Dzisiaj na kompa zainstalowało się coś takiego SSFK.exe dodatkowo w przeglądarce pozmieniało strony startowe i dodało jakiś przekierowania.
ZOEK
- Kod: Zaznacz wszystko
Zoek.exe v5.0.0.1 Updated 18-October-2015
Tool run by Thormek on 2015-10-19 at 21:45:20,78.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Thormek\Desktop\zoek.exe [Scan all users] [Quick Scan] [Auto Clean]
==== System Restore Info ======================
2015-10-19 21:47:24 Zoek.exe System Restore Point Created Successfully.
==== Empty Folders Check ======================
C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\Pando Networks deleted successfully
C:\PROGRA~2\R.G. Gamblers deleted successfully
C:\PROGRA~2\COMMON~1\Colasoft Shared deleted successfully
C:\PROGRA~2\COMMON~1\EAInstaller deleted successfully
C:\Program Files\ATI Technologies deleted successfully
C:\PROGRA~3\Colasoft Capsa 7 Free deleted successfully
C:\Users\Thormek\AppData\Roaming\istartsurf deleted successfully
C:\Users\Thormek\AppData\Roaming\Opera Software deleted successfully
C:\Users\Thormek\AppData\Local\Opera Software deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-2004879951-2572555970-1650795036-1000\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\deskCutv2@gmail.com deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SSFK deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\SSFK deleted successfully
==== FireFox Fix ======================
ProfilePath: C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default
user.js not found
---- Lines xpiState" removed from prefs.js ----
user_pref("extensions.xpiState", "{\"app-profile\":{\"default_newtabff@gmail.com\":{\"d\":\"C:\\\\Users\\\\Thormek\\\\AppData\\\\Roaming\\\\Mozilla\\\
---- Lines delta removed from prefs.js ----
user_pref("browser.newtab.url", "http://www.delta-homes.com/newtab/?type=nt&ts=1445271565&z=ca7c02734405fec8a4e982ag2zcz6w2o4magdw0q1q&from=wpm07163&u
user_pref("browser.search.defaultenginename", "delta-homes");
user_pref("browser.search.searchengine.alias", "delta-homes");
user_pref("browser.search.searchengine.iconURL", "http://search.delta-homes.com/favicon.ico");
user_pref("browser.search.searchengine.name", "delta-homes");
user_pref("browser.search.searchengine.url", "http://search.delta-homes.com/web/?type=ds&ts=1445271565&z=ca7c02734405fec8a4e982ag2zcz6w2o4magdw0q1q&fr
user_pref("browser.search.selectedEngine", "delta-homes");
---- FireFox user.js and prefs.js backups ----
prefs__2208_.backup
==== Deleting Files \ Folders ======================
C:\PROGRA~2\AGEIA Technologies not found
C:\PROGRA~2\Pando Networks not found
C:\PROGRA~2\R.G. Gamblers not found
C:\PROGRA~2\Mozilla Firefox\browser\searchplugins\safeguard-secure-search.xml deleted
C:\PROGRA~2\SFK deleted
C:\PROGRA~3\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat deleted
C:\PROGRA~3\Avg_Update_0414b deleted
C:\PROGRA~3\Avg_Update_0814tb deleted
C:\PROGRA~3\Avg_Update_1114tb deleted
C:\PROGRA~3\IHProtectUpDate deleted
C:\PROGRA~3\WindowsMangerProtect deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Thormek\AppData\Local\cache deleted
C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG SafeGuard toolbar deleted
C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\jetpack deleted
C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\CT3289075 deleted
C:\PROGRA~3\Fighters deleted
C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} deleted
"C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\searchplugins\delta-homes.xml" deleted
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2015-10-19 18:02:01 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe
2015-10-19 18:02:01 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe
2015-10-19 18:02:01 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe
2015-10-19 18:02:01 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe
2015-10-19 18:02:01 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe
====== C:\Users\Thormek\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-10-19 18:39:48 CFCD208495D565EF66E7DFF9F98764DA 1 ----a-w- C:\Windows\SysWOW64\pl.html
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
====== C:\Windows\Sysnative\drivers =====
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2015-10-19 17:39:07 -------- d-----w- C:\PROGRA~2\Trend Micro
======= C: =====
====== C:\Users\Thormek\AppData\Roaming ======
2015-10-19 18:23:44 -------- d-----w- C:\Users\Public\AppData\Local\temp
2015-10-19 18:23:44 -------- d-----w- C:\Users\Default\AppData\Local\temp
2015-10-19 18:23:44 -------- d-----w- C:\Users\Default User\AppData\Local\temp
2015-10-19 16:20:16 -------- d-----w- C:\Users\Thormek\AppData\Roaming\TSv
2015-09-30 17:12:52 -------- d-----w- C:\Users\Thormek\AppData\Roaming\Colasoft Packet Player
2015-09-30 17:12:51 -------- d-----w- C:\Users\Thormek\AppData\Roaming\Colasoft Ping Tool
2015-09-30 17:12:49 -------- d-----w- C:\Users\Thormek\AppData\Roaming\Colasoft MAC Scanner
2015-09-25 08:34:10 -------- d-----w- C:\Users\Thormek\AppData\Local\DunDefLauncher
====== C:\Users\Thormek ======
2015-10-19 19:38:22 112C4CFC853397E01A46E0833D696DCD 2196992 ----a-w- C:\Users\Thormek\Downloads\FRST64.exe
2015-10-19 19:18:45 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Thormek\Downloads\dds.com
2015-10-19 19:01:45 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\Thormek\Downloads\OTL_[www.programosy.pl].exe
2015-10-19 18:23:44 -------- d-----w- C:\Users\Public\AppData
2015-10-19 17:47:00 34020A303140E3FB06AC5103C28D32C7 243856 ----a-w- C:\Users\Thormek\Downloads\Firefox Setup Stub 41.0.2.exe
2015-10-08 06:16:11 B43008EE512684977F1C4360869EFFE8 19733696 ----a-w- C:\Users\Thormek\Downloads\MediaCreationToolx64.exe
====== C: exe-files ==
2015-10-19 19:38:22 112C4CFC853397E01A46E0833D696DCD 2196992 ----a-w- C:\Users\Thormek\Downloads\FRST64.exe
2015-10-19 19:01:45 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\Thormek\Downloads\OTL_[www.programosy.pl].exe
2015-10-19 18:56:23 9A8336796A7C71E9F33DE848B8320ED3 380416 ----a-w- C:\Users\Thormek\Downloads\gmer\gmer.exe
2015-10-19 18:02:01 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe
2015-10-19 18:02:01 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe
2015-10-19 18:02:01 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe
2015-10-19 18:02:01 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe
2015-10-19 18:02:01 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe
2015-10-19 17:47:00 34020A303140E3FB06AC5103C28D32C7 243856 ----a-w- C:\Users\Thormek\Downloads\Firefox Setup Stub 41.0.2.exe
2015-10-19 16:23:14 C3C32D0BF81388EE27C344C00C705445 2039128 ----a-w- C:\Users\Thormek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LO99HNIK\picexa[1].exe
2015-10-19 16:18:19 75ACBAAC17A4CAD5AE173A1F5167BF5C 2582528 ----a-w- C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\zip19[1].exe
2015-10-18 20:03:44 9AD0D1AAF2FDBE902FF6AC6F8C858C5F 336896 ----a-w- C:\Users\Thormek\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
2015-10-18 18:23:11 E17E53F297560C31631C4AC549385AE3 1822048 ----a-w- C:\Users\Thormek\AppData\Roaming\uTorrent\updates\3.4.5_41202.exe
=== C: other files ==
2015-10-19 19:18:45 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Thormek\Downloads\dds.com
2015-10-19 18:56:06 FB50E172074A6400F8CD2C0D31C5C6DB 370943 ----a-w- C:\Users\Thormek\Downloads\gmer.zip
==== Startup Registry Enabled ======================
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"
[HKEY_USERS\S-1-5-21-2004879951-2572555970-1650795036-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"NetLimiter"="C:\Program Files\NetLimiter 3\NLClientApp.exe /tray"
"AppEx Accelerator UI"="C:\Program Files\AMD Quick Stream\AMDQuickStream.exe -h"
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Raptr"="C:\Program Files (x86)\Raptr\raptrstub.exe --startup"
"StartCCC"="C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe MSRun"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NetLimiter"="C:\Program Files\NetLimiter 3\NLClientApp.exe /tray"
"AppEx Accelerator UI"="C:\Program Files\AMD Quick Stream\AMDQuickStream.exe -h"
"Autodesk Sync"="C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe"
==== Startup Registry Enabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"ETDCtrl"="%ProgramFiles%\Elantech\ETDCtrl.exe "
==== Startup Folders ======================
2014-03-02 10:54:38 2268 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Qualcomm Atheros Killer Network Manager.lnk
==== Task Scheduler Jobs ======================
C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17 17:52]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\Nero\Nero Info" [C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default
user_pref("browser.startup.homepage", "about:home");
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"default_newtabff@gmail.com"="C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\extensions\default_newtabff@gmail.com" [2015-10-19 18:19]
==== Firefox Extensions ======================
ProfilePath: C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default
- Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com
- Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com
- Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com
- Default NewTab - %ProfilePath%\extensions\default_newtabff@gmail.com
- Default SearchProtected - %ProfilePath%\extensions\defsearchp@gmail.com
- EPUBReader - %ProfilePath%\extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}
- Video DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
==== Firefox Plugins ======================
Profilepath: C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default
863AF0003392FEBC2667A8A790DED955 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll - Shockwave Flash
==== Deleted Firefox Extensions ======================
C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\extensions\defsearchp@gmail.com deleted
==== Chromium Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dbhjdbfgekjfcfkkfjjmlmojhbllhbho - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho[]
jbolfgndggfhhpbnkgnpjkfhinclbigj - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx[2014-03-26 10:14]
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.pl/"
"Default_Search_URL"="http://isearch.omigaweb/?type=dspp&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://isearch.omiga-plus.com/web/?type=ds&ts=1418215046&from=cor&uid=HitachiXHTS727575A9E364_J3340084JXUNKBJXUNKBX&q={searchTerms}"
"Default_Page_URL"="http://isearch.omiga?type=hppppp"
"Start Page"="http://isearch.omiga?type=hppppp"
"Search Page"="http://isearch.omiga-plus.com/web/?type=ds&ts=1418215046&from=cor&uid=HitachiXHTS727575A9E364_J3340084JXUNKBJXUNKBX&q={searchTerms}"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://isearch.omiga-plus.com/web/?type=ds&ts=1418215046&from=cor&uid=HitachiXHTS727575A9E364_J3340084JXUNKBJXUNKBX&q={searchTerms}"
"Default_Page_URL"="http://isearch.omiga?type=hppppp"
"Start Page"="http://isearch.omiga?type=hppppp"
"Search Page"="http://isearch.omiga-plus.com/web/?type=ds&ts=1418215046&from=cor&uid=HitachiXHTS727575A9E364_J3340084JXUNKBJXUNKBX&q={searchTerms}"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://google.pl/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\VSDC Free Video Converter_is1 deleted successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Thormek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
==== Empty FireFox Cache ======================
C:\Users\Thormek\AppData\Local\Mozilla\Firefox\Profiles\z6m2m0ro.default\cache2 emptied successfully
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=468 folders=184 49806450 bytes)
==== Empty Temp Folders ======================
C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Users\Thormek\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\Thormek\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on 2015-10-19 at 22:21:31,06 ======================
FRST
- Kod: Zaznacz wszystko
Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja:18-10-2015
Uruchomiony przez Thormek (administrator) THORMEK-GX70 (19-10-2015 21:40:04)
Uruchomiony z C:\Users\Thormek\Downloads
Załadowane profile: Thormek (Dostępne profile: Thormek)
Platform: Windows 7 Professional Service Pack 1 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11 (Domyślna przeglądarka nie została wykryta!)
Tryb startu: Normal
Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesy (filtrowane) =================
(Załączenie wejścia w fixlist spowoduje zamknięcie procesu. Powiązany plik nie zostanie przeniesiony.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Locktime Software) C:\Program Files\NetLimiter 3\NLClientApp.exe
() C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(tsvr.com) C:\Users\Thormek\AppData\Roaming\TSv\TSvr.exe
(Locktime Software) C:\Program Files\NetLimiter 3\nlsvc.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
(TODO: <???>) C:\Program Files (x86)\SFK\SSFK.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(TODO: <???>) C:\Program Files (x86)\SFK\SSFK.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avpui.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
() C:\Users\Thormek\Downloads\gmer\gmer.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
==================== Rejestr (filtrowane) ===========================
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13516360 2013-04-02] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2875728 2013-03-04] (ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-10-01] (Raptr, Inc)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-15] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-2004879951-2572555970-1650795036-1000\...\Run: [NetLimiter] => C:\Program Files\NetLimiter 3\NLClientApp.exe [2790400 2010-08-30] (Locktime Software)
HKU\S-1-5-21-2004879951-2572555970-1650795036-1000\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [488640 2015-04-06] ()
HKU\S-1-5-21-2004879951-2572555970-1650795036-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
HKU\S-1-5-21-2004879951-2572555970-1650795036-1000\...\Policies\Explorer: []
HKU\S-1-5-21-2004879951-2572555970-1650795036-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11264 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Qualcomm Atheros Killer Network Manager.lnk [2014-03-02]
ShortcutTarget: Qualcomm Atheros Killer Network Manager.lnk -> C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe ()
==================== Internet (filtrowane) ====================
(Załączenie wejścia w fixlist, w przypadku gdy jest to obiekt rejestru, spowoduje usunięcie go z rejestru lub przywrócenie jego domyślnej postaci.)
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9 05 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9 06 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9 18 C:\Windows\SysWOW64\BfLLR.dll [196096 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 C:\Windows\system32\BfLLR.dll [216064 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 C:\Windows\system32\BfLLR.dll [216064 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 C:\Windows\system32\BfLLR.dll [216064 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 C:\Windows\system32\BfLLR.dll [216064 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 05 C:\Windows\system32\BfLLR.dll [216064 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 06 C:\Windows\system32\BfLLR.dll [216064 2012-09-25] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 18 C:\Windows\system32\BfLLR.dll [216064 2012-09-25] (Bigfoot Networks, Inc.)
Tcpip\Parameters: [DhcpNameServer] 178.219.129.146 185.11.108.6
Tcpip\..\Interfaces\{4F7CBC80-95F8-4D19-B264-E160C9252E7D}: [DhcpNameServer] 178.219.129.146 185.11.108.6
Tcpip\..\Interfaces\{D6228868-EE59-4CCB-ACDF-266F4A05F5F5}: [DhcpNameServer] 178.219.129.146 185.11.108.6
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
HKU\S-1-5-21-2004879951-2572555970-1650795036-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Ograniczenia <======= UWAGA
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://isearch.omiga?type=hppppp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://isearch.omiga?type=hppppp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1418215046&from=cor&uid=HitachiXHTS727575A9E364_J3340084JXUNKBJXUNKBX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://isearch.omiga?type=hppppp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1418215046&from=cor&uid=HitachiXHTS727575A9E364_J3340084JXUNKBJXUNKBX&q={searchTerms}
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2004879951-2572555970-1650795036-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2004879951-2572555970-1650795036-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.pl/
HKU\S-1-5-21-2004879951-2572555970-1650795036-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://isearch.omigaweb/?type=dspp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2004879951-2572555970-1650795036-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://isearch.omigaweb/?type=dspp&q={searchTerms}
BHO: Content Blocker Plugin -> {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll [2014-12-05] (Kaspersky Lab ZAO)
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Virtual Keyboard Plugin -> {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll [2014-12-05] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {E3D96E85-529D-4269-AC6A-97CF9E2221E3} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll [2014-12-05] (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin -> {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll [2014-12-05] (Kaspersky Lab ZAO)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Virtual Keyboard Plugin -> {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll [2014-12-05] (Kaspersky Lab ZAO)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Safe Money Plugin -> {E3D96E85-529D-4269-AC6A-97CF9E2221E3} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll [2014-12-05] (Kaspersky Lab ZAO)
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
FireFox:
========
FF ProfilePath: C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default
FF NewTab: hxxp://www.delta-homes.com/newtab/?type=nt&ts=1445271565&z=ca7c02734405fec8a4e982ag2zcz6w2o4magdw0q1q&from=wpm07163&uid=HitachiXHTS727575A9E364_J3340084JXUNKBJXUNKBX
FF DefaultSearchEngine: delta-homes
FF SelectedSearchEngine: delta-homes
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-17] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-17] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin-x32: @kaspersky.com/content_blocker_6418E0D362104DADA084DC312DFA8ABC -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com [2014-12-05] ()
FF Plugin-x32: @kaspersky.com/online_banking_69A4E213815F42BD863D889007201D82 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com [2014-12-05] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com [2014-12-05] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Brak pliku]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Brak pliku]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\searchplugins\delta-homes.xml [2015-10-19]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\.xml [2014-12-10]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml [2014-08-25]
FF Extension: Default NewTab - C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\Extensions\default_newtabff@gmail.com [2015-10-19] [Brak podpisu cyfrowego]
FF Extension: Default SearchProtected - C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\Extensions\defsearchp@gmail.com [2015-10-19] [Brak podpisu cyfrowego]
FF Extension: EPUBReader - C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2015-05-30]
FF Extension: uTorrentControl_v6 - C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [2014-03-05] [Brak podpisu cyfrowego]
FF Extension: Video DownloadHelper - C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-03-14]
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox [2014-03-27] [Brak podpisu cyfrowego]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_6418E0D362104DADA084DC312DFA8ABC@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com [2014-12-05] [Brak podpisu cyfrowego]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com [2014-12-05] [Brak podpisu cyfrowego]
FF HKLM-x32\...\Firefox\Extensions: [online_banking_69A4E213815F42BD863D889007201D82@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com [2014-12-05] [Brak podpisu cyfrowego]
FF HKLM-x32\...\Firefox\Extensions: [defsearchp@gmail.com] - C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\extensions\defsearchp@gmail.com
FF HKLM-x32\...\Firefox\Extensions: [deskCutv2@gmail.com] - C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\extensions\deskCutv2@gmail.com => nie znaleziono
FF HKLM-x32\...\Firefox\Extensions: [default_newtabff@gmail.com] - C:\Users\Thormek\AppData\Roaming\Mozilla\Firefox\Profiles\z6m2m0ro.default\extensions\default_newtabff@gmail.com
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2014-03-27]
==================== Usługi (filtrowane) ========================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-07-15] (Advanced Micro Devices, Inc.) [Brak podpisu cyfrowego]
S2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-01-08] ()
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [Brak podpisu cyfrowego]
R2 AVP15.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe [234520 2014-08-30] (Kaspersky Lab ZAO)
R2 IhPul; C:\Users\Thormek\AppData\Roaming\TSv\TSvr.exe [396944 2015-09-21] (tsvr.com)
R2 nlsvc; C:\Program Files\NetLimiter 3\nlsvc.exe [1743872 2010-08-30] (Locktime Software) [Brak podpisu cyfrowego]
S3 Origin Client Service; D:\GRY\Origin\OriginClientService.exe [2007048 2015-07-29] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-12-24] ()
R2 Qualcomm Atheros Killer Service; C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [490496 2012-09-25] () [Brak podpisu cyfrowego]
R2 SSFK; C:\Program Files (x86)\SFK\SSFK.exe [169632 2015-10-10] (TODO: <???>)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [X]
===================== Sterowniki (filtrowane) ==========================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [59624 2014-01-08] (Advanced Micro Devices)
R2 APXACC; C:\Windows\System32\DRIVERS\appexDrv.sys [229056 2015-04-03] (AppEx Networks Corporation)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [66928 2012-09-25] (Qualcomm Atheros, Inc.)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [238288 2013-01-14] (Kaspersky Lab UK Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [468576 2014-03-31] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [46144 2014-07-02] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [150536 2014-12-05] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [246456 2014-08-12] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [819896 2015-03-11] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [30304 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [28768 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55872 2014-06-05] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [77512 2014-12-05] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [179776 2014-07-09] (Kaspersky Lab ZAO)
R3 L1C; C:\Windows\System32\DRIVERS\e22w7x64.sys [157552 2012-09-25] (Qualcomm Atheros, Inc.)
