Po odpaleniu kompa wlacza sie jakas strona...

[Umpik]

Witam was.

Problem polega na tym ze jak wlacze kompa automatycznie wlacza sie jakas strona i nie wiem jak ja wylaczyc.

 

Strona: gmaesdoc.org

 

Przegladarka firefox, innej nie mam wiec nie wiem jak by bylo z innymi.

Oprogramowanie antyvirusowe oczywiscie mam.

[Swifty]

Zobacz dodatki czy rozszerzenia

 

I przeskanuj kompa czymś na robaki,ew. masz coś może zainstalowanego.

[Ghost1225]

Przeskanuj komputer adwcleaner i usuń co znajdzie.

[Umpik]

Przeskanuj komputer adwcleaner i usuń co znajdzie.

Bylo kasowane wszystko co znajdzie, i tak nadal jest to samo.

[Gruby1230]

Zrób formata dysku, powinno pomóc

[Arkzyw]

Wykonaj logi FRST http://www.mpcforum.pl/topic/1364875-logi/ zobaczymy co tam siedzi.

[MoVinek]

Zawsze to samo: "format". OMG 

Lecisz z jakimiś podstawowymi czynnościami czyszczącymi, potem to co najbardziej prawdopodobne czyli po prostu sprawdzasz rozszerzenia i aplikacje firefoxa. No i jak wyżej Pan napisał logi podaj. Później dopiero można kminić.

[Umpik]

Zrób formata dysku, powinno pomóc

Format byl robiony z 3 dni wczesniej zanim to sie pokazywalo ale sprawdze te logi i wkleje

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-04-2015 01

Ran by Mały at 2015-04-28 22:24:11

Running from E:\programy z neta

Boot Mode: Normal

==========================================================

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-1000608329-685684229-3619510535-500 - Administrator - Disabled)

Gość (S-1-5-21-1000608329-685684229-3619510535-501 - Limited - Disabled)

Mały (S-1-5-21-1000608329-685684229-3619510535-1000 - Administrator - Enabled) => C:\Users\Mały

 

==================== Security Center ========================

 

(If an entry is included in the fixlist, it will be removed.)

 

AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

 

==================== Installed Programs ======================

 

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.0 - )

Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.134 - Adobe Systems Incorporated)

Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)

Adobe Reader 9.4.0 - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-A94000000001}) (Version: 9.4.0 - Adobe Systems Incorporated)

Aktualizacje NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden

ALLPlayer V6.X (HKLM-x32\...\ALLPlayer_is1) (Version: - ALLPlayer Group, Ltd.)

Aslain's XVM Mod wersja 4.2.48 (HKLM-x32\...\ZRwTINhSZfduKONYrSCTiCiGPggQZdcLRvoAVxyCOXXpkHeC~1DC3968F_is1) (Version: 4.2.48 - Aslain)

ASUS nVidia Driver (x32 Version: 1.00.0000 - ASUSTek) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)

DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)

ESET NOD32 Antivirus (HKLM\...\{4B14EC50-70A2-4973-BE68-50E546653134}) (Version: 8.0.312.4 - ESET, spol s r. o.)

Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)

Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)

Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Mozilla Firefox 37.0.2 (x86 pl) (HKU\S-1-5-21-1000608329-685684229-3619510535-1000\...\Mozilla Firefox 37.0.2 (x86 pl)) (Version: 37.0.2 - Mozilla)

NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5944 - NVIDIA Corporation)

NVIDIA Oprogramowanie systemu PhysX 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)

NVIDIA Sterownik 3D Vision 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation)

NVIDIA Sterownik dźwięku HD 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)

NVIDIA Sterownik graficzny 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)

NVIDIA Sterownik kontrolera 3D Vision 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation)

Origin (HKLM-x32\...\Origin) (Version: 9.4.11.2806 - Electronic Arts, Inc.)

Panel sterowania NVIDIA 350.12 (Version: 350.12 - NVIDIA Corporation) Hidden

Polski pakiet językowy dla programu Microsoft .NET Framework 4.5 PLK (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50709 - Microsoft Corporation)

Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6069 - Realtek Semiconductor Corp.)

