Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 14-08-2016
Uruchomiony przez Jan (14-08-2016 22:02:20)
Uruchomiony z D:\ffts
Windows 7 Ultimate Service Pack 1 (X64) (2015-05-10 13:29:22)
Tryb startu: Normal
==========================================================


==================== Konta użytkowników: =============================

Administrator (S-1-5-21-1941685375-2250058660-3908555107-500 - Administrator - Disabled)
Gość (S-1-5-21-1941685375-2250058660-3908555107-501 - Limited - Disabled)
Jan (S-1-5-21-1941685375-2250058660-3908555107-1000 - Administrator - Enabled) => C:\Users\Jan

==================== Centrum zabezpieczeń ========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie.)

AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Zainstalowane programy ======================

(W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)

AMD Catalyst Install Manager (HKLM\...\{00957033-C081-5235-665A-A014A6E2FF7B}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AVG (HKLM\...\AvgZen) (Version: 1.82.2.30772 - AVG Technologies)
AVG (Version: 16.101.7752 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4647 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.101.7752 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.2.18 - AVG Technologies)
AVG Zen (Version: 1.82.2 - AVG Technologies) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
Europa Universalis IV Mare Nostrum (HKLM-x32\...\Europa Universalis IV Mare Nostrum_is1) (Version:  - )
Evolve Stage 2 (HKLM\...\Steam App 273350) (Version:  - Turtle Rock Studios)
Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version:  - )
Fallout 4 Polish Language Pack (HKLM-x32\...\Fallout 4 Polish Language Pack_is1) (Version:  - )
FMW 1 (Version: 1.112.3 - AVG Technologies) Hidden
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Java 8 Update 66 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418066F0}) (Version: 8.0.660.18 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LibreOffice 5.1.3.2 (HKLM-x32\...\{5F7475A1-6240-4753-BE3E-61499621EC42}) (Version: 5.1.3.2 - The Document Foundation)
Malwarebytes Anti-Malware wersja 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0415-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.27.00.264 - Huawei Technologies Co.,Ltd)
Pillars of Eternity The White March Part I (HKLM-x32\...\Pillars of Eternity The White March Part I_is1) (Version:  - )
PLAY ONLINE (HKLM-x32\...\PLAY ONLINE) (Version: 21.005.11.17.264 - Huawei Technologies Co.,Ltd)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.78.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7200 - Realtek Semiconductor Corp.)
Splashtop Personal (HKLM-x32\...\{E7CF0F14-8C1D-41F3-85ED-579C108262C7}) (Version: 2.6.0.0 - Splashtop Inc.)
Stardew Valley (HKLM-x32\...\1453375253_is1) (Version: 2.0.0.2 - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold Crusader 2 (HKLM-x32\...\Stronghold Crusader 2_is1) (Version:  - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WinRAR 5.21 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
X-Mouse Button Control 2.12.1 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.12.1 - Highresolution Enterprises)
百度 (HKLM-x32\...\百度) (Version: 2.5.0.2084 - 百度在线网络技术（北京）有限公司)

==================== Niestandardowe rejestracje CLSID (filtrowane): ==========================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Zaplanowane zadania (filtrowane) =============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

Task: {392D1555-7704-45D7-848D-9036A932B501} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec [Argument = /RestartRecording]
Task: {4AF05E1E-03F8-487F-A7A2-EE8EF5FD3C56} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {5C85AA98-5DEE-4BB4-8410-213A8D428C42} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate [Argument = -crl -hms -pscn 15]
Task: {A36B0191-8253-41A7-B143-0B3C14220B24} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate [Argument = $(Arg0)]
Task: {BF034077-5710-48F8-A133-11AF6BB2A045} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {CC381C8F-E336-4C29-9C8D-6A6505F2DA37} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-05-08] (Piriform Ltd)
Task: {F8EECFFB-0EEB-4681-9CEE-6E92D9806FFE} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => %SystemRoot%\ehome\ehrec [Argument = /StartRecording]

(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Skróty =============================

(Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.)