R1 nltdi; C:\Program Files\NetLimiter 3\nltdi.sys [88200 2010-08-30] (Locktime Software)
R3 RTWlanE; C:\Windows\System32\DRIVERS\rtwlane.sys [1514568 2013-05-02] (Realtek Semiconductor Corporation )
S3 SjtWinIo; C:\Windows\System32\DRIVERS\SjtWinIo.sys [9216 2014-03-02] (SpeedJet Technology INC.)
S2 AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [X]
S1 Capsax64Drv0; System32\Drivers\Capsax64Drv0.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S1 CSN5PDTS82; System32\Drivers\CSN5PDTS82.sys [X]
S1 CSN5PDTS82x64; System32\Drivers\CSN5PDTS82x64.sys [X]
S1 CsNdisLWF; System32\Drivers\CsNdisLWF.sys [X]
U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X]
U3 awdiakod; \??\C:\Users\Thormek\AppData\Local\Temp\awdiakod.sys [X]
==================== NetSvcs (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
==================== Jeden miesiąc - utworzone pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2015-10-19 21:40 - 2015-10-19 21:40 - 01309184 _____ C:\Users\Thormek\Downloads\zoek.exe
2015-10-19 21:40 - 2015-10-19 21:40 - 00022854 _____ C:\Users\Thormek\Downloads\FRST.txt
2015-10-19 21:39 - 2015-10-19 21:40 - 00000000 ____D C:\FRST
2015-10-19 21:38 - 2015-10-19 21:38 - 02196992 _____ (Farbar) C:\Users\Thormek\Downloads\FRST64.exe
2015-10-19 21:28 - 2015-10-19 21:28 - 00101022 _____ C:\Users\Thormek\Downloads\Extras.Txt
2015-10-19 21:26 - 2015-10-19 21:26 - 00094988 _____ C:\Users\Thormek\Downloads\OTL.Txt
2015-10-19 21:20 - 2015-10-19 21:21 - 00016518 _____ C:\Users\Thormek\Desktop\dds.txt
2015-10-19 21:20 - 2015-10-19 21:21 - 00008376 _____ C:\Users\Thormek\Desktop\attach.txt
2015-10-19 21:18 - 2015-10-19 21:18 - 00688992 ____R (Swearware) C:\Users\Thormek\Downloads\dds.com
2015-10-19 21:17 - 2015-10-19 21:17 - 00688992 _____ (Swearware) C:\Users\Thormek\Downloads\dds.scr
2015-10-19 21:01 - 2015-10-19 21:01 - 00602112 _____ (OldTimer Tools) C:\Users\Thormek\Downloads\OTL_[www.programosy.pl].exe
2015-10-19 20:56 - 2015-10-19 20:56 - 00370943 _____ C:\Users\Thormek\Downloads\gmer.zip
2015-10-19 20:56 - 2015-10-19 20:56 - 00000000 ____D C:\Users\Thormek\Downloads\gmer
2015-10-19 20:39 - 2015-10-19 20:50 - 00000001 _____ C:\Windows\SysWOW64\pl.html
2015-10-19 20:27 - 2015-10-19 20:38 - 00005988 _____ C:\Windows\PFRO.log
2015-10-19 20:23 - 2015-10-19 20:23 - 00020814 _____ C:\ComboFix.txt
2015-10-19 20:02 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-10-19 20:02 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-10-19 20:02 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-10-19 20:02 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-10-19 20:02 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-10-19 20:02 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-10-19 20:02 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-10-19 20:02 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-10-19 20:01 - 2015-10-19 20:23 - 00000000 ____D C:\Qoobox
2015-10-19 20:01 - 2015-10-19 20:20 - 00000000 ____D C:\Windows\erdnt
2015-10-19 19:47 - 2015-10-19 19:47 - 00243856 _____ C:\Users\Thormek\Downloads\Firefox Setup Stub 41.0.2.exe
2015-10-19 19:39 - 2015-10-19 19:39 - 00002945 _____ C:\Users\Thormek\Desktop\HiJackThis.lnk
2015-10-19 19:39 - 2015-10-19 19:39 - 00000000 ____D C:\Users\Thormek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2015-10-19 19:39 - 2015-10-19 19:39 - 00000000 ____D C:\Program Files (x86)\Trend Micro
2015-10-19 19:35 - 2015-10-19 19:35 - 05636101 ____R (Swearware) C:\Users\Thormek\Downloads\ComboFix.exe
2015-10-19 19:33 - 2015-10-19 19:33 - 01402880 _____ C:\Users\Thormek\Downloads\HiJackThis.msi
2015-10-19 18:27 - 2015-10-19 18:27 - 00262144 _____ C:\Windows\system32\config\elam
2015-10-19 18:21 - 2015-10-19 18:21 - 00000000 ____D C:\Program Files (x86)\SFK
2015-10-19 18:20 - 2015-10-19 18:20 - 00000000 ____D C:\Users\Thormek\AppData\Roaming\TSv
2015-10-18 20:30 - 2015-10-18 20:30 - 00000000 ____D C:\Users\Thormek\Downloads\[FileTracker.pl]Kraina jutra z[wilu75]
2015-10-18 20:23 - 2015-10-18 20:23 - 00000000 ____D C:\Users\Thormek\Downloads\[AgusiQ-TorrentS.pl] Spy.2015.PL-MORS [AgusiQ]
2015-10-15 19:20 - 2015-10-19 20:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-10-11 22:21 - 2015-10-11 22:21 - 00296408 _____ C:\Windows\Minidump\101115-31200-01.dmp
2015-10-10 18:27 - 2015-10-18 20:24 - 00000000 ____D C:\Users\Thormek\Downloads\Monstrous Tales - Dragon's Desire 1-2
2015-10-10 18:08 - 2015-10-10 18:09 - 00000000 ____D C:\Users\Thormek\Downloads\Amusteven - Mad Alyss 1-2
2015-10-09 23:08 - 2015-10-09 23:08 - 00292312 _____ C:\Windows\Minidump\100915-33930-01.dmp
2015-10-08 18:49 - 2015-10-18 20:45 - 00000000 ____D C:\Users\Thormek\Downloads\Good Wife with Dirty Desires
2015-10-08 18:48 - 2015-10-08 19:01 - 00000000 ____D C:\Users\Thormek\Downloads\Mrs. McDonald - Chapter 1
2015-10-08 09:00 - 2015-10-08 09:00 - 00000000 ____D C:\$WINDOWS.~BT
2015-10-08 08:19 - 2015-10-08 08:19 - 00000000 ____D C:\$Windows.~WS
2015-10-08 08:16 - 2015-10-08 08:16 - 19733696 _____ (Microsoft Corporation) C:\Users\Thormek\Downloads\MediaCreationToolx64.exe
2015-09-30 19:13 - 2015-10-19 20:37 - 00000000 ____D C:\ProgramData\Colasoft Capsa 7 Free
2015-09-30 19:12 - 2015-09-30 19:12 - 00000000 ____D C:\Users\Thormek\AppData\Roaming\Colasoft Ping Tool
2015-09-30 19:12 - 2015-09-30 19:12 - 00000000 ____D C:\Users\Thormek\AppData\Roaming\Colasoft Packet Player
2015-09-30 19:12 - 2015-09-30 19:12 - 00000000 ____D C:\Users\Thormek\AppData\Roaming\Colasoft MAC Scanner
2015-09-30 19:05 - 2015-10-19 18:18 - 00000102 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-09-30 19:05 - 2015-09-30 19:43 - 00000000 ____D C:\Users\Thormek\AppData\Roaming\istartsurf
2015-09-25 10:34 - 2015-09-25 10:34 - 00000000 ____D C:\Users\Thormek\AppData\Local\DunDefLauncher
2015-09-23 18:45 - 2015-09-23 18:45 - 00000206 _____ C:\Users\Thormek\Desktop\Dungeon Defenders II.url
2015-09-20 12:30 - 2015-09-20 12:30 - 00292312 _____ C:\Windows\Minidump\092015-37097-01.dmp
==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========
(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)
2015-10-19 21:21 - 2014-03-02 19:12 - 01105364 _____ C:\Windows\WindowsUpdate.log
2015-10-19 21:05 - 2014-12-05 19:17 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-10-19 20:58 - 2009-07-14 06:45 - 00030288 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-19 20:58 - 2009-07-14 06:45 - 00030288 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-19 20:52 - 2014-03-02 13:31 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-19 20:50 - 2014-03-02 12:54 - 00000000 ____D C:\ProgramData\Bigfoot Networks
2015-10-19 20:49 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-19 20:49 - 2009-07-14 06:51 - 00112417 _____ C:\Windows\setupact.log
2015-10-19 20:49 - 2009-07-14 06:45 - 00446904 _____ C:\Windows\system32\FNTCACHE.DAT
2015-10-19 20:48 - 2015-02-03 20:39 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2015-10-19 20:38 - 2014-03-02 13:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-19 20:23 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2015-10-19 20:12 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-10-18 22:07 - 2014-03-05 17:06 - 00000000 ____D C:\Users\Thormek\AppData\Roaming\uTorrent
2015-10-18 14:14 - 2009-07-14 19:55 - 00743668 _____ C:\Windows\system32\perfh015.dat
2015-10-18 14:14 - 2009-07-14 19:55 - 00157236 _____ C:\Windows\system32\perfc015.dat
2015-10-18 14:14 - 2009-07-14 07:13 - 01678012 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-17 17:52 - 2015-08-12 13:52 - 03996360 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-10-17 17:52 - 2014-03-02 13:31 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-10-17 17:52 - 2014-03-02 13:31 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-17 17:52 - 2014-03-02 13:31 - 00003868 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-10-16 19:06 - 2014-04-02 11:18 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-10-15 19:06 - 2014-12-23 19:46 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-10-14 19:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-10-11 22:21 - 2014-03-30 21:28 - 684164697 _____ C:\Windows\MEMORY.DMP
2015-10-11 22:21 - 2014-03-30 21:28 - 00000000 ____D C:\Windows\Minidump
2015-10-08 18:50 - 2014-11-13 09:51 - 00000000 ____D C:\Users\Thormek\AppData\Local\Battle.net
2015-10-08 18:50 - 2014-11-13 09:51 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-10-08 09:00 - 2014-03-02 19:08 - 00000000 ____D C:\Windows\Panther
2015-10-03 10:07 - 2015-02-03 20:34 - 00000000 ____D C:\Users\Thormek\AppData\Roaming\Raptr
2015-10-03 10:05 - 2015-02-03 20:34 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-09-30 19:42 - 2014-03-02 16:19 - 00000801 _____ C:\Users\Thormek\Desktop\League of Legends.lnk
2015-09-30 19:42 - 2014-03-02 12:19 - 00001425 _____ C:\Users\Thormek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-09-30 17:59 - 2014-03-02 16:19 - 00000000 ____D C:\Users\Thormek\AppData\Roaming\LolClient
==================== Pliki w katalogu głównym wybranych folderów =======
2014-08-11 15:42 - 2014-08-11 15:42 - 0000000 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2014-03-08 13:28 - 2015-09-06 16:38 - 0007646 _____ () C:\Users\Thormek\AppData\Local\Resmon.ResmonCfg
2015-02-18 12:19 - 2015-02-18 12:19 - 0003185 _____ () C:\Users\Thormek\AppData\Local\unins000.dat
2015-02-18 12:19 - 2015-02-18 12:19 - 0011761 _____ () C:\Users\Thormek\AppData\Local\unins000.msg
2014-12-04 09:57 - 2014-12-04 09:57 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-06-29 12:41 - 2015-06-29 12:41 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2015-09-30 19:05 - 2015-10-19 18:18 - 0000102 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
Pliki do przeniesienia lub usunięcia:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
==================== Bamital & volsnap =================
(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)
C:\Windows\system32\winlogon.exe => Plik podpisany cyfrowo
C:\Windows\system32\wininit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\wininit.exe => Plik podpisany cyfrowo
C:\Windows\explorer.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\explorer.exe => Plik podpisany cyfrowo
C:\Windows\system32\svchost.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\svchost.exe => Plik podpisany cyfrowo
C:\Windows\system32\services.exe => Plik podpisany cyfrowo
C:\Windows\system32\User32.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\User32.dll => Plik podpisany cyfrowo
C:\Windows\system32\userinit.exe => Plik podpisany cyfrowo
C:\Windows\SysWOW64\userinit.exe => Plik podpisany cyfrowo
C:\Windows\system32\rpcss.dll => Plik podpisany cyfrowo
C:\Windows\system32\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\SysWOW64\dnsapi.dll => Plik podpisany cyfrowo
C:\Windows\system32\Drivers\volsnap.sys => Plik podpisany cyfrowo
LastRegBack: 2015-09-29 13:46
==================== Koniec FRST.txt ============================
- Kod: Zaznacz wszystko
Rezultaty skanu uzupełniającego Farbar Recovery Scan Tool (x64) Wersja:18-10-2015
Uruchomiony przez Thormek (2015-10-19 21:40:39)
Uruchomiony z C:\Users\Thormek\Downloads
Windows 7 Professional Service Pack 1 (X64) (2014-03-02 10:19:13)
Tryb startu: Normal
==========================================================
==================== Konta użytkowników: =============================
Administrator (S-1-5-21-2004879951-2572555970-1650795036-500 - Administrator - Disabled)
Gość (S-1-5-21-2004879951-2572555970-1650795036-501 - Limited - Disabled)
Thormek (S-1-5-21-2004879951-2572555970-1650795036-1000 - Administrator - Enabled) => C:\Users\Thormek
==================== Centrum zabezpieczeń ========================
(Załączenie wejścia w fixlist spowoduje jego usunięcie.)
AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}
==================== Zainstalowane programy ======================
(W fixlist dozwolone tylko załączanie programów adware z flagą "Hidden" w celu ich uwidocznienia. Programy adware powinny zostać w poprawny sposób odinstalowane.)
µTorrent (HKU\S-1-5-21-2004879951-2572555970-1650795036-1000\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.2.0.2070 - Adobe Systems Incorporated)
Adobe Digital Editions 3.0 (HKLM-x32\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Polish (HKLM-x32\...\{AC76BA86-7AD7-1045-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{8DF1EF50-AEB6-902C-F68C-4683C45784E6}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD OverDrive (HKLM-x32\...\{34D5220A-58D0-473C-90E4-15136C3FB0E3}) (Version: 4.3.1.0690 - Advanced Micro Devices, Inc.)
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 4.0.0.0 - AppEx Networks)
AutoCAD 2014 - English (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD 2014 Language Pack - English (Version: 19.1.18.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk)
Autodesk AutoCAD 2014 - English (HKLM\...\AutoCAD 2014 - English) (Version: 19.1.18.0 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.13 - Autodesk)
Autodesk ReCap (Version: 1.0.43.13 - Autodesk) Hidden
Autodesk ReCap Language Pack-English (Version: 1.0.43.13 - Autodesk) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CWK (Czasowy Wyłącznik Komputera) (HKLM-x32\...\CWK) (Version: 2.52.3.43 - Damian Pasternak)
Dark Souls II, âĺđńč˙ 1.0.1.0 (HKLM-x32\...\Dark Souls II_is1) (Version: 1.0.1.0 - RePack by SEYTER)
Divinity: Original Sin (HKLM-x32\...\Steam App 230230) (Version: - Larian Studios)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Dungeon Defenders II (HKLM-x32\...\Steam App 236110) (Version: - Trendy Entertainment)
EA Installer (HKLM-x32\...\EA Installer.-367263747) (Version: 2.2.0.62 - Electronic Arts, Inc.)
EA Shared Game Component: Activation (HKLM-x32\...\com.ea.Activation.919CACB699904AC5D41B606703500DD39747C02D.1) (Version: 2.2.0.62 - Electronic Arts)
EA Shared Game Component: Activation (x32 Version: 2.2.0 - Electronic Arts) Hidden
ETDWare PS/2-X64 11.13.2.4_WHQL (HKLM\...\Elantech) (Version: 11.13.2.4 - ELAN Microelectronic Corp.)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Free Media Converter 2.9 (HKLM-x32\...\Free Media Converter_is1) (Version: - FreeMediaConverter.org)
Freemake Video Converter wersja 4.1.3 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.3 - Ellora Assets Corporation)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
HP Deskjet 2510 series — podstawowe oprogramowanie urządzenia (HKLM\...\{F0DD70C6-B53F-42B5-8A67-62863E6E5EEF}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet 2510 series Setup Guide (HKLM-x32\...\{216C7F38-4BBC-4E9A-8392-C9FA21B54386}) (Version: 27.0.0 - Hewlett Packard)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}) (Version: 15.0.1.415 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.1.415 - Kaspersky Lab) Hidden
K-Lite Codec Pack 6.2.0 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 6.2.0 - )
K-Lite Mega Codec Pack 8.7.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 8.7.0 - )
Lords of the Fallen (HKLM-x32\...\Lords of the Fallen_is1) (Version: - )
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Might & Magic: Duel of Champions (HKLM-x32\...\Steam App 256410) (Version: - Ubisoft Quebec)
MSI Afterburner 3.0.0 Beta 18 (HKLM-x32\...\Afterburner) (Version: 3.0.0 Beta 18 - MSI Co., LTD)
Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Nero 9 Essentials (HKLM-x32\...\{e0dee0be-0f9f-4e86-a996-163187d1a035}) (Version: - Nero AG)
Nero Burning ROM 2014 (HKLM-x32\...\{C9F54777-001E-41F6-83F8-B99A19EA5083}) (Version: 15.0.05600 - Nero AG)
Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 15.1.0030 - Nero AG)
NetLimiter 3 (HKLM\...\{913923AB-3AAB-4870-8910-627C4CD82789}) (Version: 3.0.0.10 - Locktime Software s.r.o.)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Pakiet sterowników systemu Windows - Advanced Micro Devices (amdhub30) USB (02/26/2013 1.1.0.0145) (HKLM\...\E9763B7620315731AD7ED384D4FD29317397BC63) (Version: 02/26/2013 1.1.0.0145 - Advanced Micro Devices)
Pakiet sterowników systemu Windows - Advanced Micro Devices (amdxhc) USB (02/26/2013 1.1.0.0145) (HKLM\...\F730DBDBAB7F37FB4646DCF65EAA90B782CFD0AA) (Version: 02/26/2013 1.1.0.0145 - Advanced Micro Devices)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version: - Grinding Gear Games)
Pillars of Eternity (HKLM-x32\...\1207666813_is1) (Version: 2.0.0.1 - GOG.com)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended PLK Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Prerequisite installer (x32 Version: 15.0.0005 - Nero AG) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Qualcomm Atheros Killer Network Manager (HKLM-x32\...\InstallShield_{DF446558-ADF7-4884-9B2D-281979CCE71F}) (Version: 6.1.0.437 - Qualcomm Atheros)
Qualcomm Atheros Killer Network Manager (Version: 6.1.0.437 - Qualcomm Atheros) Hidden
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6875 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0212 - REALTEK Semiconductor Corp.)
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
Skype™ 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Star Wars The Force Unleashed 2 wersja 1.0.0.0 (HKLM-x32\...\Star Wars The Force Unleashed 2_is1) (Version: 1.0.0.0 - GTX Box Team)
Star Wars The Force Unleashed Ultimate Sith Edition wersja 1.1.0.0 (HKLM-x32\...\Star Wars The Force Unleashed Ultimate Sith Edition_is1) (Version: 1.1.0.0 - GTX Box Team)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
TERA (HKLM-x32\...\Steam App 323370) (Version: - En Masse Entertainment)
Unigine Heaven DX11 Benchmark 2.5 version 2.5 (HKLM-x32\...\Unigine Heaven DX11 Benchmark 2.5_is1) (Version: 2.5 - )
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VSDC Free Video Converter version 2.4.5.276 (HKLM-x32\...\VSDC Free Video Converter_is1) (Version: 2.4.5.276 - Flash-Integro LLC)
Warframe (HKLM-x32\...\Steam App 230410) (Version: - Digital Extremes)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.01 (64-bitowy) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Wolfenstein The New Order ver. 1.0.0.2 (HKLM-x32\...\{55055055-10AE-00BA-96F5-98DD6F3006AC}_is1) (Version: 1.0.0.2 - Bethesda Game Studios)
Wtyczka e-Deklaracje (HKLM-x32\...\{81BF6353-3C5B-4E6E-A566-7E162A00BF72}_is1) (Version: 4.1.0 - Ministerstwo Finansów)
XCOM: Enemy Unknown (HKLM-x32\...\Steam App 200510) (Version: - Firaxis Games)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
==================== Niestandardowe rejestracje CLSID (filtrowane): ==========================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
CustomCLSID: HKU\S-1-5-21-2004879951-2572555970-1650795036-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> D:\AutoCAD\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2004879951-2572555970-1650795036-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> D:\AutoCAD\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2004879951-2572555970-1650795036-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> D:\AutoCAD\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2004879951-2572555970-1650795036-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> D:\AutoCAD\AutoCAD 2014\en-US\acadficn.dll (Autodesk, Inc.)
