Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja: 17-10-2016 Uruchomiony przez bartek (19-10-2016 17:44:32) Uruchomiony z C:\Users\bartek\Desktop\FRST Windows 7 Ultimate Service Pack 1 (X64) (2014-10-30 16:05:05) Tryb startu: Normal ========================================================== ==================== Konta użytkowników: ============================= Administrator (S-1-5-21-2363649901-2762790907-3881788747-500 - Administrator - Disabled) bartek (S-1-5-21-2363649901-2762790907-3881788747-1000 - Administrator - Enabled) => C:\Users\bartek Gość (S-1-5-21-2363649901-2762790907-3881788747-501 - Limited - Disabled) ==================== Centrum zabezpieczeń ======================== (Załączenie wejścia w fixlist spowoduje jego usunięcie.) AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Zainstalowane programy ====================== (W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.) µTorrent (HKU\S-1-5-21-2363649901-2762790907-3881788747-1000\...\uTorrent) (Version: 3.4.8.42449 - BitTorrent Inc.) Adobe Flash Player ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 9.0.124.0 - Adobe Systems Incorporated) Adobe Reader XI (11.0.18) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.18 - Adobe Systems Incorporated) AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.) AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.10.4.0 - AppEx Networks) Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team) AVG (HKLM\...\AvgZen) (Version: 1.101.2.40207 - AVG Technologies) AVG (Version: 16.121.7859 - AVG Technologies) Hidden AVG 2016 (Version: 16.0.4664 - AVG Technologies) Hidden AVG Protection (HKLM\...\AVG) (Version: 2016.121.7859 - AVG Technologies) AVG Zen (Version: 1.101.4 - AVG Technologies) Hidden BlueStacks App Player (HKLM-x32\...\{AA655366-D323-404D-AA9B-AD562CAE1DD0}) (Version: 2.2.21.6212 - BlueStack Systems, Inc.) Catalyst Control Center Next Localization BR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CS (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (Version: 2016.0916.1515.27418 - Advanced Micro Devices, Inc.) Hidden Centrum obsługi urządzeń z systemem Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation) DiRT Rally (HKLM\...\ZGlydHJhbGx5_is1) (Version: 1 - ) Doom (HKLM-x32\...\{B6A2B3BA-C93E-4AEE-BBCF-BE91DDC84962}_is1) (Version: - id Software) Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.115 - Etron Technology) Etron USB3.0 Host Controller (x32 Version: 0.115 - Etron Technology) Hidden Euro Truck Simulator 2 v1.22.2.4s (29 DLC) (HKLM-x32\...\Euro Truck Simulator 2 v1.22.2.4s (29 DLC)1.22.2.4) (Version: 1.22.2.4 - Friends in War) EX10 GAMEPAD (HKLM-x32\...\{F1A994FF-D39B-4937-9DB9-87EC4E91B31F}) (Version: 1.00.0000 - MyPower) Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version: - ) Fallout 4 Polish Language Pack (HKLM-x32\...\Fallout 4 Polish Language Pack_is1) (Version: - ) FMW 1 (Version: 1.132.1 - AVG Technologies) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.59 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation) KMPlayer (HKLM-x32\...\The KMPlayer) (Version: 3.9.1.129 - PandoraTV) Mafia III (HKLM-x32\...\Mafia III_is1) (Version: - ) Metal Gear Solid 5: The Phantom Pain (HKLM-x32\...\Metal Gear Solid 5: The Phantom Pain_is1) (Version: - ) Microsoft .NET Framework 4.6 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{14297226-E0A0-3781-8911-E9D529552663}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) Mirror's Edge™ Catalyst (HKLM-x32\...\{12228a0d-f6ad-4691-82af-d2c643424468}) (Version: 1.0.3.47248 - Electronic Arts) Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.61.15 - Black Tree Gaming) ON_OFF Charge B12.0308.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE) PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - ) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Prince Of Persia (HKLM-x32\...\{F3B0AC10-3636-4166-81CF-86CD7A8B0123}) (Version: 1.0 - Ubisoft) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.6 - Rockstar Games) Setup - Far Cry 4 (c) Ubisoft ... (HKLM-x32\...\Setup - Far Cry 4 (c) Ubisoft ...) (Version: ... - Ubisoft Entertainment) Tomb Raider - The Last Revelation (HKLM-x32\...\Tomb Raider - The Last Revelation) (Version: - ) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Vulkan Run Time Libraries 1.0.21.0 (HKLM\...\VulkanRT1.0.21.0) (Version: 1.0.21.0 - LunarG, Inc.) