Matt_ utworzono 29 sierpnia 2016 utworzono 29 sierpnia 2016 Witam, w prawie każdym folderze utworzył mi się plik @readme, co ukazuje się po jego otworzeniu widać na zrzutach ekranu które dołączam. Jak to usunąć bez utraty danych?
Empire123 komentarz 29 sierpnia 2016 komentarz 29 sierpnia 2016 Złapałes wirusa ktory zaszyfrował ci dysk pliki praktycznie nie sa juz do odzyskania
Matt_ komentarz 29 sierpnia 2016 Autor komentarz 29 sierpnia 2016 (edytowane) Jak na razie każdy plik mogę normalnie otwierać. Dlatego chciałbym rozwiązać problem zanim ten wirus mi namiesza w danych.
Empire123 komentarz 29 sierpnia 2016 komentarz 29 sierpnia 2016 To już nie do mnie pytania przyjdzie @Twój_Anioł_Stróż to ci pomoże może
Twój_Anioł_Stróż komentarz 29 sierpnia 2016 komentarz 29 sierpnia 2016 (edytowane) Cytuj chciałbym rozwiązać problem zanim ten wirus mi namiesza w danych. Jeśli Ci do tej pory nie zaszyfrował Twoich plików, to już raczej nie zaszyfruje, choć oczywiście pewności nie ma. Jedyne, co możesz zrobić, to skopiować swoje pliki na pendrive. Dodatkowo możesz zrobić logi z FRST > http://www.forumpc.pl/topic/277786-nieingerencyjne-narzędzia-do-tworzenia-logów-systemowych/?p=2010191. 1
Matt_ komentarz 29 sierpnia 2016 Autor komentarz 29 sierpnia 2016 (edytowane) Dołączam logi. Widać coś podejrzanego? Boję się nawet ponownie uruchomić komputer. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-08-2016 Ran by Komputer (administrator) on MOJEKONTO (29-08-2016 18:51:13) Running from D:\frst64 Loaded Profiles: Komputer (Available Profiles: Komputer) Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Angielski (Stany Zjednoczone) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Arcai.com) D:\Program Files (x86)\netcut\services\aips.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ Power Control\PowerControlHelp.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe () C:\Windows\SysWOW64\HsMgr.exe () C:\Windows\system\HsMgr64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenBroker64.exe (CMedia) C:\Program Files\ASUS Xonar D2X Audio\Customapp\AsusAudioCenter.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Octoshape ApS) C:\Users\Komputer\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe (SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelp.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe () C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetiCtrlTray.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.28\AsusFanControlService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenManager64.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Mozilla Corporation) D:\Program Files (x86)\Mozilla Firefox\firefox.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [Cmaudio8788] => C:\Windows\Syswow64\cmicnfgp.dll [8769536 2011-05-12] (C-Media Corporation) HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] () HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] () HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2631824 2015-07-14] (NVIDIA Corporation) HKLM\...\Run: [FileOpenBroker] => C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [1310528 2015-06-17] (FileOpen Systems Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-07-05] (Apple Inc.) HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [465536 2011-10-31] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-21] (Intel Corporation) HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [8900328 2016-08-08] (AVAST Software) HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\Run: [Google Update] => C:\Users\Komputer\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc.) HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\Run: [Octoshape Streaming Services] => C:\Users\Komputer\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [500016 2014-08-01] (Octoshape ApS) HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\MountPoints2: H - H:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\MountPoints2: I - I:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\MountPoints2: {14730c8e-da80-11e3-be5a-c86000a37a90} - H:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\MountPoints2: {524bdd88-f911-11e2-b83b-c86000a37a90} - I:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\MountPoints2: {e163f59a-03e7-11e3-8bbf-c86000a37a90} - H:\HTC_Sync_Manager_PC.exe ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-06-30] (AVAST Software) ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2015-11-12] ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 217.172.224.160 89.231.1.206 Tcpip\..\Interfaces\{EC8D7C91-68CC-4665-A9E3-859F78C23A1A}: [DhcpNameServer] 217.172.224.160 89.231.1.206 Internet Explorer: ================== HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.pl/ SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-26] (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-06-30] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-26] (Oracle Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-07-26] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-06-30] (AVAST Software) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-26] (Oracle Corporation) Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File DPF: HKLM-x32 {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} hxxps://www.bph.pl/sezam/components/SignActivX.cab DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab FireFox: ======== FF ProfilePath: C:\Users\Komputer\AppData\Roaming\Mozilla\Firefox\Profiles\r18orrjk.default FF Homepage: www.wp.pl FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-12] () FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll [No File] FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB) FF Plugin: @java.com/DTPlugin,version=10.5.0 -> C:\Windows\system32\npDeployJava1.dll [2012-07-26] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-26] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> D:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] () FF Plugin-x32: @esn/esnlaunch,version=1.132.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll [No File] FF Plugin-x32: @esn/esnlaunch,version=1.140.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.140.0\npesnlaunch.dll [No File] FF Plugin-x32: @esn/esnlaunch,version=2.1.4 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll [No File] FF Plugin-x32: @esn/npbattlelog,version=2.3.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll [No File] FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll [No File] FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-26] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-26] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1517021387-1231592511-3441685361-1000: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\Komputer\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1503240-0-npoctoshape.dll [2015-03-24] (Octoshape ApS) FF Plugin HKU\S-1-5-21-1517021387-1231592511-3441685361-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.) FF Plugin HKU\S-1-5-21-1517021387-1231592511-3441685361-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.) FF Plugin HKU\S-1-5-21-1517021387-1231592511-3441685361-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [No File] FF Plugin ProgramFiles/Appdata: C:\Users\Komputer\AppData\Roaming\mozilla\plugins\npoctoshape.dll [2015-09-17] (Octoshape ApS) FF Extension: (FireShot) - C:\Users\Komputer\AppData\Roaming\Mozilla\Firefox\Profiles\r18orrjk.