==================== Punkty Przywracania systemu =========================
29-09-2015 13:53:43 Zaplanowany punkt kontrolny
19-10-2015 19:38:31 Installed HiJackThis
19-10-2015 20:35:29 Removed FARO LS 1.1.501.0 (64bit)
==================== Hosts - zawartość: ===============================
(Użycie dyrektywy Hosts: w fixlist spowoduje reset pliku Hosts.)
2009-07-14 04:34 - 2015-10-19 20:11 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Zaplanowane zadania (filtrowane) =============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
Task: {105BD9AC-58FF-49FA-9FF5-B4CF6BA9CBDA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {19783523-ABE0-4D1A-9958-A47BF9615444} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {216F0A41-C178-4150-95B9-BC96CC56D92B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {249EE48C-B1A1-4A49-8016-B4C652FDA8D6} - System32\Tasks\{AB3D2BE4-5840-4468-A488-9A1DEFC1B981} => pcalua.exe -a "C:\Program Files (x86)\pb\pbsetup.exe" -d "C:\Program Files (x86)\pb"
Task: {4561857C-A664-429B-AB5D-7FC04779E623} - System32\Tasks\{387708C3-D0ED-43A4-8C66-C7805E245670} => pcalua.exe -a "C:\Users\Thormek\Desktop\Nowy folder\CDSetup.exe" -d "C:\Users\Thormek\Desktop\Nowy folder"
Task: {A7E43713-3C65-4969-A61B-139DF51B948F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-17] (Adobe Systems Incorporated)
Task: {DB942C1D-4078-4756-A89C-E3CF510C91A0} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {F133A0D7-6154-47EC-BD7E-2FDCAF5FCBDE} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2013-10-16] (Nero AG)
(Załączenie wejścia w fixlist spowoduje przesunięcie pliku zadania (.job). Plik uruchamiany docelowo przez zadanie nie zostanie przeniesiony.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Załadowane moduły (filtrowane) ==============
2015-07-15 21:38 - 2015-07-15 21:38 - 00127488 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2010-08-30 15:10 - 2010-08-30 15:10 - 00052736 _____ () C:\Program Files\NetLimiter 3\nlsvcPS.dll
2015-07-31 10:53 - 2015-04-06 01:48 - 00488640 _____ () C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
2013-02-05 00:21 - 2013-02-05 00:21 - 00056352 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll
2013-02-05 00:21 - 2013-02-05 00:21 - 00937504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll
2013-02-05 00:21 - 2013-02-05 00:21 - 00124448 _____ () C:\Program Files\Autodesk\Autodesk Sync\QJson.dll
2013-02-05 00:21 - 2013-02-05 00:21 - 00045088 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00553984 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
2011-05-09 21:46 - 2011-05-09 21:46 - 02760192 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtCore4.dll
2011-05-09 21:56 - 2011-05-09 21:56 - 09856000 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtGui4.dll
2011-05-09 21:48 - 2011-05-09 21:48 - 00990720 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtNetwork4.dll
2011-05-09 21:47 - 2011-05-09 21:47 - 00416256 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtXml4.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00217600 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFCommon.dll
2011-05-10 13:32 - 2011-05-10 13:32 - 00731648 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\qwt5.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00404992 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modApplications.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00036864 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modFeatures.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00025088 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modFraps.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00240128 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modGraph.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00062464 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modlcd.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00291328 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modNetwork.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00184832 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modNpu.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00211456 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modOptions.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00064000 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modOverview.dll
2012-09-25 00:08 - 2012-09-25 00:08 - 00317440 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modSystemInfo.dll
2015-07-15 21:38 - 2015-07-15 21:38 - 00102400 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-05-29 21:07 - 2014-12-24 23:42 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2012-09-25 00:08 - 2012-09-25 00:08 - 00490496 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
2015-10-19 20:56 - 2014-01-28 18:36 - 00380416 _____ () C:\Users\Thormek\Downloads\gmer\gmer.exe
2014-08-30 18:12 - 2014-08-30 18:12 - 01269952 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\kpcengine.2.3.dll
==================== Alternate Data Streams (filtrowane) =========
(Załączenie wejścia w fixlist spowoduje usunięcie strumienia ADS.)
==================== Tryb awaryjny (filtrowane) ===================
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Wartość "AlternateShell" zostanie przywrócona.)
==================== EXE - Powiązania (filtrowane) ===============
(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci.)
==================== Internet Explorer - Witryny zaufane i z ograniczeniami ===============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru.)
==================== Inne obszary ============================
(Obecnie brak automatycznej naprawy dla tej sekcji.)
HKU\S-1-5-21-2004879951-2572555970-1650795036-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Thormek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 178.219.129.146 - 185.11.108.6
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Zapora systemu Windows [funkcja włączona]
==================== MSCONFIG/TASK MANAGER - Wyłączone elementy ==
(Obecnie brak automatycznej naprawy dla tej sekcji.)
==================== Reguły Zapory systemu Windows (filtrowane) ===============
(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{64F7C588-0460-4E30-9342-5820451DB825}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D92A9F0D-9551-4319-B103-0786B8DB81BA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{42E72FFC-091D-4E99-BFF8-5DD3C736BE0E}] => (Allow) D:\GRY\Steam\Steam.exe
FirewallRules: [{F3B11E29-8532-4250-8545-3DAE574B31C0}] => (Allow) D:\GRY\Steam\Steam.exe
FirewallRules: [TCP Query User{9F85A8BA-3BDC-4E30-A784-DBC9AE49B247}C:\program files (x86)\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\tera\tera-launcher.exe
FirewallRules: [UDP Query User{E5016407-394E-4BC3-A946-6608F5531BE2}C:\program files (x86)\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\tera\tera-launcher.exe
FirewallRules: [TCP Query User{2392B771-EBFF-4508-A538-F267E6234708}D:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe] => (Block) D:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe
FirewallRules: [UDP Query User{FF93503B-D349-489D-AB2E-0DBFB8E608B8}D:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe] => (Block) D:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe
FirewallRules: [{83E87648-CFCE-476F-B0B6-FBB839F745E8}] => (Allow) D:\GRY\Steam\SteamApps\common\Might & Magic - Duel of Champions\Game.exe
FirewallRules: [{5B635781-9C17-4449-AEC8-F81AD51522F0}] => (Allow) D:\GRY\Steam\SteamApps\common\Might & Magic - Duel of Champions\Game.exe
FirewallRules: [{027996BF-C2B7-4570-9A35-B9CF4B045592}] => (Allow) D:\GRY\Steam\SteamApps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{B3DF08F2-3793-4149-85EA-35B1CB25139E}] => (Allow) D:\GRY\Steam\SteamApps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{7DDE60F5-0D03-424B-BE9F-9DFEB9ED1BEA}] => (Allow) C:\Users\Thormek\Downloads\utorrent.exe
FirewallRules: [{B9F6053D-38EC-44D8-A068-C827498E6AE9}] => (Allow) C:\Users\Thormek\Downloads\utorrent.exe
FirewallRules: [{A97B3300-3CED-4DC9-8928-2B3C5221C4F6}] => (Allow) C:\Users\Thormek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5B87B2E6-D74F-41A2-93C2-30435BA07870}] => (Allow) C:\Users\Thormek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{D01BE1CE-BE5B-4D00-9A24-1599D7786120}D:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe] => (Allow) D:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe
FirewallRules: [UDP Query User{9B7BCA51-2A58-4119-BDAE-A23596A0ECB9}D:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe] => (Allow) D:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe
FirewallRules: [{93B789D2-8261-427F-B236-6A4596AB4395}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{EA0F0382-3800-493A-A6A7-5BAEE49606E2}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{771D8FC6-EE28-434A-921F-C763C9084C30}] => (Allow) D:\GRY\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{3FD9D835-C3C3-4984-965C-BFAE1446783E}] => (Allow) D:\GRY\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{22739FE3-87E6-42B1-B1B9-C02D18544324}] => (Allow) D:\GRY\Mass Effect\MassEffectLauncher.exe
FirewallRules: [{069BDF09-9586-482D-AE4D-5A57117138D7}] => (Allow) D:\GRY\Mass Effect\MassEffectLauncher.exe
FirewallRules: [TCP Query User{6C8D4FE7-9558-49B3-850A-D69D30760966}D:\gry\dragon age\bin_ship\daorigins.exe] => (Block) D:\gry\dragon age\bin_ship\daorigins.exe
FirewallRules: [UDP Query User{72D79045-3D47-4B5B-B3E8-05218FF0974F}D:\gry\dragon age\bin_ship\daorigins.exe] => (Block) D:\gry\dragon age\bin_ship\daorigins.exe
FirewallRules: [TCP Query User{DB110153-8DBC-4D0A-A7E3-E651CD7E79DF}D:\gry\dawn of war 2\dow2.exe] => (Block) D:\gry\dawn of war 2\dow2.exe
FirewallRules: [UDP Query User{70EABF2D-AE39-4BE3-B2F7-61C8130E1337}D:\gry\dawn of war 2\dow2.exe] => (Block) D:\gry\dawn of war 2\dow2.exe
FirewallRules: [TCP Query User{A9AA978E-E15A-4916-8443-F65EC28D49FC}D:\gry\infinitecrisis\infinitecrisis.exe] => (Block) D:\gry\infinitecrisis\infinitecrisis.exe
FirewallRules: [UDP Query User{97A2A1DB-D94C-40AC-8495-2FD5FBCD6E26}D:\gry\infinitecrisis\infinitecrisis.exe] => (Block) D:\gry\infinitecrisis\infinitecrisis.exe
FirewallRules: [{2EF6A30F-73F2-4CD3-A454-C1804540CB5D}] => (Allow) D:\GRY\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{53B4A820-6F70-4756-8697-2B039B04B93E}] => (Allow) D:\GRY\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{245971D2-C9E5-4E34-91A4-947741C84F87}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{26A7E440-A986-4E80-BB91-DC51D2C4F7BF}C:\users\thormek\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\thormek\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [UDP Query User{F8CF8C36-C99C-4367-BDF6-2223995845D1}C:\users\thormek\appdata\local\id software\quakelive\quakelive.exe] => (Allow) C:\users\thormek\appdata\local\id software\quakelive\quakelive.exe
FirewallRules: [{8C958D7C-2934-448D-A0B1-4DED316F7DBA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{3544FA51-9743-4ED7-8470-5CC39DA74501}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{5052EF10-910C-427F-84F1-46ECAEC438F1}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{E6506692-6BF5-4CAE-BD1D-9F00EFD647FD}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B10E0836-5A83-465B-A137-D278F433F2DE}] => (Allow) D:\gry do instalki\Battlefield 3\bf3.exe
FirewallRules: [{8C4FD653-F042-4992-80DB-B5831735043F}] => (Allow) D:\gry do instalki\Battlefield 3\bf3.exe
FirewallRules: [{90F13872-8BEC-4E93-AF45-0C0B37773954}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{0A71F941-9E9D-4A9D-8645-6427866F0633}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{DAC55D38-3593-46ED-B599-37AEDCEB911B}] => (Allow) D:\GRY\Steam\SteamApps\common\Magic 2014\DotP_D14.exe
FirewallRules: [{B89C5AB8-4EB9-4714-A482-5C796573A397}] => (Allow) D:\GRY\Steam\SteamApps\common\Magic 2014\DotP_D14.exe
FirewallRules: [{FAA3CC81-1EF3-40A4-90EE-353EB72163ED}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoConverter\VideoConverter.exe
FirewallRules: [{4668A504-7F6C-4915-A95A-602525756EE0}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoConverter\VideoConverter.exe
FirewallRules: [{DA738C17-E729-4A71-9B45-A5A0D6DC17A5}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoConverter\Updater.exe
FirewallRules: [{2D76E71E-5E46-4709-A50A-6E7AA55C9DD3}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoConverter\Updater.exe
FirewallRules: [{265FBC51-8A97-4C96-BCD1-9823DAA5A21B}] => (Allow) D:\GRY\Steam\bin\steamwebhelper.exe
FirewallRules: [{1FF86483-D680-4FB0-8296-9DA771CAE60F}] => (Allow) D:\GRY\Steam\bin\steamwebhelper.exe
FirewallRules: [{792EF119-0EFE-4BAF-92F1-2452FF673140}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
FirewallRules: [{228DB707-27A7-452F-AE39-7A43D7C8AFAB}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
FirewallRules: [{AE5C87ED-3E80-4278-855A-43588AA4FE5B}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgdiagex.exe
FirewallRules: [{44999F2A-1E1C-4DC0-92AF-6E23DB60EE22}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgdiagex.exe
FirewallRules: [{608DDD57-6122-4303-A84A-29D5FEF3AF0F}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
FirewallRules: [{8AE9C48A-44B2-4148-AE80-46D3E3CBE78F}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
FirewallRules: [TCP Query User{9813ECA3-0DEE-4635-8D41-245BAF48275F}D:\gry\halo spartan assault\data\halospartanassault.exe] => (Block) D:\gry\halo spartan assault\data\halospartanassault.exe
FirewallRules: [UDP Query User{AFD8945A-BE63-4021-945C-385309096654}D:\gry\halo spartan assault\data\halospartanassault.exe] => (Block) D:\gry\halo spartan assault\data\halospartanassault.exe
FirewallRules: [TCP Query User{FEFFF5F3-A132-4CD4-901A-0D23AA3833AF}C:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) C:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [UDP Query User{EF595D47-6DC9-43EA-B632-A4B09E43FCE0}C:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) C:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [{224EE77C-9F17-42B0-84FF-048D62E9F0D6}] => (Block) %ProgramFiles% (x86)\Nero\Nero 2014\Nero Burning ROM\nero.exe
FirewallRules: [{50A96085-05C1-45E9-8B3A-7A990BB4C856}] => (Block) %ProgramFiles% (x86)\Nero\Nero 2014\Nero Burning ROM\nero.exe
FirewallRules: [{8DAA3487-C82D-4119-A339-FC105CF202E7}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{562B7156-B74E-403C-ADF1-44007E293150}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{DBBF5D44-A29C-435A-81D9-E3215645484B}] => (Allow) D:\GRY\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{B880FE1A-C2F6-4F80-B8D2-233CE93EEC8C}] => (Allow) D:\GRY\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{F851F918-6986-4238-B28F-61D85AD22B2C}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{E488C938-4AE2-49BA-9F65-49E116F78770}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{E4B5BF3B-2DE4-42AC-A08A-BE7372B2FF2A}] => (Allow) D:\GRY\Hearthstone\Hearthstone.exe
FirewallRules: [{3F8E3600-6A97-4848-AE63-BB060162ED13}] => (Allow) D:\GRY\Hearthstone\Hearthstone.exe
FirewallRules: [{0084077B-1C45-482E-9F94-D704FF5BC5C5}] => (Allow) C:\Program Files\HP\HP Deskjet 2510 series\Bin\USBSetup.exe
FirewallRules: [{5B84FF2C-94F5-4BBE-B897-C8CC2082FDCD}] => (Allow) D:\GRY\Steam\SteamApps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{64A2B266-0F39-4F50-921A-80FCB239C6E1}] => (Allow) D:\GRY\Steam\SteamApps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{614AF4FF-DDE7-4522-9B06-196D49389A66}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{68343EE2-E626-4DB9-86DF-1CAC170C03F9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{86687ABC-C817-477E-BBDF-EC5A553CB5A7}] => (Allow) D:\GRY\Grey Goo\ClientLauncherG.cdx
FirewallRules: [{C097D016-89E1-4E7C-94D6-675AFC1F51D8}] => (Allow) D:\GRY\Grey Goo\ClientLauncherG.cdx
FirewallRules: [{9C933C0A-0ABA-415A-934F-13BBFC58A81B}] => (Allow) D:\GRY\Grey Goo\GooG.cdx
FirewallRules: [{C3815300-3381-4655-8C38-15786B69DE35}] => (Allow) D:\GRY\Grey Goo\GooG.cdx
FirewallRules: [{5887CD8F-BC8E-4EAC-A5E2-7C437B0018BB}] => (Allow) D:\GRY\Grey Goo\InstanceServerG.cdx
FirewallRules: [{9DDE8C30-6AD5-4D58-A7E3-A8D6C7D9FE03}] => (Allow) D:\GRY\Grey Goo\InstanceServerG.cdx
FirewallRules: [{1DB620DC-2716-4309-AF33-1C52E6BB57B1}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{4D66D6F3-18DA-4BB6-A7C4-F908A59712BB}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{1E5F4D1E-2D25-4FA2-AF3C-93E0AE4B82B2}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{227842FF-AD0B-43FA-8F3D-D69C883A447A}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{1DCD39CE-859A-4A58-B8F3-5C38020961C9}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{5434A2AF-A318-4C02-B393-0D957D5C717F}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{C40B1C2F-958D-4D13-98F7-810E4D7B0916}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{5A0DC3E4-E50D-4C49-B26B-B1F736D763DC}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{D156BAAD-FE3F-4050-896A-717ACA70C5C4}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{A7D00D47-6FEC-465C-B107-6397FC9A06DA}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{249CD97B-2EA2-4043-8AB7-B54233A44A4C}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{0B84EFBF-F351-4E23-A9F4-E9F87D08E353}] => (Allow) D:\GRY\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{A6319FE1-365C-49BE-B877-F6C5EED4D76D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{A5C05C11-E291-42B1-B65E-12084B326F26}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{2C4468D7-D584-4BBB-8D8D-1AD16A56BD02}] => (Allow) D:\GRY\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{D3416D44-BE52-4FAE-9E3E-D0A8BBAFB63D}] => (Allow) D:\GRY\Steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{1AE4892E-469F-4BF3-85DB-3D0CC3D4E732}] => (Allow) D:\GRY\Steam\SteamApps\common\TERA\TERA-Launcher.exe
FirewallRules: [{647004D1-5816-4348-AE3A-7AA2499BD812}] => (Allow) D:\GRY\Steam\SteamApps\common\TERA\TERA-Launcher.exe
FirewallRules: [{01D2B912-E30E-485B-8714-3D02418D3D63}] => (Allow) LPort=50248
FirewallRules: [{DF998EEC-DFD5-4037-B938-2EB8D5593849}] => (Allow) D:\GRY\Star Wars The Force Unleashed Ultimate Sith Edition\SWTFU Launcher.exe
FirewallRules: [{E0844221-703B-4B7A-82BB-31A2313EA3FA}] => (Allow) D:\GRY\Star Wars The Force Unleashed Ultimate Sith Edition\SWTFU Launcher.exe
FirewallRules: [{05B43BAF-574A-4DAD-8432-7AE2CC0461ED}] => (Allow) D:\GRY\Star Wars The Force Unleashed 2\SWTFU2.exe
FirewallRules: [{F49BBBD0-4396-412F-AE93-4A96EA9BE79F}] => (Allow) D:\GRY\Star Wars The Force Unleashed 2\SWTFU2.exe
FirewallRules: [{96614BED-CFD7-4C28-8EF6-3AFF27FD7416}] => (Allow) D:\GRY\Star Wars The Force Unleashed 2\Language Changer.exe
FirewallRules: [{99F253A8-1F36-4BA8-85BE-6ACB628A240B}] => (Allow) D:\GRY\Star Wars The Force Unleashed 2\Language Changer.exe
FirewallRules: [{F44BCB34-77B0-409F-BEC7-EC169BCC2150}] => (Allow) D:\GRY\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{47A1FD42-D3C7-4F7F-8D26-177C798E82A7}] => (Allow) D:\GRY\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BEDBD51E-536B-4E9E-B374-18B9B3556687}] => (Allow) D:\GRY\Steam\SteamApps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{6415C72C-6608-4965-890F-5DCA3C0C7F3D}] => (Allow) D:\GRY\Steam\SteamApps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{E72AC25C-4098-4CFC-B0CD-E440390C9530}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{597B6318-1113-4A40-814C-B8328CC8453B}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{873C77FF-69E6-4FE5-8CAB-1584DDD86255}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{44753CE8-8794-41F7-B746-958B3DAFBD5C}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
==================== Wadliwe urządzenia w Menedżerze urządzeń =============
Name: AODDriver4.2.0
Description: AODDriver4.2.0
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AODDriver4.2.0
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Capsax64Drv0 NDIS Protocol Driver
Description: Capsax64Drv0 NDIS Protocol Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Capsax64Drv0
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: CSN5PDTS82x64 NDIS Protocol Driver
Description: CSN5PDTS82x64 NDIS Protocol Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CSN5PDTS82x64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Błędy w Dzienniku zdarzeń: =========================
Dziennik Aplikacja:
==================
Error: (10/19/2015 08:41:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: KillerNetManager.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x50612df1
Nazwa modułu powodującego błąd: QtCore4.dll, wersja: 4.7.3.0, sygnatura czasowa: 0x4dc88ae9
Kod wyjątku: 0xc000041d
Przesunięcie błędu: 0x00000000000e4f80
Identyfikator procesu powodującego błąd: 0xa20
Godzina uruchomienia aplikacji powodującej błąd: 0xKillerNetManager.exe0
Ścieżka aplikacji powodującej błąd: KillerNetManager.exe1
Ścieżka modułu powodującego błąd: KillerNetManager.exe2
Identyfikator raportu: KillerNetManager.exe3
Error: (10/19/2015 08:40:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: KillerNetManager.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x50612df1
Nazwa modułu powodującego błąd: QtCore4.dll, wersja: 4.7.3.0, sygnatura czasowa: 0x4dc88ae9
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x00000000000e4f80
Identyfikator procesu powodującego błąd: 0xa20
Godzina uruchomienia aplikacji powodującej błąd: 0xKillerNetManager.exe0
Ścieżka aplikacji powodującej błąd: KillerNetManager.exe1
Ścieżka modułu powodującego błąd: KillerNetManager.exe2
Identyfikator raportu: KillerNetManager.exe3
Error: (10/19/2015 08:34:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: plugin-container.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x561ef9f1
Nazwa modułu powodującego błąd: mozglue.dll, wersja: 0.0.0.0, sygnatura czasowa: 0x561ee53f
Kod wyjątku: 0x80000003
Przesunięcie błędu: 0x0000ec91
Identyfikator procesu powodującego błąd: 0x844
Godzina uruchomienia aplikacji powodującej błąd: 0xplugin-container.exe0
Ścieżka aplikacji powodującej błąd: plugin-container.exe1
Ścieżka modułu powodującego błąd: plugin-container.exe2
Identyfikator raportu: plugin-container.exe3
Error: (10/19/2015 08:34:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: plugin-container.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x561ef9f1
Nazwa modułu powodującego błąd: mozglue.dll, wersja: 0.0.0.0, sygnatura czasowa: 0x561ee53f
Kod wyjątku: 0x80000003
Przesunięcie błędu: 0x0000ec91
Identyfikator procesu powodującego błąd: 0x1004
Godzina uruchomienia aplikacji powodującej błąd: 0xplugin-container.exe0
Ścieżka aplikacji powodującej błąd: plugin-container.exe1
Ścieżka modułu powodującego błąd: plugin-container.exe2
Identyfikator raportu: plugin-container.exe3
Error: (10/19/2015 08:34:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: plugin-container.exe, wersja: 41.0.2.5765, sygnatura czasowa: 0x561ef9f1
Nazwa modułu powodującego błąd: mozglue.dll, wersja: 41.0.2.5765, sygnatura czasowa: 0x561ee53f
Kod wyjątku: 0x80000003
Przesunięcie błędu: 0x0000ec91
Identyfikator procesu powodującego błąd: 0xbf0
Godzina uruchomienia aplikacji powodującej błąd: 0xplugin-container.exe0
Ścieżka aplikacji powodującej błąd: plugin-container.exe1
Ścieżka modułu powodującego błąd: plugin-container.exe2
Identyfikator raportu: plugin-container.exe3
Error: (10/19/2015 06:27:51 PM) (Source: Winlogon) (EventID: 4004) (User: )
Description: Proces usługi logowania systemu Windows nie może zakończyć procesów obecnie zalogowanego użytkownika.
