Wykonałem pożądane czynności, na razie przesyłam jeszcze logi z dwóch innych komputerów. Pierwszy nie był dzisiaj użytkowany, by móc wykonać to działanie. Dwa pozostałe były skanowane bez podłączonych pendrive'ów.
Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-06-2015
Ran by student at 2015-06-17 17:01:35
Running from C:\Users\student\Desktop
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1668390990-2693116749-3062202487-500 - Administrator - Disabled)
Gość (S-1-5-21-1668390990-2693116749-3062202487-501 - Limited - Disabled)
LogMeInRemoteUser (S-1-5-21-1668390990-2693116749-3062202487-1005 - Administrator - Enabled) = & gt; C:\Users\LogMeInRemoteUser
serwis (S-1-5-21-1668390990-2693116749-3062202487-1000 - Administrator - Enabled) = & gt; C:\Users\serwis
student (S-1-5-21-1668390990-2693116749-3062202487-1004 - Limited - Enabled) = & gt; C:\Users\student
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with " hidden " flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 9.10 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0910-000001000000}) (Version: 9.10.00.0 - Igor Pavlov)
Adobe Reader XI (11.0.10) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Aktualizacje NVIDIA 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
BOINC (HKLM\...\{CFA4E1F2-090A-4335-A60B-98D8EC69E841}) (Version: 7.4.27 - Space Sciences Laboratory, U.C. Berkeley)
DWG TrueView 2011 (HKLM\...\DWG TrueView 2011) (Version: 18.1.49.0 - Autodesk)
DWG TrueView 2011 (Version: 18.1.49.0 - Autodesk) Hidden
DWG TrueView 2013 (HKLM\...\DWG TrueView 2013) (Version: 19.0.55.0 - Autodesk)
DWG TrueView 2013 (Version: 19.0.55.0 - Autodesk) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKU\S-1-5-21-1668390990-2693116749-3062202487-1004\...\Google Chrome) (Version: 43.0.2357.124 - Google Inc.)
Java 7 Update 17 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.170 - Oracle)
KONICA MINOLTA PageScope Box Operator 3.2.15000 (HKLM\...\{A41A35B1-8A88-4CBB-ABD7-A2C3DBC18B70}) (Version: 3.2.15000 - KONICA MINOLTA)
LightScribe 1.4.136.1 (x32 Version: 1.4.136.1 - http://www.lightscribe.com) Hidden
LogMeIn (HKLM-x32\...\{E217A3D4-2FF9-4D5F-9C20-1386E0FF9864}) (Version: 4.1.1890 - LogMeIn, Inc.)
Malwarebytes Anti-Malware wersja 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
MCShield ::Anti-Malware Tool:: (HKLM-x32\...\MCShield) (Version: 3.0.5.28 - MyCity)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.7.205.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Nero 7 Essentials (HKLM-x32\...\{B28B351F-1232-46EA-85EF-B8EA91641045}) (Version: 7.02.5017 - Nero AG)
Nero BurnRights (HKLM-x32\...\Nero BurnRights!UninstallKey) (Version: - )
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.7 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Oprogramowanie systemu PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Sterownik 3D Vision 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 334.89 - NVIDIA Corporation)
NVIDIA Sterownik dźwięku HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 334.89 - NVIDIA Corporation)
NVIDIA Sterownik kontrolera 3D Vision 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 334.89 - NVIDIA Corporation)
NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation)
Oce WPD (HKLM-x32\...\{3597d6bd-0e73-11d5-ab8a-00d0b7a62d54}) (Version: 1.22 - Oce)
Oracle VM VirtualBox 4.3.20 (HKLM\...\{DD8F7A7A-852F-4648-8A73-B8FC1DF5F082}) (Version: 4.3.20 - Oracle Corporation)
Panel sterowania NVIDIA 334.89 (Version: 334.89 - NVIDIA Corporation) Hidden
Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK) (Version: 10.0.50903 - Microsoft Corporation)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.41110 - TeamViewer)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
ATTENTION: System Restore is disabled
Check " winmgmt " service or repair WMI.
