Dziwne lagowanie systemu, programów.

dandun · 16 Października 2014

Od wczoraj miewam jakiś zlagowany system, brak odpowiedzi itd.

Wcześniej działo to się raz na tydzień, a od wczoraj po prostu czasami nic mi się nie chce włączyć, np. przeglądarka klikam i albo nic się nie dzieje, albo bardzo powoli się ładuje.

Dodam, że nie mogę odinstalowywać programów. Tzn. Odinstalowuje ale po za tym nic się nie dzieje, ciągle się ten program odinstalowuje i nic więcej.

Skan OTL:

OTL logfile created on: 2014-10-16 10:27:51 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Krystian\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17280)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

4,00 Gb Total Physical Memory | 1,73 Gb Available Physical Memory | 43,31% Memory free
8,00 Gb Paging File | 5,28 Gb Available in Paging File | 65,99% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 196,06 Gb Total Space | 79,70 Gb Free Space | 40,65% Space Free | Partition Type: NTFS
Drive D: | 292,97 Gb Total Space | 240,68 Gb Free Space | 82,15% Space Free | Partition Type: NTFS
Drive E: | 442,38 Gb Total Space | 351,77 Gb Free Space | 79,52% Space Free | Partition Type: NTFS

Computer Name: GRZESIU | User Name: Krystian | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014-10-16 10:15:31 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Krystian\Downloads\OTL.exe
PRC - [2014-10-01 07:55:00 | 000,854,344 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2014-09-29 02:38:46 | 000,282,568 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Security\Engine\22.0.1.14\NS.exe
PRC - [2012-05-23 08:51:14 | 000,560,480 | ---- | M] (Electronic Arts, Inc.) -- C:\Program Files (x86)\Common Files\EAInstaller\PlantsvsZombies\Cleanup.exe
PRC - [2011-09-23 00:41:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011-09-22 12:29:48 | 000,381,248 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2010-02-03 16:17:18 | 005,756,544 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe

========== Modules (No Company Name) ==========

MOD - [2014-10-01 07:54:58 | 014,891,848 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.101\PepperFlash\pepflashplayer.dll
MOD - [2014-10-01 07:54:57 | 008,911,176 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.101\pdf.dll
MOD - [2014-10-01 07:54:53 | 001,042,760 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.101\libglesv2.dll
MOD - [2014-10-01 07:54:51 | 001,681,224 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.101\ffmpegsumo.dll
MOD - [2014-10-01 07:54:51 | 000,211,272 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.101\libegl.dll
MOD - [2014-07-27 11:41:48 | 008,892,576 | ---- | M] () -- C:\PROGRA~2\MIF5BA~1\Office15\1033\GrooveIntlResource.dll
MOD - [2013-12-09 21:24:42 | 003,023,696 | -HS- | M] () -- \\?\C:\ProgramData\Microsoft\PlayReady\Cache\S-1-5-21-678882040-263938067-2815254729-1000\MSPRindiv01.key
MOD - [2013-09-05 00:14:10 | 004,300,456 | ---- | M] () -- C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
MOD - [2009-09-30 13:33:08 | 000,024,576 | R--- | M] () -- C:\Windows\SysWOW64\AsIO.dll
MOD - [2009-03-25 16:53:14 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\ASUS\EPU-4 Engine\AsSpindownTimeout.dll
MOD - [2009-03-19 22:35:52 | 000,208,896 | ---- | M] () -- C:\Program Files (x86)\ASUS\EPU-4 Engine\AiNap.dll
MOD - [2009-03-19 22:35:50 | 000,008,704 | ---- | M] () -- C:\Program Files (x86)\ASUS\EPU-4 Engine\vvc.dll
MOD - [2009-01-15 14:55:10 | 000,565,248 | ---- | M] () -- C:\Program Files (x86)\ASUS\EPU-4 Engine\pngio.dll

========== Services (SafeList) ==========

SRV:64bit: - [2014-08-19 00:03:37 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013-05-27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009-08-10 16:01:06 | 000,206,880 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
SRV:64bit: - [2009-08-10 16:01:04 | 000,626,208 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)
SRV:64bit: - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2014-10-16 09:21:13 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014-10-15 20:56:42 | 001,891,184 | ---- | M] (Electronic Arts) [On_Demand | Stopped] -- D:\Program Files (x86)\Origin\OriginClientService.exe -- (Origin Client Service)
SRV - [2014-09-29 02:38:46 | 000,282,568 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton Security\Engine\22.0.1.14\NS.exe -- (NS)
SRV - [2014-09-23 06:32:08 | 000,833,728 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014-09-12 11:43:06 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014-08-22 15:04:06 | 000,009,216 | ---- | M] (Hi-Rez Studios) [Disabled | Stopped] -- E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe -- (HiPatchService)
SRV - [2014-03-21 00:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2013-09-11 22:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2011-09-23 00:41:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011-09-22 12:29:48 | 000,381,248 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010-11-20 14:21:36 | 000,351,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- winhttp.dll -- (WinHttpAutoProxySvc)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2014-10-09 22:31:52 | 000,102,616 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2014-09-09 07:15:11 | 000,565,464 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symnets.sys -- (SymNetS)
DRV:64bit: - [2014-09-09 07:15:10 | 001,151,704 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symefa64.sys -- (SymEFA)
DRV:64bit: - [2014-09-09 07:15:09 | 000,490,712 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symds64.sys -- (SymDS)
DRV:64bit: - [2014-09-09 07:05:40 | 000,271,576 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\ironx64.sys -- (SymIRON)
DRV:64bit: - [2014-09-09 07:05:23 | 000,165,080 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\ccsetx64.sys -- (ccSet_NS)
DRV:64bit: - [2014-09-09 07:05:05 | 001,016,024 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2014-09-09 07:05:05 | 000,042,200 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\srtspx64.sys -- (SRTSPX)
DRV:64bit: - [2014-08-12 22:16:10 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013-02-12 06:12:06 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2012-03-01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011-08-17 10:04:34 | 000,171,008 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nmwcdnsux64.sys -- (nmwcdnsux64)
DRV:64bit: - [2011-07-08 01:21:28 | 000,174,184 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2011-04-20 03:07:48 | 001,930,240 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athurx.sys -- (athur)
DRV:64bit: - [2011-03-11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011-03-11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010-11-20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010-11-20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010-11-20 13:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010-01-11 12:05:20 | 001,290,752 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:64bit: - [2009-09-19 06:30:14 | 000,161,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV:64bit: - [2009-09-19 06:30:14 | 000,127,488 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bbus.sys -- (ss_bbus)
DRV:64bit: - [2009-09-19 06:30:14 | 000,018,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bmdfl.sys -- (ss_bmdfl)
DRV:64bit: - [2009-07-30 19:12:56 | 000,339,744 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvmf6264.sys -- (NVNET)
DRV:64bit: - [2009-07-16 13:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009-06-10 22:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:64bit: - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2014-10-09 22:21:02 | 000,633,560 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\IPSDefs\20141015.001\IDSvia64.sys -- (IDSVia64)
DRV - [2014-10-09 20:25:46 | 002,137,304 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\VirusDefs\20141015.003\EX64.SYS -- (NAVEX15)
DRV - [2014-10-09 20:25:46 | 000,487,216 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2014-10-09 20:25:46 | 000,142,640 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2014-10-09 20:25:46 | 000,129,752 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\VirusDefs\20141015.003\ENG64.SYS -- (NAVENG)
DRV - [2014-10-03 21:19:31 | 001,587,416 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Norton Security\NortonData\22.0.0.110\Definitions\BASHDefs\20141003.001\BHDrvx64.sys -- (BHDrvx64)
DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.bing.com/search?q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.bing.com/search?q={searchTerms}
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" =

========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MIF5BA~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.4.0: C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.60.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Krystian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.0.0.110\coFFPlgn\ [2014-10-16 09:58:19 | 000,000,000 | ---D | M]

[2014-06-07 16:11:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Krystian\AppData\Roaming\mozilla\Firefox\Profiles\extensions
[2014-06-07 16:11:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Krystian\AppData\Roaming\mozilla\Firefox\Profiles\extensions\extensions
[2014-03-03 01:49:30 | 000,034,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll

========== Chrome ==========

CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Krystian\AppData\Local\Google\Chrome\User Data\Default\Extensions\eplekpmdodlgejgogbojajncdlapamff\3.1.30_0\
CHR - Extension: No name found = C:\Users\Krystian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\Krystian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch\3.1_1\

Hosts file not found
O2:64bit: - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine64\22.0.1.14\coIEPlg.dll (Symantec Corporation)
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security\Engine\22.0.1.14\coIEPlg.dll (Symantec Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MIF5BA~1\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (IEExtension.Extension) - {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} - mscoree.dll (Microsoft Corporation)
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.0.1.14\coIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.0.1.14\coIEPlg.dll (Symantec Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office14\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Wyślij &do programu OneNote - res://C:\PROGRA~2\MIF5BA~1\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Wyślij &do programu OneNote - res://C:\PROGRA~2\MIF5BA~1\Office14\ONBttnIE.dll/105 File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6333F8E8-BBF6-4C9A-B16E-5FC08E31B264}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{97A42F2D-DF2A-4492-850B-6DD55E27FA4C}: DhcpNameServer = 192.168.42.129
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKCU Winlogon: Shell - (Explorer.exe) - Explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MIF5BA~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{23209dc0-225d-11e4-8ffd-a1e9bd0d3b93}\Shell - "" = AutoRun
O33 - MountPoints2\{23209dc0-225d-11e4-8ffd-a1e9bd0d3b93}\Shell\AutoRun\command - "" = G:\setup.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\start.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014-10-16 09:17:52 | 000,000,000 | ---D | C] -- C:\Users\Krystian\AppData\Local\Adobe
[2014-10-15 19:42:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014-10-15 19:42:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2014-10-10 19:27:59 | 000,565,464 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symnets.sys
[2014-10-10 19:27:59 | 000,023,568 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symelam.sys
[2014-10-10 19:27:58 | 001,151,704 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symefa64.sys
[2014-10-10 19:27:58 | 001,016,024 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\srtsp64.sys
[2014-10-10 19:27:58 | 000,490,712 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symds64.sys
[2014-10-10 19:27:58 | 000,271,576 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\ironx64.sys
[2014-10-10 19:27:58 | 000,042,200 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\srtspx64.sys
[2014-10-10 19:27:57 | 000,165,080 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\ccsetx64.sys
[2014-10-10 19:26:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NSx64\1600010.00E
[2014-10-10 14:51:43 | 000,000,000 | ---D | C] -- C:\Users\Krystian\AppData\Local\NPE
[2014-10-09 22:31:53 | 000,102,616 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2014-10-09 22:31:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2014-10-09 22:30:05 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
[2014-10-09 22:30:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NSx64
[2014-10-09 22:30:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton Security
[2014-10-09 22:28:25 | 000,000,000 | --SD | C] -- C:\Windows\SysWow64\Microsoft
[2014-10-09 22:27:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller
[2014-10-09 20:47:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
[2014-10-09 20:47:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine
[2014-10-09 20:47:03 | 000,000,000 | ---D | C] -- C:\Users\Krystian\AppData\Roaming\Winamp
[2014-10-08 22:47:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2014-10-07 20:24:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
[2014-10-07 20:24:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2014-10-07 20:22:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Sync Framework
[2014-10-07 20:19:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2014-10-05 16:29:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
[2014-10-05 13:18:26 | 000,000,000 | ---D | C] -- C:\Users\Krystian\AppData\Local\Electronic Arts
[2014-10-05 13:18:16 | 000,000,000 | ---D | C] -- C:\Users\Krystian\Documents\Electronic Arts
[2014-10-01 19:11:00 | 000,371,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2014-10-01 19:10:59 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2014-09-20 21:37:07 | 000,000,000 | ---D | C] -- C:\Users\Krystian\Desktop\Selekscja
[2014-09-17 15:58:47 | 000,000,000 | ---D | C] -- C:\Users\Krystian\AppData\Local\PopCap Games

========== Files - Modified Within 30 Days ==========

[2014-10-16 10:40:21 | 002,445,342 | ---- | M] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\Cat.DB
[2014-10-16 10:21:01 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014-10-16 10:03:49 | 000,017,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014-10-16 10:03:49 | 000,017,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014-10-16 09:58:01 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014-10-16 09:56:34 | 000,001,048 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014-10-16 09:56:28 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014-10-16 09:56:05 | 3220,615,168 | -HS- | M] () -- C:\hiberfil.sys
[2014-10-16 09:21:13 | 000,701,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2014-10-16 09:21:13 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2014-10-15 19:42:28 | 000,002,517 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014-10-14 18:44:28 | 000,048,844 | ---- | M] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\VT20141014.006
[2014-10-10 23:36:09 | 000,002,386 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security.lnk
[2014-10-09 22:31:52 | 000,102,616 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2014-10-09 22:31:52 | 000,008,214 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2014-10-09 22:31:52 | 000,000,855 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2014-10-09 20:47:17 | 000,000,692 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk
[2014-10-09 18:34:52 | 001,670,518 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014-10-09 18:34:52 | 000,740,422 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2014-10-09 18:34:52 | 000,654,254 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014-10-09 18:34:52 | 000,155,996 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2014-10-09 18:34:52 | 000,122,126 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014-10-09 15:58:35 | 000,588,383 | ---- | M] () -- C:\Users\Krystian\Desktop\MPCFORUM.png
[2014-10-08 14:01:01 | 000,448,832 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014-10-07 22:08:46 | 000,055,173 | ---- | M] () -- C:\Users\Krystian\Desktop\img007.jpg
[2014-10-05 17:29:20 | 000,000,858 | ---- | M] () -- C:\Users\Public\Desktop\EA SPORTS FIFA World.lnk
[2014-09-29 02:37:40 | 000,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\isolate.ini
[2014-09-25 04:08:38 | 000,371,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2014-09-25 03:40:50 | 000,519,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2014-09-20 13:02:25 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\HRUPPROG.EXIT