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2016-07-01] FF Extension: (Session Manager) - C:\Users\Komputer\AppData\Roaming\Mozilla\Firefox\Profiles\r18orrjk.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2016-05-01] FF Extension: (Adblock Plus) - C:\Users\Komputer\AppData\Roaming\Mozilla\Firefox\Profiles\r18orrjk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-05-01] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-06-30] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-06-30] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF StartMenuInternet: FIREFOX.EXE - D:\Program Files (x86)\Mozilla Firefox\firefox.exe Chrome: ======= CHR Session Restore: Default -> is enabled. CHR Plugin: (Native Client) - C:\Users\Komputer\AppData\Local\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File CHR Plugin: (Chrome PDF Viewer) - C:\Users\Komputer\AppData\Local\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File CHR Plugin: (Shockwave Flash) - C:\Users\Komputer\AppData\Local\Google\Chrome\Application\52.0.2743.116\gcswf32.dll => No File CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll => No File CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) CHR Profile: C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (YouTube) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-28] CHR Extension: (Google Search) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28] CHR Extension: (LoungeDestroyer) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghahcnmfjfckcedfajbhekgknjdplfcl [2016-08-18] CHR Extension: (Płatności w sklepie Chrome Web Store) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02] CHR Extension: (Gmail) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-21] CHR Extension: (Chrome Media Router) - C:\Users\Komputer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-23] StartMenuInternet: Google Chrome - C:\Users\Komputer\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AIPS; d:\Program Files (x86)\netcut\services\AIPS.exe [262144 2011-07-28] (Arcai.com) [File not signed] S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe [918448 2011-10-29] () [File not signed] R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-02-02] (ASUSTeK Computer Inc.) R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-02-17] (ASUSTeK Computer Inc.) R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.28\AsusFanControlService.exe [1492912 2012-02-08] (ASUSTeK Computer Inc.) [File not signed] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-06-30] (AVAST Software) R2 FileOpenManager; C:\Program Files\FileOpen\Services\FileOpenManager64.exe [341312 2015-06-17] (FileOpen Systems Inc.) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-07-14] (NVIDIA Corporation) S4 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160768 2011-05-27] (Intel Corporation) [File not signed] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation) S3 Microsoft SharePoint Workspace Audit Service; D:\Program Files\Microsoft Office\Office14\GROOVE.EXE [51456888 2010-03-25] (Microsoft Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-14] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-14] (NVIDIA Corporation) S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-11] (Electronic Arts) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-06-29] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-02-03] () S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-25] (CACE Technologies, Inc.) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] S3 wampapache64; d:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [24576 2014-05-01] (Apache Software Foundation) [File not signed] S3 wampmysqld64; d:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [12942848 2014-05-01] () [File not signed] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14592 2010-10-20] (ASUSTek Computer Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] () R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] () R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-06-30] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-06-30] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108304 2016-06-30] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-06-30] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-06-30] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-06-30] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [473592 2016-07-13] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162904 2016-06-30] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-08-05] (AVAST Software) S3 busenum; C:\Windows\System32\DRIVERS\SteelBus64.sys [146944 2014-10-08] (SteelSeries Corporation) [File not signed] R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2725376 2011-03-10] (C-Media Inc) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-08-27] (DT Soft Ltd) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) S3 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-25] (CACE Technologies, Inc.) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-14] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation) S3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [39168 2014-10-08] (SteelSeries Corporation) [File not signed] R3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [32792 2015-09-29] (SteelSeries ApS) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [53760 2012-09-28] (Apple, Inc.) [File not signed] S3 ALSysIO; \??\C:\Users\Komputer\AppData\Local\Temp\ALSysIO64.sys [X] S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X] S3 MSICDSetup; \??\F:\CDriver64.