Error: (10/19/2015 06:27:39 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154
Error: (10/18/2015 01:36:03 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154
Error: (10/17/2015 04:19:23 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154
Error: (10/16/2015 07:03:24 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154
Dziennik System:
=============
Error: (10/19/2015 08:51:21 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
Capsax64Drv0
CSN5PDTS82
CSN5PDTS82x64
CsNdisLWF
Error: (10/19/2015 08:49:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi Nero BackItUp Scheduler 4.0 z powodu następującego błędu:
%%2
Error: (10/19/2015 08:49:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi AODDriver4.2.0 z powodu następującego błędu:
%%3
Error: (10/19/2015 08:40:50 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
Capsax64Drv0
CSN5PDTS82
CSN5PDTS82x64
CsNdisLWF
Error: (10/19/2015 08:39:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi Nero BackItUp Scheduler 4.0 z powodu następującego błędu:
%%2
Error: (10/19/2015 08:38:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi AODDriver4.2.0 z powodu następującego błędu:
%%3
Error: (10/19/2015 08:28:28 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
CSN5PDTS82
CsNdisLWF
Error: (10/19/2015 08:27:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi Nero BackItUp Scheduler 4.0 z powodu następującego błędu:
%%2
Error: (10/19/2015 08:27:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Nie można uruchomić usługi AODDriver4.2.0 z powodu następującego błędu:
%%3
Error: (10/19/2015 08:12:04 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego ta usługa może nie działać właściwie.
CodeIntegrity:
===================================
Date: 2015-10-19 20:08:27.329
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-10-19 20:08:27.251
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-09-29 13:50:16.292
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-09-29 13:50:16.291
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-09-29 13:50:16.289
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-09-29 13:50:16.262
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-09-29 13:50:16.261
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-09-29 13:50:16.258
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-09-18 17:17:33.451
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-09-18 17:17:12.001
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
==================== Statystyki pamięci ===========================
Procesor: AMD A10-5750M APU with Radeon(tm) HD Graphics
Procent pamięci w użyciu: 47%
Całkowita pamięć fizyczna: 7368.02 MB
Dostępna pamięć fizyczna: 3889.3 MB
Całkowita pamięć wirtualna: 14734.22 MB
Dostępna pamięć wirtualna: 10755.58 MB
==================== Dyski ================================
Drive c: () (Fixed) (Total:112.6 GB) (Free:56.07 GB) NTFS
Drive d: () (Fixed) (Total:291.99 GB) (Free:25.32 GB) NTFS
Drive e: () (Fixed) (Total:293.94 GB) (Free:35.87 GB) NTFS
==================== MBR & Tablica partycji ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 529BD171)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=112.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=292 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=293.9 GB) - (Type=07 NTFS)
==================== Koniec Addition.txt ============================
OTL
- Kod: Zaznacz wszystko
OTL Extras logfile created on: 2015-10-19 21:16:05 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Thormek\Downloads
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17207)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
7,20 Gb Total Physical Memory | 2,10 Gb Available Physical Memory | 29,23% Memory free
14,39 Gb Paging File | 9,13 Gb Available in Paging File | 63,46% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 112,60 Gb Total Space | 56,22 Gb Free Space | 49,92% Space Free | Partition Type: NTFS
Drive D: | 291,99 Gb Total Space | 25,32 Gb Free Space | 8,67% Space Free | Partition Type: NTFS
Drive E: | 293,94 Gb Total Space | 35,87 Gb Free Space | 12,20% Space Free | Partition Type: NTFS
Computer Name: THORMEK-GX70 | User Name: Thormek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
[color=#E56717]========== Security Center Settings ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[color=#E56717]========== System Restore Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[color=#E56717]========== Firewall Settings ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01D2B912-E30E-485B-8714-3D02418D3D63}" = lport=50248 | protocol=6 | dir=in | name=autodesk content service |
"{0B84EFBF-F351-4E23-A9F4-E9F87D08E353}" = rport=80 | protocol=6 | dir=out | app=d:\gry\steam\steamapps\common\warframe\tools\remotecrashsender.exe |
"{1DCD39CE-859A-4A58-B8F3-5C38020961C9}" = rport=80 | protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\warframe\tools\launcher.exe |
"{1E5F4D1E-2D25-4FA2-AF3C-93E0AE4B82B2}" = rport=80 | protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\warframe\warframe.exe |
"{227842FF-AD0B-43FA-8F3D-D69C883A447A}" = rport=80 | protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\warframe\warframe.x64.exe |
"{249CD97B-2EA2-4043-8AB7-B54233A44A4C}" = rport=80 | protocol=6 | dir=out | app=d:\gry\steam\steamapps\common\warframe\tools\launcher.exe |
"{32D0BFDF-91AD-426B-9063-191D4E357854}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5434A2AF-A318-4C02-B393-0D957D5C717F}" = rport=80 | protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\warframe\tools\remotecrashsender.exe |
"{7FDD18EE-CECE-40FC-A043-581DE3CDA167}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{8241128F-5E67-40CA-87BA-AA16583B9E91}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A7D00D47-6FEC-465C-B107-6397FC9A06DA}" = rport=80 | protocol=6 | dir=out | app=d:\gry\steam\steamapps\common\warframe\warframe.x64.exe |
"{B5C17B97-DCB2-4B98-812C-A7CA57345C12}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{C559DF11-D91C-4E52-B89A-EC7660DB232D}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{C78B29D5-B6AB-417F-9DE3-40179632834C}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office15\outlook.exe |
"{D156BAAD-FE3F-4050-896A-717ACA70C5C4}" = rport=80 | protocol=6 | dir=out | app=d:\gry\steam\steamapps\common\warframe\warframe.exe |
"{EF6ABD1F-1AAB-4F8D-9360-84F2530A5C9D}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{F41CCEEB-84F6-47F7-9186-BFEC3D5E9787}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F926B758-3775-4CF4-B6DE-60D53A1953F9}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0084077B-1C45-482E-9F94-D704FF5BC5C5}" = dir=in | app=c:\program files\hp\hp deskjet 2510 series\bin\usbsetup.exe |
"{027996BF-C2B7-4570-9A35-B9CF4B045592}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\path of exile\pathofexilesteam.exe |
"{05B43BAF-574A-4DAD-8432-7AE2CC0461ED}" = protocol=6 | dir=in | app=d:\gry\star wars the force unleashed 2\swtfu2.exe |
"{069BDF09-9586-482D-AE4D-5A57117138D7}" = protocol=17 | dir=in | app=d:\gry\mass effect\masseffectlauncher.exe |
"{0A71F941-9E9D-4A9D-8645-6427866F0633}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgmfapx.exe |
"{1AE4892E-469F-4BF3-85DB-3D0CC3D4E732}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\tera\tera-launcher.exe |
"{1DB620DC-2716-4309-AF33-1C52E6BB57B1}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\warframe\warframe.exe |
"{1FF86483-D680-4FB0-8296-9DA771CAE60F}" = protocol=17 | dir=in | app=d:\gry\steam\bin\steamwebhelper.exe |
"{224EE77C-9F17-42B0-84FF-048D62E9F0D6}" = dir=out | app=%programfiles% (x86)\nero\nero 2014\nero burning rom\nero.exe |
"{22739FE3-87E6-42B1-B1B9-C02D18544324}" = protocol=6 | dir=in | app=d:\gry\mass effect\masseffectlauncher.exe |
"{228DB707-27A7-452F-AE39-7A43D7C8AFAB}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgnsa.exe |
"{245971D2-C9E5-4E34-91A4-947741C84F87}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{265FBC51-8A97-4C96-BCD1-9823DAA5A21B}" = protocol=6 | dir=in | app=d:\gry\steam\bin\steamwebhelper.exe |
"{2C4468D7-D584-4BBB-8D8D-1AD16A56BD02}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{2D76E71E-5E46-4709-A50A-6E7AA55C9DD3}" = protocol=17 | dir=in | app=c:\program files (x86)\flashintegro\videoconverter\updater.exe |
"{2EF6A30F-73F2-4CD3-A454-C1804540CB5D}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\dota 2 beta\dota.exe |
"{3544FA51-9743-4ED7-8470-5CC39DA74501}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{3F8E3600-6A97-4848-AE63-BB060162ED13}" = protocol=17 | dir=in | app=d:\gry\hearthstone\hearthstone.exe |
"{3FD9D835-C3C3-4984-965C-BFAE1446783E}" = protocol=17 | dir=in | app=d:\gry\mass effect\binaries\masseffect.exe |
"{42E72FFC-091D-4E99-BFF8-5DD3C736BE0E}" = protocol=6 | dir=in | app=d:\gry\steam\steam.exe |
"{44753CE8-8794-41F7-B746-958B3DAFBD5C}" = protocol=17 | dir=in | app=c:\program files (x86)\raptr\raptr_im.exe |
"{44999F2A-1E1C-4DC0-92AF-6E23DB60EE22}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgdiagex.exe |
"{4668A504-7F6C-4915-A95A-602525756EE0}" = protocol=17 | dir=in | app=c:\program files (x86)\flashintegro\videoconverter\videoconverter.exe |
"{47A1FD42-D3C7-4F7F-8D26-177C798E82A7}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe |
"{4D66D6F3-18DA-4BB6-A7C4-F908A59712BB}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\warframe\warframe.x64.exe |
"{5052EF10-910C-427F-84F1-46ECAEC438F1}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{50A96085-05C1-45E9-8B3A-7A990BB4C856}" = dir=in | app=%programfiles% (x86)\nero\nero 2014\nero burning rom\nero.exe |
"{53B4A820-6F70-4756-8697-2B039B04B93E}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\dota 2 beta\dota.exe |
"{562B7156-B74E-403C-ADF1-44007E293150}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2015\avgmfapx.exe |
"{5887CD8F-BC8E-4EAC-A5E2-7C437B0018BB}" = protocol=6 | dir=in | app=d:\gry\grey goo\instanceserverg.cdx |
"{597B6318-1113-4A40-814C-B8328CC8453B}" = protocol=17 | dir=in | app=c:\program files (x86)\raptr\raptr.exe |
"{5A0DC3E4-E50D-4C49-B26B-B1F736D763DC}" = protocol=17 | dir=out | app=d:\gry\steam\steamapps\common\warframe\warframe.x64.exe |
"{5B635781-9C17-4449-AEC8-F81AD51522F0}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\might & magic - duel of champions\game.exe |
"{5B84FF2C-94F5-4BBE-B897-C8CC2082FDCD}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\xcom-enemy-unknown\binaries\win32\xcomgame.exe |
"{5B87B2E6-D74F-41A2-93C2-30435BA07870}" = protocol=17 | dir=in | app=c:\users\thormek\appdata\roaming\utorrent\utorrent.exe |
"{608DDD57-6122-4303-A84A-29D5FEF3AF0F}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgemca.exe |
"{614AF4FF-DDE7-4522-9B06-196D49389A66}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{6415C72C-6608-4965-890F-5DCA3C0C7F3D}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\dungeon defenders 2\dundeflauncher.exe |
"{647004D1-5816-4348-AE3A-7AA2499BD812}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\tera\tera-launcher.exe |
"{64A2B266-0F39-4F50-921A-80FCB239C6E1}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\xcom-enemy-unknown\binaries\win32\xcomgame.exe |
"{64F7C588-0460-4E30-9342-5820451DB825}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{68343EE2-E626-4DB9-86DF-1CAC170C03F9}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{771D8FC6-EE28-434A-921F-C763C9084C30}" = protocol=6 | dir=in | app=d:\gry\mass effect\binaries\masseffect.exe |
"{792EF119-0EFE-4BAF-92F1-2452FF673140}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgnsa.exe |
"{7DDE60F5-0D03-424B-BE9F-9DFEB9ED1BEA}" = protocol=6 | dir=in | app=c:\users\thormek\downloads\utorrent.exe |
"{83E87648-CFCE-476F-B0B6-FBB839F745E8}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\might & magic - duel of champions\game.exe |
"{86687ABC-C817-477E-BBDF-EC5A553CB5A7}" = protocol=6 | dir=in | app=d:\gry\grey goo\clientlauncherg.cdx |
"{873C77FF-69E6-4FE5-8CAB-1584DDD86255}" = protocol=6 | dir=in | app=c:\program files (x86)\raptr\raptr_im.exe |
"{8AE9C48A-44B2-4148-AE80-46D3E3CBE78F}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgemca.exe |
"{8C4FD653-F042-4992-80DB-B5831735043F}" = protocol=17 | dir=in | app=d:\gry do instalki\battlefield 3\bf3.exe |
"{8C958D7C-2934-448D-A0B1-4DED316F7DBA}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{8DAA3487-C82D-4119-A339-FC105CF202E7}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2015\avgmfapx.exe |
"{90F13872-8BEC-4E93-AF45-0C0B37773954}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgmfapx.exe |
"{93B789D2-8261-427F-B236-6A4596AB4395}" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"{96614BED-CFD7-4C28-8EF6-3AFF27FD7416}" = protocol=6 | dir=in | app=d:\gry\star wars the force unleashed 2\language changer.exe |
"{99F253A8-1F36-4BA8-85BE-6ACB628A240B}" = protocol=17 | dir=in | app=d:\gry\star wars the force unleashed 2\language changer.exe |
"{9C933C0A-0ABA-415A-934F-13BBFC58A81B}" = protocol=6 | dir=in | app=d:\gry\grey goo\goog.cdx |
"{9DDE8C30-6AD5-4D58-A7E3-A8D6C7D9FE03}" = protocol=17 | dir=in | app=d:\gry\grey goo\instanceserverg.cdx |
"{A5C05C11-E291-42B1-B65E-12084B326F26}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3715\agent.exe |
"{A6319FE1-365C-49BE-B877-F6C5EED4D76D}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3715\agent.exe |
"{A97B3300-3CED-4DC9-8928-2B3C5221C4F6}" = protocol=6 | dir=in | app=c:\users\thormek\appdata\roaming\utorrent\utorrent.exe |
"{AE5C87ED-3E80-4278-855A-43588AA4FE5B}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgdiagex.exe |
"{B10E0836-5A83-465B-A137-D278F433F2DE}" = protocol=6 | dir=in | app=d:\gry do instalki\battlefield 3\bf3.exe |
"{B3DF08F2-3793-4149-85EA-35B1CB25139E}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\path of exile\pathofexilesteam.exe |
"{B880FE1A-C2F6-4F80-B8D2-233CE93EEC8C}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{B89C5AB8-4EB9-4714-A482-5C796573A397}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\magic 2014\dotp_d14.exe |
"{B9F6053D-38EC-44D8-A068-C827498E6AE9}" = protocol=17 | dir=in | app=c:\users\thormek\downloads\utorrent.exe |
"{BEDBD51E-536B-4E9E-B374-18B9B3556687}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\dungeon defenders 2\dundeflauncher.exe |
"{C097D016-89E1-4E7C-94D6-675AFC1F51D8}" = protocol=17 | dir=in | app=d:\gry\grey goo\clientlauncherg.cdx |
"{C3815300-3381-4655-8C38-15786B69DE35}" = protocol=17 | dir=in | app=d:\gry\grey goo\goog.cdx |
"{C40B1C2F-958D-4D13-98F7-810E4D7B0916}" = protocol=17 | dir=out | app=d:\gry\steam\steamapps\common\warframe\warframe.exe |
"{C6FE9B8E-8AFF-4200-A22E-00E8CA89AB88}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{D3416D44-BE52-4FAE-9E3E-D0A8BBAFB63D}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{D92A9F0D-9551-4319-B103-0786B8DB81BA}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{DA738C17-E729-4A71-9B45-A5A0D6DC17A5}" = protocol=6 | dir=in | app=c:\program files (x86)\flashintegro\videoconverter\updater.exe |
"{DAC55D38-3593-46ED-B599-37AEDCEB911B}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\magic 2014\dotp_d14.exe |
"{DBBF5D44-A29C-435A-81D9-E3215645484B}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{DF998EEC-DFD5-4037-B938-2EB8D5593849}" = protocol=6 | dir=in | app=d:\gry\star wars the force unleashed ultimate sith edition\swtfu launcher.exe |
"{E0844221-703B-4B7A-82BB-31A2313EA3FA}" = protocol=17 | dir=in | app=d:\gry\star wars the force unleashed ultimate sith edition\swtfu launcher.exe |
"{E488C938-4AE2-49BA-9F65-49E116F78770}" = protocol=17 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{E4B5BF3B-2DE4-42AC-A08A-BE7372B2FF2A}" = protocol=6 | dir=in | app=d:\gry\hearthstone\hearthstone.exe |
"{E6506692-6BF5-4CAE-BD1D-9F00EFD647FD}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{E72AC25C-4098-4CFC-B0CD-E440390C9530}" = protocol=6 | dir=in | app=c:\program files (x86)\raptr\raptr.exe |
"{EA0F0382-3800-493A-A6A7-5BAEE49606E2}" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"{F3B11E29-8532-4250-8545-3DAE574B31C0}" = protocol=17 | dir=in | app=d:\gry\steam\steam.exe |
"{F44BCB34-77B0-409F-BEC7-EC169BCC2150}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe |
"{F49BBBD0-4396-412F-AE93-4A96EA9BE79F}" = protocol=17 | dir=in | app=d:\gry\star wars the force unleashed 2\swtfu2.exe |
"{F851F918-6986-4238-B28F-61D85AD22B2C}" = protocol=6 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{FAA3CC81-1EF3-40A4-90EE-353EB72163ED}" = protocol=6 | dir=in | app=c:\program files (x86)\flashintegro\videoconverter\videoconverter.exe |
"TCP Query User{2392B771-EBFF-4508-A538-F267E6234708}D:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe" = protocol=6 | dir=in | app=d:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe |
"TCP Query User{26A7E440-A986-4E80-BB91-DC51D2C4F7BF}C:\users\thormek\appdata\local\id software\quakelive\quakelive.exe" = protocol=6 | dir=in | app=c:\users\thormek\appdata\local\id software\quakelive\quakelive.exe |
"TCP Query User{6C8D4FE7-9558-49B3-850A-D69D30760966}D:\gry\dragon age\bin_ship\daorigins.exe" = protocol=6 | dir=in | app=d:\gry\dragon age\bin_ship\daorigins.exe |
"TCP Query User{9813ECA3-0DEE-4635-8D41-245BAF48275F}D:\gry\halo spartan assault\data\halospartanassault.exe" = protocol=6 | dir=in | app=d:\gry\halo spartan assault\data\halospartanassault.exe |
"TCP Query User{9F85A8BA-3BDC-4E30-A784-DBC9AE49B247}C:\program files (x86)\tera\tera-launcher.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"TCP Query User{A9AA978E-E15A-4916-8443-F65EC28D49FC}D:\gry\infinitecrisis\infinitecrisis.exe" = protocol=6 | dir=in | app=d:\gry\infinitecrisis\infinitecrisis.exe |
"TCP Query User{D01BE1CE-BE5B-4D00-9A24-1599D7786120}D:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe" = protocol=6 | dir=in | app=d:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe |
"TCP Query User{DB110153-8DBC-4D0A-A7E3-E651CD7E79DF}D:\gry\dawn of war 2\dow2.exe" = protocol=6 | dir=in | app=d:\gry\dawn of war 2\dow2.exe |
"TCP Query User{FEFFF5F3-A132-4CD4-901A-0D23AA3833AF}C:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe" = protocol=6 | dir=in | app=c:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe |
"UDP Query User{70EABF2D-AE39-4BE3-B2F7-61C8130E1337}D:\gry\dawn of war 2\dow2.exe" = protocol=17 | dir=in | app=d:\gry\dawn of war 2\dow2.exe |
