Google się nie otwiera

**Posty:** 310 · przez **odimen** 30 Gru 2014, 18:39

Witam,

Po tym jak nie chciała się otworzyć strona przez zbyt starą wersje Javy. Ściągnąłem nową. Nowa wersja niby odinstalowała starą i się zainstalowała. Ale w systemie nadal widniała wrsja 7 z aktualizacją 62. Nowej Javy nie ma, w tej chwili nie mam żadnej bo odinstalowałem starą prze dodaj/usuń. Ściągałem jave ze strony Oracle - odnośnik wyskoczył sam w Chromie.

Wyszukiwarka i inne serwisy Google nie działają na Chrome z której korzystam (inne strony działają), na Exploerze wszystko chodzi bez problemu

OTL

Kod: Zaznacz wszystko: OTL logfile created on: 2014-12-30 17:27:13 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Bartek\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.17501) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 15,98 Gb Total Physical Memory | 13,01 Gb Available Physical Memory | 81,40% Memory free 31,97 Gb Paging File | 28,48 Gb Available in Paging File | 89,11% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 111,69 Gb Total Space | 25,07 Gb Free Space | 22,45% Space Free | Partition Type: NTFS Drive D: | 1863,01 Gb Total Space | 1000,22 Gb Free Space | 53,69% Space Free | Partition Type: NTFS Computer Name: BLASZAK | User Name: Bartek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - File not found -- PRC - [2014-12-30 17:25:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Bartek\Downloads\OTL_[www.programosy.pl].exe PRC - [2014-12-19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2014-12-08 15:56:52 | 000,305,000 | ---- | M] (Binary Fortress Software) -- C:\Programy\narzedzia\DisplayFusion\DisplayFusionHookAppWIN6032.exe PRC - [2014-12-06 02:50:53 | 000,856,904 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe PRC - [2014-10-21 17:52:24 | 022,869,088 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe PRC - [2014-05-07 19:59:48 | 000,356,128 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe PRC - [2014-05-06 15:20:38 | 000,880,800 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\plugin-nm-server.exe PRC - [2013-08-07 11:47:26 | 000,609,056 | ---- | M] (Splashtop Inc.) -- C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe PRC - [2013-07-26 13:43:52 | 000,844,656 | ---- | M] (Samsung) -- C:\Programy\telefon\Kies\External\FirmwareUpdate\KiesPDLR.exe PRC - [2013-07-26 13:43:46 | 000,311,152 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Programy\telefon\Kies\KiesTrayAgent.exe PRC - [2013-07-26 13:43:44 | 001,564,016 | ---- | M] (Samsung) -- C:\Programy\telefon\Kies\Kies.exe PRC - [2013-03-16 04:49:18 | 000,046,816 | ---- | M] () -- C:\Windows\SysWOW64\C2MP\UpdateChecker.exe PRC - [2013-03-14 21:07:46 | 000,383,264 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2013-02-25 15:50:10 | 000,704,520 | ---- | M] () -- C:\Windows\SysWOW64\C2MP\TrayMenu.exe PRC - [2013-01-18 12:51:24 | 010,376,704 | ---- | M] (OpenOffice.org) -- C:\Programy\narzedzia\Opoffice\program\soffice.exe PRC - [2013-01-18 12:51:24 | 010,368,512 | ---- | M] (OpenOffice.org) -- C:\Programy\narzedzia\Opoffice\program\soffice.bin PRC - [2012-09-05 16:57:26 | 000,271,808 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe PRC - [2012-01-18 05:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe PRC - [2011-11-11 13:08:06 | 000,205,336 | ---- | M] (Logitech Inc.) -- C:\Programy\Internet\Webcam\LWS\Webcam Software\LWS.exe PRC - [2011-11-11 13:07:54 | 000,265,240 | ---- | M] () -- C:\Programy\Internet\Webcam\LWS\Webcam Software\CameraHelperShell.exe PRC - [2011-08-12 11:19:40 | 000,680,984 | ---- | M] () -- C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe PRC - [2011-01-28 06:15:33 | 000,066,048 | ---- | M] (PostgreSQL Global Development Group) -- c:\postgreSQL\bin\pg_ctl.exe PRC - [2011-01-28 06:13:43 | 004,538,368 | ---- | M] (PostgreSQL Global Development Group) -- c:\postgreSQL\bin\postgres.exe PRC - [2010-11-20 13:17:00 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cmd.exe PRC - [2010-04-27 03:09:52 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe PRC - [2010-04-22 14:05:26 | 001,011,712 | ---- | M] (Gigabyte Technology CO., LTD.) -- C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\AlarmClock.exe PRC - [2010-03-25 13:01:24 | 000,106,552 | ---- | M] (Mega Corp.) -- C:\Sterowniki\Upsilon\usbmate.exe PRC - [2009-12-01 13:13:08 | 000,035,880 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\smart6\dbios\SDBMSG.exe PRC - [2009-10-13 15:39:46 | 000,114,688 | ---- | M] (Gigabyte Technology CO., LTD.) -- C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe PRC - [2009-08-06 22:12:10 | 000,159,744 | ---- | M] (Mega System Technologies, Inc.) -- C:\Sterowniki\Upsilon\RupsMon.exe PRC - [2009-06-17 15:13:06 | 000,068,136 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe PRC - [2009-04-07 08:13:10 | 000,673,616 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe PRC - [2008-03-27 10:19:16 | 000,040,960 | ---- | M] (Mega System Technologies, Inc.) -- C:\Sterowniki\Upsilon\Monw32.exe PRC - [2008-03-25 16:21:56 | 000,219,656 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe PRC - [2006-12-19 17:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2014-12-30 17:22:04 | 001,175,040 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._core_.pyd MOD - [2014-12-30 17:22:04 | 001,160,704 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_ssl.pyd MOD - [2014-12-30 17:22:04 | 001,062,400 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._controls_.pyd MOD - [2014-12-30 17:22:04 | 000,811,008 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._windows_.pyd MOD - [2014-12-30 17:22:04 | 000,805,888 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._gdi_.pyd MOD - [2014-12-30 17:22:04 | 000,735,232 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._misc_.pyd MOD - [2014-12-30 17:22:04 | 000,713,216 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_hashlib.pyd MOD - [2014-12-30 17:22:04 | 000,686,080 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\unicodedata.pyd MOD - [2014-12-30 17:22:04 | 000,557,056 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\pysqlite2._sqlite.pyd MOD - [2014-12-30 17:22:04 | 000,525,640 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\windows._lib_cacheinvalidation.pyd MOD - [2014-12-30 17:22:04 | 000,364,544 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\pythoncom27.dll MOD - [2014-12-30 17:22:04 | 000,320,512 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32com.shell.shell.pyd MOD - [2014-12-30 17:22:04 | 000,167,936 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32gui.pyd MOD - [2014-12-30 17:22:04 | 000,128,512 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_elementtree.pyd MOD - [2014-12-30 17:22:04 | 000,127,488 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\pyexpat.pyd MOD - [2014-12-30 17:22:04 | 000,122,368 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._wizard.pyd MOD - [2014-12-30 17:22:04 | 000,119,808 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32file.pyd MOD - [2014-12-30 17:22:04 | 000,110,080 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\pywintypes27.dll MOD - [2014-12-30 17:22:04 | 000,108,544 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32security.pyd MOD - [2014-12-30 17:22:04 | 000,098,816 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32api.pyd MOD - [2014-12-30 17:22:04 | 000,087,552 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_ctypes.pyd MOD - [2014-12-30 17:22:04 | 000,078,336 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._animate.pyd MOD - [2014-12-30 17:22:04 | 000,070,656 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._html2.pyd MOD - [2014-12-30 17:22:04 | 000,045,568 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_socket.pyd MOD - [2014-12-30 17:22:04 | 000,038,912 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32inet.pyd MOD - [2014-12-30 17:22:04 | 000,035,840 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32process.pyd MOD - [2014-12-30 17:22:04 | 000,027,136 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_multiprocessing.pyd MOD - [2014-12-30 17:22:04 | 000,025,600 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32pdh.pyd MOD - [2014-12-30 17:22:04 | 000,024,064 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32pipe.pyd MOD - [2014-12-30 17:22:04 | 000,022,528 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32ts.pyd MOD - [2014-12-30 17:22:04 | 000,018,432 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32event.pyd MOD - [2014-12-30 17:22:04 | 000,017,408 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32profile.pyd MOD - [2014-12-30 17:22:04 | 000,011,264 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32crypt.pyd MOD - [2014-12-30 17:22:04 | 000,010,240 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\select.pyd MOD - [2014-12-30 17:22:04 | 000,007,168 | ---- | M] () -- C:\Users\Bartek\AppData\Local\Temp\_MEI36122\hashobjs_ext.pyd MOD - [2014-12-06 02:50:51 | 014,913,352 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll MOD - [2014-12-06 02:50:50 | 009,009,480 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll MOD - [2014-12-06 02:50:46 | 001,077,064 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll MOD - [2014-12-06 02:50:45 | 000,211,272 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll MOD - [2014-12-06 02:50:44 | 001,677,128 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll MOD - [2014-11-12 23:26:32 | 000,805,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\11650ce4aad4575fc146aa66a575bcb7\System.Runtime.Remoting.ni.dll MOD - [2014-10-17 11:53:10 | 012,435,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1453d9e9a4989833ef3db4b22549ba1a\System.Windows.Forms.ni.dll MOD - [2014-10-17 11:53:06 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\836e10dfd0811b303553216f5cb092ef\System.Drawing.ni.dll MOD - [2014-10-17 11:52:50 | 007,991,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\908ba9e296e92b4e14bdc2437edac603\System.ni.dll MOD - [2014-10-17 09:47:05 | 