========== Files Created - No Company Name ==========

[2014-10-15 19:42:28 | 000,002,517 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2014-10-15 00:12:32 | 000,048,844 | ---- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\VT20141014.006
[2014-10-10 23:36:17 | 002,434,120 | ---- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\Cat.DB
[2014-10-10 19:27:59 | 000,009,939 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symelam64.cat
[2014-10-10 19:27:59 | 000,008,184 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symnet64.cat
[2014-10-10 19:27:59 | 000,001,442 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symnet.inf
[2014-10-10 19:27:59 | 000,001,098 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symelam.inf
[2014-10-10 19:27:58 | 000,008,258 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symds64.cat
[2014-10-10 19:27:58 | 000,008,188 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\srtspx64.cat
[2014-10-10 19:27:58 | 000,008,186 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symefa64.cat
[2014-10-10 19:27:58 | 000,008,184 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\srtsp64.cat
[2014-10-10 19:27:58 | 000,003,434 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symefa.inf
[2014-10-10 19:27:58 | 000,002,852 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symds.inf
[2014-10-10 19:27:58 | 000,001,439 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\srtsp64.inf
[2014-10-10 19:27:58 | 000,001,421 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\srtspx64.inf
[2014-10-10 19:27:58 | 000,000,767 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\iron.inf
[2014-10-10 19:27:57 | 000,008,194 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\ccsetx64.cat
[2014-10-10 19:27:57 | 000,008,176 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\iron.cat
[2014-10-10 19:27:57 | 000,000,854 | R--- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\ccsetx64.inf
[2014-10-10 19:26:54 | 000,042,291 | ---- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\symvtcer.dat
[2014-10-10 19:26:54 | 000,000,172 | ---- | C] () -- C:\Windows\SysNative\drivers\NSx64\1600010.00E\isolate.ini
[2014-10-09 22:31:55 | 000,008,214 | ---- | C] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2014-10-09 22:31:54 | 000,000,855 | ---- | C] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2014-10-09 22:31:43 | 000,002,386 | ---- | C] () -- C:\Users\Public\Desktop\Norton Security.lnk
[2014-10-09 20:47:17 | 000,000,692 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk
[2014-10-09 15:58:35 | 000,588,383 | ---- | C] () -- C:\Users\Krystian\Desktop\MPCFORUM.png
[2014-10-07 22:08:45 | 000,055,173 | ---- | C] () -- C:\Users\Krystian\Desktop\img007.jpg
[2014-10-05 17:29:20 | 000,000,858 | ---- | C] () -- C:\Users\Public\Desktop\EA SPORTS FIFA World.lnk
[2014-09-20 13:02:25 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\HRUPPROG.EXIT
[2014-04-24 16:53:24 | 000,009,886 | ---- | C] () -- C:\Users\Krystian\AppData\Local\recently-used.xbel
[2014-03-21 19:04:59 | 000,000,482 | RHS- | C] () -- C:\Users\Krystian\ntuser.pol
[2013-12-25 22:43:39 | 000,000,364 | ---- | C] () -- C:\Users\Krystian\SciTE.session
[2013-12-25 22:00:09 | 001,642,188 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013-10-21 20:58:19 | 000,007,598 | ---- | C] () -- C:\Users\Krystian\AppData\Local\Resmon.ResmonCfg
[2013-10-08 15:52:35 | 000,000,414 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013-10-05 20:38:06 | 000,024,576 | R--- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2013-10-05 20:38:06 | 000,013,440 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2013-10-05 20:38:03 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2013-10-05 20:38:03 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2013-10-05 20:32:42 | 000,030,942 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2013-10-05 20:32:25 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2013-10-05 20:32:20 | 000,023,167 | ---- | C] () -- C:\Windows\Ascd_tmp.ini

========== ZeroAccess Check ==========

[2009-07-14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014-06-25 04:05:42 | 014,175,744 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014-06-25 03:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Alternate Data Streams ==========

@Alternate Data Stream - 40 bytes -> C:\ProgramData\MTA San Andreas All:NT
@Alternate Data Stream - 40 bytes -> C:\ProgramData:NT
@Alternate Data Stream - 160 bytes -> C:\ProgramData\MTA San Andreas All:NT2
@Alternate Data Stream - 160 bytes -> C:\ProgramData:NT2

< End of report >

eXTRAS (?)

OTL Extras logfile created on: 2014-10-16 10:30:22 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Krystian\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17280)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

4,00 Gb Total Physical Memory | 1,73 Gb Available Physical Memory | 43,31% Memory free
8,00 Gb Paging File | 5,28 Gb Available in Paging File | 65,99% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 196,06 Gb Total Space | 79,70 Gb Free Space | 40,65% Space Free | Partition Type: NTFS
Drive D: | 292,97 Gb Total Space | 240,68 Gb Free Space | 82,15% Space Free | Partition Type: NTFS
Drive E: | 442,38 Gb Total Space | 351,77 Gb Free Space | 79,52% Space Free | Partition Type: NTFS

Computer Name: GRZESIU | User Name: Krystian | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.html[@ = OperaStable] -- C:\Program Files (x86)\Opera\Launcher.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = OperaStable] -- C:\Program Files (x86)\Opera\Launcher.exe (Opera Software)