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1668390990-2693116749-3062202487-1000Core.job = & gt;
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1668390990-2693116749-3062202487-1000UA.job = & gt;
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1668390990-2693116749-3062202487-1004Core.job = & gt; C:\Users\student\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1668390990-2693116749-3062202487-1004UA.job = & gt; C:\Users\student\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2013-06-08 13:15 - 2013-06-08 13:15 - 00282624 _____ () C:\Program Files\KONICA MINOLTA\PageScope Box Operator3\KMENC.dll
2014-11-20 22:23 - 2014-11-20 22:23 - 00102400 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The " AlternateShell " will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1668390990-2693116749-3062202487-1004\Control Panel\Desktop\\Wallpaper - & gt; C:\Users\student\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 194.204.159.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: LightScribeService = & gt; 2
MSCONFIG\Services: LMIGuardianSvc = & gt; 2
MSCONFIG\Services: LMIMaint = & gt; 2
MSCONFIG\Services: LogMeIn = & gt; 2
MSCONFIG\Services: NMIndexingService = & gt; 3
MSCONFIG\startupreg: Adobe ARM = & gt; " C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe "
MSCONFIG\startupreg: Adobe Reader Speed Launcher = & gt; " C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe "
MSCONFIG\startupreg: BCSSync = & gt; " C:\Program Files\Microsoft Office\Office14\BCSSync.exe " /DelayServices
MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} = & gt; " C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe "
MSCONFIG\startupreg: Google Update = & gt; " C:\Users\serwis\AppData\Local\Google\Update\GoogleUpdate.exe " /c
MSCONFIG\startupreg: LogMeIn GUI = & gt; " C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe "
MSCONFIG\startupreg: MSC = & gt; " c:\Program Files\Microsoft Security Client\msseces.exe " -hide -runkey
MSCONFIG\startupreg: SunJavaUpdateSched = & gt; " C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe "
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] = & gt; (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] = & gt; (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [TCP Query User{C4F21DCE-D4EE-4AFE-9A00-0749D44B2FA1}C:\program files\boinc\boinc.exe] = & gt; (Allow) C:\program files\boinc\boinc.exe
FirewallRules: [UDP Query User{92AB1BFF-1A19-4B07-BDCE-186E1F8698E2}C:\program files\boinc\boinc.exe] = & gt; (Allow) C:\program files\boinc\boinc.exe
FirewallRules: [{2900FD9D-9ACD-4786-81E8-33B42CADACC8}] = & gt; (Allow) LPort=31416
FirewallRules: [TCP Query User{4533977F-03D6-4BC9-B33F-9B85173F4EBF}C:\usbfix\go.exe] = & gt; (Allow) C:\usbfix\go.exe
FirewallRules: [UDP Query User{E135D36F-13F4-4189-AA7A-69ECAEFBBD3A}C:\usbfix\go.exe] = & gt; (Allow) C:\usbfix\go.exe
FirewallRules: [{C032F654-0DD7-4D6E-BBBF-0FE69BD31250}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{193BC825-B518-4AEC-86B3-D19715731129}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{361DFB26-C030-4C7F-BB17-A85949833BCE}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{349CCA46-A599-433E-A20D-1A1615D610BD}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B4882FD9-A612-493D-B948-67E750F51E26}] = & gt; (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{FF538471-0CE3-4778-8FE4-85327B9772D2}] = & gt; (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F62C6D39-FE9A-4BFB-8B0E-1AA010763849}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3F57747E-1900-4746-A40A-D013BDFC552F}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{072711B7-AAE5-48C4-81DC-A0A4AD73BAF9}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D3821731-77D1-49A1-A562-35784C0A30F7}] = & gt; (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{8CCAA495-3BC3-41F1-AF5A-D35F01CBDAE8}C:\nvidia\guiminer-scrypt_win32_binaries_v0.04\stratumproxy\mining_proxy.exe] = & gt; (Allow) C:\nvidia\guiminer-scrypt_win32_binaries_v0.04\stratumproxy\mining_proxy.exe
FirewallRules: [UDP Query User{B1092D6A-632E-49B2-B7AB-C40C4A5E46FD}C:\nvidia\guiminer-scrypt_win32_binaries_v0.04\stratumproxy\mining_proxy.exe] = & gt; (Allow) C:\nvidia\guiminer-scrypt_win32_binaries_v0.04\stratumproxy\mining_proxy.exe
FirewallRules: [{D08710C4-2E6B-4AAE-8494-06D584CC1383}] = & gt; (Allow) LPort=21
FirewallRules: [TCP Query User{BFD5892E-74B8-41BA-924D-6918857E4881}C:\windows\explorer.exe] = & gt; (Block) C:\windows\explorer.exe
FirewallRules: [UDP Query User{B2EC4203-572F-433E-8EC8-6E4F7EFCCAA7}C:\windows\explorer.exe] = & gt; (Block) C:\windows\explorer.exe
FirewallRules: [{1473232A-45F2-48A5-BA59-004755FC5D09}] = & gt; (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{9B2CB389-4C37-4E4B-A584-C783590F425B}] = & gt; (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{0A1CBF21-51D7-4E84-8E98-4B409E78ADDE}] = & gt; (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{50D3CD29-05B6-45FB-8E82-E9EA8321E8C2}] = & gt; (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{6A1935AB-2D6A-4BBC-B6EA-E76DDFF59E5F}] = & gt; (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{04CD1BC5-9556-4E01-B5CD-F49A20B22B5F}] = & gt; (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{C7FD5122-757C-4A62-B0BF-860857E17DED}] = & gt; (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{372D5F84-DE5B-4EAE-BAB0-4192071061E6}] = & gt; (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{942E793A-71E9-41DA-92BD-FE12FBDB67AA}] = & gt; (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{CDA651CB-A6B3-4E8D-BE30-00F3F4BC556E}] = & gt; (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{A1261BF9-C7A1-4BDE-9A99-8B39B892F724}] = & gt; (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{62EFA9A1-BDB7-4DF0-BD48-DC1FEC42788F}] = & gt; (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/17/2015 04:12:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu.