"UDP Query User{72D79045-3D47-4B5B-B3E8-05218FF0974F}D:\gry\dragon age\bin_ship\daorigins.exe" = protocol=17 | dir=in | app=d:\gry\dragon age\bin_ship\daorigins.exe |
"UDP Query User{97A2A1DB-D94C-40AC-8495-2FD5FBCD6E26}D:\gry\infinitecrisis\infinitecrisis.exe" = protocol=17 | dir=in | app=d:\gry\infinitecrisis\infinitecrisis.exe |
"UDP Query User{9B7BCA51-2A58-4119-BDAE-A23596A0ECB9}D:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe" = protocol=17 | dir=in | app=d:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe |
"UDP Query User{AFD8945A-BE63-4021-945C-385309096654}D:\gry\halo spartan assault\data\halospartanassault.exe" = protocol=17 | dir=in | app=d:\gry\halo spartan assault\data\halospartanassault.exe |
"UDP Query User{E5016407-394E-4BC3-A946-6608F5531BE2}C:\program files (x86)\tera\tera-launcher.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"UDP Query User{EF595D47-6DC9-43EA-B632-A4B09E43FCE0}C:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe" = protocol=17 | dir=in | app=c:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe |
"UDP Query User{F8CF8C36-C99C-4367-BDF6-2223995845D1}C:\users\thormek\appdata\local\id software\quakelive\quakelive.exe" = protocol=17 | dir=in | app=c:\users\thormek\appdata\local\id software\quakelive\quakelive.exe |
"UDP Query User{FF93503B-D349-489D-AB2E-0DBFB8E608B8}D:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe" = protocol=17 | dir=in | app=d:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe |
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{137E399B-5ABA-3E56-8BF2-545F64A7C430}" = AMD Fuel
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{31ABA3F2-0000-1033-0102-111D43815377}" = Autodesk ReCap
"{31ABA3F2-0010-1033-0102-111D43815377}" = Autodesk ReCap Language Pack-English
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{426582A8-202F-D13C-8BD5-F00551BAFC93}" = AMD Wireless Display v3.0
"{482BACC1-9DB7-994D-5507-D5D606BE6516}" = AMD Media Foundation Decoders
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}" = Autodesk 360
"{5783F2D7-D001-0000-0102-0060B0CE6BBA}" = AutoCAD 2014 - English
"{5783F2D7-D001-0409-1102-0060B0CE6BBA}" = AutoCAD 2014 Language Pack - English
"{5783F2D7-D001-0409-2102-0060B0CE6BBA}" = AutoCAD 2014 - English
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8B6CFE66-6961-3E02-3C57-9BA146AFB935}" = AMD Wireless Display v3.0
"{8C775E70-A791-4DA8-BCC3-6AB7136F4484}" = Visual Studio 2012 x64 Redistributables
"{8DF1EF50-AEB6-902C-F68C-4683C45784E6}" = AMD Catalyst Install Manager
"{8E5DA9A6-7A9F-3A6F-BC5C-D6CBCA6A29C7}" = Microsoft .NET Framework 4 Extended PLK Language Pack
"{8F2415FA-72F2-F029-0450-4EB2FAE484C5}" = AMD Accelerated Video Transcoding
"{90150000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{90150000-0015-0415-1000-0000000FF1CE}" = Microsoft Access MUI (Polish) 2013
"{90150000-0016-0415-1000-0000000FF1CE}" = Microsoft Excel MUI (Polish) 2013
"{90150000-0018-0415-1000-0000000FF1CE}" = Microsoft PowerPoint MUI (Polish) 2013
"{90150000-0019-0415-1000-0000000FF1CE}" = Microsoft Publisher MUI (Polish) 2013
"{90150000-001A-0415-1000-0000000FF1CE}" = Microsoft Outlook MUI (Polish) 2013
"{90150000-001B-0415-1000-0000000FF1CE}" = Microsoft Word MUI (Polish) 2013
"{90150000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-0415-1000-0000000FF1CE}" = Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski
"{90150000-002C-0415-1000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2013
"{90150000-0044-0415-1000-0000000FF1CE}" = Microsoft InfoPath MUI (Polish) 2013
"{90150000-006E-0415-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2013
"{90150000-0090-0415-1000-0000000FF1CE}" = Microsoft DCF MUI (Polish) 2013
"{90150000-00A1-0415-1000-0000000FF1CE}" = Microsoft OneNote MUI (Polish) 2013
"{90150000-00BA-0415-1000-0000000FF1CE}" = Microsoft Groove MUI (Polish) 2013
"{90150000-00C1-0000-1000-0000000FF1CE}" = Microsoft Office 32-bit Components 2013
"{90150000-00C1-0415-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Polish) 2013
"{90150000-00E1-0415-1000-0000000FF1CE}" = Microsoft Office OSM MUI (Polish) 2013
"{90150000-00E2-0415-1000-0000000FF1CE}" = Microsoft Office OSM UX MUI (Polish) 2013
"{90150000-012B-0415-1000-0000000FF1CE}" = Microsoft Lync MUI (Polish) 2013
"{913923AB-3AAB-4870-8910-627C4CD82789}" = NetLimiter 3
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{94BFDEF9-D91D-4B5D-8A60-08514C7191AF}" = AMD Steady Video Plug-In
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{9B85E969-094A-35F5-6D5C-010FD2EDE5F9}" = ccc-utility64
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{A49402DD-2781-3782-B0CF-52BDA349E3F3}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{AE94ACBF-D190-794D-45FF-AD02B6E84A9D}" = AMD Wireless Display v3.0
"{BC58D937-B790-9257-5D4A-A63E1B1C3389}" = AMD Drag and Drop Transcoding
"{C270821D-2479-D0F4-1BD1-7BBAF6762A98}" = AMD Wireless Display v3.0
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{DF446558-ADF7-4884-9B2D-281979CCE71F}" = Qualcomm Atheros Killer Network Manager
"{E9EED4AE-682B-4501-9574-D09A21717599}_is1" = AMD Quick Stream
"{F0DD70C6-B53F-42B5-8A67-62863E6E5EEF}" = HP Deskjet 2510 series — podstawowe oprogramowanie urządzenia
"AutoCAD 2014 - English" = Autodesk AutoCAD 2014 - English
"Autodesk ReCap" = Autodesk ReCap
"E9763B7620315731AD7ED384D4FD29317397BC63" = Pakiet sterowników systemu Windows - Advanced Micro Devices (amdhub30) USB (02/26/2013 1.1.0.0145)
"Elantech" = ETDWare PS/2-X64 11.13.2.4_WHQL
"F730DBDBAB7F37FB4646DCF65EAA90B782CFD0AA" = Pakiet sterowników systemu Windows - Advanced Micro Devices (amdxhc) USB (02/26/2013 1.1.0.0145)
"KLiteCodecPack64_is1" = K-Lite Codec Pack 6.2.0 (64-bit)
"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended
"Office15.PROPLUS" = Microsoft Office Professional Plus 2013
"WinRAR archiver" = WinRAR 5.01 (64-bitowy)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}" = Cisco PEAP Module
"{0C2D7460-3633-F05A-4504-A4BAF0508E63}" = AMD Catalyst Control Center
"{11087D24-567D-7D88-69C6-D7A08B5F4C47}" = Catalyst Control Center - Branding
"{12E727B6-24CD-0CA2-E63F-815CE9F03BC1}" = CCC Help Spanish
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20E59B20-3E77-B07B-B854-2B03CE86FC64}" = CCC Help Greek
"{216C7F38-4BBC-4E9A-8392-C9FA21B54386}" = HP Deskjet 2510 series Setup Guide
"{226552DB-BCAF-5406-8283-5F500AFC0C16}" = CCC Help Norwegian
"{2432E589-6256-4513-B0BF-EFA8E325D5F0}" = Nero SharedVideoCodecs
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 6.21
"{26024DF7-8D9A-0047-3AA1-63AC45B68413}" = CCC Help Italian
"{31796434-736D-4601-6D86-D95696812FAF}" = CCC Help Hungarian
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{34D5220A-58D0-473C-90E4-15136C3FB0E3}" = AMD OverDrive
"{41727356-2969-83D0-9DAF-41DFB6CE6C82}" = CCC Help Japanese
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{47FA2C44-D148-4DBC-AF60-B91934AA4842}" = Adobe AIR
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{51BF3210-B825-4092-8E0D-66D689916E02}" = Autodesk Material Library Base Resolution Image Library 2014
"{53DB9A5D-87C7-5067-D8A2-F53FB3F621BB}" = CCC Help Polish
"{55055055-10AE-00BA-96F5-98DD6F3006AC}_is1" = Wolfenstein The New Order ver. 1.0.0.2
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5883C8CF-D9F6-CACD-01E9-8D4DE18B7B86}" = CCC Help Korean
"{5909A89E-C97F-407C-AE2B-47BDED86BF5D}" = Prerequisite installer
"{5A9F93EE-DF6F-AE8E-A43E-76B12F2BA707}" = CCC Help Russian
"{62F029AB-85F2-0000-866A-9FC0DD99DDBC}" = Autodesk Content Service
"{62F029AB-85F2-0001-866A-9FC0DD99DDBC}" = Autodesk Content Service Language Pack
"{644E9589-F73A-49A4-AC61-A953B9DE5669}" = SketchUp Import for AutoCAD 2014
"{644F9B19-A462-499C-BF4D-300ABC2A28B1}" = Autodesk Material Library 2014
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7382003B-637E-2598-F9D6-0B4C70EA358F}" = CCC Help Chinese Standard
"{77F2CBFF-0687-BBAD-6A44-C0034AFE71FA}" = CCC Help French
"{81BF6353-3C5B-4E6E-A566-7E162A00BF72}_is1" = Wtyczka e-Deklaracje
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}" = Kaspersky Internet Security
"{93ED5459-3A8E-67EB-C68F-47CD6AFE25A4}" = CCC Help Turkish
"{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DAABC60-A5EF-41FF-B2B9-17329590CD5}" = REALTEK Wireless LAN Driver
"{A0030B28-1F49-2734-BFD7-74666118637E}" = CCC Help Portuguese
"{A03D0AB9-E804-E8B1-2EC5-0E28DAEAC11A}" = Catalyst Control Center Localization All
"{A0CC276F-2890-DE82-1C93-BF827B3DCD2D}" = Catalyst Control Center Graphics Previews Common
"{ABC88553-8770-4B97-B43E-5A90647A5B63}" = Nero ControlCenter
"{AC76BA86-0804-1033-1959-001824157129}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1045-7B44-AB0000000001}" = Adobe Reader XI (11.0.13) - Polish
"{AF2D6CE8-FF11-72F6-DA20-DF02E68E211D}" = CCC Help Thai
"{AF312B06-5C5C-468E-89B3-BE6DE2645722}" = Cisco LEAP Module
"{B166374C-105E-445E-8E5D-A86CA5742645}" = Nero Burning Core
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B2F0BB2B-34ED-AEB8-CFD5-B4405D8DAD54}" = CCC Help Swedish
"{B791E0AB-87A9-41A4-8D98-D13C2E37D928}" = Nero Info
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{BD96BA19-5A46-E2F7-5652-E13BBA085317}" = CCC Help Finnish
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components
"{C070121A-C8C5-4D52-9A7D-D240631BD433}" = Autodesk App Manager
"{C2409A7D-665E-F6E9-CAE1-DFCF83DBF632}" = CCC Help Danish
"{C4A8B568-5F30-E41F-5F15-80E0902C204E}" = CCC Help Dutch
"{C9F54777-001E-41F6-83F8-B99A19EA5083}" = Nero Burning ROM 2014
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{CD95C0B1-80B7-27DD-DC79-5955A4F108BB}" = Catalyst Control Center InstallProxy
"{D08A5DFE-F0C2-74FC-DD56-A3B371E9344D}" = EA Shared Game Component: Activation
"{e0dee0be-0f9f-4e86-a996-163187d1a035}" = Nero 9 Essentials
"{E281AD0E-78A6-DE8A-9903-A449EE18FB17}" = CCC Help English
"{E8478C78-A2BE-A85B-4EDC-FB02B6AE1A3E}" = CCC Help German
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1CA8888-41BB-7DCE-D9A4-751AFC4F1353}" = CCC Help Czech
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA}" = Nero Burning ROM
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F732FEDA-7713-4428-934B-EF83B8DD65D0}" = Autodesk Featured Apps
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FF5E3D2F-586A-3CF2-CFAE-3B03862F5512}" = CCC Help Chinese Traditional
"1207666813_is1" = Pillars of Eternity
"Adobe AIR" = Adobe AIR
"Adobe Digital Editions 3.0" = Adobe Digital Editions 3.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 19 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 19 NPAPI
"Afterburner" = MSI Afterburner 3.0.0 Beta 18
"Autodesk Content Service" = Autodesk Content Service
"Battle.net" = Battle.net
"Battlelog Web Plugins" = Battlelog Web Plugins
"com.ea.Activation.919CACB699904AC5D41B606703500DD39747C02D.1" = EA Shared Game Component: Activation
"CWK" = CWK (Czasowy Wyłącznik Komputera)
"Dark Souls II_is1" = Dark Souls II, âĺđńč˙ 1.0.1.0
"EA Installer.-367263747" = EA Installer
"Fraps" = Fraps
"Free Media Converter_is1" = Free Media Converter 2.9
"Freemake Video Converter_is1" = Freemake Video Converter wersja 4.1.3
"Hearthstone" = Hearthstone
"Heroes of the Storm" = Heroes of the Storm
"InstallShield_{DF446558-ADF7-4884-9B2D-281979CCE71F}" = Qualcomm Atheros Killer Network Manager
"InstallWIX_{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}" = Kaspersky Internet Security
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 8.7.0
"Lords of the Fallen_is1" = Lords of the Fallen
"Open Codecs" = Xiph.Org Open Codecs 0.85.17777
"Origin" = Origin
"PunkBusterSvc" = PunkBuster Services
"Raptr" = Raptr
"Star Wars The Force Unleashed 2_is1" = Star Wars The Force Unleashed 2 wersja 1.0.0.0
"Star Wars The Force Unleashed Ultimate Sith Edition_is1" = Star Wars The Force Unleashed Ultimate Sith Edition wersja 1.1.0.0
"Steam" = Steam
"Steam App 200510" = XCOM: Enemy Unknown
"Steam App 230230" = Divinity: Original Sin
"Steam App 230410" = Warframe
"Steam App 236110" = Dungeon Defenders II
"Steam App 238960" = Path of Exile
"Steam App 256410" = Might & Magic: Duel of Champions
"Steam App 323370" = TERA
"Steam App 570" = Dota 2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TechPowerUp GPU-Z" = TechPowerUp GPU-Z
"Unigine Heaven DX11 Benchmark 2.5_is1" = Unigine Heaven DX11 Benchmark 2.5 version 2.5
"VSDC Free Video Converter_is1" = VSDC Free Video Converter version 2.4.5.276
"Winamp" = Winamp
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-2004879951-2572555970-1650795036-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2015-04-01 03:39:53 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-01 03:44:53 | Computer Name = Thormek-GX70 | Source = .NET Runtime | ID = 1022
Description =
Error - 2015-04-02 03:18:41 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-03 03:10:08 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-03 08:03:36 | Computer Name = Thormek-GX70 | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: LolClient.exe, wersja: 0.0.0.0,
sygnatura czasowa: 0x515663e0 Nazwa modułu powodującego błąd: Adobe AIR.dll, wersja:
3.7.0.1530, sygnatura czasowa: 0x5156646c Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x0006dd76 Identyfikator procesu powodującego błąd: 0x17bc Godzina uruchomienia aplikacji
powodującej błąd: 0x01d06e0406d348bc Ścieżka aplikacji powodującej błąd: D:\GRY\League
of Legends\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.138\deploy\LolClient.exe
Ścieżka
modułu powodującego błąd: D:\GRY\League of Legends\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.138\deploy\Adobe
AIR\Versions\1.0\Adobe AIR.dll Identyfikator raportu: 747526be-d9f9-11e4-97c2-6c71d9b51976
Error - 2015-04-04 06:42:07 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-04 06:47:29 | Computer Name = Thormek-GX70 | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: LolClient.exe, wersja: 0.0.0.0,
sygnatura czasowa: 0x515663e0 Nazwa modułu powodującego błąd: Adobe AIR.dll, wersja:
3.7.0.1530, sygnatura czasowa: 0x5156646c Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x0006dd76 Identyfikator procesu powodującego błąd: 0x9c8 Godzina uruchomienia aplikacji
powodującej błąd: 0x01d06ec401be9e82 Ścieżka aplikacji powodującej błąd: D:\GRY\League
of Legends\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.138\deploy\LolClient.exe
Ścieżka
modułu powodującego błąd: D:\GRY\League of Legends\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.138\deploy\Adobe
AIR\Versions\1.0\Adobe AIR.dll Identyfikator raportu: fcb018d5-dab7-11e4-8080-6c71d9b51976
Error - 2015-04-05 08:28:05 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-06 06:30:42 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-07 02:54:54 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
[ NetLimiter 3 Events ]
Error - 2015-06-11 01:17:06 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>1</err-code> <hresult code='8007041D'>Usługa
nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.</hresult>
<module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-06-11 01:17:07 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>5000</err-code> <module>NetLimiter.NLBaseClient.1147</module>
<desc>Failed
to connect to NetLimiter service.</desc> <param name='host-name' value=''/> </nl-error>
<nl-error>
<err-code>1</err-code>
<hresult
code='8007041D'>Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący
w oczekiwanym czasie.</hresult> <module>NetLimiter.NLBaseClient.235</module> </nl-error>
</nl-error-list>
Error - 2015-07-02 03:36:22 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>1</err-code> <hresult code='8007041D'>Usługa
nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.</hresult>
<module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-07-02 03:36:23 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>5000</err-code> <module>NetLimiter.NLBaseClient.1147</module>
<desc>Failed
to connect to NetLimiter service.</desc> <param name='host-name' value=''/> </nl-error>
<nl-error>
<err-code>1</err-code>
<hresult
code='8007041D'>Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący
w oczekiwanym czasie.</hresult> <module>NetLimiter.NLBaseClient.235</module> </nl-error>
</nl-error-list>
Error - 2015-07-02 03:45:26 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>1</err-code> <hresult code='80080005'>Wykonanie
serwera nie powiodło się.</hresult> <module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-07-02 03:45:26 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>5000</err-code> <module>NetLimiter.NLBaseClient.1147</module>
<desc>Failed
to connect to NetLimiter service.</desc> <param name='host-name' value=''/> </nl-error>
<nl-error>
<err-code>1</err-code>
<hresult
code='80080005'>Wykonanie serwera nie powiodło się.</hresult> <module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-07-03 06:37:04 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>1</err-code> <hresult code='8007041D'>Usługa
nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.</hresult>
<module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-07-03 06:37:05 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>5000</err-code> <module>NetLimiter.NLBaseClient.1147</module>
<desc>Failed
to connect to NetLimiter service.</desc> <param name='host-name' value=''/> </nl-error>
<nl-error>
<err-code>1</err-code>
<hresult
code='8007041D'>Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący
w oczekiwanym czasie.</hresult> <module>NetLimiter.NLBaseClient.235</module> </nl-error>
</nl-error-list>
Error - 2015-09-17 02:54:45 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>1</err-code> <hresult code='8007041D'>Usługa
nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.</hresult>
<module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-09-17 02:54:45 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>5000</err-code> <module>NetLimiter.NLBaseClient.1147</module>
<desc>Failed
to connect to NetLimiter service.</desc> <param name='host-name' value=''/> </nl-error>
<nl-error>
<err-code>1</err-code>
<hresult
code='8007041D'>Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący
w oczekiwanym czasie.</hresult> <module>NetLimiter.NLBaseClient.235</module> </nl-error>
</nl-error-list>
[ System Events ]
Error - 2015-10-19 14:12:04 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7030
Description = Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System
jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego
ta usługa może nie działać właściwie.