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "d:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "d:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "D:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "D:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "D:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "d:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "d:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "D:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "D:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "D:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0FE3056B-603D-4B9B-93A5-8F3135E2FAAF}" = lport=139 | protocol=6 | dir=in | app=system |
"{24ED875D-9497-4417-81C6-47EBBC72E598}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{3156C6FE-3E7C-4374-AC5E-78E5C5B8B321}" = rport=10243 | protocol=6 | dir=out | app=system |
"{32573D44-FE94-4131-8C0D-0CDC6AA15D5E}" = lport=58281 | protocol=6 | dir=in | name=pando media booster |
"{434A78E2-A37C-47DE-9323-DB345E001EAF}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office15\outlook.exe |
"{462F5B41-C325-41B6-A67C-83F3DA11B4D3}" = lport=445 | protocol=6 | dir=in | app=system |
"{46F599B6-F253-4060-8C22-2B9666B71004}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{47A5E9E9-76CC-4526-B2B9-18CDDC45C6EB}" = rport=445 | protocol=6 | dir=out | app=system |
"{4A225F77-61E4-44E7-9B9F-ACA45557A1A4}" = lport=8317 | protocol=6 | dir=in | name=techsmith camtasia studio |
"{4F46CEAA-E45A-42B2-9ADF-246AA36FD62F}" = rport=139 | protocol=6 | dir=out | app=system |
"{5802BA07-FE74-4467-B08F-0D7DFF6B45F8}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5E6E6119-1F76-4D58-95F9-8D6FC40AFDEE}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{60BD23B2-4A4C-4579-8951-2D073D99E926}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{68365DF0-5645-4775-8D42-601C5ACB9495}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{828D0E71-3C8D-4F1D-8DBA-8BCDD7233F69}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{8590FC29-9DE5-4DD7-B80E-815BF564D083}" = lport=58281 | protocol=17 | dir=in | name=pando media booster |
"{8662EAAA-058C-48AF-AE5C-1495F765B923}" = rport=138 | protocol=17 | dir=out | app=system |
"{940C1200-FF8A-4D73-A421-24C54C5361B5}" = lport=138 | protocol=17 | dir=in | app=system |
"{9F3E26BF-3A7D-4061-B198-75437C2167C7}" = lport=58281 | protocol=17 | dir=in | name=pando media booster |
"{AA194EDD-D915-404F-BFBE-31994A2861F2}" = lport=58281 | protocol=6 | dir=in | name=pando media booster |
"{B3B5AC7F-520B-4C08-A0E9-C309B7220AEE}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C4453196-F698-425C-84AA-FDAAF320FAD7}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C669AB07-2557-463A-AB74-D9617A3A154A}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{C830E2C7-E5E8-4F3E-8DA5-7B4AAC80E3C3}" = lport=10243 | protocol=6 | dir=in | app=system |
"{CB86443C-1035-44F7-BD2B-1EA9A0F89028}" = lport=137 | protocol=17 | dir=in | app=system |
"{DFECFEB1-A162-4148-A7EA-F9706F838D21}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{EC439729-3ECA-4649-B75E-7FC5A6B18601}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{FE695747-04E3-488F-8617-FA127B3A768D}" = lport=2869 | protocol=6 | dir=in | app=system |
"{FFD8FC2B-30AA-4ECD-ACAD-CAB7E328B286}" = rport=137 | protocol=17 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{07BDCE71-65FE-4685-9E83-6E83494B44C4}" = protocol=17 | dir=in | app=e:\steam\bin\steamwebhelper.exe |
"{0AEC06D5-5913-4438-942B-67DF682B046D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0BAD1EFF-E75B-4666-A240-0E79A6C3ABA8}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{11C8AA08-F3AB-4B56-814F-E3C9557F6B75}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\dead island epidemic\dead island epidemic - launcher.exe |
"{1C5ED7F2-E951-4BC3-B84F-7E4F40B5CD42}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\battlefield 3\bf3.exe |
"{1E5130EC-31EF-4446-82B4-7E7DBC8E090B}" = protocol=17 | dir=in | app=d:\program files (x86)\winamp\winamp.exe |
"{206B7893-795A-4FC0-8DAC-84F36BA3E722}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{21CED092-95D7-4561-91C7-5559316738B4}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{27AC1505-4A99-445D-8BAF-A984DC7E0602}" = protocol=6 | dir=in | app=e:\steam\bin\steamwebhelper.exe |
"{28180500-6B33-4E9D-838A-E66C83B93CA2}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\race 07\steamproxy.exe |
"{2D4E934B-9145-4BED-9B03-586DD1AED4D3}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{39314677-102D-4FDB-A4AB-D05F53E6E788}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\fifa world\fifaworld.exe |
"{3B02AEC1-5489-48A1-84B4-0898B4D8E3AE}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\fifa 14 demo\game\fifa14_demo.exe |
"{3BA61608-45FB-46BF-8201-A2B3436EBF64}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{3E02C71C-C024-4601-B96F-E3AA8BEEEFF4}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{4770243B-C2BA-4A87-ADB6-0AADB1A4AD31}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{4B5B85F3-859F-4018-90C7-A6406F1A060B}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{4D12E5D9-910B-4A73-9036-451B4F3821F9}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{4D86B822-E74F-4C7C-A483-474379C8FEEC}" = protocol=6 | dir=in | app=d:\program files (x86)\gameforgelive\gfl_client.exe |
"{5207DC69-760E-471A-8EA1-5E961D6BC639}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5669FBA1-4C06-4D82-ADA9-F1C57F251FF0}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{5799AF98-6315-4CD7-8B49-14A6A83B8B47}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{5BE82C2B-FB3F-4C6E-91A3-BCD9C9D370CB}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\woodletreeadventures\woodletreeadventures.exe |
"{63405EDE-7307-42AD-8201-674204A76B8A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{637C8DA0-C2E8-4F77-91C3-08EDBB7AAD1B}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{6B5F2456-910D-481E-81BD-5DE2183370A4}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\battlefield 3\bf3.exe |
"{6DEC3B07-BBB3-42E2-B769-510E2E8E6D04}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{70AE68EC-23E3-494D-9E67-C1B87360382E}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\bejeweled 3\bejeweled3.exe |
"{714B3032-BA76-47D7-8F00-E03FD29ADEE4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{782CA121-F487-42B5-9DDA-CAF26F8BB5D0}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\woodletreeadventures\woodletreeadventures.exe |
"{7870327F-4450-465A-9F0D-CEF567CF5FD0}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\dead island epidemic\dead island epidemic - launcher.exe |
"{7D0896B3-1023-4BF3-B72C-5CAB86CA5F5F}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\unturned\unturned.exe |
"{7D6F8AA9-FF9D-4429-9468-FD4D515D9F18}" = protocol=6 | dir=out | app=system |
"{7E49E583-5C9A-4C41-A59C-478E7ECF4E10}" = protocol=6 | dir=in | app=d:\program files (x86)\klient 4death.pl\4death.pl.exe |
"{8303A7CA-40C7-43DB-AF3C-9B59B0B8CFF0}" = protocol=17 | dir=in | app=d:\program files (x86)\klient 4death.pl\4death.pl.exe |
"{86738F9E-E1F6-4398-B878-8B031C8F696B}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\race 07\config.exe |
"{86A92765-77E8-41CF-A009-940AF3D1F790}" = protocol=6 | dir=in | app=e:\steam\steam.exe |
"{8B8483E6-B130-4CEC-8DD4-E1F0CE0024E9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{8C2F609D-CD89-40CC-A386-43A049B7D80D}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\fifa world\fifaworld.exe |
"{A00C0931-A82A-40EC-AAD2-A9A1F5376C3E}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\plants vs. zombies\plantsvszombies.exe |
"{A1B0A912-9C7F-472A-8043-A1F3159F3C4D}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A1C1B06B-45A0-49D1-8BBD-2D49F19A893A}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{A370F495-FD6C-4D2E-B545-FC3EE501B6AF}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\half-life\hl.exe |
"{A75C0A65-8F75-43E7-9E6E-22F49A717B17}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{ADD8531A-DBE7-474A-8350-B74871C745C4}" = protocol=17 | dir=in | app=e:\steam\steam.exe |
"{B15100CB-BD81-459A-986B-0EF3739BF793}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\half-life\hl.exe |
"{B6B494DE-4895-4203-862B-51BE57B29354}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\half-life\hl.exe |
"{BA544A44-5005-4294-9DB5-FC9E4652BDE5}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{BCB1C6CF-7BC2-4F10-8630-FBFC51B9C430}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\half-life\hl.exe |
"{C41014B7-FA2C-4152-8A64-785DE08B8DD8}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{C71752A3-7F8D-4306-A4EB-DDAA4D28A1FD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C98147F7-0842-47CA-ADC4-5D847AFC9175}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\bejeweled 3\bejeweled3.exe |
"{CEBF646D-0D4A-41AA-AF36-AC28556C8D19}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{D38489E4-297D-48F9-B641-00AED0D1A039}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D5605AB9-15BC-4C8B-A40B-DDB7ABAE3568}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{D5AE1286-55F9-48ED-86A5-EED9E499B3E7}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{D776EAC2-9897-48E7-8990-850D89E12A0A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D93563C4-A170-46B3-8F21-D960ECF0DEE8}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\fifa world\fifaworld.exe |
"{D9591701-31BD-41FE-9AA7-704C8ABB1F73}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\need for speed world\gamelauncher.exe |
"{DC3014FB-CF39-4C6F-B904-D7FA527B671A}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\plants vs. zombies\plantsvszombies.exe |
"{DD35929D-1095-4524-BA0F-F1ADCC099522}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\fifa world\fifaworld.exe |
"{DD5CBA13-3A15-40A0-887B-3242F71307BE}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\simcity\simcity\simcity.exe |
"{DEBEE6B0-C381-42D4-B879-FB0EB5AAAD81}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{E5231AC4-CE99-4EDF-8974-D9670646ABD5}" = protocol=17 | dir=in | app=d:\program files (x86)\origin games\fifa 14 demo\game\fifa14_demo.exe |
"{E85FF8B1-3272-4F30-8A5E-705F6C5854C0}" = protocol=6 | dir=in | app=d:\program files (x86)\winamp\winamp.exe |
"{EC9A5DF0-F14B-4A27-9DB8-4FB4566A4E3C}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\simcity\simcity\simcity.exe |
"{ED3E5844-E32D-408F-8A23-ACA85925FB1B}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\unturned\unturned.exe |
"{EEAA307F-ABE0-44D0-8566-55B5B7C1EA75}" = protocol=6 | dir=in | app=e:\steam\steamapps\common\race 07\steamproxy.exe |
"{EF171A6E-AE42-4D11-A50F-7B8F459EB60C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{F4DF80C2-1C0D-4F3D-A34E-AB537E2072B4}" = protocol=6 | dir=in | app=d:\program files (x86)\origin games\need for speed world\gamelauncher.exe |
"{FF4551B6-53B5-4493-ACD1-BC7CA4815218}" = protocol=17 | dir=in | app=e:\steam\steamapps\common\race 07\config.exe |
"TCP Query User{10EA29CB-E55E-4F31-8E67-E94C6210FCED}C:\users\krystian\downloads\xenoxt2client_13_04_2012_by_pawemol (1)\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe" = protocol=6 | dir=in | app=c:\users\krystian\downloads\xenoxt2client_13_04_2012_by_pawemol (1)\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe |
"TCP Query User{1A3DB377-73B4-4BF4-84A0-066FB2EB4F5A}C:\users\krystian\desktop\nowy folder\kryptowaluty\captcoin-wallet\captcoin-wallet\captcoin-qt.exe" = protocol=6 | dir=in | app=c:\users\krystian\desktop\nowy folder\kryptowaluty\captcoin-wallet\captcoin-wallet\captcoin-qt.exe |
"TCP Query User{1A51BC54-DE09-43A5-9F26-CACA4B27FDBA}C:\users\krystian\desktop\nowy folder\nowy folder\konkurs ox mpcforum.pl\konkurs ox mpcforum.pl\mpcforum.pl konkurs ox.exe" = protocol=6 | dir=in | app=c:\users\krystian\desktop\nowy folder\nowy folder\konkurs ox mpcforum.pl\konkurs ox mpcforum.pl\mpcforum.pl konkurs ox.exe |
"TCP Query User{1B4E6634-A938-4119-A334-7366E1805F05}E:\tavia mt2\travica.pl - klient gry\uruchom_klienta.exe" = protocol=6 | dir=in | app=e:\tavia mt2\travica.pl - klient gry\uruchom_klienta.exe |
"TCP Query User{3C586957-D370-4A50-B272-38537E7EA700}E:\tavia mt2\travica.pl - klient gry - kopia\uruchom_klienta.exe" = protocol=6 | dir=in | app=e:\tavia mt2\travica.pl - klient gry - kopia\uruchom_klienta.exe |
"TCP Query User{3F6D9C13-3FF2-41BB-BBE8-2C11A306ACBA}E:\steam\steamapps\common\race 07\race_steam.exe" = protocol=6 | dir=in | app=e:\steam\steamapps\common\race 07\race_steam.exe |
"TCP Query User{40E8E3B3-D3B6-4003-8B2D-C3FDF2B1B725}E:\tavia mt2\travica.pl - klient gry\uruchom_klienta.exe" = protocol=6 | dir=in | app=e:\tavia mt2\travica.pl - klient gry\uruchom_klienta.exe |
"TCP Query User{44AA7246-CFDA-4B56-8899-0783B7E59416}C:\users\krystian\desktop\nowy folder\nowy folder\metin2-eridanus\eridanus.exe" = protocol=6 | dir=in | app=c:\users\krystian\desktop\nowy folder\nowy folder\metin2-eridanus\eridanus.exe |
"TCP Query User{4570FF10-D21D-48FE-AC8D-F6F174170930}E:\programdata\electronic arts\need for speed world\data\nfsw.exe" = protocol=6 | dir=in | app=e:\programdata\electronic arts\need for speed world\data\nfsw.exe |
"TCP Query User{4E1972C5-54D7-409D-BA3C-5C1E46F8BEF6}C:\users\krystian\desktop\mtamta\gta san andreas\gta_sa.exe" = protocol=6 | dir=in | app=c:\users\krystian\desktop\mtamta\gta san andreas\gta_sa.exe |
"TCP Query User{568B6FB6-BA19-4BFC-8D2C-81211483EA25}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{597C0DF3-B6AE-433F-AA45-8AFA118888F5}E:\tavia mt2\tavia - klient gry\tavia.eu.exe" = protocol=6 | dir=in | app=e:\tavia mt2\tavia - klient gry\tavia.eu.exe |
"TCP Query User{663A1B53-9A7E-4670-B562-6048DA1A10E0}E:\nowy folder\server\mta server.exe" = protocol=6 | dir=in | app=e:\nowy folder\server\mta server.exe |
"TCP Query User{788449F3-6599-42EA-8485-FAA9E6B43D5C}C:\users\krystian\desktop\nowy folder\nowy folder\nowy folder\tavia.pl - klient gry1\tavia.pl.exe" = protocol=6 | dir=in | app=c:\users\krystian\desktop\nowy folder\nowy folder\nowy folder\tavia.pl - klient gry1\tavia.pl.exe |
"TCP Query User{7AC84911-D8C7-4ED8-B81C-929673B17F78}C:\windows\system32\javaw.exe" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe |
"TCP Query User{823DC2F2-A251-4225-868A-96991BBAFEF9}D:\program files (x86)\free download manager\fdm.exe" = protocol=6 | dir=in | app=d:\program files (x86)\free download manager\fdm.exe |
"TCP Query User{98DA07C1-FCC3-4A6E-A5EE-5270493ECF33}C:\users\krystian\desktop\nowy folder\nowy folder\konkurs ox mpcforum.pl\konkurs ox mpcforum.pl\mpcforum.pl konkurs ox.exe" = protocol=6 | dir=in | app=c:\users\krystian\desktop\nowy folder\nowy folder\konkurs ox mpcforum.pl\konkurs ox mpcforum.pl\mpcforum.pl konkurs ox.exe |
"TCP Query User{A07CBE83-2E3A-4242-8E29-DDADDDFBF077}C:\program files\java\jre7\launch4j-tmp\minecraftzyczu.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\launch4j-tmp\minecraftzyczu.exe |
"TCP Query User{B65233E0-3D8F-4E88-AA00-85E1D2645B7B}D:\program files (x86)\klient 4death.pl\4death.pl.exe" = protocol=6 | dir=in | app=d:\program files (x86)\klient 4death.pl\4death.pl.exe |
"TCP Query User{BFF12514-CA0E-435A-A8FA-4EB7E5AE6A69}C:\program files (x86)\java\jre7\launch4j-tmp\minecraftzyczu.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\launch4j-tmp\minecraftzyczu.exe |
"TCP Query User{D65D03EC-7093-4675-B63E-25A13EEB45E7}C:\windows\system32\javaw.exe" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe |
"TCP Query User{DA1697F1-2480-4BD7-8370-CF7BA1C7A584}C:\program files\java\jre7\launch4j-tmp\minecraftzyczu.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\launch4j-tmp\minecraftzyczu.exe |
"TCP Query User{DA4A2C15-24DA-47F4-8377-E8ABBFCB5C66}C:\users\krystian\desktop\nowy folder\nowy folder\tavia.pl - klient gry1\tavia.pl.exe" = protocol=6 | dir=in | app=c:\users\krystian\desktop\nowy folder\nowy folder\tavia.pl - klient gry1\tavia.pl.exe |
"TCP Query User{E29D4B43-3DF2-4C27-B89D-937B478A16AA}E:\tavia mt2\tavia - klient gry\start - tavia.exe" = protocol=6 | dir=in | app=e:\tavia mt2\tavia - klient gry\start - tavia.exe |
"TCP Query User{EC03C1AD-2712-451D-A551-885041935A22}E:\program files (x86)\team 17\worms revolution - gold edition\wormsrevolution.exe" = protocol=6 | dir=in | app=e:\program files (x86)\team 17\worms revolution - gold edition\wormsrevolution.exe |
"TCP Query User{F39B8170-44D8-47F1-B67D-3AE5773D3E57}E:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe" = protocol=6 | dir=in | app=e:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe |
"TCP Query User{F684A5BF-85B9-48F6-939B-B88683E28461}E:\tavia mt2\tavia - klient gry\start - tavia.exe" = protocol=6 | dir=in | app=e:\tavia mt2\tavia - klient gry\start - tavia.exe |
"TCP Query User{FA0D4816-E7CB-423B-80A1-B266A3765A8A}D:\program files (x86)\litecoin\litecoin-qt.exe" = protocol=6 | dir=in | app=d:\program files (x86)\litecoin\litecoin-qt.exe |
"UDP Query User{050413AE-8B3C-42B3-AC06-4873D139E62E}D:\program files (x86)\free download manager\fdm.exe" = protocol=17 | dir=in | app=d:\program files (x86)\free download manager\fdm.exe |
"UDP Query User{09C156B9-595A-4D5F-8497-8AF174D013A8}C:\users\krystian\desktop\nowy folder\kryptowaluty\captcoin-wallet\captcoin-wallet\captcoin-qt.exe" = protocol=17 | dir=in | app=c:\users\krystian\desktop\nowy folder\kryptowaluty\captcoin-wallet\captcoin-wallet\captcoin-qt.exe |
"UDP Query User{151CAB5D-4A08-45AE-BB23-AA888BC52BB2}C:\users\krystian\desktop\nowy folder\nowy folder\konkurs ox mpcforum.pl\konkurs ox mpcforum.pl\mpcforum.pl konkurs ox.exe" = protocol=17 | dir=in | app=c:\users\krystian\desktop\nowy folder\nowy folder\konkurs ox mpcforum.pl\konkurs ox mpcforum.pl\mpcforum.pl konkurs ox.exe |
"UDP Query User{18A5D9A0-952F-424B-BD01-FD8A464421F1}C:\program files\java\jre7\launch4j-tmp\minecraftzyczu.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\launch4j-tmp\minecraftzyczu.exe |
"UDP Query User{270FC455-8FD0-4BC9-93EB-2EBE553F137D}E:\tavia mt2\travica.pl - klient gry\uruchom_klienta.exe" = protocol=17 | dir=in | app=e:\tavia mt2\travica.pl - klient gry\uruchom_klienta.exe |
"UDP Query User{3F1326E6-505E-4260-A9B1-52FDB2C46A79}D:\program files (x86)\klient 4death.pl\4death.pl.exe" = protocol=17 | dir=in | app=d:\program files (x86)\klient 4death.pl\4death.pl.exe |
"UDP Query User{3F9C0E29-8B62-4E82-B33E-9738E153B049}C:\users\krystian\desktop\nowy folder\nowy folder\konkurs ox mpcforum.pl\konkurs ox mpcforum.pl\mpcforum.pl konkurs ox.exe" = protocol=17 | dir=in | app=c:\users\krystian\desktop\nowy folder\nowy folder\konkurs ox mpcforum.pl\konkurs ox mpcforum.pl\mpcforum.pl konkurs ox.exe |
"UDP Query User{420D0A65-F23E-4E8E-96BC-F72830EF6B05}E:\tavia mt2\travica.pl - klient gry\uruchom_klienta.exe" = protocol=17 | dir=in | app=e:\tavia mt2\travica.pl - klient gry\uruchom_klienta.exe |
"UDP Query User{457EAF74-83B9-4BBF-8523-4246F710B2DB}C:\users\krystian\desktop\nowy folder\nowy folder\nowy folder\tavia.pl - klient gry1\tavia.pl.exe" = protocol=17 | dir=in | app=c:\users\krystian\desktop\nowy folder\nowy folder\nowy folder\tavia.pl - klient gry1\tavia.pl.exe |
"UDP Query User{466B6B7D-C355-4B7C-9CFC-1768D5CE1557}C:\windows\system32\javaw.exe" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe |
"UDP Query User{46D8AF36-B925-4AF8-BA35-A64EB59DBE36}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"UDP Query User{47B8C30A-1563-44EB-A466-22F14824BEFC}E:\tavia mt2\tavia - klient gry\tavia.eu.exe" = protocol=17 | dir=in | app=e:\tavia mt2\tavia - klient gry\tavia.eu.exe |
"UDP Query User{4F6F6D7F-1187-4A19-973D-532BABF61E9E}D:\program files (x86)\litecoin\litecoin-qt.exe" = protocol=17 | dir=in | app=d:\program files (x86)\litecoin\litecoin-qt.exe |
"UDP Query User{5D17C1B1-A859-4244-AEAB-307A4F72D0B8}E:\nowy folder\server\mta server.exe" = protocol=17 | dir=in | app=e:\nowy folder\server\mta server.exe |
"UDP Query User{7F78EB2C-572B-425F-ADDF-9EDEEF48EA66}E:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe" = protocol=17 | dir=in | app=e:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe |
"UDP Query User{8D5B8ED9-C8EA-45EE-BD0C-E12243F825D2}C:\users\krystian\downloads\xenoxt2client_13_04_2012_by_pawemol (1)\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe" = protocol=17 | dir=in | app=c:\users\krystian\downloads\xenoxt2client_13_04_2012_by_pawemol (1)\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe |
"UDP Query User{9B0436FE-BE91-479D-A474-E28DBC305C75}E:\steam\steamapps\common\race 07\race_steam.exe" = protocol=17 | dir=in | app=e:\steam\steamapps\common\race 07\race_steam.exe |
"UDP Query User{AB15248B-80FB-4399-A41B-FCC83461A003}C:\users\krystian\desktop\mtamta\gta san andreas\gta_sa.exe" = protocol=17 | dir=in | app=c:\users\krystian\desktop\mtamta\gta san andreas\gta_sa.exe |
"UDP Query User{ACE71E99-EB61-470B-AD79-7795110A833E}E:\tavia mt2\tavia - klient gry\start - tavia.exe" = protocol=17 | dir=in | app=e:\tavia mt2\tavia - klient gry\start - tavia.exe |
"UDP Query User{BF30EB36-FE83-4A44-A728-89C6302D65D2}E:\program files (x86)\team 17\worms revolution - gold edition\wormsrevolution.exe" = protocol=17 | dir=in | app=e:\program files (x86)\team 17\worms revolution - gold edition\wormsrevolution.exe |
"UDP Query User{C1CE1534-3967-4FA5-8FCD-CFADA0C4641D}C:\users\krystian\desktop\nowy folder\nowy folder\tavia.pl - klient gry1\tavia.pl.exe" = protocol=17 | dir=in | app=c:\users\krystian\desktop\nowy folder\nowy folder\tavia.pl - klient gry1\tavia.pl.exe |
"UDP Query User{C8EA25B5-8810-4E53-8079-458EC279D943}C:\windows\system32\javaw.exe" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe |
"UDP Query User{D657DC52-317A-4C54-BD73-A003C8D7EED3}C:\program files (x86)\java\jre7\launch4j-tmp\minecraftzyczu.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\launch4j-tmp\minecraftzyczu.exe |
"UDP Query User{D9D60D3A-F16C-4DC6-9744-CD0299C0226D}E:\tavia mt2\travica.pl - klient gry - kopia\uruchom_klienta.exe" = protocol=17 | dir=in | app=e:\tavia mt2\travica.pl - klient gry - kopia\uruchom_klienta.exe |
"UDP Query User{E9DF15F8-857B-4BC2-B951-3698D1F6463A}C:\users\krystian\desktop\nowy folder\nowy folder\metin2-eridanus\eridanus.exe" = protocol=17 | dir=in | app=c:\users\krystian\desktop\nowy folder\nowy folder\metin2-eridanus\eridanus.exe |
"UDP Query User{EAAD83F6-4799-424B-8755-C1E2577AEFFB}C:\program files\java\jre7\launch4j-tmp\minecraftzyczu.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\launch4j-tmp\minecraftzyczu.exe |
"UDP Query User{EFC82860-25E8-4CDF-85B8-64C8F6091234}E:\tavia mt2\tavia - klient gry\start - tavia.exe" = protocol=17 | dir=in | app=e:\tavia mt2\tavia - klient gry\start - tavia.exe |
"UDP Query User{F04BBA59-4B2A-44C7-B9ED-FCD05D1B5CA8}E:\programdata\electronic arts\need for speed world\data\nfsw.exe" = protocol=17 | dir=in | app=e:\programdata\electronic arts\need for speed world\data\nfsw.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{45F1F774-38B4-3CC3-BAAF-051E6D19E48E}" = Microsoft .NET Framework 4.5.1 (PLK)
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5846E720-C188-478F-B501-45EA1ACC44D1}_is1" = MailShare
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0415-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Polish) 2010
"{90150000-0015-0409-1000-0000000FF1CE}" = Microsoft Access MUI (English) 2013
"{90150000-0016-0409-1000-0000000FF1CE}" = Microsoft Excel MUI (English) 2013
"{90150000-0018-0409-1000-0000000FF1CE}" = Microsoft PowerPoint MUI (English) 2013
"{90150000-0018-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}" =
"{90150000-0019-0409-1000-0000000FF1CE}" = Microsoft Publisher MUI (English) 2013
"{90150000-0019-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}" =
"{90150000-001A-0409-1000-0000000FF1CE}" = Microsoft Outlook MUI (English) 2013
"{90150000-001A-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}" =
"{90150000-001B-0409-1000-0000000FF1CE}" = Microsoft Word MUI (English) 2013
"{90150000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-040C-1000-0000000FF1CE}" = Outils de vérification linguistique 2013 de Microsoft Office - Français
"{90150000-001F-0C0A-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Español
"{90150000-002C-0409-1000-0000000FF1CE}" = Microsoft Office Proofing (English) 2013
"{90150000-0044-0409-1000-0000000FF1CE}" = Microsoft InfoPath MUI (English) 2013
"{90150000-0044-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}" =
"{90150000-006E-0409-1000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2013
"{90150000-0090-0409-1000-0000000FF1CE}" = Microsoft DCF MUI (English) 2013
"{90150000-00A1-0409-1000-0000000FF1CE}" = Microsoft OneNote MUI (English) 2013
"{90150000-00A1-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}" =
"{90150000-00BA-0409-1000-0000000FF1CE}" = Microsoft Groove MUI (English) 2013
"{90150000-00BA-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}" =
"{90150000-00C1-0000-1000-0000000FF1CE}" = Microsoft Office 32-bit Components 2013
"{90150000-00C1-0409-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (English) 2013
"{90150000-00E1-0409-1000-0000000FF1CE}" = Microsoft Office OSM MUI (English) 2013
"{90150000-00E1-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}" =
"{90150000-00E2-0409-1000-0000000FF1CE}" = Microsoft Office OSM UX MUI (English) 2013
"{90150000-00E2-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}" =
"{90150000-0115-0409-1000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2013
"{90150000-0117-0409-1000-0000000FF1CE}" = Microsoft Access Setup Metadata MUI (English) 2013
"{90150000-012B-0409-1000-0000000FF1CE}" = Microsoft Lync MUI (English) 2013
"{91150000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045" = Microsoft .NET Framework 4.5.1 (Polski)
"{94D70749-4281-39AC-AD90-B56A0E0A402E}" = Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 285.38
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 285.38
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 285.38
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Sterownik kontrolera 3D Vision 285.38
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.11.0621
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.5.20
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Sterownik dźwięku HD 1.2.24.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{BCA26999-EC22-3007-BB79-638913079C9A}" = Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU
"{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
"{FCADA26A-5672-31DD-BF0E-BA76ECF9B02D}" = Microsoft Help Viewer 1.0
"CCleaner" = CCleaner
"GIMP-2_is1" = GIMP 2.8.6
"Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"Office15.PROPLUSR" = Microsoft Office Professional Plus 2013
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"VLC media player" = VLC media player 2.1.4
"WinRAR archiver" = WinRAR 4.20 (64-bitowy)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01052d57-5e05-455f-9b02-dcf6f53962df}" = Playfire
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{14DD7530-CCD2-3798-B37D-3839ED6A441C}" = Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 6.21
"{26A24AE4-039D-4CA4-87B4-2F03217060FF}" = Java 7 Update 60
"{29ED28E7-C3D6-43F7-A821-E5D0867DE47F}" = eJay Techno 5
"{2A2F3AE8-246A-4252-BB26-1BEB45627074}" = Microsoft SQL Server System CLR Types
"{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}" = TL-WN721N/TL-WN722N Driver
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{3AF1B16A-7DC9-4C80-BAEC-70B088A7C5B8}" = Need For Speed™ World
"{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}" = Smite
"{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}" = Hi-Rez Studios Authenticate and Update Service
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}" = Google Earth Plug-in
"{4b0c178f-1f4d-47bc-b20e-bcd543b39e1a}" = Nero 9 Lite
"{4E968D9C-21A7-4915-B698-F7AEB913541D}" = Microsoft SQL Server 2008 R2 Management Objects
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5DE67937-45D5-45E4-923C-0B7F7EC929A7}" = League of Legends
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{7A6577E7-F341-430F-9173-91E14E2DE270}" = FIFA 14 Demo
"{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1" = Need For Speed™ World
"{7F6D7FD9-648D-4DD9-BB6E-3990C675ECA4}" = NVIDIA PhysX
"{889E44CE-435C-4D37-B302-A7E43339E5FA}_is1" = Mouse Recorder Pro 2.0.7.5
"{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}" = EPU-4 Engine
"{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}" = EA SPORTS FIFA World
"{90140000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2010
"{90140000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2010
"{90140000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2010
"{90140000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2010
"{90140000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2010
"{90140000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2010
"{90140000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2010
"{90140000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2010
"{90140000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2010
"{90140000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2010
"{90140000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2010
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1" = Gameforge Live 2.0.4
"{9E4F0E65-209E-4713-8BE2-7F8802BB3987}_is1" = War Inc Battlezone version 1.0.0
"{9FF0E71A-0A92-40E2-8F9D-553DAE540733}" = Playfire
"{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}" = Need for Speed™ Most Wanted
"{A7727F03-5311-4A12-9A63-2ACD20BA0497}" = Camtasia Studio 8
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1045-7B44-AB0000000001}" = Adobe Reader XI (11.0.09) - Polish
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D5913A68-1D92-4CB7-857A-1A45447878A3}_is1" = Klient 4Death.pl wersja 1.1
"{E20F04B6-5497-4296-95D8-8BB2CFD7EEE0}" = System Requirements Lab Detection
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}" = Bejeweled® 3
"{ED784556-66AA-3F17-9B58-7246ACB5C7E4}" = Microsoft Visual Basic 2010 Express - ENU
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}" = SimCity™
"Adobe Flash Player Plugin" = Adobe Flash Player 15 Plugin
"Bandicam" = Bandicam
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"Battlelog Web Plugins" = Battlelog Web Plugins
"CWK" = CWK (Czasowy Wyłącznik Komputera)
"DAEMON Tools Lite" = DAEMON Tools Lite
"Free Download Manager_is1" = Free Download Manager 3.9.3
"Google Chrome" = Google Chrome
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Menedżera urządzeń
"InstallShield_{29ED28E7-C3D6-43F7-A821-E5D0867DE47F}" = eJay Techno 5
"InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}" = NVIDIA ForceWare Network Access Manager
"League of Legends 3.0.1" = League of Legends
"MTA:SA 1.4" = MTA:SA v1.4.0
"MultiDoge 0.1.2" = MultiDoge 0.1.2
"MySSID_is1" = EXPERTool 7.12
"NS" = Norton Security
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Opera 25.0.1614.50" = Opera Stable 25.0.1614.50
"Origin" = Origin
"Steam App 10" = Counter-Strike
"Steam App 10190" = Call of Duty: Modern Warfare 2 - Multiplayer
"Steam App 222900" = Dead Island: Epidemic
"Steam App 291480" = Warface
"Steam App 299460" = Woodle Tree Adventures
"Steam App 304930" = Unturned
"Steam App 63380" = Sniper Elite V2
"Steam App 80" = Counter-Strike: Condition Zero
"Steam App 8600" = RACE 07
"Szkoła podstawowa klasa 6 - Dzień dobry historio!" = Szkoła podstawowa klasa 6 - Dzień dobry historio!
"Winamp" = Winamp
"Worms Revolution - Gold Edition_is1" = Worms Revolution - Gold Edition

