\AudioSes.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\audiosrv.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\blackbox.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\centel.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\chajei.ime:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\cintlgnt.ime:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\CompatTelRunner.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\cryptsp.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\cryptui.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3d10level9.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DCompiler_33.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DCompiler_34.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DCompiler_35.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DCompiler_36.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DCompiler_37.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DCompiler_38.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DCompiler_39.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DCompiler_40.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DCompiler_41.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DCompiler_42.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DCompiler_43.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dcsx_42.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dcsx_43.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10_33.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10_34.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10_35.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10_36.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10_37.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10_38.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10_39.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10_40.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10_41.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10_42.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx10_43.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx11_42.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx11_43.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx9_24.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx9_25.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx9_26.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx9_27.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx9_28.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx9_29.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx9_30.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx9_31.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx9_32.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx9_33.dll:$CmdTcID [130] AlternateDataStreams: C:\Windows\system32\d3dx9_34.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\d3dx9_35.dll:$CmdTcID [130] AlternateDataStreams: C:\Windows\system32\d3dx9_36.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DX9_37.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DX9_38.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DX9_39.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DX9_40.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DX9_41.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DX9_42.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\D3DX9_43.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\davclnt.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\dciman32.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\devinv.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\diagtrack.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\drmmgrtn.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\drmv2clt.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\DWrite.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\dxmasf.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\EncDump.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\evr.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\ExplorerFrame.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\FntCache.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\fontsub.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\generaltel.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\icm32.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\IMJP10.IME:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\IMJP10K.DLL:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\imkr80.ime:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\inetcomm.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\INETRES.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\InkEd.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\input.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\invagent.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\lpk.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\mf.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\mferror.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\mfmjpegdec.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\mfplat.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\mfpmp.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\mfps.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\mscms.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\msctf.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\msdxm.ocx:$CmdTcID [130] AlternateDataStreams: C:\Windows\system32\msmmsp.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\msnetobj.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\msscp.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\MSVidCtl.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\msxml3.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\msxml3r.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\nvaudcap32v.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\nvdispco3234144.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\nvdispco3234192.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\nvdispco3234200.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\nvdispco3234201.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\nvdispgenco3234144.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\nvdispgenco3234192.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\nvdispgenco3234200.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\nvdispgenco3234201.