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-08-29 18:49 - 2016-08-29 18:51 - 00000000 ____D C:\FRST 2016-08-29 17:35 - 2016-08-29 17:37 - 00000000 ____D C:\Users\Komputer\Desktop\wirus 2016-08-29 17:03 - 2016-08-29 17:03 - 00000677 _____ C:\Users\Komputer\Desktop\Konkursy — skrót.lnk ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-08-29 18:49 - 2012-07-29 19:34 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1517021387-1231592511-3441685361-1000UA.job 2016-08-29 18:42 - 2016-02-16 12:07 - 00000000 ____D C:\PIT Format 2015 2016-08-29 18:42 - 2015-11-12 19:59 - 00000000 ____D C:\4c04ecbd38a71c6cdbdd5df27d 2016-08-29 18:42 - 2013-01-22 00:06 - 00000000 ____D C:\PIT Format 2012 2016-08-29 18:42 - 2012-07-25 19:25 - 00000000 ____D C:\Users\Komputer\AppData\Local\VirtualStore 2016-08-29 18:30 - 2014-05-10 16:22 - 00000000 ____D C:\Users\Komputer\Downloads\amino 2016-08-29 18:28 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2016-08-29 18:25 - 2016-07-11 10:42 - 00000000 ____D C:\Users\Komputer\Desktop\trtrtr 2016-08-29 18:25 - 2015-07-28 20:39 - 00000000 ____D C:\Users\Komputer\Desktop\PZU2 2016-08-29 18:25 - 2014-10-13 16:07 - 00000000 ____D C:\Users\Komputer\Desktop\zdjecia pozegnanie 2016-08-29 18:25 - 2014-08-06 09:26 - 00000000 ____D C:\Users\Komputer\Desktop\yogi 2016-08-29 18:25 - 2014-06-03 12:20 - 00000000 ____D C:\Users\Komputer\Desktop\verva 2016-08-29 18:25 - 2014-03-30 16:59 - 00000000 ____D C:\Users\Komputer\Desktop\zdjecie beata dowod 2016-08-29 18:25 - 2014-03-17 23:36 - 00000000 ____D C:\Users\Komputer\Desktop\sort 2016-08-29 18:25 - 2014-03-10 21:19 - 00000000 ____D C:\Users\Komputer\Desktop\skany do ubezpieczenia 2016-08-29 18:25 - 2013-12-02 22:54 - 00000000 ____D C:\Users\Komputer\Desktop\Sinus 2016-08-29 18:25 - 2013-06-15 20:15 - 00000000 ___SD C:\Users\Komputer\GG dysk 2016-08-29 18:24 - 2015-02-08 18:46 - 00000000 ____D C:\Users\Komputer\Desktop\itszkola 2016-08-29 18:24 - 2015-01-06 19:48 - 00000000 ____D C:\Users\Komputer\Desktop\Matura polski 2016-08-29 18:24 - 2015-01-05 21:41 - 00000000 ____D C:\Users\Komputer\Desktop\arkusze matma 2016-08-29 18:24 - 2014-11-14 16:04 - 00000000 ____D C:\Users\Komputer\Desktop\gra giełdowa 2016-08-29 18:24 - 2014-10-28 22:21 - 00000000 ____D C:\Users\Komputer\Desktop\Cosinus 2016-08-29 18:24 - 2014-10-21 21:10 - 00000000 ____D C:\Users\Komputer\Desktop\PP 2016-08-29 18:24 - 2014-10-15 07:21 - 00000000 ____D C:\Users\Komputer\Desktop\prigram pi i e 2016-08-29 18:24 - 2014-10-05 21:50 - 00000000 ____D C:\Users\Komputer\Desktop\70-686 2016-08-29 18:24 - 2014-09-16 22:05 - 00000000 ____D C:\Users\Komputer\Desktop\calkirzone 2016-08-29 18:24 - 2014-09-11 20:40 - 00000000 ____D C:\Users\Komputer\Desktop\matura 2016-08-29 18:24 - 2014-09-10 06:30 - 00000000 ____D C:\Users\Komputer\Desktop\kondensator 2016-08-29 18:24 - 2014-08-15 20:00 - 00000000 ____D C:\Users\Komputer\Desktop\pzu 2016-08-29 18:24 - 2014-08-12 17:14 - 00000000 ____D C:\Users\Komputer\Desktop\Leibniz 2016-08-29 18:24 - 2014-08-11 21:27 - 00000000 ____D C:\Users\Komputer\Desktop\monety 2016-08-29 18:24 - 2014-06-21 10:30 - 00000000 ____D C:\Users\Komputer\Desktop\Diamant konkurs 2016-08-29 18:24 - 2014-06-16 13:19 - 00000000 ____D C:\Users\Komputer\Desktop\finish 2016-08-29 18:24 - 2014-06-08 16:56 - 00000000 ____D C:\Users\Komputer\Desktop\dremel 2016-08-29 18:24 - 2014-05-27 21:42 - 00000000 ____D C:\Users\Komputer\Desktop\mig mem itp 2016-08-29 18:24 - 2014-05-26 21:09 - 00000000 ____D C:\Users\Komputer\Desktop\baza 2016-08-29 18:24 - 2014-05-18 19:17 - 00000000 ____D C:\Users\Komputer\Desktop\cla 2016-08-29 18:24 - 2014-04-28 21:09 - 00000000 ____D C:\Users\Komputer\Desktop\tablice posortowane 2016-08-29 18:24 - 2014-04-13 09:10 - 00000000 ____D C:\Users\Komputer\Desktop\Dowód Wojtka 2016-08-29 18:24 - 2014-04-11 21:06 - 00000000 ____D C:\Users\Komputer\Desktop\Olga dowód 2016-08-29 18:24 - 2014-04-11 20:59 - 00000000 ____D C:\Users\Komputer\Desktop\Dowód Waldemar 2016-08-29 18:24 - 2014-03-30 17:18 - 00000000 ____D C:\Users\Komputer\Desktop\kawa dowod 2016-08-29 18:24 - 2014-03-28 20:19 - 00000000 ____D C:\Users\Komputer\Desktop\Mateusz Dowód 2016-08-29 18:24 - 2014-03-19 23:58 - 00000000 ____D C:\Users\Komputer\Desktop\listy angielski 2016-08-29 18:24 - 2014-03-02 22:25 - 00000000 ____D C:\Users\Komputer\Desktop\mig hybryda i tutoriale 2016-08-29 18:24 - 2014-03-01 22:56 - 00000000 ____D C:\Users\Komputer\Desktop\pit ola 2016-08-29 18:24 - 2014-02-17 23:53 - 00000000 ____D C:\Users\Komputer\Desktop\kalkulator 2016-08-29 18:24 - 2013-12-24 22:05 - 00000000 ____D C:\Users\Komputer\Desktop\KSIEGI 2016-08-29 18:24 - 2012-09-25 00:17 - 00000000 ____D C:\Users\Komputer\.VirtualBox 2016-08-29 18:20 - 2013-10-15 14:12 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-08-29 18:18 - 2012-07-31 21:22 - 00000000 ____D C:\Users\Komputer\AppData\LocalLow\Adobe 2016-08-29 17:38 - 2015-03-02 23:46 - 01052672 ___SH C:\Users\Komputer\Desktop\Thumbs.db 2016-08-29 16:00 - 2009-07-14 06:45 - 00021248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-08-29 16:00 - 2009-07-14 06:45 - 00021248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-08-29 15:53 - 2012-07-26 01:46 - 01048576 _____ C:\Windows\PE_Rom.dll 2016-08-29 15:51 - 2015-04-06 11:35 - 00000000 ____D C:\ProgramData\NVIDIA 2016-08-29 15:51 - 2012-07-25 19:58 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-08-29 15:51 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-08-29 10:02 - 2014-06-17 08:22 - 00000000 ____D C:\Users\Komputer\AppData\Local\Adobe 2016-08-28 16:33 - 2015-10-08 12:08 - 00000000 ____D C:\Users\Komputer\Documents\Pliki programu Outlook 2016-08-27 21:49 - 2012-07-29 19:34 - 00001018 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1517021387-1231592511-3441685361-1000Core.job 2016-08-27 18:57 - 2015-10-13 10:36 - 00000119 _____ C:\Users\Komputer\Desktop\dieta.txt 2016-08-24 06:57 - 2013-09-01 22:21 - 00001019 _____ C:\Users\Komputer\Desktop\plecy.txt 2016-08-24 06:56 - 2013-08-31 17:13 - 00000878 _____ C:\Users\Komputer\Desktop\barki tric.txt 2016-08-24 06:56 - 2013-08-12 23:33 - 00001355 _____ C:\Users\Komputer\Desktop\klata.txt 2016-08-23 19:16 - 2012-07-25 19:54 - 00737226 _____ C:\Windows\system32\perfh015.dat 2016-08-23 19:16 - 2012-07-25 19:54 - 00153914 _____ C:\Windows\system32\perfc015.dat 2016-08-23 19:16 - 2009-07-14 07:13 - 01661232 _____ C:\Windows\system32\PerfStringBackup.INI 2016-08-23 19:16 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2016-08-23 00:21 - 2013-10-08 20:48 - 00000000 ____D C:\Users\Komputer\AppData\Roaming\TS3Client 2016-08-16 20:48 - 2013-06-21 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2016-08-08 22:50 - 2012-07-29 19:36 - 00002398 _____ C:\Users\Komputer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-08-07 16:49 - 2009-07-14 07:08 - 00032620 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-08-05 12:10 - 2016-02-09 16:44 - 00292704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys 2016-08-04 12:41 - 2012-07-26 01:52 - 00003235 _____ C:\Windows\MB.idx 2016-08-04 12:41 - 2012-07-26 01:51 - 00000551 _____ C:\Windows\Path.idx 2016-08-04 12:38 - 2014-06-03 14:04 - 00003890 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1375882335 2016-08-04 12:38 - 2012-07-25 19:44 - 00000000 ____D C:\Program Files (x86)\Opera 2016-08-02 17:03 - 2016-06-03 15:06 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk ==================== Files in the root of some directories ======= 2013-02-05 23:31 - 2016-04-11 20:00 - 0000132 _____ () C:\Users\Komputer\AppData\Roaming\Adobe BMP Format CS6 Prefs 2012-08-12 16:03 - 2015-09-17 17:11 - 0000132 _____ () C:\Users\Komputer\AppData\Roaming\Adobe PNG Format CS6 Prefs 2013-12-10 22:46 - 2013-12-10 22:46 - 0000001 _____ () C:\Users\Komputer\AppData\Local\llftool.4.30.agreement 2012-09-25 00:42 - 2012-09-25 00:42 - 0007606 _____ () C:\Users\Komputer\AppData\Local\Resmon.ResmonCfg 2008-02-05 15:28 - 2008-02-05 15:28 - 0000051 _____ () C:\Users\Komputer\AppData\Local\setup.txt ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-07-11 11:44 ==================== End of FRST.txt ============================ Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-08-2016 Ran by Komputer (29-08-2016 18:51:39) Running from D:\frst64 Windows 7 Ultimate Service Pack 1 (X64) (2012-07-25 17:25:47) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1517021387-1231592511-3441685361-500 - Administrator - Disabled) Guest (S-1-5-21-1517021387-1231592511-3441685361-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1517021387-1231592511-3441685361-1002 - Limited - Enabled) Komputer (S-1-5-21-1517021387-1231592511-3441685361-1000 - Administrator - Enabled) => C:\Users\Komputer ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Acrobat Reader DC - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.3.0.3670 - Adobe Systems Incorporated) Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.1 - Adobe Systems Incorporated) Adobe Flash Player 22 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 22.0.0.210 - Adobe Systems Incorporated) Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 1.02.29 - ASUSTeK Computer Inc.) Aktualizacje NVIDIA 2.5.11.45 (Version: 2.5.11.45 - NVIDIA Corporation) Hidden Apple Application Support (32-bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ASUS Xonar D2X Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - ) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.1.2272 - AVAST Software) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.25648 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Brother MFL-Pro Suite DCP-395CN (HKLM-x32\...\{0A02D347-5E53-48A5-BC49-1469393103FA}) (Version: 1.0.3.0 - Brother Industries, Ltd.) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CPUID CPU-Z 1.61.3 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0315 - DT Soft Ltd) Dev-C++ (HKLM-x32\...\Dev-C++) (Version: 5.6.1 - Bloodshed Software) FileOpen Client (x64) B962 (HKLM\...\{9C34EE89-DBF3-46DE-8AB5-85661D921E17}) (Version: 3.0.121.962 - FileOpen Systems, Inc.) Fraps (HKLM-x32\...\Fraps) (Version: - ) Free Pascal 2.6.2 (HKLM-x32\...\FreePascal_is1) (Version: - Free Pascal Team) Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.9.0 - Futuremark Corporation) Generator Wniosków Aplikacyjnych Edytor (HKLM-x32\...\{5C91E3A5-F559-4E5E-B023-FEE8AE5EAFFE}) (Version: 8.7.2 - JCommerce) GG (HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\GG) (Version: 11 - GG Network S.A.) Google Chrome (HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.) Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden Infinite HD™ App (HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\Octoshape Streaming Services) (Version: - Octoshape ApS) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation) Intel(R) Network Connections 17.3.63.0 (HKLM\...\PROSetDX) (Version: 17.3.63.0 - Intel) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation) Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation) iTunes (HKLM\...\{E109B4A3-9883-4E6E-9A19-4D7E1A88AFE8}) (Version: 12.4.2.4 - Apple Inc.) Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation) Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft ASP.NET 2.0 AJAX Extensions 1.0 (HKLM-x32\...\{082BDF7B-4810-4599-BF0D-E3AC44EC8524}) (Version: 1.0.61025 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Mozilla Firefox 28.0 (x86 pl) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 pl)) (Version: 28.0 - Mozilla) Mozilla Firefox 47.0 (x86 pl) (HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\Mozilla Firefox 47.0 (x86 pl)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla) MSI Afterburner 2.3.0 (HKLM-x32\...\Afterburner) (Version: 2.3.0 - MSI Co., LTD) MSI Kombustor 2.3.0 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD) MySQL Workbench 6.3 CE (HKLM\...\{59958BAC-A61D-4A23-8082-CC2FDF17937F}) (Version: 6.3.6 - Oracle Corporation) NVIDIA GeForce Experience 2.5.11.45 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.11.45 - NVIDIA Corporation) NVIDIA Oprogramowanie systemu PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Sterownik 3D Vision 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.30 - NVIDIA Corporation) NVIDIA Sterownik dźwięku HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Sterownik graficzny 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation) NVIDIA Sterownik kontrolera 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) OCCT 4.3.1 (HKLM-x32\...\OCCT) (Version: 4.3.1 - Ocbase.com) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 39.0.2256.48 (HKLM-x32\...\Opera 39.0.2256.48) (Version: 39.0.2256.48 - Opera Software) Oracle VM VirtualBox 4.2.0 (HKLM\...\{8ECC12DC-7819-402A-B54E-A991558C81B1}) (Version: 4.2.0 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 8.6.0.357 - Electronic Arts, Inc.) Panel sterowania NVIDIA 353.30 (Version: 353.30 - NVIDIA Corporation) Hidden PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden PIT Format 2015 (HKLM-x32\...\PIT Format 2015_is1) (Version: - Biuro Informatyki Stosowanej FORMAT) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.) RightMark Audio Analyzer 6.0.6 (HKLM-x32\...\RightMark Audio Analyzer 6.0.6) (Version: - ) SafeZone Stable 1.48.2066.114 (x32 Version: 1.48.2066.114 - Avast Software) Hidden SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.5.11.45 - NVIDIA Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries Engine 3.5.3 (HKLM\...\SteelSeries Engine 3) (Version: 3.5.3 - SteelSeries ApS) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) WampServer 2.5 (HKLM-x32\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL)) Windows Driver Package - Microsoft (xusb21) XnaComposite (08/13/2009 2.1.0.1349) (HKLM\...\0AEBEF6F936CFE16E003F7E141631FAB754D9816) (Version: 08/13/2009 2.1.0.1349 - Microsoft) WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) WinRAR 4.11 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Komputer\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.) CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {065963E6-F591-4F9E-812F-F243CBD0E572} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated) Task: {0C4C453B-7717-4AE9-8AB4-B4A60CA20D52} - System32\Tasks\ASUS\ASUS Network iControl Help Execute => C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [2012-01-30] (ASUSTeK Computer Inc.) Task: {12A5FD26-4994-4AF2-99A5-03BF91F1DF4F} - System32\Tasks\ASUS\ASUS DigiPowerControl Help => C:\Program Files (x86)\ASUS\AI Suite II\DIGI+ Power Control\PowerControlHelp.exe [2012-03-06] (ASUSTeK Computer Inc.) Task: {17B2D5AC-2C68-4B31-AB5C-DAD6BED17B02} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software) Task: {25336E45-9E25-4D95-8505-046BD5408D98} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-06-30] (AVAST Software) Task: {3195DFAB-1512-4EE8-9F84-49ED0EC71AB1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-15] (Adobe Systems Incorporated) Task: {402529D4-F6A9-45B8-BBCE-201F912D64B0} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2010-11-26] (ASUSTeK