The Evil Within (HKLM-x32\...\The Evil Within_is1) (Version: 1.03 - Релиз от R.G. Steamgames)

The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.5.149.1020 - Electronic Arts Inc.)

Unity Web Player (HKU\S-1-5-21-1000608329-685684229-3619510535-1000\...\UnityWebPlayer) (Version: 4.6.4f1 - Unity Technologies ApS)

WinRAR 4.20 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

World of Tanks (HKU\S-1-5-21-1000608329-685684229-3619510535-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)

 

==================== Custom CLSID (selected items): ==========================

 

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

 

CustomCLSID: HKU\S-1-5-21-1000608329-685684229-3619510535-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\Mały\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll No File

 

==================== Restore Points =========================

 

27-04-2015 14:14:28 Zaplanowany punkt kontrolny

 

==================== Scheduled Tasks (whitelisted) =============

 

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

 

Task: {2BB87959-9106-4461-9818-4FF60666E47F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)

Task: {61F7D29E-95A0-4545-99DA-E4D33F4CEA47} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1000608329-685684229-3619510535-1000

Task: {645A34EA-F7F1-4622-A3E1-25A9F46DE15B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-27] (Adobe Systems Incorporated)

Task: {8191CE70-A3E3-4D66-995E-2E8F872FF056} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2009-07-14] (Microsoft Corporation)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

 

==================== Loaded Modules (whitelisted) ==============

 

2015-03-25 00:57 - 2015-04-08 23:30 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll

2015-04-10 14:35 - 2015-04-16 02:09 - 00044544 _____ () D:\Games\World_of_Tanks\voip.dll

2015-04-10 14:35 - 2015-02-05 16:49 - 00323568 _____ () D:\Games\World_of_Tanks\ortp.dll

 

==================== Safe Mode (whitelisted) ===================

 

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

 

 

==================== EXE Association (whitelisted) ===============

 

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

 

 

==================== Internet Explorer trusted/restricted ===============

 

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

 

 

==================== Other Areas ============================

 

(Currently there is no automatic fix for this section.)

 

HKU\S-1-5-21-1000608329-685684229-3619510535-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Mały\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 192.168.1.1

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

(Currently there is no automatic fix for this section.)

 

 

==================== FirewallRules (whitelisted) ===============

 

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

 

FirewallRules: [TCP Query User{294619E0-AAB6-40AC-BB7A-C98234E2BBA8}E:\program files (x86)\mozilla firefox\firefox.exe] => (Block) E:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [uDP Query User{4519D552-1C5D-417E-A587-FBF35EA0B9BC}E:\program files (x86)\mozilla firefox\firefox.exe] => (Block) E:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [{286BF7AF-AD5F-483C-B8F2-1313576A5ED1}] => (Allow) e:\Program Files (x86)\uTorrent\uTorrent.exe

FirewallRules: [{D7931816-023E-4840-AFFE-706ACF4A0BBE}] => (Allow) e:\Program Files (x86)\uTorrent\uTorrent.exe

FirewallRules: [TCP Query User{6DF7B547-50C9-43B4-820C-D861CA96BD38}E:\program files (x86)\winamp\winamp.exe] => (Block) E:\program files (x86)\winamp\winamp.exe

FirewallRules: [uDP Query User{C7B96A17-0372-4281-95B7-593DE6C9BA4C}E:\program files (x86)\winamp\winamp.exe] => (Block) E:\program files (x86)\winamp\winamp.exe

FirewallRules: [TCP Query User{D1487FCD-A219-49AF-9920-5C7D7109EEEF}E:\programy z neta\karies.pl ver.1.0.1\karies.exe] => (Block) E:\programy z neta\karies.pl ver.1.0.1\karies.exe

FirewallRules: [uDP Query User{9BB0297F-AF8F-4FB0-BD48-A57AB60C52B3}E:\programy z neta\karies.pl ver.1.0.1\karies.exe] => (Block) E:\programy z neta\karies.pl ver.1.0.1\karies.exe

FirewallRules: [{EBBA258C-4053-45D3-A405-0795959DEA02}] => (Allow) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

FirewallRules: [TCP Query User{0E056BC3-148B-431D-82B0-7B285F47D178}E:\programy z neta\karies z wh\karies.exe] => (Block) E:\programy z neta\karies z wh\karies.exe