Shortcut: C:\Users\Jan\AppData\Local\Microsoft\Windows\GameExplorer\{74F46734-4D4A-4FD4-AD4A-A633E0BCE136}\SupportTasks\1\Pomoc techniczna.lnk -> hxxp://support.ubi.com/
Shortcut: C:\Users\Jan\AppData\Local\Microsoft\Windows\GameExplorer\{74F46734-4D4A-4FD4-AD4A-A633E0BCE136}\SupportTasks\0\Więcej gier od firmy Microsoft.lnk -> hxxp://www.ightandmagic.com/

==================== Załadowane moduły (filtrowane) ==============

2015-05-10 16:40 - 2016-07-21 20:26 - 00976456 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
2011-03-14 17:27 - 2011-03-14 17:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2016-02-08 17:12 - 2015-09-23 04:24 - 00242264 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe
2015-05-10 15:51 - 2015-05-10 15:51 - 00246112 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe
2015-05-08 20:50 - 2015-05-08 20:50 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll
2015-05-10 16:40 - 2016-07-21 20:26 - 02162760 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
2016-08-14 20:26 - 2016-08-14 20:26 - 00038792 _____ () C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\bdlog.dll
2015-05-10 15:51 - 2015-05-10 15:51 - 00011362 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\mingwm10.dll
2015-05-10 15:51 - 2015-05-10 15:51 - 00043008 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\libgcc_s_dw2-1.dll
2015-05-10 15:51 - 2015-05-10 15:51 - 02415104 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtCore4.dll
2015-05-10 15:51 - 2015-05-10 15:51 - 01148416 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtNetwork4.dll
2015-05-10 15:51 - 2015-05-10 15:51 - 00384512 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QueryStrategy.dll
2015-05-10 15:51 - 2015-05-10 15:51 - 00398336 _____ () C:\ProgramData\PLAY ONLINE\OnlineUpdate\QtXml4.dll
2016-01-18 15:50 - 2016-08-03 00:08 - 00785920 _____ () D:\steam\SDL2.dll
2016-01-18 15:50 - 2016-08-03 00:10 - 04962816 _____ () D:\steam\v8.dll
2016-01-18 15:50 - 2016-08-03 00:09 - 01556992 _____ () D:\steam\icui18n.dll
2016-01-18 15:50 - 2016-08-03 00:09 - 01187840 _____ () D:\steam\icuuc.dll
2016-01-18 15:50 - 2016-08-03 02:00 - 02320160 _____ () D:\steam\video.dll
2016-01-18 15:50 - 2016-02-09 01:14 - 02549760 _____ () D:\steam\libavcodec-56.dll
2016-01-18 15:50 - 2016-02-09 01:14 - 00442880 _____ () D:\steam\libavutil-54.dll
2016-01-18 15:50 - 2016-02-09 01:14 - 00491008 _____ () D:\steam\libavformat-56.dll
2016-01-18 15:50 - 2016-02-09 01:14 - 00332800 _____ () D:\steam\libavresample-2.dll
2016-01-18 15:50 - 2016-02-09 01:14 - 00485888 _____ () D:\steam\libswscale-3.dll
2016-01-18 15:50 - 2016-08-03 01:59 - 00831776 _____ () D:\steam\bin\chromehtml.DLL
2015-12-14 15:34 - 2016-04-07 16:19 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll
2016-01-18 15:50 - 2016-06-14 21:14 - 49826080 _____ () D:\steam\bin\libcef.dll
2016-08-08 21:28 - 2016-08-03 01:54 - 17602240 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll
2016-08-08 22:24 - 2014-02-10 13:44 - 04592128 _____ () C:\Users\Jan\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2016-08-08 22:24 - 2014-02-10 13:44 - 00112128 _____ () C:\Users\Jan\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll

==================== Alternate Data Streams (filtrowane) =========

(Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.)


==================== Tryb awaryjny (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP => ""="service"

==================== Powiązania plików (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.)


==================== Internet Explorer - Witryny zaufane i z ograniczeniami ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)


==================== Hosts - zawartość: ===============================

(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)

2009-07-14 04:34 - 2015-05-10 15:45 - 00000864 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 validation.sls.microsoft.com

==================== Inne obszary ============================

(Obecnie brak automatycznej naprawy dla tej sekcji.)

HKU\S-1-5-21-1941685375-2250058660-3908555107-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 133.130.91.20
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Zapora systemu Windows [funkcja włączona]

==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==

(Obecnie brak automatycznej naprawy dla tej sekcji.)