Computer Inc.) Task: {4D4181E4-8914-4DCB-9507-7D634AFFD2D0} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1517021387-1231592511-3441685361-1000Core => C:\Users\Komputer\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {56A2042B-A0E5-4413-88F5-0A0C28126B9B} - System32\Tasks\Opera scheduled Autoupdate 1375882335 => C:\Program Files (x86)\Opera\launcher.exe [2016-08-03] (Opera Software) Task: {59A14240-6567-45DB-9FAA-8F7C6C4AE107} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1517021387-1231592511-3441685361-1000UA => C:\Users\Komputer\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {8FDA9DF3-7F1C-4B2E-9C25-BC66D3EA49BB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {A88AA955-D6FA-4F14-9AE6-0C3992F34D27} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {CC660EDD-E25C-44EB-8E08-2B0888FABC6D} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [2011-09-09] () Task: {CE8F67FE-AB81-4ED8-9B58-8EF9E2ED63E3} - System32\Tasks\SafeZone scheduled Autoupdate 1458326044 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-06-17] (Avast Software) Task: {D7C9A982-4AC5-4739-A59B-7B071B7F25FE} - System32\Tasks\AdobeAAMUpdater-1.0-Komputer-PC-Komputer => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated) Task: {E59EBC25-8B6C-4ABD-A1AE-CB660911B3D9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1517021387-1231592511-3441685361-1000Core.job => C:\Users\Komputer\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1517021387-1231592511-3441685361-1000UA.job => C:\Users\Komputer\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Shortcuts ============================= (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2015-04-06 11:35 - 2015-06-17 08:48 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2010-01-30 02:40 - 2010-01-30 02:40 - 04254560 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2012-08-02 20:11 - 2008-07-11 15:04 - 00200704 ____N () C:\Windows\SysWOW64\HsMgr.exe 2012-08-02 20:11 - 2008-07-11 15:03 - 00282112 ____N () C:\Windows\system\HsMgr64.exe 2016-04-22 01:07 - 2016-04-22 01:07 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-07-05 15:23 - 2016-07-05 15:23 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2015-10-30 16:38 - 2015-10-30 16:38 - 00507144 _____ () C:\Program Files\SteelSeries\SteelSeries Engine 3\SSEdevice.dll 2012-07-26 01:39 - 2011-10-29 09:59 - 00918448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe 2013-06-21 11:06 - 2015-02-03 23:35 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2016-06-30 07:06 - 2016-06-30 07:06 - 00146232 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-08-29 13:59 - 2016-08-29 13:59 - 03016192 _____ () C:\Program Files\AVAST Software\Avast\defs\16082900\algo.dll 2016-06-30 07:06 - 2016-06-30 07:06 - 00479288 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2012-07-26 01:43 - 2011-12-29 01:13 - 00043520 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll 2012-07-26 01:43 - 2011-09-07 23:23 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll 2015-07-26 19:01 - 2015-07-14 21:06 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2013-06-21 12:28 - 2011-04-19 14:56 - 00143360 ____N () C:\Program Files\ASUS Xonar D2X Audio\Customapp\VmixP8.dll 2012-07-26 01:40 - 2011-07-12 19:14 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll 2012-07-26 01:40 - 2010-10-05 08:22 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll 2012-07-26 01:40 - 2011-09-26 19:36 - 00869376 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AI Charger+\AIChargerPlus.dll 2012-07-26 01:40 - 2011-09-20 18:11 - 00985600 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll 2012-07-26 01:41 - 2012-03-01 14:20 - 01296384 _____ () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll 2012-07-26 01:41 - 2012-02-09 17:09 - 01118208 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\Network iControl.dll 2012-07-26 01:40 - 2012-02-13 09:53 - 00883712 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll 2012-07-26 01:40 - 2011-09-26 18:37 - 01616384 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll 2012-07-26 01:40 - 2011-09-19 20:18 - 01243136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll 2012-07-26 01:40 - 2011-07-21 09:06 - 00846848 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll 2012-07-26 01:40 - 2011-10-14 20:03 - 00885248 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll 2012-07-26 01:42 - 2011-06-08 11:15 - 00651264 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Thermal Radar\ThermalRadar.dll 2012-07-26 01:39 - 2010-08-23 10:17 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll 2012-07-26 01:40 - 2010-10-05 08:22 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll 2012-07-26 01:43 - 2012-01-19 09:39 - 00028672 _____ () C:\Program Files (x86)\ASUS\AI Suite II\USB BIOS Flashback\PEInfo.dll 2012-07-26 01:41 - 2012-03-14 10:12 - 00150016 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\gep.dll 2012-07-26 01:40 - 2009-08-12 20:15 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll 2013-08-07 09:09 - 2016-08-29 15:51 - 00033280 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.18\PEbiosinterface32.dll 2012-07-26 01:39 - 2010-06-29 10:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.18\ATKEX.dll 2012-07-26 01:41 - 2012-02-02 15:12 - 00786432 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\func.dll 2012-07-26 01:41 - 2010-10-05 08:22 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\pngio.dll 2016-06-30 07:06 - 2016-06-30 07:06 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2012-07-26 01:42 - 2012-02-07 17:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2010-01-30 02:41 - 2010-01-30 02:41 - 04254560 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2016-08-08 22:50 - 2016-08-03 02:24 - 01771336 _____ () C:\Users\Komputer\AppData\Local\Google\Chrome\Application\52.0.2743.116\libglesv2.dll 2016-08-08 22:50 - 2016-08-03 02:23 - 00094024 _____ () C:\Users\Komputer\AppData\Local\Google\Chrome\Application\52.0.2743.116\libegl.dll 2016-08-08 22:50 - 2016-08-03 01:54 - 17602240 _____ () C:\Users\Komputer\AppData\Local\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2016-03-21 00:44 - 00000855 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Komputer\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 217.172.224.160 - 89.231.1.206 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" MSCONFIG\startupreg: BCSSync => "D:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: ControlCenter3 => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun MSCONFIG\startupreg: DAEMON Tools Lite => "D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: iTunesHelper => "D:\Program Files (x86)\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{2E6F76A8-FF58-48EA-B331-D935ECB154D0}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe FirewallRules: [{B95851EE-8464-4997-BF6C-1379EA59D092}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe FirewallRules: [{E0210FB1-B71D-48D5-BEAB-7A0D1D8C398A}] => (Allow) C:\Program