Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 28-09-2016 Uruchomiony przez Patryk (28-09-2016 14:49:03) Uruchomiony z C:\Users\Patryk\Desktop Windows 7 Ultimate Service Pack 1 (X64) (2016-07-30 16:03:21) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-928142227-810867722-3577759665-500 - Administrator - Disabled) Gość (S-1-5-21-928142227-810867722-3577759665-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-928142227-810867722-3577759665-1002 - Limited - Enabled) Patryk (S-1-5-21-928142227-810867722-3577759665-1000 - Administrator - Enabled) => C:\Users\Patryk ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: 360 Total Security (Enabled - Up to date) {0371CA44-3F80-A1D3-BECE-910620B58D50} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: 360 Total Security (Enabled - Up to date) {B8102BA0-19BA-AE5D-847E-AA745B32C7ED} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-928142227-810867722-3577759665-1000\...\uTorrent) (Version: 3.4.8.42449 - BitTorrent Inc.) 360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 8.8.0.1080 - 360 Security Center) 64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated) Adobe Flash Player 10 ActiveX (HKLM-x32\...\{B7B3E9B3-FB14-4927-894B-E9124509AF5A}) (Version: 10.0.32.18 - Adobe Systems, Inc.) AIO_CDA_ProductContext (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden AIO_CDA_Software (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden AIO_Scan (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden Aktualizacje NVIDIA 2.13.0.21 (Version: 2.13.0.21 - NVIDIA Corporation) Hidden American Truck Simulator v1.4.0s (7 DLC) (HKLM-x32\...\American Truck Simulator v1.4.0s (7 DLC)1.4.0) (Version: 1.4.0 - Friends in War) Ansel (Version: 372.90 - NVIDIA Corporation) Hidden Arma 3 (HKLM\...\Steam App 107410) (Version: - Bohemia Interactive) Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team) AutoHotkey 1.1.24.01 (HKLM\...\AutoHotkey) (Version: 1.1.24.01 - Lexikos) BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden C3100 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden c3100_Help (x32 Version: 82.0.256.000 - Hewlett-Packard) Hidden Copy (x32 Version: 130.0.428.000 - Hewlett-Packard) Hidden Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) DayZ (HKLM\...\Steam App 221100) (Version: - Bohemia Interactive) Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software) Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP) HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP) HP Photosmart All-In-One Driver Software 13.0 Rel. A (HKLM\...\{17016DA1-F040-4032-BD36-34DD317BC9D5}) (Version: 13.0 - HP) HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP) HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP) HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP) HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard) HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games) League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden Microsoft .NET Framework 4.5.2 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Build Tools 2015 (HKLM-x32\...\{d21da0dd-4ba4-4838-ba58-64cf7a77131a}) (Version: 14.0.23107.10 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Network64 (Version: 130.0.572.000 - Hewlett-Packard) Hidden Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team) NVIDIA GeForce Experience 3.0.6.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.0.6.48 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.90 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation) NVIDIA Sterownik graficzny 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.90 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NvNodejs (Version: 3.0.6.48 - NVIDIA Corporation) Hidden NvTelemetry (Version: 1.0.0.0 - NVIDIA Corporation) Hidden OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP) Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.) Panel sterowania NVIDIA 372.90 (Version: 372.90 - NVIDIA Corporation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.) Rise of the Tomb Raider (HKLM-x32\...\{45F08513-973A-4C18-93FD-8E12B1908390}_is1) (Version: - Square Enix) Rocket League (HKLM\...\Steam App 252950) (Version: - Psyonix, Inc.) Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden SHIELD Streaming (Version: 7.1.0310 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.0.6.48 - NVIDIA Corporation) Hidden Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP) SHU (HKLM-x32\...