MSCONFIG\startupreg: GalaxyClient => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart

==================== Reguły Zapory systemu Windows (filtrowane) ===============

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

FirewallRules: [{D00FB945-A669-4253-9627-984815F5D35F}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{4DF5225E-657F-489D-A840-3DB7265A6ECA}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{CD5A72C0-5540-48FD-B8FB-BA5337D15157}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{F2ED5E73-9B92-42EF-90C0-71E21CEF3F03}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{91F9FAED-BD63-44B2-9D9B-F0FCE2ED6203}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{E88CBCC0-99FD-4721-B5E3-C5C9EB7F4FA6}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{08835C11-D70D-4FA5-A49B-9B01F9D9773D}] => (Allow) D:\hots\Battle.net\Battle.net.exe
FirewallRules: [{F038A795-C6FC-4801-864E-DE21F040778E}] => (Allow) D:\hots\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{150BA40D-7F64-419E-AE06-76F4C1E305B3}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{0AB4C94E-B5AD-4231-97E8-A9963BB35DCC}C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{E6C0BDDD-9F9E-4E4D-B366-DE526CF1B35D}D:\download\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\download\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{CC851825-15CF-4949-BFAB-6CE751F87D20}D:\download\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\download\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{F273F810-6806-4F7C-BB65-12FDC1BE4574}C:\users\jan\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\jan\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{548C0A9D-E169-4D08-B388-FD96EA69CDD1}C:\users\jan\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\jan\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{4D8A15BE-FF0A-4E01-8D96-2822EC4DD5DA}D:\torrent\bittorrent.exe] => (Block) D:\torrent\bittorrent.exe
FirewallRules: [UDP Query User{4A708DDC-28A1-4358-BCFB-9926033BA381}D:\torrent\bittorrent.exe] => (Block) D:\torrent\bittorrent.exe
FirewallRules: [TCP Query User{3F599134-2869-4758-A3CE-B0FC9B69D051}D:\download\bittorrent-7.2\bittorrent-7.2.exe] => (Block) D:\download\bittorrent-7.2\bittorrent-7.2.exe
FirewallRules: [UDP Query User{0B29CE8A-C186-4CA1-AC2E-DFF872C1944F}D:\download\bittorrent-7.2\bittorrent-7.2.exe] => (Block) D:\download\bittorrent-7.2\bittorrent-7.2.exe
FirewallRules: [TCP Query User{75397401-54D7-44BE-9290-B1A347A9A411}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{03C94B5F-15AC-4FD5-940A-48A0DD0E0EB9}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [TCP Query User{486875F3-6C6F-4F2B-A982-54A04360059D}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{C19451B6-476C-4C79-905E-F364667833FB}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{675F6421-E268-41CD-A846-E61253FD3563}] => (Allow) D:\steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{9FFBABE8-C9BE-4FE3-BEBA-B508FB756FA6}] => (Allow) D:\steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{079AD2AE-0145-4CEE-A964-CB2BA657BEE7}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{C1089345-1F28-4446-9E3D-5F76F0D3DC42}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [TCP Query User{0FF360E5-9577-4166-885D-6F60FC0757DD}D:\europeczka\[www.mpc-g.com]urpunrslsivv1.14.4\eu4_server.exe] => (Block) D:\europeczka\[www.mpc-g.com]urpunrslsivv1.14.4\eu4_server.exe
FirewallRules: [UDP Query User{59816266-1EBE-414B-A952-D8C7B2ABA0AF}D:\europeczka\[www.mpc-g.com]urpunrslsivv1.14.4\eu4_server.exe] => (Block) D:\europeczka\[www.mpc-g.com]urpunrslsivv1.14.4\eu4_server.exe
FirewallRules: [TCP Query User{52DA053D-AABB-4770-9E91-38FE621881F9}D:\bittorrent-7.2\bittorrent-7.2.exe] => (Block) D:\bittorrent-7.2\bittorrent-7.2.exe
FirewallRules: [UDP Query User{EE93C3E8-CD9E-4C5D-8C4B-8DB2FFE74C0C}D:\bittorrent-7.2\bittorrent-7.2.exe] => (Block) D:\bittorrent-7.2\bittorrent-7.2.exe