FirewallRules: [uDP Query User{D64E72B6-4BB0-43F8-BA93-471222DD7F0F}E:\programy z neta\karies z wh\karies.exe] => (Block) E:\programy z neta\karies z wh\karies.exe

FirewallRules: [TCP Query User{FE72F9DE-24C3-497F-B0BF-C68D12FF8017}E:\programy z neta\karies z wh\karies.pl ver.1.0.1\karies.exe] => (Block) E:\programy z neta\karies z wh\karies.pl ver.1.0.1\karies.exe

FirewallRules: [uDP Query User{9A3C0831-8517-4914-B06D-E9C05ECC4180}E:\programy z neta\karies z wh\karies.pl ver.1.0.1\karies.exe] => (Block) E:\programy z neta\karies z wh\karies.pl ver.1.0.1\karies.exe

FirewallRules: [TCP Query User{A54E021B-D36E-4515-B92F-EFB75F72B9DA}D:\program files (x86)\cs\counter-strike global offensive\csgo.exe] => (Block) D:\program files (x86)\cs\counter-strike global offensive\csgo.exe

FirewallRules: [uDP Query User{B17B6ED2-7F7B-4362-AED8-4B08DAD3D2D7}D:\program files (x86)\cs\counter-strike global offensive\csgo.exe] => (Block) D:\program files (x86)\cs\counter-strike global offensive\csgo.exe

FirewallRules: [TCP Query User{A87B630E-341B-48FF-9F9D-99E73DA9510C}E:\programy z neta\karies.pl ver.1.0.1\karies mod.exe] => (Block) E:\programy z neta\karies.pl ver.1.0.1\karies mod.exe

FirewallRules: [uDP Query User{9BF3663B-CF7F-4A65-9748-512E551BFCFB}E:\programy z neta\karies.pl ver.1.0.1\karies mod.exe] => (Block) E:\programy z neta\karies.pl ver.1.0.1\karies mod.exe

FirewallRules: [TCP Query User{A9C7645D-7B05-4052-AB88-57AC75A346C5}E:\programy z neta\karies z wh\karies.pl ver.1.0.1\karies mod.exe] => (Block) E:\programy z neta\karies z wh\karies.pl ver.1.0.1\karies mod.exe

FirewallRules: [uDP Query User{1A2B3ACE-05B3-4E2A-A4B1-1DC1E3EC0C3B}E:\programy z neta\karies z wh\karies.pl ver.1.0.1\karies mod.exe] => (Block) E:\programy z neta\karies z wh\karies.pl ver.1.0.1\karies mod.exe

FirewallRules: [TCP Query User{9235FAE3-B74D-4848-9B46-AC492FA17DB4}E:\programy z neta\tesoria.pl-oficjalny\tesoria.pl.exe] => (Block) E:\programy z neta\tesoria.pl-oficjalny\tesoria.pl.exe

FirewallRules: [uDP Query User{91AE7784-BB6E-43C6-AB99-11A84EDAFB7E}E:\programy z neta\tesoria.pl-oficjalny\tesoria.pl.exe] => (Block) E:\programy z neta\tesoria.pl-oficjalny\tesoria.pl.exe

FirewallRules: [TCP Query User{F3BBC671-D233-43A1-98DB-171E48F0D1D1}D:\games\world_of_tanks\wotlauncher.exe] => (Block) D:\games\world_of_tanks\wotlauncher.exe

FirewallRules: [uDP Query User{99A67935-35D7-4566-B693-67E061B9B35E}D:\games\world_of_tanks\wotlauncher.exe] => (Block) D:\games\world_of_tanks\wotlauncher.exe

FirewallRules: [TCP Query User{309F0484-0935-4317-8967-55490476CE54}D:\games\world_of_tanks\worldoftanks.exe] => (Block) D:\games\world_of_tanks\worldoftanks.exe

FirewallRules: [uDP Query User{D3320E74-306D-4C48-A8D5-8BDC40FA196D}D:\games\world_of_tanks\worldoftanks.exe] => (Block) D:\games\world_of_tanks\worldoftanks.exe