\{DF11DD92-DBB8-4F3F-9564-A8BBDBE986F5}_is1) (Version: 1.0 - ScreenShu Software) Shut Down-O-Matic (HKLM-x32\...\Shut Down-O-Matic) (Version: - ) SmartWebPrinting (x32 Version: 130.0.457.000 - Hewlett-Packard) Hidden SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) Tomb Raider (HKLM\...\Steam App 203160) (Version: - Crystal Dynamics) Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden TP-LINK TL-WN781ND Driver (HKLM-x32\...\{87C7B472-9BC2-43C8-9F03-86D2908E1A51}) (Version: 1.3.1 - TP-LINK) TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden TruckersMP 0.2.1.0.2 Alpha (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.2.1.0.2 Alpha - ETS2MP Team) UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden WinRAR 5.31 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) World of Tanks (HKU\S-1-5-21-928142227-810867722-3577759665-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {0CF55CC4-56A0-4A2E-AF9A-EF301E48B7D4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-17] (NVIDIA Corporation) Task: {23B01277-4CBA-43CD-AAC2-DC575FB9F5DB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-30] (Google Inc.) Task: {3E582CD8-3017-4C84-B02E-DB0BBA866800} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-17] (NVIDIA Corporation) Task: {7531C070-AEFB-4B7C-8E65-F37A72990ACD} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-17] (NVIDIA Corporation) Task: {892E05E2-6511-4C08-8FA7-239EE75DA8E9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-09-17] (NVIDIA Corporation) Task: {9E00CAF1-3374-4B97-A83D-4FBA30039D52} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-30] (Google Inc.) Task: {AF94710F-4AFC-4484-B5F4-F32E933D07E9} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-17] (NVIDIA Corporation) Task: {D7E10A65-1266-459C-8CEE-8ADF6BF0AA3C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-09-17] (NVIDIA Corporation) Task: {E7C0BBC8-E223-4A21-9A64-56594761797B} - System32\Tasks\ESET Windows 10 upgrade – Refresh settings => C:\Program Files\Common Files\AV\ESET NOD32 Antivirus 8.0\upgrade.exe [2016-08-30] (ESET) Task: {F55997D9-5CCA-4D68-8F4B-BE4BAB0B45BB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-08] (Adobe Systems Incorporated) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2016-09-15 14:53 - 2016-09-17 00:57 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-09-24 15:34 - 2016-09-17 03:42 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-09-24 15:34 - 2016-09-17 03:42 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-09-24 15:34 - 2016-09-17 03:42 - 00419896 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll 2016-07-14 12:25 - 2016-07-14 12:25 - 00174872 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll 2016-07-14 12:25 - 2016-07-14 12:25 - 00103192 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll 2016-07-14 12:25 - 2016-07-14 12:25 - 00107800 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll 2016-07-14 12:26 - 2016-07-14 12:26 - 00312088 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll 2016-07-14 12:26 - 2016-07-14 12:26 - 00485656 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll 2016-09-27 20:00 - 2015-10-25 11:56 - 01849344 _____ () C:\Users\Patryk\Desktop\idle_master\IdleMaster.exe 2016-09-27 20:00 - 2015-02-10 22:49 - 00497664 _____ () C:\Users\Patryk\Desktop\idle_master\steam-idle.exe 2016-09-15 10:19 - 2016-09-14 04:52 - 02280264 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libglesv2.dll 2016-09-15 10:19 - 2016-09-14 04:52 - 00107848 _____ () C:\Program Files (x86)\Google\Chrome\Application\53.0.2785.116\libegl.dll 2016-09-24 15:34 - 2016-09-17 03:42 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-09-24 15:34 - 2016-09-15 20:50 - 00502328 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2016-09-24 15:34 - 2016-09-15 20:50 - 00257592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2016-09-24 15:34 - 2016-09-15 20:50 - 02799552 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2016-09-24 15:34 - 2016-09-15 20:50 - 00246328 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2016-09-24 15:34 - 2016-09-15 20:50 - 00430648 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2016-09-24 15:34 - 2016-09-15 20:50 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2016-09-24 15:34 - 