Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 28-09-2016 Uruchomiony przez Konrad (29-09-2016 17:53:08) Uruchomiony z C:\Users\Konrad\Downloads Windows 7 Professional Service Pack 1 (X64) (2015-12-19 14:16:47) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-3340888716-2642510718-1188868624-500 - Administrator - Disabled) Gość (S-1-5-21-3340888716-2642510718-1188868624-501 - Limited - Enabled) => C:\Users\Gość Konrad (S-1-5-21-3340888716-2642510718-1188868624-1000 - Administrator - Enabled) => C:\Users\Konrad ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated) AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software) Bulletstorm (HKLM-x32\...\GFWL_{45410935-3E72-472B-8C35-AB1000008200}) (Version: 1.0.0000.130 - EA) Bulletstorm (x32 Version: 1.0.0000.130 - EA) Hidden Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Licomp EMPiK Multimedia) Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Licomp EMPiK Multimedia) Hidden Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version: - ) Catalyst Control Center Next Localization BR (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CS (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) Dead Island Definitive Edition (HKLM\...\Steam App 383150) (Version: - Techland) Dead Island Riptide (HKLM\...\Steam App 216250) (Version: - Techland) Fishing Planet (HKLM\...\Steam App 380600) (Version: - Fishing Planet LLC) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden Hotline Miami 2: Wrong Number (HKLM\...\Steam App 274170) (Version: - Dennaton Games) Huawei E5573 (HKLM-x32\...\Huawei E5573) (Version: 22.001.26.01.1202 - Huawei Technologies Co.,Ltd) Left 4 Dead 2 (HKLM\...\Steam App 550) (Version: - Valve) Logitech Gaming Software (HKLM-x32\...\{648F9C94-EC44-487B-9DA4-44ED72A082CC}) (Version: 4.50 - ) Mad Max (HKLM-x32\...\Steam App 234140) (Version: - Avalanche Studios) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation) Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850415-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Mozilla Firefox 47.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 pl)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla) NOT A HERO (HKLM\...\Steam App 274270) (Version: - Roll7) NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation) Outlast_Outlast Whistleblower version 1.0 (HKLM-x32\...\{AF9603DB-32DB-4784-BD67-C95E01ED0F90}_is1) (Version: 1.0 - ) PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.) RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder) SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden Shadow Warrior (HKLM\...\Steam App 233130) (Version: - Flying Wild Hog) Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.16.7.201605041511 - Sony Mobile Communications Inc.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) TeamSpeak 3 Client (HKU\S-1-5-21-3340888716-2642510718-1188868624-1000\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) This War of Mine (HKLM-x32\...\Steam App 282070) (Version: - 11 bit studios) TL-WN751ND Driver (HKLM-x32\...\{14770694-6C1C-4137-95F9-6F934D8491B4}) (Version: 1.00.0000 - TP-LINK) Unity Web Player (HKU\S-1-5-21-3340888716-2642510718-1188868624-1000\...\UnityWebPlayer) (Version: 5.3.2f1 - Unity Technologies ApS) Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.) WarThunder (HKLM-x32\...\WarThunder) (Version: - ) <==== UWAGA Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation) Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) Xperia Companion (HKLM-x32\...\{69fb49e3-2848-40e8-9fdd-8f02e02c327a}) (Version: 1.1.24.0 - Sony) Xperia Companion (x32 Version: 1.1.24.0 - Sony) Hidden ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) CustomCLSID: HKU\S-1-5-21-3340888716-2642510718-1188868624-1000_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Konrad\AppData\Local\Roblox\Versions\version-a1718013fcc842b1\RobloxProxy64.dll (ROBLOX Corporation) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {15DDD4B1-A376-4EBC-BCD7-4B1EDF9409F6} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3340888716-2642510718-1188868624-1000 Task: {2261BBB5-35C4-4CFB-B3E7-31041ACC5FB7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated) Task: {3EF4C877-9F4E-44DA-A2F3-B1FE374A29BD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated) Task: {512B3E8D-21AD-4765-ADFC-86537CEA06B3} - System32\Tasks\{D9010DCF-4821-4AC5-87D7-18451886A146} => pcalua.exe -a "D:\Steam\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "C:\Users\Konrad\Desktop\Nowy folder (3)" -c C:\Users\Konrad\Desktop\NOWYFO~3\SOLDIE~1.VPK Task: {56CCBADF-6A1A-4DCF-8332-6C3E01305E56} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-14] (Google Inc.) Task: {73448E52-25F9-4D03-9D3C-21BF9C370DCE} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-10] (AVAST Software) Task: {7E616F9F-AA9E-46A0-B3E5-2DD69AA8FE4B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd) Task: {9A5F26F5-9068-483F-A1D8-FBB5C4F84FA4} - System32\Tasks\SafeZone scheduled Autoupdate 1465970476 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software) Task: {AFDC8EB9-8843-411A-9E95-48309B61A40F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-04] (AVAST Software) Task: {B0B5C95F-0348-4502-8B85-2EE04D28E5F2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-14] (Google Inc.) Task: {E35019CA-6B12-4D6A-8627-04B904D4060A} - System32\Tasks\Zamknij komputer => C:\Windows\system32\shutdown.exe [2009-07-14] (Microsoft Corporation) Task: {F0027BD2-44B0-4DBC-A374-16926E15AAF6} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-03-21] (Advanced Micro Devices, Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) Shortcut: C:\Users\Konrad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Bossseed\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Konrad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Bossseed\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Konrad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Bossseed\Application\chrome.exe (Google Inc.) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Bossseed\Application\chrome.exe (Google Inc.) Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Bossseed\Application\chrome.exe (Google Inc.) ==================== Załadowane moduły (filtrowane) ============== 2016-02-12 22:32 - 2014-11-20 10:48 - 00242264 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe 2016-09-22 13:32 - 2016-09-20 12:27 - 00419048 _____ () C:\ProgramData\UvConverter\UvConverter.exe 2016-09-20 15:07 - 2016-09-23 11:56 - 00448216 _____ () C:\Program Files (x86)\WinSaber\WinSaber.exe 2015-06-25 17:34 - 2015-06-25 17:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2015-06-25 17:37 - 2015-06-25 17:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-06-25 17:35 - 2015-06-25 17:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2015-06-25 17:38 - 2015-06-25 17:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-06-25 16:53 - 2015-06-25 16:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll 2015-06-25 16:51 - 2015-06-25 16:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2015-12-08 21:25 - 2015-12-08 21:25 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1045.dll 2016-09-23 12:24 - 2016-09-23 08:25 - 00363904 _____ () C:\ProgramData\Bossseed\Bossseed.exe 2016-09-29 17:51 - 2016-09-29 17:51 - 00380928 _____ () C:\Users\Konrad\Downloads\ojbyxq0u.exe 2016-09-10 14:12 - 2016-09-10 14:12 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-09-29 13:20 - 2016-09-29 13:20 - 03118360 _____ () C:\Program Files\AVAST Software\Avast\defs\16092900\algo.dll 2016-09-10 14:12 - 2016-09-10 14:12 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-09-20 18:03 - 2016-09-20 08:17 - 00281600 _____ () c:\program files (x86)\common files\apps\hkhlp.dll 2016-06-30 18:36 - 2016-06-30 18:36 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-03-21 15:49 - 2016-03-21 15:49 - 00186368 _____ () C:\Windows\SysWOW64\GameManager32.dll 2015-09-13 12:11 - 2016-09-08 05:14 - 00784672 _____ () D:\Steam\SDL2.dll 2015-09-13 12:11 - 2016-09-01 03:02 - 04969248 _____ () D:\Steam\v8.dll 2015-09-13 12:11 - 2016-09-01 03:02 - 01563936 _____ () D:\Steam\icui18n.dll 2015-09-13 12:11 - 2016-09-01 03:02 - 01195296 _____ () D:\Steam\icuuc.dll 2015-09-13 12:11 - 2016-09-20 21:28 - 02321696 _____ () D:\Steam\video.dll 2015-09-13 12:11 - 2016-01-27 09:49 - 02549760 _____ () D:\Steam\libavcodec-56.dll 2015-09-13 12:11 - 2016-01-27 09:49 - 00442880 _____ () D:\Steam\libavutil-54.dll 2015-09-13 12:11 - 2016-01-27 09:49 - 00491008 _____ () D:\Steam\libavformat-56.dll 2015-09-13 12:11 - 2016-01-27 09:49 - 00332800 _____ () D:\Steam\libavresample-2.dll 2015-09-13 12:11 - 2016-01-27 09:49 - 00485888 _____ () D:\Steam\libswscale-3.dll 2015-09-13 12:11 - 2016-09-20 21:28 - 00835360 _____ () D:\Steam\bin\chromehtml.DLL 2016-03-09 10:12 - 2016-07-05 00:17 - 00266560 _____ () D:\Steam\openvr_api.dll 2015-09-13 12:11 - 2016-08-04 22:56 - 49825056 _____ () D:\Steam\bin\libcef.dll 2015-09-13 12:11 - 2015-09-25 01:52 - 00119208 _____ () D:\Steam\winh264.dll 2016-09-13 21:32 - 2016-09-13 21:32 - 19588800 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll 2016-09-23 12:24 - 2016-09-23 08:25 - 01798368 _____ () C:\Program Files (x86)\Bossseed\Application\libglesv2.dll 2016-09-23 12:24 - 2016-09-23 08:25 - 00086240 _____ () C:\Program Files (x86)\Bossseed\Application\libegl.dll 2016-09-23 12:24 - 2016-09-12 17:48 - 17754304 _____ () C:\Users\Konrad\AppData\Local\Bossseed\User Data\PepperFlash\23.0.0.166\pepflashplayer.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: =============================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2016-07-12 00:41 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-3340888716-2642510718-1188868624-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Konrad\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.8.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{54AA7B29-8B6E-4CE5-A146-6F86719F8334}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{73465CA5-BA5A-42F1-A084-8A12A28ADC0E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{95725356-90CD-4C06-A251-5B4BEA5DC8D5}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{09E4B405-7F2C-495D-BB43-4E742F9F5EE4}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{63C61B9E-8296-4418-815D-7DB5632027D9}] => (Allow) D:\Steam\bin\steamwebhelper.exe FirewallRules: [{D50B02F6-C017-41DE-93DF-44AA28AF1DF1}] => (Allow) D:\Steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{CC65D188-C518-44E5-A36F-9033AF95076A}D:\steam\steamapps\common\payday 2\payday2_win32_release.exe] => (Allow) D:\steam\steamapps\common\payday 2\payday2_win32_release.exe FirewallRules: [UDP Query User{E06F5F5F-C099-4AF4-84DB-3F2D5E640417}D:\steam\steamapps\common\payday 2\payday2_win32_release.exe] => (Allow) D:\steam\steamapps\common\payday 2\payday2_win32_release.exe FirewallRules: [{6BA25578-939F-42BA-8202-8535FA53B232}] => (Allow) D:\Steam\steamapps\common\Mad Max\MadMax.exe FirewallRules: [{7F83ED6C-38B2-4990-9369-70EABEF8E60B}] => (Allow) D:\Steam\steamapps\common\Mad Max\MadMax.exe FirewallRules: [TCP Query User{1C668CD9-96D3-4416-A68B-4E0414A137F5}D:\steam\steamapps\common\team fortress 2\hl2.exe] => (Allow) D:\steam\steamapps\common\team fortress 2\hl2.exe FirewallRules: [UDP Query User{B6B352AE-AC0C-46F3-AD12-11C126FEF740}D:\steam\steamapps\common\team fortress 2\hl2.exe] => (Allow) D:\steam\steamapps\common\team fortress 2\hl2.exe FirewallRules: [{E2A7E569-54FE-4195-A931-AABDB7E8E28B}] => (Allow) D:\Steam\steamapps\common\This War of Mine\This War of Mine.exe FirewallRules: [{845994E7-2AAB-4472-A286-2EE0AB08F8CA}] => (Allow) D:\Steam\steamapps\common\This War of Mine\This War of Mine.exe FirewallRules: [{96891868-871C-4C89-985C-B15148104525}] => (Allow) D:\Steam\steamapps\common\This War of Mine\Storyteller.exe FirewallRules: [{D04DEB0E-B3B0-4BB7-9534-E24DA51BAB2A}] => (Allow) D:\Steam\steamapps\common\This War of Mine\Storyteller.exe FirewallRules: [{9AE2D854-0815-4E6D-A37B-1CC1C18DD38E}] => (Allow) D:\Steam\steamapps\common\Fishing Planet\FishingPlanet.exe FirewallRules: [{765E7F21-A28D-4941-91D5-D8D546BE350E}] => (Allow) D:\Steam\steamapps\common\Fishing Planet\FishingPlanet.exe FirewallRules: [{061BADB3-A239-43F9-A4F6-2CDED1A1574B}] => (Allow) D:\Steam\steamapps\common\Hotline Miami 2\HotlineMiami2.exe FirewallRules: [{FA23E602-A961-429E-A4F8-5A799B4F8899}] => (Allow) D:\Steam\steamapps\common\Hotline Miami 2\HotlineMiami2.exe FirewallRules: [TCP Query User{1EA5652C-F3A4-416B-A8A0-9227E87CA4E0}C:\users\konrad\desktop\ts\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\konrad\desktop\ts\teamspeak3-server_win64\ts3server.exe FirewallRules: [UDP Query