018,813,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\3646375313dd2b8e3afecbf945960336\PresentationFramework.ni.dll MOD - [2014-10-17 09:46:58 | 011,025,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\006d28e7c86f3e70db90ce06ea2f33fb\PresentationCore.ni.dll MOD - [2014-10-17 09:46:53 | 003,950,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\94bbd298ec8575f3c6151a59538a109c\WindowsBase.ni.dll MOD - [2014-10-17 09:46:53 | 001,889,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\8b133e0d94535a7534719f70873ca7fe\System.Xaml.ni.dll MOD - [2014-10-17 09:46:48 | 007,668,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7147fa233a070283dba824da40089bf1\System.Xml.ni.dll MOD - [2014-10-17 09:46:48 | 006,990,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\691c1ad89d16f49d80e84fa06a79089a\System.Core.ni.dll MOD - [2014-10-17 09:46:46 | 000,223,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\902843918d037f5f3511d679bf1e2216\System.ServiceProcess.ni.dll MOD - [2014-10-17 09:46:45 | 010,100,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\17a393b77ae757f0768501fb95ff5af6\System.ni.dll MOD - [2014-10-17 09:46:45 | 000,976,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\0648dbecb7e3fb9523565107e04a5caf\System.Configuration.ni.dll MOD - [2014-09-13 06:44:21 | 011,497,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\38bf604432e1a30c954b2ee40d6a2d1c\mscorlib.ni.dll MOD - [2014-06-02 22:19:24 | 016,953,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll MOD - [2013-03-16 04:49:18 | 000,046,816 | ---- | M] () -- C:\Windows\SysWOW64\C2MP\UpdateChecker.exe MOD - [2013-02-25 15:50:10 | 000,704,520 | ---- | M] () -- C:\Windows\SysWOW64\C2MP\TrayMenu.exe MOD - [2013-01-18 12:20:54 | 000,985,088 | ---- | M] () -- C:\Programy\narzedzia\Opoffice\program\libxml2.dll MOD - [2012-08-17 20:38:56 | 000,479,160 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\dblite.dll MOD - [2012-07-23 14:10:28 | 000,336,232 | ---- | M] () -- C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll MOD - [2011-11-11 13:08:18 | 007,956,504 | ---- | M] () -- C:\Programy\Internet\Webcam\LWS\Webcam Software\QTGui4.dll MOD - [2011-11-11 13:08:18 | 000,342,552 | ---- | M] () -- C:\Programy\Internet\Webcam\LWS\Webcam Software\QTXml4.dll MOD - [2011-11-11 13:08:18 | 000,128,536 | ---- | M] () -- C:\Programy\Internet\Webcam\LWS\Webcam Software\ImageFormats\QJpeg4.dll MOD - [2011-11-11 13:08:18 | 000,029,208 | ---- | M] () -- C:\Programy\Internet\Webcam\LWS\Webcam Software\ImageFormats\QGif4.dll MOD - [2011-11-11 13:08:06 | 002,145,304 | ---- | M] () -- C:\Programy\Internet\Webcam\LWS\Webcam Software\QTCore4.dll MOD - [2011-11-11 13:07:54 | 000,265,240 | ---- | M] () -- C:\Programy\Internet\Webcam\LWS\Webcam Software\CameraHelperShell.exe MOD - [2011-08-12 11:19:40 | 000,680,984 | ---- | M] () -- C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe MOD - [2010-10-24 13:58:12 | 002,457,671 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\Normal.dll MOD - [2010-10-22 18:02:40 | 000,385,091 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\work.dll MOD - [2010-10-22 09:41:36 | 000,299,008 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\MFCCPU.DLL MOD - [2010-10-21 19:50:40 | 000,200,704 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\GVTunner.dll MOD - [2010-10-19 19:27:30 | 000,151,552 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\OCK.dll MOD - [2010-10-19 09:59:46 | 000,065,536 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\GPTT.dll MOD - [2010-09-30 07:45:46 | 000,126,976 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\StabilityLib.dll MOD - [2010-06-24 14:50:08 | 000,094,208 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\IccLibDll.dll MOD - [2010-06-10 14:52:24 | 000,110,592 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\AMD8.dll MOD - [2010-03-12 04:40:58 | 004,449,632 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\Platform.dll MOD - [2010-03-12 04:40:56 | 000,423,256 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\Device.dll MOD - [2010-01-12 16:09:20 | 000,102,400 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\SF.dll MOD - [2009-12-22 15:52:04 | 000,102,400 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\ycc.dll MOD - [2009-12-01 13:13:08 | 000,035,880 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\smart6\dbios\SDBMSG.exe MOD - [2009-10-21 13:07:06 | 000,106,496 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\HM.dll MOD - [2009-06-10 15:28:56 | 000,106,496 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\smart6\dbios\DBIOS.dll MOD - [2009-03-12 14:45:32 | 000,135,168 | ---- | M] () -- C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\SCANEN~1.DLL MOD - [2008-11-21 12:58:42 | 000,057,344 | ---- | M] () -- C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\SATWAIN.dll MOD - [2008-05-07 14:22:58 | 000,102,400 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\CIAMIB.dll MOD - [2008-03-25 16:21:56 | 000,219,656 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe MOD - [2003-02-14 13:11:46 | 000,102,400 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\ET6\Sound.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2014-11-22 03:35:29 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService) SRV:[b]64bit:[/b] - [2014-11-12 00:06:52 | 002,449,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe -- (ClickToRunSvc) SRV:[b]64bit:[/b] - [2013-05-27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2010-04-06 15:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv) SRV - [2014-12-30 17:24:23 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2014-12-19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2014-12-16 13:53:00 | 003,075,440 | ---- | M] (Binary Fortress Software) [Auto | Running] -- C:\Programy\narzedzia\DisplayFusion\DisplayFusionService.exe -- (DisplayFusionService) SRV - [2014-10-21 20:22:40 | 000,833,728 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2014-05-07 19:59:48 | 000,356,128 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe -- (AVP) SRV - [2014-03-20 23:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2013-09-11 20:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2013-08-07 11:47:26 | 000,609,056 | ---- | M] (Splashtop Inc.) [Auto | Running] -- C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe -- (SSUService) SRV - [2013-04-10 07:56:49 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013-03-15 06:53:06 | 001,266,464 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2013-03-14 21:07:46 | 000,383,264 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2012-09-05 16:56:44 | 000,234,776 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\3.0.285\McCHSvc.exe -- (McComponentHostService) SRV - [2012-01-18 05:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv) SRV - [2011-01-28 06:15:33 | 000,066,048 | ---- | M] (PostgreSQL Global Development Group) [Auto | Running] -- c:\postgreSQL\bin\pg_ctl.exe -- (postgresql-8.4) SRV - [2010-03-25 13:01:24 | 000,106,552 | ---- | M] (Mega Corp.) [Auto | Running] -- C:\Sterowniki\Upsilon\usbmate.exe -- (USBMate) SRV - [2009-10-13 15:39:46 | 000,114,688 | ---- | M] (Gigabyte Technology CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe -- (Smart TimeLock) SRV - [2009-08-06 22:12:10 | 000,159,744 | ---- | M] (Mega System Technologies, Inc.) [Auto | Running] -- C:\Sterowniki\Upsilon\RupsMon.exe -- (Rupsmon) SRV - [2009-06-17 15:13:06 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe -- (DES2 Service) SRV - [2006-12-19 17:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe -- (EpsonBidirectionalService) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2014-12-18 11:43:48 | 000,585,944 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtkBtfilter.sys -- (RtkBtFilter) DRV:[b]64bit:[/b] - [2014-06-02 19:41:38 | 000,628,320 | ---- | M] (Kaspersky Lab ZAO) [File_System | System | Running] -- C:\Windows\SysNative\drivers\klif.sys -- (KLIF) DRV:[b]64bit:[/b] - [2014-05-07 20:12:05 | 000,029,792 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klim6.sys -- (KLIM6) DRV:[b]64bit:[/b] - [2014-05-07 20:12:05 | 000,029,280 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klmouflt.sys -- (klmouflt) DRV:[b]64bit:[/b] - [2014-05-07 20:12:05 | 000,029,280 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klkbdflt.sys -- (klkbdflt) DRV:[b]64bit:[/b] - [2014-05-07 20:12:04 | 000,458,336 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\kl1.sys -- (kl1) DRV:[b]64bit:[/b] - [2014-01-22 08:52:10 | 000,206,080 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm) DRV:[b]64bit:[/b] - [2014-01-22 08:52:10 | 000,108,800 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus) DRV:[b]64bit:[/b] - [2013-08-10 15:27:57 | 000,054,368 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kltdi.sys -- (kltdi) DRV:[b]64bit:[/b] - [2013-05-07 15:00:39 | 000,178,448 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kneps.sys -- (kneps) DRV:[b]64bit:[/b] - [2013-02-12 05:12:06 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx) DRV:[b]64bit:[/b] - [2012-12-19 06:41:52 | 000,194,488 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:[b]64bit:[/b] - [2012-03-01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:[b]64bit:[/b] - [2012-01-18 07:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64) DRV:[b]64bit:[/b] - [2012-01-18 05:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2010-11-20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2010-11-20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:[b]64bit:[/b] - [2010-09-21 08:59:38 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) DRV:[b]64bit:[/b] - [2010-09-03 06:59:26 | 000,349,800 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:[b]64bit:[/b] - [2010-07-27 02:45:46 | 000,180,224 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc) DRV:[b]64bit:[/b] - [2010-07-27 02:45:46 | 000,078,848 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub) DRV:[b]64bit:[/b] - [2010-04-27 10:56:38 | 000,021,544 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger) DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-06-17 08:54:30 | 000,057,872 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt) DRV:[b]64bit:[/b] - [2009-06-17 08:54:22 | 000,055,312 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt) DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2009-06-02 16:35:30 | 000,438,784 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rt61.sys -- (RT61) DRV - [2014-12-30 17:22:08 | 000,030,528 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\GVTDrv64.sys -- (GVTDrv64) DRV - [2014-12-30 17:22:02 | 000,025,640 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\gdrv.sys -- (gdrv) DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-725722643-3999779410-799618441-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-725722643-3999779410-799618441-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=SPLBR1&pc=SPLH IE - HKU\S-1-5-21-725722643-3999779410-799618441-1000\..