2016-09-15 20:50 - 00373696 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node 2016-07-30 20:00 - 2016-09-08 05:14 - 00784672 _____ () D:\Program Files\Steam\SDL2.dll 2016-07-30 20:00 - 2016-09-01 03:02 - 04969248 _____ () D:\Program Files\Steam\v8.dll 2016-07-30 20:00 - 2016-09-01 03:02 - 01563936 _____ () D:\Program Files\Steam\icui18n.dll 2016-07-30 20:00 - 2016-09-01 03:02 - 01195296 _____ () D:\Program Files\Steam\icuuc.dll 2016-07-30 20:00 - 2016-09-20 21:28 - 02321696 _____ () D:\Program Files\Steam\video.dll 2016-07-30 20:00 - 2016-01-27 09:49 - 02549760 _____ () D:\Program Files\Steam\libavcodec-56.dll 2016-07-30 20:00 - 2016-01-27 09:49 - 00442880 _____ () D:\Program Files\Steam\libavutil-54.dll 2016-07-30 20:00 - 2016-01-27 09:49 - 00491008 _____ () D:\Program Files\Steam\libavformat-56.dll 2016-07-30 20:00 - 2016-01-27 09:49 - 00332800 _____ () D:\Program Files\Steam\libavresample-2.dll 2016-07-30 20:00 - 2016-01-27 09:49 - 00485888 _____ () D:\Program Files\Steam\libswscale-3.dll 2016-07-30 20:00 - 2016-09-20 21:28 - 00835360 _____ () D:\Program Files\Steam\bin\chromehtml.DLL 2016-09-28 12:41 - 2016-09-28 12:41 - 00061952 _____ () C:\Users\Patryk\AppData\Local\Temp\FA56.tmp 2016-07-30 20:00 - 2016-07-05 00:17 - 00266560 _____ () D:\Program Files\Steam\openvr_api.dll 2016-09-28 12:41 - 2016-09-28 12:41 - 00030720 _____ () C:\Users\Patryk\AppData\Local\Temp\8C9.tmp 2016-09-28 12:42 - 2016-09-28 12:42 - 00033792 _____ () C:\Users\Patryk\AppData\Local\Temp\3362.tmp 2016-09-28 12:43 - 2016-09-28 12:43 - 00035840 _____ () C:\Users\Patryk\AppData\Local\Temp\318F.tmp 2016-09-28 12:48 - 2016-09-28 12:48 - 00031744 _____ () C:\Users\Patryk\AppData\Local\Temp\4658.tmp 2016-09-28 12:54 - 2016-09-28 12:54 - 00029184 _____ () C:\Users\Patryk\AppData\Local\Temp\43CA.tmp 2016-09-28 12:59 - 2016-09-28 12:59 - 00039424 _____ () C:\Users\Patryk\AppData\Local\Temp\FF0E.tmp 2016-09-28 13:04 - 2016-09-28 13:04 - 00115712 _____ () C:\Users\Patryk\AppData\Local\Temp\AD2.tmp 2016-07-30 20:00 - 2016-08-04 22:56 - 49825056 _____ () D:\Program Files\Steam\bin\libcef.dll 2016-07-30 20:00 - 2015-09-25 01:52 - 00119208 _____ () D:\Program Files\Steam\winh264.dll 2016-07-30 20:00 - 2016-09-20 21:28 - 00380704 _____ () D:\Program Files\Steam\steam.dll 2016-09-16 15:59 - 2016-09-28 08:52 - 00099240 _____ () C:\Program Files (x86)\360\Total Security\deepscan\qutmload.dll 2016-09-16 15:59 - 2016-09-28 08:52 - 00584616 _____ () C:\Program Files (x86)\360\Total Security\safemon\wdui2.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40] AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [346] AlternateDataStreams: C:\Users\Patryk\Dane aplikacji:NT [40] AlternateDataStreams: C:\Users\Patryk\Dane aplikacji:NT2 [346] AlternateDataStreams: C:\Users\Patryk\AppData\Roaming:NT [40] AlternateDataStreams: C:\Users\Patryk\AppData\Roaming:NT2 [346] ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UnsignedThemes => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UnsignedThemes => ""="Service" ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2016-09-16 18:01 - 00001622 ____A C:\Windows\system32\Drivers\etc\hosts 0.0.0.0 keystone.mwbsys.com 0.0.0.0 sirius.mwbsys.com 0.0.0.0 bactem.mwbsys.com0.0.0.0 keystone.mwbsys.com 0.0.0.0 sirius.mwbsys.com 0.0.0.0 bactem.mwbsys.com0.0.0.0 keystone.mwbsys.com 0.0.0.0 sirius.mwbsys.com 0.0.0.0 bactem.mwbsys.com0.0.0.0 keystone.mwbsys.com 0.0.0.0 sirius.mwbsys.com 0.0.0.0 bactem.mwbsys.com127.0.0.1 activation-v2.geo.kaspersky.com 127.0.0.1 activation-v2.kaspersky.com 127.0.0.1 activation-v2.geo.kaspersky.com 127.0.0.1 activation-v2.kaspersky.com 127.0.0.1 activation-v2.geo.kaspersky.com 0.0.0.0 keystone.mwbsys.com 0.0.0.0 sirius.mwbsys.com 0.0.0.0 bactem.mwbsys.com 54.230.89.168 data-cdn.mbamupdates.com ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-928142227-810867722-3577759665-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Patryk\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja wyłączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\Services: SysMain => 2 MSCONFIG\Services: WinDefend => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: hpqSRMon => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe MSCONFIG\startupreg: OscarEditor => "C:\Program Files (x86)\OscarX7\program files\OSCAR Editor X7\OscarEditor.exe" Minimum MSCONFIG\startupreg: Smart File Advisor => "C:\Program Files (x86)\Smart File Advisor\sfa.exe" /checkassoc MSCONFIG\startupreg: Steam => "D:\Program Files\Steam\steam.exe" -silent ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{0B67ABEF-8121-4C9E-9B88-F849302D3CCE}] => (Allow) D:\Program Files\Steam\Steam.exe FirewallRules: [{CB6685BF-2A3C-4D5E-8414-C52FBCC08142}] => (Allow) D:\Program Files\Steam\Steam.exe FirewallRules: [{2F3D6C17-9FDD-4F0B-873F-4EB92D7497AF}] => (Allow) D:\Program Files\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{B97C2A9A-8A91-416E-A5A0-3278C418E8BB}] => (Allow) D:\Program Files\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{0BF6A567-DC9E-4ACC-A269-0F4EF72E64B1}] => (Allow) D:\Program Files\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [{202ED93D-F7F2-4DD5-8DB8-142C727702F5}] => (Allow) D:\Program Files\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [{E95EBFC4-F2B4-48BC-863D-F79E30D9324A}] => (Allow) D:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{39F214EE-CA66-4AFD-8508-B2A799510DB8}] => (Allow) D:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{34429FB0-B80F-43BF-81C3-FC24629C0C52}] => (Allow) D:\Program Files\Steam\steamapps\common\Tomb Raider\TombRaider.exe FirewallRules: [{1E7B8DB7-5902-47A9-9B8F-50F060669946}] => (Allow) D:\Program Files\Steam\steamapps\common\Tomb Raider\TombRaider.exe FirewallRules: [{9B8A7A67-2652-448F-B695-1FF92A145DA8}] => (Allow) D:\Program Files\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{2C46AD6D-AE4E-4924-AA84-808E8CCC8E2F}] => (Allow) D:\Program Files\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{18D4C026-4AD5-4D7D-8A4E-04A0716E53BA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{FA54BB8D-0DE3-491A-9119-8424EEE45BD7}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{F7C9E6AD-ABAF-44A2-87BE-73C295A9418E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{8FE95F14-861D-4B97-9B17-A227821527D5}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe FirewallRules: [{F600E8DA-3E0E-4571-833A-A4F6640686D7}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe FirewallRules: [{61D59599-A5C3-4316-9A58-5F932E97A019}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe FirewallRules: [{B2164F67-A148-427A-AD92-5E9E64B4C482}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe FirewallRules: [{1B5A8B56-2D9A-4ED1-A0D8-B4F7BA808243}] => (Allow) D:\Program Files\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{F8FCC538-3B23-457F-A6E6-C92B9222C20B}] => (Allow) D:\Program Files\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe FirewallRules: [{87F60D7D-C39F-4EE3-88F2-5CAC8F4B5881}] => (Allow) D:\Program Files\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{7FD8F3F7-6C78-4872-B15F-B24FE3D7B902}] => (Allow) D:\Program Files\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe FirewallRules: [{7D75391B-E0F2-4933-966B-090D54D36E74}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{DC110F6D-F211-4E72-81FD-9819AF0AE528}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{62F53F61-4915-4281-9429-1E366369D10D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{EEF4F34E-1A0E-4DA0-A00F-A4223F6819D6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D2FE63C5-E88B-4F1C-B81E-048FD864A213}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D0E076C9-162E-4B4C-B752-18021A2BAD99}] => (Allow) D:\Program Files\Steam\bin\steamwebhelper.exe FirewallRules: [{3CF7AD04-F256-498A-B19B-8E9A053250A4}] => (Allow) D:\Program Files\Steam\bin\steamwebhelper.exe FirewallRules: [{1E7D9BA1-21AB-4AD7-8145-EED536C5D396}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe FirewallRules: [{6B7633DC-0E9C-47E1-BFED-A0FF1D20757B}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe ==================== Punkty Przywracania systemu ========================= 22-09-2016 16:50:40 Usunięte Realtek High Definition Audio Driver 22-09-2016 16:55:54 Zainstalowane Realtek High Definition Audio Driver 25-09-2016 14:35:35 Installed LogMeIn Hamachi 25-09-2016 14:38:29 Removed LogMeIn Hamachi ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= Name: Kontroler Ethernet Description: Kontroler Ethernet Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (09/28/2016 11:11:09 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/27/2016 12:18:21 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/26/2016 05:23:33 