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\olepro32.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\OpenCL.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\pcadm.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\pcaevts.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\pcalua.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\pcasvc.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\pcawrk.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\phon.ime:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\pintlgnt.ime:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\poqexec.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\qdvd.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\qintlgnt.ime:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\quartz.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\quick.ime:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\rrinstaller.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\samlib.dll:$CmdTcID [130] AlternateDataStreams: C:\Windows\system32\samsrv.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\scavengeui.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\shell32.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\spwmp.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\tintlgnt.ime:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\ucrtbase.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\UIAnimation.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\usp10.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\UtcResources.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\WcsPlugInService.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\WebClnt.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\win32spl.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\WindowsCodecs.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\WinSetupUI.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wmdrmsdk.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wmp.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wmploc.DLL:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\WpdMtp.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\WpdMtpUS.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\WSManHTTPConfig.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\WSManMigrationPlugin.dll:$CmdTcID [130] AlternateDataStreams: C:\Windows\system32\WsmAuto.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wsmplpxy.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wsmprovhost.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\WsmRes.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\WsmSvc.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\WsmWmiPl.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wu.upgrade.ps.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wuapi.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wuapp.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wuauclt.exe:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wuaueng.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wucltux.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wudriver.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wups.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wups2.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\wuwebv.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\x3daudio1_0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\x3daudio1_1.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\X3DAudio1_2.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\X3DAudio1_3.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\X3DAudio1_4.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\X3DAudio1_5.dll:$CmdTcID [130] AlternateDataStreams: C:\Windows\system32\X3DAudio1_6.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\X3DAudio1_7.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine2_0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine2_1.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine2_10.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine2_2.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine2_3.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine2_4.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine2_5.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine2_6.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine2_7.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine2_8.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine2_9.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine3_0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine3_1.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine3_2.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine3_3.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine3_4.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine3_5.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine3_6.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xactengine3_7.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAPOFX1_0.dll:$CmdTcID [130] AlternateDataStreams: C:\Windows\system32\XAPOFX1_1.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAPOFX1_2.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAPOFX1_3.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAPOFX1_4.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAPOFX1_5.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAudio2_0.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAudio2_1.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAudio2_2.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAudio2_3.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAudio2_4.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAudio2_5.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAudio2_6.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\XAudio2_7.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xinput1_1.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xinput1_2.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\xinput1_3.dll:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\bowser.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\dfsc.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\eamonm.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\ehdrv.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\epfwwfpr.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\mountmgr.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\mrxdav.