Files (x86)\Opera\opera.exe FirewallRules: [{34F6B350-F096-459A-AEAE-6E0E912A5433}] => (Allow) C:\Program Files (x86)\Opera\opera.exe FirewallRules: [{BBB5E458-CEA1-4EA6-86E1-DBF55A77357D}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe FirewallRules: [{8E5438E4-11FD-45B5-BC05-B21FFF305A0C}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe FirewallRules: [TCP Query User{99DEDF29-8817-41BD-97E8-E59174418D51}D:\program files (x86)\gadu-gadu 10\gg.exe] => (Allow) D:\program files (x86)\gadu-gadu 10\gg.exe FirewallRules: [UDP Query User{B6DA99B5-54A5-4F37-9359-C6AE39BE69E1}D:\program files (x86)\gadu-gadu 10\gg.exe] => (Allow) D:\program files (x86)\gadu-gadu 10\gg.exe FirewallRules: [TCP Query User{B0BA0FB3-267F-4965-A913-1A852261FEAD}F:\program files\gadu-gadu 10\gg.exe] => (Allow) F:\program files\gadu-gadu 10\gg.exe FirewallRules: [UDP Query User{72A53749-BC19-4DF4-B833-24065FA05C4F}F:\program files\gadu-gadu 10\gg.exe] => (Allow) F:\program files\gadu-gadu 10\gg.exe FirewallRules: [{D28C5CC0-0E69-4C39-AC73-02032765D700}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{23D1D0BD-1980-47A2-9F55-F1B697F1197A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{89450A25-C34E-484D-AD5B-A9B155E96FDB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{FBDAFD3C-58CE-4F01-BF81-CAB61725EBA4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{7F8E41CA-DF5D-464D-9EA3-BBB598A40F96}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{70E2535F-95EF-4EE3-83AA-CCB066E2FBEE}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{59F022EA-CE5C-4515-9FDC-EF6334C644FA}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{02952775-665A-4D27-9501-8558B75D67C9}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [TCP Query User{A8DC8D20-3877-474E-AC98-4693ED5939D5}C:\users\komputer\appdata\local\temp\3ef6.tmp\kmservice.exe] => (Allow) C:\users\komputer\appdata\local\temp\3ef6.tmp\kmservice.exe FirewallRules: [UDP Query User{34CAE5B8-BEF6-4420-9C4D-636E47F3F385}C:\users\komputer\appdata\local\temp\3ef6.tmp\kmservice.exe] => (Allow) C:\users\komputer\appdata\local\temp\3ef6.tmp\kmservice.exe FirewallRules: [{06D4FFE2-3B1E-4E2F-84F8-72B0AD84390F}] => (Block) C:\users\komputer\appdata\local\temp\3ef6.tmp\kmservice.exe FirewallRules: [{1F94118A-2C99-4ACB-AA41-7BA3F3CB0554}] => (Block) C:\users\komputer\appdata\local\temp\3ef6.tmp\kmservice.exe FirewallRules: [TCP Query User{7D19D401-A5B1-4E5E-A09A-CEE253F33FAA}D:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe] => (Block) D:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe FirewallRules: [UDP Query User{F8DDBA11-379B-4860-BB97-444EDC37B342}D:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe] => (Block) D:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe FirewallRules: [TCP Query User{7A1F0A63-64B3-48BB-B7DE-13A56BB8B4D5}D:\Program Files\BFP4f.exe] => (Allow) D:\Program Files\BFP4f.exe FirewallRules: [UDP Query User{DF727069-CC6A-4D29-8516-C10378F13F43}D:\Program Files\BFP4f.exe] => (Allow) D:\Program Files\BFP4f.exe FirewallRules: [{D83EC3AD-ADCC-41D2-BB2B-A1DD0759F367}] => (Block) D:\Program Files\BFP4f.exe FirewallRules: [{56FF9FC8-ACDF-4039-9825-54EE4C9E01AB}] => (Block) D:\Program Files\BFP4f.exe FirewallRules: [TCP Query User{CBB06763-D69D-412C-B3B2-3DE3D8080015}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe] => (Allow) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe FirewallRules: [UDP Query User{8881B4B6-DA10-4BC9-AAF9-F3CFEEA591F4}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe] => (Allow) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe FirewallRules: [{39B6E746-0DD2-4D7C-9671-7DDA13AFD0D0}] => (Block) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe FirewallRules: [{149E5B68-7120-4D6F-AF52-0643DD2EEAEC}] => (Block) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe FirewallRules: [TCP Query User{28AFF6CD-07F9-4C3B-BA75-76C2BED4C886}C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\packet tracer 5.2\bin\packettracer5.exe] => (Allow) C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\packet tracer 5.2\bin\packettracer5.exe FirewallRules: [UDP Query User{AC078BF1-24E4-4033-816C-067CB4A788F1}C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\packet tracer 5.2\bin\packettracer5.exe] => (Allow) C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\packet tracer 5.2\bin\packettracer5.exe FirewallRules: [{51DE39CA-E64F-470C-932C-9BBDD863E0D1}] => (Block) C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\packet tracer 5.2\bin\packettracer5.exe FirewallRules: [{04C7EA82-D8BD-4BF1-A890-D5B83F48339C}] => (Block) C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\packet tracer 5.2\bin\packettracer5.exe FirewallRules: [TCP Query User{BE83FA86-FF08-4E85-B24A-06AAD9AB8731}C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\cisco packet tracer 5.3.1\bin\packettracer5.exe] => (Allow) C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\cisco packet tracer 5.3.1\bin\packettracer5.exe FirewallRules: [UDP Query User{46956A1D-DC15-41D3-9D6F-6B1E04D0B6A3}C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\cisco packet tracer 5.3.1\bin\packettracer5.exe] => (Allow) C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\cisco packet tracer 5.3.1\bin\packettracer5.exe FirewallRules: [{8003AA28-0805-48C8-BACA-D47D0C2FADF1}] => (Block) C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\cisco packet tracer 5.3.1\bin\packettracer5.exe FirewallRules: [{826516C8-0F08-4A64-969B-056DDDD2484F}] => (Block) C:\users\komputer\appdata\local\temp\virtual\stubexe\8.0.1135\@programfiles@\cisco packet tracer 5.3.1\bin\packettracer5.exe FirewallRules: [TCP Query User{DC57E0DD-569E-4872-BAE6-648B3CA4FFCB}C:\users\komputer\appdata\local\temp\3229.tmp\kmservice.exe] => (Allow) C:\users\komputer\appdata\local\temp\3229.tmp\kmservice.exe FirewallRules: [UDP Query User{6E6866B6-8419-4E65-8A05-DCD28638AB1C}C:\users\komputer\appdata\local\temp\3229.tmp\kmservice.exe] => (Allow) C:\users\komputer\appdata\local\temp\3229.tmp\kmservice.exe FirewallRules: [{63D024FD-4DE0-43BC-9376-F97F7FF2D739}] => (Block) C:\users\komputer\appdata\local\temp\3229.tmp\kmservice.exe FirewallRules: [{7CF26B9A-E5C5-495B-ACB8-CAF9D190D729}] => (Block) C:\users\komputer\appdata\local\temp\3229.tmp\kmservice.exe FirewallRules: [{FCE50E99-7119-45C9-AE4F-CCFF99A320B2}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{DDF299AD-988C-46B0-8424-40B507BAC815}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe FirewallRules: [TCP Query User{7CEE8E9D-7CC0-4BDA-BE2A-422F9A3A92A1}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe FirewallRules: [UDP Query User{F1DEB1A9-27C4-41BB-9B1A-2BAD15A1F155}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe FirewallRules: [{33DECAB1-A0DA-45E2-8005-5B82E6889E46}] => (Block) C:\program files (x86)\java\jre7\bin\java.exe FirewallRules: [{1FBF3D4D-3BF1-4D57-B762-34DE76790159}] => (Block) C:\program files (x86)\java\jre7\bin\java.exe FirewallRules: [{488F5F5B-5EF3-4574-883C-F5EC23CC8614}] => (Allow) D:\Program Files\Ventrilo\Ventrilo.exe FirewallRules: [{C495EE7D-66A0-4FB9-8B7F-BCCA1CD3DD4F}] => (Allow) D:\Program Files\Ventrilo\Ventrilo.exe FirewallRules: [{1CC08276-05D8-4FB7-B377-6DAE14FA8823}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{5CDD3F7A-7510-4420-BB80-A5AAA50C1FC6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{97E5165A-19BF-46C7-B0CA-8388E62BE6D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{AF249B8A-BEEB-4571-A849-51B5BC9BB2D4}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe FirewallRules: [{7023B76E-F3C7-4607-B86D-C62F59F63138}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe FirewallRules: [{549A59C1-F2DD-41D4-BBD5-385DA7AAF33A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{63D29399-8816-4B2E-AEF1-F6E7005437C6}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{E4AA900C-0CC0-4448-898D-4033CC3A91B4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{1AB78E99-2F6C-4EFE-92F5-3E9AC6D52989}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [TCP Query User{D7CB9D49-BBF9-4DE6-A990-6C5476009F45}D:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) D:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{313E9046-EDE1-4B7D-A0C8-B71C5880434E}D:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) D:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{6FF98A92-4A7C-4C91-9D9A-6501F81D8863}] => (Block) D:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{59B720FF-7EF6-49EC-9D1F-176ECF646EC6}] => (Block) D:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{1C05D349-BECC-4D32-9605-1B24A3812ABC}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe FirewallRules: [{C012518E-609F-4862-8C8B-7C86962BE9EB}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe FirewallRules: [{0D4F7F71-78B8-494A-8837-B36A13A5365F}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe FirewallRules: [{08462701-EED0-4A98-926F-27AC2E4E34F3}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe FirewallRules: [{ABC1F04B-A22B-49B0-B377-90A43C82F565}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{A2C5ECDF-4E99-406F-B49A-6BA236773D3F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{4029ED23-6ED0-4B01-91B3-DC176BA10469}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{700A4DD8-0970-41CB-83F8-91D6C1685039}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{592F4076-401B-4713-A128-AF6346AE6479}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{36D806C8-524D-46C8-8EBF-54F61ED700F0}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{958715C2-A17E-464D-B2C8-8B4940FFE3B2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{F27E743C-844D-4D3B-A0CE-46BBD47049CA}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{C7F009ED-443B-439A-980C-2A819D633FB1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{FD3C2527-D059-4F23-81B6-7802845C0F44}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{D1BACA1E-D976-49B2-937E-D00791CED08E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{F7FA437C-C1C9-4AF0-9DD9-34EE343BBDD6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{BF2D12AE-F083-4406-82FC-100B818E87C1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{802FF7CE-7315-4312-A9C1-BBCF55A28FF6}C:\users\komputer\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\komputer\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe FirewallRules: [UDP Query User{35BCDB6A-E81A-4A1C-8E3A-AFF3CD8DCD79}C:\users\komputer\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\komputer\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe FirewallRules: [{A6AA9E68-1584-4BB4-810A-F2588A664786}] => (Block) C:\users\komputer\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe FirewallRules: [{E3F39E6F-1E6A-4F7A-A289-CB74F9AE7411}] => (Block) C:\users\komputer\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe FirewallRules: [TCP Query User{8A2D4176-05D6-4E07-9E54-A8D1C4B4054E}D:\wamp\bin\apache\apache2.4.9\bin\httpd.exe] => (Allow) D:\wamp\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [UDP Query User{96BC6747-71D3-4BF2-906C-22F3B02BEAEE}D:\wamp\bin\apache\apache2.4.9\bin\httpd.exe] => (Allow) D:\wamp\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [{3D10A300-321F-49E7-92F7-D4FDB000461D}] => (Block) D:\wamp\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [{5E8CB442-E66F-4428-B9F0-23E0207C0E52}] => (Block) D:\wamp\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [{84361D6B-7847-4316-9094-005D8FD748BC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{9F48D285-CEF8-4F0A-9D60-778EEC6415C4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{5610B730-1482-45DD-ABD5-5532895DE6DA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{8BE9A203-1473-42AF-898B-663A5D433BB7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{E4593E01-DC0A-42D2-A258-25C07764B867}] => (Allow) C:\Program Files\iTunes\iTunes.exe ==================== Restore Points ========================= 11-07-2016 11:51:32 Scheduled Checkpoint 29-08-2016 18:27:55 Removed Crysis® 2 ==================== Faulty Device Manager Devices ============= Name: Kontroler Uniwersalnej magistrali szeregowej (USB) Description: Kontroler Uniwersalnej magistrali szeregowej (USB) Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (08/29/2016 03:53:00 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/29/2016 01:59:57 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/29/2016 09:53:06 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/28/2016 07:30:51 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/28/2016 04:21:42 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: IEXPLORE.EXE, wersja: 11.0.9600.16428, sygnatura czasowa: 0x525b664c Nazwa modułu powodującego błąd: MSHTML.dll, wersja: 11.0.9600.16428, sygnatura czasowa: 0x525b9a19 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x002e8ff5 Identyfikator procesu powodującego błąd: 0x1130 Godzina uruchomienia aplikacji powodującej błąd: 0x01d2013777b93fd9 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Ścieżka modułu powodującego błąd: C:\Windows\system32\MSHTML.dll Identyfikator raportu: bd9af4b6-6d2a-11e6-bc22-c86000a37a90 Error: (08/28/2016 04:21:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: IEXPLORE.EXE, wersja: 11.0.9600.16428, sygnatura czasowa: 0x525b664c Nazwa modułu powodującego błąd: MSHTML.dll, wersja: 11.0.9600.16428, sygnatura czasowa: 0x525b9a19 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x002e8ff5 Identyfikator procesu powodującego błąd: 0x2b0 Godzina uruchomienia aplikacji powodującej błąd: 0x01d20135bc1dee23 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Ścieżka modułu powodującego błąd: C:\Windows\system32\MSHTML.dll Identyfikator raportu: b32e0a82-6d2a-11e6-bc22-c86000a37a90 Error: (08/28/2016 04:02:36 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. Error: (08/28/2016 12:51:47 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: IEXPLORE.EXE, wersja: 11.0.9600.16428, sygnatura czasowa: 0x525b664c Nazwa modułu powodującego błąd: MSHTML.dll, wersja: 11.0.9600.16428, sygnatura