\SearchScopes\{B3E6D59D-0E54-4d48-AE29-281049A228B9}: "URL" = http://www.google.com/cse?cx=partner-pub-3794288947762788%3A7941509802&ie=UTF-8&q=&sa=Search&siteurl=www.google.com%2Fcse%2Fhome%3Fcx%3Dpartner-pub-3794288947762788%3A7941509802&q={searchTerms} IE - HKU\S-1-5-21-725722643-3999779410-799618441-1000\..\SearchScopes\{FB7DBF4C-3C78-48aa-B3BC-93219EF8C02B}: "URL" = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBDSV IE - HKU\S-1-5-21-725722643-3999779410-799618441-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:23.0.1 FF - user.js - File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll () FF - HKLM\Software\MozillaPlugins\@comarch.com/NOL,version=3.0: C:\Program Files (x86)\Common Files\NOL3\npn30plugin.dll (COMARCH S.A.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@citrixonline.com/appdetectorplugin: C:\Users\Bartek\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online) FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Bartek\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Bartek\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Bartek\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Bartek\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\url_advisor@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com [2014-06-02 19:41:40 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtual_keyboard@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com [2014-06-02 19:41:41 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\content_blocker@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com [2014-06-02 19:41:40 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\anti_banner@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com [2014-06-02 19:41:40 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\online_banking@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com [2014-06-02 19:41:40 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Programy\Internet\Mozilla\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Programy\Internet\Mozilla\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Sunbird 0.9\extensions\\Components: C:\Programy\Internet\Mozilla Sunbird\components [2014-07-10 12:22:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Sunbird 0.9\extensions\\Plugins: C:\Programy\Internet\Mozilla Sunbird\plugins FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{B64D9B05-48E1-4CEB-BF58-E0643994E900}: C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Programy\Internet\Mozilla\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Programy\Internet\Mozilla\plugins [2013-05-07 14:42:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bartek\AppData\Roaming\mozilla\Extensions [2014-07-10 12:22:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bartek\AppData\Roaming\mozilla\Sunbird\Profiles\ka4z79nq.default\extensions [color=#E56717]========== Chrome ==========[/color] CHR - plugin: Error reading preferences file CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_0\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpoimibckejjdjcfbdnajaicnklhfplh\2.3.0.43_0\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco\2.3.3_0\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ CHR - Extension: No name found = C:\Users\Bartek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\13.0.1.4190_0\ O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:[b]64bit:[/b] - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) O2:[b]64bit:[/b] - BHO: (Content Blocker Plugin) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) O2:[b]64bit:[/b] - BHO: (Virtual Keyboard Plugin) - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) O2:[b]64bit:[/b] - BHO: (Safe Money Plugin) - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) O2:[b]64bit:[/b] - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation) O2:[b]64bit:[/b] - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) O2:[b]64bit:[/b] - BHO: (URL Advisor Plugin) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) O2:[b]64bit:[/b] - BHO: (no name) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - No CLSID value found. O2 - BHO: (Content Blocker Plugin) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) O2 - BHO: (Virtual Keyboard Plugin) - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) O2 - BHO: (Safe Money Plugin) - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (URL Advisor Plugin) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) O2 - BHO: (no name) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - No CLSID value found. O4:[b]64bit:[/b] - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.) O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe (Kaspersky Lab ZAO) O4 - HKLM..\Run: [EEventManager] C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [KiesTrayAgent] C:\Programy\telefon\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.) O4 - HKLM..\Run: [LWS] C:\Programy\Internet\Webcam\LWS\Webcam Software\LWS.exe (Logitech Inc.) O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation) O4 - HKLM..\Run: [SmartViewAgent] "C:\Program Files (x86)\DeviceVM\SmartView\SmartViewAgent.exe" File not found O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [] C:\Programy\telefon\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung) O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [DisplayFusion] C:\Programy\narzedzia\DisplayFusion\DisplayFusion.exe (Binary Fortress Software) O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [Epson Stylus SX510W(Sieć)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFIE.EXE /FU "C:\Windows\TEMP\E_S6077.tmp" /EF "HKCU" File not found O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [EPSON SX510W Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFIE.EXE /FU "C:\Windows\TEMP\E_S81CC.tmp" /EF "HKCU" File not found O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [GoogleDriveSync] C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google) O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup File not found O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [KiesAirMessage] C:\Programy\telefon\Kies\KiesAirMessage.exe -startup File not found O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [KiesPreload] C:\Programy\telefon\Kies\Kies.exe (Samsung) O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1002..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4:[b]64bit:[/b] - HKLM..\RunOnce: [RPMKickstart] C:\Program Files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe (Gigabyte Technology CO., LTD.) O4 - HKLM..\RunOnce: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe () O4 - HKLM..\RunOnce: [SDBOK] C:\Program Files (x86)\GIGABYTE\smart6\dbios\run.exe () O4 - HKU\.DEFAULT..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 File not found O4 - HKU\S-1-5-18..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 File not found O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1002..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - Startup: C:\Users\Bartek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk = C:\Programy\narzedzia\Opoffice\program\quickstart.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8:[b]64bit:[/b] - Extra context menu item: Dodaj do listy blokowanych banerów - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm () O8:[b]64bit:[/b] - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation) O8:[b]64bit:[/b] - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation) O8 - Extra context menu item: Dodaj do listy blokowanych banerów - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm () O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation) O9:[b]64bit:[/b] - Extra Button: &Klawiatura wirtualna - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation) O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation) O9:[b]64bit:[/b] - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) O9:[b]64bit:[/b] - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9:[b]64bit:[/b] - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9:[b]64bit:[/b] - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) O9:[b]64bit:[/b] - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - Reg Error: Key error. File not found O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - Reg Error: Key error. File not found O9 - Extra Button: &Klawiatura wirtualna - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) O9 - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - Reg Error: Key error. File not found O9 - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - Reg Error: Key error. File not found O13[b]64bit:[/b] - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{868C284D-C5B5-4DD4-9DC6-EFB885FA057D}: DhcpNameServer = 192.168.1.254 O18:[b]64bit:[/b] - Protocol\Handler\osf - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013-08-09 19:49:08 | 000,000,024 | ---- | M] () - D:\autorun.inf -- [ NTFS ] O33 - MountPoints2\{7c8cd366-0e5e-11e4-b1c1-001b1000131c}\Shell - "" = AutoRun O33 - MountPoints2\{7c8cd366-0e5e-11e4-b1c1-001b1000131c}\Shell\AutoRun\command - "" = F:\AutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2014-12-30 17:24:27 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee Security Scan [2014-12-30 17:24:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus [2014-12-30 17:24:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee Security Scan [2014-12-30 17:24:26 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee [2014-12-21 02:06:08 | 000,000,000 | ---D | C] -- C:\Users\Bartek\Documents\Niestandardowe szablony pakietu Office [2014-12-21 00:06:06 | 000,000,000 | ---D | C] -- C:\Users\Bartek\AppData\Local\Microsoft Help [2014-12-20 22:03:43 | 000,000,000 | RH-D | C] -- C:\MSOCache [2014-12-20 21:59:09 | 000,000,000 | R--D | C] -- C:\Users\Bartek\OneDrive [2014-12-20 21:59:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft OneDrive [2014-12-20 21:59:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft OneDrive [2014-12-20 21:58:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER [2014-12-20 21:40:38 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1991-06.com.microsoft [2014-12-20 21:40:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2014-12-20 21:35:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 [2014-12-20 21:32:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office 15 [2014-12-18 11:43:48 | 000,585,944 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\drivers\RtkBtfilter.sys [2014-12-18 10:23:11 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2014-12-18 10:23:11 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2014-12-17 23:25:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 [2014-12-17 10:42:58 | 000,000,000 | ---D | C] -- C:\Windows\pl [2014-12-17 10:42:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition [2014-12-17 10:42:32 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2014-12-17 10:42:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live [2014-12-17 10:41:42 | 000,000,000 | ---D | C] -- C:\Users\Bartek\AppData\Local\Windows Live [2014-12-17 10:41:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live [2014-12-16 08:13:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rossmann Fotoswiat [2014-12-15 11:10:56 | 000,000,000 | ---D | C] -- C:\Users\Bartek\AppData\Roaming\Azuon [2014-12-11 07:48:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appraiser [2014-12-11 00:42:45 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfpmp.exe [2014-12-11 00:42:45 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mferror.dll [2014-12-11 00:42:45 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mferror.dll [2014-12-11 00:42:44 | 004,121,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll [2014-12-11 00:42:44 | 003,209,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll [2014-12-11 00:42:44 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll [2014-12-11 00:42:44 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfps.dll [2014-12-11 00:42:44 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rrinstaller.exe [2014-12-11 00:42:44 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rrinstaller.exe [2014-12-11 00:42:44 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfpmp.exe [2014-12-10 22:04:27 | 000,718,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2014-12-10 22:04:27 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe [2014-12-10 22:04:27 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll [2014-12-10 22:04:27 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2014-12-10 22:04:27 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll [2014-12-10 22:04:27 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll [2014-12-10 22:04:27 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll [2014-12-10 22:04:27 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2014-12-10 22:04:27 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2014-12-10 22:04:26 | 002,052,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2014-12-10 22:04:26 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe [2014-12-10 22:04:26 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2014-12-10 22:04:26 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll [2014-12-10 22:04:26 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2014-12-10 22:04:26 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll [2014-12-10 22:04:25 | 002,125,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2014-12-10 22:04:25 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2014-12-10 22:04:25 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2014-12-10 22:04:25 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2014-12-10 22:04:25 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll [2014-12-10 22:04:25 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2014-12-10 22:04:24 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll [2014-12-10 22:04:24 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2014-12-10 22:04:24 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll [2014-12-10 22:04:24 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll [2014-12-10 22:04:24 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll [2014-12-10 22:04:23 | 006,039,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2014-12-10 22:04:23 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll [2014-12-10 22:04:23 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll [2014-12-10 22:04:23 | 000,580,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2014-12-10 22:04:23 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2014-12-10 22:04:22 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll [2014-12-10 22:04:22 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll [2014-12-10 21:09:45 | 001,232,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aitstatic.exe [2014-12-10 21:09:45 | 001,083,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll [2014-12-10 21:09:45 | 000,830,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll [2014-12-10 21:09:45 | 000,741,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll [2014-12-10 21:09:45 | 000,413,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll [2014-12-10 21:09:45 | 000,396,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll [2014-12-10 21:09:45 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll [2014-12-10 21:09:45 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll [2014-12-10 21:08:42 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll [2014-12-10 21:03:24 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\charmap.exe [2014-12-10 21:03:24 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\charmap.exe [2014-12-10 21:03:23 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSManMigrationPlugin.dll [2014-12-10 21:03:23 | 000,310,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WsmWmiPl.dll [2014-12-10 21:03:23 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSManHTTPConfig.exe [2014-12-10 21:03:23 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSManMigrationPlugin.dll [2014-12-10 21:03:23 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WsmWmiPl.dll [2014-12-10 21:03:23 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSManHTTPConfig.exe [2014-12-10 21:03:23 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WsmAuto.dll [2014-12-10 21:03:23 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WsmAuto.dll [2014-12-10 15:40:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NOL3 [2014-12-10 15:40:17 | 000,000,000 | ---D | C] -- C:\bossaNOL3 [2014-12-09 11:30:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\NOL3 [2014-12-03 13:13:33 | 000,000,000 | ---D | C] -- C:\Users\Bartek\AppData\Local\PokerStars [2014-12-01 15:49:21 | 000,000,000 | -HSD | C] -- C:\Users\Bartek\AppData\Local\EmieBrowserModeList [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2014-12-30 17:28:48 | 000,023,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2014-12-30 17:28:48 | 000,023,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2014-12-30 17:27:39 | 001,670,518 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2014-12-30 17:27:39 | 000,740,422 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2014-12-30 17:27:39 | 000,654,254 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2014-12-30 17:27:39 | 000,155,996 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2014-12-30 17:27:39 | 000,122,126 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2014-12-30 17:24:26 | 000,002,166 | ---- | M] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk [2014-12-30 17:24:26 | 000,002,166 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-12-30 17:24:25 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2014-12-30 17:24:23 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2014-12-30 17:24:23 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2014-12-30 17:22:08 | 000,030,528 | ---- | M] () -- C:\Windows\GVTDrv64.sys [2014-12-30 17:22:08 | 000,000,004 | ---- | M] () -- C:\Windows\SysWow64\GVTunner.ref [2014-12-30 17:22:02 | 000,025,640 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\Windows\gdrv.sys [2014-12-30 17:21:46 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2014-12-30 17:21:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2014-12-30 17:21:40 | 4281,933,822 | -HS- | M] () -- C:\hiberfil.sys [2014-12-30 17:09:00 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-725722643-3999779410-799618441-1000UA.job [2014-12-30 17:09:00 | 000,001,048 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2014-12-30 13:15:16 | 000,001,010 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-725722643-3999779410-799618441-1000Core.job [2014-12-29 20:33:05 | 000,057,255 | ---- | M] () -- C:\Users\Bartek\Desktop\[kickass.so]penguins.of.madagascar.2014.hc.hdrip.xvid.juggs.etrg (2).torrent [2014-12-21 02:16:44 | 000,464,432 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2014-12-18 16:33:14 | 013,824,054 | ---- | M] () -- C:\Users\Bartek\Documents\Nowy obraz mapy bitowej.bmp [2014-12-18 11:43:48 | 000,585,944 | ---- | M] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\drivers\RtkBtfilter.sys [2014-12-17 12:02:09 | 000,070,321 | ---- | M] () -- C:\Users\Bartek\Desktop\Bez tytułu.png [2014-12-17 08:01:51 | 000,001,960 | ---- | M] () -- C:\Users\Public\Desktop\DisplayFusion.lnk [2014-12-15 11:10:55 | 000,001,796 | ---- | M] () -- C:\Users\Bartek\Desktop\Azuon.lnk [2014-12-13 06:09:01 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2014-12-13 04:33:44 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2014-12-09 11:30:58 | 000,000,996 | ---- | M] () -- C:\Users\Bartek\Desktop\NOL3 — skrót.lnk [2014-12-04 03:50:55 | 000,413,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll [2014-12-04 03:50:45 | 000,741,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll [2014-12-04 03:50:40 | 000,396,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll [2014-12-04 03:50:38 | 000,830,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll [2014-12-04 03:50:37 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll [2014-12-04 03:50:37 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll [2014-12-04 03:44:48 | 001,083,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll [2014-12-02 00:28:44 | 001,232,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aitstatic.exe [color=#E56717]========== Files Created - No Company Name ==========[/color] [2014-12-30 17:24:26 | 000,002,166 | ---- | C] () -- C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk [2014-12-30 17:24:26 | 000,002,166 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-12-29 20:33:04 | 000,057,255 | ---- | C] () -- C:\Users\Bartek\Desktop\[kickass.so]penguins.of.madagascar.2014.hc.hdrip.xvid.juggs.etrg (2).torrent [2014-12-20 21:59:09 | 000,002,220 | ---- | C] () -- C:\Users\Bartek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk [2014-12-18 16:33:00 | 013,824,054 | ---- | C] () -- C:\Users\Bartek\Documents\Nowy obraz mapy bitowej.bmp [2014-12-17 10:42:50 | 000,001,305 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk [2014-12-17 10:42:48 | 000,001,374 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk [2014-12-15 11:10:55 | 000,001,826 | ---- | C] () -- C:\Users\Bartek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Azuon.lnk [2014-12-15 11:10:55 | 000,001,796 | ---- | C] () -- C:\Users\Bartek\Desktop\Azuon.lnk [2014-12-09 11:30:58 | 000,000,996 | ---- | C] () -- C:\Users\Bartek\Desktop\NOL3 — skrót.lnk [2014-05-20 14:02:10 | 000,045,384 | ---- | C] () -- C:\Windows\SysWow64\DiscHandler.exe [2014-05-13 16:02:30 | 003,916,288 | ---- | C] () -- C:\Windows\SysWow64\ffmpeg.dll [2014-05-13 16:01:48 | 000,112,640 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2014-05-13 16:01:12 | 000,271,360 | ---- | C] () -- C:\Windows\SysWow64\TomsMoComp_ff.dll [2014-05-13 16:00:58 | 000,157,184 | ---- | C] () -- C:\Windows\SysWow64\ff_unrar.dll [2014-05-13 16:00:58 | 000,099,840 | ---- | C] () -- C:\Windows\SysWow64\ff_wmv9.dll [2014-05-13 16:00:56 | 001,525,760 | ---- | C] () -- C:\Windows\SysWow64\ff_samplerate.dll [2014-05-13 16:00:56 | 000,211,968 | ---- | C] () -- C:\Windows\SysWow64\ff_libdts.dll [2014-05-13 16:00:56 | 000,147,456 | ---- | C] () -- C:\Windows\SysWow64\ff_libmad.dll [2014-05-13 16:00:54 | 000,114,688 | ---- | C] () -- C:\Windows\SysWow64\ff_liba52.dll [2014-05-13 16:00:52 | 000,136,704 | ---- | C] () -- C:\Windows\SysWow64\libmpeg2_ff.dll [2014-04-08 21:50:26 | 000,235,520 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2014-04-08 21:50:16 | 000,632,320 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2014-04-08 16:29:48 | 000,238,736 | ---- | C] () -- C:\Windows\SysWow64\libbluray.dll [2013-12-17 03:19:30 | 000,216,064 | ---- | C] ( ) -- C:\Windows\SysWow64\Lagarith.dll [2013-12-17 03:15:32 | 000,237,568 | ---- | C] () -- C:\Windows\SysWow64\OptimFROG.dll [2013-12-17 03:15:32 | 000,000,236 | ---- | C] () -- C:\Windows\SysWow64\Formats.ini [2013-12-17 03:15:30 | 000,047,104 | ---- | C] () -- C:\Windows\SysWow64\bass_tak.dll [2013-12-17 02:28:18 | 000,109,568 | ---- | C] () -- C:\Windows\SysWow64\avi.dll [2013-12-17 02:28:18 | 000,097,792 | ---- | C] () -- C:\Windows\SysWow64\avs.dll [2013-12-17 02:28:18 | 000,093,184 | ---- | C] () -- C:\Windows\SysWow64\avss.dll [2013-12-17 02:27:52 | 000,113,152 | ---- | C] () -- C:\Windows\SysWow64\dsmux.exe [2013-12-17 02:27:50 | 000,249,856 | ---- | C] () -- C:\Windows\SysWow64\dxr.dll [2013-12-17 02:27:40 | 000,358,400 | ---- | C] () -- C:\Windows\SysWow64\gdsmux.exe [2013-12-17 02:27:16 | 000,137,728 | ---- | C] () -- C:\Windows\SysWow64\mkv2vfr.exe [2013-12-17 02:27:16 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\mkunicode.dll [2013-12-17 02:27:14 | 000,150,528 | ---- | C] () -- C:\Windows\SysWow64\mkx.dll [2013-12-17 02:27:14 | 000,080,384 | ---- | C] () -- C:\Windows\SysWow64\mkzlib.dll [2013-12-17 02:27:10 | 000,142,336 | ---- | C] () -- C:\Windows\SysWow64\mp4.dll [2013-12-17 02:26:52 | 000,123,392 | ---- | C] () -- C:\Windows\SysWow64\ogm.dll [2013-12-17 02:26:40 | 000,154,624 | ---- | C] () -- C:\Windows\SysWow64\ts.dll [2013-08-19 15:26:39 | 000,111,932 | ---- | C] () -- C:\Windows\SysWow64\EPPICPrinterDB.dat [2013-08-19 15:26:39 | 000,031,053 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern131.dat [2013-08-19 15:26:39 | 000,027,417 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern121.dat [2013-08-19 15:26:39 | 000,026,154 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern1.dat [2013-08-19 15:26:39 | 000,024,903 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern3.dat [2013-08-19 15:26:39 | 000,021,390 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern5.dat [2013-08-19 15:26:39 | 000,020,148 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern2.dat [2013-08-19 15:26:39 | 000,011,811 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern4.dat [2013-08-19 15:26:39 | 000,004,943 | ---- | C] () -- C:\Windows\SysWow64\EPPICPattern6.dat [2013-08-19 15:26:39 | 000,001,146 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_DU.dat [2013-08-19 15:26:39 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_PT.dat [2013-08-19 15:26:39 | 000,001,139 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_BP.dat [2013-08-19 15:26:39 | 000,001,136 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_ES.dat [2013-08-19 15:26:39 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_FR.dat [2013-08-19 15:26:39 | 000,001,129 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_CF.dat [2013-08-19 15:26:39 | 000,001,120 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_IT.dat [2013-08-19 15:26:39 | 000,001,107 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_GE.dat [2013-08-19 15:26:39 | 000,001,104 | ---- | C] () -- C:\Windows\SysWow64\EPPICPresetData_EN.dat [2013-08-19 15:26:39 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\PICSDK.ini [2013-08-05 07:15:08 | 000,066,104 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll [2013-08-05 07:15:06 | 000,023,080 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll [2013-06-14 18:56:26 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe [2013-06-14 18:56:18 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll [2013-06-14 18:56:18 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll [2013-06-14 18:56:18 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll [2013-06-14 18:56:18 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll [2013-05-20 16:43:30 | 000,202,344 | ---- | C] () -- C:\Windows\SysWow64\avfilter-lav-3.dll [2013-05-07 15:07:36 | 001,642,188 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013-05-07 14:47:03 | 000,030,528 | ---- | C] () -- C:\Windows\GVTDrv64.sys [2013-05-07 13:45:17 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\drivers\IntelMEFWVer.dll [2013-05-07 13:39:46 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini [2013-02-10 15:15:02 | 007,833,552 | ---- | C] () -- C:\Windows\SysWow64\avcodec-lav-54.dll [2013-02-10 15:15:02 | 001,256,952 | ---- | C] () -- C:\Windows\SysWow64\avformat-lav-54.dll [color=#E56717]========== ZeroAccess Check ==========[/color] [2014-06-03 12:54:08 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\HoldemManager\Database\HoldemManager2\Players\2\L.santos99$$ [2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2014-06-25 03:05:42 | 014,175,744 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2014-06-25 02:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] [color=#E56717]========== LOP Check ==========[/color] [2014-12-15 11:11:10 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Azuon [2013-08-12 13:58:57 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\BANDISOFT [2013-05-07 17:54:42 | 000,000,000 | -HSD | M] -- C:\Users\Bartek\AppData\Roaming\Common [2013-08-14 10:16:05 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\DeviceVm [2014-12-17 09:48:40 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\DisplayFusion [2014-11-05 08:54:44 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\DVDVideoSoft [2013-08-21 07:53:08 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Epson [2013-05-07 16:29:26 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\HEM Data [2014-12-30 08:06:17 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\HoldemManager [2013-05-07 13:58:45 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Leadertech [2014-05-07 20:12:52 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\MetaQuotes [2013-08-21 23:16:47 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\OpenOffice.org [2013-05-07 17:15:21 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Roaming [2013-08-17 18:59:27 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Samsung [2014-09-10 07:39:12 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\SitNGoWizard [2014-05-07 20:02:27 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Splashtop [2013-08-10 15:46:56 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\VOS [2014-06-20 17:14:14 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Warner Bros. Interactive Entertainment [color=#E56717]========== Purity Check ==========[/color] < End of report >