FirewallRules: [TCP Query User{5FA013E8-AAD0-4790-8B73-00534ED81A62}D:\far cry 4\bin\farcry4.exe] => (Block) D:\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{84829499-9B2B-4B48-B47E-BE13FD02C5EF}D:\far cry 4\bin\farcry4.exe] => (Block) D:\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{8CC8FF32-4B08-409C-9D18-09B7CFDAD0C5}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{3D2F25CD-6BF4-4AAE-9795-462E238ADC94}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{E3C06AE4-FD1C-4D25-A0D4-472D3E53AA89}D:\torrent\stronghold crusader 2\bin\win32_release\crusader2.exe] => (Allow) D:\torrent\stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [UDP Query User{B0709513-2EBC-4589-97F0-48D7605BCBED}D:\torrent\stronghold crusader 2\bin\win32_release\crusader2.exe] => (Allow) D:\torrent\stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [TCP Query User{0EE911FA-A4FA-4D4B-89F0-9D54B433CC04}D:\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{6B990047-D07B-46E2-847B-CE3037EFA46C}D:\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{5CBAA19B-E2C0-4799-8CA7-26D070148C94}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B45FB44B-8F98-494E-A123-B9676BB8D647}] => (Allow) D:\steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{7A39BAC5-FB6B-4132-8957-ACBB9B9B33A9}] => (Allow) D:\steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{7AA5855B-7F29-4BD5-9806-63744E5CF2F6}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{ADB23EE8-50DC-4AD9-BD52-D25484133C16}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{BEF0B472-57D2-4047-A264-93643CFBFB72}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{FCBDDACC-6933-4DE1-9A5F-119907AFC7D0}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{96336607-C96F-4B99-9464-82DF075C5EAC}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{FE78B392-916E-41A6-BB55-CE1944FD0089}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{FF09128C-68BA-4295-8D39-DC0EAE4A7C86}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduUpdate.exe
FirewallRules: [{6B0EA4E2-2E29-4BAE-AF2F-56328F82F580}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduUpdate.exe
FirewallRules: [{F99F2BA2-C337-43ED-AB8D-12B096CDB534}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduUpdate.exe
FirewallRules: [{585ED0FA-8192-4D11-87BE-701BDD4AD8D0}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduUpdate.exe
FirewallRules: [{F435A135-83BD-4AE4-937E-AC36C6352C82}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduUpdate.exe
FirewallRules: [{4FCC1FE4-A646-4BC4-950A-BFD7DA739F2B}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduUpdate.exe
FirewallRules: [{E1DBEB3F-07BD-42C9-92BE-12EDE6647DCB}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduBugRpt.exe
FirewallRules: [{E05075B1-D3FD-45F2-B05B-C96E6B4C66D9}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduBugRpt.exe
FirewallRules: [{3AF99BAF-A498-4DD4-BF2B-2CBCB1B6698E}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduBugRpt.exe
FirewallRules: [{73BF3638-D415-4A74-B6ED-1ECFD2C17BC4}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduBugRpt.exe
FirewallRules: [{2C3974E4-C95F-41A9-8E3F-463713A8524B}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduBugRpt.exe
FirewallRules: [{E7F43700-709E-4686-B54A-C7D58CDB3A44}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduBugRpt.exe
FirewallRules: [{6E4ED40D-D05C-45DC-8B41-316E18D319AC}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduClientRender.exe
FirewallRules: [{3C0E5572-CF4B-41CC-B144-D1749AD22D33}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduClientRender.exe
FirewallRules: [{C377DC7B-89CD-4B95-A9AA-CE961784F240}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduClientRender.exe
FirewallRules: [{4A17D969-7F18-44C1-A5B9-975EF0469F79}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduClientRender.exe
FirewallRules: [{01767C34-B21F-4ECB-AE13-8CD090A4635F}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduClientRender.exe
FirewallRules: [{FB3F5107-39EA-481C-85C9-A87E00A29A15}] => (Allow) C:\Users\Jan\AppData\Local\Baidu\BaiduClient\2.5.0.2084\BaiduClientRender.exe
FirewallRules: [{C676C30A-B0E7-4DAC-B0DE-817C7B04CB64}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe
FirewallRules: [{288827BB-55E8-47B9-A02D-F5169F1E9D79}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe

==================== Punkty Przywracania systemu =========================

01-08-2016 19:11:41 Zaplanowany punkt kontrolny
10-08-2016 15:55:12 Zaplanowany punkt kontrolny
14-08-2016 20:30:05 Removed Splashtop Personal.