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Litecoin" = Litecoin
"Reddcoin" = Reddcoin
"UnityWebPlayer" = Unity Web Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 2014-10-16 03:12:32 | Computer Name = Grzesiu | Source = Windows Search Service | ID = 7042
Description =

Error - 2014-10-16 03:12:32 | Computer Name = Grzesiu | Source = Windows Search Service | ID = 9002
Description =

Error - 2014-10-16 03:12:32 | Computer Name = Grzesiu | Source = Windows Search Service | ID = 3029
Description =

Error - 2014-10-16 03:12:33 | Computer Name = Grzesiu | Source = Windows Search Service | ID = 3029
Description =

Error - 2014-10-16 03:12:33 | Computer Name = Grzesiu | Source = Windows Search Service | ID = 3028
Description =

Error - 2014-10-16 03:12:33 | Computer Name = Grzesiu | Source = Windows Search Service | ID = 3058
Description =

Error - 2014-10-16 03:12:33 | Computer Name = Grzesiu | Source = Windows Search Service | ID = 7010
Description =

Error - 2014-10-16 03:25:07 | Computer Name = Grzesiu | Source = Office 2013 Licensing Service | ID = 0
Description =

Error - 2014-10-16 03:48:24 | Computer Name = Grzesiu | Source = Application Hang | ID = 1002
Description = Program setup.exe w wersji 12.0.0.58851 zatrzymał interakcję z systemem
Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji
dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum
akcji. Identyfikator procesu: 880 Godzina rozpoczęcia: 01cfe9156e977b40 Godzina zakończenia:
16 Ścieżka aplikacji: C:\Users\Krystian\AppData\Local\Temp\{8D46BA7C-F7B9-431F-8C8A-3C941231DAD9}\setup.exe

Identyfikator
raportu: cc482141-5508-11e4-afdc-99e0ad3fd28b

Error - 2014-10-16 04:26:54 | Computer Name = Grzesiu | Source = Application Hang | ID = 1002
Description = Program OTL.exe w wersji 3.2.69.0 zatrzymał interakcję z systemem
Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji
dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum
akcji. Identyfikator procesu: 4b8 Godzina rozpoczęcia: 01cfe91a4ccf5780 Godzina zakończenia:
12 Ścieżka aplikacji: C:\Users\Krystian\Downloads\OTL.exe Identyfikator raportu:
f64ad281-550d-11e4-852c-b7bc987bd48e

[ System Events ]
Error - 2014-10-16 03:53:26 | Computer Name = Grzesiu | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error - 2014-10-16 03:53:26 | Computer Name = Grzesiu | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error - 2014-10-16 03:56:31 | Computer Name = Grzesiu | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi TBPanel z powodu następującego błędu: %%2

Error - 2014-10-16 03:56:34 | Computer Name = Grzesiu | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error - 2014-10-16 03:56:37 | Computer Name = Grzesiu | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error - 2014-10-16 03:57:33 | Computer Name = Grzesiu | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error - 2014-10-16 03:57:34 | Computer Name = Grzesiu | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error - 2014-10-16 03:57:38 | Computer Name = Grzesiu | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error - 2014-10-16 03:57:39 | Computer Name = Grzesiu | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error - 2014-10-16 04:18:59 | Computer Name = Grzesiu | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

< End of report >

zombi1555 · 18 Października 2014

Wyczyść Firefox z adware w tym celu: menu Pomoc > Informacje dla pomocy technicznej > Zresetuj program Firefox Zakładki i hasła zostaną normalnie

Gdzie skan z Farbar Recovery Scan Tool ??
Jakie programy??
Panel sterowania>Odinstaluj program>PopCap Game

Narazie powinno pomoc puki ktoś ci nie odpowie

Edytowane 18 Października 2014 przez zombi1555

dandun · 20 Października 2014

Posiadam chrome, szukałem takowych (podobnych) zakładek i nie znalazłem.

PopCam Game, tego nie mam w panelu odinstalowywania.

Skan: z Farbar Recovery Scan Tool:

frst:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-08-2014 (ATTENTION: ====> FRST version is 50 days old and could be outdated)
Ran by Krystian (administrator) on GRZESIU on 20-10-2014 22:46:42
Running from C:\Users\Krystian\Downloads
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [bCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Policies\Explorer: [NoSetActiveDesktop] 0
HKU\.DEFAULT\...\RunOnce: [sPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-10-07] (Microsoft Corporation)
HKU\.DEFAULT\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-19\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-20\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-678882040-263938067-2815254729-1000\...\Policies\Explorer: [NoSetActiveDesktop] 0
HKU\S-1-5-21-678882040-263938067-2815254729-1000\...\MountPoints2: G - G:\start.exe
HKU\S-1-5-21-678882040-263938067-2815254729-1000\...\MountPoints2: {23209dc0-225d-11e4-8ffd-a1e9bd0d3b93} - G:\setup.exe
HKU\S-1-5-21-678882040-263938067-2815254729-1000\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: IEExtension.Extension -> {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} -> C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)

Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Krystian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Krystian\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Eliminator Slajdów) - C:\Users\Krystian\AppData\Local\Google\Chrome\User Data\Default\Extensions\eplekpmdodlgejgogbojajncdlapamff [2014-07-12]
CHR Extension: (Google Wallet) - C:\Users\Krystian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-08]
CHR Extension: (Last updated at $time$ on $date$) - C:\Users\Krystian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2014-07-12]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S4 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [626208 2009-08-10] ()
S4 HiPatchService; E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2014-08-22] (Hi-Rez Studios) [File not signed]
R2 MBAMScheduler; d:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
S2 MBAMService; d:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
S4 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [206880 2009-08-10] ()
S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [1891184 2014-10-15] (Electronic Arts)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-08-12] (Disc Soft Ltd)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-10-01] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S2 TBPanel; No ImagePath
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-20 22:46 - 2014-10-20 22:47 - 00012552 _____ () C:\Users\Krystian\Downloads\FRST.txt
2014-10-20 22:46 - 2014-10-20 22:46 - 00000000 ____D () C:\FRST
2014-10-20 22:45 - 2014-10-20 22:45 - 02104320 _____ (Farbar) C:\Users\Krystian\Downloads\FRST64.exe
2014-10-18 00:45 - 2014-10-18 00:45 - 00000000 _____ () C:\Users\Krystian\Desktop\Na sygnale odc. 33.txt
2014-10-17 16:20 - 2014-10-17 16:20 - 00004535 _____ () C:\Users\Krystian\AppData\Roaming\CamStudio.cfg
2014-10-17 16:20 - 2014-10-17 16:20 - 00000408 _____ () C:\Users\Krystian\AppData\Roaming\CamShapes.ini
2014-10-17 16:20 - 2014-10-17 16:20 - 00000408 _____ () C:\Users\Krystian\AppData\Roaming\CamLayout.ini
2014-10-17 16:20 - 2014-10-17 16:20 - 00000046 _____ () C:\Users\Krystian\AppData\Roaming\Camdata.ini
2014-10-17 16:19 - 2014-10-17 16:20 - 00000000 ____D () C:\Users\Krystian\Documents\My CamStudio Temp Files
2014-10-17 16:19 - 2014-10-17 16:19 - 00000096 _____ () C:\Users\Krystian\AppData\Roaming\version2.xml
2014-10-17 16:12 - 2014-10-17 16:12 - 00000000 ____D () C:\Users\Krystian\Documents\Easy Macro Recorder
2014-10-17 16:12 - 2014-10-17 16:12 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Easy Macro Recorder
2014-10-17 16:12 - 2010-01-19 14:48 - 00152848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Comdlg32.ocx
2014-10-17 16:12 - 1998-06-24 00:00 - 00067376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SYSINFO.OCX
2014-10-16 19:47 - 2014-10-16 19:57 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-10-16 18:14 - 2014-10-16 18:14 - 00000000 ____D () C:\Users\Krystian\Downloads\Nowy folder (2)
2014-10-16 11:17 - 2014-10-16 12:13 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-16 11:16 - 2014-10-10 04:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-16 11:16 - 2014-10-10 04:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-16 11:16 - 2014-10-10 04:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-16 11:16 - 2014-10-07 04:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-16 11:16 - 2014-10-07 04:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-16 11:16 - 2014-09-29 02:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-16 11:16 - 2014-09-26 00:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-16 11:16 - 2014-09-26 00:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-16 11:16 - 2014-09-26 00:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-16 11:16 - 2014-09-26 00:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-16 11:16 - 2014-09-26 00:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-16 11:16 - 2014-09-26 00:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-16 11:16 - 2014-09-19 03:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-16 11:16 - 2014-09-19 03:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-16 11:16 - 2014-09-19 03:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-16 11:16 - 2014-09-19 03:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-16 11:16 - 2014-09-19 03:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-16 11:16 - 2014-09-19 03:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-16 11:16 - 2014-09-19 03:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-16 11:16 - 2014-09-19 03:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-16 11:16 - 2014-09-19 03:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-16 11:16 - 2014-09-19 03:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-16 11:16 - 2014-09-19 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-16 11:16 - 2014-09-19 03:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-16 11:16 - 2014-09-19 03:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-16 11:16 - 2014-09-19 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-16 11:16 - 2014-09-19 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-16 11:16 - 2014-09-19 03:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-16 11:16 - 2014-09-19 02:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-16 11:16 - 2014-09-19 02:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-16 11:16 - 2014-09-19 02:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-16 11:16 - 2014-09-19 02:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-16 11:16 - 2014-09-19 02:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-16 11:16 - 2014-09-19 02:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-16 11:16 - 2014-09-19 02:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-16 11:16 - 2014-09-19 02:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-16 11:16 - 2014-09-19 02:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-16 11:16 - 2014-09-19 02:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-16 11:16 - 2014-09-19 02:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-16 11:16 - 2014-09-19 02:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-16 11:16 - 2014-09-19 02:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-16 11:16 - 2014-09-19 02:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-16 11:16 - 2014-09-19 01:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-16 11:16 - 2014-09-19 01:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-16 11:16 - 2014-09-19 01:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-16 11:16 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-16 11:16 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-16 11:16 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-16 11:16 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-16 11:16 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-16 11:16 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-16 11:15 - 2014-10-16 11:15 - 00000781 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-10-16 11:15 - 2014-10-16 11:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-10-16 11:15 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-10-16 11:15 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-10-16 11:15 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-10-16 11:15 - 2014-09-26 00:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-16 11:15 - 2014-09-19 04:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-16 11:15 - 2014-09-19 03:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-16 11:15 - 2014-09-19 03:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-16 11:15 - 2014-09-19 03:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-16 11:15 - 2014-09-19 03:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-16 11:15 - 2014-09-19 03:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-16 11:15 - 2014-09-19 03:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-16 11:15 - 2014-09-19 03:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-16 11:15 - 2014-09-19 03:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-16 11:15 - 2014-09-19 03:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-16 11:15 - 2014-09-19 02:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-16 11:15 - 2014-09-19 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-16 11:15 - 2014-09-19 02:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-16 11:15 - 2014-09-19 01:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-16 10:51 - 2014-07-17 04:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-16 10:51 - 2014-07-17 04:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-16 10:51 - 2014-07-17 04:07 - 01113088 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-16 10:51 - 2014-07-17 04:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-16 10:51 - 2014-07-17 04:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-16 10:51 - 2014-07-17 04:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-16 10:51 - 2014-07-17 04:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-16 10:51 - 2014-07-17 04:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-16 10:51 - 2014-07-17 04:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-16 10:51 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-16 10:51 - 2014-07-17 03:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-16 10:51 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-10-16 10:51 - 2014-07-17 03:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-10-16 10:51 - 2014-07-17 03:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-16 10:51 - 2014-07-17 03:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-16 10:51 - 2014-07-17 03:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-16 10:51 - 2014-07-17 03:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-16 10:48 - 2014-10-16 10:48 - 00100582 _____ () C:\Users\Krystian\Downloads\Extras.Txt
2014-10-16 10:45 - 2014-10-16 10:45 - 00082456 _____ () C:\Users\Krystian\Downloads\OTL.Txt
2014-10-16 10:30 - 2014-09-18 04:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-16 10:30 - 2014-09-18 03:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-16 10:24 - 2014-09-04 07:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-16 10:24 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-16 10:14 - 2014-10-16 10:15 - 00602112 _____ (OldTimer Tools) C:\Users\Krystian\Downloads\OTL.exe
2014-10-16 10:09 - 2014-09-13 03:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-16 10:09 - 2014-09-13 03:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-16 09:17 - 2014-10-16 09:21 - 00000000 ____D () C:\Users\Krystian\AppData\Local\Adobe
2014-10-16 09:12 - 2014-10-20 17:36 - 00004592 _____ () C:\Windows\setupact.log
2014-10-16 09:12 - 2014-10-16 09:12 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-16 09:11 - 2014-10-16 19:21 - 00687612 _____ () C:\Windows\PFRO.log
2014-10-15 19:42 - 2014-10-15 19:42 - 00002517 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-10-15 19:42 - 2014-10-15 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-10-10 17:52 - 2014-10-10 17:52 - 00002950 _____ () C:\Windows\System32\Tasks\{30ACDC79-96B4-433D-98FE-9090B17D2F49}
2014-10-10 14:51 - 2014-10-10 14:52 - 00000000 ____D () C:\Users\Krystian\AppData\Local\NPE
2014-10-09 20:47 - 2014-10-16 18:16 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Winamp
2014-10-09 20:47 - 2014-10-09 20:47 - 00000692 _____ () C:\Users\Public\Desktop\Winamp.lnk
2014-10-09 20:47 - 2014-10-09 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2014-10-08 20:46 - 2014-10-08 20:47 - 00000028 _____ () C:\Users\Krystian\Desktop\Nowy dokument tekstowy (6).txt
2014-10-07 20:32 - 2014-10-07 22:59 - 01863000 _____ () C:\Users\Krystian\Desktop\asdasdasdasda.pptx
2014-10-07 20:24 - 2014-10-07 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2014-10-07 20:24 - 2014-10-07 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-10-07 20:22 - 2014-10-07 20:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Sync Framework
2014-10-07 20:19 - 2014-10-07 20:19 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2014-10-05 17:29 - 2014-10-05 17:29 - 00000858 _____ () C:\Users\Public\Desktop\EA SPORTS FIFA World.lnk
2014-10-05 16:29 - 2014-10-05 16:29 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-10-05 13:18 - 2014-10-05 13:18 - 00000000 ____D () C:\Users\Krystian\Documents\Electronic Arts
2014-10-05 13:18 - 2014-10-05 13:18 - 00000000 ____D () C:\Users\Krystian\AppData\Local\Electronic Arts
2014-10-01 19:11 - 2014-09-25 04:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-01 19:10 - 2014-09-25 03:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-09-24 14:06 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-24 14:06 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-20 21:37 - 2014-09-23 15:22 - 00000000 ____D () C:\Users\Krystian\Desktop\Selekscja
2014-09-20 13:02 - 2014-09-20 13:02 - 00000003 _____ () C:\Windows\system32\HRUPPROG.EXIT

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-20 22:47 - 2014-10-20 22:46 - 00012552 _____ () C:\Users\Krystian\Downloads\FRST.txt
2014-10-20 22:46 - 2014-10-20 22:46 - 00000000 ____D () C:\FRST
2014-10-20 22:46 - 2013-10-05 22:23 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Skype
2014-10-20 22:45 - 2014-10-20 22:45 - 02104320 _____ (Farbar) C:\Users\Krystian\Downloads\FRST64.exe
2014-10-20 22:21 - 2013-10-13 18:41 - 00001052 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-20 22:15 - 2013-10-05 20:13 - 01548242 _____ () C:\Windows\WindowsUpdate.log
2014-10-20 21:58 - 2013-10-05 22:36 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-20 21:18 - 2009-07-14 06:45 - 00017296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-20 21:18 - 2009-07-14 06:45 - 00017296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-20 18:59 - 2009-07-14 19:55 - 00740422 _____ () C:\Windows\system32\perfh015.dat
2014-10-20 18:59 - 2009-07-14 19:55 - 00155996 _____ () C:\Windows\system32\perfc015.dat
2014-10-20 18:59 - 2009-07-14 07:13 - 01670518 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-20 17:36 - 2014-10-16 09:12 - 00004592 _____ () C:\Windows\setupact.log
2014-10-20 17:27 - 2013-10-13 18:41 - 00001048 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-20 17:27 - 2013-10-05 20:29 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-20 17:27 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-19 23:15 - 2014-09-13 10:43 - 00000000 ____D () C:\Users\Krystian\Desktop\HuczuHucz - Po Tej Stronie Raju [2011]
2014-10-19 23:14 - 2014-09-12 21:28 - 00000000 ____D () C:\Users\Krystian\Desktop\Vixen-New-Ton-LP-2009
2014-10-19 10:12 - 2013-10-08 15:25 - 00000000 ____D () C:\Users\Krystian\AppData\Local\CrashDumps
2014-10-18 00:45 - 2014-10-18 00:45 - 00000000 _____ () C:\Users\Krystian\Desktop\Na sygnale odc. 33.txt
2014-10-17 16:20 - 2014-10-17 16:20 - 00004535 _____ () C:\Users\Krystian\AppData\Roaming\CamStudio.cfg
2014-10-17 16:20 - 2014-10-17 16:20 - 00000408 _____ () C:\Users\Krystian\AppData\Roaming\CamShapes.ini
2014-10-17 16:20 - 2014-10-17 16:20 - 00000408 _____ () C:\Users\Krystian\AppData\Roaming\CamLayout.ini
2014-10-17 16:20 - 2014-10-17 16:20 - 00000046 _____ () C:\Users\Krystian\AppData\Roaming\Camdata.ini
2014-10-17 16:20 - 2014-10-17 16:19 - 00000000 ____D () C:\Users\Krystian\Documents\My CamStudio Temp Files
2014-10-17 16:19 - 2014-10-17 16:19 - 00000096 _____ () C:\Users\Krystian\AppData\Roaming\version2.xml
2014-10-17 16:12 - 2014-10-17 16:12 - 00000000 ____D () C:\Users\Krystian\Documents\Easy Macro Recorder
2014-10-17 16:12 - 2014-10-17 16:12 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Easy Macro Recorder
2014-10-17 16:04 - 2014-05-04 17:29 - 00000000 ____D () C:\Users\Krystian\AppData\Local\Nemex
2014-10-17 16:03 - 2013-12-11 16:54 - 00000000 ____D () C:\Users\Krystian\Desktop\Nowy folder
2014-10-17 15:35 - 2013-10-08 15:52 - 00112328 _____ () C:\Users\Krystian\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-17 12:24 - 2013-10-06 16:49 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\.minecraft
2014-10-16 20:39 - 2009-07-14 06:45 - 00441008 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-16 20:37 - 2014-05-06 23:41 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-16 19:58 - 2014-05-06 18:14 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-16 19:57 - 2014-10-16 19:47 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-10-16 19:57 - 2009-07-14 04:34 - 00000478 _____ () C:\Windows\win.ini
2014-10-16 19:21 - 2014-10-16 09:11 - 00687612 _____ () C:\Windows\PFRO.log
2014-10-16 19:21 - 2013-10-05 20:39 - 00000000 ____D () C:\ProgramData\Norton
2014-10-16 18:17 - 2014-09-13 11:57 - 00000000 ____D () C:\Users\Krystian\Downloads\Bob_One_-_Tw__j_Ruch__2013_ (2)
2014-10-16 18:17 - 2014-01-30 22:34 - 00000000 ____D () C:\Users\Krystian\Downloads\MUZYKA
2014-10-16 18:16 - 2014-10-09 20:47 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Winamp
2014-10-16 18:14 - 2014-10-16 18:14 - 00000000 ____D () C:\Users\Krystian\Downloads\Nowy folder (2)
2014-10-16 12:13 - 2014-10-16 11:17 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-16 11:15 - 2014-10-16 11:15 - 00000781 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-10-16 11:15 - 2014-10-16 11:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-10-16 10:48 - 2014-10-16 10:48 - 00100582 _____ () C:\Users\Krystian\Downloads\Extras.Txt
2014-10-16 10:45 - 2014-10-16 10:45 - 00082456 _____ () C:\Users\Krystian\Downloads\OTL.Txt
2014-10-16 10:15 - 2014-10-16 10:14 - 00602112 _____ (OldTimer Tools) C:\Users\Krystian\Downloads\OTL.exe
2014-10-16 10:02 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-16 09:30 - 2014-06-03 14:33 - 00003870 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1381000339
2014-10-16 09:30 - 2013-10-05 21:12 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-10-16 09:21 - 2014-10-16 09:17 - 00000000 ____D () C:\Users\Krystian\AppData\Local\Adobe
2014-10-16 09:21 - 2013-10-05 22:36 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-16 09:21 - 2013-10-05 22:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-16 09:21 - 2013-10-05 22:36 - 00003868 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-10-16 09:12 - 2014-10-16 09:12 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-15 20:58 - 2013-10-28 00:24 - 00000000 ____D () C:\ProgramData\Origin
2014-10-15 20:57 - 2014-03-12 00:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-10-15 19:42 - 2014-10-15 19:42 - 00002517 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-10-15 19:42 - 2014-10-15 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-10-15 19:42 - 2014-03-06 20:33 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-10-15 19:42 - 2013-10-05 22:22 - 00000000 ____D () C:\ProgramData\Skype
2014-10-11 15:26 - 2014-03-15 10:38 - 00000000 ____D () C:\Users\Krystian\Documents\FIFA World
2014-10-10 18:12 - 2013-11-23 15:22 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Origin
2014-10-10 17:52 - 2014-10-10 17:52 - 00002950 _____ () C:\Windows\System32\Tasks\{30ACDC79-96B4-433D-98FE-9090B17D2F49}
2014-10-10 14:52 - 2014-10-10 14:51 - 00000000 ____D () C:\Users\Krystian\AppData\Local\NPE
2014-10-10 13:53 - 2014-09-02 19:07 - 00000000 ____D () C:\avast! sandbox
2014-10-10 13:53 - 2014-01-05 17:38 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-10-10 04:05 - 2014-10-16 11:16 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-10 04:05 - 2014-10-16 11:16 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-10 04:00 - 2014-10-16 11:16 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-09 20:47 - 2014-10-09 20:47 - 00000692 _____ () C:\Users\Public\Desktop\Winamp.lnk
2014-10-09 20:47 - 2014-10-09 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2014-10-09 19:18 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-10-08 21:59 - 2013-11-23 15:06 - 00000000 ____D () C:\Users\Krystian\AppData\Local\Electronic_Arts_Inc
2014-10-08 20:47 - 2014-10-08 20:46 - 00000028 _____ () C:\Users\Krystian\Desktop\Nowy dokument tekstowy (6).txt
2014-10-07 22:59 - 2014-10-07 20:32 - 01863000 _____ () C:\Users\Krystian\Desktop\asdasdasdasda.pptx
2014-10-07 20:24 - 2014-10-07 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2014-10-07 20:24 - 2014-10-07 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-10-07 20:23 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-10-07 20:22 - 2014-10-07 20:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Sync Framework
2014-10-07 20:22 - 2014-05-06 18:14 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-10-07 20:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-10-07 20:19 - 2014-10-07 20:19 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2014-10-07 20:17 - 2014-05-06 18:14 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-10-07 20:17 - 2009-07-14 20:09 - 00000000 ____D () C:\Windows\ShellNew
2014-10-07 18:49 - 2013-10-05 20:20 - 00000000 ____D () C:\Users\Krystian\AppData\Local\VirtualStore
2014-10-07 04:54 - 2014-10-16 11:16 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-07 04:04 - 2014-10-16 11:16 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-05 17:29 - 2014-10-05 17:29 - 00000858 _____ () C:\Users\Public\Desktop\EA SPORTS FIFA World.lnk
2014-10-05 16:29 - 2014-10-05 16:29 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-10-05 13:18 - 2014-10-05 13:18 - 00000000 ____D () C:\Users\Krystian\Documents\Electronic Arts
2014-10-05 13:18 - 2014-10-05 13:18 - 00000000 ____D () C:\Users\Krystian\AppData\Local\Electronic Arts
2014-10-01 14:11 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-01 11:11 - 2014-10-16 11:15 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-10-01 11:11 - 2014-10-16 11:15 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-10-01 11:11 - 2014-10-16 11:15 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-09-29 02:58 - 2014-10-16 11:16 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-09-28 18:08 - 2014-03-08 19:10 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\vlc
2014-09-26 00:50 - 2014-10-16 11:15 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-26 00:46 - 2014-10-16 11:16 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-26 00:46 - 2014-10-16 11:16 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-26 00:46 - 2014-10-16 11:16 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-26 00:43 - 2014-10-16 11:16 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-26 00:32 - 2014-10-16 11:16 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-26 00:31 - 2014-10-16 11:16 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-25 04:08 - 2014-10-01 19:11 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-09-25 03:40 - 2014-10-01 19:10 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-09-24 23:13 - 2013-10-22 15:31 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Free Download Manager
2014-09-23 15:22 - 2014-09-20 21:37 - 00000000 ____D () C:\Users\Krystian\Desktop\Selekscja
2014-09-20 13:06 - 2013-11-16 15:48 - 00000003 _____ () C:\Windows\system32\HRUPPROG.TXT
2014-09-20 13:02 - 2014-09-20 13:02 - 00000003 _____ () C:\Windows\system32\HRUPPROG.EXIT