Kod: Zaznacz wszystko: OTL Extras logfile created on: 2014-12-30 17:27:13 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Bartek\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.17501) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 15,98 Gb Total Physical Memory | 13,01 Gb Available Physical Memory | 81,40% Memory free 31,97 Gb Paging File | 28,48 Gb Available in Paging File | 89,11% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 111,69 Gb Total Space | 25,07 Gb Free Space | 22,45% Space Free | Partition Type: NTFS Drive D: | 1863,01 Gb Total Space | 1000,22 Gb Free Space | 53,69% Space Free | Partition Type: NTFS Computer Name: BLASZAK | User Name: Bartek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-725722643-3999779410-799618441-1000\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [CEWE-Podglad Zdjec] -- "D:\programy\Grafika\Moja cewe fotoksiazka\dodatek\CEWE-Podglad Zdjec.exe" -d "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Moja cewe fotoksiazka] -- "D:\programy\Grafika\Moja cewe fotoksiazka\Moja cewe fotoksiazka.exe" "%1" () Directory [Rossmann Fotoswiat] -- "D:\programy\Grafika\Moja cewe fotoksiazka\dodatek\Rossmann Fotoswiat.exe" "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [CEWE-Podglad Zdjec] -- "D:\programy\Grafika\Moja cewe fotoksiazka\dodatek\CEWE-Podglad Zdjec.exe" -d "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Moja cewe fotoksiazka] -- "D:\programy\Grafika\Moja cewe fotoksiazka\Moja cewe fotoksiazka.exe" "%1" () Directory [Rossmann Fotoswiat] -- "D:\programy\Grafika\Moja cewe fotoksiazka\dodatek\Rossmann Fotoswiat.exe" "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0122C5D5-1CA2-4B9C-AE22-3B7CF4B022F3}" = lport=138 | protocol=17 | dir=in | app=system | "{0493E4E5-4C20-49AC-8CA7-4A1E70438CA5}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{15B4A9D2-C5BE-4469-9766-19616434EB52}" = rport=139 | protocol=6 | dir=out | app=system | "{1FE7E4C0-0129-4508-B0C5-F8DB1813A297}" = rport=138 | protocol=17 | dir=out | app=system | "{24FDE84C-D364-4644-8338-35EC0E126669}" = lport=10243 | protocol=6 | dir=in | app=system | "{26F1D5D8-C2DA-4D18-A640-2470F72FE2CE}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{30F37F1A-ED7A-4369-9D21-1780ECFAFC83}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe | "{41FE704D-2F35-4A5B-BC6A-A7DD11D30592}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{4512B806-FEE4-4F15-B3D6-3A6B5439F02B}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{4A544A85-5979-42F0-A3BC-0407B959BFB5}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{4BEB561E-93D1-4156-A654-9399BC13C516}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | "{552C6AAF-3808-4410-8FDE-2BA0D11C87D1}" = lport=445 | protocol=6 | dir=in | app=system | "{556743F0-CAD9-419F-BDF7-9DD016C443F4}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{5EFD371C-A5CC-45CC-BCB0-9DFAE812BDFA}" = rport=137 | protocol=17 | dir=out | app=system | "{6EB66C51-1549-479D-8346-F61ABCE40D19}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | "{76B00E1C-CD78-48E9-A567-A1730639B36F}" = lport=2869 | protocol=6 | dir=in | app=system | "{846304A6-9AF1-4750-A115-2D88CF1C2B8E}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{912781D8-7591-4D1F-87EE-26B17B45914B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{992C113D-974E-4788-82F6-8A1FBD6B240C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{AA2E9A16-E2D3-4FB4-8ABF-E9939475675A}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office 15\root\office15\outlook.exe | "{B30C5EF0-1F3C-4F9F-910C-4A3925F663A1}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{B475D288-D167-463F-A01B-A797E64E9F33}" = lport=139 | protocol=6 | dir=in | app=system | "{C2569576-7130-4CD0-BF7D-0777567C686B}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe | "{CEE15C1A-D837-471C-B1D1-065327470FA8}" = rport=445 | protocol=6 | dir=out | app=system | "{D881203D-EF9D-4D0D-B4DC-4A0B43215E02}" = lport=137 | protocol=17 | dir=in | app=system | "{DB653006-01F3-48D4-A8A1-FB797271D262}" = rport=10243 | protocol=6 | dir=out | app=system | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{122BA0C4-E48B-47E3-96B1-912677615869}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | "{1404F6C5-497D-4025-BC7F-08141F00EE1F}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{25308869-6177-45DD-A134-F3B92872362A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{2C198345-85ED-4379-AB4D-8C46BE7DE433}" = protocol=17 | dir=in | app=d:\gry\steam\steam.exe | "{30019A62-AAF9-4D73-8899-73FC0D086B4D}" = protocol=6 | dir=in | app=d:\gry\steam\bin\steamwebhelper.exe | "{3669CE2F-81EB-4D4D-A1D4-94608FCA4E29}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\age2hd\launcher.exe | "{3694E1B1-C2DE-4C84-B5C4-DDE75BFB4964}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{3AF6A927-C82F-438C-89B6-AB7E620B8A80}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\medieval ii total war\medieval2.exe | "{3C340355-8D31-40F3-A67C-B441C65268C5}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{3D290766-F439-4988-9E83-4FB017B8088E}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{5DEFA6EA-1B85-4EC8-A2EA-55A11F12721D}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\age2hd\launcher.exe | "{67E38C49-BEF4-4C6D-A1DF-495B4432F46C}" = protocol=6 | dir=out | app=system | "{82BF6662-4324-445A-9DE1-32EE8CF60D22}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{82E56B35-F568-4CB7-9249-ED137CAB01A1}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\portal 2\portal2.exe | "{83B3F03A-A397-41F3-9B5D-F79E92D89C02}" = dir=in | app=c:\users\bartek\appdata\local\microsoft\skydrive\skydrive.exe | "{89E3CE6C-0A2A-430F-81F7-46790E62AD8D}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{8C2B38AE-68C3-46F9-B7FD-50DF171025C0}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{8D04B198-EEC6-496A-942F-A44D2DB2E3BA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{90D34076-945F-4330-8ABE-209A11E3356D}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{97256943-DF6B-41BF-B5E0-0AD1DEBB5D55}" = protocol=17 | dir=in | app=d:\gry\steam\bin\steamwebhelper.exe | "{9D8926D9-1B04-4800-A815-DBF368FFE6D2}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{AB2921C6-414B-4601-A6B6-A8058A2395C0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{B2AC8BF2-24FF-4098-BF41-E263981F415B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{B9FB0B0D-68F9-4376-9957-49D982F9B515}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\portal 2\portal2.exe | "{BB3FF7A5-E759-4E35-BB9B-A3EFF90688A7}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\medieval ii total war\medieval2.exe | "{BD204CD2-5851-491D-AE84-5C538F809FCD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{C43E165F-CB90-44DA-B6C9-4421A741867C}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{D4667092-FA82-43EC-82D2-9C46DA5A5249}" = protocol=6 | dir=in | app=d:\gry\steam\steam.exe | "{F1CB1042-887B-4109-BEC1-B125DF6EE05A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{F30D5F98-A375-4B5D-99B5-EE7F4C929A40}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{F9534FFC-5A3F-4292-8563-0440E12992C2}" = protocol=6 | dir=in | app=c:\finanse\mt5\metatester64.exe | "{FB45E125-A8A2-4843-B5C2-9A4618B66CE2}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 "{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 "{45F1F774-38B4-3CC3-BAAF-051E6D19E48E}" = Microsoft .NET Framework 4.5.1 (PLK) "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{764384C5-BCA9-307C-9AAC-FD443662686A}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 "{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1 "{90150000-008F-0000-1000-0000000FF1CE}" = Office 15 Click-to-Run Licensing Component "{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1 "{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045" = Microsoft .NET Framework 4.5.1 (Polski) "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 314.22 "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 314.22 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 314.22 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Sterownik kontrolera 3D Vision 314.22 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.12.1031 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.12.12 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Sterownik dźwięku HD 1.3.23.1 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{B48E1FFD-A85D-45DB-9070-C06CDF6BD427}" = User's Guides "{CE52672C-A0E9-4450-8875-88A221D5CD50}" = Windows Live ID Sign-in Assistant "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{D3120436-1358-4253-9EB2-257FFE8CE1D9}" = Logitech SetPoint 5.20 "{E9FA781F-3E80-4399-825A-AD3E11C28C77}" = MSVCRT110_amd64 "EPSON SX510W Series" = EPSON SX510W Series Printer Uninstall "O365HomePremRetail - pl-pl" = Microsoft Office 365 - pl-pl "WinRAR archiver" = WinRAR 4.20 (64-bitowy) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}" = Windows Live UX Platform "{07AAB66E-4718-422D-9218-4AFB3C922A71}" = Photo Gallery "{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video "{0C5C1177-94C5-3EFB-A8BE-3F6AF1AF887F}" = Google Talk Plugin "{127BEFB3-24B2-4B44-8E99-AD22C2A5A8ED}" = Full Tilt Poker.Eu "{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi "{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main "{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter "{18192D3F-5537-4560-AD89-D695F72AF91D}" = OpenOffice.org 3.4.1 "{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}" = Windows Live Photo Common "{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin "{38B746B5-44EE-4FFA-B987-581B5CF4A097}" = PokerStrategy.com Equilab - Omaha "{3B35725F-C623-4A1E-B5CC-99C0868679E3}" = Smart 6 B10.1023.1 "{3D6AD258-61EA-35F5-812C-B7A02152996E}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 "{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B10.0427.1 "{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT "{3EEF6B1E-38AA-4F22-BA70-30A73BB06AAE}" = Photo Common "{41C61308-6CFD-4D54-AB6A-7136ED08A18E}" = Windows