Error: (06/17/2015 04:12:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
Error: (06/17/2015 04:12:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
Error: (06/17/2015 04:09:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu.
Error: (06/17/2015 04:09:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
Error: (06/17/2015 04:09:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
Error: (06/17/2015 03:59:34 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu.
Error: (06/17/2015 03:59:34 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
Error: (06/17/2015 03:59:34 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance. Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis DWORD w sekcji Data.
Error: (06/17/2015 03:43:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
Description: Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl (WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu.
System errors:
=============
Error: (06/17/2015 04:11:07 PM) (Source: Disk) (EventID: 11) (User: )
Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR84.
Error: (06/17/2015 04:11:06 PM) (Source: Disk) (EventID: 11) (User: )
Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR84.
Error: (06/17/2015 04:11:06 PM) (Source: Disk) (EventID: 11) (User: )
Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR84.
Error: (06/17/2015 04:11:05 PM) (Source: Disk) (EventID: 11) (User: )
Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR84.
Error: (06/17/2015 04:11:05 PM) (Source: Disk) (EventID: 11) (User: )
Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR84.
Error: (06/17/2015 04:07:58 PM) (Source: Disk) (EventID: 11) (User: )
Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR83.
Error: (06/17/2015 04:07:58 PM) (Source: Disk) (EventID: 11) (User: )
Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR83.
Error: (06/17/2015 04:07:57 PM) (Source: Disk) (EventID: 11) (User: )
Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR83.
Error: (06/17/2015 04:07:57 PM) (Source: Disk) (EventID: 11) (User: )
Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR83.
Error: (06/17/2015 04:07:56 PM) (Source: Disk) (EventID: 11) (User: )
Description: Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR83.
Microsoft Office:
=========================
Error: (06/17/2015 04:12:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
Description: WmiApRplWmiApRpl8F20300004D070000
Error: (06/17/2015 04:12:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Performance1637070000000000000000000009030000
Error: (06/17/2015 04:12:10 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Performance1637070000000000000000000009030000
Error: (06/17/2015 04:09:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
Description: WmiApRplWmiApRpl8F20300004D070000
Error: (06/17/2015 04:09:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Performance1637070000000000000000000009030000
Error: (06/17/2015 04:09:02 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Performance1637070000000000000000000009030000
Error: (06/17/2015 03:59:34 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
Description: WmiApRplWmiApRpl8F20300004D070000
Error: (06/17/2015 03:59:34 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Performance1637070000000000000000000009030000
Error: (06/17/2015 03:59:34 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: ZARZĄDZANIE NT)
Description: Performance1637070000000000000000000009030000
Error: (06/17/2015 03:43:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: ZARZĄDZANIE NT)
Description: WmiApRplWmiApRpl8F20300004D070000
CodeIntegrity Errors:
===================================
Date: 2015-05-19 13:42:46.084
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-05-19 13:42:46.084
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\wdcsam64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: AMD Phenom(tm) 8650 Triple-Core Processor
Percentage of memory in use: 35%
Total physical RAM: 7678.3 MB
Available physical RAM: 4922.05 MB
Total Pagefile: 15354.8 MB
Available Pagefile: 12516.25 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:297.99 GB) (Free:202.08 GB) NTFS
Drive s: (DANE) (Network) (Total:1570.04 GB) (Free:109.67 GB) NTFS
==================== MBR & Partition Table ==================
==================== End of log ============================