Some content of TEMP:
====================
C:\Users\Krystian\AppData\Local\Temp\eauninstall.exe
C:\Users\Krystian\AppData\Local\Temp\Need for Speed Most Wanted_uninst.exe
C:\Users\Krystian\AppData\Local\Temp\SkypeSetup.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-10-18 21:59

==================== End Of Log ============================

addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-08-2014
Ran by Krystian at 2014-10-20 22:48:27
Running from C:\Users\Krystian\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Advertising Center (x32 Version: 0.0.0.2 - Nero AG) Hidden
Aktualizacje NVIDIA 1.5.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.5.20 - NVIDIA Corporation)
Bandicam (HKLM-x32\...\Bandicam) (Version: - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Bejeweled® 3 (HKLM-x32\...\{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}) (Version: 1.1.13.4753 - Electronic Arts, Inc.)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version: - Infinity Ward)
Camtasia Studio 8 (HKLM-x32\...\{A7727F03-5311-4A12-9A63-2ACD20BA0497}) (Version: 8.2.1.1423 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 4.06 - Piriform)
Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve)
Counter-Strike: Condition Zero (HKLM-x32\...\Steam App 80) (Version: - Valve)
CWK (Czasowy Wyłącznik Komputera) (HKLM-x32\...\CWK) (Version: 2.52.3.43 - Damian Pasternak)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dead Island: Epidemic (HKLM-x32\...\Steam App 222900) (Version: - Stunlock Studios)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{650DE870-ECA3-4E63-8D77-778512BE5D4C}) (Version: - Microsoft)
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{B6FBF358-6B5E-4DE4-8BC5-892C87BBD3B4}) (Version: - Microsoft)
EA SPORTS FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 8.0.2.53616 - Electronic Arts, Inc.)
Easy Macro Recorder 4.65 (HKLM-x32\...\Easy Macro Recorder_is1) (Version: - GoldSolution Software, Inc.)
eJay Techno 5 (HKLM-x32\...\InstallShield_{29ED28E7-C3D6-43F7-A821-E5D0867DE47F}) (Version: 1.69 - )
eJay Techno 5 (x32 Version: 1.69 - ) Hidden
EPU-4 Engine (HKLM-x32\...\{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}) (Version: 1.02.01 - )
EXPERTool 7.12 (HKLM-x32\...\MySSID_is1) (Version: - Gainward Co., Ltd)
FIFA 14 Demo (HKLM-x32\...\{7A6577E7-F341-430F-9173-91E14E2DE270}) (Version: 1.0.0.0 - Electronic Arts)
Free Download Manager 3.9.3 (HKLM-x32\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG)
Gameforge Live 2.0.4 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.4 - Gameforge)
GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.104 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Litecoin (HKCU\...\Litecoin) (Version: 0.8.6.1 - Litecoin project)
MailShare (HKLM\...\{5846E720-C188-478F-B501-45EA1ACC44D1}_is1) (Version: 2.1.5 - MailShare.pl)
Malwarebytes Anti-Malware wersja 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (PLK) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Polski) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Access MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft DCF MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Excel MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Lync MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Polish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Polish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - ENU (x32 Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Word MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MTA:SA v1.4.0 (HKLM-x32\...\MTA:SA 1.4) (Version: v1.4.0 - Multi Theft Auto)
MultiDoge 0.1.2 (HKLM-x32\...\MultiDoge 0.1.2) (Version: 0.1.2 - )
Need For Speed™ World (HKLM-x32\...\{3AF1B16A-7DC9-4C80-BAEC-70B088A7C5B8}) (Version: 1.0.0.0 - Electronic Arts)
Need For Speed™ World (HKLM-x32\...\{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1) (Version: 1.0.0.1599 - Electronic Arts)
Nero 9 Lite (HKLM-x32\...\{4b0c178f-1f4d-47bc-b20e-bcd543b39e1a}) (Version: - Nero AG)
Nero ControlCenter (x32 Version: 9.0.0.1 - Nero AG) Hidden
Nero Installer (x32 Version: 4.4.9.0 - Nero AG) Hidden
Nero Online Upgrade (x32 Version: 1.3.0.0 - Nero AG) Hidden
Nero StartSmart (x32 Version: 9.4.31.100 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5919 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.7 - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (HKLM-x32\...\InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.7316 - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (Version: 1.00.7316 - NVIDIA Corporation) Hidden
NVIDIA Install Application (Version: 2.1002.45.235 - NVIDIA Corporation) Hidden
NVIDIA Oprogramowanie systemu PhysX 9.11.0621 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.11.0621 - NVIDIA Corporation)
NVIDIA PhysX (x32 Version: 9.11.0621 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.8538 - NVIDIA Corporation) Hidden
NVIDIA Sterownik 3D Vision 285.38 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 285.38 - NVIDIA Corporation)
NVIDIA Sterownik dźwięku HD 1.2.24.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.2.24.0 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 285.38 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 285.38 - NVIDIA Corporation)
NVIDIA Sterownik kontrolera 3D Vision 285.38 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 285.38 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.5.20 - NVIDIA Corporation) Hidden
Opera Stable 25.0.1614.50 (HKLM-x32\...\Opera 25.0.1614.50) (Version: 25.0.1614.50 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Panel sterowania NVIDIA 285.38 (Version: 285.38 - NVIDIA Corporation) Hidden
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
Playfire (HKLM-x32\...\{01052d57-5e05-455f-9b02-dcf6f53962df}) (Version: 0.0.58.0 - Playfire)
Playfire (x32 Version: 0.0.58.0 - Playfire) Hidden
Reddcoin (HKCU\...\Reddcoin) (Version: 1.2.1.0 - Reddcoin project)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 1.0.2326.4 - Hi-Rez Studios)
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version: - Rebellion)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
System Requirements Lab Detection (HKLM-x32\...\{E20F04B6-5497-4296-95D8-8BB2CFD7EEE0}) (Version: 2.1.1.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
TL-WN721N/TL-WN722N Driver (HKLM-x32\...\{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}) (Version: 1.0.0 - TP-LINK)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version: - Nelson Sexton)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Excel 2010 (KB2889836) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{9179FC17-97A8-4D98-9E09-05720AF5D44E}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2889941) 64-Bit Edition (HKLM\...\{90150000-0016-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{EFD6026A-1531-4678-B51B-1A10C3F51CEE}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2889941) 64-Bit Edition (HKLM\...\{90150000-0018-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{EFD6026A-1531-4678-B51B-1A10C3F51CEE}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2889941) 64-Bit Edition (HKLM\...\{90150000-001B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{EFD6026A-1531-4678-B51B-1A10C3F51CEE}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2889941) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{EFD6026A-1531-4678-B51B-1A10C3F51CEE}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2881083) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{8260F0BF-F234-41FC-AB11-218A9925F77B}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2889929) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{FC4C557E-7664-453D-8A55-5D414069E0F5}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2889929) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{FC4C557E-7664-453D-8A55-5D414069E0F5}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2889929) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{FC4C557E-7664-453D-8A55-5D414069E0F5}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760249) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{7A4AB8E1-C091-4BD3-B308-844BA6EE752A}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760344) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{EF77B4A6-DFEC-4010-A87D-9B6BF87FABEC}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760371) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{25DEA344-FF6F-41BD-B88F-5242BB8E80E1}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760544) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{62857CDD-2985-4939-91BA-19ED0B0031A5}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2768012) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{0814662C-FD28-4DE0-ACE5-EE50D1D6C8FB}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2863843) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{290D80DE-03AB-47EC-9402-108AF4CE4F66}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{24584DD4-C680-4FEB-A464-D760C7A5B041}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{24584DD4-C680-4FEB-A464-D760C7A5B041}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880462) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{24584DD4-C680-4FEB-A464-D760C7A5B041}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880478) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{8116ED50-F1E7-49E1-9D8D-421497D34B0F}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881001) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{DF1B7B95-4A86-4605-A628-556394B5580A}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881004) 64-Bit Edition (HKLM\...\{90150000-0016-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{AC8BEB81-5B5E-4503-B1F4-7781F4642E46}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881004) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{AC8BEB81-5B5E-4503-B1F4-7781F4642E46}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881009) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{3033838D-15E0-4199-8CBD-A7F2057AE653}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881012) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{0DC71935-8DEE-4621-A223-23FD1552E567}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 64-Bit Edition (HKLM\...\{90150000-0016-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{885C981B-F1E3-430A-A099-31CA9D28C251}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 64-Bit Edition (HKLM\...\{90150000-0090-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{885C981B-F1E3-430A-A099-31CA9D28C251}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{885C981B-F1E3-430A-A099-31CA9D28C251}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881039) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{C675FC43-E413-49A7-B3DC-44967B4FE22D}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2883036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{E919ACF4-A1D7-4CAA-A103-5EB115563721}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2883049) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{39D9DAC1-16A7-430A-B2F3-4D3D000454D0}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2883060) 64-Bit Edition (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{F9C35D99-CA8E-4D17-B785-66AC654D5664}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2883060) 64-Bit Edition (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}_Office15.PROPLUSR_{18C53DCB-FA98-4A7B-BC2E-6DA30D4E4901}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2883060) 64-Bit Edition (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}_Office15.PROPLUSR_{6E2862B8-C10A-4FD0-9B82-8D9761301AAA}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2883095) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{EADBF225-163E-406B-B11A-26ECCCAB5A0E}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2889848) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{A9D59DD4-0591-447A-AEEB-DC1FEE5502BF}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2889848) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{A9D59DD4-0591-447A-AEEB-DC1FEE5502BF}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2889848) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{A9D59DD4-0591-447A-AEEB-DC1FEE5502BF}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2889940) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{36772E16-D3FA-440E-B001-0BEB2B1FCE47}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2889942) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{C22AE0C4-590E-46FF-9E21-37F45B84ADDD}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2889942) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{C22AE0C4-590E-46FF-9E21-37F45B84ADDD}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB3000731) 64-Bit Edition (HKLM\...\{90150000-00BA-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{2245C7DD-6984-40C8-AD2C-C1CC6F049C91}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB3000731) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{2245C7DD-6984-40C8-AD2C-C1CC6F049C91}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB3000731) 64-Bit Edition (HKLM\...\{90150000-00C1-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{2245C7DD-6984-40C8-AD2C-C1CC6F049C91}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB3000731) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{2245C7DD-6984-40C8-AD2C-C1CC6F049C91}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2883059) 64-Bit Edition (HKLM\...\{90150000-00A1-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{BA62716F-904B-4668-A792-A41C1D806416}) (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2883059) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{BA62716F-904B-4668-A792-A41C1D806416}) (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2883059) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{BA62716F-904B-4668-A792-A41C1D806416}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0415-0000-0000000FF1CE}_Office14.PROPLUSR_{70D90D6A-7373-40DD-BF09-9F0B9C55FA36}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft Outlook 2013 (KB2986204) 64-Bit Edition (HKLM\...\{90150000-001A-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{2CB96A7D-CBFE-4028-ACE8-31C3925D3D46}) (Version: - Microsoft)
Update for Microsoft Outlook 2013 (KB2986204) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{2CB96A7D-CBFE-4028-ACE8-31C3925D3D46}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0415-0000-0000000FF1CE}_Office14.PROPLUSR_{1B21CC3B-3FE0-4386-B29E-6EF68C45FD9E}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2889847) 64-Bit Edition (HKLM\...\{90150000-0018-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{7F1008C2-8C87-497F-B6D8-56B53DA0FAB3}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2889847) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{7F1008C2-8C87-497F-B6D8-56B53DA0FAB3}) (Version: - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 64-Bit Edition (HKLM\...\{90150000-0019-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{C07147B9-CC0B-4CC1-A107-A705889A54F2}) (Version: - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{C07147B9-CC0B-4CC1-A107-A705889A54F2}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{8E5CD68A-CDF8-4930-88DF-B7778B1871A9}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{8E5CD68A-CDF8-4930-88DF-B7778B1871A9}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2878319) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{BC51FE30-3A56-4802-8D9E-E9BC05B56B49}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2889852) 64-Bit Edition (HKLM\...\{90150000-001A-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{01839F84-E94C-4E47-BEBE-95DF9CAE5FF3}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2889852) 64-Bit Edition (HKLM\...\{90150000-001B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{01839F84-E94C-4E47-BEBE-95DF9CAE5FF3}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2889852) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUSR_{01839F84-E94C-4E47-BEBE-95DF9CAE5FF3}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2889852) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{01839F84-E94C-4E47-BEBE-95DF9CAE5FF3}) (Version: - Microsoft)
VIA Platforma Menedżera urządzeń (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN)
War Inc Battlezone version 1.0.0 (HKLM-x32\...\{9E4F0E65-209E-4713-8BE2-7F8802BB3987}_is1) (Version: 1.0.0 - Arktos Entertainment Group LLC)
Warface (HKLM-x32\...\Steam App 291480) (Version: - Crytek GmbH)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 4.20 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Woodle Tree Adventures (HKLM-x32\...\Steam App 299460) (Version: - Fabio Ferrara)
Worms Revolution - Gold Edition (HKLM-x32\...\Worms Revolution - Gold Edition_is1) (Version: - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points =========================

09-10-2014 20:50:46 Windows Update
11-10-2014 01:00:13 Windows Update
11-10-2014 04:06:14 Windows Update
11-10-2014 14:21:28 Windows Update
11-10-2014 23:22:38 Windows Update
12-10-2014 22:30:21 Windows Update
13-10-2014 21:48:05 Windows Update
14-10-2014 22:11:08 Windows Update
16-10-2014 17:45:54 Windows Update