Live Communications Platform "{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.1024.1 "{48F22622-1CC2-4A83-9C1E-644DD96F832D}" = Epson Event Manager "{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver "{560985FB-4B76-4121-9189-7A2CDC7886D6}" = Kaspersky Internet Security 2013 "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components "{659CB81C-B54E-4DF1-B618-F35777393A54}" = Windows Live Installer "{675F86A8-E093-4002-87D5-915CC2C45571}" = DES 2.0 "{698BBAD8-B116-495D-B879-0F07A533E57F}" = Samsung Story Album Viewer "{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 "{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection "{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "{77655DF6-A143-4A25-A5F8-127C8CE63EDA}" = Galeria fotografii "{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher "{86D09F48-CDAB-4B4C-8806-F6C16F17935A}" = PokerStrategy.com Equilab "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver "{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software "{8B128562-681D-4FFA-BEBF-A825985B2CB9}" = AirPlus G DWL-G510 "{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110 "{8FFD72FC-4FFA-472D-9F76-AEC85F602F9D}" = Podstawowe programy Windows Live "{90150000-008C-0000-0000-0000000FF1CE}" = Office 15 Click-to-Run Extensibility Component "{90150000-008C-0415-0000-0000000FF1CE}" = Office 15 Click-to-Run Localization Component "{95716cce-fc71-413f-8ad5-56c2892d4b3a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin "{a1909659-0a08-4554-8af1-2175904903a1}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 "{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A9EE161A-2342-449C-9DA9-2D42C13D15A2}}_is1" = BOSSAFX-PR wersja 1.50 "{AC57543E-EC54-4AB7-A18C-4B04BB1CF09A}" = Windows Live UX Platform Language Pack "{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager "{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.10) "{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}" = Windows Live PIMT Platform "{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}" = @BIOS "{C60F3836-333A-4AE2-B526-CFDBA143A9BA}" = Google Drive "{C6F20FA7-342A-47A9-A3C8-EB36CABE6419}" = LEGO® Władca Pierścieni™ "{C75FAD21-EC08-42F3-92D6-C9C0AB355345}" = AutoGreen B10.1021.1 "{C9348928-1BBE-4523-9104-C97EAC68DF1E}" = Azuon "{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}" = Windows Live SOXE "{D1893000-EA77-493C-8DDD-E262436E959B}" = Windows Live SOXE Definitions "{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software "{DAE8CC57-EBF5-4D46-8572-9A0C769D6F16}" = Movie Maker "{DD67BE4B-7E62-4215-AFA3-F123A800A389}" = Movie Maker "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E1B40232-F73B-4BF9-A819-E352CCC1EDEF}" = Citrix Online Launcher "{E592E668-89A9-4098-B70C-0C2D59FB15CA}" = UPSilon 2000 "{E7CF0F14-8C1D-41F3-85ED-579C108262C7}" = Splashtop Personal "{E7D4E834-93EB-351F-B8FB-82CDAE623003}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 "{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center "{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook "{FFFAE01B-466F-4C07-9821-A94FD753BDDA}" = EpsonNet Setup "Adobe Flash Player ActiveX" = Adobe Flash Player 16 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 15 Plugin "AmiBroker_is1" = AmiBroker 5.60.3 "B076073A-5527-4f4f-B46B-B10692277DA2_is1" = DisplayFusion 7.0 "Bandicam" = Bandicam "BandiMPEG1" = Bandisoft MPEG-1 Decoder "BOSSAFX" = BOSSAFX "EPSON Scanner" = EPSON Scan "Free YouTube Download_is1" = Free YouTube Download version 3.2.49.1022 "Google Chrome" = Google Chrome "HoldemManager2" = Holdem Manager 2 "InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.1024.1 "InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver "InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}" = Samsung Story Album Viewer "InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}" = AutoGreen B10.1021.1 "InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}" = Kaspersky Internet Security 2013 "McAfee Security Scan" = McAfee Security Scan Plus "Moja cewe fotoksiazka" = Moja cewe fotoksiazka "Mozilla Firefox 20.0.1 (x86 pl)" = Mozilla Firefox 20.0.1 (x86 pl) "Mozilla Sunbird (0.9)" = Mozilla Sunbird (0.9) "MozillaMaintenanceService" = Mozilla Maintenance Service "Notowania OnLine 3.0 DM BOS S.A._is1" = Notowania OnLine 3.0 DM BOS S.A. "Notowania3PRO_is1" = Notowania 3 PRO "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "PokerStars.eu" = PokerStars.eu "PostgreSQL 8.4" = PostgreSQL 8.4 "Rossmann Fotoswiat" = Rossmann Fotoswiat "Splashtop Software Updater" = Splashtop Software Updater "Steam" = Steam "TMM90" = TELL ME MORE "Windows 7 - Codec Pack" = Windows 7 Codec Pack 4.0.9 "WinLiveSuite" = Podstawowe programy Windows Live [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-725722643-3999779410-799618441-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "GoToMeeting" = GoToMeeting 5.4.0.1082 "Mozilla Firefox 23.0.1 (x86 pl)" = Mozilla Firefox 23.0.1 (x86 pl) "MyFreeCodec" = MyFreeCodec "Notowania3PRO_is1" = Aktualizacja N3 PRO "OneDriveSetup.exe" = Microsoft OneDrive [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2014-12-30 10:34:18 | Computer Name = blaszak | Source = PostgreSQL | ID = 0 Description = Error - 2014-12-30 10:34:23 | Computer Name = blaszak | Source = PostgreSQL | ID = 0 Description = Error - 2014-12-30 10:34:53 | Computer Name = blaszak | Source = PostgreSQL | ID = 0 Description = Error - 2014-12-30 10:34:58 | Computer Name = blaszak | Source = PostgreSQL | ID = 0 Description = Error - 2014-12-30 10:35:03 | Computer Name = blaszak | Source = PostgreSQL | ID = 0 Description = Error - 2014-12-30 10:35:23 | Computer Name = blaszak | Source = PostgreSQL | ID = 0 Description = Error - 2014-12-30 10:35:38 | Computer Name = blaszak | Source = PostgreSQL | ID = 0 Description = Error - 2014-12-30 10:36:08 | Computer Name = blaszak | Source = PostgreSQL | ID = 0 Description = Error - 2014-12-30 10:36:33 | Computer Name = blaszak | Source = PostgreSQL | ID = 0 Description = Error - 2014-12-30 10:36:38 | Computer Name = blaszak | Source = PostgreSQL | ID = 0 Description = [ Media Center Events ] Error - 2014-11-08 11:40:29 | Computer Name = blaszak | Source = MCUpdate | ID = 0 Description = 16:40:29 - Nie można pobrać pakietu Directory (Błąd: Nie można połączyć się z serwerem zdalnym) Error - 2014-11-08 11:40:35 | Computer Name = blaszak | Source = MCUpdate | ID = 0 Description = 16:40:33 - Nie można pobrać pakietu MCEClientUX (Błąd: Nie można połączyć się z serwerem zdalnym) Error - 2014-11-08 12:41:00 | Computer Name = blaszak | Source = MCUpdate | ID = 0 Description = 17:41:00 - Nie można pobrać pakietu Directory (Błąd: Nie można połączyć się z serwerem zdalnym) Error - 2014-11-08 12:41:04 | Computer Name = blaszak | Source = MCUpdate | ID = 0 Description = 17:41:04 - Nie można pobrać pakietu MCEClientUX (Błąd: Nie można połączyć się z serwerem zdalnym) Error - 2014-11-13 08:09:00 | Computer Name = blaszak | Source = MCUpdate | ID = 0 Description = 13:09:00 - Nie można pobrać pakietu Directory (Błąd: Invalid security token.) Error - 2014-11-17 07:56:42 | Computer Name = blaszak | Source = MCUpdate | ID = 0 Description = 12:56:42 - Nie można pobrać pakietu Directory (Błąd: Nie można połączyć się z serwerem zdalnym) Error - 2014-11-17 08:57:22 | Computer Name = blaszak | Source = MCUpdate | ID = 0 Description = 13:57:22 - Nie można pobrać pakietu Directory (Błąd: Nie można połączyć się z serwerem zdalnym) Error - 2014-11-17 09:57:28 | Computer Name = blaszak | Source = MCUpdate | ID = 0 Description = 14:57:28 - Nie można pobrać pakietu Directory (Błąd: Nie można połączyć się z serwerem zdalnym) Error - 2014-11-19 08:04:38 | Computer Name = blaszak | Source = MCUpdate | ID = 0 Description = 13:04:36 - Nie można pobrać pakietu MCEClientUX (Błąd: Nie można połączyć się z serwerem zdalnym) Error - 2014-11-19 09:05:25 | Computer Name = blaszak | Source = MCUpdate | ID = 0 Description = 14:05:24 - Nie można pobrać pakietu MCEClientUX (Błąd: Nie można połączyć się z serwerem zdalnym) [ System Events ] Error - 2014-10-20 03:33:42 | Computer Name = blaszak | Source = Service Control Manager | ID = 7038 Description = Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%1330 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error - 2014-10-20 03:33:42 | Computer Name = blaszak | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: %%1069 Error - 2014-10-20 11:15:20 | Computer Name = blaszak | Source = Service Control Manager | ID = 7038 Description = Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%1330 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error - 2014-10-20 11:15:20 | Computer Name = blaszak | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: %%1069 Error - 2014-10-20 15:04:49 | Computer Name = blaszak | Source = Service Control Manager | ID = 7038 Description = Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%1330 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error - 2014-10-20 15:04:49 | Computer Name = blaszak | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: %%1069 Error - 2014-10-21 02:08:33 | Computer Name = blaszak | Source = Service Control Manager | ID = 7038 Description = Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%1330 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error - 2014-10-21 02:08:33 | Computer Name = blaszak | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: %%1069 Error - 2014-10-21 15:20:56 | Computer Name = blaszak | Source = Service Control Manager | ID = 7038 Description = Usługa nvUpdatusService nie może zalogować się jako .\UpdatusUser za pomocą obecnie skonfigurowanego hasła z powodu następującego błędu: %%1330 Aby upewnić się, że usługa jest skonfigurowana prawidłowo, użyj przystawki Usługi w programie Microsoft Management Console (MMC). Error - 2014-10-21 15:20:56 | Computer Name = blaszak | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi NVIDIA Update Service Daemon z powodu następującego błędu: %%1069 < End of report >