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\nvvad32v.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\PEAuth.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\revoflt.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\RimUsb.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\tcpipreg.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\usbccgp.sys:$CmdTcID [130] AlternateDataStreams: C:\Windows\system32\Drivers\usbd.sys:$CmdTcID [130] AlternateDataStreams: C:\Windows\system32\Drivers\usbehci.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\usbhub.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\usbohci.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\usbport.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\usbuhci.sys:$CmdTcID [64] AlternateDataStreams: C:\Windows\system32\Drivers\winusb.sys:$CmdTcID [64] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:04 - 2017-04-17 20:05 - 00001026 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 t1.symcb.com 127.0.0.1 t2.symcb.com 127.0.0.1 tl.symcb.com 127.0.0.1 th.symcb.com 127.0.0.1 th.symcd.com 127.0.0.1 tl.symcd.com 0.0.0.0 serius.mwbsys.com 0.0.0.0 keystone.mwbsys.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-1195799040-1513517072-2440341013-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 91.189.136.10 - 91.189.136.11 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja wyłączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\startupreg: Malwarebytes TrayApp => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{FA4772F9-9AB1-4C8E-80FB-2502EA7297AE}] => (Allow) C:\Program Files\Steam\Steam.exe FirewallRules: [{79C1077C-4874-4034-A5A1-01AD363CDBC2}] => (Allow) C:\Program Files\Steam\Steam.exe FirewallRules: [{485A5A21-0E6C-4984-85ED-7688682CC745}] => (Allow) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{12E2BED1-C7D4-434C-AE6E-66DD112BC477}] => (Allow) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A14E5D2D-29BD-4D74-AD29-4ADD12D1DCCA}] => (Allow) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C6E904DA-4ED2-4BDE-9E10-203A9CDF175E}] => (Allow) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7A5667E1-BEDD-4DA3-83E8-E8B548F80664}] => (Allow) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{77D68F9F-42B0-41C9-AB98-F679F372D731}] => (Allow) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0029BD76-0917-416C-BDDA-C653A1C7B74F}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{88B6A34D-0E85-4B0D-873F-141FFBC3A078}] => (Allow) C:\Program Files\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe FirewallRules: [{558D44F0-5006-4285-9E6F-1CFE0A931BC0}] => (Allow) C:\Program Files\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe FirewallRules: [{60313E1E-0021-4F7F-BC54-C65387F6CDFD}] => (Allow) C:\Program Files\Steam\steamapps\common\Tomb Raider\TombRaider.exe FirewallRules: [{08762F9B-9096-4916-AFA2-52D01DE45080}] => (Allow) C:\Program Files\Steam\steamapps\common\Tomb Raider\TombRaider.exe FirewallRules: [{4A4DDD72-5D7C-4213-B307-EC982E687534}] => (Allow) C:\Program Files\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe FirewallRules: [{7CFD7046-68A5-4065-A6DE-F008BED899FD}] => (Allow) C:\Program Files\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe FirewallRules: [{2D23B7DE-A9C4-487C-B6EF-7294CB63B08A}] => (Allow) C:\Program Files\Steam\steamapps\common\Might and Magic Heroes VI\Might & Magic Heroes VI.exe FirewallRules: [{FAD86340-F59B-4392-A299-3F849C651151}] => (Allow) C:\Program Files\Steam\steamapps\common\Might and Magic Heroes VI\Might & Magic Heroes VI.exe FirewallRules: [{7DA7BFE5-1184-4EC0-B7F6-E7F5CA3C7EB6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{2B8F54CD-24E6-405F-849C-8C094084D432}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{A2539D65-515D-4507-986D-52864B50DA09}] => (Allow) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{E44A82DA-1B17-4936-A036-C1088861D983}] => (Allow) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{1C0152DF-BA18-43DE-961A-6F22F416076E}] => (Allow) C:\Program Files\Steam\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe FirewallRules: [{44334083-0FB4-4345-A603-137F3DC94A92}] => (Allow) C:\Program Files\Steam\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe FirewallRules: [{9CE85253-8AA5-48C5-B35F-07D32DA2ADFB}] => (Allow) C:\Program Files\Steam\steamapps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe FirewallRules: [{715F597D-CD38-4E0F-A792-44BBE6E43759}] => (Allow) C:\Program Files\Steam\steamapps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe FirewallRules: [{BD74AFB9-B679-4784-8A87-81D293588189}] => (Allow) C:\Program Files\IObit\Driver Booster\4.3.0\DriverBooster.exe FirewallRules: [{C8D07936-B1E0-4860-AF7D-3408E8C22E4F}] => (Allow) C:\Program Files\IObit\Driver Booster\4.3.0\DriverBooster.exe FirewallRules: [{C916DE9C-5445-4403-BF75-B1DDC183E010}] => (Allow) C:\Program Files\IObit\Driver Booster\4.3.0\DBDownloader.exe FirewallRules: [{B5732AA7-03CD-4D28-A91E-A8810367C78C}] => (Allow) C:\Program Files\IObit\Driver Booster\4.3.0\DBDownloader.exe FirewallRules: [{E4917422-B40A-43DE-9A8A-2F4D7989E0A8}] => (Allow) C:\Program Files\IObit\Driver Booster\4.3.0\AutoUpdate.exe FirewallRules: [{080E3055-F64C-4B88-8F80-E4FAD70DCE55}] => (Allow) C:\Program Files\IObit\Driver Booster\4.3.0\AutoUpdate.exe FirewallRules: [{FB07C5F7-2476-4FF9-BB7C-4775D1E07143}] => (Allow) C:\Program Files\GRY\SEGA\Virtua Tennis 4\VT4.exe FirewallRules: [{513E6235-B1B1-483F-AEEA-BB25B3EF8E8D}] => (Allow) C:\Program Files\GRY\SEGA\Virtua Tennis 4\VT4.exe FirewallRules: [{39A26BE1-C4D9-4644-9810-3E9AE707CBAA}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe FirewallRules: [{5FCE90A1-F4D2-480E-9DCA-482D4D78B3DA}] => (Allow) C:\Program Files\GRY\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe FirewallRules: [{DFB3CFB2-8FA6-43D2-9B38-4F26AD78B451}] => (Allow) C:\Program Files\GRY\Electronic Arts\Battlefield Bad Company 2\BFBC2Updater.exe FirewallRules: [{59187F11-6870-4DAC-BB0C-1072144F68CB}] => (Allow) C:\Program Files\Steam\steamapps\common\Company of Heroes Relaunch\CoHFEW.exe FirewallRules: [{023DC1B2-14B4-45C1-BAEF-38B400CE0871}] => (Allow) C:\Program Files\Steam\steamapps\common\Company of Heroes Relaunch\CoHFEW.exe ==================== Punkty Przywracania systemu ========================= 31-05-2017 15:06:33 v b 02-06-2017 03:56:02 Windows Update 04-06-2017 09:13:22 Windows Update 04-06-2017 12:35:43 Revo Uninstaller Pro's restore