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH) ==================== Niestandardowe rejestracje CLSID (filtrowane): ========================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) ==================== Zaplanowane zadania (filtrowane) ============= (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) Task: {151EFC16-39A7-4F10-9E2C-7443113F71BD} - System32\Tasks\bartek => /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v bartek /t REG_SZ /d "explorer.exe hxxp://kb-ribaki.org" <==== UWAGA Task: {33D34E61-47B5-4AC2-87AD-839DB3DB1FE7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated) Task: {5E43E129-7538-4D94-8202-385A7C93B68C} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {CD73DE51-3353-4C0E-BF5A-E7BAF09C8490} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-07-18] (Advanced Micro Devices, Inc.) Task: {DFF71EE4-5BEC-43CC-A4BA-E3F09B3A5C64} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) Task: {E0813D4F-E26C-44FC-9A97-D2FC644E374E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) (Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Skróty ============================= (Wybrane wejścia mogą zostać załączone w celu ich zresetowania lub usunięcia.) ==================== Załadowane moduły (filtrowane) ============== 2015-11-18 03:24 - 2015-11-18 03:24 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll 2014-02-11 07:08 - 2014-02-11 07:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll 2014-02-11 07:08 - 2014-02-11 07:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll 2010-01-30 03:40 - 2010-01-30 03:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2014-12-25 03:32 - 2014-03-31 18:08 - 00482528 _____ () C:\Program Files\AMD Quick Stream\AMDQuickStream.exe 2014-12-25 03:32 - 2014-03-31 16:49 - 02220256 _____ () C:\Program Files\AMD Quick Stream\AqsUI.dll 2016-10-13 21:14 - 2016-10-12 07:56 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.59\libglesv2.dll 2016-10-13 21:14 - 2016-10-12 07:56 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.59\libegl.dll 2016-10-11 23:30 - 2016-10-11 23:30 - 31064768 _____ () C:\Users\bartek\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.185\pepflashplayer.dll 2015-12-14 16:48 - 2016-04-07 19:27 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll ==================== Alternate Data Streams (filtrowane) ========= (Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.) ==================== Tryb awaryjny (filtrowane) =================== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.) ==================== Powiązania plików (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.) ==================== Internet Explorer - Witryny zaufane i z ograniczeniami =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.) ==================== Hosts - zawartość: ========================== (Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.) 2009-07-14 04:34 - 2014-10-31 00:38 - 00000897 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 validation.sls.microsoft.com 127.0.0.1 player.kmpmedia.net ==================== Inne obszary ============================ (Obecnie brak automatycznej naprawy dla tej sekcji.) HKU\S-1-5-21-2363649901-2762790907-3881788747-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\bartek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Zapora systemu Windows [funkcja włączona] ==================== MSCONFIG/TASK MANAGER - Wyłączone elementy == MSCONFIG\Services: BstHdAndroidSvc => 3 MSCONFIG\Services: BstHdLogRotatorSvc => 2 MSCONFIG\Services: BstHdPlusAndroidSvc => 3 MSCONFIG\Services: BstHdUpdaterSvc => 2 MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun MSCONFIG\startupreg: StartCN => "C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe" atlogon MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: XboxStat => "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun ==================== Reguły Zapory systemu Windows (filtrowane) =============== (Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.) FirewallRules: [{F37FF9A6-2637-4012-A897-554D4C624D80}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{8CAE975E-4404-494E-9ADA-ACDAE26212C7}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [TCP Query User{6E13A8B4-6750-4137-8C59-8D25C58435BE}D:\program files (x86)\xcom - enemy within\binaries\win32\xcomgame.exe] => (Block) D:\program files (x86)\xcom - enemy within\binaries\win32\xcomgame.exe FirewallRules: [UDP Query User{E9E9AE4B-192E-4447-B0B7-A1152242A54F}D:\program files (x86)\xcom - enemy within\binaries\win32\xcomgame.exe] => (Block) D:\program files (x86)\xcom - enemy within\binaries\win32\xcomgame.exe FirewallRules: [TCP Query User{34729759-A326-4570-BD17-5217DFA5309C}D:\program files (x86)\far