FirewallRules: [TCP Query User{3C85A405-806B-4C0F-8AA5-F7C6C5A3C71F}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Block) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe

FirewallRules: [uDP Query User{AF3C387D-647F-43FD-80F7-FFFCA6483EF4}C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe] => (Block) C:\program files (x86)\allplayer remote\allplayerremotecontrol.exe

FirewallRules: [{B8C376C8-9AA3-4AF4-BDF2-9DE5AC4B122D}] => (Allow) D:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe

FirewallRules: [{DC676DD9-5314-4DD3-81F0-A3ED60E7E29D}] => (Allow) D:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe

FirewallRules: [{1250CC56-03B5-4B8B-841B-1B853327AD73}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe

FirewallRules: [{71A079F6-38C2-4A02-8941-A14680C97EE4}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe

FirewallRules: [{DC15902C-F4A8-47D5-A76C-D8878F616DC1}] => (Allow) E:\Program Files (x86)\Steam\bin\steamwebhelper.exe

FirewallRules: [{F0D27E1B-80AD-446B-A1FE-C6610D42EB15}] => (Allow) E:\Program Files (x86)\Steam\bin\steamwebhelper.exe

FirewallRules: [TCP Query User{E0863419-31FA-491E-AB5D-EF53579459AE}D:\program files (x86)\gta\grand theft auto v\gta5.exe] => (Block) D:\program files (x86)\gta\grand theft auto v\gta5.exe

FirewallRules: [uDP Query User{24F01BF7-F3EA-485F-A15D-A609DEC2BCB6}D:\program files (x86)\gta\grand theft auto v\gta5.exe] => (Block) D:\program files (x86)\gta\grand theft auto v\gta5.exe

 

==================== Faulty Device Manager Devices =============

 

Name: Kontroler PCI Simple Communications

Description: Kontroler PCI Simple Communications

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (04/28/2015 04:38:39 PM) (Source: SideBySide) (EventID: 33) (User: )

Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="*",publicKeyToken="436865772d574741",type="win32",version="6.0.0.0"1".

Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="*",publicKeyToken="436865772d574741",type="win32",version="6.0.0.0".

Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę.

 

Error: (04/28/2015 00:50:57 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000.

 

Error: (04/28/2015 00:50:57 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu:

0x800401F9

 

Error: (04/27/2015 10:53:53 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000.

 

Error: (04/27/2015 10:53:53 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu:

0x800401F9

 

Error: (04/27/2015 01:21:30 PM) (Source: SideBySide) (EventID: 33) (User: )

Description: Nie można wygenerować kontekstu aktywacji dla "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="*",publicKeyToken="436865772d574741",type="win32",version="6.0.0.0"1".

Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="*",publicKeyToken="436865772d574741",type="win32",version="6.0.0.0".

Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę.

 

Error: (04/27/2015 00:44:31 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000.

 

Error: (04/27/2015 00:44:31 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu:

0x800401F9

 

Error: (04/26/2015 10:10:45 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000.

 

Error: (04/26/2015 10:10:45 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: Wystąpił błąd aktywacji licencji (slui.exe), kod błędu:

0x800401F9

 

 

System errors:

=============

Error: (04/28/2015 07:02:07 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)

Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

 

Error: (04/28/2015 06:29:48 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)

Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

 

Error: (04/28/2015 06:02:21 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)

Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

 

Error: (04/28/2015 06:02:21 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)

Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

 

Error: (04/28/2015 05:11:03 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)

Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

 

Error: (04/28/2015 02:42:01 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)

Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

 

Error: (04/28/2015 02:42:01 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)

Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

 

Error: (04/28/2015 00:51:14 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)

Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

 

Error: (04/28/2015 00:51:04 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)

Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

 

Error: (04/28/2015 00:50:59 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)

Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

 

 

Microsoft Office Sessions:

=========================

Error: (04/28/2015 04:38:39 PM) (Source: SideBySide) (EventID: 33) (User: )

Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="*",publicKeyToken="436865772d574741",type="win32",version="6.0.0.0"C:\Windows\System32\systemcpl.dll

 

Error: (04/28/2015 00:50:57 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: 0x000000000x00000001

 

Error: (04/28/2015 00:50:57 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: 0x800401F9

 