Error - 2015-10-19 14:27:27 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi AODDriver4.2.0 z powodu następującego błędu:
%%3
Error - 2015-10-19 14:27:38 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Nero BackItUp Scheduler 4.0 z powodu następującego
błędu: %%2
Error - 2015-10-19 14:28:28 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: CSN5PDTS82 CsNdisLWF
Error - 2015-10-19 14:38:46 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi AODDriver4.2.0 z powodu następującego błędu:
%%3
Error - 2015-10-19 14:39:35 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Nero BackItUp Scheduler 4.0 z powodu następującego
błędu: %%2
Error - 2015-10-19 14:40:50 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: Capsax64Drv0 CSN5PDTS82 CSN5PDTS82x64 CsNdisLWF
Error - 2015-10-19 14:49:43 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi AODDriver4.2.0 z powodu następującego błędu:
%%3
Error - 2015-10-19 14:49:55 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Nero BackItUp Scheduler 4.0 z powodu następującego
błędu: %%2
Error - 2015-10-19 14:51:21 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: Capsax64Drv0 CSN5PDTS82 CSN5PDTS82x64 CsNdisLWF
< End of report >
Extras
- Kod: Zaznacz wszystko
OTL Extras logfile created on: 2015-10-19 21:16:05 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Thormek\Downloads
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17207)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
7,20 Gb Total Physical Memory | 2,10 Gb Available Physical Memory | 29,23% Memory free
14,39 Gb Paging File | 9,13 Gb Available in Paging File | 63,46% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 112,60 Gb Total Space | 56,22 Gb Free Space | 49,92% Space Free | Partition Type: NTFS
Drive D: | 291,99 Gb Total Space | 25,32 Gb Free Space | 8,67% Space Free | Partition Type: NTFS
Drive E: | 293,94 Gb Total Space | 35,87 Gb Free Space | 12,20% Space Free | Partition Type: NTFS
Computer Name: THORMEK-GX70 | User Name: Thormek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
[color=#E56717]========== Security Center Settings ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[color=#E56717]========== System Restore Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
[color=#E56717]========== Firewall Settings ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[color=#E56717]========== Authorized Applications List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01D2B912-E30E-485B-8714-3D02418D3D63}" = lport=50248 | protocol=6 | dir=in | name=autodesk content service |
"{0B84EFBF-F351-4E23-A9F4-E9F87D08E353}" = rport=80 | protocol=6 | dir=out | app=d:\gry\steam\steamapps\common\warframe\tools\remotecrashsender.exe |
"{1DCD39CE-859A-4A58-B8F3-5C38020961C9}" = rport=80 | protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\warframe\tools\launcher.exe |
"{1E5F4D1E-2D25-4FA2-AF3C-93E0AE4B82B2}" = rport=80 | protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\warframe\warframe.exe |
"{227842FF-AD0B-43FA-8F3D-D69C883A447A}" = rport=80 | protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\warframe\warframe.x64.exe |
"{249CD97B-2EA2-4043-8AB7-B54233A44A4C}" = rport=80 | protocol=6 | dir=out | app=d:\gry\steam\steamapps\common\warframe\tools\launcher.exe |
"{32D0BFDF-91AD-426B-9063-191D4E357854}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5434A2AF-A318-4C02-B393-0D957D5C717F}" = rport=80 | protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\warframe\tools\remotecrashsender.exe |
"{7FDD18EE-CECE-40FC-A043-581DE3CDA167}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{8241128F-5E67-40CA-87BA-AA16583B9E91}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A7D00D47-6FEC-465C-B107-6397FC9A06DA}" = rport=80 | protocol=6 | dir=out | app=d:\gry\steam\steamapps\common\warframe\warframe.x64.exe |
"{B5C17B97-DCB2-4B98-812C-A7CA57345C12}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{C559DF11-D91C-4E52-B89A-EC7660DB232D}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{C78B29D5-B6AB-417F-9DE3-40179632834C}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office15\outlook.exe |
"{D156BAAD-FE3F-4050-896A-717ACA70C5C4}" = rport=80 | protocol=6 | dir=out | app=d:\gry\steam\steamapps\common\warframe\warframe.exe |
"{EF6ABD1F-1AAB-4F8D-9360-84F2530A5C9D}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{F41CCEEB-84F6-47F7-9186-BFEC3D5E9787}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F926B758-3775-4CF4-B6DE-60D53A1953F9}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0084077B-1C45-482E-9F94-D704FF5BC5C5}" = dir=in | app=c:\program files\hp\hp deskjet 2510 series\bin\usbsetup.exe |
"{027996BF-C2B7-4570-9A35-B9CF4B045592}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\path of exile\pathofexilesteam.exe |
"{05B43BAF-574A-4DAD-8432-7AE2CC0461ED}" = protocol=6 | dir=in | app=d:\gry\star wars the force unleashed 2\swtfu2.exe |
"{069BDF09-9586-482D-AE4D-5A57117138D7}" = protocol=17 | dir=in | app=d:\gry\mass effect\masseffectlauncher.exe |
"{0A71F941-9E9D-4A9D-8645-6427866F0633}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgmfapx.exe |
"{1AE4892E-469F-4BF3-85DB-3D0CC3D4E732}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\tera\tera-launcher.exe |
"{1DB620DC-2716-4309-AF33-1C52E6BB57B1}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\warframe\warframe.exe |
"{1FF86483-D680-4FB0-8296-9DA771CAE60F}" = protocol=17 | dir=in | app=d:\gry\steam\bin\steamwebhelper.exe |
"{224EE77C-9F17-42B0-84FF-048D62E9F0D6}" = dir=out | app=%programfiles% (x86)\nero\nero 2014\nero burning rom\nero.exe |
"{22739FE3-87E6-42B1-B1B9-C02D18544324}" = protocol=6 | dir=in | app=d:\gry\mass effect\masseffectlauncher.exe |
"{228DB707-27A7-452F-AE39-7A43D7C8AFAB}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgnsa.exe |
"{245971D2-C9E5-4E34-91A4-947741C84F87}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{265FBC51-8A97-4C96-BCD1-9823DAA5A21B}" = protocol=6 | dir=in | app=d:\gry\steam\bin\steamwebhelper.exe |
"{2C4468D7-D584-4BBB-8D8D-1AD16A56BD02}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{2D76E71E-5E46-4709-A50A-6E7AA55C9DD3}" = protocol=17 | dir=in | app=c:\program files (x86)\flashintegro\videoconverter\updater.exe |
"{2EF6A30F-73F2-4CD3-A454-C1804540CB5D}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\dota 2 beta\dota.exe |
"{3544FA51-9743-4ED7-8470-5CC39DA74501}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{3F8E3600-6A97-4848-AE63-BB060162ED13}" = protocol=17 | dir=in | app=d:\gry\hearthstone\hearthstone.exe |
"{3FD9D835-C3C3-4984-965C-BFAE1446783E}" = protocol=17 | dir=in | app=d:\gry\mass effect\binaries\masseffect.exe |
"{42E72FFC-091D-4E99-BFF8-5DD3C736BE0E}" = protocol=6 | dir=in | app=d:\gry\steam\steam.exe |
"{44753CE8-8794-41F7-B746-958B3DAFBD5C}" = protocol=17 | dir=in | app=c:\program files (x86)\raptr\raptr_im.exe |
"{44999F2A-1E1C-4DC0-92AF-6E23DB60EE22}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgdiagex.exe |
"{4668A504-7F6C-4915-A95A-602525756EE0}" = protocol=17 | dir=in | app=c:\program files (x86)\flashintegro\videoconverter\videoconverter.exe |
"{47A1FD42-D3C7-4F7F-8D26-177C798E82A7}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe |
"{4D66D6F3-18DA-4BB6-A7C4-F908A59712BB}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\warframe\warframe.x64.exe |
"{5052EF10-910C-427F-84F1-46ECAEC438F1}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{50A96085-05C1-45E9-8B3A-7A990BB4C856}" = dir=in | app=%programfiles% (x86)\nero\nero 2014\nero burning rom\nero.exe |
"{53B4A820-6F70-4756-8697-2B039B04B93E}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\dota 2 beta\dota.exe |
"{562B7156-B74E-403C-ADF1-44007E293150}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2015\avgmfapx.exe |
"{5887CD8F-BC8E-4EAC-A5E2-7C437B0018BB}" = protocol=6 | dir=in | app=d:\gry\grey goo\instanceserverg.cdx |
"{597B6318-1113-4A40-814C-B8328CC8453B}" = protocol=17 | dir=in | app=c:\program files (x86)\raptr\raptr.exe |
"{5A0DC3E4-E50D-4C49-B26B-B1F736D763DC}" = protocol=17 | dir=out | app=d:\gry\steam\steamapps\common\warframe\warframe.x64.exe |
"{5B635781-9C17-4449-AEC8-F81AD51522F0}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\might & magic - duel of champions\game.exe |
"{5B84FF2C-94F5-4BBE-B897-C8CC2082FDCD}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\xcom-enemy-unknown\binaries\win32\xcomgame.exe |
"{5B87B2E6-D74F-41A2-93C2-30435BA07870}" = protocol=17 | dir=in | app=c:\users\thormek\appdata\roaming\utorrent\utorrent.exe |
"{608DDD57-6122-4303-A84A-29D5FEF3AF0F}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgemca.exe |
"{614AF4FF-DDE7-4522-9B06-196D49389A66}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{6415C72C-6608-4965-890F-5DCA3C0C7F3D}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\dungeon defenders 2\dundeflauncher.exe |
"{647004D1-5816-4348-AE3A-7AA2499BD812}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\tera\tera-launcher.exe |
"{64A2B266-0F39-4F50-921A-80FCB239C6E1}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\xcom-enemy-unknown\binaries\win32\xcomgame.exe |
"{64F7C588-0460-4E30-9342-5820451DB825}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{68343EE2-E626-4DB9-86DF-1CAC170C03F9}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe |
"{771D8FC6-EE28-434A-921F-C763C9084C30}" = protocol=6 | dir=in | app=d:\gry\mass effect\binaries\masseffect.exe |
"{792EF119-0EFE-4BAF-92F1-2452FF673140}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgnsa.exe |
"{7DDE60F5-0D03-424B-BE9F-9DFEB9ED1BEA}" = protocol=6 | dir=in | app=c:\users\thormek\downloads\utorrent.exe |
"{83E87648-CFCE-476F-B0B6-FBB839F745E8}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\might & magic - duel of champions\game.exe |
"{86687ABC-C817-477E-BBDF-EC5A553CB5A7}" = protocol=6 | dir=in | app=d:\gry\grey goo\clientlauncherg.cdx |
"{873C77FF-69E6-4FE5-8CAB-1584DDD86255}" = protocol=6 | dir=in | app=c:\program files (x86)\raptr\raptr_im.exe |
"{8AE9C48A-44B2-4148-AE80-46D3E3CBE78F}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgemca.exe |
"{8C4FD653-F042-4992-80DB-B5831735043F}" = protocol=17 | dir=in | app=d:\gry do instalki\battlefield 3\bf3.exe |
"{8C958D7C-2934-448D-A0B1-4DED316F7DBA}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{8DAA3487-C82D-4119-A339-FC105CF202E7}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2015\avgmfapx.exe |
"{90F13872-8BEC-4E93-AF45-0C0B37773954}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgmfapx.exe |
"{93B789D2-8261-427F-B236-6A4596AB4395}" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"{96614BED-CFD7-4C28-8EF6-3AFF27FD7416}" = protocol=6 | dir=in | app=d:\gry\star wars the force unleashed 2\language changer.exe |
"{99F253A8-1F36-4BA8-85BE-6ACB628A240B}" = protocol=17 | dir=in | app=d:\gry\star wars the force unleashed 2\language changer.exe |
"{9C933C0A-0ABA-415A-934F-13BBFC58A81B}" = protocol=6 | dir=in | app=d:\gry\grey goo\goog.cdx |
"{9DDE8C30-6AD5-4D58-A7E3-A8D6C7D9FE03}" = protocol=17 | dir=in | app=d:\gry\grey goo\instanceserverg.cdx |
"{A5C05C11-E291-42B1-B65E-12084B326F26}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3715\agent.exe |
"{A6319FE1-365C-49BE-B877-F6C5EED4D76D}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3715\agent.exe |
"{A97B3300-3CED-4DC9-8928-2B3C5221C4F6}" = protocol=6 | dir=in | app=c:\users\thormek\appdata\roaming\utorrent\utorrent.exe |
"{AE5C87ED-3E80-4278-855A-43588AA4FE5B}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgdiagex.exe |
"{B10E0836-5A83-465B-A137-D278F433F2DE}" = protocol=6 | dir=in | app=d:\gry do instalki\battlefield 3\bf3.exe |
"{B3DF08F2-3793-4149-85EA-35B1CB25139E}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\path of exile\pathofexilesteam.exe |
"{B880FE1A-C2F6-4F80-B8D2-233CE93EEC8C}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{B89C5AB8-4EB9-4714-A482-5C796573A397}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\magic 2014\dotp_d14.exe |
"{B9F6053D-38EC-44D8-A068-C827498E6AE9}" = protocol=17 | dir=in | app=c:\users\thormek\downloads\utorrent.exe |
"{BEDBD51E-536B-4E9E-B374-18B9B3556687}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\dungeon defenders 2\dundeflauncher.exe |
"{C097D016-89E1-4E7C-94D6-675AFC1F51D8}" = protocol=17 | dir=in | app=d:\gry\grey goo\clientlauncherg.cdx |
"{C3815300-3381-4655-8C38-15786B69DE35}" = protocol=17 | dir=in | app=d:\gry\grey goo\goog.cdx |
"{C40B1C2F-958D-4D13-98F7-810E4D7B0916}" = protocol=17 | dir=out | app=d:\gry\steam\steamapps\common\warframe\warframe.exe |
"{C6FE9B8E-8AFF-4200-A22E-00E8CA89AB88}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{D3416D44-BE52-4FAE-9E3E-D0A8BBAFB63D}" = protocol=17 | dir=in | app=d:\gry\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{D92A9F0D-9551-4319-B103-0786B8DB81BA}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{DA738C17-E729-4A71-9B45-A5A0D6DC17A5}" = protocol=6 | dir=in | app=c:\program files (x86)\flashintegro\videoconverter\updater.exe |
"{DAC55D38-3593-46ED-B599-37AEDCEB911B}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\magic 2014\dotp_d14.exe |
"{DBBF5D44-A29C-435A-81D9-E3215645484B}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\divinity - original sin\shipping\eocapp.exe |
"{DF998EEC-DFD5-4037-B938-2EB8D5593849}" = protocol=6 | dir=in | app=d:\gry\star wars the force unleashed ultimate sith edition\swtfu launcher.exe |
"{E0844221-703B-4B7A-82BB-31A2313EA3FA}" = protocol=17 | dir=in | app=d:\gry\star wars the force unleashed ultimate sith edition\swtfu launcher.exe |
"{E488C938-4AE2-49BA-9F65-49E116F78770}" = protocol=17 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{E4B5BF3B-2DE4-42AC-A08A-BE7372B2FF2A}" = protocol=6 | dir=in | app=d:\gry\hearthstone\hearthstone.exe |
"{E6506692-6BF5-4CAE-BD1D-9F00EFD647FD}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{E72AC25C-4098-4CFC-B0CD-E440390C9530}" = protocol=6 | dir=in | app=c:\program files (x86)\raptr\raptr.exe |
"{EA0F0382-3800-493A-A6A7-5BAEE49606E2}" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"{F3B11E29-8532-4250-8545-3DAE574B31C0}" = protocol=17 | dir=in | app=d:\gry\steam\steam.exe |
"{F44BCB34-77B0-409F-BEC7-EC169BCC2150}" = protocol=6 | dir=in | app=d:\gry\steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe |
"{F49BBBD0-4396-412F-AE93-4A96EA9BE79F}" = protocol=17 | dir=in | app=d:\gry\star wars the force unleashed 2\swtfu2.exe |
"{F851F918-6986-4238-B28F-61D85AD22B2C}" = protocol=6 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{FAA3CC81-1EF3-40A4-90EE-353EB72163ED}" = protocol=6 | dir=in | app=c:\program files (x86)\flashintegro\videoconverter\videoconverter.exe |
"TCP Query User{2392B771-EBFF-4508-A538-F267E6234708}D:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe" = protocol=6 | dir=in | app=d:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe |
"TCP Query User{26A7E440-A986-4E80-BB91-DC51D2C4F7BF}C:\users\thormek\appdata\local\id software\quakelive\quakelive.exe" = protocol=6 | dir=in | app=c:\users\thormek\appdata\local\id software\quakelive\quakelive.exe |
"TCP Query User{6C8D4FE7-9558-49B3-850A-D69D30760966}D:\gry\dragon age\bin_ship\daorigins.exe" = protocol=6 | dir=in | app=d:\gry\dragon age\bin_ship\daorigins.exe |
"TCP Query User{9813ECA3-0DEE-4635-8D41-245BAF48275F}D:\gry\halo spartan assault\data\halospartanassault.exe" = protocol=6 | dir=in | app=d:\gry\halo spartan assault\data\halospartanassault.exe |
"TCP Query User{9F85A8BA-3BDC-4E30-A784-DBC9AE49B247}C:\program files (x86)\tera\tera-launcher.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"TCP Query User{A9AA978E-E15A-4916-8443-F65EC28D49FC}D:\gry\infinitecrisis\infinitecrisis.exe" = protocol=6 | dir=in | app=d:\gry\infinitecrisis\infinitecrisis.exe |
"TCP Query User{D01BE1CE-BE5B-4D00-9A24-1599D7786120}D:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe" = protocol=6 | dir=in | app=d:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe |
"TCP Query User{DB110153-8DBC-4D0A-A7E3-E651CD7E79DF}D:\gry\dawn of war 2\dow2.exe" = protocol=6 | dir=in | app=d:\gry\dawn of war 2\dow2.exe |
"TCP Query User{FEFFF5F3-A132-4CD4-901A-0D23AA3833AF}C:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe" = protocol=6 | dir=in | app=c:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe |
"UDP Query User{70EABF2D-AE39-4BE3-B2F7-61C8130E1337}D:\gry\dawn of war 2\dow2.exe" = protocol=17 | dir=in | app=d:\gry\dawn of war 2\dow2.exe |
"UDP Query User{72D79045-3D47-4B5B-B3E8-05218FF0974F}D:\gry\dragon age\bin_ship\daorigins.exe" = protocol=17 | dir=in | app=d:\gry\dragon age\bin_ship\daorigins.exe |
"UDP Query User{97A2A1DB-D94C-40AC-8495-2FD5FBCD6E26}D:\gry\infinitecrisis\infinitecrisis.exe" = protocol=17 | dir=in | app=d:\gry\infinitecrisis\infinitecrisis.exe |
"UDP Query User{9B7BCA51-2A58-4119-BDAE-A23596A0ECB9}D:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe" = protocol=17 | dir=in | app=d:\gry\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe |
"UDP Query User{AFD8945A-BE63-4021-945C-385309096654}D:\gry\halo spartan assault\data\halospartanassault.exe" = protocol=17 | dir=in | app=d:\gry\halo spartan assault\data\halospartanassault.exe |
"UDP Query User{E5016407-394E-4BC3-A946-6608F5531BE2}C:\program files (x86)\tera\tera-launcher.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"UDP Query User{EF595D47-6DC9-43EA-B632-A4B09E43FCE0}C:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe" = protocol=17 | dir=in | app=c:\users\thormek\downloads\stronghold crusader 2\bin\win32_release\crusader2.exe |
"UDP Query User{F8CF8C36-C99C-4367-BDF6-2223995845D1}C:\users\thormek\appdata\local\id software\quakelive\quakelive.exe" = protocol=17 | dir=in | app=c:\users\thormek\appdata\local\id software\quakelive\quakelive.exe |