cry 4\bin\farcry4.exe] => (Block) D:\program files (x86)\far cry 4\bin\farcry4.exe FirewallRules: [UDP Query User{8DFD95E1-1AD0-43F0-9C51-BB5C2E241D19}D:\program files (x86)\far cry 4\bin\farcry4.exe] => (Block) D:\program files (x86)\far cry 4\bin\farcry4.exe FirewallRules: [{602A8B09-5578-4467-8B7E-A722397EDBD1}] => (Allow) D:\Program Files (x86)\Ubisoft\Prince of Persia\Prince of Persia.exe FirewallRules: [{8C48243B-78B6-4069-881B-FE623DB1D2C7}] => (Allow) D:\Program Files (x86)\Ubisoft\Prince of Persia\Prince of Persia.exe FirewallRules: [{8BB1162D-850D-421B-8549-2607A217214A}] => (Allow) D:\Program Files (x86)\Ubisoft\Prince of Persia\PrinceOfPersia_Launcher.exe FirewallRules: [{9E45653B-2172-4076-B3E7-2EE3CFF07629}] => (Allow) D:\Program Files (x86)\Ubisoft\Prince of Persia\PrinceOfPersia_Launcher.exe FirewallRules: [TCP Query User{A6082DA4-8355-47FC-8522-C99B69DAD32A}D:\program files (x86)\saints row iv\saintsrowiv.exe] => (Block) D:\program files (x86)\saints row iv\saintsrowiv.exe FirewallRules: [UDP Query User{B40C799D-0A38-46EC-85C1-AB50FBADD507}D:\program files (x86)\saints row iv\saintsrowiv.exe] => (Block) D:\program files (x86)\saints row iv\saintsrowiv.exe FirewallRules: [TCP Query User{9E728D7E-A065-4E6D-AB85-45BF64536312}D:\program files (x86)\saints row gat out of hell\saintsrowgatoutofhell.exe] => (Block) D:\program files (x86)\saints row gat out of hell\saintsrowgatoutofhell.exe FirewallRules: [UDP Query User{46048C99-022A-4745-ABC9-627672887B03}D:\program files (x86)\saints row gat out of hell\saintsrowgatoutofhell.exe] => (Block) D:\program files (x86)\saints row gat out of hell\saintsrowgatoutofhell.exe FirewallRules: [TCP Query User{4B6EC272-FA6F-4045-91A9-A001021608E7}D:\program files (x86)\dying light\dyinglightgame.exe] => (Block) D:\program files (x86)\dying light\dyinglightgame.exe FirewallRules: [UDP Query User{49C6B73D-9706-488F-B148-F2C93054E1B8}D:\program files (x86)\dying light\dyinglightgame.exe] => (Block) D:\program files (x86)\dying light\dyinglightgame.exe FirewallRules: [{3B153066-0623-490C-8D0E-E590F9F373C3}] => (Allow) D:\Program Files (x86)\The Sims 4\Game\Bin\TS4.exe FirewallRules: [{1520F735-21EA-44CD-A427-298986220116}] => (Allow) D:\Program Files (x86)\The Sims 4\Game\Bin\TS4.exe FirewallRules: [{B34208D6-6290-480D-9D70-7D3B855676D8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7C233F6A-45F0-4D10-8CF0-F5BB5C01E259}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{B23F506A-AEE5-46AD-9C38-A0B6EF0A36C6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{5217E151-0314-493C-B06E-969360D03282}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{45C82F73-5C0E-411A-A42B-5BC53714DA63}D:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe] => (Block) D:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe FirewallRules: [UDP Query User{060703EC-DB36-449B-988D-0BDAD473288C}D:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe] => (Block) D:\program files (x86)\assassins creed chronicles china\binaries\win32\accgame-win32-shipping.exe FirewallRules: [TCP Query User{E357E7CD-4987-4E32-B265-D4A5AD995303}D:\program files (x86)\portal 2\portal2.exe] => (Block) D:\program files (x86)\portal 2\portal2.exe FirewallRules: [UDP Query User{8CF93E7C-C217-4F4A-8684-3D3382089A80}D:\program files (x86)\portal 2\portal2.exe] => (Block) D:\program files (x86)\portal 2\portal2.exe FirewallRules: [TCP Query User{176E5689-1FD3-49C1-AB6E-66AF47931C69}D:\program files (x86)\grand theft auto v\gta5.exe] => (Block) D:\program files (x86)\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{07B0EAEE-CF91-4C49-8BF7-456F7D2001EC}D:\program files (x86)\grand theft auto v\gta5.exe] => (Block) D:\program files (x86)\grand theft auto v\gta5.exe FirewallRules: [TCP Query User{C434CDD3-848B-4EDB-BF73-3C1C5EC1FE5C}D:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe] => (Block) D:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe FirewallRules: [UDP Query User{3BBFB969-BDA6-458C-8E24-37F7C529D6F3}D:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe] => (Block) D:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe FirewallRules: [{F7EB7675-CC42-42CC-A28F-782D7C9C42F1}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{83644EF8-CCFC-4860-A987-BAC22AF8AE80}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe FirewallRules: [{E1A7119F-DC51-482F-8E88-E26790D4C166}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{F877E813-A55D-49C5-A934-0C6C5E68740A}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe FirewallRules: [{42C6CD09-E7F6-4729-AAE1-94B0E1E97A50}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{7BE68FC9-6FBD-452E-8A05-13228F7A9612}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{3F14855D-7CC7-417C-BACF-550F13568F41}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [{3504C81C-7162-45F2-B2DB-F206A402F8E1}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe FirewallRules: [TCP Query User{B727E960-A74E-41D9-8BC4-52E8E354DFA4}D:\program files (x86)\assassin s creed chronicles india\binaries\win32\accgame-win32-shipping.exe] => (Block) D:\program files (x86)\assassin s creed chronicles india\binaries\win32\accgame-win32-shipping.exe FirewallRules: [UDP Query User{8A1420FE-E0DC-4D97-9C50-EE981C1F9BA7}D:\program files (x86)\assassin s creed chronicles india\binaries\win32\accgame-win32-shipping.exe] => (Block) D:\program files (x86)\assassin s creed chronicles india\binaries\win32\accgame-win32-shipping.exe FirewallRules: [{5D90B8BF-CC78-444D-B5A1-DFB2BC9AF7A4}] => (Allow) C:\Users\bartek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{90B8824E-7A6D-4FBB-A875-4A567A1F7DDF}] => (Allow) C:\Users\bartek\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{4AF3DFD4-2D36-4FC8-94CF-5D91FE08A548}D:\program files (x86)\car mechanic simulator 2015\cms2015.exe] => (Block) D:\program files (x86)\car mechanic simulator 2015\cms2015.exe FirewallRules: [UDP Query User{3DA137FD-A56C-456A-8B30-6604A7FD77CD}D:\program files (x86)\car mechanic simulator 2015\cms2015.exe] => (Block) D:\program files (x86)\car mechanic simulator 2015\cms2015.exe FirewallRules: [TCP Query User{850FFCFD-9CE5-4047-9DD5-4056F1037DCE}D:\program files (x86)\test drive unlimited 2\testdrive2.exe] => (Block) D:\program files (x86)\test drive unlimited 2\testdrive2.exe FirewallRules: [UDP Query User{4AF0FED9-2409-4BAB-AA97-FC8434189E94}D:\program files (x86)\test drive unlimited 2\testdrive2.exe] => (Block) D:\program files (x86)\test drive unlimited 2\testdrive2.exe FirewallRules: [TCP Query User{8E738FEB-4D02-44C1-995B-600AF7C2A6AD}D:\program files (x86)\test drive unlimited 2\uplauncher.exe] => (Block) D:\program files (x86)\test drive unlimited 2\uplauncher.exe FirewallRules: [UDP Query User{870709E8-86CC-459B-8001-377184201E16}D:\program files (x86)\test drive unlimited 2\uplauncher.exe] => (Block) D:\program files (x86)\test drive unlimited 2\uplauncher.exe FirewallRules: [TCP Query User{56984A6D-D60D-4504-B37D-3CA233E2FE08}D:\program files (x86)\test drive unlimited 2\testdrive2.exe] => (Block) D:\program files (x86)\test drive unlimited 2\testdrive2.exe FirewallRules: [UDP Query User{A6A03186-432D-40F9-B131-A3929B83C327}D:\program files (x86)\test drive unlimited 2\testdrive2.exe] => (Block) D:\program files (x86)\test drive unlimited 2\testdrive2.exe FirewallRules: [{8494747A-CA36-4518-BA9F-44BB2F24AA0F}] => (Allow) D:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [{170CBC7E-770A-4648-8BA2-C849BBFEDE19}] => (Allow) D:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [{D565E2F9-22D9-41A1-A60D-444F61BBDE47}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe FirewallRules: [{3BB9D885-BCC1-4DF3-912B-8DCA3E8E2EB4}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe FirewallRules: [{F6A5797B-6CE6-48D4-924B-6076204E6A16}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{DCEE62CA-02C9-404F-9509-967A1D37B765}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [TCP Query User{E94AF1C1-9516-44A0-BDA9-A4D09236E5EB}D:\program files (x86)\doom\doomx64.exe] => (Block) D:\program files (x86)\doom\doomx64.exe FirewallRules: [UDP Query User{922F80FB-DFDB-474B-A4BF-2FB24EBFD1C5}D:\program files (x86)\doom\doomx64.exe] => (Block) D:\program files (x86)\doom\doomx64.exe FirewallRules: [{346E370D-ABE9-4C25-8C67-AE7AA7556050}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe FirewallRules: [{22BF2C98-651D-4CF2-9E2A-4E2D2EE63977}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe FirewallRules: [{FD514FED-12F3-421C-9378-7129BB758588}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe FirewallRules: [{19B5F087-42D9-48B7-BF8C-02060266097A}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe FirewallRules: [{7023A9DA-0C59-4499-972A-BBEE03B89CBE}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe FirewallRules: [{22CC034D-74E9-4528-B7A7-F80146744730}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe FirewallRules: [TCP Query User{0C76750A-8D5B-41FF-9603-F84A479201A1}D:\program files (x86)\car.mechanic.simulator.2015.v1.0.8.3.inclu.all.dlc\cms2015.exe] => (Block) D:\program files (x86)\car.mechanic.simulator.2015.v1.0.8.3.inclu.all.dlc\cms2015.exe