Error: (04/27/2015 10:53:53 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: 0x000000000x00000001

 

Error: (04/27/2015 10:53:53 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: 0x800401F9

 

Error: (04/27/2015 01:21:30 PM) (Source: SideBySide) (EventID: 33) (User: )

Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="*",publicKeyToken="436865772d574741",type="win32",version="6.0.0.0"C:\Windows\System32\systemcpl.dll

 

Error: (04/27/2015 00:44:31 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: 0x000000000x00000001

 

Error: (04/27/2015 00:44:31 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: 0x800401F9

 

Error: (04/26/2015 10:10:45 PM) (Source: Winlogon) (EventID: 4103) (User: )

Description: 0x000000000x00000001

 

Error: (04/26/2015 10:10:45 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: 0x800401F9

 

 

CodeIntegrity Errors:

===================================

Date: 2015-04-28 22:12:26.680

Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

 

Date: 2015-04-28 18:03:44.813

Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

 

Date: 2015-04-28 17:11:12.763

Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

 

Date: 2015-04-28 14:33:03.026

Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

 

Date: 2015-04-28 12:50:55.129

Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

 

Date: 2015-04-27 23:05:23.556

Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

 

Date: 2015-04-27 22:53:50.519

Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

 

Date: 2015-04-27 21:40:09.883

Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

 

Date: 2015-04-27 17:09:40.480

Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

 

Date: 2015-04-27 13:20:09.822

Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.

 

 

==================== Memory info ===========================

 

Processor: Intel® Core i3 CPU 540 @ 3.07GHz

Percentage of memory in use: 24%

Total physical RAM: 8118.99 MB

Available physical RAM: 6156.06 MB

Total Pagefile: 16236.13 MB

Available Pagefile: 13850.1 MB

Total Virtual: 8192 MB

Available Virtual: 8191.79 MB

 

==================== Drives ================================

 

Drive c: () (Fixed) (Total:48.83 GB) (Free:21.32 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

Drive d: () (Fixed) (Total:683.59 GB) (Free:431.16 GB) NTFS

Drive e: () (Fixed) (Total:199.09 GB) (Free:31.12 GB) NTFS

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: B5E5A291)

Partition 1: (Active) - (Size=48.8 GB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=882.7 GB) - (Type=OF Extended)

 

==================== End Of Log ============================

 

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-04-2015 01

Ran by Mały (administrator) on MAŁY-KOMPUTER on 28-04-2015 22:23:41

Running from E:\programy z neta

Loaded Profiles: Mały (Available profiles: Mały)

Platform: Windows 7 Home Premium (X64) OS Language: Polski (Polska)

Internet Explorer Version 8 (Default browser: FF)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

(DT Soft Ltd) E:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(BitTorrent, Inc.) E:\Program Files (x86)\uTorrent\uTorrent.exe

(Wargaming.net) D:\Games\World_of_Tanks\WorldOfTanks.exe

 

 

==================== Registry (Whitelisted) ==================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10134560 2010-03-17] (Realtek Semiconductor)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-03-13] (NVIDIA Corporation)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2015-01-28] (ESET)

HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-09-21] (Adobe Systems Incorporated)

HKU\S-1-5-21-1000608329-685684229-3619510535-1000\...\Run: [DAEMON Tools Lite] => E:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd)

HKU\S-1-5-21-1000608329-685684229-3619510535-1000\...\Run: [EADM] => D:\Program Files (x86)\Origin\Origin.exe [3632472 2015-04-10] (Electronic Arts)

HKU\S-1-5-21-1000608329-685684229-3619510535-1000\...\Run: [ALLUpdate] => e:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [2765256 2015-01-24] (ALLPlayer Group Ltd.)