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/25/2016 02:31:02 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program cof.exe w wersji 1.1.1.1 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: e28 Godzina rozpoczęcia: 01d217289d1ce040 Godzina zakończenia: 179 Ścieżka aplikacji: D:\Program Files\Steam\steamapps\common\Cry of Fear\cof.exe Identyfikator raportu: e701b5d8-831b-11e6-a7dd-a39dc64eb3ff Error: (09/25/2016 02:30:24 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program cof.exe w wersji 1.1.1.1 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 167c Godzina rozpoczęcia: 01d2172889d3c3d6 Godzina zakończenia: 183 Ścieżka aplikacji: D:\Program Files\Steam\steamapps\common\Cry of Fear\cof.exe Identyfikator raportu: d28740e5-831b-11e6-a7dd-a39dc64eb3ff Error: (09/25/2016 12:56:17 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/24/2016 03:32:23 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program GFExperience.exe w wersji 2.11.4.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 141c Godzina rozpoczęcia: 01d216672f2ed706 Godzina zakończenia: 86 Ścieżka aplikacji: C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe Identyfikator raportu: 51f075e4-825b-11e6-8601-89991d5f8df0 Error: (09/24/2016 03:25:52 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program GFExperience.exe w wersji 2.11.4.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 161c Godzina rozpoczęcia: 01d21666ef0975c4 Godzina zakończenia: 60 Ścieżka aplikacji: C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe Identyfikator raportu: 6321fb7d-825a-11e6-8601-89991d5f8df0 Error: (09/24/2016 03:24:46 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Program UNKNOWN w wersji 0.0.0.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: 678 Godzina rozpoczęcia: 01d21666e929299d Godzina zakończenia: 2 Ścieżka aplikacji: UNKNOWN Identyfikator raportu: 402d4245-825a-11e6-8601-89991d5f8df0 Error: (09/24/2016 01:19:56 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Dziennik System: ============= Error: (09/28/2016 02:26:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Usługa 360 Total Security niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error: (09/28/2016 11:10:05 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa MBAMService zależy od usługi MBAMProtector, której nie można uruchomić z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/28/2016 11:09:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi MBAMProtector z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/27/2016 12:17:14 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa MBAMService zależy od usługi MBAMProtector, której nie można uruchomić z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/27/2016 12:16:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi MBAMProtector z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/26/2016 05:22:30 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Usługa MBAMService zależy od usługi MBAMProtector, której nie można uruchomić z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/26/2016 05:21:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi MBAMProtector z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/25/2016 02:36:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi LogMeIn Hamachi Tunneling Engine z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (09/25/2016 02:36:23 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą LogMeIn Hamachi Tunneling Engine. Error: (09/25/2016 02:36:20 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Usługa LogMeIn Hamachi Tunneling Engine jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. ==================== Statystyki pamięci =========================== Procesor: AMD Phenom(tm) II X2 565 Processor Procent pamięci w użyciu: 38% Całkowita pamięć fizyczna: 8191.24 MB Dostępna pamięć fizyczna: 5064.36 MB Całkowita pamięć wirtualna: 16380.67 MB Dostępna pamięć wirtualna: 12888.7 MB ==================== Dyski ================================ Drive c: () (Fixed) (Total:185.45 GB) (Free:94.89 GB) NTFS Drive d: () (Fixed) (Total:280.21 GB) (Free:152.03 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 00000001) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=185.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=280.2 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================