User{CEF6C6E9-B99B-45DA-8741-6D679A43CFD1}C:\users\konrad\desktop\ts\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\konrad\desktop\ts\teamspeak3-server_win64\ts3server.exe FirewallRules: [{81A44765-57E3-41CC-94AD-FE2CB0E212E7}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe FirewallRules: [{FEAC6ED2-DE68-4726-B10C-6D864AB884F1}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{39D8FEED-53FC-44B7-A85D-C40C84089CCF}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{B7198B3D-ACAD-44AE-ADB5-F6E1FB38C7E4}] => (Allow) D:\CoDWaWmp.exe FirewallRules: [{15946FF7-AD5C-40DB-830D-26ADE840B13F}] => (Allow) D:\CoDWaWmp.exe FirewallRules: [{A696D2B2-9603-4333-B625-6347F048010C}] => (Allow) D:\CoDWaW.exe FirewallRules: [{F6D4A695-E76D-4B3F-9BCF-17447AD82B0C}] => (Allow) D:\CoDWaW.exe FirewallRules: [{2C3C93A0-E1CB-4C00-B70B-181E71A9A3AF}] => (Allow) D:\Gry\Binaries\Win32\ShippingPC-StormGame.exe FirewallRules: [{A75C38E2-B84F-430B-A343-6A1777087918}] => (Allow) D:\Gry\Binaries\Win32\ShippingPC-StormGame.exe FirewallRules: [{BA4623F6-684E-4290-9A51-9E31FBC6ABB7}] => (Allow) D:\Steam\steamapps\common\Shadow Warrior\dx11\launcher.exe FirewallRules: [{041A289E-F47F-4248-8E6E-D3DF2AB8BD26}] => (Allow) D:\Steam\steamapps\common\Shadow Warrior\dx11\launcher.exe FirewallRules: [{E8E5C1BA-F41B-4F52-88D9-8EC775D33E9E}] => (Allow) D:\Steam\steamapps\common\Shadow Warrior\sw.exe FirewallRules: [{C6D13CBB-3E33-48F8-AA65-1108423E6C01}] => (Allow) D:\Steam\steamapps\common\Shadow Warrior\sw.exe FirewallRules: [{EB71E642-A0F6-427F-9893-3D2ADAB7D7E3}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{AEDC0F39-B924-4DDD-8ACA-A60F8B34659E}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{D25BF7BA-0DAB-44A3-9A0D-44FFAE4FB152}] => (Allow) D:\Steam\steamapps\common\Not a Hero\NOT A HERO.exe FirewallRules: [{601FF2C8-BBCD-41F9-B502-553EF9A3B399}] => (Allow) D:\Steam\steamapps\common\Not a Hero\NOT A HERO.exe FirewallRules: [{8B52606C-D097-4B39-98CE-F176BD83C736}] => (Allow) D:\Steam\steamapps\common\Not a Hero\LEGACY.exe FirewallRules: [{1375B8ED-7CE3-4A11-AC11-C216411B1315}] => (Allow) D:\Steam\steamapps\common\Not a Hero\LEGACY.exe FirewallRules: [{D51AEECF-ABB4-411F-936E-48FBE0FF5DA1}] => (Allow) D:\Steam\steamapps\common\DIDE\DeadIslandGame.exe FirewallRules: [{524FA840-C71E-4F4C-8318-73325D3575EC}] => (Allow) D:\Steam\steamapps\common\DIDE\DeadIslandGame.exe FirewallRules: [TCP Query User{B34B2727-9353-4A2D-8A5A-6FDC9D72A8E0}E:\outlast_outlast whistleblower\binaries\win64\olgame.exe] => (Allow) E:\outlast_outlast whistleblower\binaries\win64\olgame.exe FirewallRules: [UDP Query User{ACD71F89-EB6E-46F0-B444-21F3A0BDEBE8}E:\outlast_outlast whistleblower\binaries\win64\olgame.exe] => (Allow) E:\outlast_outlast whistleblower\binaries\win64\olgame.exe FirewallRules: [{E27D52A4-CF7C-4D83-884C-3930E7A84C5E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{441C1182-D501-4A82-A913-A56568413782}] => (Allow) C:\Program Files (x86)\Bossseed\Application\chrome.exe FirewallRules: [{AB75055A-3AD7-4D3F-841E-A1845EBF0ED8}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe FirewallRules: [{F1729AF9-55CF-4CC3-98B5-1EADE8767E10}] => (Allow) C:\ProgramData\Bossseed\Bossseed.exe FirewallRules: [{2612CF6C-3742-40DC-AAE6-F0E436B5E38C}] => (Allow) D:\Steam\steamapps\common\diriptide\DeadIslandGame_x86_rwdi.exe FirewallRules: [{FA493B8A-1112-48D9-8E82-6D914535A9F8}] => (Allow) D:\Steam\steamapps\common\diriptide\DeadIslandGame_x86_rwdi.exe FirewallRules: [{EAD83567-323D-45FD-AC35-3A32F4218EC8}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{739EA274-F4A6-489F-8551-EA29C0169053}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe ==================== Punkty Przywracania systemu ========================= 28-09-2016 12:29:56 Zainstalowany program DirectX 28-09-2016 12:47:21 Zainstalowany program DirectX ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (09/29/2016 01:27:26 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (09/29/2016 01:27:26 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (09/29/2016 01:27:26 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (09/29/2016 01:20:36 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/28/2016 08:41:14 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (09/28/2016 08:41:14 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (09/28/2016 