HKU\S-1-5-21-1000608329-685684229-3619510535-1000\...\Run: [CMD] => cmd.exe /c start http://zenigameblinger.org&& exit <===== ATTENTION

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22] (Adobe Systems Incorporated)

BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-15] (Oracle Corporation)

BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-15] (Oracle Corporation)

Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)

Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)

Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-14] (Microsoft Corporation)

Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-14] (Microsoft Corporation)

Hosts: Hosts file not detected in the default directory

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

 

FireFox:

========

FF ProfilePath: C:\Users\Mały\AppData\Roaming\Mozilla\Firefox\Profiles\3auh2ntu.default

FF Homepage: www.google.pl

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-24] ()

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-24] ()

FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-15] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-15] (Oracle Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)

FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)

FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)

FF Plugin HKU\S-1-5-21-1000608329-685684229-3619510535-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Mały\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-24] (Unity Technologies ApS)

FF Extension: MEGA - C:\Users\Mały\AppData\Roaming\Mozilla\Firefox\Profiles\3auh2ntu.default\Extensions\[email protected] [2015-03-26]

StartMenuInternet: FIREFOX.EXE - E:\Program Files (x86)\Mozilla Firefox\firefox.exe

 

==================== Services (Whitelisted) =================

 

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

 

R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2015-01-28] (ESET)

S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]

S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-10] (Electronic Arts)

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

 

==================== Drivers (Whitelisted) ====================

 

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

 

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2015-03-24] (DT Soft Ltd)

R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [246000 2015-02-23] (ESET)

U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241880 2015-02-23] (ESET)

R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169792 2015-02-23] (ESET)

R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [159480 2015-02-23] (ESET)

R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()

S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2015-03-13] (NVIDIA Corporation)

S3 TEAM; system32\DRIVERS\RtTeam60.sys [X]

 

==================== NetSvcs (Whitelisted) ===================

 

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

 

 

==================== One Month Created Files and Folders ========

 

(If an entry is included in the fixlist, the file\folder will be moved.)

 

2015-04-28 22:23 - 2015-04-28 22:23 - 00000000 ____D () C:\FRST

2015-04-27 22:53 - 2015-04-28 12:50 - 00000112 _____ () C:\Windows\setupact.log

2015-04-27 22:53 - 2015-04-27 22:53 - 00019812 _____ () C:\Windows\PFRO.log

2015-04-27 22:53 - 2015-04-27 22:53 - 00000000 _____ () C:\Windows\setuperr.log

2015-04-27 00:02 - 2015-04-28 22:20 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2015-04-27 00:02 - 2015-04-27 13:20 - 00000000 ____D () C:\Users\Mały\AppData\Local\Razer

2015-04-27 00:02 - 2015-04-27 00:02 - 00003868 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater

2015-04-26 23:52 - 2015-04-27 13:20 - 00000000 ____D () C:\ProgramData\Razer

2015-04-26 15:04 - 2015-04-27 17:05 - 00000000 ____D () C:\Windows\Minidump

2015-04-26 13:58 - 2015-04-26 13:59 - 00000000 ____D () C:\AdwCleaner

2015-04-23 20:46 - 2015-04-23 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET

2015-04-23 20:46 - 2015-04-23 20:46 - 00000000 ____D () C:\ProgramData\ESET

2015-04-21 15:08 - 2015-04-21 15:48 - 00000851 _____ () C:\Users\Public\Desktop\The Evil Within.lnk

2015-04-21 15:08 - 2015-04-21 15:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Evil Within

2015-04-21 13:59 - 2015-04-21 13:59 - 00000000 ____D () C:\Users\Mały\AppData\Roaming\Steam

2015-04-21 13:43 - 2015-04-21 13:43 - 00000000 ____D () C:\ProgramData\Steam

2015-04-20 13:44 - 2015-04-21 15:10 - 00000000 ____D () C:\Users\Mały\Documents\My Games

2015-04-20 13:43 - 2015-04-20 13:43 - 00000000 ____D () C:\Users\Mały\AppData\Local\SKIDROW

2015-04-19 09:46 - 2015-04-19 09:46 - 00000000 ____D () C:\Users\Mały\AppData\Local\Rockstar Games

2015-04-19 09:45 - 2015-04-20 00:14 - 00000000 ____D () C:\Program Files\Rockstar Games

2015-04-19 09:45 - 2015-04-20 00:14 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games

2015-04-18 13:53 - 2015-04-19 10:46 - 00000080 _____ () C:\Users\Mały\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦

2015-04-17 16:24 - 2015-04-17 16:24 - 00000000 ____D () C:\Users\Mały\Documents\Ghost Games