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {075525ED-1119-4360-9A29-3ED5366BBA2C} - System32\Tasks\{A99E4691-AC2E-4280-8C4D-4E66B6BBEF0E} => C:\Users\Krystian\Desktop\Nowy folder\Kryptowaluty\dogecoin\multidoge.exe [2014-03-15] ()
Task: {0ED2B800-44ED-4C37-BB3F-8E699CABE756} - System32\Tasks\{4FAD07B2-C737-4B88-BE49-4B34B854FF02} => C:\Users\Krystian\Downloads\Klient-4Death.pl.exe
Task: {3D32BBE2-6B7E-4875-9912-65F04AE26F15} - System32\Tasks\Opera scheduled Autoupdate 1381000339 => C:\Program Files (x86)\Opera\launcher.exe [2014-10-15] (Opera Software)
Task: {4FFEDECD-0D6E-4D9C-BA4C-0450C7FFF900} - System32\Tasks\{30ACDC79-96B4-433D-98FE-9090B17D2F49} => D:\Program Files (x86)\Origin\Origin.exe [2014-10-15] (Electronic Arts)
Task: {5B252604-B74A-42DC-B510-890C781F8615} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {5E5965A4-0EE3-4770-87A8-92AC21DBE71C} - System32\Tasks\ASUS\ASUS SIX Engine => C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe [2010-02-03] (ASUSTeK Computer Inc.)
Task: {63E272C1-3B17-4D83-9C1B-0B2D7CFA251C} - System32\Tasks\{3F8DADFE-D326-4D7C-861C-B92BC514FEF9} => C:\Users\Krystian\Downloads\multidoge-0.1.2-windows-setup.exe
Task: {6EA985D0-0F05-4C35-929C-B03884EC81C9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-16] (Adobe Systems Incorporated)
Task: {719ED40C-3202-4607-8764-E816965C5838} - System32\Tasks\{8DF139C4-28AD-48C6-887F-FFBB3B5940C0} => C:\Users\Krystian\Desktop\Nowy folder\Kryptowaluty\dogecoin\multidoge.exe [2014-03-15] ()
Task: {87B0E643-6440-4813-A247-1A7A5C5100CC} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {AE8E4E9E-D4EE-4769-8DC0-B718DF1AA8DD} - System32\Tasks\{7166CA47-DF58-4C4B-B19B-87F8483F34BD} => C:\Users\Krystian\Downloads\BananaMt2_archive\BananaMt2.exe
Task: {AEA7035F-2A45-4BF3-BEBD-E22140F72B63} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-13] (Google Inc.)
Task: {B094C392-DDC9-413D-A7EA-8E852DC3E0A8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-13] (Google Inc.)
Task: {E817329D-D947-41C9-854C-4F2AB83421F0} - System32\Tasks\{19B8E424-F62A-4547-879A-DC2EDEE8EA7F} => C:\Users\Krystian\Downloads\Klient-4Death.pl.exe
Task: {E98F063A-2D38-4747-BF81-4D9091F04A78} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {EA12FA1E-311C-48C5-95B3-5599E743F5ED} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-09-16 13:52 - 2014-09-16 13:52 - 08896160 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2013-10-05 20:38 - 2009-03-19 22:35 - 00208896 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AiNap.dll
2013-10-05 20:38 - 2009-03-19 22:35 - 00008704 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\vvc.dll
2013-10-05 20:38 - 2009-01-15 14:55 - 00565248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\pngio.dll
2013-10-05 20:38 - 2009-03-25 16:53 - 00053248 _____ () C:\Program Files (x86)\ASUS\EPU-4 Engine\AsSpindownTimeout.dll
2014-09-16 13:53 - 2014-09-16 13:53 - 08896160 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2014-10-08 14:26 - 2014-10-01 07:54 - 01042760 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.101\libglesv2.dll
2014-10-08 14:26 - 2014-10-01 07:54 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.101\libegl.dll
2014-10-08 14:26 - 2014-10-01 07:54 - 08911176 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.101\pdf.dll
2014-10-08 14:26 - 2014-10-01 07:54 - 01681224 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.101\ffmpegsumo.dll
2014-10-08 14:26 - 2014-10-01 07:54 - 14891848 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.101\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData:NT
AlternateDataStreams: C:\ProgramData:NT2
AlternateDataStreams: C:\Users\All Users:NT
AlternateDataStreams: C:\Users\All Users:NT2
AlternateDataStreams: C:\ProgramData\Application Data:NT
AlternateDataStreams: C:\ProgramData\Application Data:NT2
AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT
AlternateDataStreams: C:\ProgramData\Dane aplikacji:NT2
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2
AlternateDataStreams: C:\Users\Krystian\Dane aplikacji:NT
AlternateDataStreams: C:\Users\Krystian\Dane aplikacji:NT2
AlternateDataStreams: C:\Users\Krystian\AppData\Roaming:NT
AlternateDataStreams: C:\Users\Krystian\AppData\Roaming:NT2

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: ForceWare Intelligent Application Manager (IAM) => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HiPatchService => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: nSvcIp => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: GAINWARD => C:\Program Files (x86)\EXPERTool\TBPanel.exe /A
MSCONFIG\startupreg: HDAudDeck => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (10/20/2014 05:37:33 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418231

Error: (10/19/2014 10:12:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: Dreikon.exe, wersja: 1.0.0.0, sygnatura czasowa: 0x541256f9
Nazwa modułu powodującego błąd: Dreikon.exe, wersja: 1.0.0.0, sygnatura czasowa: 0x541256f9
Kod wyjątku: 0xc0000417
Przesunięcie błędu: 0x001a9ecb
Identyfikator procesu powodującego błąd: 0xef0
Godzina uruchomienia aplikacji powodującej błąd: 0xDreikon.exe0
Ścieżka aplikacji powodującej błąd: Dreikon.exe1
Ścieżka modułu powodującego błąd: Dreikon.exe2
Identyfikator raportu: Dreikon.exe3

Error: (10/19/2014 09:28:50 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418231

Error: (10/18/2014 00:15:12 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418231

System errors:
=============
Error: (10/20/2014 05:28:39 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)
Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error: (10/20/2014 05:28:38 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)
Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error: (10/20/2014 05:28:38 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)
Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error: (10/20/2014 05:28:32 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)
Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error: (10/20/2014 05:28:31 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)
Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error: (10/20/2014 05:28:30 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)
Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error: (10/20/2014 05:28:30 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)
Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error: (10/20/2014 05:27:45 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)
Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error: (10/20/2014 05:27:28 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: ZARZĄDZANIE NT)
Description: Wystąpił błąd podczas próby odczytu lokalnego pliku hosts.

Error: (10/20/2014 05:27:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi TBPanel z powodu następującego błędu:
%%2

Microsoft Office Sessions:
=========================
Error: (10/20/2014 05:37:33 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418231

Error: (10/19/2014 10:12:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Dreikon.exe1.0.0.0541256f9Dreikon.exe1.0.0.0541256f9c0000417001a9ecbef001cfeb72bad787c0C:\Users\Krystian\Desktop\Nowy folder\Nowy folder\Dreikonv2.1\Dreikonv2\Dreikon.exeC:\Users\Krystian\Desktop\Nowy folder\Nowy folder\Dreikonv2.1\Dreikonv2\Dreikon.exea1982bf0-5767-11e4-9d10-a6d8f399b88c

Error: (10/19/2014 09:28:50 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418231

Error: (10/18/2014 00:15:12 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418231

==================== Memory info ===========================

Processor: AMD Athlon II X4 640 Processor
Percentage of memory in use: 51%
Total physical RAM: 4095.23 MB
Available physical RAM: 2002.2 MB
Total Pagefile: 8188.63 MB
Available Pagefile: 5264.93 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:196.06 GB) (Free:93.32 GB) NTFS
Drive d: () (Fixed) (Total:292.97 GB) (Free:242.25 GB) NTFS
Drive e: () (Fixed) (Total:442.38 GB) (Free:357.21 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00630063)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=196.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=293 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=442.4 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Zappa · 23 Października 2014

Pierwsza kwestia to brak pliku hosts

Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

Pobierz plik i wypakuj go do c:\Windows\System32\drivers\etc

http://speedy.sh/2u6eC/hosts.zip

Zrób mi nowe logi z FRST.

dandun · 24 Października 2014

Pliczek wgrany.

Logi z FRST:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-10-2014

Ran by Krystian (administrator) on GRZESIU on 24-10-2014 17:39:56

Running from C:\Users\Krystian\Downloads

Loaded Profiles: Krystian & UpdatusUser (Available profiles: Krystian & UpdatusUser)

Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Polski (Polska)

Internet Explorer Version 11

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe

(Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

(Microsoft Corporation) C:\Windows\System32\audiodg.exe

() E:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe

(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [bCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)

HKLM\...\Policies\Explorer: [NoSetActiveDesktop] 0

HKU\S-1-5-19\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION

HKU\S-1-5-20\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION

HKU\S-1-5-21-678882040-263938067-2815254729-1000\...\Policies\Explorer: [NoSetActiveDesktop] 0

HKU\S-1-5-21-678882040-263938067-2815254729-1000\...\MountPoints2: G - G:\start.exe

HKU\S-1-5-21-678882040-263938067-2815254729-1000\...\MountPoints2: {23209dc0-225d-11e4-8ffd-a1e9bd0d3b93} - G:\setup.exe

HKU\S-1-5-21-678882040-263938067-2815254729-1000\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION

HKU\S-1-5-18\...\RunOnce: [sPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2013-10-07] (Microsoft Corporation)

HKU\S-1-5-18\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe

BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: IEExtension.Extension -> {d40c654d-7c51-4eb3-95b2-1e23905c2a2d} -> C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)

BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab

Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

FireFox:

========

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()

FF Plugin: @microsoft.com/GENUINE -> disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)

FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()

FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)

FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File

FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)

FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)

FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Krystian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File

FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)

Chrome:

=======

CHR Profile: C:\Users\Krystian\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Eliminator Slajdów) - C:\Users\Krystian\AppData\Local\Google\Chrome\User Data\Default\Extensions\eplekpmdodlgejgogbojajncdlapamff [2014-07-12]

CHR Extension: (Google Wallet) - C:\Users\Krystian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-08]

CHR Extension: (Adblock Pro) - C:\Users\Krystian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2014-07-12]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S4 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [626208 2009-08-10] ()

S4 HiPatchService; E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2014-08-22] (Hi-Rez Studios) [File not signed]

R2 MBAMScheduler; d:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)

S2 MBAMService; d:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)

S4 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [206880 2009-08-10] ()

S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [1891184 2014-10-15] (Electronic Arts)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-08-12] (Disc Soft Ltd)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)

S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-10-01] (Malwarebytes Corporation)

R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()

R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)

S2 TBPanel; No ImagePath

S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]

S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]

S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]

S3 tsusbhub; system32\drivers\tsusbhub.sys [X]

S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-24 17:39 - 2014-10-24 17:39 - 00000000 ____D () C:\Users\Krystian\Downloads\FRST-OlderVersion

2014-10-24 15:53 - 2014-10-24 15:53 - 00000557 _____ () C:\Users\Krystian\Downloads\hosts.zip

2014-10-20 22:48 - 2014-10-20 22:53 - 00049549 _____ () C:\Users\Krystian\Downloads\Addition.txt

2014-10-20 22:46 - 2014-10-24 17:40 - 00000000 ____D () C:\FRST

2014-10-20 22:46 - 2014-10-24 17:39 - 00011401 _____ () C:\Users\Krystian\Downloads\FRST.txt

2014-10-20 22:45 - 2014-10-24 17:39 - 02112000 _____ (Farbar) C:\Users\Krystian\Downloads\FRST64.exe

2014-10-18 00:45 - 2014-10-18 00:45 - 00000000 _____ () C:\Users\Krystian\Desktop\Na sygnale odc. 33.txt

2014-10-17 16:20 - 2014-10-17 16:20 - 00004535 _____ () C:\Users\Krystian\AppData\Roaming\CamStudio.cfg

2014-10-17 16:20 - 2014-10-17 16:20 - 00000408 _____ () C:\Users\Krystian\AppData\Roaming\CamShapes.ini

2014-10-17 16:20 - 2014-10-17 16:20 - 00000408 _____ () C:\Users\Krystian\AppData\Roaming\CamLayout.ini

2014-10-17 16:20 - 2014-10-17 16:20 - 00000046 _____ () C:\Users\Krystian\AppData\Roaming\Camdata.ini

2014-10-17 16:19 - 2014-10-17 16:20 - 00000000 ____D () C:\Users\Krystian\Documents\My CamStudio Temp Files

2014-10-17 16:19 - 2014-10-17 16:19 - 00000096 _____ () C:\Users\Krystian\AppData\Roaming\version2.xml

2014-10-17 16:12 - 2014-10-17 16:12 - 00000000 ____D () C:\Users\Krystian\Documents\Easy Macro Recorder

2014-10-17 16:12 - 2014-10-17 16:12 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Easy Macro Recorder

2014-10-17 16:12 - 2010-01-19 14:48 - 00152848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Comdlg32.ocx

2014-10-17 16:12 - 1998-06-24 00:00 - 00067376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SYSINFO.OCX

2014-10-16 19:47 - 2014-10-21 00:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013

2014-10-16 18:14 - 2014-10-16 18:14 - 00000000 ____D () C:\Users\Krystian\Downloads\Nowy folder (2)

2014-10-16 11:17 - 2014-10-16 12:13 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2014-10-16 11:16 - 2014-10-10 04:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-10-16 11:16 - 2014-10-10 04:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll

2014-10-16 11:16 - 2014-10-10 04:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2014-10-16 11:16 - 2014-10-07 04:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2014-10-16 11:16 - 2014-10-07 04:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2014-10-16 11:16 - 2014-09-29 02:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2014-10-16 11:16 - 2014-09-26 00:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2014-10-16 11:16 - 2014-09-26 00:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2014-10-16 11:16 - 2014-09-26 00:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2014-10-16 11:16 - 2014-09-26 00:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2014-10-16 11:16 - 2014-09-26 00:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2014-10-16 11:16 - 2014-09-26 00:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2014-10-16 11:16 - 2014-09-19 03:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2014-10-16 11:16 - 2014-09-19 03:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2014-10-16 11:16 - 2014-09-19 03:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2014-10-16 11:16 - 2014-09-19 03:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2014-10-16 11:16 - 2014-09-19 03:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2014-10-16 11:16 - 2014-09-19 03:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2014-10-16 11:16 - 2014-09-19 03:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2014-10-16 11:16 - 2014-09-19 03:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2014-10-16 11:16 - 2014-09-19 03:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2014-10-16 11:16 - 2014-09-19 03:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2014-10-16 11:16 - 2014-09-19 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2014-10-16 11:16 - 2014-09-19 03:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2014-10-16 11:16 - 2014-09-19 03:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2014-10-16 11:16 - 2014-09-19 03:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2014-10-16 11:16 - 2014-09-19 03:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2014-10-16 11:16 - 2014-09-19 03:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2014-10-16 11:16 - 2014-09-19 02:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2014-10-16 11:16 - 2014-09-19 02:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2014-10-16 11:16 - 2014-09-19 02:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2014-10-16 11:16 - 2014-09-19 02:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2014-10-16 11:16 - 2014-09-19 02:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2014-10-16 11:16 - 2014-09-19 02:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2014-10-16 11:16 - 2014-09-19 02:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2014-10-16 11:16 - 2014-09-19 02:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2014-10-16 11:16 - 2014-09-19 02:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2014-10-16 11:16 - 2014-09-19 02:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2014-10-16 11:16 - 2014-09-19 02:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2014-10-16 11:16 - 2014-09-19 02:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2014-10-16 11:16 - 2014-09-19 02:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2014-10-16 11:16 - 2014-09-19 02:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2014-10-16 11:16 - 2014-09-19 01:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2014-10-16 11:16 - 2014-09-19 01:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2014-10-16 11:16 - 2014-09-19 01:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2014-10-16 11:16 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll

2014-10-16 11:16 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll

2014-10-16 11:16 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll

2014-10-16 11:16 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll

2014-10-16 11:16 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll

2014-10-16 11:16 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll

2014-10-16 11:15 - 2014-10-16 11:15 - 00000781 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-10-16 11:15 - 2014-10-16 11:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2014-10-16 11:15 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