GMER

Kod: Zaznacz wszystko: GMER 2.1.19357 - http://www.gmer.net Rootkit scan 2014-12-30 17:40:06 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 Crucial_CT120M500SSD1 rev.MU05 111,79GB Running: eckm0swu.exe; Driver: C:\Users\Bartek\AppData\Local\Temp\pwddqpoc.sys ---- User code sections - GMER 2.1 ---- .text C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[1420] C:\Windows\SysWOW64\ntdll.dll!NtQueryValueKey 000000007755faa8 5 bytes JMP 00000001728c19e8 .text C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe[1420] C:\Windows\SysWOW64\ntdll.dll!NtProtectVirtualMemory 0000000077560038 5 bytes JMP 00000001728c209e .text C:\Sterowniki\Upsilon\RupsMon.exe[2340] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Sterowniki\Upsilon\RupsMon.exe[2340] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe[2392] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe[2392] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text c:\postgreSQL\bin\postgres.exe[2432] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text c:\postgreSQL\bin\postgres.exe[2432] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe[3860] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe[3860] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Program Files (x86)\Google\Drive\googledrivesync.exe[3668] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Program Files (x86)\Google\Drive\googledrivesync.exe[3668] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Programy\telefon\Kies\Kies.exe[1084] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Programy\telefon\Kies\Kies.exe[1084] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Programy\telefon\Kies\External\FirmwareUpdate\KiesPDLR.exe[556] C:\Windows\SysWOW64\ntdll.dll!DbgBreakPoint 000000007755000c 1 byte [C3] .text C:\Programy\telefon\Kies\External\FirmwareUpdate\KiesPDLR.exe[556] C:\Windows\SysWOW64\ntdll.dll!DbgUiRemoteBreakin 00000000775df8ea 5 bytes JMP 000000017758d5c1 .text C:\Programy\telefon\Kies\External\FirmwareUpdate\KiesPDLR.exe[556] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Programy\telefon\Kies\External\FirmwareUpdate\KiesPDLR.exe[556] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Windows\SysWOW64\C2MP\TrayMenu.exe[3412] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Windows\SysWOW64\C2MP\TrayMenu.exe[3412] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Windows\SysWOW64\C2MP\UpdateChecker.exe[4072] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Windows\SysWOW64\C2MP\UpdateChecker.exe[4072] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Programy\narzedzia\Opoffice\program\soffice.bin[4256] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Programy\narzedzia\Opoffice\program\soffice.bin[4256] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Programy\Internet\Webcam\LWS\Webcam Software\LWS.exe[4272] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Programy\Internet\Webcam\LWS\Webcam Software\LWS.exe[4272] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[4320] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe[4320] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Programy\Internet\Webcam\LWS\Webcam Software\CameraHelperShell.exe[4396] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Programy\Internet\Webcam\LWS\Webcam Software\CameraHelperShell.exe[4396] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[4540] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe[4540] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Programy\narzedzia\DisplayFusion\DisplayFusionHookAppWIN6032.exe[5228] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Programy\narzedzia\DisplayFusion\DisplayFusionHookAppWIN6032.exe[5228] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Windows\system32\DllHost.exe[7504] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Windows\system32\DllHost.exe[7504] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 .text C:\Users\Bartek\Downloads\OTL_[www.programosy.pl].exe[1548] C:\Windows\syswow64\PSAPI.dll!GetModuleInformation + 69 0000000076c11465 2 bytes [C1, 76] .text C:\Users\Bartek\Downloads\OTL_[www.programosy.pl].exe[1548] C:\Windows\syswow64\PSAPI.dll!GetModuleInformation + 155 0000000076c114bb 2 bytes [C1, 76] .text ... * 2 ---- Kernel IAT/EAT - GMER 2.1 ---- IAT C:\Windows\System32\win32k.sys[ntoskrnl.exe!KeUserModeCallback] [fffff8800329fedc] \SystemRoot\system32\DRIVERS\klif.sys [PAGE] ---- Threads - GMER 2.1 ---- Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [6264:6764] 000007fefb362bf8 Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [6264:6772] 000007fee5b14830 ---- Processes - GMER 2.1 ---- Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\python27.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668] (Python Core/Python Software Foundation)(2014-12-30 16:22:04) 000000001e000000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32api.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001e8c0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\pywintypes27.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001e7a0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\pythoncom27.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 00000000004f0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_socket.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 0000000000250000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_ssl.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 0000000010000000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32com.shell.shell.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001e800000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_hashlib.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 0000000002ef0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._core_.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 0000000002fb0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wxbase294u_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668] (wxWidgets for MSW/wxWidgets development team)(2014-12-30 16:22:04) 00000000030e0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wxbase294u_net_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668] (wxWidgets for MSW/wxWidgets development team)(2014-12-30 16:22:04) 0000000000560000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wxmsw294u_core_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668] (wxWidgets for MSW/wxWidgets development team)(2014-12-30 16:22:04) 00000000032d0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wxmsw294u_adv_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668] (wxWidgets for MSW/wxWidgets development team)(2014-12-30 16:22:04) 0000000003770000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._gdi_.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 00000000039b0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._windows_.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 0000000003a80000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wxmsw294u_html_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668] (wxWidgets for MSW/wxWidgets development team)(2014-12-30 16:22:04) 0000000002730000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._controls_.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 00000000045d0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._misc_.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 00000000046e0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_elementtree.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001d100000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\pyexpat.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 0000000001e10000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\pysqlite2._sqlite.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 00000000043b0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_ctypes.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001d1a0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32file.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001ea10000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32security.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001ec80000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\hashobjs_ext.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 00000000027d0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32gui.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001ea40000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32event.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001e9b0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32inet.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001eaa0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32crypt.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001e980000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._html2.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 00000000058a0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wxmsw294u_webview_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668] (wxWidgets for MSW/wxWidgets development team)(2014-12-30 16:22:04) 00000000058c0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\_multiprocessing.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 00000000058e0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32process.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001ebf0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\unicodedata.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 00000000059a0000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._wizard.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 0000000005910000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32pipe.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001eb90000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32pdh.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001eb60000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\select.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 0000000005940000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32profile.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001ec20000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\win32ts.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 000000001ed40000 Library C:\Users\Bartek\AppData\Local\Temp\_MEI36122\wx._animate.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [3668](2014-12-30 16:22:04) 0000000005a90000 Library C:\Users\Bartek\Downloads\install_flashplayer16x32axau_mssa_aaa_aih.exe (*** suspicious ***) @ C:\Users\Bartek\Downloads\install_flashplayer16x32axau_mssa_aaa_aih.exe [7504] 0000000000400000 ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\001b1000131c Reg HKLM\SYSTEM\CurrentControlSet\services\iphlpsvc\Teredo\PreviousState\00-12-2a-bb-46-e1@ClientLocalPort 65320 Reg HKLM\SYSTEM\CurrentControlSet\services\iphlpsvc\Teredo\PreviousState\00-12-2a-bb-46-e1@TeredoAddress 2001:0:9d38:6abd:28a5:d7:b202:6042 Reg HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Epoch@Epoch 6377 Reg HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Epoch2@Epoch 2597 Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\001b1000131c (not active ControlSet) ---- EOF - GMER 2.1 ----

Mam Kasperskiego, skanowanie krytycznych części nic nie dało. Pełne trwa, nic nie pokazuje w tej chwili.

Dodano 30.12.2014 17:57:40:
Problem rozwiązany :banan:

. Przez przypadek włączyłem kontrolę rodzicielską w Kasperskim ... Dlaczego blokował googla nie mam pojęcia.

Jeżeli jednak macie czas, to luknijcie na logi skoro już są :wink:

. Wciąż mam problem z googletranslator. Gdy wpiszę ten adres to wyskakuję mi jakaś inna strona. Mam tak już od bardzo dawna. Zawsze wchodzę przez wyszukiwarkę. Inaczej nie zadziała.

**Posty:** 4765 · przez **ordynat** 30 Gru 2014, 19:46

Tylko kosmetyka:
Uruchom OTL i w oknie Własne opcje skanowania/Skrypt wklej to:

:OTL
O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup File not found
O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [KiesAirMessage] C:\Programy\telefon\Kies\KiesAirMessage.exe -startup File not found
O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [Epson Stylus SX510W(Sieć)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFIE.EXE /FU "C:\Windows\TEMP\E_S6077.tmp" /EF "HKCU" File not found
O4 - HKU\S-1-5-21-725722643-3999779410-799618441-1000..\Run: [EPSON SX510W Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFIE.EXE /FU "C:\Windows\TEMP\E_S81CC.tmp" /EF "HKCU" File not found
O4 - HKLM..\Run: [SmartViewAgent] "C:\Program Files (x86)\DeviceVM\SmartView\SmartViewAgent.exe" File not found
O2 - BHO: (no name) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - No CLSID value found.
O2:64bit: - BHO: (no name) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - No CLSID value found.

:Commands
[emptytemp]

Kliknij w Wykonaj Skrypt