2015-04-16 11:54 - 2015-04-16 11:54 - 00000000 ____D () C:\Program Files\ESET

2015-04-15 22:58 - 2015-04-15 22:58 - 00000000 ____D () C:\Users\Mały\AppData\Local\Steam

2015-04-15 13:05 - 2015-04-08 22:32 - 00560968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe

2015-04-15 13:01 - 2015-04-09 02:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2015-04-15 13:01 - 2015-04-09 02:58 - 03317344 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 01086424 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 00927440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll

2015-04-15 13:01 - 2015-04-09 02:58 - 00029329 _____ () C:\Windows\system32\nvinfo.pb

2015-04-13 22:11 - 2015-04-13 22:11 - 00000000 ____D () C:\Users\Mały\AppData\Roaming\Unity

2015-04-13 22:01 - 2015-04-13 22:01 - 00000000 ____D () C:\Users\Mały\AppData\Local\Unity

2015-04-13 16:13 - 2015-04-13 16:13 - 00000720 _____ () C:\Users\Mały\Desktop\ALLPlayer.lnk

2015-04-13 16:13 - 2015-04-13 16:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

2015-04-13 16:13 - 2015-04-13 16:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer

2015-04-13 16:13 - 2015-04-13 16:13 - 00000000 ____D () C:\ProgramData\ALLPlayerRemote

2015-04-13 16:13 - 2015-04-13 16:13 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight

2015-04-13 16:13 - 2013-04-05 20:26 - 02106368 _____ () C:\Windows\SysWOW64\ac3filter.ax

2015-04-13 16:13 - 2013-04-05 20:26 - 00276992 _____ (IntelleSoft) C:\Windows\SysWOW64\BugTrap.dll

2015-04-13 16:13 - 2011-06-02 01:10 - 00644608 _____ () C:\Windows\SysWOW64\xvidcore.dll

2015-04-13 16:13 - 2007-10-07 14:36 - 00258048 _____ () C:\Windows\SysWOW64\libFLAC.dll

2015-04-13 16:12 - 2015-04-13 16:13 - 00000000 ____D () C:\ProgramData\ALLPlayer

2015-04-12 22:31 - 2015-04-12 22:32 - 00000000 ___SD () C:\Users\Mały\GG dysk

2015-04-11 13:15 - 2015-04-11 13:15 - 00000000 ____D () C:\Users\Mały\AppData\Roaming\Wargaming.net

2015-04-10 12:43 - 2015-04-10 12:43 - 00000677 _____ () C:\Users\Mały\Desktop\World of Tanks.lnk

2015-04-10 12:43 - 2015-04-10 12:43 - 00000000 ____D () C:\Users\Mały\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks

2015-04-09 16:41 - 2015-04-09 16:52 - 00000000 ____D () C:\ProgramData\Adobe

2015-04-08 13:54 - 2015-04-08 13:54 - 00000000 ____D () C:\Users\Mały\AppData\Local\ESET

2015-04-06 22:02 - 2015-04-12 22:34 - 00000000 ____D () C:\Users\Mały\AppData\Local\GG

2015-04-06 22:02 - 2015-04-12 22:33 - 00000000 ____D () C:\Users\Mały\AppData\Roaming\GG

2015-04-01 13:54 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll

2015-04-01 13:54 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll

2015-04-01 13:54 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll

2015-04-01 13:54 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll

2015-04-01 13:54 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll

2015-04-01 13:54 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll

 

==================== One Month Modified Files and Folders =======

 

(If an entry is included in the fixlist, the file\folder will be moved.)

 

2015-04-28 22:23 - 2015-03-24 20:39 - 00000000 ____D () C:\Users\Mały\AppData\Roaming\uTorrent

2015-04-28 22:23 - 2009-07-14 06:45 - 00009584 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-04-28 22:23 - 2009-07-14 06:45 - 00009584 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-04-28 12:52 - 2015-03-26 16:37 - 00000000 ____D () C:\ProgramData\Origin

2015-04-28 12:52 - 2015-03-24 20:02 - 00941313 _____ () C:\Windows\WindowsUpdate.log