==================== Wadliwe urządzenia w Menedżerze urządzeń =============

Name: Kontroler magistrali zarządzania systemem
Description: Kontroler magistrali zarządzania systemem
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: tencent QMUdisk
Description: tencent QMUdisk
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: QMUdisk
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: TsNetHlpX64.sys
Description: TsNetHlpX64.sys
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: tsnethlpx64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Kontroler PCI Simple Communications
Description: Kontroler PCI Simple Communications
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Standardowa karta graficzna VGA
Description: Standardowa karta graficzna VGA
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardowe typy ekranu)
Service: vga
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: softaal
Description: softaal
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: softaal
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Błędy w Dzienniku zdarzeń: =========================

Dziennik Aplikacja:
==================
Error: (08/14/2016 09:40:04 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu.

Error: (08/14/2016 09:40:04 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.

Error: (08/14/2016 09:40:04 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.

Error: (08/14/2016 09:37:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/14/2016 09:29:14 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu.

Error: (08/14/2016 09:29:14 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.

Error: (08/14/2016 09:29:14 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.

Error: (08/14/2016 09:25:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/14/2016 09:24:43 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Nie można zainicjować indeksu.

Szczegóły:
	Wykaz indeksów zawartości jest uszkodzony.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (08/14/2016 09:24:43 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Nie można zainicjować aplikacji.

Kontekst: aplikacja Windows

Szczegóły:
	Wykaz indeksów zawartości jest uszkodzony.  (HRESULT : 0xc0041801) (0xc0041801)


Dziennik System:
=============
Error: (08/14/2016 09:35:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego błędu: 
%%1053 = Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.

Error: (08/14/2016 09:35:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą PLAY ONLINE. OUC.

Error: (08/14/2016 09:25:38 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Menedżer sterowania usługami próbował podjąć akcję korekcyjną (Uruchom usługę ponownie) po nieoczekiwanym zakończeniu usługi Windows Search, ale ta akcja nie powiodła się przy następującym błędzie: 
%%1056 = Jedno wystąpienie usługi już działa..

Error: (08/14/2016 09:25:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie.

Error: (08/14/2016 09:24:43 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Usługa Windows Search zakończyła działanie; wystąpił specyficzny dla niej błąd %%-1073473535.

Error: (08/14/2016 09:24:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego błędu: 
%%1053 = Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.

Error: (08/14/2016 09:24:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą PLAY ONLINE. OUC.

Error: (08/14/2016 08:59:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi PLAY ONLINE. OUC z powodu następującego błędu: 
%%1053 = Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.

Error: (08/14/2016 08:59:48 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą PLAY ONLINE. OUC.

Error: (08/14/2016 08:28:22 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Usługa QQPCMgr RTP Service jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie.


CodeIntegrity:
===================================
  Date: 2016-01-15 16:40:18.420
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-15 16:40:18.420
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-15 14:40:27.657
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-15 14:40:27.641
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-14 14:49:27.596
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-14 14:49:27.596
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-13 14:32:04.173
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-13 14:32:04.173
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-12 14:35:14.502
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-12 14:35:14.502
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hamachi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Statystyki pamięci =========================== 

Procesor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz
Procent pamięci w użyciu: 32%
Całkowita pamięć fizyczna: 8077.02 MB
Dostępna pamięć fizyczna: 5457.43 MB
Całkowita pamięć wirtualna: 16152.23 MB
Dostępna pamięć wirtualna: 13268.73 MB

==================== Dyski ================================

Drive c: () (Fixed) (Total:150.16 GB) (Free:87.66 GB) NTFS
Drive d: () (Fixed) (Total:781.25 GB) (Free:516.07 GB) NTFS
Drive e: (Fallout 4) (CDROM) (Total:24.47 GB) (Free:0 GB) UDF

==================== MBR & Tablica partycji ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E0D4F663)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=150.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=781.2 GB) - (Type=07 NTFS)

==================== Koniec  Addition.txt ============================