point - Realtek High Definition Audio Driver 04-06-2017 12:36:09 Usunięte Realtek High Definition Audio Driver 04-06-2017 12:37:11 Revo Uninstaller Pro's restore point - Realtek Card Reader 04-06-2017 12:38:21 Revo Uninstaller Pro's restore point - Total War ROME II Emperor Edition MULTi9 - ElAmigos wersja 2.2.0.16155 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: F:\ Description: Compact Flash Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a} Manufacturer: Generic- Service: WUDFRd Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. Name: J:\ Description: MS/MS-Pro Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a} Manufacturer: Generic- Service: WUDFRd Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. Name: I:\ Description: SD/MMC Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a} Manufacturer: Generic- Service: WUDFRd Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. Name: H:\ Description: SM/xD-Picture Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a} Manufacturer: Generic- Service: WUDFRd Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (06/05/2017 04:01:46 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program FRST.exe w wersji 2.6.2017.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 14c4 Godzina rozpoczęcia: 01d2de0429e6c5ac Godzina zakończenia: 16 Ścieżka aplikacji: C:\Users\Adrian\Desktop\FRST.exe Identyfikator raportu: 78d902b6-49f7-11e7-b387-001fd00f85d5 Error: (06/05/2017 07:46:28 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\gry\euro truck simulator 2\bin\win_x64\eurotrucks2_o.exe". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (06/05/2017 07:46:28 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\gry\euro truck simulator 2\bin\win_x64\eurotrucks2.exe". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (06/05/2017 07:46:21 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\programy\keyscrambler\x64\KeyScrambler.exe". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (06/04/2017 12:44:24 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: ZARZĄDZANIE NT) Description: Występująca w rejestrze wartość ciągu objaśniającego licznika wydajności jest niepoprawnie sformatowana. Wadliwie sformułowany ciąg to Liczniki wydajności obiektu WorkflowServiceHost dla usługi przepływów pracy. Pierwszy wpis DWORD w sekcji danych (Data) zawiera wartość indeksu wadliwie sformułowanego ciągu, a drugi i trzeci wpis DWORD w sekcji danych zawiera ostatnie prawidłowe wartości indeksu. Error: (06/04/2017 12:35:43 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {5fe54b53-420e-4602-a90b-222e818e1e05} Error: (06/04/2017 08:21:06 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\gry\euro truck simulator 2\bin\win_x64\eurotrucks2_o.exe". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (06/04/2017 08:21:06 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\gry\euro truck simulator 2\bin\win_x64\eurotrucks2.exe". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (06/04/2017 08:20:34 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\programy\keyscrambler\x64\KeyScrambler.exe". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error: (06/03/2017 04:07:20 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Nie można wygenerować kontekstu aktywacji dla "c:\program files\gry\euro truck simulator 2\bin\win_x64\eurotrucks2_o.exe". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Dziennik System: ============= Error: (06/04/2017 12:14:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa Steam Client Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (06/04/2017 12:14:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Live ID Sign-in Assistant niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 10000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (06/04/2017 12:14:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa AVG PC TuneUp Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 250 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (06/04/2017 12:14:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa StarWind AE Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (06/04/2017 12:14:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa AVG Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (06/04/2017 12:14:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa „Usługa stanu ASP.NET niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (06/04/2017 12:14:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Bufor wydruku niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (06/04/2017 12:14:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa NVIDIA Display Driver Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (06/04/2017 11:42:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Steam Client Service z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (06/04/2017 11:42:58 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Steam Client Service. CodeIntegrity: =================================== Date: 2017-06-05 20:49:20.186 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-06-05 20:49:20.108 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-06-05 20:35:02.383 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-06-05 20:35:02.305 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-06-05 20:09:49.433 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-06-05 20:09:49.224 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-06-05 19:28:01.811 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-06-05 19:28:01.722 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-06-05 19:10:40.828 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. Date: 2017-06-05 19:10:40.732 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\api-ms-win-core-synch-l1-2-0.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Pentium(R) Dual-Core CPU E5200 @ 2.50GHz Procent pamięci w użyciu: 35% Całkowita pamięć fizyczna: 3070.49 MB Dostępna pamięć fizyczna: 1979.5 MB Całkowita pamięć wirtualna: 6139.31 MB Dostępna pamięć wirtualna: 4880.8 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:312.87 GB) (Free:82.48 GB) NTFS Drive d: () (Fixed) (Total:283.2 GB) (Free:74.45 GB) NTFS Drive e: (EE2X) (CDROM) (Total:0.57 GB) (Free:0 GB) CDFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 10F22479) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=312.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=283.2 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================