"UDP Query User{FF93503B-D349-489D-AB2E-0DBFB8E608B8}D:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe" = protocol=17 | dir=in | app=d:\gry do instalki\kingdoms.of.amalur.reckoning.2012.clonedvd-p2p\reckoning.exe |
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{137E399B-5ABA-3E56-8BF2-545F64A7C430}" = AMD Fuel
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{31ABA3F2-0000-1033-0102-111D43815377}" = Autodesk ReCap
"{31ABA3F2-0010-1033-0102-111D43815377}" = Autodesk ReCap Language Pack-English
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{426582A8-202F-D13C-8BD5-F00551BAFC93}" = AMD Wireless Display v3.0
"{482BACC1-9DB7-994D-5507-D5D606BE6516}" = AMD Media Foundation Decoders
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}" = Autodesk 360
"{5783F2D7-D001-0000-0102-0060B0CE6BBA}" = AutoCAD 2014 - English
"{5783F2D7-D001-0409-1102-0060B0CE6BBA}" = AutoCAD 2014 Language Pack - English
"{5783F2D7-D001-0409-2102-0060B0CE6BBA}" = AutoCAD 2014 - English
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8B6CFE66-6961-3E02-3C57-9BA146AFB935}" = AMD Wireless Display v3.0
"{8C775E70-A791-4DA8-BCC3-6AB7136F4484}" = Visual Studio 2012 x64 Redistributables
"{8DF1EF50-AEB6-902C-F68C-4683C45784E6}" = AMD Catalyst Install Manager
"{8E5DA9A6-7A9F-3A6F-BC5C-D6CBCA6A29C7}" = Microsoft .NET Framework 4 Extended PLK Language Pack
"{8F2415FA-72F2-F029-0450-4EB2FAE484C5}" = AMD Accelerated Video Transcoding
"{90150000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{90150000-0015-0415-1000-0000000FF1CE}" = Microsoft Access MUI (Polish) 2013
"{90150000-0016-0415-1000-0000000FF1CE}" = Microsoft Excel MUI (Polish) 2013
"{90150000-0018-0415-1000-0000000FF1CE}" = Microsoft PowerPoint MUI (Polish) 2013
"{90150000-0019-0415-1000-0000000FF1CE}" = Microsoft Publisher MUI (Polish) 2013
"{90150000-001A-0415-1000-0000000FF1CE}" = Microsoft Outlook MUI (Polish) 2013
"{90150000-001B-0415-1000-0000000FF1CE}" = Microsoft Word MUI (Polish) 2013
"{90150000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-0415-1000-0000000FF1CE}" = Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski
"{90150000-002C-0415-1000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2013
"{90150000-0044-0415-1000-0000000FF1CE}" = Microsoft InfoPath MUI (Polish) 2013
"{90150000-006E-0415-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2013
"{90150000-0090-0415-1000-0000000FF1CE}" = Microsoft DCF MUI (Polish) 2013
"{90150000-00A1-0415-1000-0000000FF1CE}" = Microsoft OneNote MUI (Polish) 2013
"{90150000-00BA-0415-1000-0000000FF1CE}" = Microsoft Groove MUI (Polish) 2013
"{90150000-00C1-0000-1000-0000000FF1CE}" = Microsoft Office 32-bit Components 2013
"{90150000-00C1-0415-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Polish) 2013
"{90150000-00E1-0415-1000-0000000FF1CE}" = Microsoft Office OSM MUI (Polish) 2013
"{90150000-00E2-0415-1000-0000000FF1CE}" = Microsoft Office OSM UX MUI (Polish) 2013
"{90150000-012B-0415-1000-0000000FF1CE}" = Microsoft Lync MUI (Polish) 2013
"{913923AB-3AAB-4870-8910-627C4CD82789}" = NetLimiter 3
"{929FBD26-9020-399B-9A7A-751D61F0B942}" = Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{94BFDEF9-D91D-4B5D-8A60-08514C7191AF}" = AMD Steady Video Plug-In
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{9B85E969-094A-35F5-6D5C-010FD2EDE5F9}" = ccc-utility64
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{A49402DD-2781-3782-B0CF-52BDA349E3F3}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack
"{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}" = Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{AE94ACBF-D190-794D-45FF-AD02B6E84A9D}" = AMD Wireless Display v3.0
"{BC58D937-B790-9257-5D4A-A63E1B1C3389}" = AMD Drag and Drop Transcoding
"{C270821D-2479-D0F4-1BD1-7BBAF6762A98}" = AMD Wireless Display v3.0
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{DF446558-ADF7-4884-9B2D-281979CCE71F}" = Qualcomm Atheros Killer Network Manager
"{E9EED4AE-682B-4501-9574-D09A21717599}_is1" = AMD Quick Stream
"{F0DD70C6-B53F-42B5-8A67-62863E6E5EEF}" = HP Deskjet 2510 series — podstawowe oprogramowanie urządzenia
"AutoCAD 2014 - English" = Autodesk AutoCAD 2014 - English
"Autodesk ReCap" = Autodesk ReCap
"E9763B7620315731AD7ED384D4FD29317397BC63" = Pakiet sterowników systemu Windows - Advanced Micro Devices (amdhub30) USB (02/26/2013 1.1.0.0145)
"Elantech" = ETDWare PS/2-X64 11.13.2.4_WHQL
"F730DBDBAB7F37FB4646DCF65EAA90B782CFD0AA" = Pakiet sterowników systemu Windows - Advanced Micro Devices (amdxhc) USB (02/26/2013 1.1.0.0145)
"KLiteCodecPack64_is1" = K-Lite Codec Pack 6.2.0 (64-bit)
"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended
"Office15.PROPLUS" = Microsoft Office Professional Plus 2013
"WinRAR archiver" = WinRAR 5.01 (64-bitowy)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{050d4fc8-5d48-4b8f-8972-47c82c46020f}" = Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
"{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}" = Cisco PEAP Module
"{0C2D7460-3633-F05A-4504-A4BAF0508E63}" = AMD Catalyst Control Center
"{11087D24-567D-7D88-69C6-D7A08B5F4C47}" = Catalyst Control Center - Branding
"{12E727B6-24CD-0CA2-E63F-815CE9F03BC1}" = CCC Help Spanish
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20E59B20-3E77-B07B-B854-2B03CE86FC64}" = CCC Help Greek
"{216C7F38-4BBC-4E9A-8392-C9FA21B54386}" = HP Deskjet 2510 series Setup Guide
"{226552DB-BCAF-5406-8283-5F500AFC0C16}" = CCC Help Norwegian
"{2432E589-6256-4513-B0BF-EFA8E325D5F0}" = Nero SharedVideoCodecs
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 6.21
"{26024DF7-8D9A-0047-3AA1-63AC45B68413}" = CCC Help Italian
"{31796434-736D-4601-6D86-D95696812FAF}" = CCC Help Hungarian
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{34D5220A-58D0-473C-90E4-15136C3FB0E3}" = AMD OverDrive
"{41727356-2969-83D0-9DAF-41DFB6CE6C82}" = CCC Help Japanese
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{47FA2C44-D148-4DBC-AF60-B91934AA4842}" = Adobe AIR
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{51BF3210-B825-4092-8E0D-66D689916E02}" = Autodesk Material Library Base Resolution Image Library 2014
"{53DB9A5D-87C7-5067-D8A2-F53FB3F621BB}" = CCC Help Polish
"{55055055-10AE-00BA-96F5-98DD6F3006AC}_is1" = Wolfenstein The New Order ver. 1.0.0.2
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5883C8CF-D9F6-CACD-01E9-8D4DE18B7B86}" = CCC Help Korean
"{5909A89E-C97F-407C-AE2B-47BDED86BF5D}" = Prerequisite installer
"{5A9F93EE-DF6F-AE8E-A43E-76B12F2BA707}" = CCC Help Russian
"{62F029AB-85F2-0000-866A-9FC0DD99DDBC}" = Autodesk Content Service
"{62F029AB-85F2-0001-866A-9FC0DD99DDBC}" = Autodesk Content Service Language Pack
"{644E9589-F73A-49A4-AC61-A953B9DE5669}" = SketchUp Import for AutoCAD 2014
"{644F9B19-A462-499C-BF4D-300ABC2A28B1}" = Autodesk Material Library 2014
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7382003B-637E-2598-F9D6-0B4C70EA358F}" = CCC Help Chinese Standard
"{77F2CBFF-0687-BBAD-6A44-C0034AFE71FA}" = CCC Help French
"{81BF6353-3C5B-4E6E-A566-7E162A00BF72}_is1" = Wtyczka e-Deklaracje
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}" = Kaspersky Internet Security
"{93ED5459-3A8E-67EB-C68F-47CD6AFE25A4}" = CCC Help Turkish
"{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DAABC60-A5EF-41FF-B2B9-17329590CD5}" = REALTEK Wireless LAN Driver
"{A0030B28-1F49-2734-BFD7-74666118637E}" = CCC Help Portuguese
"{A03D0AB9-E804-E8B1-2EC5-0E28DAEAC11A}" = Catalyst Control Center Localization All
"{A0CC276F-2890-DE82-1C93-BF827B3DCD2D}" = Catalyst Control Center Graphics Previews Common
"{ABC88553-8770-4B97-B43E-5A90647A5B63}" = Nero ControlCenter
"{AC76BA86-0804-1033-1959-001824157129}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1045-7B44-AB0000000001}" = Adobe Reader XI (11.0.13) - Polish
"{AF2D6CE8-FF11-72F6-DA20-DF02E68E211D}" = CCC Help Thai
"{AF312B06-5C5C-468E-89B3-BE6DE2645722}" = Cisco LEAP Module
"{B166374C-105E-445E-8E5D-A86CA5742645}" = Nero Burning Core
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B2F0BB2B-34ED-AEB8-CFD5-B4405D8DAD54}" = CCC Help Swedish
"{B791E0AB-87A9-41A4-8D98-D13C2E37D928}" = Nero Info
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{BD96BA19-5A46-E2F7-5652-E13BBA085317}" = CCC Help Finnish
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components
"{C070121A-C8C5-4D52-9A7D-D240631BD433}" = Autodesk App Manager
"{C2409A7D-665E-F6E9-CAE1-DFCF83DBF632}" = CCC Help Danish
"{C4A8B568-5F30-E41F-5F15-80E0902C204E}" = CCC Help Dutch
"{C9F54777-001E-41F6-83F8-B99A19EA5083}" = Nero Burning ROM 2014
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{CD95C0B1-80B7-27DD-DC79-5955A4F108BB}" = Catalyst Control Center InstallProxy
"{D08A5DFE-F0C2-74FC-DD56-A3B371E9344D}" = EA Shared Game Component: Activation
"{e0dee0be-0f9f-4e86-a996-163187d1a035}" = Nero 9 Essentials
"{E281AD0E-78A6-DE8A-9903-A449EE18FB17}" = CCC Help English
"{E8478C78-A2BE-A85B-4EDC-FB02B6AE1A3E}" = CCC Help German
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1CA8888-41BB-7DCE-D9A4-751AFC4F1353}" = CCC Help Czech
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA}" = Nero Burning ROM
"{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
"{F732FEDA-7713-4428-934B-EF83B8DD65D0}" = Autodesk Featured Apps
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FF5E3D2F-586A-3CF2-CFAE-3B03862F5512}" = CCC Help Chinese Traditional
"1207666813_is1" = Pillars of Eternity
"Adobe AIR" = Adobe AIR
"Adobe Digital Editions 3.0" = Adobe Digital Editions 3.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 19 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 19 NPAPI
"Afterburner" = MSI Afterburner 3.0.0 Beta 18
"Autodesk Content Service" = Autodesk Content Service
"Battle.net" = Battle.net
"Battlelog Web Plugins" = Battlelog Web Plugins
"com.ea.Activation.919CACB699904AC5D41B606703500DD39747C02D.1" = EA Shared Game Component: Activation
"CWK" = CWK (Czasowy Wyłącznik Komputera)
"Dark Souls II_is1" = Dark Souls II, âĺđńč˙ 1.0.1.0
"EA Installer.-367263747" = EA Installer
"Fraps" = Fraps
"Free Media Converter_is1" = Free Media Converter 2.9
"Freemake Video Converter_is1" = Freemake Video Converter wersja 4.1.3
"Hearthstone" = Hearthstone
"Heroes of the Storm" = Heroes of the Storm
"InstallShield_{DF446558-ADF7-4884-9B2D-281979CCE71F}" = Qualcomm Atheros Killer Network Manager
"InstallWIX_{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}" = Kaspersky Internet Security
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 8.7.0
"Lords of the Fallen_is1" = Lords of the Fallen
"Open Codecs" = Xiph.Org Open Codecs 0.85.17777
"Origin" = Origin
"PunkBusterSvc" = PunkBuster Services
"Raptr" = Raptr
"Star Wars The Force Unleashed 2_is1" = Star Wars The Force Unleashed 2 wersja 1.0.0.0
"Star Wars The Force Unleashed Ultimate Sith Edition_is1" = Star Wars The Force Unleashed Ultimate Sith Edition wersja 1.1.0.0
"Steam" = Steam
"Steam App 200510" = XCOM: Enemy Unknown
"Steam App 230230" = Divinity: Original Sin
"Steam App 230410" = Warframe
"Steam App 236110" = Dungeon Defenders II
"Steam App 238960" = Path of Exile
"Steam App 256410" = Might & Magic: Duel of Champions
"Steam App 323370" = TERA
"Steam App 570" = Dota 2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TechPowerUp GPU-Z" = TechPowerUp GPU-Z
"Unigine Heaven DX11 Benchmark 2.5_is1" = Unigine Heaven DX11 Benchmark 2.5 version 2.5
"VSDC Free Video Converter_is1" = VSDC Free Video Converter version 2.4.5.276
"Winamp" = Winamp
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-2004879951-2572555970-1650795036-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2015-04-01 03:39:53 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-01 03:44:53 | Computer Name = Thormek-GX70 | Source = .NET Runtime | ID = 1022
Description =
Error - 2015-04-02 03:18:41 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-03 03:10:08 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-03 08:03:36 | Computer Name = Thormek-GX70 | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: LolClient.exe, wersja: 0.0.0.0,
sygnatura czasowa: 0x515663e0 Nazwa modułu powodującego błąd: Adobe AIR.dll, wersja:
3.7.0.1530, sygnatura czasowa: 0x5156646c Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x0006dd76 Identyfikator procesu powodującego błąd: 0x17bc Godzina uruchomienia aplikacji
powodującej błąd: 0x01d06e0406d348bc Ścieżka aplikacji powodującej błąd: D:\GRY\League
of Legends\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.138\deploy\LolClient.exe
Ścieżka
modułu powodującego błąd: D:\GRY\League of Legends\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.138\deploy\Adobe
AIR\Versions\1.0\Adobe AIR.dll Identyfikator raportu: 747526be-d9f9-11e4-97c2-6c71d9b51976
Error - 2015-04-04 06:42:07 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-04 06:47:29 | Computer Name = Thormek-GX70 | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: LolClient.exe, wersja: 0.0.0.0,
sygnatura czasowa: 0x515663e0 Nazwa modułu powodującego błąd: Adobe AIR.dll, wersja:
3.7.0.1530, sygnatura czasowa: 0x5156646c Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x0006dd76 Identyfikator procesu powodującego błąd: 0x9c8 Godzina uruchomienia aplikacji
powodującej błąd: 0x01d06ec401be9e82 Ścieżka aplikacji powodującej błąd: D:\GRY\League
of Legends\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.138\deploy\LolClient.exe
Ścieżka
modułu powodującego błąd: D:\GRY\League of Legends\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.138\deploy\Adobe
AIR\Versions\1.0\Adobe AIR.dll Identyfikator raportu: fcb018d5-dab7-11e4-8080-6c71d9b51976
Error - 2015-04-05 08:28:05 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-06 06:30:42 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
Error - 2015-04-07 02:54:54 | Computer Name = Thormek-GX70 | Source = Office 2013 Licensing Service | ID = 0
Description =
[ NetLimiter 3 Events ]
Error - 2015-06-11 01:17:06 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>1</err-code> <hresult code='8007041D'>Usługa
nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.</hresult>
<module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-06-11 01:17:07 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>5000</err-code> <module>NetLimiter.NLBaseClient.1147</module>
<desc>Failed
to connect to NetLimiter service.</desc> <param name='host-name' value=''/> </nl-error>
<nl-error>
<err-code>1</err-code>
<hresult
code='8007041D'>Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący
w oczekiwanym czasie.</hresult> <module>NetLimiter.NLBaseClient.235</module> </nl-error>
</nl-error-list>
Error - 2015-07-02 03:36:22 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>1</err-code> <hresult code='8007041D'>Usługa
nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.</hresult>
<module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-07-02 03:36:23 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>5000</err-code> <module>NetLimiter.NLBaseClient.1147</module>
<desc>Failed
to connect to NetLimiter service.</desc> <param name='host-name' value=''/> </nl-error>
<nl-error>
<err-code>1</err-code>
<hresult
code='8007041D'>Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący
w oczekiwanym czasie.</hresult> <module>NetLimiter.NLBaseClient.235</module> </nl-error>
</nl-error-list>
Error - 2015-07-02 03:45:26 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>1</err-code> <hresult code='80080005'>Wykonanie
serwera nie powiodło się.</hresult> <module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-07-02 03:45:26 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>5000</err-code> <module>NetLimiter.NLBaseClient.1147</module>
<desc>Failed
to connect to NetLimiter service.</desc> <param name='host-name' value=''/> </nl-error>
<nl-error>
<err-code>1</err-code>
<hresult
code='80080005'>Wykonanie serwera nie powiodło się.</hresult> <module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-07-03 06:37:04 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>1</err-code> <hresult code='8007041D'>Usługa
nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.</hresult>
<module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-07-03 06:37:05 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>5000</err-code> <module>NetLimiter.NLBaseClient.1147</module>
<desc>Failed
to connect to NetLimiter service.</desc> <param name='host-name' value=''/> </nl-error>
<nl-error>
<err-code>1</err-code>
<hresult
code='8007041D'>Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący
w oczekiwanym czasie.</hresult> <module>NetLimiter.NLBaseClient.235</module> </nl-error>
</nl-error-list>
Error - 2015-09-17 02:54:45 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>1</err-code> <hresult code='8007041D'>Usługa
nie odpowiada na sygnał uruchomienia lub sygnał sterujący w oczekiwanym czasie.</hresult>
<module>NetLimiter.NLBaseClient.235</module>
</nl-error>
</nl-error-list>
Error - 2015-09-17 02:54:45 | Computer Name = Thormek-GX70 | Source = NetLimiter 3 BaseCli | ID = 1000
Description = <nl-error-list> <nl-error> <err-code>5000</err-code> <module>NetLimiter.NLBaseClient.1147</module>
<desc>Failed
to connect to NetLimiter service.</desc> <param name='host-name' value=''/> </nl-error>
<nl-error>
<err-code>1</err-code>
<hresult
code='8007041D'>Usługa nie odpowiada na sygnał uruchomienia lub sygnał sterujący
w oczekiwanym czasie.</hresult> <module>NetLimiter.NLBaseClient.235</module> </nl-error>
</nl-error-list>
[ System Events ]
Error - 2015-10-19 14:12:04 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7030
Description = Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System
jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego
ta usługa może nie działać właściwie.