2014-10-16 11:15 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2014-10-16 11:15 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2014-10-16 11:15 - 2014-09-26 00:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2014-10-16 11:15 - 2014-09-19 04:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2014-10-16 11:15 - 2014-09-19 03:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2014-10-16 11:15 - 2014-09-19 03:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2014-10-16 11:15 - 2014-09-19 03:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2014-10-16 11:15 - 2014-09-19 03:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2014-10-16 11:15 - 2014-09-19 03:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2014-10-16 11:15 - 2014-09-19 03:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2014-10-16 11:15 - 2014-09-19 03:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2014-10-16 11:15 - 2014-09-19 03:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2014-10-16 11:15 - 2014-09-19 03:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2014-10-16 11:15 - 2014-09-19 02:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2014-10-16 11:15 - 2014-09-19 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2014-10-16 11:15 - 2014-09-19 02:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2014-10-16 11:15 - 2014-09-19 01:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2014-10-16 10:51 - 2014-07-17 04:07 - 03722240 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll

2014-10-16 10:51 - 2014-07-17 04:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe

2014-10-16 10:51 - 2014-07-17 04:07 - 01113088 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll

2014-10-16 10:51 - 2014-07-17 04:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll

2014-10-16 10:51 - 2014-07-17 04:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe

2014-10-16 10:51 - 2014-07-17 04:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll

2014-10-16 10:51 - 2014-07-17 04:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll

2014-10-16 10:51 - 2014-07-17 04:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2014-10-16 10:51 - 2014-07-17 04:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2014-10-16 10:51 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll

2014-10-16 10:51 - 2014-07-17 03:39 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll

2014-10-16 10:51 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe

2014-10-16 10:51 - 2014-07-17 03:39 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll

2014-10-16 10:51 - 2014-07-17 03:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2014-10-16 10:51 - 2014-07-17 03:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2014-10-16 10:51 - 2014-07-17 03:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys

2014-10-16 10:51 - 2014-07-17 03:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys

2014-10-16 10:48 - 2014-10-16 10:48 - 00100582 _____ () C:\Users\Krystian\Downloads\Extras.Txt

2014-10-16 10:45 - 2014-10-16 10:45 - 00082456 _____ () C:\Users\Krystian\Downloads\OTL.Txt

2014-10-16 10:30 - 2014-09-18 04:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll

2014-10-16 10:30 - 2014-09-18 03:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll

2014-10-16 10:24 - 2014-09-04 07:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll

2014-10-16 10:24 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll

2014-10-16 10:14 - 2014-10-16 10:15 - 00602112 _____ (OldTimer Tools) C:\Users\Krystian\Downloads\OTL.exe

2014-10-16 10:09 - 2014-09-13 03:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll

2014-10-16 10:09 - 2014-09-13 03:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll

2014-10-16 09:17 - 2014-10-16 09:21 - 00000000 ____D () C:\Users\Krystian\AppData\Local\Adobe

2014-10-16 09:12 - 2014-10-24 13:49 - 00005936 _____ () C:\Windows\setupact.log

2014-10-16 09:12 - 2014-10-16 09:12 - 00000000 _____ () C:\Windows\setuperr.log

2014-10-16 09:11 - 2014-10-16 19:21 - 00687612 _____ () C:\Windows\PFRO.log

2014-10-15 19:42 - 2014-10-15 19:42 - 00002517 _____ () C:\Users\Public\Desktop\Skype.lnk

2014-10-15 19:42 - 2014-10-15 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2014-10-10 17:52 - 2014-10-10 17:52 - 00002950 _____ () C:\Windows\System32\Tasks\{30ACDC79-96B4-433D-98FE-9090B17D2F49}

2014-10-10 14:51 - 2014-10-10 14:52 - 00000000 ____D () C:\Users\Krystian\AppData\Local\NPE

2014-10-09 20:47 - 2014-10-16 18:16 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Winamp

2014-10-09 20:47 - 2014-10-09 20:47 - 00000692 _____ () C:\Users\Public\Desktop\Winamp.lnk

2014-10-09 20:47 - 2014-10-09 20:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp

2014-10-08 20:46 - 2014-10-08 20:47 - 00000028 _____ () C:\Users\Krystian\Desktop\Nowy dokument tekstowy (6).txt

2014-10-07 20:32 - 2014-10-07 22:59 - 01863000 _____ () C:\Users\Krystian\Desktop\asdasdasdasda.pptx

2014-10-07 20:24 - 2014-10-07 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint

2014-10-07 20:24 - 2014-10-07 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office

2014-10-07 20:22 - 2014-10-07 20:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Sync Framework

2014-10-07 20:19 - 2014-10-07 20:19 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8

2014-10-05 17:29 - 2014-10-05 17:29 - 00000858 _____ () C:\Users\Public\Desktop\EA SPORTS FIFA World.lnk

2014-10-05 16:29 - 2014-10-05 16:29 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab

2014-10-05 13:18 - 2014-10-05 13:18 - 00000000 ____D () C:\Users\Krystian\Documents\Electronic Arts

2014-10-05 13:18 - 2014-10-05 13:18 - 00000000 ____D () C:\Users\Krystian\AppData\Local\Electronic Arts

2014-10-01 19:11 - 2014-09-25 04:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll

2014-10-01 19:10 - 2014-09-25 03:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll

2014-09-24 14:06 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll

2014-09-24 14:06 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-24 17:41 - 2013-10-05 22:23 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Skype

2014-10-24 17:31 - 2013-10-13 18:41 - 00001048 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-10-24 16:58 - 2013-10-05 22:36 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2014-10-24 13:38 - 2013-10-05 20:13 - 01407684 _____ () C:\Windows\WindowsUpdate.log

2014-10-24 13:38 - 2009-07-14 06:45 - 00017296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2014-10-24 13:38 - 2009-07-14 06:45 - 00017296 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2014-10-24 13:30 - 2013-10-13 18:41 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-10-24 13:30 - 2013-10-05 20:29 - 00000000 ____D () C:\ProgramData\NVIDIA

2014-10-24 13:30 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2014-10-24 02:07 - 2014-05-06 18:14 - 00000000 ____D () C:\ProgramData\Microsoft Help

2014-10-23 12:34 - 2009-07-14 07:08 - 00032604 _____ () C:\Windows\Tasks\SCHEDLGU.TXT

2014-10-23 00:37 - 2014-03-08 19:10 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\vlc

2014-10-22 14:55 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache

2014-10-21 14:16 - 2009-07-14 19:55 - 00740422 _____ () C:\Windows\system32\perfh015.dat

2014-10-21 14:16 - 2009-07-14 19:55 - 00155996 _____ () C:\Windows\system32\perfc015.dat

2014-10-21 14:16 - 2009-07-14 07:13 - 01670518 _____ () C:\Windows\system32\PerfStringBackup.INI

2014-10-20 23:26 - 2013-10-13 18:41 - 00004044 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2014-10-20 23:26 - 2013-10-13 18:41 - 00003792 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2014-10-19 23:15 - 2014-09-13 10:43 - 00000000 ____D () C:\Users\Krystian\Desktop\HuczuHucz - Po Tej Stronie Raju [2011]

2014-10-19 23:14 - 2014-09-12 21:28 - 00000000 ____D () C:\Users\Krystian\Desktop\Vixen-New-Ton-LP-2009

2014-10-19 10:12 - 2013-10-08 15:25 - 00000000 ____D () C:\Users\Krystian\AppData\Local\CrashDumps

2014-10-17 16:04 - 2014-05-04 17:29 - 00000000 ____D () C:\Users\Krystian\AppData\Local\Nemex

2014-10-17 16:03 - 2013-12-11 16:54 - 00000000 ____D () C:\Users\Krystian\Desktop\Nowy folder

2014-10-17 15:35 - 2013-10-08 15:52 - 00112328 _____ () C:\Users\Krystian\AppData\Local\GDIPFONTCACHEV1.DAT

2014-10-17 12:24 - 2013-10-06 16:49 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\.minecraft

2014-10-16 20:39 - 2009-07-14 06:45 - 00441008 _____ () C:\Windows\system32\FNTCACHE.DAT

2014-10-16 20:37 - 2014-05-06 23:41 - 00000000 ___SD () C:\Windows\system32\CompatTel

2014-10-16 19:57 - 2009-07-14 04:34 - 00000478 _____ () C:\Windows\win.ini

2014-10-16 19:21 - 2013-10-05 20:39 - 00000000 ____D () C:\ProgramData\Norton

2014-10-16 18:17 - 2014-09-13 11:57 - 00000000 ____D () C:\Users\Krystian\Downloads\Bob_One_-_Tw__j_Ruch__2013_ (2)

2014-10-16 18:17 - 2014-01-30 22:34 - 00000000 ____D () C:\Users\Krystian\Downloads\MUZYKA

2014-10-16 10:02 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2014-10-16 09:30 - 2014-06-03 14:33 - 00003870 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1381000339

2014-10-16 09:30 - 2013-10-05 21:12 - 00000000 ____D () C:\Program Files (x86)\Opera

2014-10-16 09:21 - 2013-10-05 22:36 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2014-10-16 09:21 - 2013-10-05 22:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2014-10-16 09:21 - 2013-10-05 22:36 - 00003868 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater

2014-10-15 20:58 - 2013-10-28 00:24 - 00000000 ____D () C:\ProgramData\Origin

2014-10-15 20:57 - 2014-03-12 00:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin

2014-10-15 19:42 - 2014-03-06 20:33 - 00000000 ___RD () C:\Program Files (x86)\Skype

2014-10-15 19:42 - 2013-10-05 22:22 - 00000000 ____D () C:\ProgramData\Skype

2014-10-11 15:26 - 2014-03-15 10:38 - 00000000 ____D () C:\Users\Krystian\Documents\FIFA World

2014-10-10 18:12 - 2013-11-23 15:22 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Origin

2014-10-10 13:53 - 2014-09-02 19:07 - 00000000 ____D () C:\avast! sandbox

2014-10-10 13:53 - 2014-01-05 17:38 - 00000000 ____D () C:\ProgramData\AVAST Software

2014-10-08 21:59 - 2013-11-23 15:06 - 00000000 ____D () C:\Users\Krystian\AppData\Local\Electronic_Arts_Inc

2014-10-07 20:23 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild

2014-10-07 20:22 - 2014-05-06 18:14 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office

2014-10-07 20:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared

2014-10-07 20:17 - 2014-05-06 18:14 - 00000000 ____D () C:\Program Files\Microsoft Office

2014-10-07 20:17 - 2009-07-14 20:09 - 00000000 ____D () C:\Windows\ShellNew

2014-10-07 18:49 - 2013-10-05 20:20 - 00000000 ____D () C:\Users\Krystian\AppData\Local\VirtualStore

2014-10-02 15:53 - 2014-01-09 18:12 - 00278152 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

2014-10-01 14:11 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF

2014-09-24 23:13 - 2013-10-22 15:31 - 00000000 ____D () C:\Users\Krystian\AppData\Roaming\Free Download Manager

Some content of TEMP:

====================

C:\Users\Krystian\AppData\Local\Temp\eauninstall.exe

C:\Users\Krystian\AppData\Local\Temp\Need for Speed Most Wanted_uninst.exe

C:\Users\Krystian\AppData\Local\Temp\SkypeSetup.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-10-18 21:59

==================== End Of Log ============================

Zappa · 25 Października 2014

Otwórz notatnik i wklej

HKU\S-1-5-19\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-20\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-678882040-263938067-2815254729-1000\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
S2 TBPanel; No ImagePath
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
RemoveDirectory: C:\ProgramData\Norton
RemoveDirectory: C:\Users\Krystian\Downloads\Bob_One_-_Tw__j_Ruch__2013_ (2)
RemoveDirectory: C:\avast! sandbox
EmptyTemp:

Plik zapisz jako fixlist.txt i umieść w C:\Users\Krystian\Downloads. Uruchom FRST i kliknij w Fix. Przedstaw wunikowy fixlog.txt

dandun · 25 Października 2014

Plik z txt:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 25-10-2014
Ran by Krystian at 2014-10-25 21:11:56 Run:1
Running from C:\Users\Krystian\Downloads
Loaded Profiles: Krystian & UpdatusUser (Available profiles: Krystian & UpdatusUser)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKU\S-1-5-19\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-20\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-678882040-263938067-2815254729-1000\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\...\Winlogon: [shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
S2 TBPanel; No ImagePath
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
RemoveDirectory: C:\ProgramData\Norton
RemoveDirectory: C:\Users\Krystian\Downloads\Bob_One_-_Tw__j_Ruch__2013_ (2)
RemoveDirectory: C:\avast! sandbox
EmptyTemp:
*****************

HKU\S-1-5-19\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => value deleted successfully.
HKU\S-1-5-20\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => value deleted successfully.
HKU\S-1-5-21-678882040-263938067-2815254729-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => value deleted successfully.
HKU\S-1-5-18\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => value deleted successfully.
TBPanel => Service deleted successfully.
EagleX64 => Service deleted successfully.
FairplayKD => Service deleted successfully.
Synth3dVsc => Service deleted successfully.
tsusbhub => Service deleted successfully.
VGPU => Service deleted successfully.
Could not remove "C:\ProgramData\Norton" => Scheduled to remove on reboot.
Could not remove "C:\Users\Krystian\Downloads\Bob_One_-_Tw__j_Ruch__2013_ (2)" => Scheduled to remove on reboot.
Could not remove "C:\avast! sandbox" => Scheduled to remove on reboot.
EmptyTemp: => Removed 557.9 MB temporary data.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-10-25 21:18:44)<=

C:\ProgramData\Norton => Removed successfully.
C:\Users\Krystian\Downloads\Bob_One_-_Tw__j_Ruch__2013_ (2) => Removed successfully.
C:\avast! sandbox => Removed successfully.

==== End of Fixlog ====

A i jeszcze jedno co zrobić z plikiem desktop.ini ( i innymi tego typu) Są one w pól widoczne (jak np. skype ma 100% to ten plik ma 50%). Chciałem go usunąć to zaczął mi się usuwać pulpit i przestałem.

Zappa · 25 Października 2014

A i jeszcze jedno co zrobić z plikiem desktop.ini ( i innymi tego typu) Są one w pól widoczne (jak np. skype ma 100% to ten plik ma 50%). Chciałem go usunąć to zaczął mi się usuwać pulpit i przestałem.

Tego pliku nie wolno usuwać. Skoro jest widoczny znaczy że FRST odkrył widoczność ukrytych plików systemowych. Wejdź do Panelu sterowania > Opcje folderów > Widok > sprawdź czy masz zaznaczone Nie pokazuj ukrytych plików i folderów i Ukryj chronione pliki systemu

dandun · 25 Października 2014

Dziękuje

Temat do zamknięcia.

Zappa · 25 Października 2014

Jeszcze nie bardzo do zamknięcia.

Do wykonania czynności końcowe.

1.Otwórz notatnik i wklej

DeleteQuarantine:

Plik zapisz jako fixlist.txt i umieść w C:\Users\Krystian\Downloads. Uruchom FRST i kliknij w Fix.

2. Przez Shift+Del skasuj z dysku program FRST.

Zaloguj się

Dziwne lagowanie systemu, programów.

Rekomendowane odpowiedzi

dandun

Odnośnik do komentarza

zombi1555

Odnośnik do komentarza

dandun

Odnośnik do komentarza

Zappa

Odnośnik do komentarza

dandun

Odnośnik do komentarza

Zappa

Odnośnik do komentarza

dandun

Odnośnik do komentarza

Zappa

Odnośnik do komentarza

dandun

Odnośnik do komentarza

Zappa

Odnośnik do komentarza

Jeśli chcesz dodać odpowiedź, zaloguj się lub zarejestruj nowe konto

Zarejestruj nowe konto

Zaloguj się

Ostatnio przeglądający 0 użytkowników

Przeglądaj

Cała aktywność