08:41:14 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Error: (09/28/2016 08:37:05 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (09/28/2016 02:06:44 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT) Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu. Error: (09/28/2016 02:06:44 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT) Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data. Dziennik System: ============= Error: (09/29/2016 01:20:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi CornerSunshineSvc z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/28/2016 08:37:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi CornerSunshineSvc z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/28/2016 06:42:27 PM) (Source: Service Control Manager) (EventID: 7030) (User: ) Description: Usługa AMW Service jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie. Error: (09/28/2016 02:00:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi CornerSunshineSvc z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/28/2016 01:49:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi CornerSunshineSvc z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/28/2016 12:49:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi CornerSunshineSvc z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/28/2016 10:47:35 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi CornerSunshineSvc z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/28/2016 10:43:07 AM) (Source: volsnap) (EventID: 36) (User: ) Description: Wykonywanie kopii w tle woluminu C: zostało przerwane, ponieważ nie można powiększyć magazynu kopii w tle z powodu limitu wprowadzonego przez użytkownika. Error: (09/28/2016 09:32:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi CornerSunshineSvc z powodu następującego błędu: Nie można odnaleźć określonego pliku. Error: (09/27/2016 02:05:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi CornerSunshineSvc z powodu następującego błędu: Nie można odnaleźć określonego pliku. CodeIntegrity: =================================== Date: 2016-09-10 14:09:09.625 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atikmdag.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-10 14:09:09.531 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-10 14:09:05.218 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-10 14:09:05.171 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-09 17:18:04.062 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atikmdag.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-09 17:18:03.968 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-09 17:17:59.687 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-09 17:17:59.656 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-08 18:57:04.140 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atikmdag.sys because the set of per-page image hashes could not be found on the system. Date: 2016-09-08 18:57:04.046 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atikmpag.sys because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: Intel(R) Core(TM)2 Quad CPU Q8300 @ 2.50GHz Procent pamięci w użyciu: 51% Całkowita pamięć fizyczna: 5119.29 MB Dostępna pamięć fizyczna: 2500.22 MB Całkowita pamięć wirtualna: 10236.77 MB Dostępna pamięć wirtualna: 7067.48 MB ==================== Dyski ================================ Drive c: (Windows 7) (Fixed) (Total:55.36 GB) (Free:8.22 GB) NTFS Drive d: (Nowy) (Fixed) (Total:232.88 GB) (Free:58.47 GB) NTFS Drive e: (Różne) (Fixed) (Total:74.56 GB) (Free:59.99 GB) NTFS ==>[system z komponentami startowymi (pozyskano odczytując dysk)] Drive f: (Privat) (Fixed) (Total:111.79 GB) (Free:106.18 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (Size: 232.9 GB) (Disk ID: CA08CA08) Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 74.6 GB) (Disk ID: 395B395A) Partition 1: (Active) - (Size=74.6 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 55.9 GB) (Disk ID: 0D64FD3E) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=55.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 3 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 041F041E) Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================