FirewallRules: [UDP Query User{E1AC948D-E3E1-4439-B52B-4FFDFBD2F6C7}D:\program files (x86)\car.mechanic.simulator.2015.v1.0.8.3.inclu.all.dlc\cms2015.exe] => (Block) D:\program files (x86)\car.mechanic.simulator.2015.v1.0.8.3.inclu.all.dlc\cms2015.exe FirewallRules: [{8B54B28B-27D4-48D5-BAEC-C6AFAC60EEC6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{056A1F7B-9162-4394-B739-BDF96084B46E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{A81FA915-C8B0-4FF4-B748-B3ED7A016FB3}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe FirewallRules: [{3887D4CF-7AF5-4F65-89C1-442DBA83E507}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe FirewallRules: [{3682BA85-038B-4FA5-A64C-08CC0B051388}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe ==================== Punkty Przywracania systemu ========================= 10-10-2016 17:54:59 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 10-10-2016 19:16:17 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 10-10-2016 19:16:43 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 19-10-2016 17:36:58 SPTD setup V1.89 ==================== Wadliwe urządzenia w Menedżerze urządzeń ============= ==================== Błędy w Dzienniku zdarzeń: ========================= Dziennik Aplikacja: ================== Error: (10/19/2016 05:42:33 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (10/19/2016 05:36:57 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Odmowa dostępu. . To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym. Operacja: Zbieranie danych modułu zapisującego Kontekst: Identyfikator klasy modułu zapisującego: {e8132975-6f93-4464-a53e-1050253ae220} Nazwa modułu zapisującego: System Writer Identyfikator wystąpienia modułu zapisującego: {069838fd-68d4-4564-864c-383a0ab0183a} Error: (10/19/2016 04:20:15 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (10/19/2016 04:14:38 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (10/19/2016 04:09:18 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (10/19/2016 08:09:48 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (10/18/2016 08:08:16 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (10/18/2016 04:45:52 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (10/18/2016 10:22:17 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (10/18/2016 07:15:20 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Dziennik System: ============= Error: (10/19/2016 05:41:24 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (10/19/2016 05:41:13 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (10/19/2016 05:40:05 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (10/19/2016 04:19:04 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (10/19/2016 04:18:55 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (10/19/2016 04:17:46 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: Odmowa dostępu. . Error: (10/19/2016 04:17:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Instalator modułów systemu Windows niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (10/19/2016 04:17:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Usługa udostępniania w sieci programu Windows Media Player niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (10/19/2016 04:17:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error: (10/19/2016 04:17:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Usługa Ochrona oprogramowania niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. CodeIntegrity: =================================== Date: 2014-10-30 19:28:53.012 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\AVG\AVG2015\avghooka.dll because the set of per-page image hashes could not be found on the system. ==================== Statystyki pamięci =========================== Procesor: AMD A10-5800K APU with Radeon(tm) HD Graphics Procent pamięci w użyciu: 39% Całkowita pamięć fizyczna: 8152.34 MB Dostępna pamięć fizyczna: 4966.67 MB Całkowita pamięć wirtualna: 16302.89 MB Dostępna pamięć wirtualna: 13288.1 MB ==================== Dyski ================================ Drive c: (Nowy) (Fixed) (Total:393.66 GB) (Free:100.02 GB) NTFS ==>[dysk z komponentami startowymi (pozyskano odczytując BCD)] Drive d: (Nowy) (Fixed) (Total:537.85 GB) (Free:28.99 GB) NTFS ==================== MBR & Tablica partycji ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: F64029C6) Partition 1: (Active) - (Size=393.7 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=537.8 GB) - (Type=07 NTFS) ==================== Koniec Addition.txt ============================