2015-04-28 12:50 - 2015-03-24 20:20 - 00000000 ____D () C:\ProgramData\NVIDIA

2015-04-28 12:50 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2015-04-27 00:02 - 2015-03-24 21:05 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2015-04-27 00:02 - 2015-03-24 21:05 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2015-04-27 00:01 - 2015-03-25 00:53 - 01636986 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI

2015-04-27 00:01 - 2009-07-14 19:55 - 00738780 _____ () C:\Windows\system32\perfh015.dat

2015-04-27 00:01 - 2009-07-14 19:55 - 00154890 _____ () C:\Windows\system32\perfc015.dat

2015-04-27 00:01 - 2009-07-14 07:13 - 01636986 _____ () C:\Windows\system32\PerfStringBackup.INI

2015-04-15 13:06 - 2015-03-24 20:18 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation

2015-04-15 13:05 - 2015-03-24 22:17 - 00000000 ____D () C:\Program Files (x86)\Java

2015-04-15 13:04 - 2015-03-24 20:18 - 00000000 ____D () C:\Program Files\NVIDIA Corporation

2015-04-15 13:04 - 2015-03-24 20:18 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation

2015-04-15 13:03 - 2015-03-24 22:17 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2015-04-14 15:05 - 2015-03-26 16:59 - 00001005 _____ () C:\Users\Public\Desktop\The Sims 4.lnk

2015-04-14 14:14 - 2009-07-14 06:45 - 00282472 _____ () C:\Windows\system32\FNTCACHE.DAT

2015-04-13 16:13 - 2015-03-24 21:15 - 00059760 _____ () C:\Users\Mały\AppData\Local\GDIPFONTCACHEV1.DAT

2015-04-12 22:31 - 2015-03-24 20:08 - 00000000 ____D () C:\Users\Mały

2015-04-09 16:52 - 2015-03-24 21:07 - 00000000 ____D () C:\Users\Mały\AppData\Roaming\Adobe

2015-04-09 16:52 - 2015-03-24 20:58 - 00000000 ____D () C:\Users\Mały\AppData\Local\Adobe

2015-04-09 16:41 - 2015-03-24 20:56 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk

2015-04-09 02:58 - 2015-03-25 00:48 - 14617288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll

2015-04-09 02:58 - 2015-03-25 00:48 - 02935416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2015-04-09 02:58 - 2010-08-19 16:38 - 17176128 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll

2015-04-09 02:58 - 2010-08-19 16:38 - 12689592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll

2015-04-09 00:21 - 2015-03-26 16:58 - 00000000 ____D () C:\ProgramData\Package Cache

2015-04-08 23:30 - 2010-08-19 09:48 - 06841488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll

2015-04-08 23:30 - 2010-08-19 09:48 - 03478344 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll

2015-04-08 23:30 - 2010-08-19 09:48 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll

2015-04-08 23:30 - 2010-08-19 09:48 - 00936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

2015-04-08 23:30 - 2010-08-19 09:48 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll

2015-04-08 23:30 - 2010-08-19 09:48 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll

2015-04-08 19:52 - 2015-03-25 00:57 - 04336074 _____ () C:\Windows\system32\nvcoproc.bin

2015-04-08 13:38 - 2015-03-24 19:58 - 00000000 ____D () C:\Windows\Panther

2015-03-30 18:39 - 2015-03-26 16:40 - 00000000 ____D () C:\Users\Mały\AppData\Local\Microsoft Games

2015-03-29 12:39 - 2015-03-26 16:39 - 00000000 ____D () C:\Users\Mały\AppData\Roaming\Origin

 

==================== Bamital & volsnap Check =================

 

(There is no automatic fix for files that do not pass verification.)

 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2015-04-24 16:29

 

==================== End Of Log ============================

 

[olek222]

A spróbuj w uruchamianiu w msconfig ogarnąć czy jakiegoś syfu nie ma?

[Umpik]

A spróbuj w uruchamianiu w msconfig ogarnąć czy jakiegoś syfu nie ma?

Tutaj wszystko jest ok

[olek222]

jesli mi sie dobrze wydaje mozesz miec w uruchamianiu cos od microsoftu

Microsoft @ costam

to to

mozliwe

 

A

jeszcze

JAK TAM CRACK DO GTA V? CIEKAWE SKĄD MASZ WIRUSA