czasowa: 0x525b9a19 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x002e8ff5 Identyfikator procesu powodującego błąd: 0x13e8 Godzina uruchomienia aplikacji powodującej błąd: 0x01d2011a2a2a2001 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Ścieżka modułu powodującego błąd: C:\Windows\system32\MSHTML.dll Identyfikator raportu: 6a34b099-6d0d-11e6-9d15-c86000a37a90 Error: (08/28/2016 12:51:40 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: IEXPLORE.EXE, wersja: 11.0.9600.16428, sygnatura czasowa: 0x525b664c Nazwa modułu powodującego błąd: MSHTML.dll, wersja: 11.0.9600.16428, sygnatura czasowa: 0x525b9a19 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x002e8ff5 Identyfikator procesu powodującego błąd: 0x1a64 Godzina uruchomienia aplikacji powodującej błąd: 0x01d2011a231f322a Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Ścieżka modułu powodującego błąd: C:\Windows\system32\MSHTML.dll Identyfikator raportu: 6630a57c-6d0d-11e6-9d15-c86000a37a90 Error: (08/28/2016 12:51:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nazwa aplikacji powodującej błąd: IEXPLORE.EXE, wersja: 11.0.9600.16428, sygnatura czasowa: 0x525b664c Nazwa modułu powodującego błąd: MSHTML.dll, wersja: 11.0.9600.16428, sygnatura czasowa: 0x525b9a19 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x002e8ff5 Identyfikator procesu powodującego błąd: 0x17e4 Godzina uruchomienia aplikacji powodującej błąd: 0x01d20119df303795 Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Ścieżka modułu powodującego błąd: C:\Windows\system32\MSHTML.dll Identyfikator raportu: 5f4f1230-6d0d-11e6-9d15-c86000a37a90 System errors: ============= Error: (08/29/2016 03:51:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Apple Mobile Device Service z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (08/29/2016 03:51:58 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Apple Mobile Device Service. Error: (08/26/2016 09:55:57 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Usługa Windows Update zakończyła działanie; wystąpił następujący błąd: Klasa jest skonfigurowana do pracy jako identyfikator bezpieczeństwa inny niż wywołujący. Error: (08/26/2016 09:55:54 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Windows Defender z powodu następującego błędu: Usługa nie została uruchomiona z powodu nieudanego logowania. Error: (08/26/2016 09:55:54 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa WinDefend nie może zalogować się jako NT AUTHORITY\SYSTEM za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: Żądanie nie jest obsługiwane. Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (08/26/2016 09:55:54 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Software Protection z powodu następującego błędu: Usługa nie została uruchomiona z powodu nieudanego logowania. Error: (08/26/2016 09:55:54 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Usługa sppsvc nie może zalogować się jako NT AUTHORITY\NetworkService za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: Żądanie nie jest obsługiwane. Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error: (08/26/2016 08:16:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Apple Mobile Device Service z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. Error: (08/26/2016 08:16:09 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się z usługą Apple Mobile Device Service. Error: (08/24/2016 08:54:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Nie można uruchomić usługi Apple Mobile Device Service z powodu następującego błędu: Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie. CodeIntegrity: =================================== Date: 2016-08-29 15:54:01.471 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-29 15:51:03.744 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-29 15:51:03.526 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-29 14:01:36.609 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-29 13:58:01.760 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-29 13:58:01.542 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-29 09:54:36.767 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-29 09:51:40.776 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswKbd.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-29 09:51:40.604 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSnx.sys because the set of per-page image hashes could not be found on the system. Date: 2016-08-28 19:32:06.614 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz Percentage of memory in use: 67% Total physical RAM: 8142.52 MB Available physical RAM: 2613.47 MB Total Virtual: 16283.21 MB Available Virtual: 9902.73 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:100.05 GB) (Free:35.57 GB) NTFS Drive d: () (Fixed) (Total:415.68 GB) (Free:251.14 GB) NTFS Drive e: () (Fixed) (Total:415.68 GB) (Free:303.44 GB) NTFS Drive f: () (Fixed) (Total:232.88 GB) (Free:153.9 GB) NTFS Drive g: () (Fixed) (Total:232.88 GB) (Free:150.49 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: F5FA3D43) Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 8630807C) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=100 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=415.7 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=415.7 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================
Twój_Anioł_Stróż komentarz 29 sierpnia 2016 komentarz 29 sierpnia 2016 W logach nie ma niczego podejrzanego. Kosmetyka: Otwórz Notatnik i wklej w nim: CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-1517021387-1231592511-3441685361-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Komputer\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File S3 ALSysIO; \??\C:\Users\Komputer\AppData\Local\Temp\ALSysIO64.sys [X] S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X] S3 MSICDSetup; \??\F:\CDriver64.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] CHR Plugin: (Native Client) - C:\Users\Komputer\AppData\Local\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File FF Plugin-x32: @esn/esnlaunch,version=1.132.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll [No File] FF Plugin-x32: @esn/esnlaunch,version=1.140.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.140.0\npesnlaunch.dll [No File] FF Plugin-x32: @esn/esnlaunch,version=2.1.4 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll [No File] FF Plugin-x32: @esn/npbattlelog,version=2.3.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll [No File] FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll [No File] Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File HKU\S-1-5-21-1517021387-1231592511-3441685361-1000\...\Run: [AdobeBridge] => [X] EmptyTemp: Plik zapisz pod nazwą fixlist.txt i umieść obok FRST.exe Uruchom FRST i kliknij przycisk Fix (NAPRAW). . 1
Twój_Anioł_Stróż komentarz 29 sierpnia 2016 komentarz 29 sierpnia 2016 spróbuj ręcznie pousuwać te pliki "readme". . 1
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.