Error - 2015-10-19 14:27:27 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi AODDriver4.2.0 z powodu następującego błędu:
%%3
Error - 2015-10-19 14:27:38 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Nero BackItUp Scheduler 4.0 z powodu następującego
błędu: %%2
Error - 2015-10-19 14:28:28 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: CSN5PDTS82 CsNdisLWF
Error - 2015-10-19 14:38:46 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi AODDriver4.2.0 z powodu następującego błędu:
%%3
Error - 2015-10-19 14:39:35 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Nero BackItUp Scheduler 4.0 z powodu następującego
błędu: %%2
Error - 2015-10-19 14:40:50 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: Capsax64Drv0 CSN5PDTS82 CSN5PDTS82x64 CsNdisLWF
Error - 2015-10-19 14:49:43 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi AODDriver4.2.0 z powodu następującego błędu:
%%3
Error - 2015-10-19 14:49:55 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Nero BackItUp Scheduler 4.0 z powodu następującego
błędu: %%2
Error - 2015-10-19 14:51:21 | Computer Name = Thormek-GX70 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: Capsax64Drv0 CSN5PDTS82 CSN5PDTS82x64 CsNdisLWF
< End of report >
DDs.txt
- Kod: Zaznacz wszystko
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17207
Run by Thormek at 21:21:26 on 2015-10-19
Microsoft Windows 7 Professional 6.1.7601.1.1250.48.1045.18.7368.3860 [GMT 2:00]
.
AV: Kaspersky Internet Security *Enabled/Updated* {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
SP: Kaspersky Internet Security *Enabled/Updated* {0F7D947C-13CC-4207-47BE-41AC12334EC6}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security *Enabled* {8C27F4BD-7F99-4CD1-5651-D3EB97674300}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\NetLimiter 3\NLClientApp.exe
C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe
C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
C:\Users\Thormek\AppData\Roaming\TSv\TSvr.exe
C:\Program Files\NetLimiter 3\nlsvc.exe
C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
C:\Program Files (x86)\SFK\SSFK.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\SFK\SSFK.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avpui.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wuauclt.exe
C:\Users\Thormek\Downloads\gmer\gmer.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\System32\MsSpellCheckingFacility.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\system32\taskhost.exe
C:\Users\Thormek\Downloads\OTL_[www.programosy.pl].exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://google.pl/
uDefault_Search_URL = hxxp://isearch.omigaweb/?type=dspp&q={searchTerms}
mStart Page = hxxp://isearch.omiga?type=hppppp
mSearch Page = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1418215046&from=cor&uid=HitachiXHTS727575A9E364_J3340084JXUNKBJXUNKBX&q={searchTerms}
mDefault_Page_URL = hxxp://isearch.omiga?type=hppppp
mDefault_Search_URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1418215046&from=cor&uid=HitachiXHTS727575A9E364_J3340084JXUNKBJXUNKBX&q={searchTerms}
BHO: Content Blocker Plugin: {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll
BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL
BHO: Virtual Keyboard Plugin: {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
BHO: Safe Money Plugin: {E3D96E85-529D-4269-AC6A-97CF9E2221E3} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll
uRun: [NetLimiter] C:\Program Files\NetLimiter 3\NLClientApp.exe /tray
uRun: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AMDQuickStream.exe -h
uRun: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
mRun: [Raptr] "C:\Program Files (x86)\Raptr\raptrstub.exe" --startup
mRun: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
dRun: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\QUALCO~1.LNK - C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:28
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&ksportuj do programu Microsoft Excel - C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
IE: {09A10376-994C-4BBF-9121-F50CF7BA237E} - {F2A56BFE-7911-451A-BC74-A9C3C2E95126} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll
LSP: %SYSTEMROOT%\system32\BfLLR.dll
TCP: NameServer = 178.219.129.146 185.11.108.6
TCP: Interfaces\{4F7CBC80-95F8-4D19-B264-E160C9252E7D} : DHCPNameServer = 178.219.129.146 185.11.108.6
TCP: Interfaces\{4F7CBC80-95F8-4D19-B264-E160C9252E7D}\4527166756C65627 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{D6228868-EE59-4CCB-ACDF-266F4A05F5F5} : DHCPNameServer = 178.219.129.146 185.11.108.6
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
SSODL: WebCheck - <orphaned>
x64-mStart Page = hxxp://isearch.omiga?type=hppppp
x64-BHO: Content Blocker Plugin: {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll
x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL
x64-BHO: Virtual Keyboard Plugin: {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll
x64-BHO: Safe Money Plugin: {E3D96E85-529D-4269-AC6A-97CF9E2221E3} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe
x64-IE: {09A10376-994C-4BBF-9121-F50CF7BA237E} - {F2A56BFE-7911-451A-BC74-A9C3C2E95126} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\x64\IEExt\ie_plugin.dll
x64-DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2014-3-2 82600]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2014-3-2 42664]
R0 amdkmpfd;AMD PCI Root Bus Lower Filter;C:\Windows\System32\drivers\amdkmpfd.sys [2014-10-28 62152]
R0 cm_km_w;Kaspersky Lab Crypto Module (FDE PDK);C:\Windows\System32\drivers\cm_km_w.sys [2013-1-14 238288]
R1 BfLwf;Qualcomm Atheros Bandwidth Control;C:\Windows\System32\drivers\bflwfx64.sys [2012-9-25 66928]
R1 klhk;klhk;C:\Windows\System32\drivers\klhk.sys [2014-12-5 246456]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\drivers\klim6.sys [2014-2-25 30304]
R1 klpd;klpd;C:\Windows\System32\drivers\klpd.sys [2013-4-12 15456]
R1 kltdi;kltdi;C:\Windows\System32\drivers\kltdi.sys [2014-6-5 55872]
R1 Klwtp;Klwtp;C:\Windows\System32\drivers\klwtp.sys [2014-8-13 77512]
R1 kneps;kneps;C:\Windows\System32\drivers\kneps.sys [2014-7-9 179776]
R1 nltdi;nltdi;C:\Program Files\NetLimiter 3\nltdi.sys [2010-8-30 88200]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2015-7-16 246784]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2015-7-15 344064]
R2 AODDriver4.3.0;AODDriver4.3.0;C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [2014-1-8 59624]
R2 AODDriver4.3;AODDriver4.3;C:\Program Files\AMD\ATI.ACE\Fuel\amd64\aoddriver2.sys [2014-2-11 59616]
R2 APXACC;AppEx Networks Accelerator LWF;C:\Windows\System32\drivers\appexDrv.sys [2015-2-3 229056]
R2 Autodesk Content Service;Autodesk Content Service;C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-12-13 12288]
R2 AVP15.0.1;Usługa Kaspersky Anti-Virus 15.0.1;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe [2014-8-30 234520]
R2 IhPul;IhPul;C:\Users\Thormek\AppData\Roaming\TSv\TSvr.exe [2015-9-21 396944]
R2 kldisk;kldisk;C:\Windows\System32\drivers\kldisk.sys [2014-7-2 46144]
R2 Qualcomm Atheros Killer Service;Qualcomm Atheros Killer Service;C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [2012-9-25 490496]
R2 SSFK;SSFK;C:\Program Files (x86)\SFK\SSFK.exe -s --> C:\Program Files (x86)\SFK\SSFK.exe -s [?]
R3 amdhub30;AMD USB 3.0 Hub Driver;C:\Windows\System32\drivers\amdhub30.sys [2013-2-27 108128]
R3 amdxhc;AMD USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\amdxhc.sys [2013-2-27 228448]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2015-7-15 96256]
R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\System32\drivers\ETD.sys [2014-3-2 357200]
R3 klflt;Kaspersky Lab Kernel DLL;C:\Windows\System32\drivers\klflt.sys [2014-8-18 150536]
R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\System32\drivers\klkbdflt.sys [2014-3-28 28768]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\drivers\klmouflt.sys [2013-8-8 29280]
R3 L1C;NDIS Miniport Driver for the Killer e2200 PCI-E Ethernet Controller;C:\Windows\System32\drivers\e22W7x64.sys [2012-9-25 157552]
R3 MBfilt;MBfilt;C:\Windows\System32\drivers\MBfilt64.sys [2014-3-2 32344]
R3 NLNdisMP;NLNdisMP;C:\Windows\System32\drivers\nlndis.sys [2010-8-30 33416]
R3 RTWlanE;Realtek Wireless LAN 802.11n PCI-E Network Adapter;C:\Windows\System32\drivers\rtwlane.sys [2014-3-2 1514568]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2014-3-2 58536]
S2 AODService;AODService;C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [2014-1-8 137584]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-9 123856]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-4-3 315008]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2015-6-29 1471352]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-8-13 111616]
S3 NLNdisPT;NetLimiter Ndis Protocol Service;C:\Windows\System32\drivers\nlndis.sys [2010-8-30 33416]
S3 Origin Client Service;Origin Client Service;D:\GRY\Origin\OriginClientService.exe [2014-5-29 2007048]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-11-12 178776]
S3 SjtWinIo;SJT I/O Driver;C:\Windows\System32\drivers\SjtWinIo.sys [2014-3-2 9216]
S3 StorSvc;Usługa magazynu;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-4-15 59392]
S3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2014-3-5 1255736]
.
=============== File Associations ===============
.
FileExt: .scr: AutoCADScriptFile=C:\Windows\System32\notepad.exe "%1"
FileExt: .inf: inffile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2015-10-19 18:24:05 -------- d-sh--w- C:\$RECYCLE.BIN
2015-10-19 18:02:01 98816 ----a-w- C:\Windows\sed.exe
2015-10-19 18:02:01 256000 ----a-w- C:\Windows\PEV.exe
2015-10-19 18:02:01 208896 ----a-w- C:\Windows\MBR.exe
2015-10-19 17:39:07 388096 ----a-r- C:\Users\Thormek\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2015-10-19 17:39:07 -------- d-----w- C:\Program Files (x86)\Trend Micro
2015-10-19 16:21:36 -------- d-----w- C:\Program Files (x86)\SFK
2015-10-19 16:20:16 -------- d-----w- C:\Users\Thormek\AppData\Roaming\TSv
2015-10-08 07:00:14 -------- d-----w- C:\$WINDOWS.~BT
2015-10-08 06:19:50 -------- d-----w- C:\$Windows.~WS
2015-09-30 17:13:11 -------- d-----w- C:\ProgramData\Colasoft Capsa 7 Free
2015-09-30 17:12:52 -------- d-----w- C:\Users\Thormek\AppData\Roaming\Colasoft Packet Player
2015-09-30 17:12:51 -------- d-----w- C:\Users\Thormek\AppData\Roaming\Colasoft Ping Tool
2015-09-30 17:12:49 -------- d-----w- C:\Users\Thormek\AppData\Roaming\Colasoft MAC Scanner
2015-09-30 17:12:20 -------- d-----w- C:\Program Files (x86)\Common Files\Colasoft Shared
2015-09-30 17:05:42 -------- d-----w- C:\Users\Thormek\AppData\Roaming\istartsurf
2015-09-25 08:34:10 -------- d-----w- C:\Users\Thormek\AppData\Local\DunDefLauncher
.
==================== Find3M ====================
.
2015-10-19 18:48:50 65536 ----a-w- C:\Windows\System32\spu_storage.bin
2015-10-17 15:52:08 780488 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2015-10-17 15:52:08 142536 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2015-10-17 15:52:03 3996360 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
.
============= FINISH: 21:21:42,15 ===============
Attach.txt
- Kod: Zaznacz wszystko
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 2014-03-02 11:19:13
System Uptime: 2015-10-19 20:49:09 (1 hours ago)
.
Motherboard: Micro-Star International Co., Ltd. | | MS-176K
Processor: AMD A10-5750M APU with Radeon(tm) HD Graphics | P0 | 2500/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 113 GiB total, 56,192 GiB free.
D: is FIXED (NTFS) - 292 GiB total, 25,322 GiB free.
E: is FIXED (NTFS) - 294 GiB total, 35,872 GiB free.
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: AODDriver4.2.0
Device ID: ROOT\LEGACY_AODDRIVER4.2.0\0000
Manufacturer:
Name: AODDriver4.2.0
PNP Device ID: ROOT\LEGACY_AODDRIVER4.2.0\0000
Service: AODDriver4.2.0
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: Capsax64Drv0 NDIS Protocol Driver
Device ID: ROOT\LEGACY_CAPSAX64DRV0\0000
Manufacturer:
Name: Capsax64Drv0 NDIS Protocol Driver
PNP Device ID: ROOT\LEGACY_CAPSAX64DRV0\0000
Service: Capsax64Drv0
.
Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: CSN5PDTS82x64 NDIS Protocol Driver
Device ID: ROOT\LEGACY_CSN5PDTS82X64\0000
Manufacturer:
Name: CSN5PDTS82x64 NDIS Protocol Driver
PNP Device ID: ROOT\LEGACY_CSN5PDTS82X64\0000
Service: CSN5PDTS82x64
.
==== System Restore Points ===================
.
RP100: 2015-09-29 13:53:43 - Zaplanowany punkt kontrolny
RP101: 2015-10-19 19:38:31 - Installed HiJackThis
RP102: 2015-10-19 20:35:29 - Removed FARO LS 1.1.501.0 (64bit)
.
==== Installed Programs ======================
.
7-Zip 9.20 (x64 edition)
Adobe AIR
Adobe Digital Editions 3.0
Adobe Flash Player 19 ActiveX
Adobe Flash Player 19 NPAPI
Adobe Reader XI (11.0.13) - Polish
Adobe Refresh Manager
AMD Accelerated Video Transcoding
AMD Catalyst Control Center
AMD Catalyst Install Manager
AMD Drag and Drop Transcoding
AMD Fuel
AMD Media Foundation Decoders
AMD OverDrive
AMD Quick Stream
AMD Steady Video Plug-In
AMD Wireless Display v3.0
µTorrent
AutoCAD 2014 - English
AutoCAD 2014 Language Pack - English
Autodesk 360
Autodesk App Manager
Autodesk AutoCAD 2014 - English
Autodesk Content Service
Autodesk Content Service Language Pack
Autodesk Featured Apps
Autodesk Material Library 2014
Autodesk Material Library Base Resolution Image Library 2014
Autodesk ReCap
Autodesk ReCap Language Pack-English
Battle.net
Battlelog Web Plugins
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
CWK (Czasowy Wyłącznik Komputera)
Dark Souls II, âĺđńč˙ 1.0.1.0
Divinity: Original Sin
Dota 2
Dungeon Defenders II
EA Installer
EA Shared Game Component: Activation
ETDWare PS/2-X64 11.13.2.4_WHQL
Fraps
Free Media Converter 2.9
Freemake Video Converter wersja 4.1.3
Hearthstone
Heroes of the Storm
HiJackThis
HP Deskjet 2510 series Setup Guide
HP Deskjet 2510 series — podstawowe oprogramowanie urządzenia
K-Lite Codec Pack 6.2.0 (64-bit)
K-Lite Mega Codec Pack 8.7.0
Kaspersky Internet Security
Lords of the Fallen
Microsoft .NET Framework 4 Client Profile PLK Language Pack
Microsoft .NET Framework 4 Extended PLK Language Pack
Microsoft .NET Framework 4.5
Microsoft Access MUI (Polish) 2013
Microsoft DCF MUI (Polish) 2013
Microsoft Excel MUI (Polish) 2013
Microsoft Games for Windows - LIVE Redistributable
Microsoft Games for Windows Marketplace
Microsoft Groove MUI (Polish) 2013
Microsoft InfoPath MUI (Polish) 2013
Microsoft Lync MUI (Polish) 2013
Microsoft Office 32-bit Components 2013
Microsoft Office Korrekturhilfen 2013 - Deutsch
Microsoft Office OSM MUI (Polish) 2013
Microsoft Office OSM UX MUI (Polish) 2013
Microsoft Office Professional Plus 2013
Microsoft Office Proofing (Polish) 2013
Microsoft Office Proofing Tools 2013 - English
Microsoft Office Shared 32-bit MUI (Polish) 2013
Microsoft Office Shared MUI (Polish) 2013
Microsoft OneNote MUI (Polish) 2013
Microsoft Outlook MUI (Polish) 2013
Microsoft PowerPoint MUI (Polish) 2013
Microsoft Publisher MUI (Polish) 2013
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
Microsoft Word MUI (Polish) 2013
Microsoft XNA Framework Redistributable 3.1
Might & Magic: Duel of Champions
MSI Afterburner 3.0.0 Beta 18
Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski
Nero 9 Essentials
Nero Burning Core
Nero Burning ROM
Nero Burning ROM 2014
Nero ControlCenter
Nero Core Components
Nero Info
Nero SharedVideoCodecs
neroxml
NetLimiter 3
NVIDIA PhysX
Origin
Pakiet sterowników systemu Windows - Advanced Micro Devices (amdhub30) USB (02/26/2013 1.1.0.0145)
Pakiet sterowników systemu Windows - Advanced Micro Devices (amdxhc) USB (02/26/2013 1.1.0.0145)
Path of Exile
Pillars of Eternity
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended
Prerequisite installer
PunkBuster Services
Qualcomm Atheros Killer Network Manager
Raptr
Realtek High Definition Audio Driver
REALTEK Wireless LAN Driver
Security Update for Microsoft .NET Framework 4.5 (KB2737083)
Security Update for Microsoft .NET Framework 4.5 (KB2742613)
Security Update for Microsoft .NET Framework 4.5 (KB2789648)
Security Update for Microsoft .NET Framework 4.5 (KB2840642v2)
Security Update for Microsoft .NET Framework 4.5 (KB2861208)
Security Update for Microsoft .NET Framework 4.5 (KB2898864)
Security Update for Microsoft .NET Framework 4.5 (KB2901118)
Security Update for Microsoft .NET Framework 4.5 (KB2931368)
SketchUp Import for AutoCAD 2014
Skype™ 6.21
Star Wars The Force Unleashed 2 wersja 1.0.0.0
Star Wars The Force Unleashed Ultimate Sith Edition wersja 1.1.0.0
Steam
TeamSpeak 3 Client
TechPowerUp GPU-Z
TERA
Unigine Heaven DX11 Benchmark 2.5 version 2.5
Visual Studio 2012 x64 Redistributables
Visual Studio 2012 x86 Redistributables
VSDC Free Video Converter version 2.4.5.276
Warframe
Winamp
Windows Live ID Sign-in Assistant
WinRAR 5.01 (64-bitowy)
Wolfenstein The New Order ver. 1.0.0.2
Wtyczka e-Deklaracje
XCOM: Enemy Unknown
Xiph.Org Open Codecs 0.85.17777
.
==== End Of File ===========================
